New Consumer Onboarding
This is the practical playbook for teams integrating ConvEngine for the first time. Follow this sequence to avoid the common mistakes: wrong data routing, stale intent carry-over, unsafe prompt exposure, and concurrency drift.
What a new consumer must decide first
Day-0 decisions
| Decision | Why it matters | Recommended default |
|---|---|---|
| Transport | Determines runtime event delivery and operational complexity. | Start with SSE only; enable STOMP relay later. |
| Intent continuity | Controls whether intent re-resolves each turn. | Start with `STICKY_INTENT=true`, but add explicit switch UX. |
| Response mode | Defines determinism vs model flexibility. | Start with `EXACT` for critical intents; add `DERIVED` gradually. |
| Concurrency policy | Prevents same-conversation race corruption. | Serialize by `conversationId` at API layer from day one. |
| Prompt exposure policy | Controls data leakage and prompt contamination risk. | Use allowlist of prompt vars; do not expose raw input maps. |
Step-by-step onboarding
Bootstrap framework and LLM adapter
Enable @EnableConvEngine, provide one production-grade LlmClient bean with strict timeout and retry policy.
Create baseline control-plane data
Seed minimum rows for intents, classifiers, responses, prompt templates, and required ce_config flags.
Lock down safety defaults
Apply conservative defaults for reset behavior, sticky-intent, rule phases, MCP safety, and prompt-variable exposure.
Run correctness tests before UI rollout
Validate multi-turn transitions, reset continuity, missing-field loops, and same-conversation concurrency behavior.
Promote with release gates
Move from non-prod to prod only after all correctness/security/scalability gates pass.
Minimum integration checklist
Must-have implementation tasks
| Area | Task | Done when |
|---|---|---|
| Spring wiring | Enable ConvEngine + define `LlmClient` bean. | `/message` works and returns payload for seeded FAQ intent. |
| Schema | Apply DDL and create indexes from ConvEngine schema. | All `ce_*` tables present and writable. |
| Seed data | Insert minimal rows for one end-to-end intent. | One deterministic turn passes with expected intent/state. |
| Audit usage | Wire audit API/stream into debugging workflow. | Every test case is verified against trace timeline. |
| Concurrency guard | Prevent parallel writes for same conversation. | Load test shows no state drift under concurrent same-ID requests. |
| Prompt hygiene | Allowlist exposed template vars. | No sensitive/internal keys appear in rendered prompts. |
- Postgres
- Oracle
- SQLite
Apply src/main/resources/sql/ddl_postgres.sql (legacy: src/main/resources/sql/ddl.sql).
Apply src/main/resources/sql/ddl_oracle.sql.
Apply src/main/resources/sql/ddl_sqlite.sql.
Recommended baseline config (new consumers)
Safe starter config (ConvEngine + CCF mappings)
YAML
ccf:
core:
# CCF Core dynamic table mapping
tables:
PAGE_COMMON_QUERY: ZP_PAGE_COMMON_QUERY
SECTION_INFO: ZP_SECTION_INFO
CONTAINER_INFO: ZP_CONTAINER_INFO
CONTAINER_FIELD_INFO: ZP_CONTAINER_FIELD_INFO
CONTAINER_QUERY_INFO: ZP_CONTAINER_QUERY_INFO
convengine:
transport:
sse:
enabled: true
stomp:
enabled: false
audit:
enabled: true
level: STANDARD
dispatch:
async-enabled: false
# ConvEngine dynamic table mapping
tables:
AUDIT: CE_AUDIT
CONTAINER_CONFIG: CE_CONTAINER_CONFIG
CONVERSATION: CE_CONVERSATION
INTENT: CE_INTENT
INTENT_CLASSIFIER: CE_INTENT_CLASSIFIER
LLM_CALL_LOG: CE_LLM_CALL_LOG
MCP_DB_TOOL: CE_MCP_DB_TOOL
MCP_TOOL: CE_MCP_TOOL
OUTPUT_SCHEMA: CE_OUTPUT_SCHEMA
PROMPT_TEMPLATE: CE_PROMPT_TEMPLATE
RESPONSE: CE_RESPONSE
RULE: CE_RULE
Safe starter config (ce_config)
YAML
INSERT INTO ce_config
(config_id, config_type, config_key, config_value, enabled, created_at)
VALUES(12, 'IntentResolutionStep', 'STICKY_INTENT', 'true', true, '2026-02-17 10:15:54.230');
INSERT INTO ce_config
(config_id, config_type, config_key, config_value, enabled, created_at)
VALUES(1, 'AgentIntentResolver', 'MIN_CONFIDENCE', '0.55', true, '2026-02-10 10:15:54.227');
INSERT INTO ce_config
(config_id, config_type, config_key, config_value, enabled, created_at)
VALUES(2, 'AgentIntentResolver', 'COLLISION_GAP_THRESHOLD', '0.2', true, '2026-02-10 10:15:54.230');
Do not start with max flexibility
Do not begin with broad MCP usage, many DERIVED intents, and aggressive rule chains together. Start deterministic, then expand one capability at a time.
Correctness-focused test pack (required)
Pre-production test scenarios
| Scenario | What to verify | Failure signal |
|---|---|---|
| Sticky intent shift | New-topic user input triggers expected re-resolution/switch behavior. | Repeated wrong-intent responses with skip stages. |
| Reset semantics | All reset paths clear context/intent/state consistently. | Old fields survive after reset turn. |
| Rule collisions | Only intended rule wins for same turn. | Unexpected multi-pass intent/state mutation. |
| Schema loop | Missing fields converge in bounded turns. | Infinite clarification or inconsistent required field set. |
| Concurrent same ID | No last-write-wins drift under parallel requests. | Contradictory final state for same conversation timeline. |
| Model bad JSON | Invalid model output fails safely and deterministically. | Silent state corruption or unbounded fallback noise. |
Production readiness gates
Go-live gates
| Gate | Requirement |
|---|---|
| Data correctness | Illegal intent/state transitions are blocked or quarantined. |
| Security | Prompt var allowlist and secret redaction enabled. |
| Concurrency | Same-conversation serialization or optimistic locking in place. |
| Observability | Team can reconstruct one bad turn end-to-end from trace. |
| Scalability | P95 stable under target QPS with production-like config volume. |
| Rollback | Config rollback procedure tested for bad rule/prompt deployment. |
New intent rollout template (repeatable)
- Add
ce_intentand classifiers for the new intent. - Add response mapping (
EXACTfirst). - Add schema + prompt template only if extraction is needed.
- Add minimal rules with explicit phase and priority.
- Run scenario tests for this intent (normal, reset, switch, collision, concurrent).
- Promote with rollback snapshot.
Common new-consumer mistakes
Avoid these early mistakes
| Mistake | Impact | Fix |
|---|---|---|
| Using DERIVED everywhere from day one | Higher variance and harder debugging. | Use EXACT for critical flows first. |
| No conversation-level concurrency control | State drift and non-deterministic results. | Serialize by conversation ID or add optimistic locking. |
| Treating prompt vars as free-form | Data leakage and unintended model behavior. | Explicit prompt-var allowlist and validation. |
| Shipping config changes without tests | Production regressions from rule/template misconfig. | Introduce lint + fixture tests + staged promotion. |
| Skipping trace review | Root cause unclear when output is wrong. | Make trace review mandatory in QA signoff. |
Where to read next
After this page, continue with Configuration for table-level setup, Annotations Reference for all annotation usage, and Improvement Backlog for implementation roadmap.