Architecture Overview¶
This document provides a comprehensive view of clinvoker's system architecture, explaining how components interact, how data flows through the system, and the design patterns that enable the system's key capabilities.
High-Level Architecture¶
clinvoker follows a layered architecture pattern with clear separation of concerns:
flowchart TB
subgraph Client_Layer["Client Layer"]
CLI[CLI Tool]
SDK[OpenAI SDK]
ANTH[Anthropic SDK]
LANG[LangChain]
CURL[curl/HTTP]
end
subgraph API_Layer["API Layer"]
REST[REST API /api/v1]
OPENAI[OpenAI Compatible /openai/v1]
ANTHAPI[Anthropic Compatible /anthropic/v1]
end
subgraph Core_Services["Core Services"]
ROUTER[Request Router]
RATE[Rate Limiter]
AUTH[Auth Middleware]
EXEC[Executor]
SESSION[Session Manager]
CONFIG[Config Manager]
end
subgraph Backend_Layer["Backend Layer"]
CL[Claude Code]
CO[Codex CLI]
GM[Gemini CLI]
end
subgraph Storage["Storage Layer"]
DISC[Disk Sessions]
CONFIG_FILE[Config Files]
end
CLI --> REST
SDK --> OPENAI
ANTH --> ANTHAPI
LANG --> OPENAI
CURL --> REST
REST --> ROUTER
OPENAI --> ROUTER
ANTHAPI --> ROUTER
ROUTER --> RATE
RATE --> AUTH
AUTH --> EXEC
EXEC --> SESSION
EXEC --> CONFIG
EXEC --> CL
EXEC --> CO
EXEC --> GM
SESSION --> DISC
CONFIG --> CONFIG_FILECLI Layer Deep Dive¶
Entry Point (cmd/clinvk/main.go)¶
The entry point is intentionally minimal, following Go best practices:
package main
import (
"os"
"github.com/signalridge/clinvoker/internal/app"
)
func main() {
if err := app.Execute(); err != nil {
os.Exit(1)
}
}
This design: - Keeps the main package clean and focused - Enables easy testing of the application logic - Allows the app package to be imported for integration testing
Cobra Framework Usage (internal/app/app.go)¶
The CLI uses the Cobra framework for command management:
flowchart LR
subgraph Cobra_Command_Structure
ROOT[rootCmd
Persistent Flags]
VERSION[versionCmd]
RESUME[resumeCmd]
SESSIONS[sessionsCmd]
CONFIG[configCmd]
PARALLEL[parallelCmd]
COMPARE[compareCmd]
CHAIN[chainCmd]
end
ROOT --> VERSION
ROOT --> RESUME
ROOT --> SESSIONS
ROOT --> CONFIG
ROOT --> PARALLEL
ROOT --> COMPARE
ROOT --> CHAINKey Cobra features used:
- Persistent Flags: Available to all subcommands
--config: Config file path--backend: Backend selection--model: Model selection--workdir: Working directory--dry-run: Simulation mode--output-format: Output format-
--ephemeral: Stateless mode -
Local Flags: Specific to individual commands
-
--continue: Continue last session (root command only) -
Pre-Run Initialization:
initConfig()loads configuration before command execution
Command Execution Flow¶
sequenceDiagram
autonumber
participant User
participant CLI as CLI Layer
participant Config as Config Manager
participant Backend as Backend Registry
participant Session as Session Store
participant Executor
participant AI as AI Backend
User->>CLI: clinvk "prompt"
CLI->>Config: Load configuration
Config-->>CLI: Backend settings, defaults
CLI->>Backend: Get(backendName)
Backend-->>CLI: Backend instance
alt Ephemeral Mode
CLI->>CLI: Skip session creation
else Normal Mode
CLI->>Session: CreateWithOptions()
Session-->>CLI: Session instance
end
CLI->>Backend: BuildCommandUnified(prompt, opts)
Backend-->>CLI: *exec.Cmd
CLI->>Executor: ExecuteCommand(config, cmd)
Executor->>AI: Execute subprocess
AI-->>Executor: Output
Executor-->>CLI: Result
alt Normal Mode
CLI->>Session: Save(session)
end
CLI-->>User: Formatted outputCore Components Interaction¶
Backend Registry Pattern¶
The backend registry manages AI CLI backends using a thread-safe registry pattern:
flowchart TB
subgraph Registry["Backend Registry (internal/backend/registry.go)"]
RWMUTEX[sync.RWMutex]
BACKENDS[map[string]Backend]
CACHE[availabilityCache
30s TTL]
end
subgraph Backends["Registered Backends"]
CL[Claude Backend]
CO[Codex Backend]
GM[Gemini Backend]
end
RWMUTEX --> BACKENDS
BACKENDS --> CL
BACKENDS --> CO
BACKENDS --> GM
BACKENDS --> CACHEThe registry provides:
- Thread-safe access: sync.RWMutex for concurrent reads/writes
- Availability caching: 30-second TTL to avoid frequent PATH lookups
- Dynamic registration: Backends can be registered/unregistered at runtime
Session Manager Architecture¶
flowchart TB
subgraph SessionManager["Session Manager (internal/session/)"]
STORE[Store]
INDEX[In-Memory Index
map[string]*SessionMeta]
FILELOCK[FileLock
Cross-process sync]
RWLOCK[sync.RWMutex
In-process sync]
end
subgraph Storage["File System Storage"]
DIR[~/.clinvk/sessions/]
SESSION_FILES[*.json files]
INDEX_FILE[index.json]
end
STORE --> INDEX
STORE --> FILELOCK
STORE --> RWLOCK
FILELOCK --> DIR
RWLOCK --> DIR
DIR --> SESSION_FILES
DIR --> INDEX_FILEThe session manager uses a dual-locking strategy:
1. In-process: sync.RWMutex for goroutine safety
2. Cross-process: File locks for CLI/server coexistence
HTTP Server Request Handling¶
flowchart LR
subgraph Middleware_Stack["Middleware Stack (internal/server/server.go:58-131)"]
REQID[RequestID]
REALIP[RealIP]
RECOVER[Recoverer]
LOGGER[RequestLogger]
SIZE[RequestSize Limit]
RATE[Rate Limiter]
AUTH[API Key Auth]
TIMEOUT[Timeout]
CORS[CORS Handler]
end
subgraph Handlers["API Handlers"]
CUSTOM[Custom Handlers
/api/v1/*]
OPENAI[OpenAI Handlers
/openai/v1/*]
ANTH[Anthropic Handlers
/anthropic/v1/*]
end
REQID --> REALIP
REALIP --> RECOVER
RECOVER --> LOGGER
LOGGER --> SIZE
SIZE --> RATE
RATE --> AUTH
AUTH --> TIMEOUT
TIMEOUT --> CORS
CORS --> CUSTOM
CORS --> OPENAI
CORS --> ANTHMiddleware execution order is critical: 1. RequestID: Assign unique request ID for tracing 2. RealIP: Extract real client IP (behind proxies) 3. Recoverer: Recover from panics 4. RequestLogger: Log request details 5. RequestSize: Enforce body size limits 6. RateLimiter: Apply rate limiting 7. API Key Auth: Authenticate requests 8. Timeout: Enforce request timeouts 9. CORS: Handle cross-origin requests
Data Flow¶
CLI Prompt Flow¶
sequenceDiagram
autonumber
participant User
participant CLI
participant Config
participant Backend
participant Session
participant AI
User->>CLI: clinvk "prompt"
CLI->>Config: Load configuration
Config-->>CLI: Backend settings
CLI->>Session: Create/Resume session
CLI->>Backend: Build command
Backend-->>CLI: exec.Cmd
CLI->>AI: Execute command
AI-->>CLI: Output
CLI->>Session: Save session
CLI-->>User: Formatted outputHTTP API Flow¶
sequenceDiagram
autonumber
participant Client
participant API
participant Auth
participant Rate
participant Executor
participant Backend
Client->>API: POST /api/v1/prompt
API->>Auth: Validate API key
Auth-->>API: OK
API->>Rate: Check limits
Rate-->>API: Allowed
API->>Executor: Execute prompt
Executor->>Backend: Run command
Backend-->>Executor: Result
Executor-->>API: Response
API-->>Client: JSON responseStreaming Response Flow¶
sequenceDiagram
autonumber
participant Client
participant API
participant Streamer
participant Backend
participant AI
Client->>API: POST /openai/v1/chat/completions
Note over Client,API: stream: true
API->>Streamer: Create SSE stream
Streamer->>Backend: Execute with streaming
Backend->>AI: Start subprocess
loop For each chunk
AI-->>Streamer: Output chunk
Streamer-->>Client: data: {...}
end
AI-->>Streamer: Complete
Streamer-->>Client: data: [DONE]Backend Abstraction Architecture¶
Unified Backend Interface¶
All backends implement the Backend interface (internal/backend/backend.go:16-46):
type Backend interface {
Name() string
IsAvailable() bool
BuildCommand(prompt string, opts *Options) *exec.Cmd
ResumeCommand(sessionID, prompt string, opts *Options) *exec.Cmd
BuildCommandUnified(prompt string, opts *UnifiedOptions) *exec.Cmd
ResumeCommandUnified(sessionID, prompt string, opts *UnifiedOptions) *exec.Cmd
ParseOutput(rawOutput string) string
ParseJSONResponse(rawOutput string) (*UnifiedResponse, error)
SeparateStderr() bool
}
Backend Implementation Structure¶
flowchart TB
subgraph Backend_Interface["Backend Interface"]
INTERFACE[Backend Interface
internal/backend/backend.go]
end
subgraph Implementations["Backend Implementations"]
CLAUDE[Claude
internal/backend/claude.go]
CODEX[Codex
internal/backend/codex.go]
GEMINI[Gemini
internal/backend/gemini.go]
end
subgraph Unified_Layer["Unified Options Layer"]
UNIFIED[UnifiedOptions
internal/backend/unified.go]
MAPPER[Flag Mapper
MapToOptions()]
end
INTERFACE --> CLAUDE
INTERFACE --> CODEX
INTERFACE --> GEMINI
UNIFIED --> MAPPER
MAPPER --> CLAUDE
MAPPER --> CODEX
MAPPER --> GEMINIConcurrency Patterns¶
Registry Concurrency¶
The backend registry uses a read-write mutex pattern:
// Read operation (concurrent safe)
func (r *Registry) Get(name string) (Backend, error) {
r.mu.RLock()
defer r.mu.RUnlock()
// ... lookup backend
}
// Write operation (exclusive)
func (r *Registry) Register(b Backend) {
r.mu.Lock()
defer r.mu.Unlock()
// ... register backend
}
Session Store Concurrency¶
The session store combines multiple synchronization mechanisms:
flowchart TB
subgraph In_Process["In-Process"]
RW[sync.RWMutex]
INDEX[In-Memory Index]
end
subgraph Cross_Process["Cross-Process"]
FLOCK[FileLock
flock syscall]
FILES[Session Files]
end
RW --> INDEX
FLOCK --> FILESRead flow:
1. Acquire read lock (RLock)
2. Check in-memory index
3. Load session file if needed
4. Release read lock
Write flow:
1. Acquire cross-process file lock
2. Acquire write lock (Lock)
3. Write session atomically
4. Update index
5. Release locks
Extension Points¶
Adding a New Backend¶
To add a new AI CLI backend:
- Create implementation file:
internal/backend/newbackend.go - Implement Backend interface: All required methods
- Register in registry: Add to
init()inregistry.go - Add unified options mapping: Update
unified.goflag mapper
Adding a New CLI Command¶
- Create command file:
internal/app/cmd_newcommand.go - Define Cobra command: Use existing commands as template
- Add to root command: In
app.goinit()function
Adding a New API Endpoint¶
- Create handler: In appropriate handler file (
custom.go,openai.go, oranthropic.go) - Register with Huma: Use
huma.Register()with operation configuration - Add middleware if needed: Update middleware stack in
server.go
Scalability Considerations¶
Horizontal Scaling¶
The server component can be horizontally scaled:
- Statelessness: No shared in-memory state between requests
- Session Storage: Sessions on shared filesystem or database
- Configuration: Loaded at startup, no runtime mutations
Backend Pooling (Future)¶
For high-throughput scenarios, backends can be pooled:
flowchart LR
EXEC[Executor]
subgraph ClaudePool["Claude Pool"]
C1[Instance 1]
C2[Instance 2]
C3[Instance N]
end
EXEC --> C1
EXEC --> C2
EXEC --> C3Security Architecture¶
Authentication¶
- API key validation at entry points
- Multiple key sources (env, gopass, header)
- Per-key rate limiting
Authorization¶
- Backend-level permissions via configuration
- Working directory restrictions
- Sandbox mode support
Isolation¶
- Session isolation (no cross-session data leakage)
- Working directory restrictions
- Subprocess isolation
Monitoring and Observability¶
Metrics¶
- Request counts and latency (Prometheus)
- Backend availability
- Token usage
- Error rates
Logging¶
- Structured JSON logging
- Request/response tracing
- Backend command logging (optional)
Health Checks¶
/healthendpoint for load balancers- Backend availability checks
- Session store health
Related Documentation¶
- Backend System - Backend implementation details
- Session System - Session persistence deep dive
- API Design - API architecture
- Design Decisions - Architectural ADRs