archeious/quartermaster
1
0
Fork 0
Code Issues 4 Pull requests 1 Projects Releases Packages Wiki Activity Actions

Add /healthz endpoint for container healthcheck #26

New issue
Open
opened 2026-04-19 11:08:13 -06:00 by claude-code · 0 comments
claude-code commented 2026-04-19 11:08:13 -06:00
Collaborator
Copy link

Part of the platform-contract intake (#25).

The Archon platform contract requires every long-running container to declare a Docker HEALTHCHECK. cAdvisor exports container_health_status to Prometheus; absent health checks show as "none" and cannot drive the container-down alert planned for launch (5.4 in #25).

Scope

  • Add GET /healthz to the FastAPI app.
  • Return 200 on success, 503 when the check fails.
  • Success condition: app is up and the DB is reachable. A trivial SELECT 1 via the SQLAlchemy session is enough; the SQLite file is the only data store.
  • No auth. The Traefik basic-auth middleware will protect the rest of the app, but the healthcheck must remain unauthenticated so the Docker HEALTHCHECK (running inside the container) and any infra probes can hit it.

Out of scope

  • /readyz / /livez split. One endpoint is enough for a single-container app with no warm-up phase.
  • Application-level metrics (/metrics) — not on the launch list (5.2 in #25).

Deliverables

  • Route handler + tests.
  • HEALTHCHECK directive in the eventual Dockerfile / Compose service once the deploy scaffolding lands.

Tracks work that blocks first deploy per #25.

Part of the platform-contract intake (#25). The Archon platform contract requires every long-running container to declare a Docker `HEALTHCHECK`. cAdvisor exports `container_health_status` to Prometheus; absent health checks show as "none" and cannot drive the container-down alert planned for launch (5.4 in #25). ## Scope - Add `GET /healthz` to the FastAPI app. - Return `200` on success, `503` when the check fails. - Success condition: app is up **and** the DB is reachable. A trivial `SELECT 1` via the SQLAlchemy session is enough; the SQLite file is the only data store. - No auth. The Traefik basic-auth middleware will protect the rest of the app, but the healthcheck must remain unauthenticated so the Docker `HEALTHCHECK` (running inside the container) and any infra probes can hit it. ## Out of scope - `/readyz` / `/livez` split. One endpoint is enough for a single-container app with no warm-up phase. - Application-level metrics (`/metrics`) — not on the launch list (5.2 in #25). ## Deliverables - Route handler + tests. - `HEALTHCHECK` directive in the eventual `Dockerfile` / Compose service once the deploy scaffolding lands. Tracks work that blocks first deploy per #25.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
docs/session-3
fix/proxy-headers
feat/deploy-workflow
feat/compose
feat/dockerfile
feat/23-mcp-proposal-doc
No results found.
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: archeious/quartermaster#26
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?