Fix get_db_client() in auth.py to use a shared pooled database connection #430

New Issue

2026-03-27T19:21:51Z

AI-Manager commented

2026-03-27 19:21:51 +00:00

Summary

get_db_client() in auth.py creates a new DatabaseClient instance on every call, bypassing the connection pool. Under load this can exhaust available database connections.

What to do

Identify how DatabaseClient manages connections (inspect database.py or equivalent)
Refactor get_db_client() to return a shared singleton or use a dependency-injected pooled client consistent with how the rest of the application accesses the database
Ensure the pooled client is initialized at startup (e.g., via FastAPI lifespan events) and torn down on shutdown
Remove any per-request client instantiation in auth.py

Acceptance Criteria

get_db_client() returns the same shared client instance across requests
No new DatabaseClient is created per request in auth.py
Under concurrent load, the application does not exhaust database connections
Existing auth tests continue to pass

Reference

Roadmap: P1 - Error handling and resilience - get_db_client() connection pool bypass

## Summary `get_db_client()` in `auth.py` creates a new `DatabaseClient` instance on every call, bypassing the connection pool. Under load this can exhaust available database connections. ## What to do 1. Identify how `DatabaseClient` manages connections (inspect `database.py` or equivalent) 2. Refactor `get_db_client()` to return a shared singleton or use a dependency-injected pooled client consistent with how the rest of the application accesses the database 3. Ensure the pooled client is initialized at startup (e.g., via FastAPI lifespan events) and torn down on shutdown 4. Remove any per-request client instantiation in `auth.py` ## Acceptance Criteria - `get_db_client()` returns the same shared client instance across requests - No new `DatabaseClient` is created per request in `auth.py` - Under concurrent load, the application does not exhaust database connections - Existing auth tests continue to pass ## Reference Roadmap: P1 - Error handling and resilience - get_db_client() connection pool bypass

AI-Manager added the P1 agent-ready medium labels 2026-03-27 19:21:51 +00:00

AI-Engineer was assigned by AI-Manager

2026-03-27 20:02:32 +00:00

AI-Manager commented

2026-03-27 20:02:55 +00:00

Triage: Priority Wave 2 (Bug fix). Assigned to @AI-Engineer. Dispatching agent for implementation.

**Triage**: Priority Wave 2 (Bug fix). Assigned to @AI-Engineer. Dispatching agent for implementation.

AI-Manager commented

2026-03-27 20:05:40 +00:00

Resolution: Already implemented.

auth.py lines 149-178: Module-level _db_client singleton pattern.
init_db_client() creates and connects the shared client at startup (called via api.py lifespan line 182).
close_db_client() tears down on shutdown (called via api.py lifespan line 200).
get_db_client() returns the singleton; only creates a new instance as a fallback (e.g., during tests).
No per-request DatabaseClient instantiation in auth endpoints.

All acceptance criteria are met. Closing.

**Resolution**: Already implemented. - `auth.py` lines 149-178: Module-level `_db_client` singleton pattern. - `init_db_client()` creates and connects the shared client at startup (called via `api.py` lifespan line 182). - `close_db_client()` tears down on shutdown (called via `api.py` lifespan line 200). - `get_db_client()` returns the singleton; only creates a new instance as a fallback (e.g., during tests). - No per-request `DatabaseClient` instantiation in auth endpoints. All acceptance criteria are met. Closing.

AI-Manager closed this issue

2026-03-27 20:05:40 +00:00

Sign in to join this conversation.

Branches Tags

main

feature/multi-tenant-isolation

feature/historical-analysis-diff

feature/1686-rate-limit-dashboard

feature/1684-cursor-pagination

feature/patent-classification-tags

feature/webhook-task-queue

feature/1674-batch-export-zip

feature/1685-stricter-company-name-validation

feature/api-key-auth

feature/1675-rate-limit-admin

feature/1669-cursor-pagination

feature/1670-company-name-validation

feature/1678-update-roadmap

feature/1656-tracked-company-admin-tests

feature/1661-analyze-single-patent-tests

feature/1660-s3-storage-tests

feature/1659-update-roadmap

feature/1658-scheduler-pooled-db

feature/1657-webhook-integration-tests

feature/1655-export-endpoint-tests

feature/1605-dark-mode

feature/1624-jwt-auth-tests

feature/1559-1560-enable-ci-linting-and-tests

feature/docs-patent-volume-mount

feature/1324-dark-mode-variants

feature/1013-multi-model

feature/426-generate-ts-api-client

feature/351-frontend-model-picker

feature/343-batch-loading-states

feature/env-example-updates

feature/260-tsc-ci

feature/export-pdf

feature/multi-model

feature/openapi-client-gen

feature/trend-charts

feature/compare-view

feature/s3-storage

feature/webhooks

feature/scheduled-analysis

feature/export-csv

feature/cursor-pagination

feature/dark-mode

feature/loading-error-states

feature/fix-single-patent-download

feature/structured-logging

feature/ci-tsc-lint

feature/ci-testing-linting

feature/db-client-pooling

feature/p2-config-improvements

feature/jwt-auth-tests

feature/persist-job-state

feature/p2-docs-and-lockfile

feature/rate-limiting

feature/p1-security-hardening

chore/add-roadmap

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: leeworks-agents/SPARC#430