feat(api-service): Organization switch flag

[scopsy]

What changed? Why was the change needed?

Implemented a new organization-level kill switch feature flag, IS_ORG_KILLSWITCH_FLAG_ENABLED.

This flag allows for the immediate halting of all trigger API requests and worker job processing (subscriber, workflow, and standard workers) for a specific organization and environment.

When enabled:

• Trigger API endpoints (/trigger, /trigger/bulk, /trigger/broadcast) will return a 503 Service Unavailable response.
• Worker processors will log a message and immediately skip processing the job.

This feature provides a critical operational tool to manage system load or respond to incidents by temporarily disabling service for affected organizations.

Screenshots

N/A

---

Slack Thread

 

[cursor]

Cursor Agent can help with this pull request. Just @cursor in comments and I'll start working on changes in this branch.
_{Learn more about Cursor Agents}

[netlify]

✅ Deploy Preview for dashboard-v2-novu-staging canceled.

Name	Link
🔨 Latest commit	f5c8eee
🔍 Latest deploy log	https://app.netlify.com/projects/dashboard-v2-novu-staging/deploys/69836b3fb6c3880008d8f123

[github-actions]

Hey there and thank you for opening this pull request! 👋

We require pull request titles to follow specific formatting rules and it looks like your proposed title needs to be adjusted.

Your PR title is: feat(api-service): Organization switch flag

Requirements:

1. Follow the Conventional Commits specification
2. As a team member, include Linear ticket ID at the end: fixes TICKET-ID or include it in your branch name

Expected format: feat(scope): Add fancy new feature fixes NOV-123

Details:

PR title must end with 'fixes TICKET-ID' (e.g., 'fixes NOV-123') or include ticket ID in branch name

[coderabbitai]

Walkthrough

Added KILLSWITCH to .cspell.json and a new feature-flag key IS_ORG_KILLSWITCH_FLAG_ENABLED to FeatureFlagsKeysEnum. Integrated kill-switch checks into API auth (apikey.strategy) and events endpoints (events.controller), where the flag causes ServiceUnavailableException for trigger endpoints and API key validation. Injected FeatureFlagsService into worker classes (standard.worker, subscriber-process.worker, workflow.worker) and tests; workers now query the flag and log/return early to skip job processing when enabled. Constructor signatures updated where applicable.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately reflects the main change: implementing an organization-level kill switch feature flag across the API and worker services.
Description check	✅ Passed	The description clearly explains the feature's purpose, implementation details, and behavioral outcomes across the API and worker components.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@apps/worker/src/app/workflow/services/standard.worker.ts`:
- Around line 98-116: The kill-switch lookup in getWorkerProcessor currently
calls isKillSwitchEnabled with data._organizationId/_environmentId which can be
missing for legacy jobs; modify getWorkerProcessor to first call
extractMinimalJobData (or reuse its fallback logic) to derive organizationId and
environmentId from payload.message when needed, then pass those resolved IDs
into isKillSwitchEnabled (or alter isKillSwitchEnabled to accept resolved IDs)
so the kill switch always checks the correct org/env for legacy payloads; refer
to the getWorkerProcessor, isKillSwitchEnabled, and extractMinimalJobData
symbols when making the change.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Kill-switch lookup can miss org/env for legacy job payloads.
isKillSwitchEnabled uses _organizationId/_environmentId directly, but extractMinimalJobData already handles missing IDs via payload.message. Since the kill-switch check runs before that extraction, jobs lacking those fields may bypass the kill switch or error unexpectedly.

🔧 Minimal fix to reuse the fallback extraction for kill-switch IDs

-  private async isKillSwitchEnabled(data: IStandardDataDto): Promise<boolean> {
-    return this.featureFlagsService.getFlag({
-      key: FeatureFlagsKeysEnum.IS_ORG_KILLSWITCH_FLAG_ENABLED,
-      defaultValue: false,
-      organization: { _id: data._organizationId },
-      environment: { _id: data._environmentId },
-      component: 'worker',
-    });
-  }
+  private async isKillSwitchEnabled(data: IStandardDataDto): Promise<boolean> {
+    const minimalJobData = this.extractMinimalJobData(data);
+
+    return this.featureFlagsService.getFlag({
+      key: FeatureFlagsKeysEnum.IS_ORG_KILLSWITCH_FLAG_ENABLED,
+      defaultValue: false,
+      organization: { _id: minimalJobData.organizationId },
+      environment: { _id: minimalJobData.environmentId },
+      component: 'worker',
+    });
+  }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	private async isKillSwitchEnabled(data: IStandardDataDto): Promise<boolean> {
	return this.featureFlagsService.getFlag({
	key: FeatureFlagsKeysEnum.IS_ORG_KILLSWITCH_FLAG_ENABLED,
	defaultValue: false,
	organization: { _id: data._organizationId },
	environment: { _id: data._environmentId },
	component: 'worker',
	});
	}
	private getWorkerProcessor() {
	return async ({ data }: { data: IStandardDataDto }) => {
	const isKillSwitchEnabled = await this.isKillSwitchEnabled(data);
	if (isKillSwitchEnabled) {
	Logger.log(`Kill switch enabled for organizationId ${data._organizationId}. Skipping job.`, LOG_CONTEXT);
	return;
	}
	private async isKillSwitchEnabled(data: IStandardDataDto): Promise<boolean> {
	const minimalJobData = this.extractMinimalJobData(data);
	return this.featureFlagsService.getFlag({
	key: FeatureFlagsKeysEnum.IS_ORG_KILLSWITCH_FLAG_ENABLED,
	defaultValue: false,
	organization: { _id: minimalJobData.organizationId },
	environment: { _id: minimalJobData.environmentId },
	component: 'worker',
	});
	}
	private getWorkerProcessor() {
	return async ({ data }: { data: IStandardDataDto }) => {
	const isKillSwitchEnabled = await this.isKillSwitchEnabled(data);
	if (isKillSwitchEnabled) {
	Logger.log(`Kill switch enabled for organizationId ${data._organizationId}. Skipping job.`, LOG_CONTEXT);
	return;
	}

🤖 Prompt for AI Agents

In `@apps/worker/src/app/workflow/services/standard.worker.ts` around lines 98 -
116, The kill-switch lookup in getWorkerProcessor currently calls
isKillSwitchEnabled with data._organizationId/_environmentId which can be
missing for legacy jobs; modify getWorkerProcessor to first call
extractMinimalJobData (or reuse its fallback logic) to derive organizationId and
environmentId from payload.message when needed, then pass those resolved IDs
into isKillSwitchEnabled (or alter isKillSwitchEnabled to accept resolved IDs)
so the kill switch always checks the correct org/env for legacy payloads; refer
to the getWorkerProcessor, isKillSwitchEnabled, and extractMinimalJobData
symbols when making the change.