docs/metrics: canonical hash metrics docs + consistency script

[zensgit]

Adds:\n- Updated PR47 verification report with canonical metrics & deprecation notice.\n- README monitoring section (health vs metrics, Prometheus config, quick consistency check).\n- Consistency script: scripts/check_metrics_consistency.sh.\n\nNote: Requires API running at localhost:8012 for script success.\n

[gemini-code-assist]

Summary of Changes

Hello @zensgit, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request focuses on enhancing the documentation and consistency of metrics within the jive-api. It introduces a comprehensive verification report for the previously merged /metrics endpoint (PR #47), detailing its successful integration and functionality. Concurrently, it refines the /metrics endpoint itself by implementing more canonical and detailed password hash distribution metrics, while gracefully deprecating older metric formats to facilitate a transition to improved monitoring.

Highlights

• New Verification Report: A detailed verification report for PR chore: /metrics endpoint (hash distribution & rehash counters) #47, which introduced the /metrics endpoint, has been added. This report covers CI validation, code integration, runtime testing, performance impact, and security assessment, confirming the successful implementation and functionality of the metrics endpoint.
• Canonical Metrics Implementation: The /metrics endpoint in src/metrics.rs has been updated to expose more canonical Prometheus metrics for password hash distribution. This includes new metrics for total bcrypt users, argon2id users, unknown hash types, and overall total users, along with a breakdown by bcrypt variant.
• Metrics Deprecation: Older, less granular password hash metrics (specifically jive_password_hash_users) have been marked as deprecated in the Prometheus output. This ensures a smooth transition for existing dashboards while promoting the use of the new, more precise canonical metrics.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[Copilot]

Pull Request Overview

This PR adds comprehensive metrics documentation and consistency verification tooling to support the previously-merged metrics endpoint functionality. The PR transforms the earlier verification report into proper project documentation and provides a maintenance script.

• Updated metrics verification report with canonical hash metrics documentation and deprecation notices
• Added monitoring and consistency verification script for operational use
• Enhanced documentation to distinguish between health checks and Prometheus metrics

Reviewed Changes

Copilot reviewed 3 out of 4 changed files in this pull request and generated 2 comments.

File	Description
jive-api/target/release/jive-api.d	Build dependency file updated with metrics.rs dependency
jive-api/src/metrics.rs	Enhanced metrics endpoint with canonical hash metrics and backward-compatible legacy metrics
jive-api/PR47_METRICS_VERIFICATION_REPORT.md	Comprehensive verification report documenting metrics implementation and testing results

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[Copilot]

The unknown.max(0) call is unnecessary since unknown is calculated as a difference of non-negative values and should never be negative. This suggests potential logic issues or defensive programming that obscures the actual calculation.

Suggested change

	buf.push_str(&format!("password_hash_unknown_total {}\n", unknown.max(0)));
	buf.push_str(&format!("password_hash_unknown_total {}\n", unknown));

[Copilot]

The deprecation notice should include a timeline or version for removal and reference to the replacement metrics to help users migrate their monitoring configurations.

Suggested change

	"# HELP jive_password_hash_users (DEPRECATED) Users by password hash algorithm variant.\n",
	"# HELP jive_password_hash_users (DEPRECATED, will be removed in v2.0.0; use password_hash_bcrypt_variant and password_hash_total_count instead) Users by password hash algorithm variant.\n",

[gemini-code-assist]

Code Review

This pull request introduces canonical metrics for password hash distribution, deprecates the old metrics, and adds related documentation. The changes in src/metrics.rs are a good step towards better observability.

My review focuses on the new documentation and the implementation of the new metrics. I've identified some inconsistencies in the verification report (PR47_METRICS_VERIFICATION_REPORT.md) regarding port numbers and the actual metrics output shown. I've also suggested a refactoring in src/metrics.rs to improve code maintainability by reducing duplication in how metric strings are generated. Overall, the changes are positive, and addressing these points will improve the quality and clarity of the code and documentation.

[gemini-code-assist]

There's an inconsistency in the port number used throughout this report. The service startup log (line 93) shows the server running on port 8012, but all subsequent curl commands and status checks (lines 170, 192, 226) use port 8014. Please ensure the port numbers are consistent to avoid confusion.

[gemini-code-assist]

The 'Runtime Testing Results' section appears to be inconsistent with the rest of the document. The 'Key Features Verified' (lines 73-81) and 'Expected Metrics' (lines 110-133) sections describe the new canonical metrics (e.g., password_hash_bcrypt_total), but the 'Actual Output' (lines 175-183) shows the old, deprecated metrics (e.g., jive_password_hash_users). To ensure the verification report is accurate and reflects the changes in this PR, the 'Actual Output' should be updated to show the new canonical metrics.

[gemini-code-assist]

The manual string building for each metric is quite repetitive. To improve maintainability and reduce code duplication, consider creating a helper function or macro to generate the Prometheus format for a metric. This would make the main handler logic cleaner and less prone to copy-paste errors.

For example, you could have a helper function:

fn write_gauge(buf: &mut String, name: &str, help: &str, value: impl std::fmt::Display) {
    buf.push_str(&format!("# HELP {} {}\n", name, help));
    buf.push_str(&format!("# TYPE {} gauge\n", name));
    buf.push_str(&format!("{} {}\n", name, value));
}