refactor app list tag-filter validation

(cherry picked from commit 60ef7488f49db9b56e2f55323066cc8ea8ba2c55)

Author: mayank-devtron

api/restHandler/app/appList/AppListingRestHandler.go

@@ -56,6 +56,7 @@ import (
 	"github.com/gorilla/mux"
 	"go.opentelemetry.io/otel"
 	"go.uber.org/zap"
+	"gopkg.in/go-playground/validator.v9"
 	"net/http"
 	"strconv"
 	"time"
@@ -98,6 +99,7 @@ type AppListingRestHandlerImpl struct {
 	k8sApplicationService       k8sApplication.K8sApplicationService
 	deploymentConfigService     common2.DeploymentConfigService
 	resourceTreeService         resourceTree.Service
+	validator                   *validator.Validate
 }
 
 type AppStatus struct {
@@ -141,6 +143,7 @@ func NewAppListingRestHandlerImpl(appListingService app.AppListingService,
 		k8sApplicationService:       k8sApplicationService,
 		deploymentConfigService:     deploymentConfigService,
 		resourceTreeService:         resourceTreeService,
+		validator:                   validator.New(),
 	}
 	return appListingHandler
 }
@@ -276,6 +279,25 @@ func (handler AppListingRestHandlerImpl) FetchJobOverviewCiPipelines(w http.Resp
 	common.WriteJsonResp(w, err, jobCi, http.StatusOK)
 }
 
+// validateAndNormalizeFetchAppListingRequest applies request-level validation first,
+// then tag-filter business validation, and finally normalization.
+func (handler AppListingRestHandlerImpl) validateAndNormalizeFetchAppListingRequest(w http.ResponseWriter, r *http.Request, fetchAppListingRequest *app.FetchAppListingRequest) bool {
+	err := handler.validator.Struct(*fetchAppListingRequest)
+	if err != nil {
+		handler.logger.Errorw("validation err, FetchAppsByEnvironment", "err", err, "payload", fetchAppListingRequest)
+		common.HandleValidationErrors(w, r, err)
+		return false
+	}
+	err = handler.appListingService.ValidateTagFilters(fetchAppListingRequest.TagFilters)
+	if err != nil {
+		handler.logger.Errorw("request err, ValidateTagFilters", "err", err, "payload", fetchAppListingRequest.TagFilters)
+		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+		return false
+	}
+	fetchAppListingRequest.TagFilters = handler.appListingService.NormalizeTagFilters(fetchAppListingRequest.TagFilters)
+	return true
+}
+
 func (handler AppListingRestHandlerImpl) FetchAppsByEnvironmentV2(w http.ResponseWriter, r *http.Request) {
 	//Allow CORS here By * or specific origin
 	util3.SetupCorsOriginHeader(&w)
@@ -331,13 +353,9 @@ func (handler AppListingRestHandlerImpl) FetchAppsByEnvironmentV2(w http.Respons
 		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
 		return
 	}
-	normalizedTagFilters, err := app.NormalizeAndValidateTagFilters(fetchAppListingRequest.TagFilters)
-	if err != nil {
-		handler.logger.Errorw("request err, ValidateTagFilters", "err", err, "payload", fetchAppListingRequest.TagFilters)
-		common.WriteJsonResp(w, err, nil, http.StatusBadRequest)
+	if !handler.validateAndNormalizeFetchAppListingRequest(w, r, &fetchAppListingRequest) {
 		return
 	}
-	fetchAppListingRequest.TagFilters = normalizedTagFilters
 	newCtx, span = otel.Tracer("fetchAppListingRequest").Start(newCtx, "GetNamespaceClusterMapping")
 	_, _, err = fetchAppListingRequest.GetNamespaceClusterMapping()
 	span.End()

internal/sql/repository/helper/AppListingRepositoryQueryBuilder.go

@@ -68,8 +68,8 @@ type TagFilterOperator string
 // value is required for EQUALS/DOES_NOT_EQUAL/CONTAINS/DOES_NOT_CONTAIN.
 // value must be absent for EXISTS/DOES_NOT_EXIST.
 type TagFilter struct {
-	Key      string            `json:"key"`
-	Operator TagFilterOperator `json:"operator"`
+	Key      string            `json:"key" validate:"required"`
+	Operator TagFilterOperator `json:"operator" validate:"required"`
 	Value    *string           `json:"value"`
 }
 

pkg/app/AppListingService.go

@@ -70,6 +70,8 @@ type AppListingService interface {
 	ISLastReleaseStopType(appId, envId int) (bool, error)
 	ISLastReleaseStopTypeV2(pipelineIds []int) (map[int]bool, error)
 	GetReleaseCount(appId, envId int) (int, error)
+	ValidateTagFilters(tagFilters []helper.TagFilter) error
+	NormalizeTagFilters(tagFilters []helper.TagFilter) []helper.TagFilter
 
 	FetchAppsByEnvironmentV2(fetchAppListingRequest FetchAppListingRequest, w http.ResponseWriter, r *http.Request, token string) ([]*AppView.AppEnvironmentContainer, int, error)
 	FetchOverviewAppsByEnvironment(envId, limit, offset int) (*OverviewAppsByEnvironmentBean, error)
@@ -85,7 +87,7 @@ type FetchAppListingRequest struct {
 	Environments      []int              `json:"environments"`
 	Statuses          []string           `json:"statuses"`
 	Teams             []int              `json:"teams"`
-	TagFilters        []helper.TagFilter `json:"tagFilters"`
+	TagFilters        []helper.TagFilter `json:"tagFilters" validate:"omitempty,dive"`
 	AppNameSearch     string             `json:"appNameSearch"`
 	SortOrder         helper.SortOrder   `json:"sortOrder"`
 	SortBy            helper.SortBy      `json:"sortBy"`
@@ -128,38 +130,53 @@ func (req FetchAppListingRequest) GetNamespaceClusterMapping() (namespaceCluster
 	return namespaceClusterPair, clusterIds, nil
 }
 
-// NormalizeAndValidateTagFilters validates each tag filter row and normalizes value handling.
+// ValidateTagFilters validates each tag filter row.
 // Rules:
 // 1) key must be present.
 // 2) operator must be one of the supported backend operators.
 // 3) for EXISTS/DOES_NOT_EXIST, value must not be sent.
 // 4) for EQUALS/DOES_NOT_EQUAL/CONTAINS/DOES_NOT_CONTAIN, value must be non-empty.
-func NormalizeAndValidateTagFilters(tagFilters []helper.TagFilter) ([]helper.TagFilter, error) {
-	if len(tagFilters) == 0 {
-		return tagFilters, nil
-	}
-	normalizedFilters := make([]helper.TagFilter, 0, len(tagFilters))
+func ValidateTagFilters(tagFilters []helper.TagFilter) error {
 	for index, tagFilter := range tagFilters {
-		tagFilter.Key = strings.TrimSpace(tagFilter.Key)
-		if len(tagFilter.Key) == 0 {
-			return nil, fmt.Errorf("tagFilters[%d].key is required", index)
+		if len(strings.TrimSpace(tagFilter.Key)) == 0 {
+			return fmt.Errorf("tagFilters[%d].key is required", index)
 		}
 		if !tagFilter.Operator.IsValid() {
-			return nil, fmt.Errorf("tagFilters[%d].operator is invalid: %s", index, tagFilter.Operator)
+			return fmt.Errorf("tagFilters[%d].operator is invalid: %s", index, tagFilter.Operator)
 		}
 		switch tagFilter.Operator {
 		case helper.TagFilterOperatorExists, helper.TagFilterOperatorDoesNotExist:
 			if tagFilter.Value != nil {
-				return nil, fmt.Errorf("tagFilters[%d].value must be empty for operator %s", index, tagFilter.Operator)
+				return fmt.Errorf("tagFilters[%d].value must be empty for operator %s", index, tagFilter.Operator)
 			}
 		default:
 			if tagFilter.Value == nil || len(*tagFilter.Value) == 0 {
-				return nil, fmt.Errorf("tagFilters[%d].value is required for operator %s", index, tagFilter.Operator)
+				return fmt.Errorf("tagFilters[%d].value is required for operator %s", index, tagFilter.Operator)
 			}
 		}
+	}
+	return nil
+}
+
+// NormalizeTagFilters normalizes tag filter rows after validation.
+func NormalizeTagFilters(tagFilters []helper.TagFilter) []helper.TagFilter {
+	if len(tagFilters) == 0 {
+		return tagFilters
+	}
+	normalizedFilters := make([]helper.TagFilter, 0, len(tagFilters))
+	for _, tagFilter := range tagFilters {
+		tagFilter.Key = strings.TrimSpace(tagFilter.Key)
 		normalizedFilters = append(normalizedFilters, tagFilter)
 	}
-	return normalizedFilters, nil
+	return normalizedFilters
+}
+
+func (impl AppListingServiceImpl) ValidateTagFilters(tagFilters []helper.TagFilter) error {
+	return ValidateTagFilters(tagFilters)
+}
+
+func (impl AppListingServiceImpl) NormalizeTagFilters(tagFilters []helper.TagFilter) []helper.TagFilter {
+	return NormalizeTagFilters(tagFilters)
 }
 
 type AppListingServiceImpl struct {

pkg/app/AppListingService_tag_filter_test.go

@@ -11,75 +11,86 @@ func strPointer(value string) *string {
 	return &value
 }
 
-func TestNormalizeAndValidateTagFilters_EqualsRequiresValue(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_EqualsRequiresValue(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorEquals, Value: nil},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].value is required for operator EQUALS", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_EqualsRejectsEmptyString(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_EqualsRejectsEmptyString(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorEquals, Value: strPointer("")},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].value is required for operator EQUALS", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_ContainsRequiresValue(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_ContainsRequiresValue(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorContains, Value: nil},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].value is required for operator CONTAINS", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_EmptyKeyReturnsError(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_EmptyKeyReturnsError(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: " ", Operator: helper.TagFilterOperatorEquals, Value: strPointer("James")},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].key is required", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_InvalidOperatorReturnsError(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_InvalidOperatorReturnsError(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperator("INVALID"), Value: strPointer("James")},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].operator is invalid: INVALID", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_ExistsAllowsNilValueOnly(t *testing.T) {
-	normalizedFilters, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_ExistsAllowsNilValueOnly(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorExists, Value: nil},
 	})
 
 	require.NoError(t, err)
-	require.Len(t, normalizedFilters, 1)
-	require.Nil(t, normalizedFilters[0].Value)
 }
 
-func TestNormalizeAndValidateTagFilters_ExistsRejectsProvidedValue(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_ExistsRejectsProvidedValue(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorExists, Value: strPointer("James")},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].value must be empty for operator EXISTS", err.Error())
 }
 
-func TestNormalizeAndValidateTagFilters_DoesNotExistRejectsProvidedValue(t *testing.T) {
-	_, err := NormalizeAndValidateTagFilters([]helper.TagFilter{
+func TestValidateTagFilters_DoesNotExistRejectsProvidedValue(t *testing.T) {
+	err := ValidateTagFilters([]helper.TagFilter{
 		{Key: "owner", Operator: helper.TagFilterOperatorDoesNotExist, Value: strPointer("")},
 	})
 
 	require.Error(t, err)
 	require.Equal(t, "tagFilters[0].value must be empty for operator DOES_NOT_EXIST", err.Error())
 }
+
+func TestNormalizeTagFilters_TrimsKey(t *testing.T) {
+	filters := []helper.TagFilter{
+		{Key: " owner ", Operator: helper.TagFilterOperatorEquals, Value: strPointer("James")},
+	}
+
+	normalizedFilters := NormalizeTagFilters(filters)
+
+	require.Len(t, normalizedFilters, 1)
+	require.Equal(t, "owner", normalizedFilters[0].Key)
+	// Ensure input is not modified by normalization.
+	require.Equal(t, " owner ", filters[0].Key)
+}