fix(logs): split summary/detail contracts to make trace tab gate type-safe (#4431)

* fix(logs): split summary/detail contracts to make trace tab gate type-safe

The Trace tab was silently missing from the Log Details sidepanel because
list and detail rows shared one WorkflowLog type with executionData:
z.unknown(). The UI couldn't distinguish a summary row (no spans) from a
detail row (with spans), so the tab gate read undefined and hid itself.

Splits into WorkflowLogSummary (list) and WorkflowLogDetail (typed
executionData with optional traceSpans). Detail and by-execution routes
both write through to the same logKeys.detail(id) cache, eliminating the
two-key fragmentation that caused the merge memo workaround. List route
moves to cursor pagination on (sortValue, id) with proper NULLS LAST
handling and SQL-side sort across workflow + job execution tables.
Detail route now requires and asserts workspaceId. Deep-link path uses
useLogByExecutionId instead of auto-paginating the entire workspace.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* fix(logs): audit follow-ups — render side-effect, stats invalidation, enhanced spread order

- Move onActiveTabChange call from render into useEffect to avoid
  side-effects during render (StrictMode safety).
- Re-add logKeys.stats() invalidation to cancel/retry mutations so
  the dashboard reflects status flips immediately.
- Reorder enhanced: true after ...execData spread in detail and
  by-execution routes so the literal discriminator is never
  overwritten by stale execData.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* fix(logs): mirror SQL NULLS LAST in JS merge for cursor consistency

The in-memory merge of workflow + job pages negated the comparator
for DESC, which placed null sort values at the start. SQL orders
both ASC and DESC with NULLS LAST, so DESC pages emitted a cursor
{v: <last non-null>, id: ...} while null rows still satisfied the
cursor predicate (OR sort_expr IS NULL) on the next page —
producing duplicate null rows across pages on cost/duration sorts.

Handle nulls explicitly in the JS comparator so they always sort
last regardless of direction, matching the SQL ordering.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* fix(logs): final-audit follow-ups — stable tab callback, byExecution invalidation, optimistic detail patch, trace loading state

- Wrap LogDetails -> LogDetailsContent onActiveTabChange in useCallback
  so the child useEffect doesn't refire on every parent render.
- Add logKeys.byExecutionAll() to cancel + retry invalidation so the
  table-embedded sidebar picks up status changes immediately.
- Optimistic write-through to logKeys.detail in useCancelExecution so
  the open sidebar reflects 'cancelling' instantly; rolls back on error.
- Distinguish trace loading from trace-empty: when log.executionData is
  not yet fetched, render "Loading trace…" instead of the empty state.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* refactor(logs): migrate stores/components to contract types

Replace the legacy `WorkflowLog` / `LogsResponse` / `WorkflowData` /
`CostMetadata` / `ToolCallMetadata` shapes in
`stores/logs/filters/types.ts` with direct use of the contract types
`WorkflowLogSummary`, `WorkflowLogDetail`, and a new `WorkflowLogRow`
alias for surfaces that render either form. Removes the
`summaryToWorkflowLog` / `detailToWorkflowLog` bridge in the React
Query layer along with their double-cast annotations.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* refactor(logs): address PR review feedback

- Whitelist sort columns against logSortBy enum to prevent client crash
  when non-sortable headers (workflow, trigger) reach the contract parser.
- Extract fetchLogDetail helper shared by /api/logs/[id] and
  /api/logs/by-execution/[executionId] — collapses ~360 duplicated lines
  to a single source of truth keyed on lookup column.

* fix(logs): exclude job logs when level filter is workflow-only

When level=running or level=pending (workflow-only states involving
endedAt/pausedExecutions semantics), jobLevelConditions stayed empty
so no level constraint reached jobConditions — every job log in the
workspace leaked into the result. Skip the job side entirely when the
level filter has no job-applicable values (error/info).

* chore(logs): drop dead utils — mapToExecutionLog and friends

Remove ExecutionLog/RawLogResponse/ExecutionCost/LogWithExecutionData/
TraceSpan/BlockExecution interfaces and the mapToExecutionLog,
mapToExecutionLogAlt, extractOutput functions — all unreferenced after
the contract split. -212 lines.

* chore(logs): drop unused LOG_COLUMN_ORDER and LogColumnKey

* fix(logs): hydrate filters from URL synchronously on mount

The previous useEffect-based initializeFromURL caused useLogsList and
useDashboardStats to fire once with default store filters, then refetch
after the effect updated filters from the URL. Move the initial hydrate
into a useState lazy initializer so the first render already reads
URL-derived filters; the popstate handler keeps the existing effect for
back/forward navigation.

* chore(logs): trim verbose comments added during PR

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* fix(logs): guard navigation arrows when selected log is off-page

Deep-linked logs resolved via useLogByExecutionId may not be in the
current page list, leaving selectedLogIndex at -1. The hasNext prop
was evaluating -1 < logs.length - 1 (true for any non-empty list),
which enabled the next arrow and jumped to the first item on click.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

* fix(logs): sync active-tab callback before paint to keep keyboard guards aligned

Run the resolvedTab → onActiveTabChange propagation in useLayoutEffect
so the parent's activeTabRef updates synchronously before the next
paint. This closes the brief window where window keydown handlers
in the logs page would still see activeTabRef.current === 'trace'
and short-circuit arrow-key navigation immediately after switching
to a log without a Trace tab.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>

Author: waleedlatif1

apps/sim/app/api/logs/[id]/route.ts

@@ -1,183 +1,36 @@
-import { db } from '@sim/db'
-import {
-  jobExecutionLogs,
-  permissions,
-  workflow,
-  workflowDeploymentVersion,
-  workflowExecutionLogs,
-} from '@sim/db/schema'
 import { createLogger } from '@sim/logger'
-import { and, eq } from 'drizzle-orm'
 import { type NextRequest, NextResponse } from 'next/server'
-import { logIdParamsSchema } from '@/lib/api/contracts/logs'
+import { getLogDetailContract } from '@/lib/api/contracts/logs'
+import { parseRequest } from '@/lib/api/server'
 import { getSession } from '@/lib/auth'
-import { generateRequestId } from '@/lib/core/utils/request'
 import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
+import { fetchLogDetail } from '@/lib/logs/fetch-log-detail'
 
 const logger = createLogger('LogDetailsByIdAPI')
 
-export const revalidate = 0
-
 export const GET = withRouteHandler(
-  async (_request: NextRequest, { params }: { params: Promise<{ id: string }> }) => {
-    const requestId = generateRequestId()
-
-    try {
-      const session = await getSession()
-      if (!session?.user?.id) {
-        logger.warn(`[${requestId}] Unauthorized log details access attempt`)
-        return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
-      }
-
-      const userId = session.user.id
-      const { id } = logIdParamsSchema.parse(await params)
-
-      const rows = await db
-        .select({
-          id: workflowExecutionLogs.id,
-          workflowId: workflowExecutionLogs.workflowId,
-          executionId: workflowExecutionLogs.executionId,
-          stateSnapshotId: workflowExecutionLogs.stateSnapshotId,
-          deploymentVersionId: workflowExecutionLogs.deploymentVersionId,
-          level: workflowExecutionLogs.level,
-          status: workflowExecutionLogs.status,
-          trigger: workflowExecutionLogs.trigger,
-          startedAt: workflowExecutionLogs.startedAt,
-          endedAt: workflowExecutionLogs.endedAt,
-          totalDurationMs: workflowExecutionLogs.totalDurationMs,
-          executionData: workflowExecutionLogs.executionData,
-          cost: workflowExecutionLogs.cost,
-          files: workflowExecutionLogs.files,
-          createdAt: workflowExecutionLogs.createdAt,
-          workflowName: workflow.name,
-          workflowDescription: workflow.description,
-          workflowColor: workflow.color,
-          workflowFolderId: workflow.folderId,
-          workflowUserId: workflow.userId,
-          workflowWorkspaceId: workflow.workspaceId,
-          workflowCreatedAt: workflow.createdAt,
-          workflowUpdatedAt: workflow.updatedAt,
-          deploymentVersion: workflowDeploymentVersion.version,
-          deploymentVersionName: workflowDeploymentVersion.name,
-        })
-        .from(workflowExecutionLogs)
-        .leftJoin(workflow, eq(workflowExecutionLogs.workflowId, workflow.id))
-        .leftJoin(
-          workflowDeploymentVersion,
-          eq(workflowDeploymentVersion.id, workflowExecutionLogs.deploymentVersionId)
-        )
-        .innerJoin(
-          permissions,
-          and(
-            eq(permissions.entityType, 'workspace'),
-            eq(permissions.entityId, workflowExecutionLogs.workspaceId),
-            eq(permissions.userId, userId)
-          )
-        )
-        .where(eq(workflowExecutionLogs.id, id))
-        .limit(1)
-
-      const log = rows[0]
-
-      // Fallback: check job_execution_logs
-      if (!log) {
-        const jobRows = await db
-          .select({
-            id: jobExecutionLogs.id,
-            executionId: jobExecutionLogs.executionId,
-            level: jobExecutionLogs.level,
-            status: jobExecutionLogs.status,
-            trigger: jobExecutionLogs.trigger,
-            startedAt: jobExecutionLogs.startedAt,
-            endedAt: jobExecutionLogs.endedAt,
-            totalDurationMs: jobExecutionLogs.totalDurationMs,
-            executionData: jobExecutionLogs.executionData,
-            cost: jobExecutionLogs.cost,
-            createdAt: jobExecutionLogs.createdAt,
-          })
-          .from(jobExecutionLogs)
-          .innerJoin(
-            permissions,
-            and(
-              eq(permissions.entityType, 'workspace'),
-              eq(permissions.entityId, jobExecutionLogs.workspaceId),
-              eq(permissions.userId, userId)
-            )
-          )
-          .where(eq(jobExecutionLogs.id, id))
-          .limit(1)
-
-        const jobLog = jobRows[0]
-        if (!jobLog) {
-          return NextResponse.json({ error: 'Not found' }, { status: 404 })
-        }
+  async (request: NextRequest, context: { params: Promise<{ id: string }> }) => {
+    const session = await getSession()
+    if (!session?.user?.id) {
+      return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
+    }
 
-        const execData = jobLog.executionData as Record<string, any> | null
-        const response = {
-          id: jobLog.id,
-          workflowId: null,
-          executionId: jobLog.executionId,
-          deploymentVersionId: null,
-          deploymentVersion: null,
-          deploymentVersionName: null,
-          level: jobLog.level,
-          status: jobLog.status,
-          duration: jobLog.totalDurationMs ? `${jobLog.totalDurationMs}ms` : null,
-          trigger: jobLog.trigger,
-          createdAt: jobLog.startedAt.toISOString(),
-          workflow: null,
-          jobTitle: (execData?.trigger?.source as string) || null,
-          executionData: {
-            totalDuration: jobLog.totalDurationMs,
-            ...execData,
-            enhanced: true,
-          },
-          cost: jobLog.cost as any,
-        }
+    const parsed = await parseRequest(getLogDetailContract, request, context)
+    if (!parsed.success) return parsed.response
 
-        return NextResponse.json({ data: response })
-      }
+    const { id } = parsed.data.params
+    const { workspaceId } = parsed.data.query
 
-      const workflowSummary = log.workflowId
-        ? {
-            id: log.workflowId,
-            name: log.workflowName,
-            description: log.workflowDescription,
-            color: log.workflowColor,
-            folderId: log.workflowFolderId,
-            userId: log.workflowUserId,
-            workspaceId: log.workflowWorkspaceId,
-            createdAt: log.workflowCreatedAt,
-            updatedAt: log.workflowUpdatedAt,
-          }
-        : null
+    const data = await fetchLogDetail({
+      userId: session.user.id,
+      workspaceId,
+      lookupColumn: 'id',
+      lookupValue: id,
+    })
 
-      const response = {
-        id: log.id,
-        workflowId: log.workflowId,
-        executionId: log.executionId,
-        deploymentVersionId: log.deploymentVersionId,
-        deploymentVersion: log.deploymentVersion ?? null,
-        deploymentVersionName: log.deploymentVersionName ?? null,
-        level: log.level,
-        status: log.status,
-        duration: log.totalDurationMs ? `${log.totalDurationMs}ms` : null,
-        trigger: log.trigger,
-        createdAt: log.startedAt.toISOString(),
-        files: log.files || undefined,
-        workflow: workflowSummary,
-        executionData: {
-          totalDuration: log.totalDurationMs,
-          ...(log.executionData as any),
-          enhanced: true,
-        },
-        cost: log.cost as any,
-      }
+    if (!data) return NextResponse.json({ error: 'Not found' }, { status: 404 })
 
-      return NextResponse.json({ data: response })
-    } catch (error: any) {
-      logger.error(`[${requestId}] log details fetch error`, error)
-      return NextResponse.json({ error: error.message }, { status: 500 })
-    }
+    logger.debug('Fetched log detail', { id, workspaceId })
+    return NextResponse.json({ data })
   }
 )

apps/sim/app/api/logs/by-execution/[executionId]/route.ts

@@ -0,0 +1,36 @@
+import { createLogger } from '@sim/logger'
+import { type NextRequest, NextResponse } from 'next/server'
+import { getLogByExecutionIdContract } from '@/lib/api/contracts/logs'
+import { parseRequest } from '@/lib/api/server'
+import { getSession } from '@/lib/auth'
+import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
+import { fetchLogDetail } from '@/lib/logs/fetch-log-detail'
+
+const logger = createLogger('LogDetailsByExecutionAPI')
+
+export const GET = withRouteHandler(
+  async (request: NextRequest, context: { params: Promise<{ executionId: string }> }) => {
+    const session = await getSession()
+    if (!session?.user?.id) {
+      return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
+    }
+
+    const parsed = await parseRequest(getLogByExecutionIdContract, request, context)
+    if (!parsed.success) return parsed.response
+
+    const { executionId } = parsed.data.params
+    const { workspaceId } = parsed.data.query
+
+    const data = await fetchLogDetail({
+      userId: session.user.id,
+      workspaceId,
+      lookupColumn: 'executionId',
+      lookupValue: executionId,
+    })
+
+    if (!data) return NextResponse.json({ error: 'Not found' }, { status: 404 })
+
+    logger.debug('Fetched log by execution id', { executionId, workspaceId })
+    return NextResponse.json({ data })
+  }
+)