Validate optimize requests

JustMarkDev · JustMarkDev · commit 4a8694f6b976 · 2026-06-14T02:19:27.000+02:00
diff --git a/src/app.js b/src/app.js
@@ -1,7 +1,7 @@
 // FICSIT Starting Position Optimizer
 // Web Dashboard Logic
 
-import { parseNodes, RESOURCES } from "./mapContracts.js";
+import { hasOptimizationObjective, nonZeroWeights, parseNodes, RESOURCES } from "./mapContracts.js";
 
 const LAND_MASK_SECTORS = 128;
 const LAND_MASK_BUFFER_CM = 22000;
@@ -143,6 +143,14 @@ async function runGlobalOptimization() {
   els.mapLoading.classList.add("active");
 
   try {
+    const weights = nonZeroWeights(config.weights);
+    if (!hasOptimizationObjective(config.weights)) {
+      els.mapLoading.innerHTML = `<span style="color: #ff3333; font-weight: bold; font-size: 1.1rem; margin-bottom: 12px;">OPTIMIZATION FAILED: Select at least one weighted resource.</span>
+        <span style="font-size: 0.8rem; color: var(--color-text-muted);">Enable a resource slider or apply a phase preset, then try again.</span>`;
+      els.mapLoading.classList.add("active");
+      return;
+    }
+
     // Build the request body
     const reqBody = {
       utility_func: config.utilityFunc,
@@ -152,7 +160,7 @@ async function runGlobalOptimization() {
       game_phase: config.gamePhase,
       sigma: config.sigma,
       ignore_spawns: config.ignoreSpawns,
-      weights: Object.fromEntries(Object.entries(config.weights).filter(([_, v]) => v !== 0)),
+      weights,
     };
 
     const apiRes = await fetch("/api/optimize", {
diff --git a/src/mapContracts.js b/src/mapContracts.js
@@ -45,6 +45,14 @@ export function parsePurityMultiplier(purity) {
   return 1.0;
 }
 
+export function nonZeroWeights(weights) {
+  return Object.fromEntries(Object.entries(weights).filter(([_, value]) => value !== 0));
+}
+
+export function hasOptimizationObjective(weights) {
+  return Object.keys(nonZeroWeights(weights)).length > 0;
+}
+
 // Parse Complete Map Data from Raw JSON format
 export function parseNodes(data) {
   const nodes = [];
diff --git a/src/mapContracts.test.js b/src/mapContracts.test.js
@@ -1,6 +1,12 @@
 import { describe, expect, test } from "bun:test";
 
-import { DEFAULT_PHASE_IDS, parseNodes, RESOURCES } from "./mapContracts.js";
+import {
+  DEFAULT_PHASE_IDS,
+  hasOptimizationObjective,
+  nonZeroWeights,
+  parseNodes,
+  RESOURCES,
+} from "./mapContracts.js";
 
 describe("map contracts", () => {
   test("resource IDs are unique", () => {
@@ -59,4 +65,10 @@ describe("map contracts", () => {
     });
     expect(nodes.waterwellIndices).toEqual([]);
   });
+
+  test("empty optimization objectives are detectable before API calls", () => {
+    expect(nonZeroWeights({ iron: 0, copper: 1 })).toEqual({ copper: 1 });
+    expect(hasOptimizationObjective({ iron: 0, copper: 0 })).toBe(false);
+    expect(hasOptimizationObjective({ iron: 0, copper: 1 })).toBe(true);
+  });
 });
diff --git a/src/server.rs b/src/server.rs
@@ -8,12 +8,12 @@
 use actix_cors::Cors;
 use actix_web::{App, HttpResponse, HttpServer, Responder, web};
 use serde::{Deserialize, Serialize};
-use std::collections::HashMap;
+use std::collections::{HashMap, HashSet};
 use std::sync::Arc;
 
 use crate::models::{
-    DEFAULT_SPAWNS, DistanceDecay, GamePhase, OptimizerConfig, PurityOverride, SearchStrategy,
-    UtilityFunction,
+    DEFAULT_SPAWNS, DistanceDecay, GamePhase, OptimizerConfig, PurityOverride, ResourceNode,
+    SearchStrategy, UtilityFunction,
 };
 use crate::optimizer;
 
@@ -114,6 +114,52 @@ fn apply_collectibles_weights(weights: &mut HashMap<String, f64>) {
     weights.insert("baconagaric".to_string(), 0.0);
 }
 
+fn validate_optimize_request(req: &OptimizeRequest, nodes: &[ResourceNode]) -> Result<(), String> {
+    if !req.sigma.is_finite() {
+        return Err("Invalid optimize request: sigma must be finite".to_string());
+    }
+
+    let mut meaningful_weights = Vec::new();
+    for (resource_id, weight) in &req.weights {
+        if !weight.is_finite() {
+            return Err("Invalid optimize request: weight must be finite".to_string());
+        }
+        if *weight != 0.0 {
+            meaningful_weights.push(resource_id.as_str());
+        }
+    }
+
+    if meaningful_weights.is_empty() {
+        return Err(
+            "Invalid optimize request: at least one resource weight is required".to_string(),
+        );
+    }
+
+    let mut known_resource_ids = nodes
+        .iter()
+        .map(|node| node.resource_type.as_str())
+        .collect::<HashSet<_>>();
+    known_resource_ids.insert("water");
+
+    for resource_id in &meaningful_weights {
+        if !known_resource_ids.contains(resource_id) {
+            return Err("Invalid optimize request: unknown resource id".to_string());
+        }
+    }
+
+    let resource_universe_size = nodes
+        .iter()
+        .map(|node| node.resource_type.as_str())
+        .chain(meaningful_weights)
+        .collect::<HashSet<_>>()
+        .len();
+    if resource_universe_size > 128 {
+        return Err("Invalid optimize request: too many resource types".to_string());
+    }
+
+    Ok(())
+}
+
 // ---------------------------------------------------------------------------
 // Phase preset builder (mirrors JS PRESETS)
 // ---------------------------------------------------------------------------
@@ -186,6 +232,10 @@ async fn post_optimize(
 ) -> impl Responder {
     let req = body.into_inner();
 
+    if let Err(message) = validate_optimize_request(&req, &state.nodes) {
+        return HttpResponse::BadRequest().body(message);
+    }
+
     // Build OptimizerConfig from request
     let mut config = OptimizerConfig {
         sigma: req.sigma.clamp(50.0, 1000.0),
@@ -266,6 +316,8 @@ pub async fn run_server(port: u16) -> std::io::Result<()> {
 #[cfg(test)]
 mod tests {
     use super::*;
+    use crate::models::Purity;
+    use actix_web::{App, http::StatusCode, test as actix_test};
 
     #[test]
     fn presets_include_collectibles_and_late_water_wells() {
@@ -339,4 +391,153 @@ mod tests {
             assert!(preset.ignore_spawns);
         }
     }
+
+    fn test_nodes() -> Vec<ResourceNode> {
+        vec![ResourceNode {
+            resource_type: "iron".to_string(),
+            purity: Purity::Normal,
+            x: 0.0,
+            y: 0.0,
+            z: 0.0,
+            obstructed: false,
+        }]
+    }
+
+    fn test_request(weights: &[(&str, f64)]) -> OptimizeRequest {
+        OptimizeRequest {
+            utility_func: "cobb_douglas".to_string(),
+            decay_func: "gaussian".to_string(),
+            purity_override: "default".to_string(),
+            strategy: "hybrid".to_string(),
+            game_phase: "phase1".to_string(),
+            sigma: 200.0,
+            ignore_spawns: false,
+            weights: weights
+                .iter()
+                .map(|(resource_id, weight)| (resource_id.to_string(), *weight))
+                .collect(),
+        }
+    }
+
+    #[test]
+    fn validation_rejects_empty_weights() {
+        let nodes = test_nodes();
+        let req = test_request(&[]);
+
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+    }
+
+    #[test]
+    fn validation_rejects_all_zero_weights() {
+        let nodes = test_nodes();
+        let req = test_request(&[("iron", 0.0), ("water", 0.0)]);
+
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+    }
+
+    #[test]
+    fn validation_rejects_unknown_resource_ids() {
+        let nodes = test_nodes();
+        let req = test_request(&[("unknown", 1.0)]);
+
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+    }
+
+    #[test]
+    fn validation_rejects_non_finite_values() {
+        let nodes = test_nodes();
+        let mut req = test_request(&[("iron", 1.0)]);
+        req.sigma = f64::INFINITY;
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+
+        let req = test_request(&[("iron", f64::NAN)]);
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+    }
+
+    #[test]
+    fn validation_accepts_known_resource_ids_and_water() {
+        let nodes = test_nodes();
+        let req = test_request(&[("iron", 1.0), ("water", 0.5)]);
+
+        assert!(validate_optimize_request(&req, &nodes).is_ok());
+    }
+
+    #[test]
+    fn validation_rejects_resource_universe_over_fixed_limit() {
+        let nodes = (0..129)
+            .map(|index| ResourceNode {
+                resource_type: format!("resource{index}"),
+                purity: Purity::Normal,
+                x: 0.0,
+                y: 0.0,
+                z: 0.0,
+                obstructed: false,
+            })
+            .collect::<Vec<_>>();
+        let req = test_request(&[("resource0", 1.0)]);
+
+        assert!(validate_optimize_request(&req, &nodes).is_err());
+    }
+
+    #[actix_web::test]
+    async fn invalid_optimize_request_returns_bad_request() {
+        let app_state = Arc::new(AppState {
+            nodes: test_nodes(),
+        });
+        let app = actix_test::init_service(
+            App::new()
+                .app_data(web::Data::new(app_state))
+                .route("/api/optimize", web::post().to(post_optimize)),
+        )
+        .await;
+
+        let request = actix_test::TestRequest::post()
+            .uri("/api/optimize")
+            .set_json(serde_json::json!({
+                "utility_func": "cobb_douglas",
+                "decay_func": "gaussian",
+                "purity_override": "default",
+                "strategy": "hybrid",
+                "game_phase": "phase1",
+                "sigma": 200.0,
+                "ignore_spawns": false,
+                "weights": {}
+            }))
+            .to_request();
+        let response = actix_test::call_service(&app, request).await;
+
+        assert_eq!(response.status(), StatusCode::BAD_REQUEST);
+    }
+
+    #[actix_web::test]
+    async fn valid_optimize_request_returns_ok() {
+        let app_state = Arc::new(AppState {
+            nodes: crate::data_loader::load_default_nodes(),
+        });
+        let app = actix_test::init_service(
+            App::new()
+                .app_data(web::Data::new(app_state))
+                .route("/api/optimize", web::post().to(post_optimize)),
+        )
+        .await;
+
+        let request = actix_test::TestRequest::post()
+            .uri("/api/optimize")
+            .set_json(serde_json::json!({
+                "utility_func": "cobb_douglas",
+                "decay_func": "gaussian",
+                "purity_override": "default",
+                "strategy": "hybrid",
+                "game_phase": "phase1",
+                "sigma": 200.0,
+                "ignore_spawns": false,
+                "weights": {
+                    "iron": 1.0
+                }
+            }))
+            .to_request();
+        let response = actix_test::call_service(&app, request).await;
+
+        assert_eq!(response.status(), StatusCode::OK);
+    }
 }
