Move items to s3

[tarunnjoshi]

Move items to s3

Summary by CodeRabbit

• New Features
  • Added support for displaying QR codes on contact pages
  • Enabled file retrieval and serving functionality with improved error handling and logging

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Important

Review skipped

More than 25% of the files skipped due to max files limit. The review is being skipped to prevent a low-quality review.

139 files out of 297 files are above the max files limit of 100. Please upgrade to Pro plan to get higher limits.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

The PR adds a new testing() method to NavigationPermissionService that processes page rendering for two distinct CRM page types. For CRM_Core_Page_File, it retrieves and serves files from S3 with proper headers. For CRM_Contact_Page_View_Summary, it fetches contact QR codes via API4, constructs S3 URLs, and injects JavaScript to render the QR code image inline.

Changes

Cohort / File(s)	Change Summary
Navigation Permission Enhancement wp-content/civi-extensions/goonjcustom/Civi/NavigationPermissionService.php	Added public testing() method with dual-branch logic: handles file retrieval and S3 serving for CRM_Core_Page_File pages, and QR code fetching with JavaScript injection for CRM_Contact_Page_View_Summary pages. Extended getSubscribedEvents() to register the new handler on the CRM pageRun hook. Includes comprehensive try/catch error handling with logging.

Sequence Diagram(s)

sequenceDiagram
    participant Page as Page Request
    participant Nav as NavigationPermissionService
    participant API as CRM API4
    participant S3 as S3 Storage
    participant JS as JavaScript Engine

    Page->>Nav: pageRun event (testing handler)
    
    alt CRM_Core_Page_File
        Nav->>Nav: Extract file URL parameter
        Nav->>S3: Construct & fetch file
        S3-->>Nav: File content
        Nav->>Page: Output with headers + exit
    else CRM_Contact_Page_View_Summary
        Nav->>API: Request contact QR code file
        API-->>Nav: QR code file reference
        Nav->>S3: Construct S3 URL
        S3-->>Nav: S3 URL confirmation
        Nav->>Nav: Assign to custom token & fileUrl variable
        Nav->>JS: Inject inline rendering script
        JS->>Page: Render QR code image
    end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Areas requiring extra attention:

• Single Responsibility Violation: The testing() method handles two fundamentally different workflows (file serving vs. QR code rendering); consider splitting into separate methods or handlers.
• Potential Code Duplication: Both branches share similar S3 URL construction and error handling patterns; extract common logic into helper methods.
• Unrecoverable Flow: Direct exit() call in the file handling path makes testing and graceful error recovery difficult; consider returning responses instead.
• Error Handling Clarity: Try/catch blocks log errors but lack explicit recovery paths or user feedback mechanisms; clarify expected behaviors on API or S3 failures.
• JavaScript Injection Security: Ensure the injected inline JS and token values are properly sanitized to prevent XSS vulnerabilities.

Poem

✨ Files now soar from S3's distant shore,
QR codes dance in contact view with flair—
Two paths unite where permissions roar,
JavaScript whispers secrets through the air! 🎯

Pre-merge checks and finishing touches

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Title check	❓ Inconclusive	The title 'Move items to s3' is vague and generic. While it references S3, it lacks specificity about what items are being moved, what the actual functional change is, and doesn't clearly convey the primary change from the code (adding a testing handler for file retrieval and QR code rendering).	Provide a more specific title that describes the main functionality added, such as 'Add testing handler for S3 file retrieval and QR code rendering' or 'Implement S3 file serving and contact QR code display via testing hook'.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🧹 Nitpick comments (2)

wp-content/civi-extensions/goonjcustom/Civi/NavigationPermissionService.php (2)

22-23: Event handler name testing is unclear and the handler mixes concerns

For a long‑lived pageRun subscriber, testing is not self‑descriptive and the method currently handles two unrelated responsibilities (file download override and contact QR rendering). This hurts readability and violates single‑responsibility.

Consider:

• Renaming the handler to something intention‑revealing (e.g. routeFilesToS3 / handleS3Overrides), and
• Splitting the logic into two private methods (e.g. handleFileDownloadFromS3() and injectContactQrFromS3()) that the event handler calls.

---

52-55: Hard‑coded and duplicated S3 URL construction reduces maintainability

The S3 base URL and URL‑building logic are duplicated:

• Lines 52‑55 and 99‑100 both hard‑code https://goonj-uploads-items.s3.ap-south-1.amazonaws.com/custom/ and concatenate uri.
• If the bucket, region, or path prefix changes, you’ll need to hunt down multiple occurrences.

For maintainability and readability, consider:

• Defining a class constant or config‑driven setting for the S3 base (e.g. const S3_BASE = 'https://goonj-uploads-items.s3.ap-south-1.amazonaws.com/custom/';), and
• A small helper like buildS3Url(string $uri): string that encapsulates any required path normalization.

This keeps the logic DRY without over‑engineering and makes future S3 moves or environment changes safer. Based on learnings, this is more important here than in one‑time CLI scripts because this handler runs in regular UI traffic.

Also applies to: 99-112

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between baffd62 and 51cf65c.

📒 Files selected for processing (1)

• wp-content/civi-extensions/goonjcustom/Civi/NavigationPermissionService.php (1 hunks)

🧰 Additional context used

🧠 Learnings (1)

📓 Common learnings

Learnt from: tarunnjoshi
Repo: ColoredCow/goonj PR: 1230
File: wp-content/civi-extensions/civirazorpay/cli/update-recurring-contact-info.php:115-117
Timestamp: 2025-05-27T07:31:44.131Z
Learning: For one-time scripts in the Goonj project, tarunnjoshi prefers to keep hardcoded values rather than creating shared constants or configuration files, prioritizing simplicity over strict adherence to DRY principle to avoid over-engineering temporary code.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

S3 file download override lacks explicit permission checks and uses brittle patterns

In the CRM_Core_Page_File branch you pull a file by ID and stream it from S3 directly:

• There is no explicit ACL/permission check before serving the file. Anyone who can hit CRM_Core_Page_File with a valid id will get the file contents from S3, regardless of entity‑level access rules. For attachments or sensitive files this is a security risk.
• Using get_class($page) === 'CRM_Core_Page_File' is brittle if Civi ever subclasses this page; instanceof or $page->getVar('_name') (as used elsewhere in this class) is more robust.
• Suppressing errors with @file_get_contents hides useful diagnostics and can make production issues harder to debug.

Suggestions:

• Before streaming from S3, enforce the same permission model Civi uses for that file (e.g. via the related entity/ACLs or by delegating to existing helpers) so that this override does not weaken access control.
• Prefer instanceof CRM_Core_Page_File or $page->getVar('_name') for page detection.
• Drop the error suppression and rely on your explicit FALSE check and logging.

🤖 Prompt for AI Agents

In wp-content/civi-extensions/goonjcustom/Civi/NavigationPermissionService.php
around lines 30–67, replace the brittle page check and silent file fetch with a
secure, robust flow: use "if ($page instanceof CRM_Core_Page_File)" (or
$page->getVar('_name')) instead of get_class(...), remove the "@" error
suppression on file_get_contents and log any failure, and before streaming the
S3 object enforce Civi's access model by resolving the File's related entity
(via the File API/BAO) and verifying the current user has permission to view
that entity/file (use existing Civi permission helpers / ACL checks or delegate
to the standard file download helper); only stream the S3 contents after the
permission check passes and return/log and exit on denial or fetch errors.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Contact summary S3 QR rendering needs stronger error handling and is DOM‑fragile

In the CRM_Contact_Page_View_Summary branch:

• $contacts = ...->first(); is assumed to return an array with Contact_QR_Code.QR_Code. If the custom group/field is disabled, renamed, or the API returns no rows, $contacts may be NULL or missing that key, leading to notices or errors.
• \Civi\Api4\CustomField::get(TRUE)...->first(); is not wrapped in a try/catch, so any API failure will bubble up as a fatal and break the contact summary page.
• The JS uses a hard‑coded selector '#custom-set-content-3 .crm-content.crm-custom-data' and replaces innerHTML. This is brittle to layout/order changes and will wipe any other content in that container, which can surprise future maintainers.

Consider:

-      $contacts = \Civi\Api4\Contact::get(TRUE)
+      $contacts = \Civi\Api4\Contact::get(TRUE)
           ->addSelect('Contact_QR_Code.QR_Code')
           ->addWhere('id', '=', $contactId)
           ->execute()
           ->first();
-      $fileId = $contacts['Contact_QR_Code.QR_Code'];
-      if (!$fileId) return;
+      if (empty($contacts) || empty($contacts['Contact_QR_Code.QR_Code'])) {
+          return;
+      }
+      $fileId = $contacts['Contact_QR_Code.QR_Code'];

and wrapping the CustomField::get chain in a try/catch similar to the other API calls.

For the JS, appending an <img> element instead of replacing innerHTML, and targeting a more stable hook (e.g. a dedicated wrapper id/class for the QR field) would make this less fragile.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if (get_class($page) === 'CRM_Contact_Page_View_Summary') {
	error_log("Contact Summary page detected");
	$contactId = $page->getVar('_contactId');
	error_log("Contact ID: " . print_r($contactId, true));
	if (!$contactId) return;
	// Get custom QR code file ID
	try {
	$contacts = \Civi\Api4\Contact::get(TRUE)
	->addSelect('Contact_QR_Code.QR_Code')
	->addWhere('id', '=', $contactId)
	->execute()
	->first();
	} catch (\Exception $e) {
	error_log("Error fetching contact QR code: " . $e->getMessage());
	return;
	}
	$fileId = $contacts['Contact_QR_Code.QR_Code'];
	if (!$fileId) return;
	// Load civicrm_file record
	try {
	$file = civicrm_api3('File', 'getsingle', ['id' => $fileId]);
	} catch (\Exception $e) {
	error_log("Error fetching civicrm_file: " . $e->getMessage());
	return;
	}
	$s3Url = "https://goonj-uploads-items.s3.ap-south-1.amazonaws.com/custom/" . $file['uri'];
	error_log("S3 URL for contact QR code: " . $s3Url);
	// Assign S3 URL to custom field token and fileUrl
	$customFields = \Civi\Api4\CustomField::get(TRUE)
	->addSelect('id')
	->addWhere('custom_group_id:name', '=', 'Contact_QR_Code')
	->addWhere('name', '=', 'QR_Code')
	->setLimit(1)
	->execute()
	->first();
	$tokenName = 'custom_' . $customFields['id'];
	$page->assign($tokenName, $s3Url);
	$page->assign("fileUrl_{$fileId}", $s3Url);
	error_log("Custom field image assigned successfully to token and fileUrl");
	// ----------------------------
	// Inject JS safely via CRM_Core_Resources
	// ----------------------------
	$js = <<<JS
	document.addEventListener('DOMContentLoaded', function() {
	var qrDiv = document.querySelector('#custom-set-content-3 .crm-content.crm-custom-data');
	if(qrDiv && !qrDiv.querySelector('img')) {
	qrDiv.innerHTML = '<img src="{$s3Url}" alt="QR Code" style="max-width:150px;height:auto;">';
	console.log('QR code injected for contact {$contactId}');
	}
	});
	JS;
	\CRM_Core_Resources::singleton()->addScript($js, 0, 'inline');
	error_log("JS injected via CRM_Core_Resources for inline rendering");
	}
	if (get_class($page) === 'CRM_Contact_Page_View_Summary') {
	error_log("Contact Summary page detected");
	$contactId = $page->getVar('_contactId');
	error_log("Contact ID: " . print_r($contactId, true));
	if (!$contactId) return;
	// Get custom QR code file ID
	try {
	$contacts = \Civi\Api4\Contact::get(TRUE)
	->addSelect('Contact_QR_Code.QR_Code')
	->addWhere('id', '=', $contactId)
	->execute()
	->first();
	} catch (\Exception $e) {
	error_log("Error fetching contact QR code: " . $e->getMessage());
	return;
	}
	if (empty($contacts) || empty($contacts['Contact_QR_Code.QR_Code'])) {
	return;
	}
	$fileId = $contacts['Contact_QR_Code.QR_Code'];
	// Load civicrm_file record
	try {
	$file = civicrm_api3('File', 'getsingle', ['id' => $fileId]);
	} catch (\Exception $e) {
	error_log("Error fetching civicrm_file: " . $e->getMessage());
	return;
	}
	$s3Url = "https://goonj-uploads-items.s3.ap-south-1.amazonaws.com/custom/" . $file['uri'];
	error_log("S3 URL for contact QR code: " . $s3Url);
	// Assign S3 URL to custom field token and fileUrl
	$customFields = \Civi\Api4\CustomField::get(TRUE)
	->addSelect('id')
	->addWhere('custom_group_id:name', '=', 'Contact_QR_Code')
	->addWhere('name', '=', 'QR_Code')
	->setLimit(1)
	->execute()
	->first();
	$tokenName = 'custom_' . $customFields['id'];
	$page->assign($tokenName, $s3Url);
	$page->assign("fileUrl_{$fileId}", $s3Url);
	error_log("Custom field image assigned successfully to token and fileUrl");
	// ----------------------------
	// Inject JS safely via CRM_Core_Resources
	// ----------------------------
	$js = <<<JS
	document.addEventListener('DOMContentLoaded', function() {
	var qrDiv = document.querySelector('#custom-set-content-3 .crm-content.crm-custom-data');
	if(qrDiv && !qrDiv.querySelector('img')) {
	qrDiv.innerHTML = '<img src="{$s3Url}" alt="QR Code" style="max-width:150px;height:auto;">';
	console.log('QR code injected for contact {$contactId}');
	}
	});
	JS;
	\CRM_Core_Resources::singleton()->addScript($js, 0, 'inline');
	error_log("JS injected via CRM_Core_Resources for inline rendering");
	}