DEV Community: Izu Tolandona The latest articles on DEV Community by Izu Tolandona (@itodona). https://dev.to/itodona https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3784123%2F9fd00f00-7de0-4aa0-8a35-ed1403ff51fd.jpg DEV Community: Izu Tolandona https://dev.to/itodona en #8 - Shipping a Go AI Agent to Production: 18MB Docker Image, 5 Services, Zero Downtime Izu Tolandona Sat, 21 Feb 2026 17:00:53 +0000 https://dev.to/itodona/8-shipping-a-go-ai-agent-to-production-18mb-docker-image-5-services-zero-downtime-1537 https://dev.to/itodona/8-shipping-a-go-ai-agent-to-production-18mb-docker-image-5-services-zero-downtime-1537 <p><em>Part 8 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>The most common advice for deploying Go applications is: "compile a binary and run it." That is true, but production requires more: automated database migrations, a proxy for LLM providers, a cache layer, health checks, graceful shutdown, and resource limits.</p> <p>This article walks through every aspect of deploying this AI agent API to production. By the end, you will understand the multi-stage Dockerfile that produces an 18MB image, the 5-service Docker Compose stack, the graceful shutdown pattern, and how LiteLLM lets you swap GPT-4o for Claude with a config file change.</p> <h2> The Multi-Stage Dockerfile: Builder → Scratch </h2> <p>The <code>deployments/Dockerfile</code> uses two stages:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="c"># Stage 1: Build</span> <span class="k">FROM</span><span class="w"> </span><span class="s">golang:1.24-alpine</span><span class="w"> </span><span class="k">AS</span><span class="w"> </span><span class="s">builder</span> <span class="k">RUN </span>apk add <span class="nt">--no-cache</span> git ca-certificates tzdata <span class="k">WORKDIR</span><span class="s"> /app</span> <span class="c"># Cache dependencies first (Docker layer caching)</span> <span class="k">COPY</span><span class="s"> go.mod go.sum ./</span> <span class="k">RUN </span>go mod download <span class="c"># Then copy source</span> <span class="k">COPY</span><span class="s"> . .</span> <span class="c"># Build a statically-linked binary</span> <span class="k">ARG</span><span class="s"> VERSION=dev</span> <span class="k">RUN </span><span class="nv">CGO_ENABLED</span><span class="o">=</span>0 <span class="nv">GOOS</span><span class="o">=</span>linux <span class="nv">GOARCH</span><span class="o">=</span>amd64 go build <span class="se">\ </span> <span class="nt">-ldflags</span><span class="o">=</span><span class="s2">"-w -s -X main.version=</span><span class="k">${</span><span class="nv">VERSION</span><span class="k">}</span><span class="s2">"</span> <span class="se">\ </span> <span class="nt">-o</span> /app/server ./cmd/api <span class="c"># Stage 2: Final image</span> <span class="k">FROM</span><span class="s"> scratch</span> <span class="c"># Copy TLS certificates (needed for HTTPS calls to LiteLLM, PostgreSQL SSL)</span> <span class="k">COPY</span><span class="s"> --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/</span> <span class="c"># Copy timezone data (needed for correct time.Now() behavior)</span> <span class="k">COPY</span><span class="s"> --from=builder /usr/share/zoneinfo /usr/share/zoneinfo</span> <span class="c"># Copy the compiled binary</span> <span class="k">COPY</span><span class="s"> --from=builder /app/server /server</span> <span class="c"># Copy migrations — the binary and its migrations ship as one unit</span> <span class="k">COPY</span><span class="s"> --from=builder /app/internal/infrastructure/persistence/postgres/migrations /migrations</span> <span class="k">EXPOSE</span><span class="s"> 8080</span> <span class="k">ENTRYPOINT</span><span class="s"> ["/server"]</span> </code></pre> </div> <h3> Why <code>FROM scratch</code>? </h3> <p><code>FROM scratch</code> is Docker's empty base image. No shell, no utilities, no package manager, no OS userspace. The final image contains exactly:</p> <ol> <li>CA certificates (for TLS)</li> <li>Timezone data</li> <li>The compiled Go binary</li> <li>The SQL migration files</li> </ol> <p>That is it. The result is an 18MB image.</p> <p>Compare this to a typical Dockerfile using <code>FROM golang:1.24</code> as the final stage — that image is 1.2GB because it includes the entire Go toolchain and Alpine Linux. Using <code>FROM alpine</code> as the final stage gets you to ~15MB for the OS layer + your binary. <code>FROM scratch</code> gets you to just the binary.</p> <h3> Why <code>CGO_ENABLED=0</code>? </h3> <p>Go can link against C libraries (CGO), but that creates a binary that depends on the system's C standard library being present at runtime. <code>FROM scratch</code> has no C library.</p> <p><code>CGO_ENABLED=0</code> compiles a fully static binary — all code, including any normally-CGO parts, is compiled into the binary itself. The resulting binary runs anywhere with no dynamic library dependencies.</p> <p>The flags on the build command:</p> <ul> <li> <code>GOOS=linux GOARCH=amd64</code> — explicit cross-compilation target (important if you build on macOS/ARM)</li> <li> <code>-w</code> — strip DWARF debug information (reduces binary size)</li> <li> <code>-s</code> — strip symbol table (reduces binary size further)</li> <li> <code>-X main.version=${VERSION}</code> — embed the version string at compile time</li> </ul> <h3> The Migration Trick </h3> <div class="highlight js-code-highlight"> <pre class="highlight docker"><code><span class="k">COPY</span><span class="s"> --from=builder /app/internal/infrastructure/persistence/postgres/migrations /migrations</span> </code></pre> </div> <p>The migration SQL files are copied into the final image alongside the binary. This means the binary and its database migrations are always deployed together as a single atomic unit. You cannot accidentally deploy a binary that requires migrations that were not deployed.</p> <p>In the Docker Compose setup, a separate <code>migrate</code> container uses <code>golang-migrate</code> to run these files at startup. In a Kubernetes deployment, you would run this as an init container before the API pod starts.</p> <h2> The 5-Service Docker Compose Stack </h2> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">services</span><span class="pi">:</span> <span class="na">api</span><span class="pi">:</span> <span class="c1"># The Go agent API</span> <span class="na">postgres</span><span class="pi">:</span> <span class="c1"># PostgreSQL 16 (persistent storage)</span> <span class="na">redis</span><span class="pi">:</span> <span class="c1"># Redis 7 (rate limiting, caching)</span> <span class="na">litellm</span><span class="pi">:</span> <span class="c1"># LLM proxy (GPT-4o, Claude, Gemini)</span> <span class="na">migrate</span><span class="pi">:</span> <span class="c1"># golang-migrate (one-shot migration runner)</span> </code></pre> </div> <h3> Startup Order with Health Checks </h3> <p>The most important aspect of the Compose configuration is startup ordering:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">api</span><span class="pi">:</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> <span class="na">redis</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> <span class="na">migrate</span><span class="pi">:</span> <span class="na">depends_on</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> </code></pre> </div> <p>Each <code>depends_on</code> with <code>condition: service_healthy</code> means Docker waits for the health check to pass before starting the dependent service. Without this, the API might start before PostgreSQL is ready to accept connections — leading to startup failures.</p> <p>The health checks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">postgres</span><span class="pi">:</span> <span class="na">healthcheck</span><span class="pi">:</span> <span class="na">test</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">CMD-SHELL"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">pg_isready</span><span class="nv"> </span><span class="s">-U</span><span class="nv"> </span><span class="s">postgres"</span><span class="pi">]</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">timeout</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">retries</span><span class="pi">:</span> <span class="m">5</span> <span class="na">redis</span><span class="pi">:</span> <span class="na">healthcheck</span><span class="pi">:</span> <span class="na">test</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">CMD"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">redis-cli"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">ping"</span><span class="pi">]</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">timeout</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">retries</span><span class="pi">:</span> <span class="m">5</span> <span class="na">api</span><span class="pi">:</span> <span class="na">healthcheck</span><span class="pi">:</span> <span class="na">test</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">CMD"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">wget"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">-q"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">--spider"</span><span class="pi">,</span> <span class="s2">"</span><span class="s">http://localhost:8080/health"</span><span class="pi">]</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">10s</span> <span class="na">timeout</span><span class="pi">:</span> <span class="s">5s</span> <span class="na">retries</span><span class="pi">:</span> <span class="m">3</span> </code></pre> </div> <p>Startup sequence:</p> <ol> <li>Postgres and Redis start simultaneously</li> <li>Once both are healthy, <code>migrate</code> runs migrations</li> <li>Once Postgres is healthy (migrate could have altered tables), <code>api</code> starts</li> <li> <code>api</code> becomes healthy once <code>/health</code> returns 200</li> </ol> <h3> Memory Limits </h3> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">api</span><span class="pi">:</span> <span class="na">deploy</span><span class="pi">:</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">128M</span> <span class="na">reservations</span><span class="pi">:</span> <span class="na">memory</span><span class="pi">:</span> <span class="s">64M</span> </code></pre> </div> <p>The API is limited to 128MB RAM. This is feasible because:</p> <ul> <li>The Go binary itself is ~18MB on disk, ~30MB in memory with stack/heap</li> <li>Connection pools (PostgreSQL, Redis) use minimal memory</li> <li>The main variable cost is concurrent request processing — the Eino workflow state per request is small</li> </ul> <p>In practice, the API uses 30-60MB at moderate load. The 128MB limit provides headroom for spikes while preventing a single runaway process from consuming all available memory.</p> <p>Redis has a memory limit configured in its startup command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">redis</span><span class="pi">:</span> <span class="na">command</span><span class="pi">:</span> <span class="s">redis-server --appendonly yes --maxmemory 128mb --maxmemory-policy allkeys-lru</span> </code></pre> </div> <p><code>allkeys-lru</code> means when Redis hits 128MB, it evicts the least-recently-used keys. For rate limiting counters that expire after 60 seconds or 24 hours anyway, this is acceptable — a missed eviction just means a slightly less accurate rate limit count, not data corruption.</p> <h2> LiteLLM: Swap LLM Providers With a Config File </h2> <p>LiteLLM is the secret weapon. It is an OpenAI-compatible proxy that translates requests to any LLM provider's API format. The Go code sends OpenAI-format requests to LiteLLM. LiteLLM forwards them to whatever provider you configure.</p> <p>The config in <code>deployments/litellm_config.yaml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">model_list</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">model_name</span><span class="pi">:</span> <span class="s">gpt-4o-mini</span> <span class="na">litellm_params</span><span class="pi">:</span> <span class="na">model</span><span class="pi">:</span> <span class="s">openai/gpt-4o-mini</span> <span class="na">api_key</span><span class="pi">:</span> <span class="s">os.environ/OPENAI_API_KEY</span> <span class="pi">-</span> <span class="na">model_name</span><span class="pi">:</span> <span class="s">claude-haiku</span> <span class="na">litellm_params</span><span class="pi">:</span> <span class="na">model</span><span class="pi">:</span> <span class="s">anthropic/claude-3-haiku-20240307</span> <span class="na">api_key</span><span class="pi">:</span> <span class="s">os.environ/ANTHROPIC_API_KEY</span> <span class="pi">-</span> <span class="na">model_name</span><span class="pi">:</span> <span class="s">gpt-4o</span> <span class="na">litellm_params</span><span class="pi">:</span> <span class="na">model</span><span class="pi">:</span> <span class="s">openai/gpt-4o</span> <span class="na">api_key</span><span class="pi">:</span> <span class="s">os.environ/OPENAI_API_KEY</span> </code></pre> </div> <p>To switch the default model from GPT-4o-mini to Claude Haiku: change <code>LLM_DEFAULT_MODEL=gpt-4o-mini</code> to <code>LLM_DEFAULT_MODEL=claude-haiku</code> in your <code>.env</code> file. Restart the API container. Done. Zero code changes.</p> <p>The Go code sends to <code>http://litellm:4000/chat/completions</code> with <code>model: "claude-haiku"</code>. LiteLLM looks up <code>claude-haiku</code> in its config, translates to Anthropic's API format, forwards the request, and translates the response back to OpenAI format. The Go code never knows the difference.</p> <p>This also enables:</p> <ul> <li> <strong>Cost optimization</strong>: use a cheaper model for general tasks, expensive model for complex coding</li> <li> <strong>Fallback routing</strong>: if OpenAI is down, route to Anthropic automatically</li> <li> <strong>A/B testing</strong>: route a percentage of traffic to different models</li> <li> <strong>Local models</strong>: point LiteLLM at an Ollama instance for self-hosted models</li> </ul> <h2> Graceful Shutdown: The Complete Pattern </h2> <p>The shutdown logic in <code>cmd/api/main.go</code> follows the standard Go pattern:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">main</span><span class="p">()</span> <span class="p">{</span> <span class="c">// ... setup ...</span> <span class="c">// Server starts in a goroutine</span> <span class="k">go</span> <span class="k">func</span><span class="p">()</span> <span class="p">{</span> <span class="n">slog</span><span class="o">.</span><span class="n">Info</span><span class="p">(</span><span class="s">"starting server"</span><span class="p">,</span> <span class="s">"addr"</span><span class="p">,</span> <span class="n">server</span><span class="o">.</span><span class="n">Addr</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">server</span><span class="o">.</span><span class="n">ListenAndServe</span><span class="p">();</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="o">&amp;&amp;</span> <span class="n">err</span> <span class="o">!=</span> <span class="n">http</span><span class="o">.</span><span class="n">ErrServerClosed</span> <span class="p">{</span> <span class="n">slog</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="s">"server error"</span><span class="p">,</span> <span class="s">"error"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="n">os</span><span class="o">.</span><span class="n">Exit</span><span class="p">(</span><span class="m">1</span><span class="p">)</span> <span class="p">}</span> <span class="p">}()</span> <span class="c">// Block until shutdown signal</span> <span class="n">quit</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">os</span><span class="o">.</span><span class="n">Signal</span><span class="p">,</span> <span class="m">1</span><span class="p">)</span> <span class="n">signal</span><span class="o">.</span><span class="n">Notify</span><span class="p">(</span><span class="n">quit</span><span class="p">,</span> <span class="n">syscall</span><span class="o">.</span><span class="n">SIGINT</span><span class="p">,</span> <span class="n">syscall</span><span class="o">.</span><span class="n">SIGTERM</span><span class="p">)</span> <span class="o">&lt;-</span><span class="n">quit</span> <span class="c">// Wait here until Ctrl+C or SIGTERM</span> <span class="n">slog</span><span class="o">.</span><span class="n">Info</span><span class="p">(</span><span class="s">"shutting down server..."</span><span class="p">)</span> <span class="c">// Give in-flight requests up to 30 seconds to complete</span> <span class="n">shutdownCtx</span><span class="p">,</span> <span class="n">shutdownCancel</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithTimeout</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">cfg</span><span class="o">.</span><span class="n">Server</span><span class="o">.</span><span class="n">ShutdownTimeout</span><span class="p">)</span> <span class="k">defer</span> <span class="n">shutdownCancel</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">server</span><span class="o">.</span><span class="n">Shutdown</span><span class="p">(</span><span class="n">shutdownCtx</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">slog</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="s">"server shutdown error"</span><span class="p">,</span> <span class="s">"error"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="n">slog</span><span class="o">.</span><span class="n">Info</span><span class="p">(</span><span class="s">"server stopped"</span><span class="p">)</span> <span class="c">// defer db.Close() and defer redisClient.Close() run here</span> <span class="p">}</span> </code></pre> </div> <p><code>server.Shutdown(ctx)</code> does the following:</p> <ol> <li>Stops accepting new connections immediately</li> <li>Waits for all in-flight requests to complete</li> <li>If the context times out, forcefully closes remaining connections</li> </ol> <p>This means a user in the middle of a streaming LLM response gets to finish. A 30-second timeout means a user who just started a long generation gets up to 30 seconds of grace. After that, the server forcefully closes.</p> <p><code>signal.Notify(quit, syscall.SIGINT, syscall.SIGTERM)</code> listens for:</p> <ul> <li> <code>SIGINT</code> — Ctrl+C in development</li> <li> <code>SIGTERM</code> — what Kubernetes and Docker send when stopping a container</li> </ul> <p>The <code>defer db.Close()</code> and <code>defer redisClient.Close()</code> at the top of <code>main()</code> run after <code>server.Shutdown()</code> completes, ensuring connections are properly closed in the right order.</p> <h2> Environment Configuration </h2> <p>All configuration is environment-variable driven. The full set:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Server</span> <span class="nv">SERVER_PORT</span><span class="o">=</span>8080 <span class="nv">SERVER_HOST</span><span class="o">=</span>0.0.0.0 <span class="nv">SERVER_READ_TIMEOUT</span><span class="o">=</span>30s <span class="nv">SERVER_WRITE_TIMEOUT</span><span class="o">=</span>30s <span class="nv">SERVER_SHUTDOWN_TIMEOUT</span><span class="o">=</span>30s <span class="c"># Database</span> <span class="nv">DB_HOST</span><span class="o">=</span>postgres <span class="nv">DB_PORT</span><span class="o">=</span>5432 <span class="nv">DB_USER</span><span class="o">=</span>postgres <span class="nv">DB_PASSWORD</span><span class="o">=</span>change-in-production <span class="nv">DB_NAME</span><span class="o">=</span>aiagent <span class="nv">DB_SSL_MODE</span><span class="o">=</span>disable <span class="c"># Use "require" in production</span> <span class="c"># Redis</span> <span class="nv">REDIS_HOST</span><span class="o">=</span>redis <span class="nv">REDIS_PORT</span><span class="o">=</span>6379 <span class="nv">REDIS_PASSWORD</span><span class="o">=</span> <span class="c"># JWT</span> <span class="nv">JWT_SECRET</span><span class="o">=</span>change-me-in-production-must-be-32-chars <span class="nv">JWT_ACCESS_TTL</span><span class="o">=</span>15m <span class="nv">JWT_REFRESH_TTL</span><span class="o">=</span>168h <span class="c"># 7 days</span> <span class="c"># Rate Limiting</span> <span class="nv">RATE_LIMIT_ENABLED</span><span class="o">=</span><span class="nb">true </span><span class="nv">RATE_LIMIT_PER_MINUTE</span><span class="o">=</span>60 <span class="nv">RATE_LIMIT_PER_DAY</span><span class="o">=</span>10000 <span class="c"># LLM</span> <span class="nv">LLM_PROVIDER</span><span class="o">=</span>litellm <span class="nv">LLM_BASE_URL</span><span class="o">=</span>http://litellm:4000 <span class="nv">LLM_API_KEY</span><span class="o">=</span>sk-1234 <span class="c"># LiteLLM master key</span> <span class="nv">LLM_DEFAULT_MODEL</span><span class="o">=</span>gpt-4o-mini <span class="c"># Tools</span> <span class="nv">WEB_SEARCH_API_KEY</span><span class="o">=</span>your-brave-search-api-key <span class="nv">TOOLS_MAX_CONCURRENT</span><span class="o">=</span>10 </code></pre> </div> <p>Every variable has a default. <code>config.Load()</code> reads from environment variables with fallbacks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">getEnv</span><span class="p">(</span><span class="n">key</span><span class="p">,</span> <span class="n">defaultValue</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">if</span> <span class="n">value</span> <span class="o">:=</span> <span class="n">os</span><span class="o">.</span><span class="n">Getenv</span><span class="p">(</span><span class="n">key</span><span class="p">);</span> <span class="n">value</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="n">value</span> <span class="p">}</span> <span class="k">return</span> <span class="n">defaultValue</span> <span class="p">}</span> </code></pre> </div> <p>This means <code>go run ./cmd/api</code> works out of the box in development (with sensible defaults), and production is configured purely through environment variables — no config file parsing, no YAML, no TOML.</p> <h2> Production Checklist </h2> <p>Before going to production:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Security: [ ] Set strong JWT_SECRET (32+ random chars: openssl rand -hex 32) [ ] Set DB_SSL_MODE=require (encrypt DB connections) [ ] Set Redis password (REDIS_PASSWORD=...) [ ] Change LiteLLM master key from "sk-1234" [ ] Set DB_PASSWORD to something strong Observability: [ ] Configure log aggregation (the structured JSON logs are ready for Datadog, Loki, etc.) [ ] Set up /health and /ready monitoring [ ] Set DB backup schedule Scale: [ ] Increase DB_MAX_OPEN_CONNS for higher concurrency (default 25) [ ] Increase memory limits if needed [ ] Enable Redis sentinel/cluster for HA LLM: [ ] Set real OPENAI_API_KEY and/or ANTHROPIC_API_KEY [ ] Configure LiteLLM fallback routing </code></pre> </div> <p>The most critical: <strong><code>JWT_SECRET</code></strong>. Any JWT signed with the default value can be forged by anyone who reads this article. Always override it.</p> <h2> Running the Full Stack </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># 1. Clone and configure</span> git clone https://github.com/wyuneed/go-agent-api <span class="nb">cd </span>go-agent-api <span class="nb">cp</span> .env.example .env <span class="c"># Edit .env: add API keys, change JWT_SECRET</span> <span class="c"># 2. Start all services</span> make docker-up <span class="c"># or: docker-compose -f deployments/docker-compose.yml up -d</span> <span class="c"># 3. Run migrations (if not already run via the migrate service)</span> make migrate-up <span class="c"># 4. Verify</span> curl http://127.0.0.1:8080/health <span class="c"># {"success":true,"data":{"status":"ok",...}}</span> <span class="c"># 5. Open Swagger UI</span> open http://127.0.0.1:8080/swagger/index.html <span class="c"># 6. Register and test</span> curl <span class="nt">-X</span> POST http://127.0.0.1:8080/v1/auth/register <span class="se">\</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"email":"you@example.com","password":"secret","name":"You"}'</span> curl <span class="nt">-X</span> POST http://127.0.0.1:8080/v1/auth/login <span class="se">\</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"email":"you@example.com","password":"secret"}'</span> <span class="c"># → returns access_token</span> curl <span class="nt">-X</span> POST http://127.0.0.1:8080/v1/chat/completions <span class="se">\</span> <span class="nt">-H</span> <span class="s2">"Authorization: Bearer &lt;access_token&gt;"</span> <span class="se">\</span> <span class="nt">-H</span> <span class="s2">"Content-Type: application/json"</span> <span class="se">\</span> <span class="nt">-d</span> <span class="s1">'{"model":"gpt-4o-mini","messages":[{"role":"user","content":"What is 15% of 847?"}]}'</span> </code></pre> </div> <h2> What We Just Learned </h2> <ul> <li> <code>FROM scratch</code> produces an 18MB image — no OS, no shell, just the binary and its assets</li> <li> <code>CGO_ENABLED=0</code> produces a fully static binary that runs in the scratch container</li> <li>Migrations ship inside the image (<code>COPY --from=builder /migrations</code>) — binary and schema changes are atomic</li> <li> <code>depends_on: condition: service_healthy</code> ensures startup order is correct, not just "service started"</li> <li>LiteLLM decouples LLM providers from application code — swap GPT-4o for Claude with a config change</li> <li>Graceful shutdown uses <code>signal.Notify(quit, SIGINT, SIGTERM)</code> + <code>server.Shutdown(ctx)</code> with a timeout</li> <li>All configuration is environment-variable driven with sensible defaults for local development</li> </ul> <h2> Series Complete </h2> <p>You have now read through the entire architecture:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Article</th> <th>Topic</th> </tr> </thead> <tbody> <tr> <td>1</td> <td>Architecture Overview: DDD, five pillars, explicit DI</td> </tr> <tr> <td>2</td> <td>Domain Layer: Entities with business rules, repository interfaces</td> </tr> <tr> <td>3</td> <td>Tool System: 15-line tools, OpenAI format, per-token ACLs</td> </tr> <tr> <td>4</td> <td>Eino Workflow: 6-node DAG, ReAct loop, type-safe routing</td> </tr> <tr> <td>5</td> <td>Dual Auth: JWT + API keys, hashing, fire-and-forget tracking</td> </tr> <tr> <td>6</td> <td>SSE Streaming: Channel pipeline, Flusher, context cancellation</td> </tr> <tr> <td>7</td> <td>Human-in-the-Loop: Pause, approve, resume with <code>*bool</code> </td> </tr> <tr> <td>8</td> <td>Deployment: 18MB scratch image, health checks, graceful shutdown</td> </tr> </tbody> </table></div> <p>The codebase is at <code>github.com/wyuneed/go-agent-api</code>. It is production-ready and designed to be extended — add tools, add agents, add new LLM providers, replace components. The architecture makes extension easy and regression unlikely.</p> webdev ai devops cloud #7 - Human-in-the-Loop AI: How to Pause, Approve, and Resume an Agentic Workflow Izu Tolandona Sat, 21 Feb 2026 16:58:40 +0000 https://dev.to/itodona/7-human-in-the-loop-ai-how-to-pause-approve-and-resume-an-agentic-workflow-53of https://dev.to/itodona/7-human-in-the-loop-ai-how-to-pause-approve-and-resume-an-agentic-workflow-53of <p><em>Part 7 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>The hardest problem in deploying AI agents is not intelligence — it is control.</p> <p>When an AI agent can take real actions in the world (send an email, modify a database record, make a purchase, delete a file), you often need a human to review and approve before the action runs. The agent is not wrong to propose the action — but the consequences are irreversible, and you want a human in the approval chain.</p> <p>This is called <strong>human-in-the-loop</strong> (HITL). Implementing it correctly requires:</p> <ol> <li>The workflow pausing mid-execution without losing state</li> <li>The paused state being persisted (so a restart does not lose it)</li> <li>An API endpoint for the human to approve or reject</li> <li>The workflow resuming from exactly where it stopped</li> </ol> <p>All four are implemented in this project. Let me show you how.</p> <h2> The Problem: Irreversible Tool Actions </h2> <p>Consider a hypothetical <code>DeleteFileTool</code>. If the AI agent calls this tool and it runs without review, files are gone. Even if the AI was right, users need to feel in control.</p> <p>The standard approach in this codebase: any tool can mark itself as requiring approval by overriding one method.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Default: tool runs immediately</span> <span class="k">type</span> <span class="n">BaseTool</span> <span class="k">struct</span><span class="p">{}</span> <span class="k">func</span> <span class="p">(</span><span class="n">BaseTool</span><span class="p">)</span> <span class="n">RequiresApproval</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="no">false</span> <span class="p">}</span> <span class="c">// Override to require approval</span> <span class="k">type</span> <span class="n">DeleteFileTool</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">tool</span><span class="o">.</span><span class="n">BaseTool</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">DeleteFileTool</span><span class="p">)</span> <span class="n">RequiresApproval</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="no">true</span> <span class="c">// This is the ENTIRE change needed to pause the workflow</span> <span class="p">}</span> </code></pre> </div> <p>That single method override triggers the entire approval flow. Everything else — pausing the workflow, persisting state, resuming on approval — is handled automatically.</p> <h2> Step 1: The actNode Detects RequiresApproval </h2> <p>In <code>internal/infrastructure/eino/graphs/chatbot_graph.go</code>, the <code>actNode</code> processes each tool call. Before executing, it checks <code>RequiresApproval()</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">actNode</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span> <span class="o">=</span> <span class="p">[]</span><span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span><span class="p">{}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">tc</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span> <span class="p">{</span> <span class="n">args</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">tc</span><span class="o">.</span><span class="n">ParseArguments</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="s">"failed to parse arguments"</span><span class="p">})</span> <span class="k">continue</span> <span class="p">}</span> <span class="n">t</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">toolRegistry</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">)</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="s">"tool not found"</span><span class="p">})</span> <span class="k">continue</span> <span class="p">}</span> <span class="c">// THE APPROVAL CHECK</span> <span class="k">if</span> <span class="n">t</span><span class="o">.</span><span class="n">RequiresApproval</span><span class="p">()</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">RequiresApproval</span> <span class="o">=</span> <span class="no">true</span> <span class="n">s</span><span class="o">.</span><span class="n">ApprovalReason</span> <span class="o">=</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"Tool '%s' requires approval"</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">)</span> <span class="n">s</span><span class="o">.</span><span class="n">ApprovalData</span> <span class="o">=</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span> <span class="s">"tool"</span><span class="o">:</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="s">"arguments"</span><span class="o">:</span> <span class="n">args</span><span class="p">,</span> <span class="s">"tool_call"</span><span class="o">:</span> <span class="n">tc</span><span class="p">,</span> <span class="p">}</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Return immediately — do not execute this tool</span> <span class="p">}</span> <span class="c">// Normal execution</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">args</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">()})</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolCallsCount</span><span class="o">++</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span> <span class="o">=</span> <span class="no">nil</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>When <code>RequiresApproval()</code> returns true:</p> <ol> <li> <code>s.RequiresApproval = true</code> — signals the routing function</li> <li> <code>s.ApprovalData</code> — stores exactly what was going to be executed (for display to the human)</li> <li> <code>return s, nil</code> immediately — the loop stops; pending tools are NOT cleared</li> </ol> <p>The routing function after <code>actNode</code> sends the graph to <code>human_approval</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Actually, the routing happens after think, not act.</span> <span class="c">// The actNode sets RequiresApproval, then returns.</span> <span class="c">// The routing after observe checks it:</span> <span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routeAfterObserve</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">ShouldStop</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">RequiresApproval</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"human_approval"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// ← Goes here</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"think"</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <h2> Step 2: The humanApprovalNode Pauses the Workflow </h2> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">humanApprovalNode</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// This node pauses the workflow. State will be persisted and</span> <span class="c">// workflow resumed via the approve API endpoint.</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>This function does nothing. It returns immediately. But its routing function determines what happens next:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routeAfterApproval</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">compose</span><span class="o">.</span><span class="n">END</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// No decision yet → end this graph run</span> <span class="p">}</span> <span class="k">if</span> <span class="o">*</span><span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"act"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Approved → resume tool execution</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Rejected → generate rejection response</span> <span class="p">}</span> </code></pre> </div> <p><strong><code>IsApproved *bool</code></strong> — a pointer to bool. This is the core of the three-state design:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Value</th> <th>Meaning</th> </tr> </thead> <tbody> <tr> <td><code>nil</code></td> <td>No decision yet (first time through)</td> </tr> <tr> <td><code>true</code></td> <td>Human approved</td> </tr> <tr> <td><code>false</code></td> <td>Human rejected</td> </tr> </tbody> </table></div> <p>When the workflow first reaches <code>humanApprovalNode</code>, <code>IsApproved</code> is <code>nil</code>. The routing returns <code>compose.END</code> — the graph run terminates here.</p> <p>The entire <code>AgentState</code> at this point (including the pending tool calls that weren't executed) is serialized and stored in the database. The HTTP response to the client contains the conversation's <code>pending_approval</code> status, telling the UI to ask for user input.</p> <h2> Step 3: Conversation.RequestApproval() — Storing the Pause State </h2> <p>In the <code>SendMessage</code> use case, after the graph run ends with <code>RequiresApproval == true</code>, the conversation status is updated:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// After graph.Invoke() returns with s.RequiresApproval == true:</span> <span class="n">conv</span><span class="o">.</span><span class="n">RequestApproval</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">CurrentNode</span><span class="p">,</span> <span class="n">s</span><span class="o">.</span><span class="n">ApprovalData</span><span class="p">)</span> </code></pre> </div> <p>From <code>internal/domain/entity/conversation.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Conversation</span><span class="p">)</span> <span class="n">RequestApproval</span><span class="p">(</span><span class="n">node</span> <span class="kt">string</span><span class="p">,</span> <span class="n">data</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="n">ConversationStatusPending</span> <span class="c">// "pending_approval"</span> <span class="n">c</span><span class="o">.</span><span class="n">CurrentNode</span> <span class="o">=</span> <span class="n">node</span> <span class="c">// Which Eino node triggered this</span> <span class="n">c</span><span class="o">.</span><span class="n">Metadata</span><span class="p">[</span><span class="s">"pending_approval"</span><span class="p">]</span> <span class="o">=</span> <span class="n">data</span> <span class="c">// What data the human needs to review</span> <span class="n">c</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p>After calling <code>RequestApproval()</code> and saving the conversation to the database, the response to the client includes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"conversation"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"..."</span><span class="p">,</span><span class="w"> </span><span class="nl">"status"</span><span class="p">:</span><span class="w"> </span><span class="s2">"pending_approval"</span><span class="p">,</span><span class="w"> </span><span class="nl">"metadata"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"pending_approval"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"tool"</span><span class="p">:</span><span class="w"> </span><span class="s2">"delete_file"</span><span class="p">,</span><span class="w"> </span><span class="nl">"arguments"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="nl">"path"</span><span class="p">:</span><span class="w"> </span><span class="s2">"/important/data.csv"</span><span class="p">},</span><span class="w"> </span><span class="nl">"tool_call"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="err">...</span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>The UI reads <code>status: "pending_approval"</code> and shows the human a dialog: "The AI wants to delete /important/data.csv. Approve?"</p> <h2> Step 4: The ApproveActionUseCase — Validating and Transitioning </h2> <p>When the human clicks Approve or Reject, they hit <code>POST /v1/conversations/{id}/approve</code>. The use case in <code>internal/application/usecase/chat/approve_action.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ApproveActionUseCase</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">input</span> <span class="n">ApproveInput</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ApproveOutput</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">conv</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">convRepo</span><span class="o">.</span><span class="n">FindByID</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">input</span><span class="o">.</span><span class="n">ConversationID</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"conversation not found: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Authorization: only the conversation owner can approve</span> <span class="k">if</span> <span class="n">conv</span><span class="o">.</span><span class="n">UserID</span> <span class="o">!=</span> <span class="n">input</span><span class="o">.</span><span class="n">UserID</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"unauthorized access to conversation"</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Guard: must actually be waiting for approval</span> <span class="k">if</span> <span class="o">!</span><span class="n">conv</span><span class="o">.</span><span class="n">IsPendingApproval</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"conversation is not pending approval"</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Domain method handles the state transition</span> <span class="k">if</span> <span class="n">input</span><span class="o">.</span><span class="n">Approved</span> <span class="p">{</span> <span class="n">conv</span><span class="o">.</span><span class="n">Approve</span><span class="p">()</span> <span class="c">// Status → "active", clears pending_approval metadata</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="n">conv</span><span class="o">.</span><span class="n">Reject</span><span class="p">(</span><span class="n">input</span><span class="o">.</span><span class="n">Reason</span><span class="p">)</span> <span class="c">// Status → "active", records rejection reason</span> <span class="p">}</span> <span class="c">// Persist the updated conversation</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">convRepo</span><span class="o">.</span><span class="n">Update</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">conv</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"update conversation: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">ApproveOutput</span><span class="p">{</span><span class="n">Conversation</span><span class="o">:</span> <span class="n">conv</span><span class="p">,</span> <span class="n">Status</span><span class="o">:</span> <span class="s">"approved"</span><span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>Three validations happen in sequence:</p> <ol> <li> <strong>Does the conversation exist?</strong> If not, 404</li> <li> <strong>Does the user own it?</strong> If not, 403 (prevents user A from approving user B's conversation)</li> <li> <strong>Is it actually waiting for approval?</strong> If not, 400 (prevents double-approval)</li> </ol> <p>Then the domain entity handles the transition: <code>conv.Approve()</code> or <code>conv.Reject(reason)</code>. These methods clean up the <code>pending_approval</code> metadata and update the status.</p> <h2> Step 5: Resuming the Workflow </h2> <p>After the human approves, the next message from the client (or the approval response itself) needs to resume the workflow. The workflow is resumed by loading the saved <code>AgentState</code> from the conversation's <code>WorkflowState</code> field, setting <code>IsApproved = &amp;true</code>, and running the graph again.</p> <p>The key routing logic that makes resumption work:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routeAfterApproval</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">compose</span><span class="o">.</span><span class="n">END</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// First run: no decision → stop</span> <span class="p">}</span> <span class="k">if</span> <span class="o">*</span><span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"act"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Resumed with approval → execute tools</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Resumed with rejection → respond to user</span> <span class="p">}</span> </code></pre> </div> <p>When the graph is resumed with <code>IsApproved = &amp;true</code>:</p> <ol> <li>START → router → think → act (but wait — we are resuming)</li> <li>Actually: the saved state is loaded with <code>PendingTools</code> still populated (they were not cleared on the first run)</li> <li>The graph is re-entered, <code>IsApproved</code> is already set to <code>&amp;true</code> </li> <li> <code>humanApprovalNode</code> runs, <code>routeAfterApproval</code> returns <code>"act"</code> </li> <li> <code>actNode</code> executes the pending tools</li> <li>Workflow continues normally</li> </ol> <p>The fact that <code>PendingTools</code> were not cleared when <code>RequiresApproval</code> was detected is intentional. The pending tool calls are preserved in the serialized state, ready to be executed when the human approves.</p> <h2> The Approval Handler </h2> <p>The HTTP handler in <code>internal/infrastructure/http/handler/chat_handler.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// ApproveAction godoc</span> <span class="c">// @Summary Approve or reject a pending action</span> <span class="c">// @Description Resumes a conversation that is paused waiting for human-in-the-loop approval</span> <span class="c">// @Tags conversations</span> <span class="c">// @Param id path string true "Conversation ID (UUID)"</span> <span class="c">// @Param body body request.ApprovalRequest true "Approval decision"</span> <span class="c">// @Router /v1/conversations/{id}/approve [post]</span> <span class="k">func</span> <span class="p">(</span><span class="n">h</span> <span class="o">*</span><span class="n">ChatHandler</span><span class="p">)</span> <span class="n">ApproveAction</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">user</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetUserFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="n">convID</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uuid</span><span class="o">.</span><span class="n">Parse</span><span class="p">(</span><span class="n">chi</span><span class="o">.</span><span class="n">URLParam</span><span class="p">(</span><span class="n">r</span><span class="p">,</span> <span class="s">"id"</span><span class="p">))</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">,</span> <span class="s">"INVALID_ID"</span><span class="p">,</span> <span class="s">"Invalid conversation ID"</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="k">var</span> <span class="n">req</span> <span class="n">request</span><span class="o">.</span><span class="n">ApprovalRequest</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewDecoder</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span><span class="o">.</span><span class="n">Decode</span><span class="p">(</span><span class="o">&amp;</span><span class="n">req</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">,</span> <span class="s">"INVALID_REQUEST"</span><span class="p">,</span> <span class="s">"Invalid request body"</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">h</span><span class="o">.</span><span class="n">approveAction</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">(),</span> <span class="n">chat</span><span class="o">.</span><span class="n">ApproveInput</span><span class="p">{</span> <span class="n">ConversationID</span><span class="o">:</span> <span class="n">convID</span><span class="p">,</span> <span class="n">UserID</span><span class="o">:</span> <span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Approved</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Approved</span><span class="p">,</span> <span class="n">Reason</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Reason</span><span class="p">,</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusInternalServerError</span><span class="p">,</span> <span class="s">"APPROVAL_ERROR"</span><span class="p">,</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">())</span> <span class="k">return</span> <span class="p">}</span> <span class="n">response</span><span class="o">.</span><span class="n">JSON</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusOK</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The request body:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"approved"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"reason"</span><span class="p">:</span><span class="w"> </span><span class="s2">""</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>Or to reject:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"approved"</span><span class="p">:</span><span class="w"> </span><span class="kc">false</span><span class="p">,</span><span class="w"> </span><span class="nl">"reason"</span><span class="p">:</span><span class="w"> </span><span class="s2">"I don't want to delete that file"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h2> The Complete Flow, End to End </h2> <p>Let us trace the complete human-in-the-loop cycle:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>1. User: "Delete the old backup file" POST /v1/conversations/{id}/messages {"message": "Delete the old backup file"} 2. Workflow runs: router → think → act LLM calls delete_file tool actNode: t.RequiresApproval() == true AgentState: RequiresApproval = true, ApprovalData = {tool: "delete_file", args: {path: "/backup.csv"}} humanApprovalNode: IsApproved == nil → routeAfterApproval returns END Graph terminates 3. Server: conv.RequestApproval("act", s.ApprovalData) conv.Status = "pending_approval" Saves conversation + AgentState to DB Response: {conversation: {status: "pending_approval", metadata: {pending_approval: {...}}}} 4. UI: shows "The AI wants to delete /backup.csv — Approve?" User clicks Approve POST /v1/conversations/{id}/approve {"approved": true} 5. ApproveActionUseCase: - Verifies user owns conversation - Verifies status is "pending_approval" - conv.Approve() → status = "active" - Saves conversation Response: {status: "approved"} 6. Workflow resumes with IsApproved = &amp;true humanApprovalNode: IsApproved = &amp;true → routeAfterApproval returns "act" actNode: executes delete_file File deleted, result added to messages observe → think → response Final answer: "I've deleted /backup.csv" 7. User sees: "I've deleted /backup.csv" </code></pre> </div> <p>The user was in control throughout. The AI proposed, the human decided, the AI executed.</p> <h2> Why *bool Instead of bool </h2> <p>The <code>IsApproved *bool</code> field is worth dwelling on. Why not just <code>IsApproved bool</code>?</p> <p>With <code>bool</code>:</p> <ul> <li> <code>false</code> means "not approved" OR "not yet decided" — ambiguous</li> <li>You need a second field like <code>ApprovalDecisionMade bool</code> to distinguish "no decision" from "rejected"</li> </ul> <p>With <code>*bool</code>:</p> <ul> <li> <code>nil</code> = "no decision yet" — the workflow just reached this node for the first time</li> <li> <code>true</code> = "approved" — human said yes</li> <li> <code>false</code> = "rejected" — human said no</li> </ul> <p>This is a fundamental Go idiom: <strong>use pointer types to add a null/absent state</strong>. It appears repeatedly in the codebase wherever three-value semantics are needed (<code>LastUsedAt *time.Time</code>, <code>CompletedAt *time.Time</code> on conversations).</p> <p>The routing function explicitly checks for <code>nil</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="n">compose</span><span class="o">.</span><span class="n">END</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">if</span> <span class="o">*</span><span class="n">s</span><span class="o">.</span><span class="n">IsApproved</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"act"</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> </code></pre> </div> <p>This is safer than <code>if !s.IsApproved</code> — you cannot accidentally dereference a nil pointer because you check for nil first.</p> <h2> What We Just Learned </h2> <ul> <li>Any tool marks itself as requiring approval with a single method: <code>func (t *YourTool) RequiresApproval() bool { return true }</code> </li> <li>The Eino <code>actNode</code> checks <code>RequiresApproval()</code> before executing — if true, it sets <code>RequiresApproval = true</code> on <code>AgentState</code> and returns without executing</li> <li> <code>IsApproved *bool</code> uses pointer semantics for three states: nil (waiting), true (approved), false (rejected)</li> <li> <code>Conversation.RequestApproval()</code> persists the pause state to the DB</li> <li> <code>ApproveActionUseCase</code> validates ownership and uses domain methods (<code>conv.Approve()</code> / <code>conv.Reject()</code>) for state transitions</li> <li>The workflow resumes by loading saved state and re-running the graph with <code>IsApproved</code> set</li> </ul> ai programming tutorial learning #6 - Server-Sent Events in Go: Building Real-Time AI Streaming Without WebSockets Izu Tolandona Sat, 21 Feb 2026 16:55:33 +0000 https://dev.to/itodona/6-server-sent-events-in-go-building-real-time-ai-streaming-without-websockets-35j0 https://dev.to/itodona/6-server-sent-events-in-go-building-real-time-ai-streaming-without-websockets-35j0 <p><em>Part 6 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>Every AI chat interface you have used — ChatGPT, Claude, Gemini — shows you text as it is generated, word by word. The LLM does not wait until the full response is complete before sending it. It streams.</p> <p>Implementing this in Go involves four layers working together: the LLM provider sends SSE (Server-Sent Events) → we parse it into a typed Go channel → the use case sends events downstream → the HTTP handler writes them to the client with <code>http.Flusher</code>.</p> <p>The good news: Go's standard library handles all of this. No WebSockets, no third-party streaming library, no special runtime. Just <code>bufio.Reader</code>, channels, and <code>http.Flusher</code>.</p> <h2> Why SSE Over WebSockets for LLM Streaming </h2> <p>WebSockets provide full-duplex communication — both client and server can send messages at any time. For LLM streaming, that capability is unnecessary. The request flow is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Client → sends full message (request) Server → streams tokens back (response) </code></pre> </div> <p>This is still fundamentally request-response. The server streams the response, but the client is not sending data during streaming. SSE is designed for exactly this pattern: the server pushes data to the client over a persistent HTTP connection. The client reads it as a stream.</p> <p>SSE advantages over WebSockets for this use case:</p> <ul> <li>Works through HTTP/2 proxies and load balancers without special configuration</li> <li>Automatic reconnection built into browser clients</li> <li>Uses standard HTTP headers — no protocol upgrade negotiation</li> <li>Simpler to implement and debug (it is just text over HTTP)</li> <li>Compatible with existing HTTP middleware (auth, rate limiting, logging all work unchanged)</li> </ul> <h2> The LLMProvider Interface: Streaming as a Contract </h2> <p>The streaming contract is defined in <code>internal/application/port/llm_provider.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">StreamEvent</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Type</span> <span class="kt">string</span> <span class="s">`json:"type"`</span> <span class="n">Delta</span> <span class="kt">string</span> <span class="s">`json:"delta,omitempty"`</span> <span class="c">// Text chunk</span> <span class="n">ToolCall</span> <span class="o">*</span><span class="n">toolspec</span><span class="o">.</span><span class="n">ToolCall</span> <span class="s">`json:"tool_call,omitempty"`</span> <span class="n">Usage</span> <span class="o">*</span><span class="n">UsageInfo</span> <span class="s">`json:"usage,omitempty"`</span> <span class="n">Error</span> <span class="kt">error</span> <span class="s">`json:"-"`</span> <span class="c">// Not serialized to JSON</span> <span class="n">Done</span> <span class="kt">bool</span> <span class="s">`json:"done,omitempty"`</span> <span class="p">}</span> <span class="k">type</span> <span class="n">LLMProvider</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Chat</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">req</span> <span class="n">ChatRequest</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ChatResponse</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="n">ChatStream</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">req</span> <span class="n">ChatRequest</span><span class="p">)</span> <span class="p">(</span><span class="o">&lt;-</span><span class="k">chan</span> <span class="n">StreamEvent</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p><code>ChatStream</code> returns <code>&lt;-chan StreamEvent</code> — a receive-only channel. The caller reads events from this channel until <code>event.Done == true</code> or <code>event.Error != nil</code>. The channel is closed by the implementor when the stream ends.</p> <p><code>StreamEvent</code> has a <code>Type</code> field with these possible values:</p> <ul> <li> <code>"content"</code> — a text chunk, <code>Delta</code> contains the token(s)</li> <li> <code>"tool_call"</code> — the LLM is requesting a tool call, <code>ToolCall</code> is populated</li> <li> <code>"finish"</code> — the stream has ended, <code>Delta</code> is the finish reason, <code>Usage</code> has token counts</li> <li>Plus <code>Done: true</code> and <code>Error: err</code> for terminal states</li> </ul> <p>The <code>Error</code> field has <code>json:"-"</code> — it is never serialized to JSON. When we forward a <code>StreamEvent</code> to the client, errors go through a separate error event rather than being exposed as an internal Go error.</p> <h2> The LiteLLM Client: Parsing SSE </h2> <p>The implementation is in <code>internal/infrastructure/llm/litellm/client.go</code>. <code>ChatStream</code> makes the HTTP request and starts a goroutine:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Client</span><span class="p">)</span> <span class="n">ChatStream</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">req</span> <span class="n">port</span><span class="o">.</span><span class="n">ChatRequest</span><span class="p">)</span> <span class="p">(</span><span class="o">&lt;-</span><span class="k">chan</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">req</span><span class="o">.</span><span class="n">Stream</span> <span class="o">=</span> <span class="no">true</span> <span class="c">// Tell the LLM to stream</span> <span class="n">body</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Marshal</span><span class="p">(</span><span class="n">req</span><span class="p">)</span> <span class="n">httpReq</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">http</span><span class="o">.</span><span class="n">NewRequestWithContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="s">"POST"</span><span class="p">,</span> <span class="n">c</span><span class="o">.</span><span class="n">baseURL</span><span class="o">+</span><span class="s">"/chat/completions"</span><span class="p">,</span> <span class="n">bytes</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="n">body</span><span class="p">))</span> <span class="n">httpReq</span><span class="o">.</span><span class="n">Header</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Content-Type"</span><span class="p">,</span> <span class="s">"application/json"</span><span class="p">)</span> <span class="n">httpReq</span><span class="o">.</span><span class="n">Header</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Authorization"</span><span class="p">,</span> <span class="s">"Bearer "</span><span class="o">+</span><span class="n">c</span><span class="o">.</span><span class="n">apiKey</span><span class="p">)</span> <span class="n">httpReq</span><span class="o">.</span><span class="n">Header</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Accept"</span><span class="p">,</span> <span class="s">"text/event-stream"</span><span class="p">)</span> <span class="n">resp</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">c</span><span class="o">.</span><span class="n">httpClient</span><span class="o">.</span><span class="n">Do</span><span class="p">(</span><span class="n">httpReq</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"do request: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">resp</span><span class="o">.</span><span class="n">StatusCode</span> <span class="o">!=</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusOK</span> <span class="p">{</span> <span class="n">body</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">io</span><span class="o">.</span><span class="n">ReadAll</span><span class="p">(</span><span class="n">resp</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span> <span class="n">resp</span><span class="o">.</span><span class="n">Body</span><span class="o">.</span><span class="n">Close</span><span class="p">()</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"API error (status %d): %s"</span><span class="p">,</span> <span class="n">resp</span><span class="o">.</span><span class="n">StatusCode</span><span class="p">,</span> <span class="kt">string</span><span class="p">(</span><span class="n">body</span><span class="p">))</span> <span class="p">}</span> <span class="n">events</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">)</span> <span class="k">go</span> <span class="n">c</span><span class="o">.</span><span class="n">readSSE</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">resp</span><span class="p">,</span> <span class="n">events</span><span class="p">)</span> <span class="c">// Parse SSE in a goroutine</span> <span class="k">return</span> <span class="n">events</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>Notice: we check the HTTP status before starting the goroutine. If the request fails (401 Unauthorized, 400 Bad Request, etc.), we return an error synchronously. The goroutine only starts if the connection was established successfully.</p> <p>The SSE parser:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Client</span><span class="p">)</span> <span class="n">readSSE</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">resp</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Response</span><span class="p">,</span> <span class="n">events</span> <span class="k">chan</span><span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">)</span> <span class="p">{</span> <span class="k">defer</span> <span class="nb">close</span><span class="p">(</span><span class="n">events</span><span class="p">)</span> <span class="c">// Always close the channel when done</span> <span class="k">defer</span> <span class="n">resp</span><span class="o">.</span><span class="n">Body</span><span class="o">.</span><span class="n">Close</span><span class="p">()</span> <span class="c">// Always close the response body</span> <span class="n">reader</span> <span class="o">:=</span> <span class="n">bufio</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="n">resp</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span> <span class="k">for</span> <span class="p">{</span> <span class="c">// Check for context cancellation (client disconnect)</span> <span class="k">select</span> <span class="p">{</span> <span class="k">case</span> <span class="o">&lt;-</span><span class="n">ctx</span><span class="o">.</span><span class="n">Done</span><span class="p">()</span><span class="o">:</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Error</span><span class="o">:</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Err</span><span class="p">()}</span> <span class="k">return</span> <span class="k">default</span><span class="o">:</span> <span class="p">}</span> <span class="n">line</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">reader</span><span class="o">.</span><span class="n">ReadString</span><span class="p">(</span><span class="sc">'\n'</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="n">io</span><span class="o">.</span><span class="n">EOF</span> <span class="p">{</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Error</span><span class="o">:</span> <span class="n">err</span><span class="p">}</span> <span class="p">}</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Done</span><span class="o">:</span> <span class="no">true</span><span class="p">}</span> <span class="k">return</span> <span class="p">}</span> <span class="n">line</span> <span class="o">=</span> <span class="n">strings</span><span class="o">.</span><span class="n">TrimSpace</span><span class="p">(</span><span class="n">line</span><span class="p">)</span> <span class="k">if</span> <span class="n">line</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">continue</span> <span class="c">// Empty lines are SSE event separators — skip</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">strings</span><span class="o">.</span><span class="n">HasPrefix</span><span class="p">(</span><span class="n">line</span><span class="p">,</span> <span class="s">"data: "</span><span class="p">)</span> <span class="p">{</span> <span class="k">continue</span> <span class="c">// Ignore SSE comment lines (": keep-alive") and headers</span> <span class="p">}</span> <span class="n">data</span> <span class="o">:=</span> <span class="n">strings</span><span class="o">.</span><span class="n">TrimPrefix</span><span class="p">(</span><span class="n">line</span><span class="p">,</span> <span class="s">"data: "</span><span class="p">)</span> <span class="k">if</span> <span class="n">data</span> <span class="o">==</span> <span class="s">"[DONE]"</span> <span class="p">{</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Done</span><span class="o">:</span> <span class="no">true</span><span class="p">}</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// Parse the JSON chunk</span> <span class="k">var</span> <span class="n">chunk</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Choices</span> <span class="p">[]</span><span class="k">struct</span> <span class="p">{</span> <span class="n">Delta</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Content</span> <span class="kt">string</span> <span class="s">`json:"content"`</span> <span class="n">ToolCalls</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">ToolCall</span> <span class="s">`json:"tool_calls"`</span> <span class="p">}</span> <span class="s">`json:"delta"`</span> <span class="n">FinishReason</span> <span class="kt">string</span> <span class="s">`json:"finish_reason"`</span> <span class="p">}</span> <span class="s">`json:"choices"`</span> <span class="n">Usage</span> <span class="o">*</span><span class="n">port</span><span class="o">.</span><span class="n">UsageInfo</span> <span class="s">`json:"usage"`</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Unmarshal</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="n">data</span><span class="p">),</span> <span class="o">&amp;</span><span class="n">chunk</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">continue</span> <span class="c">// Skip malformed chunks (can happen with some providers)</span> <span class="p">}</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">chunk</span><span class="o">.</span><span class="n">Choices</span><span class="p">)</span> <span class="o">&gt;</span> <span class="m">0</span> <span class="p">{</span> <span class="n">choice</span> <span class="o">:=</span> <span class="n">chunk</span><span class="o">.</span><span class="n">Choices</span><span class="p">[</span><span class="m">0</span><span class="p">]</span> <span class="k">if</span> <span class="n">choice</span><span class="o">.</span><span class="n">Delta</span><span class="o">.</span><span class="n">Content</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Type</span><span class="o">:</span> <span class="s">"content"</span><span class="p">,</span> <span class="n">Delta</span><span class="o">:</span> <span class="n">choice</span><span class="o">.</span><span class="n">Delta</span><span class="o">.</span><span class="n">Content</span><span class="p">}</span> <span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">tc</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">choice</span><span class="o">.</span><span class="n">Delta</span><span class="o">.</span><span class="n">ToolCalls</span> <span class="p">{</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Type</span><span class="o">:</span> <span class="s">"tool_call"</span><span class="p">,</span> <span class="n">ToolCall</span><span class="o">:</span> <span class="o">&amp;</span><span class="n">tc</span><span class="p">}</span> <span class="p">}</span> <span class="k">if</span> <span class="n">choice</span><span class="o">.</span><span class="n">FinishReason</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Type</span><span class="o">:</span> <span class="s">"finish"</span><span class="p">,</span> <span class="n">Delta</span><span class="o">:</span> <span class="n">choice</span><span class="o">.</span><span class="n">FinishReason</span><span class="p">,</span> <span class="n">Usage</span><span class="o">:</span> <span class="n">chunk</span><span class="o">.</span><span class="n">Usage</span><span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>A few implementation details worth noting:</p> <p><strong><code>bufio.NewReader(resp.Body)</code></strong> — The standard <code>bufio.NewReader</code> wraps the HTTP response body with buffering. <code>ReadString('\n')</code> reads until a newline, which is how SSE lines are delimited.</p> <p><strong>The <code>[DONE]</code> sentinel</strong> — OpenAI's SSE format uses <code>data: [DONE]</code> to signal stream completion. This is not JSON — it is a literal string. We check for it explicitly before attempting JSON parsing.</p> <p><strong>The <code>ctx.Done()</code> select</strong> — Between each line, we check if the context is cancelled. This is how client disconnects propagate. When the HTTP client closes its connection, the request context is cancelled. The select fires, we send an error event, and return — which closes the channel and the response body. No goroutine leak.</p> <p><strong>Silently skip malformed JSON</strong> — <code>json.Unmarshal</code> failures are ignored with <code>continue</code>. Some SSE providers send occasional keep-alive messages or other non-JSON data. Silently skipping them is more resilient than returning an error.</p> <h2> The SSE Response Helpers </h2> <p>The <code>internal/pkg/response/response.go</code> package provides helpers for the HTTP handler side:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Stream sets the SSE headers on the response</span> <span class="k">func</span> <span class="n">Stream</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">)</span> <span class="p">{</span> <span class="n">w</span><span class="o">.</span><span class="n">Header</span><span class="p">()</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Content-Type"</span><span class="p">,</span> <span class="s">"text/event-stream"</span><span class="p">)</span> <span class="n">w</span><span class="o">.</span><span class="n">Header</span><span class="p">()</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Cache-Control"</span><span class="p">,</span> <span class="s">"no-cache"</span><span class="p">)</span> <span class="n">w</span><span class="o">.</span><span class="n">Header</span><span class="p">()</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"Connection"</span><span class="p">,</span> <span class="s">"keep-alive"</span><span class="p">)</span> <span class="n">w</span><span class="o">.</span><span class="n">Header</span><span class="p">()</span><span class="o">.</span><span class="n">Set</span><span class="p">(</span><span class="s">"X-Accel-Buffering"</span><span class="p">,</span> <span class="s">"no"</span><span class="p">)</span> <span class="c">// Disable nginx buffering</span> <span class="p">}</span> <span class="c">// SSEEvent sends a named SSE event</span> <span class="k">func</span> <span class="n">SSEEvent</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">event</span><span class="p">,</span> <span class="n">data</span> <span class="kt">string</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">event</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintf</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"event: %s</span><span class="se">\n</span><span class="s">"</span><span class="p">,</span> <span class="n">event</span><span class="p">)</span> <span class="p">}</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintf</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"data: %s</span><span class="se">\n\n</span><span class="s">"</span><span class="p">,</span> <span class="n">data</span><span class="p">)</span> <span class="c">// Double newline = event separator</span> <span class="k">if</span> <span class="n">f</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">w</span><span class="o">.</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">Flusher</span><span class="p">);</span> <span class="n">ok</span> <span class="p">{</span> <span class="n">f</span><span class="o">.</span><span class="n">Flush</span><span class="p">()</span> <span class="p">}</span> <span class="p">}</span> <span class="c">// SSEData sends a JSON-serialized data event</span> <span class="k">func</span> <span class="n">SSEData</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">data</span> <span class="n">any</span><span class="p">)</span> <span class="p">{</span> <span class="n">b</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Marshal</span><span class="p">(</span><span class="n">data</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Fprintf</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">"data: %s</span><span class="se">\n\n</span><span class="s">"</span><span class="p">,</span> <span class="kt">string</span><span class="p">(</span><span class="n">b</span><span class="p">))</span> <span class="k">if</span> <span class="n">f</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">w</span><span class="o">.</span><span class="p">(</span><span class="n">http</span><span class="o">.</span><span class="n">Flusher</span><span class="p">);</span> <span class="n">ok</span> <span class="p">{</span> <span class="n">f</span><span class="o">.</span><span class="n">Flush</span><span class="p">()</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong><code>X-Accel-Buffering: no</code></strong> is the nginx-specific header that tells the reverse proxy not to buffer the response. Without this, nginx waits for the full response before forwarding it — defeating the purpose of streaming. Other proxies have equivalent headers.</p> <p><strong><code>http.Flusher</code></strong> — Go's <code>http.ResponseWriter</code> optionally implements <code>http.Flusher</code> with a single method: <code>Flush()</code>. This forces buffered data to be written to the client immediately. Without calling <code>Flush()</code> after each <code>fmt.Fprintf</code>, Go's HTTP layer might batch multiple writes and send them together — also defeating the purpose of streaming.</p> <p>The <code>ok</code> check (<code>if f, ok := w.(http.Flusher); ok</code>) is defensive: not all <code>ResponseWriter</code> implementations support flushing (test recorders, for example). In production, <code>net/http</code>'s built-in <code>ResponseWriter</code> always implements <code>Flusher</code>.</p> <h2> The Chat Handler: Putting It Together </h2> <p>The complete streaming handler in <code>internal/infrastructure/http/handler/chat_handler.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">h</span> <span class="o">*</span><span class="n">ChatHandler</span><span class="p">)</span> <span class="n">ChatCompletions</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">user</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetUserFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetTokenFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="k">var</span> <span class="n">req</span> <span class="n">request</span><span class="o">.</span><span class="n">ChatCompletionRequest</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">NewDecoder</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Body</span><span class="p">)</span><span class="o">.</span><span class="n">Decode</span><span class="p">(</span><span class="o">&amp;</span><span class="n">req</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusBadRequest</span><span class="p">,</span> <span class="s">"INVALID_REQUEST"</span><span class="p">,</span> <span class="s">"Invalid request body"</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// Branch: streaming or non-streaming</span> <span class="k">if</span> <span class="n">req</span><span class="o">.</span><span class="n">Stream</span> <span class="p">{</span> <span class="n">h</span><span class="o">.</span><span class="n">handleStreamingChat</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">r</span><span class="p">,</span> <span class="n">user</span><span class="p">,</span> <span class="n">token</span><span class="p">,</span> <span class="n">req</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// Non-streaming: wait for full response</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">h</span><span class="o">.</span><span class="n">sendMessage</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">(),</span> <span class="n">chat</span><span class="o">.</span><span class="n">SendMessageInput</span><span class="p">{</span> <span class="n">UserID</span><span class="o">:</span> <span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Messages</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Messages</span><span class="p">,</span> <span class="n">Model</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Model</span><span class="p">,</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusInternalServerError</span><span class="p">,</span> <span class="s">"CHAT_ERROR"</span><span class="p">,</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">())</span> <span class="k">return</span> <span class="p">}</span> <span class="n">response</span><span class="o">.</span><span class="n">JSON</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusOK</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">h</span> <span class="o">*</span><span class="n">ChatHandler</span><span class="p">)</span> <span class="n">handleStreamingChat</span><span class="p">(</span> <span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">,</span> <span class="n">user</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">User</span><span class="p">,</span> <span class="n">_</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">Token</span><span class="p">,</span> <span class="n">req</span> <span class="n">request</span><span class="o">.</span><span class="n">ChatCompletionRequest</span><span class="p">,</span> <span class="p">)</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Stream</span><span class="p">(</span><span class="n">w</span><span class="p">)</span> <span class="c">// Set SSE headers</span> <span class="n">events</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">h</span><span class="o">.</span><span class="n">sendMessage</span><span class="o">.</span><span class="n">ExecuteStream</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">(),</span> <span class="n">chat</span><span class="o">.</span><span class="n">SendMessageInput</span><span class="p">{</span> <span class="n">UserID</span><span class="o">:</span> <span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">Messages</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Messages</span><span class="p">,</span> <span class="n">Model</span><span class="o">:</span> <span class="n">req</span><span class="o">.</span><span class="n">Model</span><span class="p">,</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">SSEData</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">()})</span> <span class="k">return</span> <span class="p">}</span> <span class="k">for</span> <span class="n">event</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">events</span> <span class="p">{</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Error</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">SSEData</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="n">event</span><span class="o">.</span><span class="n">Error</span><span class="o">.</span><span class="n">Error</span><span class="p">()})</span> <span class="k">break</span> <span class="p">}</span> <span class="n">response</span><span class="o">.</span><span class="n">SSEData</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">event</span><span class="p">)</span> <span class="c">// Forward each event to the client</span> <span class="k">if</span> <span class="n">event</span><span class="o">.</span><span class="n">Done</span> <span class="p">{</span> <span class="k">break</span> <span class="p">}</span> <span class="p">}</span> <span class="n">response</span><span class="o">.</span><span class="n">SSEEvent</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="s">""</span><span class="p">,</span> <span class="s">"[DONE]"</span><span class="p">)</span> <span class="c">// OpenAI-compatible termination</span> <span class="p">}</span> </code></pre> </div> <p>The streaming handler:</p> <ol> <li>Sets SSE headers</li> <li>Gets an event channel from the use case</li> <li>Range-loops over the channel, writing each event</li> <li>Breaks on error or <code>Done</code> </li> <li>Sends <code>[DONE]</code> as the final event</li> </ol> <p>The <code>for event := range events</code> loop is elegant — it naturally terminates when the channel is closed. The goroutine inside the LiteLLM client closes the channel when it is done, which unblocks the range loop.</p> <h2> Context Cancellation: The Full Pipeline </h2> <p>What happens when the client disconnects mid-stream?</p> <p>Go's <code>net/http</code> server detects client disconnection and cancels the request's <code>context.Context</code>. Here is how that propagates through our stack:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Client disconnects → net/http cancels r.Context() → handleStreamingChat is using r.Context() via the range loop → r.Context() is passed to sendMessage.ExecuteStream() → ExecuteStream passes ctx to litellm.ChatStream() → ChatStream creates httpReq with http.NewRequestWithContext(ctx, ...) → The HTTP request to LiteLLM is also cancelled → readSSE's select{case &lt;-ctx.Done():} fires → readSSE sends an error event and returns → events channel is closed → for event := range events loop in handleStreamingChat terminates </code></pre> </div> <p>The entire pipeline cleans up through a single context cancellation. No goroutine leaks, no open HTTP connections to LiteLLM, no wasted tokens being generated for a disconnected client.</p> <p>This is why <code>context.Context</code> is so important in Go. It is not bureaucracy — it is the mechanism that lets you thread cancellation signals through an entire call stack.</p> <h2> Testing Streaming Handlers </h2> <p>Testing SSE handlers requires a custom response recorder that implements <code>http.Flusher</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">flushableRecorder</span> <span class="k">struct</span> <span class="p">{</span> <span class="o">*</span><span class="n">httptest</span><span class="o">.</span><span class="n">ResponseRecorder</span> <span class="n">flushed</span> <span class="kt">int</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">f</span> <span class="o">*</span><span class="n">flushableRecorder</span><span class="p">)</span> <span class="n">Flush</span><span class="p">()</span> <span class="p">{</span> <span class="n">f</span><span class="o">.</span><span class="n">flushed</span><span class="o">++</span> <span class="p">}</span> <span class="k">func</span> <span class="n">TestChatHandler_Streaming</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="c">// Create a mock LLM that returns streaming events</span> <span class="n">mockLLM</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">MockLLMProvider</span><span class="p">{}</span> <span class="n">events</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">chan</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">,</span> <span class="m">3</span><span class="p">)</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Type</span><span class="o">:</span> <span class="s">"content"</span><span class="p">,</span> <span class="n">Delta</span><span class="o">:</span> <span class="s">"Hello"</span><span class="p">}</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Type</span><span class="o">:</span> <span class="s">"content"</span><span class="p">,</span> <span class="n">Delta</span><span class="o">:</span> <span class="s">" world"</span><span class="p">}</span> <span class="n">events</span> <span class="o">&lt;-</span> <span class="n">port</span><span class="o">.</span><span class="n">StreamEvent</span><span class="p">{</span><span class="n">Done</span><span class="o">:</span> <span class="no">true</span><span class="p">}</span> <span class="nb">close</span><span class="p">(</span><span class="n">events</span><span class="p">)</span> <span class="n">mockLLM</span><span class="o">.</span><span class="n">On</span><span class="p">(</span><span class="s">"ChatStream"</span><span class="p">,</span> <span class="n">mock</span><span class="o">.</span><span class="n">Anything</span><span class="p">,</span> <span class="n">mock</span><span class="o">.</span><span class="n">Anything</span><span class="p">)</span><span class="o">.</span><span class="n">Return</span><span class="p">(</span><span class="n">events</span><span class="p">,</span> <span class="no">nil</span><span class="p">)</span> <span class="c">// Setup handler and recorder</span> <span class="n">handler</span> <span class="o">:=</span> <span class="n">NewChatHandler</span><span class="p">(</span><span class="c">/* ... */</span><span class="p">)</span> <span class="n">rec</span> <span class="o">:=</span> <span class="o">&amp;</span><span class="n">flushableRecorder</span><span class="p">{</span><span class="n">ResponseRecorder</span><span class="o">:</span> <span class="n">httptest</span><span class="o">.</span><span class="n">NewRecorder</span><span class="p">()}</span> <span class="n">req</span> <span class="o">:=</span> <span class="n">httptest</span><span class="o">.</span><span class="n">NewRequest</span><span class="p">(</span><span class="s">"POST"</span><span class="p">,</span> <span class="s">"/v1/chat/completions"</span><span class="p">,</span> <span class="n">strings</span><span class="o">.</span><span class="n">NewReader</span><span class="p">(</span><span class="s">`{"stream": true, "messages": [{"role":"user","content":"hi"}]}`</span><span class="p">))</span> <span class="n">handler</span><span class="o">.</span><span class="n">ChatCompletions</span><span class="p">(</span><span class="n">rec</span><span class="p">,</span> <span class="n">req</span><span class="p">)</span> <span class="c">// Verify SSE headers were set</span> <span class="n">assert</span><span class="o">.</span><span class="n">Equal</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="s">"text/event-stream"</span><span class="p">,</span> <span class="n">rec</span><span class="o">.</span><span class="n">Header</span><span class="p">()</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="s">"Content-Type"</span><span class="p">))</span> <span class="c">// Verify events were written and flushed</span> <span class="n">assert</span><span class="o">.</span><span class="n">Contains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">rec</span><span class="o">.</span><span class="n">Body</span><span class="o">.</span><span class="n">String</span><span class="p">(),</span> <span class="s">`"delta":"Hello"`</span><span class="p">)</span> <span class="n">assert</span><span class="o">.</span><span class="n">Contains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">rec</span><span class="o">.</span><span class="n">Body</span><span class="o">.</span><span class="n">String</span><span class="p">(),</span> <span class="s">"[DONE]"</span><span class="p">)</span> <span class="n">assert</span><span class="o">.</span><span class="n">Greater</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">rec</span><span class="o">.</span><span class="n">flushed</span><span class="p">,</span> <span class="m">0</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The <code>flushableRecorder</code> wraps <code>httptest.ResponseRecorder</code> and adds a no-op <code>Flush()</code> method. This satisfies the <code>http.Flusher</code> interface check in <code>SSEData()</code> without actually flushing anything (since it is a test recorder, not a real connection).</p> <h2> What We Just Learned </h2> <ul> <li>SSE is simpler than WebSockets for LLM streaming — it is just HTTP with persistent connections and text events</li> <li> <code>LLMProvider.ChatStream()</code> returns <code>&lt;-chan StreamEvent</code> — a typed, closeable channel</li> <li> <code>bufio.NewReader</code> + <code>ReadString('\n')</code> parses SSE line by line</li> <li>Context cancellation propagates from client disconnect → request context → HTTP request → goroutine shutdown</li> <li> <code>http.Flusher.Flush()</code> must be called after each write — otherwise Go's HTTP layer buffers events</li> <li> <code>X-Accel-Buffering: no</code> disables nginx proxy buffering</li> <li>The <code>[DONE]</code> sentinel is checked as a literal string before JSON parsing</li> <li>Testing requires a custom recorder that implements <code>http.Flusher</code> </li> </ul> go ai programming productivity #5 - JWT Meets API Keys: Building Dual-Auth in Go Without the Usual Mistakes Izu Tolandona Sat, 21 Feb 2026 16:52:55 +0000 https://dev.to/itodona/5-jwt-meets-api-keys-building-dual-auth-in-go-without-the-usual-mistakes-3el4 https://dev.to/itodona/5-jwt-meets-api-keys-building-dual-auth-in-go-without-the-usual-mistakes-3el4 <p><em>Part 5 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>Most authentication tutorials make you choose: JWT tokens or API keys. User-facing web apps usually want JWTs. Machine-to-machine integrations usually want long-lived API keys. If your product serves both — humans using a web app and developers integrating via code — you need both.</p> <p>This project supports both in a single authentication pipeline. The decision point is one line: does the token start with <code>"sk-"</code>? If yes, it is an API key. Otherwise, it is a JWT. Everything downstream — rate limiting, tool permissions, user lookup — is identical.</p> <p>Let us walk through how it is built.</p> <h2> The Two Authentication Flows </h2> <p>Before code, the high-level picture:</p> <p><strong>JWT Flow (for web apps):</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>User logs in → POST /v1/auth/login → bcrypt verify password → create Token record in DB → generate JWT (access token, 15 min) + JWT (refresh token, 7 days) → return both tokens to client → client sends: Authorization: Bearer eyJhbGci... </code></pre> </div> <p><strong>API Key Flow (for developers):</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>User creates key → POST /v1/auth/tokens (authenticated) → generate "sk-{uuid}" raw key → SHA-256 hash the raw key → store Token record with hash (NEVER store raw) → return raw key once (user saves it) → developer sends: Authorization: Bearer sk-abc123... </code></pre> </div> <p>Both result in a <code>Token</code> entity and a <code>User</code> entity being available in the request context. The rest of the codebase uses them identically.</p> <h2> The JWT Manager: Generating and Validating Tokens </h2> <p>The JWT utility lives in <code>internal/pkg/jwt/jwt.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Claims</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">UserID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="s">`json:"uid"`</span> <span class="n">TokenID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="s">`json:"tid"`</span> <span class="c">// References the Token record in DB</span> <span class="n">TokenType</span> <span class="kt">string</span> <span class="s">`json:"typ"`</span> <span class="c">// "access" or "refresh"</span> <span class="n">jwt</span><span class="o">.</span><span class="n">RegisteredClaims</span> <span class="p">}</span> <span class="k">type</span> <span class="n">JWTManager</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">secret</span> <span class="p">[]</span><span class="kt">byte</span> <span class="n">accessTokenTTL</span> <span class="n">time</span><span class="o">.</span><span class="n">Duration</span> <span class="c">// 15 minutes</span> <span class="n">refreshTokenTTL</span> <span class="n">time</span><span class="o">.</span><span class="n">Duration</span> <span class="c">// 7 days</span> <span class="n">issuer</span> <span class="kt">string</span> <span class="p">}</span> </code></pre> </div> <p>Why does the JWT carry a <code>TokenID</code> (UUID) in addition to <code>UserID</code>?</p> <p>Because JWTs are stateless by design. Once issued, you cannot invalidate a JWT before its expiry time — unless you maintain a blocklist. Instead of a blocklist, we take a different approach: every JWT references a <code>Token</code> record in the database. When we validate the JWT, we load the <code>Token</code> record and check <code>token.IsValid()</code>. If the token has been revoked, <code>IsValid()</code> returns false, and the JWT is effectively invalidated.</p> <p>This gives us the best of both worlds: JWTs are fast (no DB lookup for validity in theory) but can be revoked by updating the DB record.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">m</span> <span class="o">*</span><span class="n">JWTManager</span><span class="p">)</span> <span class="n">GenerateAccessToken</span><span class="p">(</span><span class="n">userID</span><span class="p">,</span> <span class="n">tokenID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">claims</span> <span class="o">:=</span> <span class="n">Claims</span><span class="p">{</span> <span class="n">UserID</span><span class="o">:</span> <span class="n">userID</span><span class="p">,</span> <span class="n">TokenID</span><span class="o">:</span> <span class="n">tokenID</span><span class="p">,</span> <span class="n">TokenType</span><span class="o">:</span> <span class="s">"access"</span><span class="p">,</span> <span class="n">RegisteredClaims</span><span class="o">:</span> <span class="n">jwt</span><span class="o">.</span><span class="n">RegisteredClaims</span><span class="p">{</span> <span class="n">ExpiresAt</span><span class="o">:</span> <span class="n">jwt</span><span class="o">.</span><span class="n">NewNumericDate</span><span class="p">(</span><span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="n">m</span><span class="o">.</span><span class="n">accessTokenTTL</span><span class="p">)),</span> <span class="n">IssuedAt</span><span class="o">:</span> <span class="n">jwt</span><span class="o">.</span><span class="n">NewNumericDate</span><span class="p">(</span><span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()),</span> <span class="n">Issuer</span><span class="o">:</span> <span class="n">m</span><span class="o">.</span><span class="n">issuer</span><span class="p">,</span> <span class="p">},</span> <span class="p">}</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">jwt</span><span class="o">.</span><span class="n">NewWithClaims</span><span class="p">(</span><span class="n">jwt</span><span class="o">.</span><span class="n">SigningMethodHS256</span><span class="p">,</span> <span class="n">claims</span><span class="p">)</span> <span class="k">return</span> <span class="n">token</span><span class="o">.</span><span class="n">SignedString</span><span class="p">(</span><span class="n">m</span><span class="o">.</span><span class="n">secret</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The validation is standard HMAC-SHA256:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">m</span> <span class="o">*</span><span class="n">JWTManager</span><span class="p">)</span> <span class="n">ValidateToken</span><span class="p">(</span><span class="n">tokenString</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">Claims</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">jwt</span><span class="o">.</span><span class="n">ParseWithClaims</span><span class="p">(</span><span class="n">tokenString</span><span class="p">,</span> <span class="o">&amp;</span><span class="n">Claims</span><span class="p">{},</span> <span class="k">func</span><span class="p">(</span><span class="n">token</span> <span class="o">*</span><span class="n">jwt</span><span class="o">.</span><span class="n">Token</span><span class="p">)</span> <span class="p">(</span><span class="k">interface</span><span class="p">{},</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">_</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">token</span><span class="o">.</span><span class="n">Method</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">jwt</span><span class="o">.</span><span class="n">SigningMethodHMAC</span><span class="p">);</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">errors</span><span class="o">.</span><span class="n">New</span><span class="p">(</span><span class="s">"unexpected signing method"</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">m</span><span class="o">.</span><span class="n">secret</span><span class="p">,</span> <span class="no">nil</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="n">claims</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">token</span><span class="o">.</span><span class="n">Claims</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">Claims</span><span class="p">)</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="o">||</span> <span class="o">!</span><span class="n">token</span><span class="o">.</span><span class="n">Valid</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">errors</span><span class="o">.</span><span class="n">New</span><span class="p">(</span><span class="s">"invalid token"</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">claims</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The signing method check (<code>if _, ok := token.Method.(*jwt.SigningMethodHMAC)</code>) is important — it prevents the "algorithm confusion" attack where an attacker crafts a JWT with <code>alg: none</code> or <code>alg: RS256</code> and your server accidentally accepts it. Always verify the algorithm explicitly.</p> <h2> Hashing API Keys: Why You Never Store the Raw Value </h2> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// HashToken hashes a raw token for storage.</span> <span class="k">func</span> <span class="n">HashToken</span><span class="p">(</span><span class="n">rawToken</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">string</span> <span class="p">{</span> <span class="n">hash</span> <span class="o">:=</span> <span class="n">sha256</span><span class="o">.</span><span class="n">Sum256</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="n">rawToken</span><span class="p">))</span> <span class="k">return</span> <span class="n">hex</span><span class="o">.</span><span class="n">EncodeToString</span><span class="p">(</span><span class="n">hash</span><span class="p">[</span><span class="o">:</span><span class="p">])</span> <span class="p">}</span> <span class="c">// GenerateAPIKey generates a random API key.</span> <span class="k">func</span> <span class="n">GenerateAPIKey</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"sk-"</span> <span class="o">+</span> <span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">()</span><span class="o">.</span><span class="n">String</span><span class="p">()</span> <span class="p">}</span> </code></pre> </div> <p>When a user creates an API key, <code>GenerateAPIKey()</code> produces something like <code>sk-550e8400-e29b-41d4-a716-446655440000</code>. We:</p> <ol> <li>Return the raw key to the user — this is the <strong>only time they will see it</strong> </li> <li>Hash it with SHA-256</li> <li>Store only the hash in the database</li> </ol> <p>This mirrors how password hashing works (except we use SHA-256 instead of bcrypt, because API keys are already high-entropy random values). If someone breaches your database, they get only hashes — worthless without the raw keys.</p> <p>When the user later sends the raw key, we hash it again and look it up:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ValidateTokenUseCase</span><span class="p">)</span> <span class="n">validateAPIKey</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">rawKey</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ValidateTokenResult</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">tokenHash</span> <span class="o">:=</span> <span class="n">jwt</span><span class="o">.</span><span class="n">HashToken</span><span class="p">(</span><span class="n">rawKey</span><span class="p">)</span> <span class="n">token</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">FindByHash</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">tokenHash</span><span class="p">)</span> <span class="c">// ...</span> <span class="p">}</span> </code></pre> </div> <p>The <code>sk-</code> prefix is important. It makes API keys visually distinct from JWTs, enables tooling to detect accidental exposure (GitHub's secret scanning looks for <code>sk-</code> patterns), and most importantly, it enables the single-line routing in the <code>ValidateTokenUseCase</code>.</p> <h2> The ValidateTokenUseCase: One Branching Point </h2> <p>The entire dual-auth routing logic lives in <code>internal/application/usecase/auth/validate_token.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ValidateTokenUseCase</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">rawToken</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ValidateTokenResult</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// Check if it's an API key (starts with "sk-")</span> <span class="k">if</span> <span class="n">strings</span><span class="o">.</span><span class="n">HasPrefix</span><span class="p">(</span><span class="n">rawToken</span><span class="p">,</span> <span class="s">"sk-"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="n">uc</span><span class="o">.</span><span class="n">validateAPIKey</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">rawToken</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Otherwise treat as JWT</span> <span class="k">return</span> <span class="n">uc</span><span class="o">.</span><span class="n">validateJWT</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">rawToken</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>One line. That is the entirety of the routing decision. The API key path goes to <code>validateAPIKey()</code>, the JWT path goes to <code>validateJWT()</code>. Both return <code>*ValidateTokenResult</code> with the same shape.</p> <p>The API key path:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ValidateTokenUseCase</span><span class="p">)</span> <span class="n">validateAPIKey</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">rawKey</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ValidateTokenResult</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">tokenHash</span> <span class="o">:=</span> <span class="n">jwt</span><span class="o">.</span><span class="n">HashToken</span><span class="p">(</span><span class="n">rawKey</span><span class="p">)</span> <span class="n">token</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">FindByHash</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">tokenHash</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"invalid API key"</span><span class="p">)</span> <span class="c">// Don't leak "not found" vs "wrong key"</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">token</span><span class="o">.</span><span class="n">IsValid</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"API key is expired or revoked"</span><span class="p">)</span> <span class="p">}</span> <span class="n">user</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">userRepo</span><span class="o">.</span><span class="n">FindByID</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">UserID</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"user not found"</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">user</span><span class="o">.</span><span class="n">IsActive</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"user account is inactive"</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Update last used (fire and forget — don't add latency to every request)</span> <span class="k">go</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">UpdateLastUsed</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">token</span><span class="o">.</span><span class="n">ID</span><span class="p">)</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">ValidateTokenResult</span><span class="p">{</span><span class="n">User</span><span class="o">:</span> <span class="n">user</span><span class="p">,</span> <span class="n">Token</span><span class="o">:</span> <span class="n">token</span><span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>Notice the error message for a missing token: <code>"invalid API key"</code> instead of <code>"token not found"</code>. This prevents enumeration attacks — an attacker cannot distinguish between "wrong key" and "nonexistent key" from the error response.</p> <p>The JWT path:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ValidateTokenUseCase</span><span class="p">)</span> <span class="n">validateJWT</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">tokenString</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ValidateTokenResult</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">claims</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">jwtMgr</span><span class="o">.</span><span class="n">ValidateToken</span><span class="p">(</span><span class="n">tokenString</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"invalid token: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Load the Token record from DB to check IsValid() (revocation check)</span> <span class="n">token</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">FindByID</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">claims</span><span class="o">.</span><span class="n">TokenID</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"token not found"</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">token</span><span class="o">.</span><span class="n">IsValid</span><span class="p">()</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"token is expired or revoked"</span><span class="p">)</span> <span class="p">}</span> <span class="n">user</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">userRepo</span><span class="o">.</span><span class="n">FindByID</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">claims</span><span class="o">.</span><span class="n">UserID</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"user not found"</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="o">!</span><span class="n">user</span><span class="o">.</span><span class="n">IsActive</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"user account is inactive"</span><span class="p">)</span> <span class="p">}</span> <span class="k">go</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">UpdateLastUsed</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">token</span><span class="o">.</span><span class="n">ID</span><span class="p">)</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">ValidateTokenResult</span><span class="p">{</span><span class="n">User</span><span class="o">:</span> <span class="n">user</span><span class="p">,</span> <span class="n">Token</span><span class="o">:</span> <span class="n">token</span><span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The JWT path does one extra DB lookup compared to the API key path: it loads <code>Token</code> by the <code>TokenID</code> from claims. This is the revocation check — even if the JWT's expiry time has not passed, if the DB record is revoked, <code>token.IsValid()</code> returns false.</p> <h2> The Fire-and-Forget UpdateLastUsed Pattern </h2> <p>Both validation paths end with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">go</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">UpdateLastUsed</span><span class="p">(</span><span class="n">context</span><span class="o">.</span><span class="n">Background</span><span class="p">(),</span> <span class="n">token</span><span class="o">.</span><span class="n">ID</span><span class="p">)</span> </code></pre> </div> <p>This goroutine fires and is never awaited. It updates the <code>last_used_at</code> timestamp on the token in the database — useful for identifying stale tokens that should be cleaned up, and for audit trails.</p> <p>Why fire-and-forget? Because adding a synchronous database write to every authenticated request would increase latency for every request. The <code>last_used_at</code> update is best-effort audit data. If the goroutine fails occasionally (DB hiccup, server shutdown), that is acceptable — the request still succeeded, and the timestamp is only approximate anyway.</p> <p>Note the <code>context.Background()</code> instead of passing the request context. If we passed the request context, the goroutine might be cancelled when the request completes, before the DB write finishes. <code>context.Background()</code> ensures the goroutine has a fresh, uncancelled context.</p> <h2> The Auth Middleware: Context Injection </h2> <p>The auth middleware in <code>internal/infrastructure/http/middleware/auth.go</code> wraps the <code>ValidateTokenUseCase</code> and injects results into the request context:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">m</span> <span class="o">*</span><span class="n">AuthMiddleware</span><span class="p">)</span> <span class="n">Authenticate</span><span class="p">(</span><span class="n">next</span> <span class="n">http</span><span class="o">.</span><span class="n">Handler</span><span class="p">)</span> <span class="n">http</span><span class="o">.</span><span class="n">Handler</span> <span class="p">{</span> <span class="k">return</span> <span class="n">http</span><span class="o">.</span><span class="n">HandlerFunc</span><span class="p">(</span><span class="k">func</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">authHeader</span> <span class="o">:=</span> <span class="n">r</span><span class="o">.</span><span class="n">Header</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="s">"Authorization"</span><span class="p">)</span> <span class="k">if</span> <span class="n">authHeader</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusUnauthorized</span><span class="p">,</span> <span class="s">"UNAUTHORIZED"</span><span class="p">,</span> <span class="s">"Missing authorization header"</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// Strip "Bearer " prefix if present</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">strings</span><span class="o">.</span><span class="n">TrimPrefix</span><span class="p">(</span><span class="n">authHeader</span><span class="p">,</span> <span class="s">"Bearer "</span><span class="p">)</span> <span class="n">token</span> <span class="o">=</span> <span class="n">strings</span><span class="o">.</span><span class="n">TrimSpace</span><span class="p">(</span><span class="n">token</span><span class="p">)</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">m</span><span class="o">.</span><span class="n">validateToken</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">(),</span> <span class="n">token</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusUnauthorized</span><span class="p">,</span> <span class="s">"INVALID_TOKEN"</span><span class="p">,</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">())</span> <span class="k">return</span> <span class="p">}</span> <span class="n">ctx</span> <span class="o">:=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithValue</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">(),</span> <span class="n">UserContextKey</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">User</span><span class="p">)</span> <span class="n">ctx</span> <span class="o">=</span> <span class="n">context</span><span class="o">.</span><span class="n">WithValue</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">TokenContextKey</span><span class="p">,</span> <span class="n">result</span><span class="o">.</span><span class="n">Token</span><span class="p">)</span> <span class="n">next</span><span class="o">.</span><span class="n">ServeHTTP</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">r</span><span class="o">.</span><span class="n">WithContext</span><span class="p">(</span><span class="n">ctx</span><span class="p">))</span> <span class="p">})</span> <span class="p">}</span> </code></pre> </div> <p>After the middleware runs, every handler downstream can call:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">user</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetUserFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="c">// *entity.User</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetTokenFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="c">// *entity.Token</span> </code></pre> </div> <p>The helper functions use typed context keys to avoid the <code>interface{}</code> collision risk:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">contextKey</span> <span class="kt">string</span> <span class="k">const</span> <span class="p">(</span> <span class="n">UserContextKey</span> <span class="n">contextKey</span> <span class="o">=</span> <span class="s">"user"</span> <span class="n">TokenContextKey</span> <span class="n">contextKey</span> <span class="o">=</span> <span class="s">"token"</span> <span class="p">)</span> <span class="k">func</span> <span class="n">GetUserFromContext</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">User</span> <span class="p">{</span> <span class="n">user</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">ctx</span><span class="o">.</span><span class="n">Value</span><span class="p">(</span><span class="n">UserContextKey</span><span class="p">)</span><span class="o">.</span><span class="p">(</span><span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">User</span><span class="p">)</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">return</span> <span class="n">user</span> <span class="p">}</span> </code></pre> </div> <p>Using a custom type (<code>contextKey string</code>) for context keys prevents key collisions with other middleware or libraries that might use <code>"user"</code> as a plain string key. The type assertion <code>ctx.Value(UserContextKey).(*entity.User)</code> returns <code>nil</code> if the value was stored with a different key type or is a different concrete type.</p> <h2> How Per-Token ACLs Flow Through the System </h2> <p>Once the token is in context, it is used downstream to filter what the user can do:</p> <p><strong>In the tool handler</strong>, available tools are filtered by the token:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">h</span> <span class="o">*</span><span class="n">ToolHandler</span><span class="p">)</span> <span class="n">ListTools</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">GetTokenFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="k">var</span> <span class="n">tools</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="k">if</span> <span class="n">token</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">tools</span> <span class="o">=</span> <span class="n">h</span><span class="o">.</span><span class="n">registry</span><span class="o">.</span><span class="n">ListForToken</span><span class="p">(</span><span class="n">token</span><span class="o">.</span><span class="n">AllowedTools</span><span class="p">)</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="n">tools</span> <span class="o">=</span> <span class="n">h</span><span class="o">.</span><span class="n">registry</span><span class="o">.</span><span class="n">List</span><span class="p">()</span> <span class="p">}</span> <span class="n">response</span><span class="o">.</span><span class="n">JSON</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusOK</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span><span class="s">"tools"</span><span class="o">:</span> <span class="n">tools</span><span class="p">})</span> <span class="p">}</span> </code></pre> </div> <p><strong>In the rate limiter middleware</strong>, per-token rate limits are enforced:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">rl</span> <span class="o">*</span><span class="n">RateLimiter</span><span class="p">)</span> <span class="n">Limit</span><span class="p">(</span><span class="n">next</span> <span class="n">http</span><span class="o">.</span><span class="n">Handler</span><span class="p">)</span> <span class="n">http</span><span class="o">.</span><span class="n">Handler</span> <span class="p">{</span> <span class="k">return</span> <span class="n">http</span><span class="o">.</span><span class="n">HandlerFunc</span><span class="p">(</span><span class="k">func</span><span class="p">(</span><span class="n">w</span> <span class="n">http</span><span class="o">.</span><span class="n">ResponseWriter</span><span class="p">,</span> <span class="n">r</span> <span class="o">*</span><span class="n">http</span><span class="o">.</span><span class="n">Request</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">GetTokenFromContext</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">Context</span><span class="p">())</span> <span class="k">if</span> <span class="n">token</span> <span class="o">==</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">next</span><span class="o">.</span><span class="n">ServeHTTP</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">r</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="n">minuteKey</span> <span class="o">:=</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"ratelimit:%s:minute:%d"</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">Unix</span><span class="p">()</span><span class="o">/</span><span class="m">60</span><span class="p">)</span> <span class="n">count</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">rl</span><span class="o">.</span><span class="n">redis</span><span class="o">.</span><span class="n">Incr</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">minuteKey</span><span class="p">)</span><span class="o">.</span><span class="n">Result</span><span class="p">()</span> <span class="k">if</span> <span class="n">count</span> <span class="o">&gt;</span> <span class="kt">int64</span><span class="p">(</span><span class="n">token</span><span class="o">.</span><span class="n">RateLimitPerMinute</span><span class="p">)</span> <span class="p">{</span> <span class="n">response</span><span class="o">.</span><span class="n">Error</span><span class="p">(</span><span class="n">w</span><span class="p">,</span> <span class="n">http</span><span class="o">.</span><span class="n">StatusTooManyRequests</span><span class="p">,</span> <span class="s">"RATE_LIMIT"</span><span class="p">,</span> <span class="s">"Rate limit exceeded"</span><span class="p">)</span> <span class="k">return</span> <span class="p">}</span> <span class="c">// ...</span> <span class="p">})</span> <span class="p">}</span> </code></pre> </div> <p>The rate limit key includes <code>token.ID</code>, so each token has its own counter. A token with <code>RateLimitPerMinute: 1000</code> and a token with <code>RateLimitPerMinute: 10</code> are tracked separately, even for the same user account.</p> <h2> The Login Use Case: Where Tokens Are Created </h2> <p>When a user logs in (<code>POST /v1/auth/login</code>), the <code>LoginUseCase</code> creates a <code>Token</code> record and issues a JWT:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">LoginUseCase</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">input</span> <span class="n">LoginInput</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">LoginOutput</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">user</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">userRepo</span><span class="o">.</span><span class="n">FindByEmail</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">input</span><span class="o">.</span><span class="n">Email</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">apperrors</span><span class="o">.</span><span class="n">ErrInvalidCredentials</span> <span class="p">}</span> <span class="c">// bcrypt comparison (constant-time, prevents timing attacks)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">bcrypt</span><span class="o">.</span><span class="n">CompareHashAndPassword</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="n">user</span><span class="o">.</span><span class="n">PasswordHash</span><span class="p">),</span> <span class="p">[]</span><span class="kt">byte</span><span class="p">(</span><span class="n">input</span><span class="o">.</span><span class="n">Password</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">apperrors</span><span class="o">.</span><span class="n">ErrInvalidCredentials</span> <span class="p">}</span> <span class="c">// Create a Token record in the DB (this is what the JWT's TokenID references)</span> <span class="n">tokenID</span> <span class="o">:=</span> <span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">()</span> <span class="n">accessToken</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">jwtMgr</span><span class="o">.</span><span class="n">GenerateAccessToken</span><span class="p">(</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tokenID</span><span class="p">)</span> <span class="n">refreshToken</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">jwtMgr</span><span class="o">.</span><span class="n">GenerateRefreshToken</span><span class="p">(</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tokenID</span><span class="p">)</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">entity</span><span class="o">.</span><span class="n">NewAccessToken</span><span class="p">(</span><span class="n">user</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">jwt</span><span class="o">.</span><span class="n">HashToken</span><span class="p">(</span><span class="n">accessToken</span><span class="p">),</span> <span class="s">"session"</span><span class="p">)</span> <span class="n">token</span><span class="o">.</span><span class="n">ID</span> <span class="o">=</span> <span class="n">tokenID</span> <span class="c">// Use the same ID that's baked into the JWT</span> <span class="n">uc</span><span class="o">.</span><span class="n">tokenRepo</span><span class="o">.</span><span class="n">Create</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">token</span><span class="p">)</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">LoginOutput</span><span class="p">{</span> <span class="n">AccessToken</span><span class="o">:</span> <span class="n">accessToken</span><span class="p">,</span> <span class="n">RefreshToken</span><span class="o">:</span> <span class="n">refreshToken</span><span class="p">,</span> <span class="n">User</span><span class="o">:</span> <span class="n">user</span><span class="p">,</span> <span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The <code>TokenID</code> is generated once and embedded in both the JWT claims and the DB record. This is the link that enables revocation: when you call <code>ValidateJWT</code>, the <code>TokenID</code> from claims lets us load the DB record and check <code>IsValid()</code>.</p> <h2> What We Just Learned </h2> <ul> <li>Dual auth routes on a single <code>strings.HasPrefix(rawToken, "sk-")</code> check in <code>ValidateTokenUseCase</code> </li> <li>JWTs embed <code>TokenID</code> to enable revocation via a DB <code>IsValid()</code> check</li> <li>API keys are SHA-256 hashed before storage — the raw value is shown once and never stored</li> <li>The <code>sk-</code> prefix distinguishes API keys from JWTs, prevents enumeration, and enables secret scanning</li> <li> <code>go uc.tokenRepo.UpdateLastUsed(context.Background(), token.ID)</code> is a fire-and-forget pattern — best-effort audit without adding latency</li> <li>Auth middleware injects <code>*entity.User</code> and <code>*entity.Token</code> into context for downstream use</li> <li>Rate limits and tool permissions are per-token, tracked in Redis by <code>token.ID</code> </li> </ul> jwt api go ai #4 - Eino: ByteDance's LangGraph for Go — Building a 6-Node Agentic Workflow Izu Tolandona Sat, 21 Feb 2026 16:50:21 +0000 https://dev.to/itodona/4-eino-bytedances-langgraph-for-go-building-a-6-node-agentic-workflow-4nj2 https://dev.to/itodona/4-eino-bytedances-langgraph-for-go-building-a-6-node-agentic-workflow-4nj2 <p><em>Part 4 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>If you build AI agents in Python, you have probably used LangGraph. It lets you define stateful, cyclical workflows as a directed graph — nodes that process state, edges that connect them, and conditional branches that let the agent decide where to go next. It is the foundation of the "ReAct" (Reason + Act) agent loop.</p> <p><strong>Eino</strong> is ByteDance's Go equivalent. Same concept, same graph-based architecture — but compiled, type-safe, and running as a single binary at ~5MB. Almost nothing has been written about it in English.</p> <p>This article is the deep dive. We will build the 6-node chatbot graph that powers the agent in this project, step by step. By the end, you will understand how a Go LLM call can loop through tool execution and return a final response.</p> <h2> What Eino Is (and Is Not) </h2> <p>Eino is a workflow orchestration library from ByteDance (<code>github.com/cloudwego/eino</code>). It lets you:</p> <ul> <li>Define <strong>nodes</strong> — functions that take a state object and return a modified version</li> <li>Connect nodes with <strong>edges</strong> — simple A→B connections</li> <li>Add <strong>branches</strong> — conditional routing functions that decide which node to visit next</li> <li> <strong>Compile</strong> the graph into a <code>Runnable</code> that can be invoked with a state object</li> </ul> <p>What it is not: a replacement for an LLM provider, a tool framework, or a database. It is purely the orchestration layer.</p> <p>The key difference from LangGraph: Eino is <strong>fully type-parameterized</strong>. <code>compose.NewGraph[I, O]()</code> takes generic type parameters for input and output. The compiler enforces that your state type flows correctly through every node in the graph. In LangGraph, state shape errors only surface at runtime.</p> <h2> The AgentState: One Struct That Carries Everything </h2> <p>Before building the graph, we need the state that flows through it. Every node receives a pointer to <code>AgentState</code> and returns a (potentially modified) pointer. Here is the complete struct from <code>internal/infrastructure/eino/state/agent_state.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">AgentState</span> <span class="k">struct</span> <span class="p">{</span> <span class="c">// Identifiers</span> <span class="n">ConversationID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="s">`json:"conversation_id"`</span> <span class="n">UserID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="s">`json:"user_id"`</span> <span class="n">RequestID</span> <span class="kt">string</span> <span class="s">`json:"request_id"`</span> <span class="c">// Messages (the conversation history)</span> <span class="n">Messages</span> <span class="p">[]</span><span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span> <span class="s">`json:"messages"`</span> <span class="n">SystemPrompt</span> <span class="kt">string</span> <span class="s">`json:"system_prompt"`</span> <span class="c">// Current turn</span> <span class="n">UserInput</span> <span class="kt">string</span> <span class="s">`json:"user_input"`</span> <span class="n">CurrentOutput</span> <span class="kt">string</span> <span class="s">`json:"current_output"`</span> <span class="c">// Model configuration</span> <span class="n">Model</span> <span class="kt">string</span> <span class="s">`json:"model"`</span> <span class="n">Temperature</span> <span class="kt">float64</span> <span class="s">`json:"temperature"`</span> <span class="n">MaxTokens</span> <span class="kt">int</span> <span class="s">`json:"max_tokens"`</span> <span class="c">// Tool execution</span> <span class="n">AvailableTools</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="s">`json:"available_tools"`</span> <span class="n">PendingTools</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">ToolCall</span> <span class="s">`json:"pending_tools"`</span> <span class="n">ToolResults</span> <span class="p">[]</span><span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span> <span class="s">`json:"tool_results"`</span> <span class="c">// Multi-agent routing</span> <span class="n">CurrentAgent</span> <span class="kt">string</span> <span class="s">`json:"current_agent"`</span> <span class="n">AgentHistory</span> <span class="p">[]</span><span class="kt">string</span> <span class="s">`json:"agent_history"`</span> <span class="c">// Human-in-the-loop</span> <span class="n">RequiresApproval</span> <span class="kt">bool</span> <span class="s">`json:"requires_approval"`</span> <span class="n">ApprovalReason</span> <span class="kt">string</span> <span class="s">`json:"approval_reason"`</span> <span class="n">ApprovalData</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="s">`json:"approval_data"`</span> <span class="n">IsApproved</span> <span class="o">*</span><span class="kt">bool</span> <span class="s">`json:"is_approved,omitempty"`</span> <span class="c">// Control flow</span> <span class="n">Iteration</span> <span class="kt">int</span> <span class="s">`json:"iteration"`</span> <span class="n">MaxIterations</span> <span class="kt">int</span> <span class="s">`json:"max_iterations"`</span> <span class="n">ShouldStop</span> <span class="kt">bool</span> <span class="s">`json:"should_stop"`</span> <span class="n">Error</span> <span class="kt">string</span> <span class="s">`json:"error,omitempty"`</span> <span class="c">// Metrics</span> <span class="n">StartTime</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="s">`json:"start_time"`</span> <span class="n">TokensUsed</span> <span class="kt">int</span> <span class="s">`json:"tokens_used"`</span> <span class="n">ToolCallsCount</span> <span class="kt">int</span> <span class="s">`json:"tool_calls_count"`</span> <span class="p">}</span> </code></pre> </div> <p>Key design choices here:</p> <p><strong><code>PendingTools []toolspec.ToolCall</code></strong> — when the LLM responds with tool calls, they land here. The <code>act</code> node processes them. After processing, <code>PendingTools</code> is cleared.</p> <p><strong><code>ToolResults []port.ChatMessage</code></strong> — tool execution results are temporarily staged here, then moved to <code>Messages</code> by <code>FlushToolResults()</code>. This two-phase approach means the act→observe nodes can be tested independently.</p> <p><strong><code>IsApproved *bool</code></strong> — a pointer, not a bool. This is a deliberate three-state design:</p> <ul> <li> <code>nil</code> = waiting for approval (workflow paused)</li> <li> <code>true</code> = approved (workflow resumes to execute tools)</li> <li> <code>false</code> = rejected (workflow routes to response node)</li> </ul> <p>A regular <code>bool</code> cannot represent "not yet decided." The pointer makes the third state explicit and compiler-enforced.</p> <p><strong><code>ShouldStop bool</code></strong> — set by either the <code>observe</code> node (when <code>Iteration &gt;= MaxIterations</code>) or the <code>response</code> node. The routing functions check this to decide when to terminate the loop.</p> <p>The state also implements helpful mutation methods:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">AgentState</span><span class="p">)</span> <span class="n">AddAssistantMessage</span><span class="p">(</span><span class="n">content</span> <span class="kt">string</span><span class="p">,</span> <span class="n">toolCalls</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">ToolCall</span><span class="p">)</span> <span class="p">{</span> <span class="n">msg</span> <span class="o">:=</span> <span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span><span class="p">{</span><span class="n">Role</span><span class="o">:</span> <span class="s">"assistant"</span><span class="p">,</span> <span class="n">Content</span><span class="o">:</span> <span class="n">content</span><span class="p">}</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">toolCalls</span><span class="p">)</span> <span class="o">&gt;</span> <span class="m">0</span> <span class="p">{</span> <span class="n">msg</span><span class="o">.</span><span class="n">ToolCalls</span> <span class="o">=</span> <span class="n">toolCalls</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">Messages</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">Messages</span><span class="p">,</span> <span class="n">msg</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">AgentState</span><span class="p">)</span> <span class="n">AddToolResult</span><span class="p">(</span><span class="n">toolCallID</span><span class="p">,</span> <span class="n">name</span> <span class="kt">string</span><span class="p">,</span> <span class="n">result</span> <span class="n">any</span><span class="p">)</span> <span class="p">{</span> <span class="n">content</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Marshal</span><span class="p">(</span><span class="n">result</span><span class="p">)</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span><span class="p">,</span> <span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span><span class="p">{</span> <span class="n">Role</span><span class="o">:</span> <span class="s">"tool"</span><span class="p">,</span> <span class="n">Content</span><span class="o">:</span> <span class="kt">string</span><span class="p">(</span><span class="n">content</span><span class="p">),</span> <span class="n">ToolCallID</span><span class="o">:</span> <span class="n">toolCallID</span><span class="p">,</span> <span class="n">Name</span><span class="o">:</span> <span class="n">name</span><span class="p">,</span> <span class="p">})</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">s</span> <span class="o">*</span><span class="n">AgentState</span><span class="p">)</span> <span class="n">FlushToolResults</span><span class="p">()</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">Messages</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">Messages</span><span class="p">,</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span><span class="o">...</span><span class="p">)</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span> <span class="o">=</span> <span class="p">[]</span><span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span><span class="p">{}</span> <span class="p">}</span> </code></pre> </div> <p>These methods enforce consistent state transitions. Any node that needs to add messages goes through these methods — there is no ad-hoc <code>append</code> scattered across nodes.</p> <h2> The Graph Structure </h2> <p>Here is the full workflow we are building, exactly as it appears in the source code's ASCII diagram:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> ┌─────────┐ │ START │ └────┬────┘ │ ┌────▼────┐ │ Router │ (selects agent type + system prompt + model) └────┬────┘ │ ┌────▼────┐ │ Think │ (calls the LLM, gets response + tool calls) └────┬────┘ ┌────┴─────┬──────────┐ │ │ │ ┌───▼───┐ ┌───▼────┐ ┌───▼────┐ │ Act │ │Approve │ │Response│ └───┬───┘ └────┬───┘ └───┬────┘ │ │ │ ┌───▼───┐ │ │ │Observe│ │ │ └───┬───┘ │ │ │ │ │ └──────────┴──────────┘ │ ┌────▼────┐ │ END │ └─────────┘ </code></pre> </div> <p>There are 6 nodes: <code>router</code>, <code>think</code>, <code>act</code>, <code>observe</code>, <code>human_approval</code>, <code>response</code>.</p> <p>The key insight: <strong><code>think</code> → <code>act</code> → <code>observe</code> is a loop</strong>. After <code>observe</code>, the routing function checks whether to loop back to <code>think</code> (more tool calls needed) or go to <code>response</code> (done). This is the ReAct loop — the core of any tool-using agent.</p> <h2> Building the Graph: AddLambdaNode + compose.InvokableLambda </h2> <p>The graph is built in <code>Build(ctx context.Context)</code> in <code>internal/infrastructure/eino/graphs/chatbot_graph.go</code>. Here is how you add nodes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">Build</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">)</span> <span class="p">(</span><span class="n">compose</span><span class="o">.</span><span class="n">Runnable</span><span class="p">[</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">],</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">graph</span> <span class="o">:=</span> <span class="n">compose</span><span class="o">.</span><span class="n">NewGraph</span><span class="p">[</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">]()</span> <span class="c">// Add nodes using AddLambdaNode + compose.InvokableLambda</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"router"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">routerNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add router node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"think"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">thinkNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add think node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"act"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">actNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add act node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"observe"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">observeNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add observe node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"human_approval"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">humanApprovalNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add human_approval node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddLambdaNode</span><span class="p">(</span><span class="s">"response"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">InvokableLambda</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">responseNode</span><span class="p">));</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"add response node: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p><code>compose.InvokableLambda()</code> wraps a Go function with the signature <code>func(ctx context.Context, in I) (O, error)</code> into an Eino-compatible node. Because our graph is typed as <code>*state.AgentState → *state.AgentState</code>, every node function has the signature:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routerNode</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> </code></pre> </div> <p>The compiler enforces this. If you accidentally return a different type, it fails at compile time.</p> <h2> Edges and Branches </h2> <p>Simple edges connect nodes unconditionally:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// START → router (always)</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddEdge</span><span class="p">(</span><span class="n">compose</span><span class="o">.</span><span class="n">START</span><span class="p">,</span> <span class="s">"router"</span><span class="p">)</span> <span class="c">// router → think (always, after routing decision is stored in state)</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddEdge</span><span class="p">(</span><span class="s">"router"</span><span class="p">,</span> <span class="s">"think"</span><span class="p">)</span> <span class="c">// act → observe (always)</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddEdge</span><span class="p">(</span><span class="s">"act"</span><span class="p">,</span> <span class="s">"observe"</span><span class="p">)</span> <span class="c">// response → END (always)</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddEdge</span><span class="p">(</span><span class="s">"response"</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">END</span><span class="p">)</span> </code></pre> </div> <p>Conditional branches use <code>compose.NewGraphBranch()</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// think → one of: act, response, human_approval</span> <span class="n">thinkBranch</span> <span class="o">:=</span> <span class="n">compose</span><span class="o">.</span><span class="n">NewGraphBranch</span><span class="p">(</span><span class="n">g</span><span class="o">.</span><span class="n">routeAfterThink</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">bool</span><span class="p">{</span> <span class="s">"act"</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="s">"response"</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="s">"human_approval"</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="p">})</span> <span class="n">graph</span><span class="o">.</span><span class="n">AddBranch</span><span class="p">(</span><span class="s">"think"</span><span class="p">,</span> <span class="n">thinkBranch</span><span class="p">)</span> </code></pre> </div> <p>The routing function receives the current state and returns the name of the next node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routeAfterThink</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span><span class="p">)</span> <span class="o">&gt;</span> <span class="m">0</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"act"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// LLM wants to call tools</span> <span class="p">}</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">RequiresApproval</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"human_approval"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// A tool needs human sign-off</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// LLM gave a final answer</span> <span class="p">}</span> </code></pre> </div> <p>The map <code>map[string]bool{"act": true, "response": true, "human_approval": true}</code> tells Eino which node names are valid return values. This is a static declaration that enables the graph compiler to validate routes at compile time rather than at runtime.</p> <h2> Node Implementations </h2> <h3> Router Node: Keyword-Based Agent Selection </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routerNode</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">input</span> <span class="o">:=</span> <span class="n">s</span><span class="o">.</span><span class="n">UserInput</span> <span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span> <span class="o">=</span> <span class="s">"general"</span> <span class="n">codeKeywords</span> <span class="o">:=</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="s">"code"</span><span class="p">,</span> <span class="s">"function"</span><span class="p">,</span> <span class="s">"program"</span><span class="p">,</span> <span class="s">"debug"</span><span class="p">,</span> <span class="s">"fix"</span><span class="p">,</span> <span class="s">"implement"</span><span class="p">,</span> <span class="s">"class"</span><span class="p">,</span> <span class="s">"api"</span><span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">kw</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">codeKeywords</span> <span class="p">{</span> <span class="k">if</span> <span class="n">containsIgnoreCase</span><span class="p">(</span><span class="n">input</span><span class="p">,</span> <span class="n">kw</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span> <span class="o">=</span> <span class="s">"coder"</span> <span class="k">break</span> <span class="p">}</span> <span class="p">}</span> <span class="n">researchKeywords</span> <span class="o">:=</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="s">"search"</span><span class="p">,</span> <span class="s">"find"</span><span class="p">,</span> <span class="s">"research"</span><span class="p">,</span> <span class="s">"what is"</span><span class="p">,</span> <span class="s">"who is"</span><span class="p">,</span> <span class="s">"latest"</span><span class="p">,</span> <span class="s">"news"</span><span class="p">,</span> <span class="s">"current"</span><span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">kw</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">researchKeywords</span> <span class="p">{</span> <span class="k">if</span> <span class="n">containsIgnoreCase</span><span class="p">(</span><span class="n">input</span><span class="p">,</span> <span class="n">kw</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span> <span class="o">=</span> <span class="s">"researcher"</span> <span class="k">break</span> <span class="p">}</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">AgentHistory</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">s</span><span class="o">.</span><span class="n">AgentHistory</span><span class="p">,</span> <span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span><span class="p">)</span> <span class="k">if</span> <span class="n">model</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">modelConfig</span><span class="p">[</span><span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span><span class="p">];</span> <span class="n">ok</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">Model</span> <span class="o">=</span> <span class="n">model</span> <span class="c">// "coder" → "gpt-4o", others → "gpt-4o-mini"</span> <span class="p">}</span> <span class="k">if</span> <span class="n">prompt</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">systemPrompts</span><span class="p">[</span><span class="n">s</span><span class="o">.</span><span class="n">CurrentAgent</span><span class="p">];</span> <span class="n">ok</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">SystemPrompt</span> <span class="o">=</span> <span class="n">prompt</span> <span class="p">}</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The router selects between three agent personas: <code>general</code>, <code>coder</code>, <code>researcher</code>. Each gets a different system prompt and model. "coder" gets <code>gpt-4o</code> because code generation benefits from the more capable model. "general" and "researcher" get <code>gpt-4o-mini</code> for cost efficiency.</p> <p>This is a simple keyword router. In a production system, you might replace this with a small LLM call that classifies intent more accurately. The graph structure does not change — just the router node implementation.</p> <h3> Think Node: The LLM Call </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">thinkNode</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">messages</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">buildMessages</span><span class="p">(</span><span class="n">s</span><span class="p">)</span> <span class="c">// system prompt + conversation history + user input</span> <span class="n">tools</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">toolRegistry</span><span class="o">.</span><span class="n">List</span><span class="p">()</span> <span class="c">// all available tools in OpenAI format</span> <span class="n">s</span><span class="o">.</span><span class="n">AvailableTools</span> <span class="o">=</span> <span class="n">tools</span> <span class="n">resp</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">llm</span><span class="o">.</span><span class="n">Chat</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">port</span><span class="o">.</span><span class="n">ChatRequest</span><span class="p">{</span> <span class="n">Model</span><span class="o">:</span> <span class="n">s</span><span class="o">.</span><span class="n">Model</span><span class="p">,</span> <span class="n">Messages</span><span class="o">:</span> <span class="n">messages</span><span class="p">,</span> <span class="n">Tools</span><span class="o">:</span> <span class="n">tools</span><span class="p">,</span> <span class="n">Temperature</span><span class="o">:</span> <span class="n">s</span><span class="o">.</span><span class="n">Temperature</span><span class="p">,</span> <span class="n">MaxTokens</span><span class="o">:</span> <span class="n">s</span><span class="o">.</span><span class="n">MaxTokens</span><span class="p">,</span> <span class="p">})</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">Error</span> <span class="o">=</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">()</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="n">err</span> <span class="p">}</span> <span class="n">choice</span> <span class="o">:=</span> <span class="n">resp</span><span class="o">.</span><span class="n">Choices</span><span class="p">[</span><span class="m">0</span><span class="p">]</span> <span class="n">s</span><span class="o">.</span><span class="n">TokensUsed</span> <span class="o">+=</span> <span class="n">resp</span><span class="o">.</span><span class="n">Usage</span><span class="o">.</span><span class="n">TotalTokens</span> <span class="n">s</span><span class="o">.</span><span class="n">CurrentOutput</span> <span class="o">=</span> <span class="n">choice</span><span class="o">.</span><span class="n">Message</span><span class="o">.</span><span class="n">Content</span> <span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span> <span class="o">=</span> <span class="n">choice</span><span class="o">.</span><span class="n">Message</span><span class="o">.</span><span class="n">ToolCalls</span> <span class="c">// If LLM called tools, they land here</span> <span class="n">s</span><span class="o">.</span><span class="n">AddAssistantMessage</span><span class="p">(</span><span class="n">choice</span><span class="o">.</span><span class="n">Message</span><span class="o">.</span><span class="n">Content</span><span class="p">,</span> <span class="n">choice</span><span class="o">.</span><span class="n">Message</span><span class="o">.</span><span class="n">ToolCalls</span><span class="p">)</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The think node calls the LLM with the full conversation history and tool definitions. The LLM responds with either:</p> <ul> <li>A text answer (no tool calls) → <code>PendingTools</code> is empty → routing goes to <code>response</code> </li> <li>Tool call requests → <code>PendingTools</code> is populated → routing goes to <code>act</code> </li> </ul> <h3> Act Node: Tool Execution </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">actNode</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolResults</span> <span class="o">=</span> <span class="p">[]</span><span class="n">port</span><span class="o">.</span><span class="n">ChatMessage</span><span class="p">{}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">tc</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span> <span class="p">{</span> <span class="n">args</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">tc</span><span class="o">.</span><span class="n">ParseArguments</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="s">"failed to parse arguments"</span><span class="p">})</span> <span class="k">continue</span> <span class="p">}</span> <span class="n">t</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">g</span><span class="o">.</span><span class="n">toolRegistry</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">)</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="s">"tool not found"</span><span class="p">})</span> <span class="k">continue</span> <span class="p">}</span> <span class="c">// Check if this tool needs human approval before running</span> <span class="k">if</span> <span class="n">t</span><span class="o">.</span><span class="n">RequiresApproval</span><span class="p">()</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">RequiresApproval</span> <span class="o">=</span> <span class="no">true</span> <span class="n">s</span><span class="o">.</span><span class="n">ApprovalReason</span> <span class="o">=</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Sprintf</span><span class="p">(</span><span class="s">"Tool '%s' requires approval"</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">)</span> <span class="n">s</span><span class="o">.</span><span class="n">ApprovalData</span> <span class="o">=</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span> <span class="s">"tool"</span><span class="o">:</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="s">"arguments"</span><span class="o">:</span> <span class="n">args</span><span class="p">,</span> <span class="s">"tool_call"</span><span class="o">:</span> <span class="n">tc</span><span class="p">,</span> <span class="p">}</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Pause here</span> <span class="p">}</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">args</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">string</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">()})</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">AddToolResult</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">,</span> <span class="n">result</span><span class="p">)</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">ToolCallsCount</span><span class="o">++</span> <span class="p">}</span> <span class="n">s</span><span class="o">.</span><span class="n">PendingTools</span> <span class="o">=</span> <span class="no">nil</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The act node is where tools run. For each pending tool call from the LLM:</p> <ol> <li>Parse the JSON arguments</li> <li>Look up the tool in the registry</li> <li>Check if it requires human approval (if yes, pause)</li> <li>Execute and store the result</li> </ol> <h3> Observe Node: Loop Control </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">observeNode</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">FlushToolResults</span><span class="p">()</span> <span class="c">// Move tool results into Messages for the next LLM call</span> <span class="n">s</span><span class="o">.</span><span class="n">Iteration</span><span class="o">++</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">Iteration</span> <span class="o">&gt;=</span> <span class="n">s</span><span class="o">.</span><span class="n">MaxIterations</span> <span class="p">{</span> <span class="n">s</span><span class="o">.</span><span class="n">ShouldStop</span> <span class="o">=</span> <span class="no">true</span> <span class="c">// Prevent infinite loops</span> <span class="p">}</span> <span class="k">return</span> <span class="n">s</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>The observe node does two things: moves tool results into the message history (so the LLM can see them next iteration), and increments the iteration counter. If we hit <code>MaxIterations</code> (default: 10), we force a stop. This prevents runaway agent loops that would rack up LLM costs.</p> <h3> The Observe Branch: Loop or Stop? </h3> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">g</span> <span class="o">*</span><span class="n">ChatbotGraph</span><span class="p">)</span> <span class="n">routeAfterObserve</span><span class="p">(</span><span class="n">_</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">s</span> <span class="o">*</span><span class="n">state</span><span class="o">.</span><span class="n">AgentState</span><span class="p">)</span> <span class="p">(</span><span class="kt">string</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">ShouldStop</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"response"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Force a final response</span> <span class="p">}</span> <span class="k">if</span> <span class="n">s</span><span class="o">.</span><span class="n">RequiresApproval</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"human_approval"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Pause for approval</span> <span class="p">}</span> <span class="k">return</span> <span class="s">"think"</span><span class="p">,</span> <span class="no">nil</span> <span class="c">// Loop back for another LLM call with tool results</span> <span class="p">}</span> </code></pre> </div> <p>When the graph returns to <code>think</code> after <code>observe</code>, the LLM now sees the tool results in its message history. It can either call more tools or give a final answer with the information it gathered.</p> <h2> Compiling and Running the Graph </h2> <p>After defining all nodes and edges, compile the graph:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">return</span> <span class="n">graph</span><span class="o">.</span><span class="n">Compile</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">compose</span><span class="o">.</span><span class="n">WithGraphName</span><span class="p">(</span><span class="s">"chatbot"</span><span class="p">))</span> </code></pre> </div> <p><code>Compile()</code> validates the graph structure — every branch target must be a registered node, there must be a path from START to END, etc. It returns a <code>compose.Runnable[*state.AgentState, *state.AgentState]</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Runnable</span><span class="p">[</span><span class="n">I</span><span class="p">,</span> <span class="n">O</span> <span class="n">any</span><span class="p">]</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Invoke</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">input</span> <span class="n">I</span><span class="p">,</span> <span class="n">opts</span> <span class="o">...</span><span class="n">Option</span><span class="p">)</span> <span class="p">(</span><span class="n">O</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="n">Stream</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">input</span> <span class="n">I</span><span class="p">,</span> <span class="n">opts</span> <span class="o">...</span><span class="n">Option</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">StreamReader</span><span class="p">[</span><span class="n">O</span><span class="p">],</span> <span class="kt">error</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>To run the agent:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">runnable</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">chatbotGraph</span><span class="o">.</span><span class="n">Build</span><span class="p">(</span><span class="n">ctx</span><span class="p">)</span> <span class="n">initialState</span> <span class="o">:=</span> <span class="n">state</span><span class="o">.</span><span class="n">NewAgentState</span><span class="p">(</span><span class="n">convID</span><span class="p">,</span> <span class="n">userID</span><span class="p">,</span> <span class="s">"What is the weather in Tokyo?"</span><span class="p">)</span> <span class="n">finalState</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">runnable</span><span class="o">.</span><span class="n">Invoke</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">initialState</span><span class="p">)</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">finalState</span><span class="o">.</span><span class="n">CurrentOutput</span><span class="p">)</span> <span class="c">// The agent's final response</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">finalState</span><span class="o">.</span><span class="n">TokensUsed</span><span class="p">)</span> <span class="c">// Total tokens consumed</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Println</span><span class="p">(</span><span class="n">finalState</span><span class="o">.</span><span class="n">ToolCallsCount</span><span class="p">)</span> <span class="c">// How many tools were called</span> </code></pre> </div> <p>The <code>Invoke()</code> call runs the full graph synchronously. For streaming, you would use <code>Stream()</code> to get a <code>StreamReader</code> that emits state updates as they occur.</p> <h2> A Complete ReAct Loop Traced </h2> <p>Let us trace what happens when a user asks "What is 15% of 847?":</p> <ol> <li><p><strong>START → Router</strong>: Input contains no code or research keywords → <code>s.CurrentAgent = "general"</code>, model = <code>"gpt-4o-mini"</code></p></li> <li><p><strong>Router → Think</strong>: LLM receives the question with <code>calculator</code> tool available. Responds with a tool call: <code>{"name": "calculator", "arguments": "{\"expression\": \"847 * 0.15\"}"}</code></p></li> <li><p><strong>Think → Act</strong> (routeAfterThink: <code>PendingTools</code> is not empty): Act node parses arguments, calls <code>calculator.Execute(ctx, {"expression": "847 * 0.15"})</code>, gets <code>{"expression": "847 * 0.15", "result": 127.05}</code>, stores in <code>ToolResults</code></p></li> <li><p><strong>Act → Observe</strong>: Observe moves result from <code>ToolResults</code> into <code>Messages</code>. Iteration = 1. <code>ShouldStop = false</code>.</p></li> <li><p><strong>Observe → Think</strong> (routeAfterObserve: not stopped, no approval needed): LLM now sees the tool result in its message history. Responds: "15% of 847 is 127.05"</p></li> <li><p><strong>Think → Response</strong> (routeAfterThink: <code>PendingTools</code> is empty): Response node stores <code>s.CurrentOutput = "15% of 847 is 127.05"</code>, sets <code>ShouldStop = true</code></p></li> <li><p><strong>Response → END</strong>: Final state returned. <code>finalState.CurrentOutput</code> contains the answer. Total: 2 LLM calls, 1 tool execution, 2 graph iterations.</p></li> </ol> <h2> Why This Architecture Works </h2> <p><strong>Testability.</strong> Every node is a pure function: <code>(*AgentState) → (*AgentState, error)</code>. You can unit test <code>actNode</code> by constructing an <code>AgentState</code> with specific <code>PendingTools</code> and asserting the state after execution — no mocking of the graph itself needed.</p> <p><strong>Observability.</strong> The complete state after each node is available. You can log <code>s.TokensUsed</code>, <code>s.ToolCallsCount</code>, <code>s.Iteration</code>, and <code>s.AgentHistory</code> at the end of every request.</p> <p><strong>Safety.</strong> The <code>MaxIterations</code> counter prevents infinite loops. The <code>RequiresApproval</code> check prevents unauthorized tool execution. The compile-time graph validation prevents invalid routing.</p> <p><strong>Extensibility.</strong> Add a new node by implementing a function with the right signature and calling <code>graph.AddLambdaNode()</code>. Add a new agent persona by adding an entry to <code>systemPrompts</code> and <code>modelConfig</code>. The graph structure handles the routing.</p> <h2> What We Just Learned </h2> <ul> <li>Eino is ByteDance's Go LangGraph equivalent — type-safe, compiled, single-binary</li> <li> <code>AgentState</code> is a single struct carrying all workflow state, passed by pointer through every node</li> <li> <code>IsApproved *bool</code> uses pointer semantics to represent three states (nil/true/false)</li> <li> <code>compose.InvokableLambda()</code> wraps any <code>func(ctx, in) (out, error)</code> into an Eino node</li> <li> <code>compose.NewGraphBranch()</code> with a routing function handles conditional edges</li> <li>The think→act→observe loop is the ReAct pattern: reason, act, observe, repeat</li> <li> <code>MaxIterations</code> prevents runaway loops; <code>ShouldStop</code> signals the graph to terminate</li> </ul> eino adk go ai #3 - Add a New AI Tool in 15 Lines of Go: The OpenAI-Compatible Tool System Explained Izu Tolandona Sat, 21 Feb 2026 16:47:52 +0000 https://dev.to/itodona/3-add-a-new-ai-tool-in-15-lines-of-go-the-openai-compatible-tool-system-explained-1dno https://dev.to/itodona/3-add-a-new-ai-tool-in-15-lines-of-go-the-openai-compatible-tool-system-explained-1dno <p><em>Part 3 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>Every AI agent framework needs a tool system. Python's LangChain has <code>@tool</code> decorators. LangGraph has <code>ToolNode</code>. In Go, we built ours around a clean interface pattern — and the result is that adding a new AI tool to a production agent takes about 15 lines of code and 2 lines to register it.</p> <p>This is not an exaggeration. By the end of this article, you will have added a real, working tool that your AI agent can call. Let me show you exactly how it works.</p> <h2> The Tool Interface: 6 Methods, 2 Are Free </h2> <p>Everything starts with this interface in <code>internal/application/usecase/tool/tool_registry.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Tool interface that all tools must implement.</span> <span class="k">type</span> <span class="n">Tool</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Name</span><span class="p">()</span> <span class="kt">string</span> <span class="n">Description</span><span class="p">()</span> <span class="kt">string</span> <span class="n">Definition</span><span class="p">()</span> <span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="p">(</span><span class="n">any</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="n">RequiresApproval</span><span class="p">()</span> <span class="kt">bool</span> <span class="n">Validate</span><span class="p">(</span><span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="kt">error</span> <span class="p">}</span> </code></pre> </div> <p>Six methods. But here is the trick — you never implement <code>RequiresApproval()</code> or <code>Validate()</code> yourself unless you need to. There is a <code>BaseTool</code> struct you embed that gives you both for free:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// BaseTool provides default implementations.</span> <span class="k">type</span> <span class="n">BaseTool</span> <span class="k">struct</span><span class="p">{}</span> <span class="k">func</span> <span class="p">(</span><span class="n">BaseTool</span><span class="p">)</span> <span class="n">RequiresApproval</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="no">false</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">BaseTool</span><span class="p">)</span> <span class="n">Validate</span><span class="p">(</span><span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="kt">error</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>So in practice, every tool you write needs exactly <strong>four</strong> methods: <code>Name()</code>, <code>Description()</code>, <code>Definition()</code>, and <code>Execute()</code>. Three of those are trivial one-liners. The only method with real logic is <code>Execute()</code>.</p> <h2> The CalculatorTool: A 15-Line Deep Dive </h2> <p>Here is the entire <code>CalculatorTool</code> from <code>internal/application/usecase/tool/builtin/calculator.go</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">CalculatorTool</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">tool</span><span class="o">.</span><span class="n">BaseTool</span> <span class="c">// Embeds RequiresApproval() and Validate()</span> <span class="p">}</span> <span class="k">func</span> <span class="n">NewCalculatorTool</span><span class="p">()</span> <span class="o">*</span><span class="n">CalculatorTool</span> <span class="p">{</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">CalculatorTool</span><span class="p">{}</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">Name</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"calculator"</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">Description</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"Perform mathematical calculations. Supports basic arithmetic (+, -, *, /), parentheses, and common functions."</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">Definition</span><span class="p">()</span> <span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="p">{</span> <span class="k">return</span> <span class="n">toolspec</span><span class="o">.</span><span class="n">NewTool</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">Name</span><span class="p">(),</span> <span class="n">t</span><span class="o">.</span><span class="n">Description</span><span class="p">(),</span> <span class="o">&amp;</span><span class="n">toolspec</span><span class="o">.</span><span class="n">JSONSchema</span><span class="p">{</span> <span class="n">Type</span><span class="o">:</span> <span class="s">"object"</span><span class="p">,</span> <span class="n">Properties</span><span class="o">:</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">PropertySchema</span><span class="p">{</span> <span class="s">"expression"</span><span class="o">:</span> <span class="p">{</span> <span class="n">Type</span><span class="o">:</span> <span class="s">"string"</span><span class="p">,</span> <span class="n">Description</span><span class="o">:</span> <span class="s">"Mathematical expression to evaluate. Example: '(2 + 3) * 4' or '15 / 3'"</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="n">Required</span><span class="o">:</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="s">"expression"</span><span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="p">(</span><span class="n">any</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">expr</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">args</span><span class="p">[</span><span class="s">"expression"</span><span class="p">]</span><span class="o">.</span><span class="p">(</span><span class="kt">string</span><span class="p">)</span> <span class="k">if</span> <span class="n">expr</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"expression is required"</span><span class="p">)</span> <span class="p">}</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">evaluate</span><span class="p">(</span><span class="n">expr</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span><span class="s">"error"</span><span class="o">:</span> <span class="n">err</span><span class="o">.</span><span class="n">Error</span><span class="p">(),</span> <span class="s">"expression"</span><span class="o">:</span> <span class="n">expr</span><span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">return</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span><span class="s">"expression"</span><span class="o">:</span> <span class="n">expr</span><span class="p">,</span> <span class="s">"result"</span><span class="o">:</span> <span class="n">result</span><span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>That is the entire public surface of the tool. The 15 lines that matter are the <code>Execute()</code> function and the struct definition. Everything else is metadata that tells the LLM what the tool does and what parameters it expects.</p> <h3> The Secret: Go's AST Parser as a Safe Evaluator </h3> <p>The <code>evaluate()</code> method underneath is the genuinely interesting part:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">evaluate</span><span class="p">(</span><span class="n">expr</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="kt">float64</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">node</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">parser</span><span class="o">.</span><span class="n">ParseExpr</span><span class="p">(</span><span class="n">expr</span><span class="p">)</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="m">0</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"invalid expression: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">t</span><span class="o">.</span><span class="n">eval</span><span class="p">(</span><span class="n">node</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">CalculatorTool</span><span class="p">)</span> <span class="n">eval</span><span class="p">(</span><span class="n">node</span> <span class="n">ast</span><span class="o">.</span><span class="n">Expr</span><span class="p">)</span> <span class="p">(</span><span class="kt">float64</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">switch</span> <span class="n">n</span> <span class="o">:=</span> <span class="n">node</span><span class="o">.</span><span class="p">(</span><span class="k">type</span><span class="p">)</span> <span class="p">{</span> <span class="k">case</span> <span class="o">*</span><span class="n">ast</span><span class="o">.</span><span class="n">BasicLit</span><span class="o">:</span> <span class="k">return</span> <span class="n">strconv</span><span class="o">.</span><span class="n">ParseFloat</span><span class="p">(</span><span class="n">n</span><span class="o">.</span><span class="n">Value</span><span class="p">,</span> <span class="m">64</span><span class="p">)</span> <span class="k">case</span> <span class="o">*</span><span class="n">ast</span><span class="o">.</span><span class="n">BinaryExpr</span><span class="o">:</span> <span class="n">left</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">eval</span><span class="p">(</span><span class="n">n</span><span class="o">.</span><span class="n">X</span><span class="p">)</span> <span class="n">right</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">eval</span><span class="p">(</span><span class="n">n</span><span class="o">.</span><span class="n">Y</span><span class="p">)</span> <span class="k">switch</span> <span class="n">n</span><span class="o">.</span><span class="n">Op</span> <span class="p">{</span> <span class="k">case</span> <span class="n">token</span><span class="o">.</span><span class="n">ADD</span><span class="o">:</span> <span class="k">return</span> <span class="n">left</span> <span class="o">+</span> <span class="n">right</span><span class="p">,</span> <span class="no">nil</span> <span class="k">case</span> <span class="n">token</span><span class="o">.</span><span class="n">SUB</span><span class="o">:</span> <span class="k">return</span> <span class="n">left</span> <span class="o">-</span> <span class="n">right</span><span class="p">,</span> <span class="no">nil</span> <span class="k">case</span> <span class="n">token</span><span class="o">.</span><span class="n">MUL</span><span class="o">:</span> <span class="k">return</span> <span class="n">left</span> <span class="o">*</span> <span class="n">right</span><span class="p">,</span> <span class="no">nil</span> <span class="k">case</span> <span class="n">token</span><span class="o">.</span><span class="n">QUO</span><span class="o">:</span> <span class="k">if</span> <span class="n">right</span> <span class="o">==</span> <span class="m">0</span> <span class="p">{</span> <span class="k">return</span> <span class="m">0</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"division by zero"</span><span class="p">)</span> <span class="p">}</span> <span class="k">return</span> <span class="n">left</span> <span class="o">/</span> <span class="n">right</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">case</span> <span class="o">*</span><span class="n">ast</span><span class="o">.</span><span class="n">ParenExpr</span><span class="o">:</span> <span class="k">return</span> <span class="n">t</span><span class="o">.</span><span class="n">eval</span><span class="p">(</span><span class="n">n</span><span class="o">.</span><span class="n">X</span><span class="p">)</span> <span class="k">case</span> <span class="o">*</span><span class="n">ast</span><span class="o">.</span><span class="n">UnaryExpr</span><span class="o">:</span> <span class="n">val</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">eval</span><span class="p">(</span><span class="n">n</span><span class="o">.</span><span class="n">X</span><span class="p">)</span> <span class="k">if</span> <span class="n">n</span><span class="o">.</span><span class="n">Op</span> <span class="o">==</span> <span class="n">token</span><span class="o">.</span><span class="n">SUB</span> <span class="p">{</span> <span class="k">return</span> <span class="o">-</span><span class="n">val</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">return</span> <span class="n">val</span><span class="p">,</span> <span class="no">nil</span> <span class="p">}</span> <span class="k">return</span> <span class="m">0</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"unsupported expression type"</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>We use Go's own <code>go/parser</code> and <code>go/ast</code> packages — the same infrastructure the Go compiler uses — to parse and evaluate mathematical expressions. This gives us:</p> <ul> <li> <strong>Safety</strong>: No <code>eval()</code>, no string execution. Just AST tree walking.</li> <li> <strong>Correctness</strong>: Operator precedence handled automatically by the parser.</li> <li> <strong>Zero dependencies</strong>: It is all in the Go standard library.</li> </ul> <p><code>parser.ParseExpr("(2 + 3) * 4")</code> returns an <code>*ast.BinaryExpr</code> where the left side is another <code>*ast.BinaryExpr</code> (the parenthesized <code>2 + 3</code>) and the right side is <code>*ast.BasicLit</code> (the number 4). We walk the tree recursively and evaluate each node. No external math library needed.</p> <h2> The toolspec Package: Why OpenAI Format Matters </h2> <p>The <code>Definition()</code> method returns a <code>toolspec.Tool</code> from <code>pkg/toolspec/openai_format.go</code>. This is a public package because the format is shared across the entire stack:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Tool definition compatible with OpenAI, Anthropic (via LiteLLM), and other providers.</span> <span class="k">type</span> <span class="n">Tool</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Type</span> <span class="kt">string</span> <span class="s">`json:"type"`</span> <span class="c">// Always "function"</span> <span class="n">Function</span> <span class="n">Function</span> <span class="s">`json:"function"`</span> <span class="p">}</span> <span class="k">type</span> <span class="n">Function</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Name</span> <span class="kt">string</span> <span class="s">`json:"name"`</span> <span class="n">Description</span> <span class="kt">string</span> <span class="s">`json:"description"`</span> <span class="n">Parameters</span> <span class="o">*</span><span class="n">JSONSchema</span> <span class="s">`json:"parameters,omitempty"`</span> <span class="n">Strict</span> <span class="kt">bool</span> <span class="s">`json:"strict,omitempty"`</span> <span class="p">}</span> <span class="k">type</span> <span class="n">JSONSchema</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Type</span> <span class="kt">string</span> <span class="s">`json:"type"`</span> <span class="n">Properties</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">PropertySchema</span> <span class="s">`json:"properties,omitempty"`</span> <span class="n">Required</span> <span class="p">[]</span><span class="kt">string</span> <span class="s">`json:"required,omitempty"`</span> <span class="p">}</span> </code></pre> </div> <p>When the LLM (GPT-4o, Claude, Gemini via LiteLLM) receives this definition, it knows exactly what <code>calculator</code> does, what parameters it accepts, and which are required. When the LLM decides to call <code>calculator</code>, it returns a <code>ToolCall</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">ToolCall</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="kt">string</span> <span class="s">`json:"id"`</span> <span class="c">// e.g. "call_abc123"</span> <span class="n">Type</span> <span class="kt">string</span> <span class="s">`json:"type"`</span> <span class="c">// "function"</span> <span class="n">Function</span> <span class="n">FunctionCall</span> <span class="s">`json:"function"`</span> <span class="p">}</span> <span class="k">type</span> <span class="n">FunctionCall</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">Name</span> <span class="kt">string</span> <span class="s">`json:"name"`</span> <span class="c">// "calculator"</span> <span class="n">Arguments</span> <span class="kt">string</span> <span class="s">`json:"arguments"`</span> <span class="c">// JSON string: {"expression": "(2+3)*4"}</span> <span class="p">}</span> <span class="c">// ParseArguments parses the JSON arguments into a map.</span> <span class="k">func</span> <span class="p">(</span><span class="n">tc</span> <span class="o">*</span><span class="n">ToolCall</span><span class="p">)</span> <span class="n">ParseArguments</span><span class="p">()</span> <span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="k">var</span> <span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="k">return</span> <span class="n">args</span><span class="p">,</span> <span class="n">json</span><span class="o">.</span><span class="n">Unmarshal</span><span class="p">([]</span><span class="kt">byte</span><span class="p">(</span><span class="n">tc</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Arguments</span><span class="p">),</span> <span class="o">&amp;</span><span class="n">args</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>This is the OpenAI tool calling format. Because we use LiteLLM as a proxy, the exact same JSON works with GPT-4o, Claude 3.5 Sonnet, and Gemini Pro. You change your model name in a config file; the tool calling code does not change at all.</p> <h2> The ToolRegistry: Thread-Safe Tool Management </h2> <p>All tools are stored in a <code>ToolRegistry</code> — a thread-safe map protected by <code>sync.RWMutex</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">ToolRegistry</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">tools</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">Tool</span> <span class="n">mu</span> <span class="n">sync</span><span class="o">.</span><span class="n">RWMutex</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">r</span> <span class="o">*</span><span class="n">ToolRegistry</span><span class="p">)</span> <span class="n">Register</span><span class="p">(</span><span class="n">tool</span> <span class="n">Tool</span><span class="p">)</span> <span class="p">{</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Lock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">Unlock</span><span class="p">()</span> <span class="n">r</span><span class="o">.</span><span class="n">tools</span><span class="p">[</span><span class="n">tool</span><span class="o">.</span><span class="n">Name</span><span class="p">()]</span> <span class="o">=</span> <span class="n">tool</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">r</span> <span class="o">*</span><span class="n">ToolRegistry</span><span class="p">)</span> <span class="n">Get</span><span class="p">(</span><span class="n">name</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="n">Tool</span><span class="p">,</span> <span class="kt">bool</span><span class="p">)</span> <span class="p">{</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RLock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RUnlock</span><span class="p">()</span> <span class="k">return</span> <span class="n">r</span><span class="o">.</span><span class="n">tools</span><span class="p">[</span><span class="n">name</span><span class="p">],</span> <span class="n">ok</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">r</span> <span class="o">*</span><span class="n">ToolRegistry</span><span class="p">)</span> <span class="n">List</span><span class="p">()</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="p">{</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RLock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RUnlock</span><span class="p">()</span> <span class="n">defs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span><span class="p">,</span> <span class="m">0</span><span class="p">,</span> <span class="nb">len</span><span class="p">(</span><span class="n">r</span><span class="o">.</span><span class="n">tools</span><span class="p">))</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">tool</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">r</span><span class="o">.</span><span class="n">tools</span> <span class="p">{</span> <span class="n">defs</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">defs</span><span class="p">,</span> <span class="n">tool</span><span class="o">.</span><span class="n">Definition</span><span class="p">())</span> <span class="p">}</span> <span class="k">return</span> <span class="n">defs</span> <span class="p">}</span> </code></pre> </div> <p>The write lock is only held during <code>Register()</code>. The much more frequent read operations (<code>Get()</code>, <code>List()</code>) use the read lock, which allows concurrent reads without blocking each other. In a high-throughput agent API, this matters.</p> <h3> Per-Token Tool Permissions </h3> <p>There is one more method that makes this registry genuinely production-ready:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// ListForToken returns tools filtered by token permissions.</span> <span class="k">func</span> <span class="p">(</span><span class="n">r</span> <span class="o">*</span><span class="n">ToolRegistry</span><span class="p">)</span> <span class="n">ListForToken</span><span class="p">(</span><span class="n">allowedTools</span> <span class="p">[]</span><span class="kt">string</span><span class="p">)</span> <span class="p">[]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="p">{</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">allowedTools</span><span class="p">)</span> <span class="o">==</span> <span class="m">0</span> <span class="p">{</span> <span class="k">return</span> <span class="n">r</span><span class="o">.</span><span class="n">List</span><span class="p">()</span> <span class="c">// All tools allowed</span> <span class="p">}</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RLock</span><span class="p">()</span> <span class="k">defer</span> <span class="n">r</span><span class="o">.</span><span class="n">mu</span><span class="o">.</span><span class="n">RUnlock</span><span class="p">()</span> <span class="n">allowedMap</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="kt">bool</span><span class="p">)</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">t</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">allowedTools</span> <span class="p">{</span> <span class="k">if</span> <span class="n">t</span> <span class="o">==</span> <span class="s">"*"</span> <span class="p">{</span> <span class="k">return</span> <span class="n">r</span><span class="o">.</span><span class="n">List</span><span class="p">()</span> <span class="c">// Wildcard: all allowed</span> <span class="p">}</span> <span class="n">allowedMap</span><span class="p">[</span><span class="n">t</span><span class="p">]</span> <span class="o">=</span> <span class="no">true</span> <span class="p">}</span> <span class="n">defs</span> <span class="o">:=</span> <span class="nb">make</span><span class="p">([]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span><span class="p">,</span> <span class="m">0</span><span class="p">)</span> <span class="k">for</span> <span class="n">name</span><span class="p">,</span> <span class="n">tool</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">r</span><span class="o">.</span><span class="n">tools</span> <span class="p">{</span> <span class="k">if</span> <span class="n">allowedMap</span><span class="p">[</span><span class="n">name</span><span class="p">]</span> <span class="p">{</span> <span class="n">defs</span> <span class="o">=</span> <span class="nb">append</span><span class="p">(</span><span class="n">defs</span><span class="p">,</span> <span class="n">tool</span><span class="o">.</span><span class="n">Definition</span><span class="p">())</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="n">defs</span> <span class="p">}</span> </code></pre> </div> <p>Each API token in the database has an <code>AllowedTools []string</code> field. When the agent is invoked, the tool list passed to the LLM is filtered to only the tools that token is permitted to use. An API key for a customer who purchased "basic" might only see <code>calculator</code>. An admin key sees everything.</p> <p>The LLM never sees tools it is not allowed to call. No extra validation needed.</p> <h2> Adding Your Own Tool: A Practical Example </h2> <p>Let's add a <code>WeatherTool</code> that calls a hypothetical weather API. Here is everything you need to write:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// internal/application/usecase/tool/builtin/weather.go</span> <span class="k">package</span> <span class="n">builtin</span> <span class="k">import</span> <span class="p">(</span> <span class="s">"context"</span> <span class="s">"fmt"</span> <span class="s">"net/http"</span> <span class="s">"encoding/json"</span> <span class="s">"github.com/wyuneed/go-agent-api/internal/application/usecase/tool"</span> <span class="s">"github.com/wyuneed/go-agent-api/pkg/toolspec"</span> <span class="p">)</span> <span class="k">type</span> <span class="n">WeatherTool</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">tool</span><span class="o">.</span><span class="n">BaseTool</span> <span class="n">apiKey</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">func</span> <span class="n">NewWeatherTool</span><span class="p">(</span><span class="n">apiKey</span> <span class="kt">string</span><span class="p">)</span> <span class="o">*</span><span class="n">WeatherTool</span> <span class="p">{</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">WeatherTool</span><span class="p">{</span><span class="n">apiKey</span><span class="o">:</span> <span class="n">apiKey</span><span class="p">}</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">WeatherTool</span><span class="p">)</span> <span class="n">Name</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"get_weather"</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">WeatherTool</span><span class="p">)</span> <span class="n">Description</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"Get the current weather for a city. Returns temperature, conditions, and humidity."</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">WeatherTool</span><span class="p">)</span> <span class="n">Definition</span><span class="p">()</span> <span class="n">toolspec</span><span class="o">.</span><span class="n">Tool</span> <span class="p">{</span> <span class="k">return</span> <span class="n">toolspec</span><span class="o">.</span><span class="n">NewTool</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">Name</span><span class="p">(),</span> <span class="n">t</span><span class="o">.</span><span class="n">Description</span><span class="p">(),</span> <span class="o">&amp;</span><span class="n">toolspec</span><span class="o">.</span><span class="n">JSONSchema</span><span class="p">{</span> <span class="n">Type</span><span class="o">:</span> <span class="s">"object"</span><span class="p">,</span> <span class="n">Properties</span><span class="o">:</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">toolspec</span><span class="o">.</span><span class="n">PropertySchema</span><span class="p">{</span> <span class="s">"city"</span><span class="o">:</span> <span class="p">{</span> <span class="n">Type</span><span class="o">:</span> <span class="s">"string"</span><span class="p">,</span> <span class="n">Description</span><span class="o">:</span> <span class="s">"The city name, e.g. 'Tokyo' or 'New York'"</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="n">Required</span><span class="o">:</span> <span class="p">[]</span><span class="kt">string</span><span class="p">{</span><span class="s">"city"</span><span class="p">},</span> <span class="p">})</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">WeatherTool</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">args</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="p">(</span><span class="n">any</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">city</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">args</span><span class="p">[</span><span class="s">"city"</span><span class="p">]</span><span class="o">.</span><span class="p">(</span><span class="kt">string</span><span class="p">)</span> <span class="k">if</span> <span class="n">city</span> <span class="o">==</span> <span class="s">""</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"city is required"</span><span class="p">)</span> <span class="p">}</span> <span class="c">// Call your weather API here...</span> <span class="k">return</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span> <span class="s">"city"</span><span class="o">:</span> <span class="n">city</span><span class="p">,</span> <span class="s">"temperature"</span><span class="o">:</span> <span class="s">"22°C"</span><span class="p">,</span> <span class="s">"conditions"</span><span class="o">:</span> <span class="s">"Partly cloudy"</span><span class="p">,</span> <span class="p">},</span> <span class="no">nil</span> <span class="p">}</span> </code></pre> </div> <p>Then register it in <code>cmd/api/main.go</code> — <strong>two lines</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="n">toolRegistry</span><span class="o">.</span><span class="n">RegisterAll</span><span class="p">(</span> <span class="n">builtin</span><span class="o">.</span><span class="n">NewCalculatorTool</span><span class="p">(),</span> <span class="n">builtin</span><span class="o">.</span><span class="n">NewWebSearchTool</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">Tools</span><span class="o">.</span><span class="n">WebSearchAPIKey</span><span class="p">),</span> <span class="n">builtin</span><span class="o">.</span><span class="n">NewWeatherTool</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">Tools</span><span class="o">.</span><span class="n">WeatherAPIKey</span><span class="p">),</span> <span class="c">// ← Add this</span> <span class="p">)</span> </code></pre> </div> <p>That is genuinely it. The next time a user asks "What is the weather in Tokyo?", the LLM will call <code>get_weather</code> with <code>{"city": "Tokyo"}</code>, your <code>Execute()</code> method runs, and the result goes back to the LLM for a final response.</p> <h2> The Execution Pipeline </h2> <p>When the Eino workflow calls your tool, it goes through <code>execute_tool.go</code> which handles the full pipeline:</p> <ol> <li> <strong>Look up the tool</strong> in the registry by name</li> <li> <strong>Check permissions</strong> — does this token's <code>AllowedTools</code> include this tool name?</li> <li> <strong>Parse arguments</strong> — <code>tc.ParseArguments()</code> unmarshals the JSON string</li> <li> <strong>Validate</strong> — <code>tool.Validate(args)</code> (default: always passes)</li> <li> <strong>Execute</strong> — <code>tool.Execute(ctx, args)</code> </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">uc</span> <span class="o">*</span><span class="n">ExecuteToolUseCase</span><span class="p">)</span> <span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">input</span> <span class="n">ExecuteToolInput</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">ExecuteToolOutput</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="n">t</span><span class="p">,</span> <span class="n">ok</span> <span class="o">:=</span> <span class="n">uc</span><span class="o">.</span><span class="n">registry</span><span class="o">.</span><span class="n">Get</span><span class="p">(</span><span class="n">input</span><span class="o">.</span><span class="n">ToolCall</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">)</span> <span class="k">if</span> <span class="o">!</span><span class="n">ok</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">apperrors</span><span class="o">.</span><span class="n">ErrNotFound</span><span class="o">.</span><span class="n">Wrap</span><span class="p">(</span><span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"tool not found: %s"</span><span class="p">,</span> <span class="n">input</span><span class="o">.</span><span class="n">ToolCall</span><span class="o">.</span><span class="n">Function</span><span class="o">.</span><span class="n">Name</span><span class="p">))</span> <span class="p">}</span> <span class="c">// Check token permission</span> <span class="k">if</span> <span class="n">input</span><span class="o">.</span><span class="n">Token</span> <span class="o">!=</span> <span class="no">nil</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="n">input</span><span class="o">.</span><span class="n">Token</span><span class="o">.</span><span class="n">CanUseTool</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">Name</span><span class="p">())</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">apperrors</span><span class="o">.</span><span class="n">ErrToolNotAllowed</span> <span class="p">}</span> <span class="n">args</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">input</span><span class="o">.</span><span class="n">ToolCall</span><span class="o">.</span><span class="n">ParseArguments</span><span class="p">()</span> <span class="k">if</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"parse arguments: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="k">if</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">Validate</span><span class="p">(</span><span class="n">args</span><span class="p">);</span> <span class="n">err</span> <span class="o">!=</span> <span class="no">nil</span> <span class="p">{</span> <span class="k">return</span> <span class="no">nil</span><span class="p">,</span> <span class="n">fmt</span><span class="o">.</span><span class="n">Errorf</span><span class="p">(</span><span class="s">"validate: %w"</span><span class="p">,</span> <span class="n">err</span><span class="p">)</span> <span class="p">}</span> <span class="n">start</span> <span class="o">:=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="n">result</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">t</span><span class="o">.</span><span class="n">Execute</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">args</span><span class="p">)</span> <span class="n">duration</span> <span class="o">:=</span> <span class="n">time</span><span class="o">.</span><span class="n">Since</span><span class="p">(</span><span class="n">start</span><span class="p">)</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">ExecuteToolOutput</span><span class="p">{</span> <span class="n">ToolCallID</span><span class="o">:</span> <span class="n">input</span><span class="o">.</span><span class="n">ToolCall</span><span class="o">.</span><span class="n">ID</span><span class="p">,</span> <span class="n">ToolName</span><span class="o">:</span> <span class="n">t</span><span class="o">.</span><span class="n">Name</span><span class="p">(),</span> <span class="n">Result</span><span class="o">:</span> <span class="n">result</span><span class="p">,</span> <span class="n">Duration</span><span class="o">:</span> <span class="n">duration</span><span class="p">,</span> <span class="p">},</span> <span class="n">err</span> <span class="p">}</span> </code></pre> </div> <p>Notice that the Eino graph's <code>actNode</code> (which we will cover in Article 4) also checks <code>t.RequiresApproval()</code> before executing. If a tool needs human approval, the graph pauses instead of executing — no changes needed to the <code>ExecuteToolUseCase</code>.</p> <h2> What Makes This Design Work </h2> <p>The elegance here comes from a few specific decisions:</p> <p><strong>Interface over inheritance.</strong> Go does not have class hierarchies. The <code>Tool</code> interface, combined with <code>BaseTool</code> embedding, gives you optional overrides without forcing you to implement everything.</p> <p><strong>Separation of definition from execution.</strong> <code>Definition()</code> describes the tool to the LLM in a format the LLM understands. <code>Execute()</code> is pure Go logic. These two concerns never mix.</p> <p><strong>Registry as the single source of truth.</strong> The LLM, the HTTP endpoint (<code>GET /v1/tools</code>), and the workflow graph all use the same registry. There is no duplication of tool definitions.</p> <p><strong>OpenAI format means portability.</strong> By targeting the OpenAI tool calling spec, the same tool definitions work with any LLM provider that LiteLLM supports — which today includes GPT-4o, Claude 3.5, Gemini 1.5 Pro, Llama 3, Mistral, and dozens more.</p> <h2> What We Just Learned </h2> <ul> <li>The <code>Tool</code> interface has 4 required methods; 2 are free via <code>BaseTool</code> embedding</li> <li> <code>CalculatorTool</code> uses Go's <code>go/ast</code> package for safe, dependency-free expression evaluation</li> <li>The <code>toolspec</code> package defines OpenAI-compatible tool types that work with any LLM via LiteLLM</li> <li> <code>ToolRegistry</code> is a thread-safe map with <code>sync.RWMutex</code> that supports per-token filtering</li> <li>Adding a new tool requires: one new file implementing the interface + two lines in <code>main.go</code> </li> </ul> <h2> Try This Now </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/wyuneed/go-agent-api make docker-up make migrate-up make run curl http://127.0.0.1:8080/v1/tools <span class="c"># See registered tools</span> </code></pre> </div> ai mcp openai go #2 - Domain-Driven Design for Go Developers: Build Entities That Actually Enforce Business Rules Izu Tolandona Sat, 21 Feb 2026 16:43:58 +0000 https://dev.to/itodona/2-domain-driven-design-for-go-developers-build-entities-that-actually-enforce-business-rules-5bfa https://dev.to/itodona/2-domain-driven-design-for-go-developers-build-entities-that-actually-enforce-business-rules-5bfa <p><em>Part 2 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>Here is a question to consider: where does the rule "an expired token cannot be used" live in your codebase?</p> <p>In many Go applications, that check exists in three or four different places — a middleware function, a repository method, a handler guard. When the rule changes, you have to find all four. When you write a test, you have to test all four.</p> <p>In Domain-Driven Design, that rule lives in exactly one place: the <code>Token</code> entity. The method is called <code>IsValid()</code>, it is 5 lines, and every piece of code that needs to check token validity calls it. There is one test for the rule, and it is a plain Go test with no database, no HTTP server, no mocks.</p> <p>This article shows you how the four domain entities in this project — <code>User</code>, <code>Token</code>, <code>Conversation</code>, and <code>Message</code> — encode their business rules as methods, and how the repository interface pattern makes the domain layer completely independent of PostgreSQL.</p> <h2> What the Domain Layer Is (and What It Cannot Import) </h2> <p>The domain layer lives in <code>internal/domain/</code>. Open the <code>go.mod</code> imports in any file there and you will find exactly two external packages:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">import</span> <span class="p">(</span> <span class="s">"time"</span> <span class="s">"github.com/google/uuid"</span> <span class="p">)</span> </code></pre> </div> <p>That is it. No <code>pgx</code>, no <code>redis</code>, no <code>chi</code>, no <code>eino</code>. The domain layer is pure Go logic. It can be compiled, tested, and reasoned about without any external infrastructure.</p> <p>This is not an accident. It is the <strong>Dependency Rule</strong>: source code dependencies point inward. Domain ← Application ← Infrastructure. The inner layers cannot import the outer layers.</p> <p>The practical consequence: you can run every domain test with <code>go test ./internal/domain/...</code> and it completes in milliseconds. No database connection needed. No containers. No ports. Just Go.</p> <h2> The User Entity: Roles and Business Methods </h2> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// internal/domain/entity/user.go</span> <span class="k">type</span> <span class="n">UserRole</span> <span class="kt">string</span> <span class="k">const</span> <span class="p">(</span> <span class="n">UserRoleAdmin</span> <span class="n">UserRole</span> <span class="o">=</span> <span class="s">"admin"</span> <span class="n">UserRoleUser</span> <span class="n">UserRole</span> <span class="o">=</span> <span class="s">"user"</span> <span class="n">UserRoleAgent</span> <span class="n">UserRole</span> <span class="o">=</span> <span class="s">"agent"</span> <span class="c">// For AI agent service accounts</span> <span class="p">)</span> <span class="k">type</span> <span class="n">User</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">Email</span> <span class="kt">string</span> <span class="n">PasswordHash</span> <span class="kt">string</span> <span class="n">Name</span> <span class="kt">string</span> <span class="n">Role</span> <span class="n">UserRole</span> <span class="n">IsActive</span> <span class="kt">bool</span> <span class="n">Metadata</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="n">CreatedAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="n">UpdatedAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="p">}</span> </code></pre> </div> <p>The <code>User</code> struct is plain data. No ORM tags, no JSON annotations (those belong in the infrastructure layer). But notice the constructor:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewUser</span><span class="p">(</span><span class="n">email</span><span class="p">,</span> <span class="n">passwordHash</span><span class="p">,</span> <span class="n">name</span> <span class="kt">string</span><span class="p">)</span> <span class="o">*</span><span class="n">User</span> <span class="p">{</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">User</span><span class="p">{</span> <span class="n">ID</span><span class="o">:</span> <span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="n">Role</span><span class="o">:</span> <span class="n">UserRoleUser</span><span class="p">,</span> <span class="c">// New users are regular users by default</span> <span class="n">IsActive</span><span class="o">:</span> <span class="no">true</span><span class="p">,</span> <span class="c">// Active by default</span> <span class="n">Metadata</span><span class="o">:</span> <span class="nb">make</span><span class="p">(</span><span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">),</span> <span class="n">CreatedAt</span><span class="o">:</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">(),</span> <span class="n">UpdatedAt</span><span class="o">:</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">(),</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The constructor enforces invariants. You cannot create a <code>User</code> with no ID, no role, or uninitialized metadata. The zero value of <code>User{}</code> is invalid — the constructor is the only correct way to create one.</p> <p>Then the business methods:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">u</span> <span class="o">*</span><span class="n">User</span><span class="p">)</span> <span class="n">CanUseTools</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="n">u</span><span class="o">.</span><span class="n">IsActive</span> <span class="o">&amp;&amp;</span> <span class="p">(</span><span class="n">u</span><span class="o">.</span><span class="n">Role</span> <span class="o">==</span> <span class="n">UserRoleAdmin</span> <span class="o">||</span> <span class="n">u</span><span class="o">.</span><span class="n">Role</span> <span class="o">==</span> <span class="n">UserRoleUser</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">u</span> <span class="o">*</span><span class="n">User</span><span class="p">)</span> <span class="n">IsAdmin</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="n">u</span><span class="o">.</span><span class="n">Role</span> <span class="o">==</span> <span class="n">UserRoleAdmin</span> <span class="p">}</span> </code></pre> </div> <p><code>CanUseTools()</code> encodes a business rule: only active admin and user accounts can execute tools. Agent accounts cannot. This rule lives in the entity because it is a business concern, not a technical one. The HTTP handler asks <code>if !user.CanUseTools()</code> — it does not duplicate the role logic.</p> <h2> The Token Entity: A Permission Carrier </h2> <p>The <code>Token</code> entity is where this project gets interesting. A token is not just an authentication credential — it is a <strong>permission carrier</strong> with rate limits and access control lists built in:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Token</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">UserID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">TokenHash</span> <span class="kt">string</span> <span class="c">// Never store raw tokens</span> <span class="n">TokenType</span> <span class="n">TokenType</span> <span class="c">// api_key, access, refresh</span> <span class="n">Name</span> <span class="kt">string</span> <span class="c">// "Production API Key", "Dev Testing"</span> <span class="n">ExpiresAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="n">LastUsedAt</span> <span class="o">*</span><span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="c">// Pointer: nil until first use</span> <span class="n">RateLimitPerMinute</span> <span class="kt">int</span> <span class="c">// Per-token rate limits</span> <span class="n">RateLimitPerDay</span> <span class="kt">int</span> <span class="n">AllowedTools</span> <span class="p">[]</span><span class="kt">string</span> <span class="c">// nil = all tools; ["calculator"] = calculator only</span> <span class="n">AllowedModels</span> <span class="p">[]</span><span class="kt">string</span> <span class="c">// nil = all models</span> <span class="n">IsRevoked</span> <span class="kt">bool</span> <span class="n">Metadata</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="n">CreatedAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="n">UpdatedAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="p">}</span> </code></pre> </div> <p>The business methods on <code>Token</code> are where the real value is:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">Token</span><span class="p">)</span> <span class="n">IsExpired</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">After</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">ExpiresAt</span><span class="p">)</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">Token</span><span class="p">)</span> <span class="n">IsValid</span><span class="p">()</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">return</span> <span class="o">!</span><span class="n">t</span><span class="o">.</span><span class="n">IsRevoked</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="n">t</span><span class="o">.</span><span class="n">IsExpired</span><span class="p">()</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">Token</span><span class="p">)</span> <span class="n">CanUseTool</span><span class="p">(</span><span class="n">toolName</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">AllowedTools</span><span class="p">)</span> <span class="o">==</span> <span class="m">0</span> <span class="p">{</span> <span class="k">return</span> <span class="no">true</span> <span class="c">// nil = all tools allowed</span> <span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">allowed</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">t</span><span class="o">.</span><span class="n">AllowedTools</span> <span class="p">{</span> <span class="k">if</span> <span class="n">allowed</span> <span class="o">==</span> <span class="n">toolName</span> <span class="o">||</span> <span class="n">allowed</span> <span class="o">==</span> <span class="s">"*"</span> <span class="p">{</span> <span class="k">return</span> <span class="no">true</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="no">false</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">Token</span><span class="p">)</span> <span class="n">CanUseModel</span><span class="p">(</span><span class="n">modelName</span> <span class="kt">string</span><span class="p">)</span> <span class="kt">bool</span> <span class="p">{</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">t</span><span class="o">.</span><span class="n">AllowedModels</span><span class="p">)</span> <span class="o">==</span> <span class="m">0</span> <span class="p">{</span> <span class="k">return</span> <span class="no">true</span> <span class="c">// nil = all models allowed</span> <span class="p">}</span> <span class="k">for</span> <span class="n">_</span><span class="p">,</span> <span class="n">allowed</span> <span class="o">:=</span> <span class="k">range</span> <span class="n">t</span><span class="o">.</span><span class="n">AllowedModels</span> <span class="p">{</span> <span class="k">if</span> <span class="n">allowed</span> <span class="o">==</span> <span class="n">modelName</span> <span class="o">||</span> <span class="n">allowed</span> <span class="o">==</span> <span class="s">"*"</span> <span class="p">{</span> <span class="k">return</span> <span class="no">true</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="no">false</span> <span class="p">}</span> </code></pre> </div> <p><strong><code>IsValid()</code></strong> — one line that combines two conditions. Every piece of code that needs to check token validity calls this method. The rule is defined once.</p> <p><strong><code>CanUseTool()</code></strong> — the access control logic for tools. If <code>AllowedTools</code> is empty, all tools are allowed (open access). Otherwise, it checks for an exact match or a wildcard <code>"*"</code>. This means you can issue API keys that are scoped to a specific subset of tools.</p> <p>For example, a customer on a "Basic" plan gets an API key with <code>AllowedTools: ["calculator"]</code>. A "Pro" customer gets <code>AllowedTools: nil</code> (all tools). An enterprise customer gets <code>AllowedTools: ["calculator", "web_search", "database_query"]</code>.</p> <p>The rate limits per token mean different keys can have different throttling — your internal admin key has no limit, third-party integrations have conservative limits.</p> <h2> The Conversation Entity: A Go State Machine </h2> <p>The <code>Conversation</code> entity is the aggregate root for chat sessions. It has five possible statuses:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">const</span> <span class="p">(</span> <span class="n">ConversationStatusActive</span> <span class="n">ConversationStatus</span> <span class="o">=</span> <span class="s">"active"</span> <span class="n">ConversationStatusPending</span> <span class="n">ConversationStatus</span> <span class="o">=</span> <span class="s">"pending_approval"</span> <span class="n">ConversationStatusCompleted</span> <span class="n">ConversationStatus</span> <span class="o">=</span> <span class="s">"completed"</span> <span class="n">ConversationStatusFailed</span> <span class="n">ConversationStatus</span> <span class="o">=</span> <span class="s">"failed"</span> <span class="n">ConversationStatusArchived</span> <span class="n">ConversationStatus</span> <span class="o">=</span> <span class="s">"archived"</span> <span class="p">)</span> </code></pre> </div> <p>And the transition methods enforce the state machine:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Conversation</span><span class="p">)</span> <span class="n">RequestApproval</span><span class="p">(</span><span class="n">node</span> <span class="kt">string</span><span class="p">,</span> <span class="n">data</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="n">ConversationStatusPending</span> <span class="n">c</span><span class="o">.</span><span class="n">CurrentNode</span> <span class="o">=</span> <span class="n">node</span> <span class="n">c</span><span class="o">.</span><span class="n">Metadata</span><span class="p">[</span><span class="s">"pending_approval"</span><span class="p">]</span> <span class="o">=</span> <span class="n">data</span> <span class="n">c</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Conversation</span><span class="p">)</span> <span class="n">Approve</span><span class="p">()</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="n">ConversationStatusActive</span> <span class="nb">delete</span><span class="p">(</span><span class="n">c</span><span class="o">.</span><span class="n">Metadata</span><span class="p">,</span> <span class="s">"pending_approval"</span><span class="p">)</span> <span class="n">c</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Conversation</span><span class="p">)</span> <span class="n">Reject</span><span class="p">(</span><span class="n">reason</span> <span class="kt">string</span><span class="p">)</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="n">ConversationStatusActive</span> <span class="n">c</span><span class="o">.</span><span class="n">Metadata</span><span class="p">[</span><span class="s">"last_rejection"</span><span class="p">]</span> <span class="o">=</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span> <span class="s">"reason"</span><span class="o">:</span> <span class="n">reason</span><span class="p">,</span> <span class="s">"at"</span><span class="o">:</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">(),</span> <span class="p">}</span> <span class="n">c</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">c</span> <span class="o">*</span><span class="n">Conversation</span><span class="p">)</span> <span class="n">Complete</span><span class="p">()</span> <span class="p">{</span> <span class="n">c</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="n">ConversationStatusCompleted</span> <span class="n">now</span> <span class="o">:=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> <span class="n">c</span><span class="o">.</span><span class="n">CompletedAt</span> <span class="o">=</span> <span class="o">&amp;</span><span class="n">now</span> <span class="n">c</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">now</span> <span class="p">}</span> </code></pre> </div> <p>What makes this a proper state machine:</p> <ol> <li> <strong>Transitions have names</strong> — <code>RequestApproval()</code>, not <code>c.Status = "pending_approval"</code> </li> <li> <strong>Transitions carry data</strong> — <code>RequestApproval(node, data)</code> stores what was pending and where</li> <li> <strong>Transitions have side effects</strong> — <code>Approve()</code> clears the pending approval metadata; <code>Reject()</code> records the rejection reason</li> <li> <strong><code>UpdatedAt</code> is always maintained</strong> — every mutation updates the timestamp</li> </ol> <p>If you wrote this as raw field assignments scattered across use cases and handlers:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// BAD: business logic leaking into application layer</span> <span class="n">conv</span><span class="o">.</span><span class="n">Status</span> <span class="o">=</span> <span class="s">"pending_approval"</span> <span class="n">conv</span><span class="o">.</span><span class="n">CurrentNode</span> <span class="o">=</span> <span class="n">node</span> <span class="n">conv</span><span class="o">.</span><span class="n">Metadata</span><span class="p">[</span><span class="s">"pending_approval"</span><span class="p">]</span> <span class="o">=</span> <span class="n">data</span> <span class="n">conv</span><span class="o">.</span><span class="n">UpdatedAt</span> <span class="o">=</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span> </code></pre> </div> <p>...you would have to remember those four lines every time. With the domain method, it is one call.</p> <p>The Conversation entity also carries Eino workflow state:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Conversation</span> <span class="k">struct</span> <span class="p">{</span> <span class="c">// ...</span> <span class="n">CurrentNode</span> <span class="kt">string</span> <span class="c">// Which Eino node is waiting</span> <span class="n">WorkflowState</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="c">// Serialized AgentState for resumption</span> <span class="c">// ...</span> <span class="p">}</span> </code></pre> </div> <p>When a workflow pauses for human approval, the entire <code>AgentState</code> is serialized to JSON and stored in <code>WorkflowState</code>. When the user approves, the state is deserialized and the workflow resumes from where it left off. The entity is the persistence boundary.</p> <h2> The Message Entity: Protocol Translation at Domain Level </h2> <p>The <code>Message</code> entity stores chat messages with OpenAI-compatible fields:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">type</span> <span class="n">Message</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">ID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">ConversationID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">Role</span> <span class="n">MessageRole</span> <span class="c">// system, user, assistant, tool</span> <span class="n">Content</span> <span class="kt">string</span> <span class="n">Name</span> <span class="kt">string</span> <span class="c">// For tool messages</span> <span class="n">ToolCalls</span> <span class="p">[]</span><span class="n">ToolCall</span> <span class="c">// Assistant → tool calls</span> <span class="n">ToolCallID</span> <span class="kt">string</span> <span class="c">// Tool response → back-reference</span> <span class="n">Model</span> <span class="kt">string</span> <span class="n">PromptTokens</span> <span class="kt">int</span> <span class="n">CompletionTokens</span> <span class="kt">int</span> <span class="n">Latency</span> <span class="n">time</span><span class="o">.</span><span class="n">Duration</span> <span class="n">SequenceNumber</span> <span class="kt">int</span> <span class="n">CreatedAt</span> <span class="n">time</span><span class="o">.</span><span class="n">Time</span> <span class="p">}</span> </code></pre> </div> <p>Notice <code>ToolCalls []ToolCall</code> and <code>ToolCallID string</code>. These are the two sides of the tool calling protocol:</p> <ul> <li>When the assistant wants to call a tool, it produces a message with <code>Role = "assistant"</code> and <code>ToolCalls</code> populated</li> <li>When the tool returns a result, it produces a message with <code>Role = "tool"</code>, a matching <code>ToolCallID</code>, and the result in <code>Content</code> </li> </ul> <p>The factory constructors enforce correct construction:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">NewToolMessage</span><span class="p">(</span><span class="n">conversationID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">,</span> <span class="n">toolCallID</span> <span class="kt">string</span><span class="p">,</span> <span class="n">name</span> <span class="kt">string</span><span class="p">,</span> <span class="n">result</span> <span class="n">any</span><span class="p">)</span> <span class="o">*</span><span class="n">Message</span> <span class="p">{</span> <span class="n">content</span><span class="p">,</span> <span class="n">_</span> <span class="o">:=</span> <span class="n">json</span><span class="o">.</span><span class="n">Marshal</span><span class="p">(</span><span class="n">result</span><span class="p">)</span> <span class="k">return</span> <span class="o">&amp;</span><span class="n">Message</span><span class="p">{</span> <span class="n">ID</span><span class="o">:</span> <span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="n">ConversationID</span><span class="o">:</span> <span class="n">conversationID</span><span class="p">,</span> <span class="n">Role</span><span class="o">:</span> <span class="n">RoleTool</span><span class="p">,</span> <span class="n">Name</span><span class="o">:</span> <span class="n">name</span><span class="p">,</span> <span class="n">Content</span><span class="o">:</span> <span class="kt">string</span><span class="p">(</span><span class="n">content</span><span class="p">),</span> <span class="c">// result serialized to JSON</span> <span class="n">ToolCallID</span><span class="o">:</span> <span class="n">toolCallID</span><span class="p">,</span> <span class="n">CreatedAt</span><span class="o">:</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">(),</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>The <code>result any</code> parameter gets JSON-serialized into <code>Content</code>. The domain entity knows that tool results are always JSON strings. The caller passes any Go value; the entity handles the serialization.</p> <p>The <code>ToOpenAIFormat()</code> method handles protocol translation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="p">(</span><span class="n">m</span> <span class="o">*</span><span class="n">Message</span><span class="p">)</span> <span class="n">ToOpenAIFormat</span><span class="p">()</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span> <span class="p">{</span> <span class="n">msg</span> <span class="o">:=</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span> <span class="s">"role"</span><span class="o">:</span> <span class="kt">string</span><span class="p">(</span><span class="n">m</span><span class="o">.</span><span class="n">Role</span><span class="p">),</span> <span class="s">"content"</span><span class="o">:</span> <span class="n">m</span><span class="o">.</span><span class="n">Content</span><span class="p">,</span> <span class="p">}</span> <span class="k">if</span> <span class="nb">len</span><span class="p">(</span><span class="n">m</span><span class="o">.</span><span class="n">ToolCalls</span><span class="p">)</span> <span class="o">&gt;</span> <span class="m">0</span> <span class="p">{</span> <span class="n">msg</span><span class="p">[</span><span class="s">"tool_calls"</span><span class="p">]</span> <span class="o">=</span> <span class="n">m</span><span class="o">.</span><span class="n">ToolCalls</span> <span class="p">}</span> <span class="k">if</span> <span class="n">m</span><span class="o">.</span><span class="n">ToolCallID</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="n">msg</span><span class="p">[</span><span class="s">"tool_call_id"</span><span class="p">]</span> <span class="o">=</span> <span class="n">m</span><span class="o">.</span><span class="n">ToolCallID</span> <span class="p">}</span> <span class="k">if</span> <span class="n">m</span><span class="o">.</span><span class="n">Name</span> <span class="o">!=</span> <span class="s">""</span> <span class="p">{</span> <span class="n">msg</span><span class="p">[</span><span class="s">"name"</span><span class="p">]</span> <span class="o">=</span> <span class="n">m</span><span class="o">.</span><span class="n">Name</span> <span class="p">}</span> <span class="k">return</span> <span class="n">msg</span> <span class="p">}</span> </code></pre> </div> <p>This method converts the domain entity into the map format expected by the OpenAI chat completions API. The domain entity knows about OpenAI's format — not as a framework dependency, but as a protocol specification that the entity is responsible for producing correctly.</p> <h2> Repository Interfaces: Why They Live in the Domain Layer </h2> <p>The repository interfaces are defined in <code>internal/domain/repository/</code>, not in <code>internal/infrastructure/</code>. This is the critical architectural decision.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// internal/domain/repository/conversation_repository.go</span> <span class="k">type</span> <span class="n">ConversationFilter</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">UserID</span> <span class="o">*</span><span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span> <span class="n">Status</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">ConversationStatus</span> <span class="n">Limit</span> <span class="kt">int</span> <span class="n">Offset</span> <span class="kt">int</span> <span class="n">OrderBy</span> <span class="kt">string</span> <span class="n">Order</span> <span class="kt">string</span> <span class="p">}</span> <span class="k">type</span> <span class="n">ConversationRepository</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">Create</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">conv</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">Conversation</span><span class="p">)</span> <span class="kt">error</span> <span class="n">FindByID</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">id</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">Conversation</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="n">FindByUserID</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">userID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">,</span> <span class="n">filter</span> <span class="n">ConversationFilter</span><span class="p">)</span> <span class="p">([]</span><span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">Conversation</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="n">Update</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">conv</span> <span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">Conversation</span><span class="p">)</span> <span class="kt">error</span> <span class="n">UpdateWorkflowState</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">id</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">,</span> <span class="n">state</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">)</span> <span class="kt">error</span> <span class="n">Delete</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">id</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">)</span> <span class="kt">error</span> <span class="n">CountByUserID</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">userID</span> <span class="n">uuid</span><span class="o">.</span><span class="n">UUID</span><span class="p">)</span> <span class="p">(</span><span class="kt">int64</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>The interface lives in the domain because it expresses what the domain needs from its persistence mechanism — not what PostgreSQL can provide. The domain layer defines the contract; the infrastructure layer fulfills it.</p> <p>This means:</p> <ul> <li>The <code>SendMessage</code> use case depends on <code>ConversationRepository</code> (an interface) — not <code>postgres.ConversationRepository</code> (a concrete type)</li> <li>To test <code>SendMessage</code>, you pass a mock implementation of <code>ConversationRepository</code> — no PostgreSQL needed</li> <li>To swap PostgreSQL for MySQL or DynamoDB, you implement the interface with a new concrete type — the domain and application layers do not change</li> </ul> <h2> Testing Pure Domain Logic </h2> <p>The lack of external dependencies in the domain layer means tests are instant and have no setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// internal/domain/entity/token_test.go</span> <span class="k">func</span> <span class="n">TestToken_IsValid</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">t</span><span class="o">.</span><span class="n">Run</span><span class="p">(</span><span class="s">"valid token"</span><span class="p">,</span> <span class="k">func</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">entity</span><span class="o">.</span><span class="n">NewAPIKey</span><span class="p">(</span><span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="s">"hash123"</span><span class="p">,</span> <span class="s">"test"</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="n">time</span><span class="o">.</span><span class="n">Hour</span><span class="p">))</span> <span class="n">assert</span><span class="o">.</span><span class="n">True</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">IsValid</span><span class="p">())</span> <span class="p">})</span> <span class="n">t</span><span class="o">.</span><span class="n">Run</span><span class="p">(</span><span class="s">"expired token"</span><span class="p">,</span> <span class="k">func</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">entity</span><span class="o">.</span><span class="n">NewAPIKey</span><span class="p">(</span><span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="s">"hash123"</span><span class="p">,</span> <span class="s">"test"</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="o">-</span><span class="n">time</span><span class="o">.</span><span class="n">Hour</span><span class="p">))</span> <span class="n">assert</span><span class="o">.</span><span class="n">False</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">IsValid</span><span class="p">())</span> <span class="n">assert</span><span class="o">.</span><span class="n">True</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">IsExpired</span><span class="p">())</span> <span class="p">})</span> <span class="n">t</span><span class="o">.</span><span class="n">Run</span><span class="p">(</span><span class="s">"revoked token"</span><span class="p">,</span> <span class="k">func</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">token</span> <span class="o">:=</span> <span class="n">entity</span><span class="o">.</span><span class="n">NewAPIKey</span><span class="p">(</span><span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="s">"hash123"</span><span class="p">,</span> <span class="s">"test"</span><span class="p">,</span> <span class="n">time</span><span class="o">.</span><span class="n">Now</span><span class="p">()</span><span class="o">.</span><span class="n">Add</span><span class="p">(</span><span class="n">time</span><span class="o">.</span><span class="n">Hour</span><span class="p">))</span> <span class="n">token</span><span class="o">.</span><span class="n">IsRevoked</span> <span class="o">=</span> <span class="no">true</span> <span class="n">assert</span><span class="o">.</span><span class="n">False</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">token</span><span class="o">.</span><span class="n">IsValid</span><span class="p">())</span> <span class="p">})</span> <span class="p">}</span> </code></pre> </div> <p>No database. No mock setup. No context. Just: construct an entity, call a method, assert the result. These tests run in under a millisecond.</p> <p>The same pattern applies to the conversation state machine:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="k">func</span> <span class="n">TestConversation_ApprovalFlow</span><span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">testing</span><span class="o">.</span><span class="n">T</span><span class="p">)</span> <span class="p">{</span> <span class="n">conv</span> <span class="o">:=</span> <span class="n">entity</span><span class="o">.</span><span class="n">NewConversation</span><span class="p">(</span><span class="n">uuid</span><span class="o">.</span><span class="n">New</span><span class="p">(),</span> <span class="s">"general"</span><span class="p">)</span> <span class="n">assert</span><span class="o">.</span><span class="n">True</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">IsActive</span><span class="p">())</span> <span class="n">assert</span><span class="o">.</span><span class="n">False</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">IsPendingApproval</span><span class="p">())</span> <span class="n">conv</span><span class="o">.</span><span class="n">RequestApproval</span><span class="p">(</span><span class="s">"act"</span><span class="p">,</span> <span class="k">map</span><span class="p">[</span><span class="kt">string</span><span class="p">]</span><span class="n">any</span><span class="p">{</span><span class="s">"tool"</span><span class="o">:</span> <span class="s">"dangerous_tool"</span><span class="p">})</span> <span class="n">assert</span><span class="o">.</span><span class="n">True</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">IsPendingApproval</span><span class="p">())</span> <span class="n">assert</span><span class="o">.</span><span class="n">Equal</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="s">"act"</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">CurrentNode</span><span class="p">)</span> <span class="n">conv</span><span class="o">.</span><span class="n">Approve</span><span class="p">()</span> <span class="n">assert</span><span class="o">.</span><span class="n">True</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">IsActive</span><span class="p">())</span> <span class="n">assert</span><span class="o">.</span><span class="n">NotContains</span><span class="p">(</span><span class="n">t</span><span class="p">,</span> <span class="n">conv</span><span class="o">.</span><span class="n">Metadata</span><span class="p">,</span> <span class="s">"pending_approval"</span><span class="p">)</span> <span class="p">}</span> </code></pre> </div> <p>Every business rule in the entity has a corresponding test. The tests are exhaustive because the entities are small and focused.</p> <h2> What Makes This Design Work </h2> <p><strong>Business rules live with the data they protect.</strong> The rule "a revoked token cannot be used" lives on the <code>Token</code> struct, not in a validator, not in a middleware, not in a handler. The method <code>IsValid()</code> is the single source of truth.</p> <p><strong>Constructors are factories, not just <code>{}</code></strong>.** <code>NewConversation()</code>, <code>NewAPIKey()</code>, <code>NewUserMessage()</code> — every entity has a constructor that sets invariants and defaults. The zero value of any entity struct is intentionally incomplete.</p> <p><strong>State transitions are named methods.</strong> <code>RequestApproval()</code>, <code>Approve()</code>, <code>Reject()</code>, <code>Complete()</code> — you read the code and understand what is happening at the business level, not just at the field level.</p> <p><strong>Protocol translation at the boundary.</strong> <code>Message.ToOpenAIFormat()</code> is the only place in the domain layer that knows about the OpenAI message structure. This method is the boundary between "what a message means to our domain" and "what a message looks like to an LLM API."</p> <h2> What We Just Learned </h2> <ul> <li>The domain layer imports only stdlib and <code>uuid</code> — zero framework dependencies</li> <li> <code>NewUser()</code>, <code>NewToken()</code>, <code>NewConversation()</code> constructors enforce invariants that the zero value cannot</li> <li> <code>Token</code> carries rate limits, tool allowlists, and model allowlists as first-class business data</li> <li> <code>Conversation</code> is a proper state machine with named transition methods</li> <li> <code>Message.ToOpenAIFormat()</code> handles protocol translation at the domain boundary</li> <li>Repository interfaces live in the domain layer, not the infrastructure layer — they define what the domain needs, not what the database provides</li> <li>Domain tests run in milliseconds with no external dependencies</li> </ul> ai genai go boilerplate #1 - I Built a Production-Ready AI Agent API in Go — Here's the Architecture That Makes It Actually Work Izu Tolandona Sat, 21 Feb 2026 16:38:42 +0000 https://dev.to/itodona/i-built-a-production-ready-ai-agent-api-in-go-heres-the-architecture-that-makes-it-actually-work-4dfe https://dev.to/itodona/i-built-a-production-ready-ai-agent-api-in-go-heres-the-architecture-that-makes-it-actually-work-4dfe <p><em>Part 1 of the "Building Production-Ready AI Agent APIs in Go" series</em></p> <p>Most AI agent tutorials give you a Python script. Some give you a FastAPI app with a few routes. Almost none give you something you would actually run in production.</p> <p>I built one in Go. It has JWT authentication, API key management, rate limiting, a full workflow engine, streaming responses, human-in-the-loop approvals, and an 18MB Docker image. It runs on a $6/month VPS with plenty of headroom.</p> <p>This article is the overview. I will walk you through every architectural decision and why we made it. The rest of the series goes deep on each piece.</p> <h2> Why Go for AI Agents? </h2> <p>Python is dominant in AI. The tooling is excellent. But if you are building an API that serves AI agents in production, Go has concrete advantages:</p> <p><strong>Memory footprint.</strong> A typical Go HTTP server uses 10-20MB of RAM at idle. A Python FastAPI equivalent uses 80-150MB. For an API handling concurrent agent sessions, this matters.</p> <p><strong>Cold start.</strong> Go binaries start in milliseconds. No interpreter to spin up, no imports to resolve at runtime. If you are running in containers that scale to zero, this is the difference between a 50ms cold start and a 2-second one.</p> <p><strong>Single binary.</strong> The entire application, with all dependencies compiled in, is one executable. No <code>requirements.txt</code>, no virtual environments, no <code>pip install</code> in your Dockerfile. Copy the binary, run it.</p> <p><strong>Concurrency model.</strong> Goroutines are cheap (2KB stack initially) and Go's runtime scheduler handles thousands of them efficiently. Running 100 concurrent agent sessions with streaming responses is straightforward.</p> <p><strong>Type safety.</strong> When the LLM returns a tool call, you know exactly what fields it has. When you pass state through a workflow graph, the compiler catches shape mismatches at compile time.</p> <p>None of this means Python is wrong for AI. The model inference, fine-tuning, and research ecosystem is irreplaceable in Python. But the API serving layer? Go is an excellent fit.</p> <h2> The Five Pillars </h2> <p>The codebase is built on five architectural pillars:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>┌─────────────────────────────────────────────────────────────┐ │ 1. DDD — Clean layer separation keeps code maintainable │ │ 2. Eino — Workflow engine manages agentic reasoning loops │ │ 3. OpenAI Format — Portable tool calling across LLM providers│ │ 4. Dual Auth — JWT sessions + API keys with per-key ACLs │ │ 5. SSE Streaming — Real-time responses without WebSockets │ └─────────────────────────────────────────────────────────────┘ </code></pre> </div> <p>These are not optional features you can swap out. They compose together. The auth system controls which tools a token can use. The tool system feeds into the Eino workflow. The workflow streams its output via SSE. The DDD layers keep each piece independently testable.</p> <h2> Walking the Directory Tree </h2> <p>Here is the project structure with the "why" for each layer:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>go-agent-api/ ├── cmd/api/main.go ← DI container: wires everything together │ ├── internal/ │ ├── domain/ ← Pure Go. Zero external dependencies. │ │ ├── entity/ ← User, Token, Conversation, Message │ │ ├── repository/ ← Interfaces only (no implementations here) │ │ ├── service/ ← Domain services (password hashing logic) │ │ └── event/ ← Domain events (MessageCreated, etc.) │ │ │ ├── application/ ← Orchestration. Depends only on domain. │ │ ├── usecase/ ← auth/, chat/, tool/, user/ │ │ ├── dto/ ← Request/response shapes │ │ └── port/ ← Interfaces for external services │ │ │ └── infrastructure/ ← The outside world. Depends on application. │ ├── eino/ ← Workflow graph and state │ ├── http/ ← Handlers, middleware, router │ ├── llm/ ← LiteLLM client │ ├── persistence/ ← PostgreSQL repos + Redis │ └── config/ ← Environment variable loading │ ├── pkg/toolspec/ ← Public: OpenAI-compatible tool types ├── deployments/ ← Dockerfile + docker-compose.yml └── docs/ ← Swagger spec + UI </code></pre> </div> <p>The most important thing to understand is the direction of dependencies:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Domain ← Application ← Infrastructure </code></pre> </div> <p>The domain layer does not know about PostgreSQL, Redis, HTTP, or LiteLLM. The application layer does not know about chi, pgx, or docker-compose. The infrastructure layer implements the interfaces that the inner layers define.</p> <p>This is not theoretical purity — it has practical consequences. When you want to write a unit test for the <code>SendMessage</code> use case, you mock the repository interface and the LLM provider interface. No database, no HTTP server, no running LiteLLM instance needed. The test runs in milliseconds.</p> <h2> The Dependency Rule in 30 Seconds </h2> <p>The dependency rule states that source code dependencies must point inward. Nothing in the inner circles knows anything about the outer circles.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// DOMAIN: knows nothing about PostgreSQL</span> <span class="c">// internal/domain/repository/user_repository.go</span> <span class="k">type</span> <span class="n">UserRepository</span> <span class="k">interface</span> <span class="p">{</span> <span class="n">FindByEmail</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">email</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">User</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">}</span> <span class="c">// INFRASTRUCTURE: implements the domain interface</span> <span class="c">// internal/infrastructure/persistence/postgres/user_repository.go</span> <span class="k">type</span> <span class="n">userRepository</span> <span class="k">struct</span> <span class="p">{</span> <span class="n">pool</span> <span class="o">*</span><span class="n">pgxpool</span><span class="o">.</span><span class="n">Pool</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">r</span> <span class="o">*</span><span class="n">userRepository</span><span class="p">)</span> <span class="n">FindByEmail</span><span class="p">(</span><span class="n">ctx</span> <span class="n">context</span><span class="o">.</span><span class="n">Context</span><span class="p">,</span> <span class="n">email</span> <span class="kt">string</span><span class="p">)</span> <span class="p">(</span><span class="o">*</span><span class="n">entity</span><span class="o">.</span><span class="n">User</span><span class="p">,</span> <span class="kt">error</span><span class="p">)</span> <span class="p">{</span> <span class="c">// pgx query here</span> <span class="p">}</span> </code></pre> </div> <p>The domain defines <code>UserRepository</code> as an interface. The infrastructure provides <code>userRepository</code> as a concrete PostgreSQL implementation. The domain has zero knowledge that PostgreSQL exists.</p> <p>This pattern is applied everywhere. <code>port.LLMProvider</code> in the application layer is an interface. <code>litellm.Client</code> in the infrastructure layer implements it. Swap LiteLLM for a direct OpenAI client by writing a new struct that satisfies the interface.</p> <h2> main.go: The Entire DI Container, Explicit and Readable </h2> <p>The entry point in <code>cmd/api/main.go</code> is 200 lines of explicit dependency injection. No magic, no framework, no annotations. Here is the core of it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// Database</span> <span class="n">db</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">postgres</span><span class="o">.</span><span class="n">NewConnection</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">Database</span><span class="p">)</span> <span class="c">// Redis</span> <span class="n">redisClient</span><span class="p">,</span> <span class="n">err</span> <span class="o">:=</span> <span class="n">redis</span><span class="o">.</span><span class="n">NewConnection</span><span class="p">(</span><span class="n">ctx</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">Redis</span><span class="p">)</span> <span class="c">// Repositories (infrastructure layer)</span> <span class="n">userRepo</span> <span class="o">:=</span> <span class="n">postgres</span><span class="o">.</span><span class="n">NewUserRepository</span><span class="p">(</span><span class="n">db</span><span class="p">)</span> <span class="n">tokenRepo</span> <span class="o">:=</span> <span class="n">postgres</span><span class="o">.</span><span class="n">NewTokenRepository</span><span class="p">(</span><span class="n">db</span><span class="p">)</span> <span class="n">convRepo</span> <span class="o">:=</span> <span class="n">postgres</span><span class="o">.</span><span class="n">NewConversationRepository</span><span class="p">(</span><span class="n">db</span><span class="p">)</span> <span class="n">msgRepo</span> <span class="o">:=</span> <span class="n">postgres</span><span class="o">.</span><span class="n">NewMessageRepository</span><span class="p">(</span><span class="n">db</span><span class="p">)</span> <span class="c">// JWT Manager</span> <span class="n">jwtMgr</span> <span class="o">:=</span> <span class="n">jwt</span><span class="o">.</span><span class="n">NewJWTManager</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">JWT</span><span class="o">.</span><span class="n">Secret</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">JWT</span><span class="o">.</span><span class="n">AccessTokenTTL</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">JWT</span><span class="o">.</span><span class="n">RefreshTokenTTL</span><span class="p">)</span> <span class="c">// LLM Provider (infrastructure layer)</span> <span class="n">llmProvider</span> <span class="o">:=</span> <span class="n">litellm</span><span class="o">.</span><span class="n">NewClient</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">LLM</span><span class="o">.</span><span class="n">BaseURL</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">LLM</span><span class="o">.</span><span class="n">APIKey</span><span class="p">)</span> <span class="c">// Tool Registry (application layer)</span> <span class="n">toolRegistry</span> <span class="o">:=</span> <span class="n">tool</span><span class="o">.</span><span class="n">NewToolRegistry</span><span class="p">()</span> <span class="n">toolRegistry</span><span class="o">.</span><span class="n">RegisterAll</span><span class="p">(</span> <span class="n">builtin</span><span class="o">.</span><span class="n">NewCalculatorTool</span><span class="p">(),</span> <span class="n">builtin</span><span class="o">.</span><span class="n">NewWebSearchTool</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">Tools</span><span class="o">.</span><span class="n">WebSearchAPIKey</span><span class="p">),</span> <span class="p">)</span> <span class="c">// Use Cases (application layer)</span> <span class="n">validateTokenUC</span> <span class="o">:=</span> <span class="n">auth</span><span class="o">.</span><span class="n">NewValidateTokenUseCase</span><span class="p">(</span><span class="n">tokenRepo</span><span class="p">,</span> <span class="n">userRepo</span><span class="p">,</span> <span class="n">jwtMgr</span><span class="p">)</span> <span class="n">loginUC</span> <span class="o">:=</span> <span class="n">auth</span><span class="o">.</span><span class="n">NewLoginUseCase</span><span class="p">(</span><span class="n">userRepo</span><span class="p">,</span> <span class="n">tokenRepo</span><span class="p">,</span> <span class="n">jwtMgr</span><span class="p">)</span> <span class="n">sendMessageUC</span> <span class="o">:=</span> <span class="n">chat</span><span class="o">.</span><span class="n">NewSendMessageUseCase</span><span class="p">(</span><span class="n">convRepo</span><span class="p">,</span> <span class="n">msgRepo</span><span class="p">,</span> <span class="n">llmProvider</span><span class="p">,</span> <span class="n">cfg</span><span class="o">.</span><span class="n">LLM</span><span class="o">.</span><span class="n">DefaultModel</span><span class="p">)</span> <span class="n">approveActionUC</span> <span class="o">:=</span> <span class="n">chat</span><span class="o">.</span><span class="n">NewApproveActionUseCase</span><span class="p">(</span><span class="n">convRepo</span><span class="p">)</span> <span class="c">// Middleware + Handlers (infrastructure layer)</span> <span class="n">authMiddleware</span> <span class="o">:=</span> <span class="n">middleware</span><span class="o">.</span><span class="n">NewAuthMiddleware</span><span class="p">(</span><span class="n">validateTokenUC</span><span class="p">)</span> <span class="n">chatHandler</span> <span class="o">:=</span> <span class="n">handler</span><span class="o">.</span><span class="n">NewChatHandler</span><span class="p">(</span><span class="n">sendMessageUC</span><span class="p">,</span> <span class="n">getConversationUC</span><span class="p">,</span> <span class="n">listConversationsUC</span><span class="p">,</span> <span class="n">approveActionUC</span><span class="p">)</span> </code></pre> </div> <p>Every dependency is explicit. You can read from top to bottom and understand exactly what depends on what. There are no hidden singletons, no global variables, no container magic.</p> <p>This explicitness makes debugging trivial. If <code>chatHandler</code> misbehaves, you can see exactly what <code>sendMessageUC</code> depends on, what <code>llmProvider</code> it uses, and which <code>convRepo</code> implementation backs it. The entire dependency graph is right there in one file.</p> <h2> docker-compose up: 5 Services, One Command </h2> <p>The <code>deployments/docker-compose.yml</code> gives you a complete development and production stack:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">services</span><span class="pi">:</span> <span class="na">api</span><span class="pi">:</span> <span class="c1"># Your Go binary (128MB memory limit)</span> <span class="na">postgres</span><span class="pi">:</span> <span class="c1"># PostgreSQL 16 (primary database)</span> <span class="na">redis</span><span class="pi">:</span> <span class="c1"># Redis 7 (rate limiting, caching)</span> <span class="na">litellm</span><span class="pi">:</span> <span class="c1"># LLM proxy (GPT-4o, Claude, Gemini — config-driven)</span> <span class="na">migrate</span><span class="pi">:</span> <span class="c1"># golang-migrate (runs DB migrations on startup)</span> </code></pre> </div> <p>The services are wired with proper health checks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">depends_on</span><span class="pi">:</span> <span class="na">postgres</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> <span class="na">redis</span><span class="pi">:</span> <span class="na">condition</span><span class="pi">:</span> <span class="s">service_healthy</span> </code></pre> </div> <p>The API container will not start until both Postgres and Redis are accepting connections. The migrate container runs migrations before the API processes any traffic. This is a production-grade startup sequence, not just "hope the database is ready."</p> <h2> What You Can Build With 10 New Lines of Code </h2> <p>Once the infrastructure is running, extending it is intentionally easy. Here is what adding a new capability looks like:</p> <p><strong>Add a new tool (file + 2 lines in main.go):</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight go"><code><span class="c">// New file: internal/application/usecase/tool/builtin/weather.go</span> <span class="k">type</span> <span class="n">WeatherTool</span> <span class="k">struct</span><span class="p">{</span> <span class="n">tool</span><span class="o">.</span><span class="n">BaseTool</span> <span class="p">}</span> <span class="k">func</span> <span class="p">(</span><span class="n">t</span> <span class="o">*</span><span class="n">WeatherTool</span><span class="p">)</span> <span class="n">Name</span><span class="p">()</span> <span class="kt">string</span> <span class="p">{</span> <span class="k">return</span> <span class="s">"get_weather"</span> <span class="p">}</span> <span class="c">// ... implement Execute()</span> <span class="c">// In main.go:</span> <span class="n">toolRegistry</span><span class="o">.</span><span class="n">RegisterAll</span><span class="p">(</span><span class="n">builtin</span><span class="o">.</span><span class="n">NewWeatherTool</span><span class="p">(</span><span class="n">cfg</span><span class="o">.</span><span class="n">Tools</span><span class="o">.</span><span class="n">WeatherAPIKey</span><span class="p">))</span> </code></pre> </div> <p><strong>Add a new API key with restricted tools:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Create a token that can ONLY use calculator</span> POST /v1/auth/tokens <span class="o">{</span><span class="s2">"name"</span>: <span class="s2">"limited-key"</span>, <span class="s2">"allowed_tools"</span>: <span class="o">[</span><span class="s2">"calculator"</span><span class="o">]}</span> </code></pre> </div> <p><strong>Switch from GPT-4o to Claude:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># deployments/litellm_config.yaml — change one line</span> <span class="pi">-</span> <span class="na">model_name</span><span class="pi">:</span> <span class="s">gpt-4o-mini</span> <span class="na">litellm_params</span><span class="pi">:</span> <span class="na">model</span><span class="pi">:</span> <span class="s">anthropic/claude-3-haiku-20240307</span> <span class="na">api_key</span><span class="pi">:</span> <span class="s">os.environ/ANTHROPIC_API_KEY</span> </code></pre> </div> <p>No code changes. LiteLLM handles the API format translation.</p> <h2> The Full API Surface </h2> <p>The server exposes 18 endpoints across 4 domains:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Health: GET /health # Liveness check GET /ready # Readiness check Auth (public): POST /v1/auth/register POST /v1/auth/login POST /v1/auth/refresh Chat (protected): POST /v1/chat/completions # OpenAI-compatible, streaming supported POST /v1/conversations GET /v1/conversations GET /v1/conversations/{id} POST /v1/conversations/{id}/messages POST /v1/conversations/{id}/approve # Human-in-the-loop Tools (protected): GET /v1/tools POST /v1/tools/execute POST /v1/tools/batch </code></pre> </div> <p>There is also a Swagger UI at <code>http://127.0.0.1:8080/swagger/index.html</code> with interactive documentation for every endpoint.</p> <h2> The Dependency Stack </h2> <p>The full <code>go.mod</code> has 16 direct dependencies:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Package</th> <th>Purpose</th> </tr> </thead> <tbody> <tr> <td><code>github.com/cloudwego/eino</code></td> <td>Workflow engine (ByteDance)</td> </tr> <tr> <td><code>github.com/go-chi/chi/v5</code></td> <td>HTTP router</td> </tr> <tr> <td><code>github.com/golang-jwt/jwt/v5</code></td> <td>JWT tokens</td> </tr> <tr> <td><code>github.com/jackc/pgx/v5</code></td> <td>PostgreSQL driver</td> </tr> <tr> <td><code>github.com/redis/go-redis/v9</code></td> <td>Redis client</td> </tr> <tr> <td><code>github.com/google/uuid</code></td> <td>UUID generation</td> </tr> <tr> <td><code>golang.org/x/crypto</code></td> <td>bcrypt password hashing</td> </tr> <tr> <td><code>github.com/stretchr/testify</code></td> <td>Test assertions</td> </tr> <tr> <td><code>github.com/swaggo/swag</code></td> <td>Swagger generation</td> </tr> </tbody> </table></div> <p>No ORMs. No dependency injection frameworks. No "enterprise" middleware. Every dependency does one specific thing.</p> <h2> Series Roadmap </h2> <p>Here is what each article in this series covers:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>#</th> <th>Title</th> <th>What You Learn</th> </tr> </thead> <tbody> <tr> <td>1</td> <td>Architecture Overview (this article)</td> <td>Why these choices, how the pieces fit</td> </tr> <tr> <td>2</td> <td>DDD Domain Layer</td> <td>Entities with business logic, repository interfaces</td> </tr> <tr> <td>3</td> <td>The Tool System</td> <td>Add a tool in 15 lines, OpenAI format, per-token ACLs</td> </tr> <tr> <td>4</td> <td>Eino Workflow Engine</td> <td>6-node DAG, ReAct loop, conditional routing</td> </tr> <tr> <td>5</td> <td>Dual Auth</td> <td>JWT + API keys, token-as-permission-carrier</td> </tr> <tr> <td>6</td> <td>SSE Streaming</td> <td>Real-time responses, channel pipeline, context cancellation</td> </tr> <tr> <td>7</td> <td>Human-in-the-Loop</td> <td>Pause/approve/resume agentic workflows</td> </tr> <tr> <td>8</td> <td>Deployment</td> <td>18MB Docker image, graceful shutdown, LiteLLM</td> </tr> </tbody> </table></div> <p>Each article stands alone but is richer in context when read in sequence.</p> <h2> What We Just Learned </h2> <ul> <li>Go's memory efficiency, cold start speed, and type safety make it well-suited for AI agent APIs</li> <li>The project uses DDD with strict inward dependency: Domain ← Application ← Infrastructure</li> <li> <code>cmd/api/main.go</code> is an explicit DI container — every dependency is visible and readable</li> <li>One <code>docker-compose up</code> brings up 5 services with health checks and automatic migrations</li> <li>Adding new tools, switching LLM providers, and creating restricted API keys all take single-digit lines of code</li> </ul> <h2> Try This Now </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/wyuneed/go-agent-api <span class="nb">cd </span>go-agent-api <span class="nb">cp</span> .env.example .env make docker-up make migrate-up make run <span class="c"># Open http://127.0.0.1:8080/swagger/index.html</span> </code></pre> </div> ai genai go agentaichallenge