This document provides a comprehensive overview of the Rust codebase architecture, organizing all modules by their functional responsibilities and relationships within the deployment architecture.
The project follows Domain-Driven Design principles with a layered architecture that enforces clear separation of concerns and dependency rules:
┌─────────────────────────────────────┐
│ Presentation Layer │
│ (CLI, User Output, Command │
│ Dispatch, Error Display) │
│ src/presentation/ │
└────────────┬────────────────────────┘
│ depends on
↓
┌─────────────────────────────────────┐
│ Application Layer │
│ (Commands, Use Cases, Steps) │
│ src/application/ │
└────────────┬────────────────────────┘
│ depends on
↓
┌─────────────────────────────────────┐
│ Domain Layer │
│ (Business Logic, Entities, │
│ Value Objects) │
│ src/domain/ │
└─────────────────────────────────────┘
↑
│ depends on
│
┌─────────────────────────────────────┐
│ Infrastructure Layer │
│ (External Tools, File System, │
│ SSH, Templates, Trace Writers) │
│ src/infrastructure/ │
└─────────────────────────────────────┘
Presentation Layer (src/presentation/):
- Purpose: User interface and interaction handling
- Contains: CLI parsing, command dispatch, user output, error presentation, help systems
- Rules: Depends on application layer, handles all user-facing concerns
- Example: CLI subcommands calling application command handlers with user-friendly error messages
- Module Structure:
input/cli/- Command-line argument parsing and validationcontrollers/- Command execution controllers and dispatch logicdispatch/- Command routing and execution contextviews/- User output formatting and verbosity controlerrors.rs- Unified error types with tiered help system
Domain Layer (src/domain/):
- Purpose: Core business logic and domain entities
- Contains: Entities (Environment), Value Objects (EnvironmentName, TraceId), State Machine (type-state pattern)
- Rules: No dependencies on infrastructure or application layers
- Example:
Environment<S>entity with type-state pattern for deployment lifecycle
Application Layer (src/application/):
- Purpose: Use cases and command orchestration
- Contains: Commands, Steps, Application services
- Rules: Depends on domain layer, coordinates infrastructure services
- Example:
ProvisionCommandorchestrating provisioning workflow
Infrastructure Layer (src/infrastructure/):
- Purpose: External integrations and technical implementations
- Contains: File system operations, SSH clients, OpenTofu/Ansible wrappers, trace writers
- Rules: Implements domain interfaces, depends on domain layer
- Example:
ProvisionTraceWriterimplementing trace file persistence
The fundamental rule is that dependencies flow inward toward the domain:
- Presentation → Application → Domain (✅ Correct)
- Infrastructure → Domain (✅ Correct)
- Domain → Application (❌ Forbidden)
- Domain → Infrastructure (❌ Forbidden)
- Domain → Presentation (❌ Forbidden)
- Application → Presentation (❌ Forbidden)
This ensures the domain layer remains pure business logic, free from technical implementation details and user interface concerns. The presentation layer orchestrates the application layer but never contains business logic.
Architectural Foundation: This architecture provides clear separation of concerns and enables scalable, maintainable code organization through distinct abstraction layers.
The project implements a three-level architecture for deployment automation:
Direct mapping to console commands - Top-level operations that users invoke
- Orchestrates multiple steps to achieve command objectives
- Manages command-specific error handling and reporting
- Currently implemented:
CreateCommand,ProvisionCommand,ConfigureCommand,TestCommand,DestroyCommand - Available CLI commands:
create template,create environment,provision,configure,test,destroy
Reusable building blocks - Modular operations that can be composed into commands
- Independent, testable units of work
- Can be reused across multiple commands
- Handle specific deployment tasks (template rendering, infrastructure operations, etc.)
- Organized by operation type in dedicated directories
Operations executed on remote servers - SSH-based actions on provisioned infrastructure
- Validate remote server state and configuration
- Execute maintenance and setup tasks via SSH
- Can be wrapped into Steps for command composition
This architecture is supported by:
- External Tool Adapters - Integration with external tools (
OpenTofu,Ansible,LXD,SSH) - Template System - Configuration template rendering and management
- E2E Framework - End-to-end testing and validation infrastructure
The typical deployment flow follows this pattern:
- Commands receive user input and orchestrate the deployment process
- Steps execute specific deployment operations in sequence:
- Rendering - Generate configuration files from templates
- Infrastructure - Provision and manage infrastructure resources
- Connectivity - Establish and verify network connections
- System - Configure system-level settings
- Software - Install and configure required software
- Validation - Verify successful installation and configuration
- Application - Deploy and manage applications
- Remote Actions perform low-level operations on remote systems
- External Tool Adapters provide integration with external tools
- Template System manages configuration generation throughout the process
Commands orchestrate multiple steps to achieve their objectives. Here's how ProvisionCommand works:
impl ProvisionCommand {
pub async fn execute(&mut self) -> Result<Environment<Provisioned>, ProvisionCommandError> {
// Execute steps in sequence
self.render_opentofu_templates().await?;
self.initialize_infrastructure().await?;
self.plan_infrastructure().await?;
self.apply_infrastructure().await?;
let instance_info = self.get_instance_info().await?;
self.render_ansible_templates(&instance_info.ip_address).await?;
self.wait_for_ssh_connectivity(&instance_info.ip_address).await?;
self.wait_for_cloud_init(&instance_info.ip_address).await?;
Ok(provisioned_environment)
}
// Each method delegates to corresponding Step structs
async fn render_opentofu_templates(&self) -> Result<(), TofuTemplateRendererError> {
RenderOpenTofuTemplatesStep::new(&self.tofu_renderer, &self.config)
.execute().await
}
// ... other step delegations
}All modules include comprehensive //! documentation with:
- Clear module purpose descriptions
- Key features and functionality
- Integration points with other modules
- Usage context and examples where appropriate
Bootstrap Module:
Application initialization and lifecycle management:
- ✅
src/bootstrap/mod.rs- Bootstrap module root with re-exports - ✅
src/bootstrap/app.rs- Main application bootstrap and entry point logic - ✅
src/bootstrap/container.rs- Dependency injection container (Services) - ✅
src/bootstrap/help.rs- Help and usage information display - ✅
src/bootstrap/logging.rs- Logging configuration and utilities
Root Level Files:
- ✅
src/main.rs- Main binary entry point - ✅
src/lib.rs- Library root module
Binary Files:
- ✅
src/bin/linter.rs- Code quality linting binary - ✅
src/bin/e2e-deployment-workflow-tests.rs- E2E deployment workflow tests - ✅
src/bin/e2e-infrastructure-lifecycle-tests.rs- E2E infrastructure lifecycle tests - ✅
src/bin/e2e-complete-workflow-tests.rs- Complete E2E workflow test suite
CLI Interface and User Interaction:
- ✅
src/presentation/mod.rs- Presentation layer root module with exports - ✅
src/presentation/input/cli/- Command-line interface parsing and structureinput/cli/mod.rs- Main Cli struct and global argument definitionsinput/cli/args.rs- Global CLI arguments (logging configuration)input/cli/commands.rs- Subcommand definitions (create, provision, configure, test, destroy)
- ✅
src/presentation/controllers/- Command execution controllerscontrollers/create/- Create command with subcommands (template, environment)controllers/provision/- Provision command handlercontrollers/configure/- Configure command handlercontrollers/test/- Test command handlercontrollers/destroy/- Destroy command handler
- ✅
src/presentation/dispatch/- Command routing and execution context - ✅
src/presentation/views/- User output formatting and message rendering - ✅
src/presentation/errors.rs- Unified error types with tiered help system
Core Domain Entities:
- ✅
src/domain/mod.rs- Domain layer root module - ✅
src/domain/environment/mod.rs- Environment entity and aggregate root - ✅
src/domain/environment/name.rs- Environment name value object - ✅
src/domain/environment/trace_id.rs- Trace identifier value object - ✅
src/domain/environment/repository.rs- Environment repository trait - ✅
src/domain/environment/state/- Environment state machine (type-state pattern) - ✅
src/domain/instance_name.rs- Instance name value object - ✅
src/domain/profile_name.rs- Profile name value object
Domain Template System:
- ✅
src/domain/template/mod.rs- Template domain module - ✅
src/domain/template/engine.rs- Template engine abstraction - ✅
src/domain/template/file.rs- Template file domain entity - ✅
src/domain/template/file_ops.rs- Template file operations
Level 1: High-Level Commands:
- ✅
src/application/mod.rs- Application layer root module - ✅
src/application/command_handlers/mod.rs- Command handler coordination - ✅
src/application/command_handlers/create/- Environment creation command handler - ✅
src/application/command_handlers/provision/- Infrastructure provisioning command handler - ✅
src/application/command_handlers/configure/- Infrastructure configuration command handler - ✅
src/application/command_handlers/test/- Infrastructure testing command handler - ✅
src/application/command_handlers/destroy/- Infrastructure destruction command handler
Level 2: Granular Deployment Steps:
Steps are the core building blocks of deployment workflows, providing reusable, composable operations.
Infrastructure Steps:
- ✅
src/application/steps/infrastructure/mod.rs- Infrastructure lifecycle management - ✅
src/application/steps/infrastructure/initialize.rs- Initialize OpenTofu backend - ✅
src/application/steps/infrastructure/apply.rs- Apply infrastructure changes - ✅
src/application/steps/infrastructure/get_instance_info.rs- Retrieve instance information - ✅
src/application/steps/infrastructure/plan.rs- Generate execution plans - ✅
src/application/steps/infrastructure/validate.rs- Validate infrastructure configuration
System-Level Steps:
- ✅
src/application/steps/system/mod.rs- System-level configuration steps - ✅
src/application/steps/system/wait_cloud_init.rs- Wait for cloud-init completion
Template Rendering Steps:
- ✅
src/application/steps/rendering/mod.rs- Template rendering coordination - ✅
src/application/steps/rendering/opentofu_templates.rs- Generate OpenTofu configurations - ✅
src/application/steps/rendering/ansible_templates.rs- Generate Ansible configurations
Software Installation Steps:
- ✅
src/application/steps/software/mod.rs- Software installation coordination - ✅
src/application/steps/software/docker.rs- Install Docker engine - ✅
src/application/steps/software/docker_compose.rs- Install Docker Compose
Validation Steps:
- ✅
src/application/steps/validation/mod.rs- System and software validation - ✅
src/application/steps/validation/docker.rs- Validate Docker installation - ✅
src/application/steps/validation/docker_compose.rs- Verify Docker Compose - ✅
src/application/steps/validation/cloud_init.rs- Confirm cloud-init completion
Connectivity Steps:
- ✅
src/application/steps/connectivity/mod.rs- Network connectivity operations - ✅
src/application/steps/connectivity/wait_ssh_connectivity.rs- Wait for SSH access
Application Steps:
- ✅
src/application/steps/application/mod.rs- Application deployment coordination
External Tool Adapters:
Generic CLI wrappers for external tools (moved from shared/ and infrastructure/):
- ✅
src/adapters/mod.rs- Adapter module root with re-exports - ✅
src/adapters/ansible/mod.rs- Ansible CLI wrapper - ✅
src/adapters/docker/- Docker CLI wrapper - ✅
src/adapters/lxd/- LXD CLI wrapper (client, instance management, JSON parsing) - ✅
src/adapters/ssh/- SSH client wrapper - ✅
src/adapters/tofu/- OpenTofu CLI wrapper (client, JSON parsing)
External Tool Configuration (Application-Specific):
Application-specific template rendering and configuration for external tools:
Ansible Configuration:
- ✅
src/infrastructure/external_tools/ansible/mod.rs- Ansible integration root - ✅
src/infrastructure/external_tools/ansible/template/mod.rs- Ansible templates - ✅
src/infrastructure/external_tools/ansible/template/renderer/mod.rs- Template rendering - ✅
src/infrastructure/external_tools/ansible/template/renderer/inventory.rs- Inventory rendering - ✅
src/infrastructure/external_tools/ansible/template/wrappers/inventory/- Inventory template wrappers
OpenTofu Configuration:
- ✅
src/infrastructure/external_tools/tofu/mod.rs- OpenTofu integration root - ✅
src/infrastructure/external_tools/tofu/template/mod.rs- OpenTofu templates - ✅
src/infrastructure/external_tools/tofu/template/renderer/mod.rs- Template rendering - ✅
src/infrastructure/external_tools/tofu/template/renderer/cloud_init.rs- Cloud-init rendering - ✅
src/infrastructure/external_tools/tofu/template/wrappers/lxd/- LXD template wrappers
Level 3: Remote System Operations (SSH-based, inside VM):
- ✅
src/infrastructure/remote_actions/mod.rs- Remote operations root (SSH-based validators) - ✅
src/infrastructure/remote_actions/validators/cloud_init.rs- Validate cloud-init completion (via SSH) - ✅
src/infrastructure/remote_actions/validators/docker.rs- Verify Docker installation (via SSH) - ✅
src/infrastructure/remote_actions/validators/docker_compose.rs- Validate Docker Compose (via SSH)
Level 3: External Validators (E2E, outside VM):
- ✅
src/infrastructure/external_validators/mod.rs- External validators root (HTTP-based E2E validation) - ✅
src/infrastructure/external_validators/running_services.rs- Validate tracker services externally (validates all HTTP tracker instances via HTTP health checks from test runner)
Persistence Layer:
- ✅
src/infrastructure/persistence/mod.rs- Persistence layer root - ✅
src/infrastructure/persistence/filesystem/mod.rs- Filesystem persistence - ✅
src/infrastructure/persistence/filesystem/file_environment_repository.rs- Environment file storage - ✅
src/infrastructure/persistence/filesystem/file_lock.rs- File locking mechanism - ✅
src/infrastructure/persistence/filesystem/json_file_repository.rs- Generic JSON file repository - ✅
src/infrastructure/persistence/repository_factory.rs- Repository factory
Trace System:
- ✅
src/infrastructure/trace/mod.rs- Trace system root - ✅
src/infrastructure/trace/common.rs- Common trace utilities - ✅
src/infrastructure/trace/provision.rs- Provision command trace writer - ✅
src/infrastructure/trace/configure.rs- Configure command trace writer
Cross-Cutting Concerns:
Generic utilities used across all layers:
- ✅
src/shared/mod.rs- Shared utilities root - ✅
src/shared/command/mod.rs- Command execution utilities (used by all adapters) - ✅
src/shared/clock.rs- Time abstraction for deterministic testing - ✅
src/shared/error/mod.rs- Shared error types - ✅
src/shared/username.rs- Username value object
Note: SSH and Docker adapters have been moved to src/adapters/. Network testing utilities (port_checker, port_usage_checker) have been moved to src/testing/network/.
E2E Testing Framework:
- ✅
src/testing/mod.rs- Testing framework root module - ✅
src/testing/e2e/mod.rs- E2E testing framework coordination - ✅
src/testing/e2e/containers/mod.rs- Container-based testing infrastructure - ✅
src/testing/e2e/containers/actions/- E2E test actions - ✅
src/testing/e2e/containers/provisioned.rs- Provisioned container management - ✅
src/testing/integration/- Integration testing utilities - ✅
src/testing/fixtures.rs- Reusable test fixtures - ✅
src/testing/mock_clock.rs- Mock clock implementation for deterministic testing
Network Testing Utilities:
- ✅
src/testing/network/mod.rs- Network testing utilities root - ✅
src/testing/network/port_checker.rs- TCP port connectivity checking - ✅
src/testing/network/port_usage_checker.rs- Port usage validation and process identification
Configuration:
- ✅
src/config/mod.rs- Application configuration management
The typical deployment flow follows this pattern:
- Commands (Application Layer) receive user input and orchestrate the deployment
- Steps (Application Layer) execute specific operations by coordinating:
- Domain Entities - Environment state transitions
- Infrastructure Services - External tool adapters, persistence, remote actions
- Infrastructure Layer handles all external integrations:
- External tool execution (OpenTofu, Ansible, LXD)
- File system operations (templates, state persistence)
- Remote SSH operations
- Trace file generation
- DDD Principles: Clear separation between domain logic, application use cases, and infrastructure
- Reduced complexity: Large operations broken into focused components
- Better testability: Each layer and component can be tested independently
- Type Safety: Type-state pattern prevents invalid state transitions at compile time
- Modular structure: Changes in one layer don't affect others
- Clear interfaces: Well-defined boundaries between layers
- Easy extension: Adding new commands/steps/actions follows established patterns
- Dependency Direction: Domain remains independent of infrastructure details
- State Management: Type-safe environment state transitions with persistence
- Error Context: Structured error handling with trace files for debugging
- Progress Reporting: User-friendly feedback during long-running operations
- File Locking: Prevents concurrent access conflicts
- Total Modules: ~100+ Rust files
- Architecture Layers: 4 (Presentation, Application, Domain, Infrastructure) + Shared
- External Tool Integrations: 3 (OpenTofu, Ansible, LXD)
- Step Categories: 7 (Infrastructure, System, Software, Validation, Connectivity, Application, Rendering)
- State Types: 13+ environment states with type-state pattern
When working on this codebase, follow these guidelines to maintain architectural integrity:
When creating new functionality, choose the appropriate layer:
- Presentation Layer (
src/presentation/): CLI commands, user output, error display, input validation - Application Layer (
src/application/): Use cases, command orchestration, workflow coordination - Domain Layer (
src/domain/): Business entities, value objects, domain rules, state machines - Infrastructure Layer (
src/infrastructure/): External tool integration, file operations, remote actions
- CLI and User Interface: Always in
src/presentation/ - Business Logic: Always in
src/domain/ - Use Case Orchestration: Always in
src/application/ - External Integration: Always in
src/infrastructure/ - Cross-Layer Utilities: Only in
src/shared/(use sparingly)
- ✅ Allowed: Presentation → Application → Domain ← Infrastructure
- ❌ Forbidden: Domain depending on any other layer
- ❌ Forbidden: Application depending on Presentation or Infrastructure
- ❌ Forbidden: Circular dependencies between any layers
- Error Handling: Use structured enums with
thiserror, implement tiered help systems - Module Organization: Follow docs/contributing/module-organization.md
- Testing: Layer-appropriate testing (unit tests per layer, integration tests across layers)
Before implementing new features:
- Identify the correct layer based on the functionality's purpose
- Check architectural constraints - ensure no forbidden dependencies
- Follow module organization - public before private, important before secondary
- Implement proper error handling - structured errors with actionable messages
- Add comprehensive tests - appropriate for the layer and functionality
- Domain-Driven Design: Pure domain logic independent of infrastructure
- Separation of Concerns: Each module has a single, well-defined responsibility
- Dependency Inversion: Depend on abstractions, not concretions
- Type Safety: Leverage Rust's type system for correctness
- Composability: Steps combine to create complex deployment workflows
- Observability: Comprehensive logging and trace file generation
- Testability: E2E framework enables full deployment workflow testing