Skip to content

Add proper readiness checks to health interceptor #121

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
smoreinis merged 2 commits into from
Dec 29, 2025
Merged

Add proper readiness checks to health interceptor #121

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
b673b8c
Add proper readiness checks to health interceptor
smoreinis Dec 24, 2025
1685b76
Merge branch 'main' into perf/health-check-readiness-probes
smoreinis Dec 29, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
263 changes: 219 additions & 44 deletions agentex/src/api/health_interceptor.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,31 +1,50 @@
"""
Pure ASGI middleware for fast health check responses.
Pure ASGI middleware for health check responses.

This middleware intercepts health check requests at the ASGI level,
bypassing all Starlette/FastAPI middleware for maximum performance.
Kubernetes probes hit these endpoints frequently, so sub-millisecond
response time is critical.

Health check endpoints:
- /healthz: Liveness probe - fast, no dependency checks (sub-millisecond)
- /readyz: Readiness probe - checks DB, Redis, MongoDB connectivity
- /healthcheck: Alias for readiness probe
"""

import asyncio
import json
from typing import Any

from starlette.types import ASGIApp, Receive, Scope, Send

HEALTH_CHECK_PATHS: frozenset[str] = frozenset(
{
"/healthcheck",
"/healthz",
"/readyz",
}
)
# Liveness probes - fast, no dependency checks
LIVENESS_PATHS: frozenset[str] = frozenset({"/healthz"})

# Readiness probes - check dependencies
READINESS_PATHS: frozenset[str] = frozenset({"/readyz", "/healthcheck"})

# All health check paths
HEALTH_CHECK_PATHS: frozenset[str] = LIVENESS_PATHS | READINESS_PATHS

# Timeout for individual dependency checks (seconds)
DEPENDENCY_CHECK_TIMEOUT = 2.0

# Total timeout for all readiness checks (seconds)
READINESS_CHECK_TIMEOUT = 5.0


class HealthCheckInterceptor:
"""
Pure ASGI middleware that intercepts health check requests
before they reach the FastAPI middleware stack.

This provides sub-millisecond response times for Kubernetes probes
by avoiding BaseHTTPMiddleware task group overhead, logging,
and request body parsing.
Liveness (/healthz):
Returns 200 immediately - used by Kubernetes to detect stuck processes.
Sub-millisecond response time.

Readiness (/readyz, /healthcheck):
Checks database, Redis, and MongoDB connectivity.
Returns 200 if all dependencies are healthy, 503 otherwise.
Used by Kubernetes to decide whether to route traffic.

Only GET requests are intercepted. Other methods fall through
to FastAPI for proper 405 Method Not Allowed handling.
Expand All @@ -37,37 +56,193 @@ def __init__(self, app: ASGIApp) -> None:
self.app = app

async def __call__(self, scope: Scope, receive: Receive, send: Send) -> None:
if scope["type"] == "http" and scope["path"] in HEALTH_CHECK_PATHS:
if scope.get("method") == "GET":
await send(
{
"type": "http.response.start",
"status": 200,
"headers": [],
}
)
await send(
{
"type": "http.response.body",
"body": b"",
}
)
return
if scope["type"] != "http":
await self.app(scope, receive, send)
return

path = scope["path"]
method = scope.get("method")

# Handle liveness probe - fast path
if path in LIVENESS_PATHS:
if method == "GET":
await self._send_response(send, 200, {"status": "ok"})
else:
# Return 405 Method Not Allowed for non-GET requests
await send(
{
"type": "http.response.start",
"status": 405,
"headers": [(b"allow", b"GET")],
}
)
await send(
{
"type": "http.response.body",
"body": b"",
}
)
return
await self._send_method_not_allowed(send)
return

# Handle readiness probe - check dependencies
if path in READINESS_PATHS:
if method == "GET":
await self._handle_readiness_check(send)
else:
await self._send_method_not_allowed(send)
return

# Pass through to FastAPI
await self.app(scope, receive, send)

async def _handle_readiness_check(self, send: Send) -> None:
"""Check all dependencies and return appropriate status."""
try:
# Run all checks with overall timeout
results = await asyncio.wait_for(
self._check_all_dependencies(),
timeout=READINESS_CHECK_TIMEOUT,
)

# Determine overall health
all_healthy = all(r["healthy"] for r in results.values())
status_code = 200 if all_healthy else 503

response_body = {
"status": "ok" if all_healthy else "degraded",
"checks": results,
}

await self._send_response(send, status_code, response_body)

except TimeoutError:
await self._send_response(
send,
503,
{
"status": "timeout",
"error": "Health check timed out",
},
)
except Exception as e:
await self._send_response(
send,
503,
{
"status": "error",
"error": str(e),
},
)

async def _check_all_dependencies(self) -> dict[str, dict[str, Any]]:
"""Check all dependencies concurrently."""
# Import here to avoid circular imports and ensure dependencies are loaded
from src.config.dependencies import GlobalDependencies

deps = GlobalDependencies()

# Run all checks concurrently
postgres_task = self._check_postgres(deps)
redis_task = self._check_redis(deps)
mongodb_task = self._check_mongodb(deps)

results = await asyncio.gather(
postgres_task,
redis_task,
mongodb_task,
return_exceptions=True,
)

return {
"postgres": self._format_check_result(results[0]),
"redis": self._format_check_result(results[1]),
"mongodb": self._format_check_result(results[2]),
}

def _format_check_result(
self, result: dict[str, Any] | Exception
) -> dict[str, Any]:
"""Format a check result, handling exceptions."""
if isinstance(result, Exception):
return {"healthy": False, "error": str(result)}
return result

async def _check_postgres(self, deps: Any) -> dict[str, Any]:
"""Check PostgreSQL connectivity."""
from sqlalchemy import text

try:
engine = deps.database_async_read_write_engine
if engine is None:
return {"healthy": False, "error": "Engine not initialized"}

async with asyncio.timeout(DEPENDENCY_CHECK_TIMEOUT):
async with engine.connect() as conn:
await conn.execute(text("SELECT 1"))
Copy link
Collaborator

@RoxyFarhad RoxyFarhad Dec 29, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

random q: no pings for PostgreSQL?

Copy link
Collaborator Author

@smoreinis smoreinis Dec 29, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not sure what you mean by "pings" here? connecting to the engine feels similar (making sure the instance is reachable) and trying to run this basic query helps us confirm that the instance is actually handling requests as expected (as opposed to, say, being unresponsive)

Copy link
Collaborator

@RoxyFarhad RoxyFarhad Dec 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sorry, I meant is there no equivalent on a DB PING (like we do for mongo or redis) for postgresql? this is obviously good too


return {"healthy": True}
except TimeoutError:
return {"healthy": False, "error": "Connection timeout"}
except Exception as e:
return {"healthy": False, "error": str(e)}

async def _check_redis(self, deps: Any) -> dict[str, Any]:
"""Check Redis connectivity."""
try:
pool = deps.redis_pool
if pool is None:
return {"healthy": False, "error": "Pool not initialized"}

import redis.asyncio as redis_lib

async with asyncio.timeout(DEPENDENCY_CHECK_TIMEOUT):
client = redis_lib.Redis(connection_pool=pool)
await client.ping()

return {"healthy": True}
except TimeoutError:
return {"healthy": False, "error": "Connection timeout"}
except Exception as e:
return {"healthy": False, "error": str(e)}

async def _check_mongodb(self, deps: Any) -> dict[str, Any]:
"""Check MongoDB connectivity."""
try:
client = deps.mongodb_client
if client is None:
return {"healthy": False, "error": "Client not initialized"}

# MongoDB client is synchronous, run in thread pool
async with asyncio.timeout(DEPENDENCY_CHECK_TIMEOUT):
await asyncio.to_thread(client.admin.command, "ping")

return {"healthy": True}
except TimeoutError:
return {"healthy": False, "error": "Connection timeout"}
except Exception as e:
return {"healthy": False, "error": str(e)}

async def _send_response(
self, send: Send, status: int, body: dict[str, Any]
) -> None:
"""Send a JSON response."""
body_bytes = json.dumps(body).encode("utf-8")
await send(
{
"type": "http.response.start",
"status": status,
"headers": [
(b"content-type", b"application/json"),
(b"content-length", str(len(body_bytes)).encode()),
],
}
)
await send(
{
"type": "http.response.body",
"body": body_bytes,
}
)

async def _send_method_not_allowed(self, send: Send) -> None:
"""Send 405 Method Not Allowed response."""
await send(
{
"type": "http.response.start",
"status": 405,
"headers": [(b"allow", b"GET")],
}
)
await send(
{
"type": "http.response.body",
"body": b"",
}
)
Loading
Loading