🏗️ Architecture

The application follows a modular architecture with clear separation between different layers and components. The architecture is designed to support both the Thunderbird for Android and K-9 Mail applications while maximizing code reuse, maintainability and enable adoption of Kotlin Multiplatform in the future.

🔑 Key Architectural Principles

🚀 Multi platform Compatibility: The architecture is designed to support future Kotlin Multiplatform adoption
📱 Offline-First: The application is designed to work offline with local data storage and synchronization with remote servers
🧩 Modularity: The application is divided into distinct modules with clear responsibilities
🔀 Separation of Concerns: Each module focuses on a specific aspect of the application
⬇️ Dependency Inversion: Higher-level modules do not depend on lower-level modules directly
🎯 Single Responsibility: Each component has a single responsibility
🔄 API/Internal Separation: Clear separation between public APIs and internal implementation details
🧹 Clean Architecture: Separation of UI, domain, and data layers
🧪 Testability: The architecture facilitates comprehensive testing at all levels

📝 Architecture Decision Records

The Architecture Decision Records document the architectural decisions made during the development of the project, providing context and rationale for key technical choices. Reading through these decisions will improve your contributions and ensure long-term maintainability of the project.

📦 Module Structure

The application is organized into several module types:

📱 App Modules: app-thunderbird and app-k9mail - Application entry points
🔄 App Common: app-common - Shared code between applications
✨ Feature Modules: feature:* - Independent feature modules
🧰 Core Modules: core:* - Foundational components and utilities used across multiple features
📚 Library Modules: library:* - Specific implementations for reuse
🔙 Legacy Modules: Legacy code being gradually migrated

For more details on the module organization and structure, see the Module Organization and Module Structure documents.

🧩 Architectural Patterns

The architecture follows several key patterns to ensure maintainability, testability, and separation of concerns:

🔄 API/Internal Separation

Each module should be split into two main parts: API and internal. This separation provides clear boundaries between what a module exposes to other modules and how it implements its functionality internally:

📝 API: Public interfaces, models, and contracts
⚙️ Internal: Concrete implementations of the interfaces, private to the module

This separation provides clear boundaries, improves testability, and enables flexibility.

See API Module and Internal Module for more details.

Clean Architecture

Thunderbird for Android uses Clean Architecture with three main layers (UI, domain, and data) to break down complex feature implementation into manageable components. Each layer has a specific responsibility:

mermaid

graph TD
    subgraph UI[UI Layer]
        UI_COMPONENTS[UI Components]
        VIEW_MODEL[ViewModels]
    end

    subgraph DOMAIN["Domain Layer"]
        USE_CASE[Use Cases]
        REPO[Repositories]
    end

    subgraph DATA[Data Layer]
        DATA_SOURCE[Data Sources]
        API[API Clients]
        DB[Local Database]
    end

    UI_COMPONENTS --> VIEW_MODEL
    VIEW_MODEL --> USE_CASE
    USE_CASE --> REPO
    REPO --> DATA_SOURCE
    DATA_SOURCE --> API
    DATA_SOURCE --> DB

    classDef ui_layer fill:#d9e9ff,stroke:#000000,color:#000000
    classDef ui_class fill:#4d94ff,stroke:#000000,color:#000000
    classDef domain_layer fill:#d9ffd9,stroke:#000000,color:#000000
    classDef domain_class fill:#33cc33,stroke:#000000,color:#000000
    classDef data_layer fill:#ffe6cc,stroke:#000000,color:#000000
    classDef data_class fill:#ffaa33,stroke:#000000,color:#000000
    
    linkStyle default stroke:#999,stroke-width:2px

    class UI ui_layer
    class UI_COMPONENTS,VIEW_MODEL ui_class
    class DOMAIN domain_layer
    class USE_CASE,REPO domain_class
    class DATA data_layer
    class DATA_SOURCE,API,DB data_class

🖼️ UI Layer (Presentation)

The UI layer is responsible for displaying data to the user and handling user interactions.

Key Components:

🎨 Compose UI: Screen components built with Jetpack Compose
🧠 ViewModels: Manage UI state and handle UI events
📊 UI State: Immutable data classes representing the UI state
🎮 Events: User interactions or system events that trigger state changes
🔔 Effects: One-time side effects like navigation or showing messages

Pattern: Model-View-Intent (MVI)

📋 Model: UI state representing the current state of the screen
👁️ View: Compose UI that renders the state
🎮 Event: User interactions that trigger state changes (equivalent to "Intent" in standard MVI)
🔔 Effect: One-time side effects like navigation or notifications

🧠 Domain Layer (Business Logic)

The domain layer contains the business logic and rules of the application. It is independent of the UI and data layers, allowing for easy testing and reuse.

Key Components:

⚙️ Use Cases: Encapsulate business logic operations
📋 Domain Models: Represent business entities
📝 Repository Interfaces: Define data access contracts

mermaid

graph TB
    subgraph DOMAIN[Domain Layer]
        USE_CASE[Use Cases]
        MODEL[Domain Models]
        REPO_API[Repository Interfaces]
    end

    subgraph DATA[Data Layer]
        REPO_IMPL[Repository Implementations]
    end

    USE_CASE --> |uses| REPO_API
    USE_CASE --> |uses| MODEL
    REPO_API --> |uses| MODEL
    REPO_IMPL --> |implements| REPO_API
    REPO_IMPL --> |uses| MODEL

    classDef domain_layer fill:#d9ffd9,stroke:#000000,color:#000000
    classDef domain_class fill:#33cc33,stroke:#000000,color:#000000
    classDef data_layer fill:#ffe6cc,stroke:#000000,color:#000000
    classDef data_class fill:#ffaa33,stroke:#000000,color:#000000

    linkStyle default stroke:#999,stroke-width:2px

    class DOMAIN domain_layer
    class USE_CASE,REPO_API,MODEL domain_class
    class DATA data_layer
    class REPO_IMPL data_class

💾 Data Layer

The data layer is responsible for data retrieval, storage, and synchronization.

Key Components:

📦 Repository implementations: Internal implementations of repository interfaces from the domain layer
🔌 Data Sources: Provide data from specific sources (API, database, preferences)
📄 Data Transfer Objects: Represent data at the data layer

Pattern: Data Source Pattern

🔍 Abstracts data sources behind a clean API
Maps data between domain models and data transfer objects

mermaid

graph TD
    subgraph DOMAIN[Domain Layer]
        REPO_API[Repository]
    end

    subgraph DATA[Data Layer]
        REPO_IMPL[Repository implementations]
        RDS[Remote Data Sources]
        LDS[Local Data Sources]
        MAPPER[Data Mappers]
        DTO[Data Transfer Objects]
    end

    REPO_IMPL --> |implements| REPO_API
    REPO_IMPL --> RDS
    REPO_IMPL --> LDS
    REPO_IMPL --> MAPPER
    RDS --> MAPPER
    LDS --> MAPPER
    MAPPER --> DTO

    classDef domain_layer fill:#d9ffd9,stroke:#000000,color:#000000
    classDef domain_class fill:#33cc33,stroke:#000000,color:#000000
    classDef data_layer fill:#ffe6cc,stroke:#000000,color:#000000
    classDef data_class fill:#ffaa33,stroke:#000000,color:#000000

    linkStyle default stroke:#999,stroke-width:2px

    class DOMAIN domain_layer
    class REPO_API domain_class
    class DATA data_layer
    class REPO_IMPL,RDS,LDS,MAPPER,DTO data_class

🔄 Immutability

Immutability means that once an object is created, it cannot be changed. Instead of modifying existing objects, new objects are created with the desired changes. In the context of UI state, this means that each state object represents a complete snapshot of the UI at a specific point in time.

Why is Immutability Important?

Immutability provides several benefits:

Predictability: With immutable state, the UI can only change when a new state object is provided, making the flow of data more predictable and easier to reason about.
Debugging: Each state change creates a new state object, making it easier to track changes and debug issues by comparing state objects.
Concurrency: Immutable objects are thread-safe by nature, eliminating many concurrency issues.
Performance: While creating new objects might seem inefficient, modern frameworks optimize this process, and the benefits of immutability often outweigh the costs.
Time-travel debugging: Immutability enables storing previous states, allowing developers to "time travel" back to previous application states during debugging.

🎨 UI Architecture

The UI is built using Jetpack Compose with a component-based architecture following our modified Model-View-Intent (MVI) pattern. This architecture provides a unidirectional data flow, clear separation of concerns, and improved testability.

For detailed information about the UI architecture and theming, see the UI Architecture and Theme System documents.

📱 Offline-First Approach

The application implements an offline-first Approach to provide a reliable user experience regardless of network conditions:

💾 Local database as the single source of truth
🔄 Background synchronization with remote servers
📋 Operation queueing for network operations
🔀 Conflict resolution for data modified both locally and remotely

Implementation Approach

mermaid

graph LR
    subgraph UI[UI Layer]
        VIEW_MODEL[ViewModel]
    end

    subgraph DOMAIN[Domain Layer]
        USE_CASE[Use Cases]
    end

    subgraph DATA[Data Layer]
        subgraph SYNC[Synchronization]
            SYNC_MANAGER[Sync Manager]
            SYNC_QUEUE[Sync Queue]
        end
        REPO[Repository]
        LOCAL[Local Data Source]
        REMOTE[Remote Data Source]
    end
    
    VIEW_MODEL --> USE_CASE
    USE_CASE --> REPO
    SYNC_MANAGER --> LOCAL
    SYNC_MANAGER --> REMOTE
    SYNC_MANAGER --> SYNC_QUEUE
    REPO --> LOCAL
    REPO --> REMOTE
    REPO --> SYNC_MANAGER
    REPO ~~~ SYNC
    
    classDef ui_layer fill:#d9e9ff,stroke:#000000,color:#000000
    classDef ui_class fill:#4d94ff,stroke:#000000,color:#000000
    classDef domain_layer fill:#d9ffd9,stroke:#000000,color:#000000
    classDef domain_class fill:#33cc33,stroke:#000000,color:#000000
    classDef data_layer fill:#ffe6cc,stroke:#000000,color:#000000
    classDef data_class fill:#ffaa33,stroke:#000000,color:#000000
    classDef sync_layer fill:#e6cce6,stroke:#000000,color:#000000
    classDef sync_class fill:#cc99cc,stroke:#000000,color:#000000

    linkStyle default stroke:#999,stroke-width:2px

    class UI ui_layer
    class VIEW_MODEL ui_class
    class DOMAIN domain_layer
    class USE_CASE domain_class
    class DATA data_layer
    class REPO,LOCAL,REMOTE data_class
    class SYNC sync_layer
    class SYNC_MANAGER,SYNC_API,SYNC_QUEUE sync_class

The offline-first approach is implemented across all layers of the application:

💾 Data Layer:
- 📊 Local database as the primary data source
- 🌐 Remote data source for server communication
- 📦 Repository pattern to coordinate between data sources in the internal module
- 🔄 Synchronization manager to handle data syncing
🧠 Domain Layer:
- ⚙️ Use cases handle both online and offline scenarios
- 📝 Business logic accounts for potential network unavailability
- 📋 Domain models represent data regardless of connectivity state
🖼️ UI Layer:
- 🧠 ViewModels expose UI state that reflects connectivity status
- 🚦 UI components display appropriate indicators for offline mode
- 👆 User interactions are designed to work regardless of connectivity

💉 Dependency Injection

The application uses Koin for dependency injection, with modules organized by feature:

📱 App Modules: Configure application-wide dependencies
🔄 App Common: Shared dependencies between applications
✨ Feature Modules: Configure feature-specific dependencies
🧰 Core Modules: Configure core dependencies

kotlin

// Example Koin module for a feature
val featureModule = module {
    viewModel { FeatureViewModel(get()) }
    single<FeatureRepository> { FeatureRepositoryImpl(get(), get()) }
    single<FeatureUseCase> { FeatureUseCaseImpl(get()) }
    single<FeatureApiClient> { FeatureApiClientImpl() }
}

🔄 Cross-Cutting Concerns

Cross-cutting concerns are aspects of the application that affect multiple features and cannot be cleanly handled individually for every feature. These concerns require consistent implementation throughout the codebase to ensure maintainability an reliability.

In Thunderbird for Android, several cross-cutting concerns are implemented as dedicated core modules to provide standardized solutions that can be reused across the application:

⚠️ Error Handling: Comprehensive error handling (core/outcome) transforms exceptions into domain-specific errors and provides user-friendly feedback.
📋 Logging: Centralized logging system (core/logging) ensures consistent log formatting, levels, and storage.
🔒 Security: Modules like core/security handle encryption, authentication, and secure data storage.

Work in progress:

🔐 Encryption: The core/crypto module provides encryption and decryption utilities for secure data handling.
📦 Feature Flags: The core/feature-flags module manages feature toggles and experimental features.
🔄 Synchronization: The core/sync module manages background synchronization, conflict resolution, and offline-first behavior.
🛠️ Configuration Management: Centralized handling of application settings and environment-specific configurations.

By implementing these concerns as core modules, the application achieves a clean and modular architecture that is easier to maintain and extend.

⚠️ Error Handling

The application implements a comprehensive error handling strategy across all layers. We favor using the Outcome pattern over exceptions for expected error conditions, while exceptions are reserved for truly exceptional situations that indicate programming errors or unrecoverable system failures.

🧠 Domain Errors: Encapsulate business logic errors as sealed classes, ensuring clear representation of specific error cases.
💾 Data Errors: Transform network or database exceptions into domain-specific errors using result patterns in repository implementations.
🖼️ UI Error Handling: Provide user-friendly error feedback by:
- Mapping domain errors to UI state in ViewModels.
- Displaying actionable error states in Compose UI components.
- Offering retry options for network connectivity issues.

[!NOTE]
Exceptions should be used sparingly. Favor the Outcome pattern and sealed classes for predictable error conditions to enhance maintainability and clarity.

🛠️ How to Implement Error Handling

When implementing error handling in your code:

Define domain-specific errors as sealed classes in your feature's domain layer:

kotlin

sealed class AccountError {
    data class AuthenticationFailed(val reason: String) : AccountError()
    data class NetworkError(val exception: Exception) : AccountError()
    data class ValidationError(val field: String, val message: String) : AccountError()
}

Use result patterns (Outcome) instead of exceptions for error handling:

kotlin

// Use the Outcome class for representing success or failure
sealed class Outcome<out T, out E> {
    data class Success<T>(val value: T) : Outcome<T, Nothing>()
    data class Failure<E>(val error: E) : Outcome<Nothing, E>()
}

Transform external errors into domain errors in your repositories using result patterns:

kotlin

// Return Outcome instead of throwing exceptions
fun authenticate(credentials: Credentials): Outcome<AuthResult, AccountError> {
    return try {
        val result = apiClient.authenticate(credentials)
        Outcome.Success(result)
    } catch (e: HttpException) {
        val error = when (e.code()) {
            401 -> AccountError.AuthenticationFailed("Invalid credentials")
            else -> AccountError.NetworkError(e)
        }
        logger.error(e) { "Authentication failed: ${error::class.simpleName}" }
        Outcome.Failure(error)
    } catch (e: Exception) {
        logger.error(e) { "Authentication failed with unexpected error" }
        Outcome.Failure(AccountError.NetworkError(e))
    }
}

Handle errors in Use Cases by propagating the Outcome:

kotlin

class LoginUseCase(
    private val accountRepository: AccountRepository,
    private val credentialValidator: CredentialValidator,
) {
    fun execute(credentials: Credentials): Outcome<AuthResult, AccountError> {
        // Validate input first
        val validationResult = credentialValidator.validate(credentials)
        if (validationResult is ValidationResult.Failure) {
            return Outcome.Failure(
                AccountError.ValidationError(
                    field = validationResult.field,
                    message = validationResult.message
                )
            )
        }

        // Proceed with authentication
        return accountRepository.authenticate(credentials)
    }
}

Handle outcomes in ViewModels and transform them into UI state:

kotlin

viewModelScope.launch {
    val outcome = loginUseCase.execute(credentials)

    when (outcome) {
        is Outcome.Success -> {
            _uiState.update { it.copy(isLoggedIn = true) }
        }
        is Outcome.Failure -> {
            val errorMessage = when (val error = outcome.error) {
                is AccountError.AuthenticationFailed -> 
                    stringProvider.getString(R.string.error_authentication_failed, error.reason)
                is AccountError.NetworkError -> 
                    stringProvider.getString(R.string.error_network, error.exception.message)
                is AccountError.ValidationError -> 
                    stringProvider.getString(R.string.error_validation, error.field, error.message)
            }
            _uiState.update { it.copy(error = errorMessage) }
        }
    }
}

Always log errors for debugging purposes:

kotlin

// Logging is integrated into the Outcome pattern
fun fetchMessages(): Outcome<List<Message>, MessageError> {
    return try {
        val messages = messageService.fetchMessages()
        logger.info { "Successfully fetched ${messages.size} messages" }
        Outcome.Success(messages)
    } catch (e: Exception) {
        logger.error(e) { "Failed to fetch messages" }
        Outcome.Failure(MessageError.FetchFailed(e))
    }
}

Compose multiple operations that return Outcomes:

kotlin

fun synchronizeAccount(): Outcome<SyncResult, SyncError> {
    // First operation
    val messagesOutcome = fetchMessages()
    if (messagesOutcome is Outcome.Failure) {
        return Outcome.Failure(SyncError.MessageSyncFailed(messagesOutcome.error))
    }

    // Second operation using the result of the first
    val messages = messagesOutcome.getOrNull()!!
    val folderOutcome = updateFolders(messages)
    if (folderOutcome is Outcome.Failure) {
        return Outcome.Failure(SyncError.FolderUpdateFailed(folderOutcome.error))
    }

    // Return success with combined results
    return Outcome.Success(
        SyncResult(
            messageCount = messages.size,
            folderCount = folderOutcome.getOrNull()!!.size
        )
    )
}

📝 Logging

The application uses a structured logging system with a well-defined API:

📊 Logging Architecture:
- Core logging API (core/logging/api) defines interfaces like Logger and LogSink
- Multiple implementations (composite, console) allow for flexible logging targets
- Composite implementation enables logging to multiple sinks simultaneously
🔄 Logger vs. Sink:
- Logger: The front-facing interface that application code interacts with to create log entries
  - Provides methods for different log levels (verbose, debug, info, warn, error)
  - Handles the creation of log events with appropriate metadata (timestamp, tag, etc.)
  - Example: DefaultLogger implements the Logger interface and delegates to a LogSink
- LogSink: The back-end component that receives log events and determines how to process them
  - Defines where and how log messages are actually stored or displayed
  - Filters log events based on configured log levels
  - Can be implemented in various ways (console output, file storage, remote logging service)
  - Multiple sinks can be used simultaneously via composite pattern
📋 Log Levels:
- VERBOSE: Most detailed log level for debugging
- DEBUG: Detailed information for diagnosing problems
- INFO: General information about application flow
- WARN: Potential issues that don't affect functionality
- ERROR: Issues that affect functionality but don't crash the application

🛠️ How to Implement Logging

When adding logging to your code:

Inject a Logger into your class:

kotlin

class AccountRepository(
    private val apiClient: ApiClient,
    private val logger: Logger,
) {
    // Repository implementation
}

Choose the appropriate log level based on the importance of the information:
- Use verbose for detailed debugging information (only visible in debug builds)
- Use debug for general debugging information
- Use info for important events that should be visible in production
- Use warn for potential issues that don't affect functionality
- Use error for issues that affect functionality

Use lambda syntax to avoid string concatenation when logging isn't needed:

kotlin

// Good - string is only created if this log level is enabled
logger.debug { "Processing message with ID: $messageId" }

// Avoid - string is always created even if debug logging is disabled
logger.debug("Processing message with ID: " + messageId)

Include relevant context in log messages:

kotlin

logger.info { "Syncing account: ${account.email}, folders: ${folders.size}" }

Log exceptions with the appropriate level and context:

kotlin

try {
    apiClient.fetchMessages()
} catch (e: Exception) {
    logger.error(e) { "Failed to fetch messages for account: ${account.email}" }
    throw MessageSyncError.FetchFailed(e)
}

Use tags for better filtering when needed:

kotlin

private val logTag = LogTag("AccountSync")

fun syncAccount() {
    logger.info(logTag) { "Starting account sync for: ${account.email}" }
}

🔒 Security

Security is a critical aspect of an email client. The application implements:

🔐 Data Encryption:
- End-to-end encryption using OpenPGP (via the legacy/crypto-openpgp module)
- Classes like EncryptionDetector and OpenPgpEncryptionExtractor handle encrypted emails
- Local storage encryption for sensitive data like account credentials
🔑 Authentication:
- Support for various authentication types (OAuth, password, client certificate)
- Secure token storage and management
- Authentication error handling and recovery
🛡️ Network Security:
- TLS for all network connections with certificate validation
- Certificate pinning for critical connections
- Protection against MITM attacks

[!NOTE] This section is a work in progress. The security architecture is being developed and will be documented in detail as it evolves.

🛠️ How to Implement Security

When implementing security features in your code:

Never store sensitive data in plain text:

kotlin

// Bad - storing password in plain text
sharedPreferences.putString("password", password)

// Good - use the secure credential storage
val credentialStorage = get<CredentialStorage>()
credentialStorage.storeCredentials(accountUuid, credentials)

Use encryption for sensitive data:

kotlin

// For data that needs to be stored encrypted
val encryptionManager = get<EncryptionManager>()
val encryptedData = encryptionManager.encrypt(sensitiveData)
database.storeEncryptedData(encryptedData)

Validate user input to prevent injection attacks:

kotlin

// Validate input before using it
if (!InputValidator.isValidEmailAddress(userInput)) {
    throw ValidationError("Invalid email address")
}

Use secure network connections:

kotlin

// The networking modules enforce TLS by default
// Make sure to use the provided clients rather than creating your own
val networkClient = get<NetworkClient>()

🧪 Testing Strategy

The architecture supports comprehensive testing:

🔬 Unit Tests: Test individual components in isolation
🔌 Integration Tests: Test interactions between components
📱 UI Tests: Test the UI behavior and user flows

See the Testing guide document for more details on how to write and run tests for the application.

🔙 Legacy Integration

The application includes legacy code that is gradually being migrated to the new architecture:

📦 Legacy Modules: Contain code from the original K-9 Mail application
🔄 Migration Strategy: Gradual migration to the new architecture
🔌 Integration Points: Clear interfaces between legacy and new code

For more details on the legacy integration, see the Legacy Integration document.

🔄 User Flows

The User Flows provides visual representations of typical user flows through the application, helping to understand how different components interact.