Backend frontend agent

[Artuomka]

Summary by CodeRabbit

• New Features

  • Added Sitenova support to the app, including new site and internal endpoints for end-user registration, login, row management, and raw query execution.
  • Introduced public-read access checks and end-user token handling for connection-specific access.

• Bug Fixes

  • Expanded public CORS handling so the new Sitenova routes work correctly.
  • Added end-to-end coverage for authentication, access control, and CRUD flows.

[coderabbitai]

Caution

Review failed

Pull request was closed or merged during review

📝 Walkthrough

Walkthrough

Sitenova is added to the backend with new contracts, guards, use cases, controllers, module wiring, public CORS matching, and end-to-end tests for raw query, auth, CRUD, and public read flows.

Changes

Sitenova microservice feature

Layer / File(s)	Summary
Shared contracts and DTOs backend/src/common/data-injection.tokens.ts, backend/src/microservices/sitenova-microservice/data-structures/*, backend/src/microservices/sitenova-microservice/dto/*, backend/src/microservices/sitenova-microservice/use-cases/*interface.ts	New Sitenova data shapes, DTOs, interfaces, and DI tokens define the request/response and use-case contracts for raw query and end-user auth.
Auth service and guards backend/src/microservices/sitenova-microservice/services/sitenova-enduser-auth.service.ts, backend/src/microservices/sitenova-microservice/guards/*.ts	End-user JWT signing/verification and the new guards enforce connection-bound auth and public-read gating.
Raw-query and auth use cases backend/src/microservices/sitenova-microservice/use-cases/sitenova-*.use.case.ts	Raw-query execution and end-user register/login use cases implement the new database and authentication paths.
HTTP controllers backend/src/microservices/sitenova-microservice/sitenova-*.controller.ts	The internal raw-query endpoint and the Sitenova auth, public-read, and CRUD routes map request DTOs to the new use cases and table access calls.
Module and middleware wiring backend/src/microservices/sitenova-microservice/sitenova.module.ts, backend/src/app.module.ts, backend/src/middlewares/public-crud-cors.middleware.ts	SitenovaModule is added to the Nest graph, the app imports it, and public CORS matching expands to /sitenova routes.
E2E coverage backend/test/ava-tests/non-saas-tests/non-saas-sitenova-microservice-e2e.test.ts	The AVA suite provisions test tables and covers internal raw query, end-user auth, CRUD, public-read, and connection-scoped token behavior.

Sequence Diagram(s)

sequenceDiagram
  participant SitenovaSiteController
  participant SitenovaRegisterEndUserUseCase
  participant SitenovaLoginEndUserUseCase
  participant SitenovaEndUserAuthService
  SitenovaSiteController->>SitenovaRegisterEndUserUseCase: POST /:connectionId/auth/register
  SitenovaRegisterEndUserUseCase->>SitenovaEndUserAuthService: signEndUserToken(connectionId, sub)
  SitenovaEndUserAuthService-->>SitenovaRegisterEndUserUseCase: token
  SitenovaRegisterEndUserUseCase-->>SitenovaSiteController: token + user
  SitenovaSiteController->>SitenovaLoginEndUserUseCase: POST /:connectionId/auth/login
  SitenovaLoginEndUserUseCase->>SitenovaEndUserAuthService: signEndUserToken(connectionId, sub)
  SitenovaEndUserAuthService-->>SitenovaLoginEndUserUseCase: token
  SitenovaLoginEndUserUseCase-->>SitenovaSiteController: token + user

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• rocket-admin/rocketadmin#1831 — Introduced the pure table row use cases that this PR wires into the Sitenova site endpoints.
• rocket-admin/rocketadmin#1844 — Added the public-access Cedar path that SitenovaPublicReadGuard now uses for /sitenova/:connectionId/data/*.
• rocket-admin/rocketadmin#1843 — Expanded TableQuery authorization behavior that overlaps with the public-read decision path here.

Suggested reviewers

• gugu
• lyubov-voloshko

Poem

I hopped through sitenova by moonlit leaf,
Signed tiny tokens with a whisker of brief.
Raw queries thumped, and the rows all gleamed,
While guards and reads in tidy lines teamed.
Hoppy trails! 🐰

🚥 Pre-merge checks | ✅ 3 | ❌ 3

❌ Failed checks (2 warnings, 1 inconclusive)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 57.14% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.
Security Check	⚠️ Warning	SitenovaSiteController hardcodes userId:'' for create/update/delete, so guarded end-user writes no longer use the token’s subject for downstream authorization.	Pass request.sitenovaEndUser?.sub into the write handlers and reject blank optional fields at the DTO boundary so authz stays enforced.
Title check	❓ Inconclusive	The title is too vague and generic to convey the main change in the changeset.	Use a concise, specific title such as "Add Sitenova microservice endpoints and auth flow".

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch backend-frontend_agent

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands.}

[Copilot]

Pull request overview

Adds a new backend “SiteNova” microservice surface that exposes (1) an internal, microservice-authenticated raw SQL provisioning endpoint and (2) a browser-facing generated-site API for end-user register/login plus data CRUD, along with an AVA e2e test suite and CORS support for the new public routes.

Changes:

• Introduces SitenovaModule with internal (/internal/sitenova/...) and public (/sitenova/...) controllers, DTOs, guards, and use cases.
• Adds end-user JWT issuance/verification via SitenovaEndUserAuthService (per-connection signing keys).
• Extends the existing wildcard CORS middleware to cover the new SiteNova public API and adds a new e2e test file.

Reviewed changes

Copilot reviewed 20 out of 20 changed files in this pull request and generated 7 comments.

Show a summary per file

File	Description
backend/test/ava-tests/non-saas-tests/non-saas-sitenova-microservice-e2e.test.ts	Adds e2e coverage for internal raw-query auth + public SiteNova auth and CRUD flows.
backend/src/middlewares/public-crud-cors.middleware.ts	Extends wildcard CORS handling to include SiteNova public endpoints.
backend/src/microservices/sitenova-microservice/use-cases/sitenova-use-cases.interface.ts	Defines the raw-query use case interface contract.
backend/src/microservices/sitenova-microservice/use-cases/sitenova-site-use-cases.interface.ts	Defines register/login end-user use case interfaces.
backend/src/microservices/sitenova-microservice/use-cases/sitenova-register-enduser.use.case.ts	Implements end-user registration into a connection-scoped users table.
backend/src/microservices/sitenova-microservice/use-cases/sitenova-login-enduser.use.case.ts	Implements end-user login with password verification and token minting.
backend/src/microservices/sitenova-microservice/use-cases/sitenova-execute-raw-query.use.case.ts	Implements internal write-capable raw SQL execution against a connection.
backend/src/microservices/sitenova-microservice/sitenova.module.ts	Wires controllers, guards, services, and use cases; applies microservice auth middleware to internal controller.
backend/src/microservices/sitenova-microservice/sitenova-site.controller.ts	Adds the browser-facing SiteNova API: register/login and CRUD endpoints.
backend/src/microservices/sitenova-microservice/sitenova-internal.controller.ts	Adds the microservice-authenticated raw-query endpoint for provisioning.
backend/src/microservices/sitenova-microservice/services/sitenova-enduser-auth.service.ts	Adds per-connection HS256 token signing/verification for generated-site visitors.
backend/src/microservices/sitenova-microservice/guards/sitenova-public-read.guard.ts	Enforces public-read policy (Cedar) for SiteNova read endpoints.
backend/src/microservices/sitenova-microservice/guards/sitenova-enduser-auth.guard.ts	Enforces SiteNova end-user JWT for write endpoints.
backend/src/microservices/sitenova-microservice/dto/sitenova.dtos.ts	Adds DTOs for internal raw-query requests.
backend/src/microservices/sitenova-microservice/dto/sitenova-site.dtos.ts	Adds DTOs for public SiteNova register/login and CRUD payloads.
backend/src/microservices/sitenova-microservice/data-structures/sitenova.ds.ts	Adds DS for internal raw-query use case inputs.
backend/src/microservices/sitenova-microservice/data-structures/sitenova-site.ds.ts	Adds DS/constants for end-user auth (audience/ttl/payload).
backend/src/microservices/sitenova-microservice/data-structures/sitenova-responses.ds.ts	Adds response RO for raw-query results.
backend/src/common/data-injection.tokens.ts	Registers new SiteNova use case injection tokens.
backend/src/app.module.ts	Registers SitenovaModule in the main application module.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.