feat(web): fall back to raw upload when MP4 playback fails

[richiemcilroy]

Improves shared link playback when the processed MP4 is unavailable: playlist API resolves raw preview keys more reliably, the player prefers MP4 then retries with raw once on error. Adds unit coverage for source resolution and fallback behaviour

Greptile Summary

This PR improves shared-link playback reliability by adding a single-shot MP4→raw fallback at the player level and making the raw-preview playlist endpoint more resilient when the rawFileKey DB column is unpopulated.

Key changes:

• playback-source.ts: Adds a preferredSource option to resolvePlaybackSource (default "mp4"); when set to "raw" the MP4 probe is skipped entirely. Extracts the raw-resolution logic into a shared inner resolveRaw closure. Exports shouldFallbackToRawPlaybackSource as a pure predicate.
• CapVideoPlayer.tsx: Adds preferredSource / hasTriedRawFallback state. On a video error event, if the current source is MP4 and a raw fallback URL exists and hasn't been tried yet, the player switches preferredSource to "raw" — changing the React Query key and triggering a fresh resolution. Both states reset correctly when videoSrc / rawFallbackSrc change.
• playlist/route.ts: Extracts resolveRawPreviewKey, which first checks videoUploads.rawFileKey in the DB, then for webMP4 sources probes two candidate S3 paths in parallel.
• Tests: New unit tests cover the forced-raw resolution path and all four branches of shouldFallbackToRawPlaybackSource.

Confidence Score: 5/5

Safe to merge — fallback logic is correct, the single-shot guard prevents retry loops, and all edge cases are handled.

No P0 or P1 issues found. The one finding (redundant getBucketAccess call in the happy path) is a minor P2 style/performance observation that does not affect correctness. The React Query key design, state-reset wiring, Effect-based route refactor, and new unit tests all look solid.

apps/web/app/api/playlist/route.ts — redundant S3 bucket access acquisition in resolveRawPreviewKey.

Important Files Changed

Filename	Overview
apps/web/app/api/playlist/route.ts	Extracts resolveRawPreviewKey helper that probes candidate S3 keys when rawFileKey is absent from the DB; minor redundancy: getBucketAccess is called twice for every raw-preview request (once in getPlaylistResponse, once inside the new helper).
apps/web/app/s/[videoId]/_components/playback-source.ts	Adds preferredSource parameter and shouldFallbackToRawPlaybackSource helper; refactors raw-resolution into a shared inner resolveRaw closure — logic is correct and well-encapsulated.
apps/web/app/s/[videoId]/_components/CapVideoPlayer.tsx	Adds preferredSource / hasTriedRawFallback state and a single-shot fallback in the video error handler; React Query key correctly includes preferredSource so the re-fetch is isolated; state resets on videoSrc/rawFallbackSrc changes are properly wired.
apps/web/tests/unit/playback-source.test.ts	New tests cover the forced-raw path and all four branches of shouldFallbackToRawPlaybackSource; coverage is adequate for the new logic surface.

Sequence Diagram

sequenceDiagram
    participant Player as CapVideoPlayer
    participant Query as React Query
    participant Resolver as resolvePlaybackSource
    participant Route as playlist API
    participant Store as S3 Storage

    Player->>Query: queryKey includes preferredSource=mp4
    Query->>Resolver: preferredSource=mp4
    Resolver->>Route: probe videoType=mp4
    Route-->>Resolver: 206 signed URL
    Resolver-->>Query: type=mp4 source resolved
    Query-->>Player: resolvedSrc.data set
    Player->>Player: video element loads MP4

    Player->>Player: video error event fires
    Player->>Player: shouldFallbackToRaw returns true
    Player->>Player: setPreferredSource=raw, setHasTriedRawFallback=true

    Player->>Query: queryKey now includes preferredSource=raw
    Query->>Resolver: preferredSource=raw
    Resolver->>Route: probe videoType=raw-preview
    Route->>Store: DB lookup for rawFileKey
    alt rawFileKey in DB
        Store-->>Route: key found
    else webMP4 source type
        Route->>Store: headObject candidate paths
        Store-->>Route: matching key found
    end
    Route-->>Resolver: 206 signed URL
    Resolver-->>Query: type=raw source resolved
    Query-->>Player: resolvedSrc.data set
    Player->>Player: video element loads raw file

Loading

Prompt To Fix All With AI

This is a comment left during a code review.
Path: apps/web/app/api/playlist/route.ts
Line: 86-121

Comment:
**Redundant `getBucketAccess` call on the happy path**

`resolveRawPreviewKey` unconditionally acquires an S3 client via `S3Buckets.getBucketAccess(video.bucketId)` at the very start of its generator, but when `uploadRecord.rawFileKey` is already set (the common case) that client is never used — the function returns the DB key immediately. Meanwhile `getPlaylistResponse` (the only caller) already holds its own `s3` from its own `getBucketAccess` call at line 128.

The S3 client inside `resolveRawPreviewKey` is only needed for the `headObject` probe in the candidate-key fallback branch (the `webMP4` path). Moving `yield* S3Buckets.getBucketAccess(video.bucketId)` to just before the `candidateKeys` block — after the early returns for the DB hit and the non-`webMP4` guard — would skip the bucket lookup entirely for the common path.

How can I resolve this? If you propose a fix, please make it concise.

_{Reviews (1): Last reviewed commit: "feat(web): fall back to raw upload when ..." | Re-trigger Greptile}

Greptile also left 1 inline comment on this PR.

[paragon-review]

Paragon Summary

This pull request review analyzed 4 files and found no issues. The review examined code changes, potential bugs, security vulnerabilities, performance issues, and code quality concerns using automated analysis tools.

Paragon did not detect any problems in the current diff. Proceed with merge after your normal checks.

This PR improves shared-link video playback by preferring the processed MP4, then automatically falling back to the raw upload if the MP4 is unavailable or fails, so playback is more reliable when the optimized asset is missing. It also makes source resolution more robust and adds unit coverage for the fallback flow.

Key changes:

• Playlist API now resolves raw preview keys more reliably for shared-link playback.
• Video player prefers MP4, then retries with raw upload once if playback fails.
• Shared playback source resolution logic updated to support the fallback flow.
• Added unit tests for source resolution and MP4-to-raw fallback behavior.

Confidence score: 5/5

• This PR has low risk with no critical or high-priority issues identified
• Score reflects clean code review with only minor suggestions or no issues found
• Code quality checks passed - safe to proceed with merge

4 files reviewed, 0 comments

Dashboard

[richiemcilroy]

@greptileai please review the PR :)

[tembo]

When upload processing completes, consider resetting preferredSource back to "mp4" (and hasTriedRawFallback to false) before invalidating, so a raw fallback switches back to the optimized MP4 once it becomes available.

[tembo]

preferredSource === "raw" currently short-circuits and returns null if the raw probe fails, even if MP4 would resolve. If preferredSource is meant as a preference (not exclusive), consider trying raw first then falling back to the MP4 probe.

[tembo]

When processing finishes (or upload completes), this can stay stuck preferring raw if we previously fell back. You probably want to reset to MP4 + invalidate both cache entries so we re-probe the processed URL.

Suggested change

	void queryClient.invalidateQueries({
	setHasError(false);
	setPreferredSource("mp4");
	setHasTriedRawFallback(false);
	void queryClient.invalidateQueries({
	queryKey: ["resolvedSrc", videoSrc, rawFallbackSrc, enableCrossOrigin],
	});

[tembo]

If preferredSource is "raw" but the raw preview probe returns null (404/unplayable), we currently bail out without ever trying the MP4 probe. That can turn a transient raw-preview issue into a hard playback failure even when MP4 is available.

Suggested change

	if (preferredSource === "raw") {
	if (preferredSource === "raw") {
	const raw = await resolveRaw();
	if (raw) {
	return raw;
	}
	}

[tembo]

getBucketAccess happens before we know whether we even need S3 (when rawFileKey is already in DB). Small perf/readability win to defer it until after the DB check.

Suggested change

	const [s3] = yield* S3Buckets.getBucketAccess(video.bucketId);
	const db = yield* Database;
	const [uploadRecord] = yield* db.use((db) =>
	db
	.select({ rawFileKey: Db.videoUploads.rawFileKey })
	.from(Db.videoUploads)
	.where(eq(Db.videoUploads.videoId, video.id)),
	);
	if (uploadRecord?.rawFileKey) {
	return uploadRecord.rawFileKey;
	}
	if (video.source.type !== "webMP4") {
	return yield* Effect.fail(new HttpApiError.NotFound());
	}
	const [s3] = yield* S3Buckets.getBucketAccess(video.bucketId);

Also worth double-checking: headObject(...).pipe(Effect.option) will treat any S3 failure (timeouts/credentials/etc) as “missing” and return a 404 here. If the intent is only to ignore “not found”, it may be better to only swallow that specific error and let other S3 errors bubble to the existing 500 mapping.

[tembo]

Once preferredSource flips to "raw", this invalidation only targets that cache entry. If the intent is to retry MP4 after processing completes, consider resetting the preference here and invalidating by the base key prefix so both variants get cleared.

Suggested change

	void queryClient.invalidateQueries({
	queryKey: ["resolvedSrc", videoSrc, rawFallbackSrc, enableCrossOrigin],
	queryKey: [
	"resolvedSrc",
	videoSrc,
	rawFallbackSrc,
	enableCrossOrigin,
	preferredSource,
	],
	});
	setPreferredSource("mp4");
	setHasTriedRawFallback(false);
	void queryClient.invalidateQueries({
	queryKey: ["resolvedSrc", videoSrc, rawFallbackSrc, enableCrossOrigin],
	});

[greptile-apps]

Redundant getBucketAccess call on the happy path

resolveRawPreviewKey unconditionally acquires an S3 client via S3Buckets.getBucketAccess(video.bucketId) at the very start of its generator, but when uploadRecord.rawFileKey is already set (the common case) that client is never used — the function returns the DB key immediately. Meanwhile getPlaylistResponse (the only caller) already holds its own s3 from its own getBucketAccess call at line 128.

The S3 client inside resolveRawPreviewKey is only needed for the headObject probe in the candidate-key fallback branch (the webMP4 path). Moving yield* S3Buckets.getBucketAccess(video.bucketId) to just before the candidateKeys block — after the early returns for the DB hit and the non-webMP4 guard — would skip the bucket lookup entirely for the common path.

Prompt To Fix With AI

This is a comment left during a code review.
Path: apps/web/app/api/playlist/route.ts
Line: 86-121

Comment:
**Redundant `getBucketAccess` call on the happy path**

`resolveRawPreviewKey` unconditionally acquires an S3 client via `S3Buckets.getBucketAccess(video.bucketId)` at the very start of its generator, but when `uploadRecord.rawFileKey` is already set (the common case) that client is never used — the function returns the DB key immediately. Meanwhile `getPlaylistResponse` (the only caller) already holds its own `s3` from its own `getBucketAccess` call at line 128.

The S3 client inside `resolveRawPreviewKey` is only needed for the `headObject` probe in the candidate-key fallback branch (the `webMP4` path). Moving `yield* S3Buckets.getBucketAccess(video.bucketId)` to just before the `candidateKeys` block — after the early returns for the DB hit and the non-`webMP4` guard — would skip the bucket lookup entirely for the common path.

How can I resolve this? If you propose a fix, please make it concise.

[tembo]

Minor perf: resolveRawPreviewKey always calls getBucketAccess even when rawFileKey is present (common path). Moving it into the webMP4 probe branch avoids the extra bucket/client lookup.

Suggested change

	const [uploadRecord] = yield* db.use((db) =>
	const resolveRawPreviewKey = (video: Video.Video) =>
	Effect.gen(function* () {
	const db = yield* Database;
	const [uploadRecord] = yield* db.use((db) =>
	db
	.select({ rawFileKey: Db.videoUploads.rawFileKey })
	.from(Db.videoUploads)
	.where(eq(Db.videoUploads.videoId, video.id)),
	);
	if (uploadRecord?.rawFileKey) {
	return uploadRecord.rawFileKey;
	}
	if (video.source.type !== "webMP4") {
	return yield* Effect.fail(new HttpApiError.NotFound());
	}
	const [s3] = yield* S3Buckets.getBucketAccess(video.bucketId);
	const candidateKeys = [
	`${video.ownerId}/${video.id}/raw-upload.mp4`,
	`${video.ownerId}/${video.id}/raw-upload.webm`,
	];
	const headResults = yield* Effect.all(
	candidateKeys.map((key) => s3.headObject(key).pipe(Effect.option)),
	{ concurrency: "unbounded" },
	);
	for (let i = 0; i < candidateKeys.length; i++) {
	const rawHead = headResults[i];
	if (Option.isSome(rawHead) && (rawHead.value.ContentLength ?? 0) > 0) {
	return candidateKeys[i];
	}
	}
	return yield* Effect.fail(new HttpApiError.NotFound());
	});

[tembo]

Quick sanity check: this PR pins react/react-dom + @types/* in packages/ui (and changes ranges from ^ to exact). If that’s not intentional scope-wise, might be worth reverting to ranges or making the versioning strategy consistent across the workspace so UI doesn’t drift from apps.