feat(auth-admin): only update/delete delegation index of the types that are being indexed.

[magnearun]

What

When we save to index we send an array of delegations, some times of all types, sometimes of just one type, when the latter happens we are deleting all pre existing rows that are not of that type, since the function checks if the row is in the incoming array, if it was not in the index it is created, if it was in the index but also in the incoming array it is updated, if it is in the index but not in the incoming it is deleted. So when indexing only custom delegations we would be deleting all rows of other types since they will not be in the oncoming array.

Why

Have correct data in the index table

Screenshots / Gifs

Attach Screenshots / Gifs to help reviewers understand the scope of the pull request

Checklist:

• I have performed a self-review of my own code
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have added tests that prove my fix is effective or that my feature works
• Formatting passes locally with my changes
• I have rebased against main before asking for a review

Summary by CodeRabbit

• New Features

  • Introduced a new test case for indexing custom delegations with personal representatives.
  • Added a test suite to verify indexing of custom delegations without affecting existing ones.

• Bug Fixes

  • Enhanced filtering of delegation types during indexing for improved efficiency.

[coderabbitai]

Walkthrough

The pull request introduces enhancements to the delegation indexing functionality by adding a new test case for custom delegations with personal representatives, and a new test suite for indexing custom delegations without overriding existing ones. Additionally, modifications to the DelegationsIndexService class improve the filtering of delegation types during the indexing process. These changes ensure that the indexing logic is more efficient and that the tests accurately validate the expected behavior of the delegation system.

Changes

File	Change Summary
apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index-test-cases.ts	Added new test case customAndPersonalRepresentative to validate indexing of custom and personal representative delegations.
apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index.service.spec.ts	Introduced new test suite indexCustomDelegationWithExisitingDelegations to verify indexing of custom delegations without overriding existing ones.
libs/auth-api-lib/src/lib/delegations/delegations-index.service.ts	Modified saveToIndex method to create a unique set of delegation types for better filtering during indexing.

Possibly related PRs

• feat(delegations): Verifu usage of ASDT instead of PRSP #15060: Changes to delegation types and introduction of ApiScopeDelegationType, relating to personal representatives.
• feat(ids-api): index delegations when IDS gets delegations #15079: Adds functionality for indexing delegations, relevant to the new test cases.
• feat(ids-api): Add legal representative delegation type and return in delegation list. #15837: Introduces test cases for legal representatives, aligning with personal representatives in the main PR.
• feat(auth-admin): General mandate delegation type #16005: Introduces a new delegation type, potentially related to handling changes in the main PR.
• feat(auth-api): Filter delegation indexing by provider #16141: Modifies the delegation indexing service, relevant to the indexing tests.
• fix(auth-api): Add audit logs to index with alsoLog set to true for server logs #16203: Enhances the delegation indexing controller, relating to the tested functionality.
• feat(auth-admin): Delegation-admin webhook auditlog #16335: Implements audit logs for delegation actions, relevant to the overall context of delegation management.
• feat(auth-admin): Check if delegation already exists. #16420: Checks for existing delegations before creation, relating to validation in the new test case.

Suggested labels

automerge, high priority

Suggested reviewers

• Herdismaria
• GunnlaugurG

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[datadog-island-is]

Datadog Report

All test runs fbc4926 🔗

✅ 13 Total Test Services: 0 Failed, 13 Passed
🔻 Test Sessions change in coverage: 2 decreased, 22 no change

Test Services

This report shows up to 10 services

Service Name	Failed	Known Flaky	New Flaky	Passed	Skipped	Total Time	Code Coverage Change	Test Service View
api	0	0	0	4	0	2.29s	1 no change	Link
api-domains-auth-admin	0	0	0	18	0	9.83s	1 no change	Link
application-system-api	0	0	0	120	2	3m 21.19s	1 no change	Link
application-template-api-modules	0	0	0	123	0	2m 3.51s	1 no change	Link
auth-api-lib	0	0	0	20	0	28.55s	1 no change	Link
services-auth-admin-api	0	0	0	130	0	3m 8.85s	1 no change	Link
services-auth-delegation-api	0	0	0	262	0	2m 45.87s	1 no change	Link
services-auth-ids-api	0	0	0	152	0	1m 0.46s	1 decreased (-0.01%)	Link
services-auth-personal-representative	0	0	0	59	0	1m 18.35s	1 no change	Link
services-auth-personal-representative-public	0	0	0	10	0	28.17s	1 decreased (-0.05%)	Link

🔻 Code Coverage Decreases vs Default Branch (2)

• services-auth-personal-representative-public - jest 41% (-0.05%) - Details
• services-auth-ids-api - jest 45.33% (-0.01%) - Details

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 36.60%. Comparing base (aaebdbf) to head (a517634).
Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #16627      +/-   ##
==========================================
+ Coverage   36.53%   36.60%   +0.07%     
==========================================
  Files        6890     6877      -13     
  Lines      143641   142995     -646     
  Branches    40926    40715     -211     
==========================================
- Hits        52482    52347     -135     
+ Misses      91159    90648     -511     

Flag	Coverage Δ
api	3.37% <ø> (ø)
api-domains-auth-admin	48.48% <ø> (ø)
application-system-api	41.12% <ø> (ø)
application-template-api-modules	27.68% <ø> (+<0.01%)	⬆️
services-auth-admin-api	52.47% <0.00%> (+0.02%)	⬆️
services-auth-delegation-api	58.20% <100.00%> (+<0.01%)	⬆️
services-auth-ids-api	52.08% <0.00%> (-0.02%)	⬇️
services-auth-personal-representative	45.57% <0.00%> (-0.01%)	⬇️
services-auth-personal-representative-public	41.65% <0.00%> (-0.13%)	⬇️
services-auth-public-api	49.57% <0.00%> (-0.01%)	⬇️
services-user-notification	46.84% <ø> (ø)
services-user-profile	61.76% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines	Coverage Δ
...st/delegation-index/delegation-index-test-cases.ts	100.00% <ø> (ø)
...b/src/lib/delegations/delegations-index.service.ts	87.34% <100.00%> (+0.42%)	⬆️

... and 38 files with indirect coverage changes

---

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update aaebdbf...a517634. Read the comment docs.

[coderabbitai]

Actionable comments posted: 1

🧹 Outside diff range and nitpick comments (4)

apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index-test-cases.ts (1)

52-76: LGTM! Well-structured test case for combined delegation types.

The new test case effectively validates the coexistence of custom delegations and personal representatives. The implementation:

• Correctly configures the client with both delegation type supports
• Properly structures the test data with both delegation types
• Clearly defines the expected outcomes

Consider adding a brief comment above the test case to document its purpose:

// Validates that custom delegations can coexist with personal representative
// delegations without interfering with each other
customAndPersonalRepresentative: new TestCase(
  // ... rest of the implementation
),

apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index.service.spec.ts (2)

509-509: Fix typo in describe block name

The describe block name contains a typo: "Exisiting" should be "Existing".

-  describe('indexCustomDelegationWithExisitingDelegations', () => {
+  describe('indexCustomDelegationWithExistingDelegations', () => {

---

516-535: LGTM! Consider adding negative test case

The test case effectively verifies that indexing custom delegations preserves existing representative delegations, which directly addresses the PR objective. The test structure follows NestJS testing best practices with clear arrange-act-assert patterns.

Consider adding a negative test case to verify the previous behavior where delegations were being overridden, to ensure the fix is working as intended.

Example negative test structure:

it('should not delete existing delegations when indexing custom delegations', async () => {
  const nationalId = user.nationalId;
  
  // Arrange - Index representative delegations first
  await delegationIndexService.indexRepresentativeDelegations(nationalId, user);
  const delegationsBeforeCustom = await delegationIndexModel.findAll({
    where: { toNationalId: nationalId },
  });
  
  // Act - Index custom delegations
  await delegationIndexService.indexCustomDelegations(nationalId, user);
  
  // Assert - Verify representative delegations still exist
  const delegationsAfter = await delegationIndexModel.findAll({
    where: { 
      toNationalId: nationalId,
      type: AuthDelegationType.PersonalRepresentative 
    },
  });
  expect(delegationsAfter.length).toEqual(delegationsBeforeCustom.length);
});

libs/auth-api-lib/src/lib/delegations/delegations-index.service.ts (1)

Line range hint 432-436: Replace console.error with injected logger.

The error handling currently uses console.error, but the service has a logger injected through the constructor. For consistency and better error tracking, consider using the injected logger.

     indexingPromises.forEach((p) => {
       if (p.status === 'rejected') {
-        console.error(p.reason)
+        this.logger.error('Failed to save delegations to index', {
+          error: p.reason,
+          context: 'DelegationsIndexService.saveToIndex'
+        })
       }
     })

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 0947e07 and cd7d144.

📒 Files selected for processing (3)

• apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index-test-cases.ts (1 hunks)
• apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index.service.spec.ts (1 hunks)
• libs/auth-api-lib/src/lib/delegations/delegations-index.service.ts (1 hunks)

🧰 Additional context used

📓 Path-based instructions (3)

apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index-test-cases.ts (2)

Pattern apps/services/**/*: "Confirm that the code adheres to the following:

• NestJS architecture, including modules, services, and controllers.
• Dependency injection patterns and service encapsulation.
• Integration and unit testing coverage and practices."

---

Pattern apps/**/*: "Confirm that the code adheres to the following:

• NextJS best practices, including file structure, API routes, and static generation methods.
• Efficient state management and server-side rendering techniques.
• Optimal use of TypeScript for component and utility type safety."

apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index.service.spec.ts (2)

Pattern apps/services/**/*: "Confirm that the code adheres to the following:

• NestJS architecture, including modules, services, and controllers.
• Dependency injection patterns and service encapsulation.
• Integration and unit testing coverage and practices."

---

Pattern apps/**/*: "Confirm that the code adheres to the following:

• NextJS best practices, including file structure, API routes, and static generation methods.
• Efficient state management and server-side rendering techniques.
• Optimal use of TypeScript for component and utility type safety."

libs/auth-api-lib/src/lib/delegations/delegations-index.service.ts (1)

Pattern libs/**/*: "Confirm that the code adheres to the following:

• Reusability of components and hooks across different NextJS apps.
• TypeScript usage for defining props and exporting types.
• Effective tree-shaking and bundling practices."

🔇 Additional comments (2)

apps/services/auth/delegation-api/src/app/delegations/test/delegation-index/delegation-index-test-cases.ts (1)

Line range hint 1-76: Verify test coverage for delegation scenarios.

Let's ensure we have comprehensive test coverage for all delegation scenarios.

✅ Verification successful

Test coverage for delegation scenarios is comprehensive and well-structured

The test file under review is part of a comprehensive test suite that covers all delegation types and scenarios:

• Test cases cover all supported delegation types: Custom, LegalGuardian, ProcurationHolder, PersonalRepresentative, LegalRepresentative, GeneralMandate
• Age-based scenarios are tested with different child ages (under 16, exactly 16, 17-18, exactly 18)
• Multiple test files validate delegation functionality across different APIs and contexts:
  • Delegation indexing and filtering
  • Access control (incoming/outgoing)
  • Authentication and authorization
  • Client-specific delegation rules
  • Admin operations

The test cases in this file specifically focus on delegation indexing with proper test data setup and expected outcomes for each scenario.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for related test files and coverage

# Look for related test files
echo "Looking for related test files..."
fd -e ts -e spec.ts "delegation.*test|spec" "apps/services/auth"

# Check for additional delegation types in the codebase
echo -e "\nChecking for all delegation types..."
rg "AuthDelegationType\." "apps/services/auth"

Length of output: 47021

libs/auth-api-lib/src/lib/delegations/delegations-index.service.ts (1)

394-401: LGTM! The changes effectively fix the delegation indexing issue.

The introduction of the types variable and its usage in the where clause ensures that only records of the same types as the incoming delegations are considered during the indexing process. This prevents the unintended deletion of other delegation types when indexing a specific type.

However, let's verify that this change doesn't have any unintended side effects:

[GunnlaugurG]

LGTM 🚀