agentics_persistence/db/challenge_creation/

rows.rs

use chrono::{DateTime, Utc};
use serde_json::Value;
use sqlx::{PgPool, Row};

use agentics_domain::models::auth::GithubUserId;
use agentics_domain::models::challenge_creation::{
    ChallengeCreationManifest, ChallengeCreationRequestKind, ChallengePrivateAssetKind,
    ChallengePrivateAssetStatus, ChallengeReviewRecordStatus, ChallengeReviewValidationStatus,
};
use agentics_domain::models::github::GithubPullRequestNumber;
use agentics_domain::models::hashes::{GitCommitSha, Sha256Digest};
use agentics_domain::models::ids::{
    ChallengePrivateAssetId, ChallengeReviewRecordId, ChallengeReviewValidationRecordId, HumanId,
};
use agentics_domain::models::names::{AssetName, ChallengeName};
use agentics_domain::models::paths::RepoRelativePath;
use agentics_domain::models::urls::{GithubPullRequestUrl, GithubRepoRemote};
use agentics_domain::storage::StorageKey;
use agentics_error::{Result, ServiceError};

use super::super::ids::{
    asset_name_from_row, challenge_name_from_row, challenge_private_asset_id_from_row,
    challenge_review_record_id_from_row, challenge_review_validation_record_id_from_row,
    human_id_from_row, optional_challenge_name_from_row,
};

/// Review record validation row before DTO projection.
#[derive(Debug, Clone)]
pub struct ChallengeReviewValidationRecord {
    pub id: ChallengeReviewValidationRecordId,
    pub review_record_id: ChallengeReviewRecordId,
    pub status: ChallengeReviewValidationStatus,
    pub message: String,
    pub repository_path: String,
    pub manifest_sha256: Sha256Digest,
    pub bundle_sha256: Option<Sha256Digest>,
    pub created_at: DateTime<Utc>,
}

/// Active private asset row before DTO projection.
#[derive(Debug, Clone)]
pub struct ChallengePrivateAssetRecord {
    pub id: ChallengePrivateAssetId,
    pub review_record_id: ChallengeReviewRecordId,
    pub asset_name: AssetName,
    pub kind: ChallengePrivateAssetKind,
    pub required: bool,
    pub size_bytes: i64,
    pub sha256: Sha256Digest,
    pub storage_key: StorageKey,
    pub uploader_human_id: HumanId,
    pub created_at: DateTime<Utc>,
}

/// Private asset lifecycle row before admin DTO projection.
#[derive(Debug, Clone)]
pub struct AdminChallengePrivateAssetRecord {
    pub id: ChallengePrivateAssetId,
    pub review_record_id: ChallengeReviewRecordId,
    pub asset_name: AssetName,
    pub kind: ChallengePrivateAssetKind,
    pub required: bool,
    pub status: ChallengePrivateAssetStatus,
    pub size_bytes: i64,
    pub sha256: Sha256Digest,
    pub storage_key: StorageKey,
    pub temporary_storage_key: Option<StorageKey>,
    pub uploader_human_id: HumanId,
    pub created_at: DateTime<Utc>,
    pub activated_at: Option<DateTime<Utc>>,
    pub failed_at: Option<DateTime<Utc>>,
    pub failure_message: Option<String>,
}

/// Challenge review record row plus active assets and validation records before DTO projection.
#[derive(Debug, Clone)]
pub struct ChallengeReviewRecordRecord {
    pub id: ChallengeReviewRecordId,
    pub challenge_name: ChallengeName,
    pub request: ChallengeCreationRequestKind,
    pub status: ChallengeReviewRecordStatus,
    pub creator_human_id: HumanId,
    pub creator_github_user_id: GithubUserId,
    pub creator_github_login: String,
    pub repo_url: GithubRepoRemote,
    pub pr_number: GithubPullRequestNumber,
    pub pr_url: GithubPullRequestUrl,
    pub commit_sha: GitCommitSha,
    pub challenge_path: RepoRelativePath,
    pub manifest_sha256: Sha256Digest,
    pub manifest: ChallengeCreationManifest,
    pub validation_bundle_sha256: Option<Sha256Digest>,
    pub approved_bundle_sha256: Option<Sha256Digest>,
    pub validation_message: Option<String>,
    pub validation_repository_path: Option<String>,
    pub published_challenge_name: Option<ChallengeName>,
    pub private_assets: Vec<ChallengePrivateAssetRecord>,
    pub validation_records: Vec<ChallengeReviewValidationRecord>,
    pub created_at: DateTime<Utc>,
    pub updated_at: DateTime<Utc>,
}

/// List all private asset lifecycle records for an admin review record review.
pub async fn list_challenge_private_asset_states(
    pool: &PgPool,
    review_record_id: &ChallengeReviewRecordId,
) -> Result<Vec<AdminChallengePrivateAssetRecord>> {
    let rows = sqlx::query(
        r#"
        SELECT *
        FROM challenge_private_assets
        WHERE review_record_id = $1::uuid
        ORDER BY created_at ASC
        "#,
    )
    .bind(review_record_id.as_str())
    .fetch_all(pool)
    .await?;

    rows.into_iter()
        .map(row_to_admin_private_asset_record)
        .collect()
}

/// Lists active private assets for review_record using the configured query scope.
pub(super) async fn list_private_assets_for_review_record(
    pool: &PgPool,
    review_record_id: &ChallengeReviewRecordId,
) -> Result<Vec<ChallengePrivateAssetRecord>> {
    let rows = sqlx::query(
        r#"
        SELECT *
        FROM challenge_private_assets
        WHERE review_record_id = $1::uuid
          AND status = 'active'
        ORDER BY created_at ASC
        "#,
    )
    .bind(review_record_id.as_str())
    .fetch_all(pool)
    .await?;

    rows.into_iter().map(row_to_private_asset_record).collect()
}

/// Lists validation records for review_record using the configured query scope.
pub(super) async fn list_validation_records_for_review_record(
    pool: &PgPool,
    review_record_id: &ChallengeReviewRecordId,
) -> Result<Vec<ChallengeReviewValidationRecord>> {
    let rows = sqlx::query(
        r#"
        SELECT *
        FROM challenge_review_validation_records
        WHERE review_record_id = $1::uuid
        ORDER BY created_at DESC
        "#,
    )
    .bind(review_record_id.as_str())
    .fetch_all(pool)
    .await?;

    rows.into_iter().map(row_to_validation_record).collect()
}

/// Converts a database row into the review_record record model.
pub(super) fn row_to_review_record(
    row: sqlx::postgres::PgRow,
    private_assets: Vec<ChallengePrivateAssetRecord>,
    validation_records: Vec<ChallengeReviewValidationRecord>,
) -> Result<ChallengeReviewRecordRecord> {
    let manifest_json: Value = row.try_get("manifest_json")?;
    let manifest: ChallengeCreationManifest =
        serde_json::from_value(manifest_json).map_err(|e| ServiceError::Internal(e.to_string()))?;
    let published_challenge_name =
        optional_challenge_name_from_row(&row, "published_challenge_name")?;

    Ok(ChallengeReviewRecordRecord {
        id: challenge_review_record_id_from_row(&row, "id")?,
        challenge_name: challenge_name_from_row(&row, "challenge_name")?,
        request: request_kind_from_row(&row, "request_kind")?,
        status: review_record_status_from_row(&row, "status")?,
        creator_human_id: human_id_from_row(&row, "creator_human_id")?,
        creator_github_user_id: github_user_id_from_row(&row, "creator_github_user_id")?,
        creator_github_login: row.try_get("creator_github_login")?,
        repo_url: github_repo_remote_from_row(&row, "repo_url")?,
        pr_number: github_pull_request_number_from_row(&row, "pr_number")?,
        pr_url: github_pull_request_url_from_row(&row, "pr_url")?,
        commit_sha: git_commit_sha_from_row(&row, "commit_sha")?,
        challenge_path: repo_relative_path_from_row(&row, "challenge_path")?,
        manifest_sha256: sha256_digest_from_row(&row, "manifest_sha256")?,
        manifest,
        validation_bundle_sha256: optional_sha256_digest_from_row(
            &row,
            "validation_bundle_sha256",
        )?,
        approved_bundle_sha256: optional_sha256_digest_from_row(&row, "approved_bundle_sha256")?,
        validation_message: row.try_get("validation_message")?,
        validation_repository_path: row.try_get("validation_repository_path")?,
        published_challenge_name,
        private_assets,
        validation_records,
        created_at: row.try_get("created_at")?,
        updated_at: row.try_get("updated_at")?,
    })
}

fn github_user_id_from_row(row: &sqlx::postgres::PgRow, field: &str) -> Result<GithubUserId> {
    let value = row.try_get::<i64, _>(field)?;
    GithubUserId::try_new(value)
        .map_err(|e| ServiceError::Internal(format!("stored invalid GitHub user id: {e}")))
}

/// Converts a database row into the private asset record model.
pub(super) fn row_to_private_asset_record(
    row: sqlx::postgres::PgRow,
) -> Result<ChallengePrivateAssetRecord> {
    Ok(ChallengePrivateAssetRecord {
        id: challenge_private_asset_id_from_row(&row, "id")?,
        review_record_id: challenge_review_record_id_from_row(&row, "review_record_id")?,
        asset_name: asset_name_from_row(&row, "asset_name")?,
        kind: private_asset_kind_from_row(&row, "kind")?,
        required: row.try_get("required")?,
        size_bytes: row.try_get("size_bytes")?,
        sha256: sha256_digest_from_row(&row, "sha256")?,
        storage_key: storage_key_from_row(&row, "storage_key")?,
        uploader_human_id: human_id_from_row(&row, "uploader_human_id")?,
        created_at: row.try_get("created_at")?,
    })
}

/// Converts a database row into the admin private asset lifecycle record model.
fn row_to_admin_private_asset_record(
    row: sqlx::postgres::PgRow,
) -> Result<AdminChallengePrivateAssetRecord> {
    Ok(AdminChallengePrivateAssetRecord {
        id: challenge_private_asset_id_from_row(&row, "id")?,
        review_record_id: challenge_review_record_id_from_row(&row, "review_record_id")?,
        asset_name: asset_name_from_row(&row, "asset_name")?,
        kind: private_asset_kind_from_row(&row, "kind")?,
        required: row.try_get("required")?,
        status: private_asset_status_from_row(&row, "status")?,
        size_bytes: row.try_get("size_bytes")?,
        sha256: sha256_digest_from_row(&row, "sha256")?,
        storage_key: storage_key_from_row(&row, "storage_key")?,
        temporary_storage_key: optional_storage_key_from_row(&row, "temporary_storage_key")?,
        uploader_human_id: human_id_from_row(&row, "uploader_human_id")?,
        created_at: row.try_get("created_at")?,
        activated_at: row.try_get("activated_at")?,
        failed_at: row.try_get("failed_at")?,
        failure_message: row.try_get("failure_message")?,
    })
}

/// Reads github repo remote from a database row and validates its domain shape.
fn github_repo_remote_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<GithubRepoRemote> {
    let value: String = row.try_get(column)?;
    GithubRepoRemote::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads github pull request url from a database row and validates its domain shape.
fn github_pull_request_url_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<GithubPullRequestUrl> {
    let value: String = row.try_get(column)?;
    GithubPullRequestUrl::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads github pull request number from a database row and validates its domain shape.
fn github_pull_request_number_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<GithubPullRequestNumber> {
    let value: i32 = row.try_get(column)?;
    GithubPullRequestNumber::try_new(value.to_string())
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads git commit sha from a database row and validates its domain shape.
fn git_commit_sha_from_row(row: &sqlx::postgres::PgRow, column: &str) -> Result<GitCommitSha> {
    let value: String = row.try_get(column)?;
    GitCommitSha::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads sha256 digest from a database row and validates its domain shape.
fn sha256_digest_from_row(row: &sqlx::postgres::PgRow, column: &str) -> Result<Sha256Digest> {
    let value: String = row.try_get(column)?;
    Sha256Digest::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads optional sha256 digest from a database row and validates its domain shape.
fn optional_sha256_digest_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<Option<Sha256Digest>> {
    let Some(value) = row.try_get::<Option<String>, _>(column)? else {
        return Ok(None);
    };
    Sha256Digest::try_new(&value)
        .map(Some)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads storage key from a database row and validates its domain shape.
pub(super) fn storage_key_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<StorageKey> {
    let value: String = row.try_get(column)?;
    StorageKey::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads an optional storage key from a database row and validates its domain shape.
pub(super) fn optional_storage_key_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<Option<StorageKey>> {
    let Some(value) = row.try_get::<Option<String>, _>(column)? else {
        return Ok(None);
    };
    StorageKey::try_new(&value)
        .map(Some)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Reads repo relative path from a database row and validates its domain shape.
fn repo_relative_path_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<RepoRelativePath> {
    let value: String = row.try_get(column)?;
    RepoRelativePath::try_new(&value)
        .map_err(|e| ServiceError::Internal(format!("invalid stored {column}: {e}")))
}

/// Converts a database row into the validation record model.
pub(super) fn row_to_validation_record(
    row: sqlx::postgres::PgRow,
) -> Result<ChallengeReviewValidationRecord> {
    Ok(ChallengeReviewValidationRecord {
        id: challenge_review_validation_record_id_from_row(&row, "id")?,
        review_record_id: challenge_review_record_id_from_row(&row, "review_record_id")?,
        status: validation_status_from_row(&row, "status")?,
        message: row.try_get("message")?,
        repository_path: row.try_get("repository_path")?,
        manifest_sha256: sha256_digest_from_row(&row, "manifest_sha256")?,
        bundle_sha256: optional_sha256_digest_from_row(&row, "bundle_sha256")?,
        created_at: row.try_get("created_at")?,
    })
}

/// Reads request kind from a database row and validates its domain shape.
fn request_kind_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<ChallengeCreationRequestKind> {
    let value: String = row.try_get(column)?;
    ChallengeCreationRequestKind::from_storage_value(&value)
        .ok_or_else(|| ServiceError::Internal(format!("unknown stored {column} `{value}`")))
}

/// Reads review_record status from a database row and validates its domain shape.
pub(super) fn review_record_status_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<ChallengeReviewRecordStatus> {
    let value: String = row.try_get(column)?;
    ChallengeReviewRecordStatus::from_storage_value(&value)
        .ok_or_else(|| ServiceError::Internal(format!("unknown stored {column} `{value}`")))
}

/// Reads validation status from a database row and validates its domain shape.
fn validation_status_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<ChallengeReviewValidationStatus> {
    let value: String = row.try_get(column)?;
    ChallengeReviewValidationStatus::from_storage_value(&value)
        .ok_or_else(|| ServiceError::Internal(format!("unknown stored {column} `{value}`")))
}

/// Reads private asset status from a database row and validates its domain shape.
fn private_asset_status_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<ChallengePrivateAssetStatus> {
    let value: String = row.try_get(column)?;
    ChallengePrivateAssetStatus::from_storage_value(&value)
        .ok_or_else(|| ServiceError::Internal(format!("unknown stored {column} `{value}`")))
}

/// Reads private asset kind from a database row and validates its domain shape.
fn private_asset_kind_from_row(
    row: &sqlx::postgres::PgRow,
    column: &str,
) -> Result<ChallengePrivateAssetKind> {
    let value: String = row.try_get(column)?;
    ChallengePrivateAssetKind::from_storage_value(&value)
        .ok_or_else(|| ServiceError::Internal(format!("unknown stored {column} `{value}`")))
}