nightscout
diff --git a/‎CHANGELOG.md‎
Lines changed: 34 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎CONTRIBUTING.md‎
Lines changed: 63 additions & 0 deletions b/‎CONTRIBUTING.md‎
Lines changed: 63 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 6 additions & 2 deletions b/‎README.md‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎docs/data-schemas/entries-schema.md‎
Lines changed: 143 additions & 0 deletions b/‎docs/data-schemas/entries-schema.md‎
Lines changed: 143 additions & 0 deletions
diff --git a/‎docs/data-schemas/treatments-schema.md‎
Lines changed: 31 additions & 7 deletions b/‎docs/data-schemas/treatments-schema.md‎
Lines changed: 31 additions & 7 deletions
diff --git a/‎docs/example-template.env‎
Lines changed: 14 additions & 1 deletion b/‎docs/example-template.env‎
Lines changed: 14 additions & 1 deletion
@@ -0,0 +1,34 @@
+# Changelog
+
+All notable changes to cgm-remote-monitor are documented in this file.
+
+## [15.0.7] - 2026-03-XX (Unreleased)
+
+### Added
+
+#### UUID/Identifier Handling (REQ-SYNC-072)
+
+- **`UUID_HANDLING` env var** (default: `true`): Feature flag that controls UUID `_id` normalization for treatments and entries.
+  - When `true`: UUID values sent as `_id` are extracted to the `identifier` field and a server-generated ObjectId is assigned. GET/DELETE by UUID are routed through the `identifier` field.
+  - When `false`: UUID `_id` values are stripped (UUID identity not preserved) and UUID-based queries return empty results.
+- **Treatments API**: Loop overrides with UUID `_id` are now normalized correctly, preventing duplicate records (Issue #8450).
+- **Entries API**: CGM entries (e.g., Trio) with UUID `_id` are now handled correctly.
+- **Scope**: Only UUID values in the `_id` field are affected. Other client identity fields (`syncIdentifier`, `uuid`, `identifier`) are preserved but not modified.
+
+#### Test Infrastructure
+
+- **NODE_ENV=test safety check**: Tests now refuse to run without `NODE_ENV=test`, preventing accidental production database modification.
+- Comprehensive test suite for UUID handling behavior across write and read paths.
+
+### Documentation
+
+- Updated README.md with `UUID_HANDLING` and MongoDB pool configuration env vars.
+- Added entries schema documentation (`docs/data-schemas/entries-schema.md`).
+- Updated treatments schema documentation with identifier normalization behavior.
+- Added test environment variables reference to CONTRIBUTING.md.
+
+---
+
+## [15.0.6] - Previous Release
+
+See GitHub releases for prior changelog entries.
@@ -142,6 +142,69 @@ Once `dev` has been reviewed and people feel it's time to release, we follow the
 
 Every commit is tested by travis.  We encourage adding tests to validate your design.  We encourage discussing your use cases to help everyone get a better understanding of your design.
 
+## Running Tests Locally
+
+Tests **require** `NODE_ENV=test` to protect production databases from accidental destruction. If this variable is not set, tests will refuse to run and exit with an error.
+
+```bash
+# Run all tests
+NODE_ENV=test npm test
+
+# Run only unit tests (parallel, fast)
+NODE_ENV=test npm run test:unit
+
+# Run only integration tests (sequential, needs MongoDB)
+NODE_ENV=test npm run test:integration
+
+# Run specific test files
+NODE_ENV=test npm test -- --grep "treatments"
+```
+
+### Advanced Test Scripts
+
+For diagnosing test issues and ensuring reliability:
+
+```bash
+# Run stress tests for concurrent write operations
+NODE_ENV=test npm run test:stress
+
+# Detect flaky tests by running multiple iterations
+NODE_ENV=test npm run test:flaky           # Default iterations
+NODE_ENV=test npm run test:flaky:quick     # 3 iterations
+NODE_ENV=test npm run test:flaky:thorough  # 20 iterations
+
+# Run specific flaky test harnesses
+NODE_ENV=test npm run test:flaky:entries   # Entries isolation tests
+NODE_ENV=test npm run test:flaky:socket    # Socket isolation tests
+
+# Enable timing warnings to find slow tests
+NODE_ENV=test npm run test:timing
+```
+
+You can create a `my.test.env` file based on `ci.test.env` for local testing:
+
+```bash
+source my.test.env && npm test
+```
+
+### Test Environment Variables
+
+These variables control test behavior and MongoDB connection pooling:
+
+| Variable | Purpose | Default |
+|----------|---------|---------|
+| `NODE_ENV=test` | **Required** - Enables test mode, prevents production DB access | - |
+| `MONGO_POOL_SIZE` | MongoDB connection pool size | 5 |
+| `MONGO_MIN_POOL_SIZE` | Minimum pool connections to keep open | 0 |
+| `MONGO_MAX_IDLE_TIME_MS` | Max idle time (ms) before closing connection | 30000 |
+| `AUTH_FAIL_DELAY` | Delay (ms) after auth failure (test speedup) | 5000 |
+
+For CI or resource-constrained environments, adjust pool size:
+
+```bash
+MONGO_POOL_SIZE=3 MONGO_MIN_POOL_SIZE=1 npm test
+```
+
 ## Other Dev Tips
 
 * Join the [Discord chat][discord-url].
 
@@ -161,8 +161,8 @@ Older versions or other browsers might work, but are untested and unsupported. W
 
 ## Installation software requirements:
 
-- [Node.js](http://nodejs.org/) Latest Node v14 or v16 LTS. Node versions that do not have the latest security patches will not be supported. Use [Install instructions for Node](https://nodejs.org/en/download/package-manager/) or use `bin/setup.sh`)
-- [MongoDB](https://www.mongodb.com/download-center?jmp=nav#community) 4.2 or 4.4.
+- [Node.js](http://nodejs.org/) Node v20 LTS or later (v22, v24 also supported). Node versions that do not have the latest security patches will not be supported. Use [Install instructions for Node](https://nodejs.org/en/download/package-manager/) or use `bin/setup.sh`)
+- [MongoDB](https://www.mongodb.com/download-center?jmp=nav#community) 4.4 or later (5.0, 6.0 also supported).
 
 As a non-root user clone this repo then install dependencies into the root of the project:
 
@@ -252,6 +252,7 @@ To learn more about the Nightscout API, visit https://YOUR-SITE.com/api-docs/ or
     Setting it to `denied` will require a token from every visit, using `status-only` will enable api-secret based login.
   * `IMPORT_CONFIG` - Used to import settings and extended settings from a url such as a gist.  Structure of file should be something like: `{"settings": {"theme": "colors"}, "extendedSettings": {"upbat": {"enableAlerts": true}}}`
   * `TREATMENTS_AUTH` (`on`) - possible values `on` or `off`. Deprecated, if set to `off` the `careportal` role will be added to `AUTH_DEFAULT_ROLES`
+  * `UUID_HANDLING` (`true`) - Controls how UUID `_id` values are handled for treatments and entries. When `true` (default), if a client sends a UUID string as the `_id` field, it is extracted to the `identifier` field (for sync deduplication) and the server generates a proper ObjectId for `_id`. Queries by UUID (`GET`/`DELETE`) are also routed through the `identifier` field. When `false`, UUID `_id` values are silently stripped on write (no identifier is preserved) and UUID-based queries return empty results. This only affects the specific case where a UUID is sent as `_id` (e.g., Loop overrides, Trio CGM entries).
 
 #### Data Rights
 
@@ -288,6 +289,9 @@ autonomy for your data:
   * `MONGO_PROFILE_COLLECTION`(`profile`) - The collection used to store your profiles
   * `MONGO_FOOD_COLLECTION`(`food`) - The collection used to store your food database
   * `MONGO_ACTIVITY_COLLECTION`(`activity`) - The collection used to store activity data
+  * `MONGO_POOL_SIZE` (`5`) - MongoDB connection pool size. Adjust for your deployment needs.
+  * `MONGO_MIN_POOL_SIZE` (`0`) - Minimum pool connections to keep open.
+  * `MONGO_MAX_IDLE_TIME_MS` (`30000`) - Max idle time (ms) before closing a connection.
   * `PORT` (`1337`) - The port that the node.js application will listen on.
   * `HOSTNAME` - The hostname that the node.js application will listen on, null by default for any hostname for IPv6 you may need to use `::`.
   * `SSL_KEY` - Path to your ssl key file, so that ssl(https) can be enabled directly in node.js. If using Let's Encrypt, make this variable the path to your privkey.pem file (private key).
 
@@ -0,0 +1,143 @@
+# Entries Schema Documentation
+
+**Document Version:** 1.0  
+**Last Updated:** March 2026  
+**Status:** Active (2025 Standard)  
+**Source:** Code analysis (`lib/server/entries.js`)
+
+---
+
+## Overview
+
+The `entries` collection stores CGM (Continuous Glucose Monitor) sensor readings and related data. This includes SGV (sensor glucose values), MBG (meter blood glucose), and calibration data.
+
+**Collection Name:** `entries`  
+**Primary Key:** `sysTime` + `type` (composite)  
+**Primary Timestamp Field:** `sysTime` (ISO 8601, derived from `dateString` or `date`)
+
+---
+
+## Core Fields
+
+| Field | Type | Required | Constraints | Description |
+|-------|------|----------|-------------|-------------|
+| `_id` | ObjectId | Yes (auto) | MongoDB ObjectId | Primary key, auto-generated by server |
+| `type` | String | Yes | `sgv`, `mbg`, `cal`, etc. | Type of entry |
+| `date` | Number | Yes | Epoch milliseconds | When the reading was taken |
+| `dateString` | String | Yes | ISO 8601 | Same as `date` in string format |
+| `sysTime` | String | Computed | ISO 8601 | Normalized timestamp (computed from `dateString` or `date`) |
+| `utcOffset` | Number | Computed | Minutes | UTC offset parsed from `dateString` |
+
+---
+
+## SGV Fields (type: "sgv")
+
+| Field | Type | Constraints | Description |
+|-------|------|-------------|-------------|
+| `sgv` | Number | mg/dL or mmol/L | Sensor glucose value |
+| `direction` | String | Trend arrows | Glucose trend direction |
+| `noise` | Number | 0-4 | Signal noise level |
+| `filtered` | Number | Raw value | Filtered sensor signal |
+| `unfiltered` | Number | Raw value | Unfiltered sensor signal |
+| `rssi` | Number | dBm | Signal strength (Dexcom) |
+
+---
+
+## Sync Identity Fields
+
+| Field | Type | Source | Description |
+|-------|------|--------|-------------|
+| `identifier` | String | Server-normalized | **Unified client sync identity** (see below) |
+| `device` | String | CGM app | Device/app identifier (e.g., `"xDrip-DexcomG6"`) |
+
+### Identifier Field Normalization (REQ-SYNC-072)
+
+As of v15.0.7, the server normalizes UUID values in `_id` into the `identifier` field when `UUID_HANDLING=true` (default):
+
+| Client | Sends | Server Action (UUID_HANDLING=true) | Server Action (UUID_HANDLING=false) |
+|--------|-------|-------------------------------------|--------------------------------------|
+| **Trio** | UUID in `_id` | Move to `identifier`, assign server ObjectId | Strip `_id`, assign ObjectId (UUID not preserved) |
+| **Loop** (entries) | ObjectId (from cache) | Normal ObjectId behavior | Normal ObjectId behavior |
+
+**Note**: The `UUID_HANDLING` env var controls **both** write-path normalization (identifier extraction) and read-path queries (GET/DELETE by UUID).
+
+**Important**: For entries, `sysTime + type` is ALWAYS the primary deduplication key. The `identifier` field is for client sync tracking only - it does NOT override the dedup logic.
+
+---
+
+## Deduplication Behavior
+
+Entries use **sysTime + type** as the composite unique key:
+
+```javascript
+// Upsert query for entries (lib/server/entries.js)
+{ sysTime: doc.sysTime, type: doc.type }
+```
+
+This means:
+- Two SGV readings at the same `sysTime` will be deduplicated (one overwrites the other)
+- Different entry types (SGV vs MBG) at the same time are allowed
+- Re-uploading the same reading updates the existing document
+
+### UUID _id Handling
+
+When a client sends a UUID as `_id`:
+
+1. **Extract**: UUID is copied to `identifier` field (when `UUID_HANDLING=true`)
+2. **Strip**: Non-ObjectId `_id` is removed before database operation
+3. **Upsert**: Server uses `sysTime + type` for matching
+4. **Assign**: Server-generated ObjectId becomes final `_id`
+
+This prevents the MongoDB "immutable field '_id'" error while preserving client sync identity (when enabled).
+
+---
+
+## UUID_HANDLING Feature Flag
+
+The `UUID_HANDLING` environment variable controls both **write-path** normalization (identifier extraction) and **read-path** queries (GET/DELETE by UUID).
+
+When `UUID_HANDLING=true` (default):
+
+| Operation | Behavior |
+|-----------|----------|
+| POST/PUT with UUID `_id` | UUID moved to `identifier`, server assigns ObjectId |
+| GET by UUID | Searches by `identifier` field |
+| DELETE by UUID | Deletes by `identifier` field |
+
+When `UUID_HANDLING=false`:
+
+| Operation | Behavior |
+|-----------|----------|
+| POST/PUT with UUID `_id` | UUID `_id` stripped, ObjectId assigned (UUID not preserved) |
+| GET by UUID | Returns empty (no crash) |
+| DELETE by UUID | Deletes nothing (no crash) |
+
+**Note**: This only affects cases where a UUID is passed as the `_id` field (writes) or as the `_id` parameter in API calls (reads), e.g., `GET /api/v1/entries/{uuid}`.
+
+---
+
+## Example Entry Document
+
+```json
+{
+  "_id": "507f1f77bcf86cd799439011",
+  "type": "sgv",
+  "sgv": 120,
+  "direction": "Flat",
+  "date": 1704067200000,
+  "dateString": "2024-01-01T00:00:00.000Z",
+  "sysTime": "2024-01-01T00:00:00.000Z",
+  "utcOffset": 0,
+  "identifier": "550e8400-e29b-41d4-a716-446655440000",
+  "device": "xDrip-DexcomG6",
+  "noise": 1
+}
+```
+
+---
+
+## Related Documents
+
+- [Treatments Schema](treatments-schema.md) - Similar identifier normalization
+- [GAP-SYNC-045](../../../traceability/sync-identity-gaps.md#gap-sync-045) - Trio entries UUID issue
+- [REQ-SYNC-072](../../../traceability/sync-identity-requirements.md#req-sync-072) - Identifier normalization requirement
@@ -114,18 +114,41 @@ The `treatments` collection stores all user interventions and system events rela
 |-------|------|--------|-------------|
 | `srvCreated` | String (ISO 8601) | Server | When the server first received this record |
 | `srvModified` | String (ISO 8601) | Server | When the server last modified this record |
-| `identifier` | String | AAPS | AAPS-specific unique identifier for sync |
-| `uuid` | String | Various | Client-assigned unique identifier |
+| `identifier` | String | Server/Client | Unified sync identity (see below) |
+| `syncIdentifier` | String | Loop | Loop carbs/doses sync identity (preserved, not copied) |
+| `uuid` | String | xDrip+ | xDrip+ sync identity (preserved, not copied) |
 | `pumpId` | String | Loop/pumps | Pump-assigned identifier |
 | `pumpType` | String | Loop/pumps | Type of pump that created this treatment |
 | `pumpSerial` | String | Loop/pumps | Serial number of the pump |
 
-**Important:** Different controller systems use different field names for duplicate detection:
-- **AAPS:** Uses `identifier` field
-- **Loop:** Uses `_id` or pump-related fields
-- **xDrip:** Uses `uuid` field
+### Identifier Field Normalization (REQ-SYNC-072)
 
-This inconsistency suggests that **schema registration / inversion of control** would be valuable - controllers should register their sync identity field conventions.
+As of v15.0.7, the server normalizes **UUID values in the `_id` field** when `UUID_HANDLING=true` (default):
+
+| Client | Client Field | UUID_HANDLING=true | UUID_HANDLING=false |
+|--------|--------------|---------------------|----------------------|
+| **Loop** (overrides) | UUID in `_id` | Move to `identifier`, assign ObjectId | Strip `_id`, assign ObjectId (UUID not preserved) |
+| **Loop** (carbs/doses) | `syncIdentifier` | Preserved as-is | Preserved as-is |
+| **AAPS** | `identifier` | Unchanged (already correct) | Unchanged (already correct) |
+| **xDrip+** | `uuid` | Preserved as-is | Preserved as-is |
+
+**Scope:** Only UUID values in the `_id` field are affected. Other client identity fields (`syncIdentifier`, `uuid`) are preserved but NOT copied to `identifier`.
+
+**UUID_HANDLING controls both write-path normalization and read-path queries** (GET/DELETE by UUID `_id`).
+
+**Deduplication Priority:** The server uses `identifier` or `_id` for upsert matching when present, falling back to `created_at + eventType` for legacy records.
+
+**Example - Loop Override Upload (UUID_HANDLING=true):**
+
+```javascript
+// Client sends:
+{ "_id": "A1B2C3D4-E5F6-7890-ABCD-EF1234567890", "eventType": "Temporary Override", ... }
+
+// Server stores:
+{ "_id": ObjectId("..."), "identifier": "A1B2C3D4-E5F6-7890-ABCD-EF1234567890", "eventType": "Temporary Override", ... }
+```
+
+**Note:** Loop carbs/doses (which use `syncIdentifier`) rely on Loop's local ObjectIdCache for dedup, not server-side logic.
 
 ---
 
@@ -349,4 +372,5 @@ The defaults documented (eventType defaulting to `<none>`, created_at defaulting
 
 | Date | Author | Changes |
 |------|--------|---------|
+| 2026-03-17 | Agent | Added identifier field normalization (REQ-SYNC-072) |
 | 2026-01-15 | Agent | Initial schema documentation from code analysis and domain expert interview |
@@ -12,4 +12,17 @@ LANGUAGE=en
 INSECURE_USE_HTTP=true
 PORT=1337
 NODE_ENV=development
-AUTH_FAIL_DELAY=50
+AUTH_FAIL_DELAY=50
+
+# UUID handling for specific client patterns that send UUID as _id field
+# Only affects cases where a UUID is sent as the _id field itself
+# (e.g., Loop overrides, Trio CGM entries)
+# Does NOT affect clients using separate identifier/uuid fields (AAPS, xDrip+, etc.)
+#
+# When true (default):
+# - POST/PUT: UUID _id → extracted to 'identifier' field, new ObjectId assigned
+# - GET/DELETE: UUID _id queries search by 'identifier' field
+# When false:
+# - POST/PUT: UUID _id is stripped, new ObjectId assigned (UUID identity not preserved)
+# - GET/DELETE: UUID _id queries return empty results (no crash)
+# UUID_HANDLING=true