Skip to content

Registrant country report for a challenge, to help with challenges that only allow submissions from a subset of countries #20

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 3 commits into from
Nov 1, 2025
Merged

Registrant country report for a challenge, to help with challenges that only allow submissions from a subset of countries #20

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
bcc17c4
Registrant country report for a challenge, to help with challenges th…
jmgasper Oct 30, 2025
07726f4
Remove testing data
jmgasper Oct 30, 2025
a5d0914
Add auth guard for M2M / admin token for topcoder reports
jmgasper Oct 31, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 21 additions & 0 deletions sql/reports/topcoder/registrant-countries.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
SELECT DISTINCT
res."memberHandle" AS handle,
mem.email AS email,
COALESCE(home_code.name, home_id.name, mem."homeCountryCode") AS home_country,
COALESCE(comp_code.name, comp_id.name, mem."competitionCountryCode") AS competition_country
FROM resources."Resource" AS res
JOIN resources."ResourceRole" AS rr
ON rr.id = res."roleId"
LEFT JOIN members."member" AS mem
ON mem."userId"::text = res."memberId"
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[❗❗ correctness]
Casting mem."userId" to text for comparison with res."memberId" could lead to unexpected results if there are leading zeros or other formatting differences. Consider ensuring both fields are consistently formatted or use a more reliable method for comparison.

LEFT JOIN lookups."Country" AS home_code
ON UPPER(home_code."countryCode") = UPPER(mem."homeCountryCode")
LEFT JOIN lookups."Country" AS home_id
ON UPPER(home_id.id) = UPPER(mem."homeCountryCode")
LEFT JOIN lookups."Country" AS comp_code
ON UPPER(comp_code."countryCode") = UPPER(mem."competitionCountryCode")
LEFT JOIN lookups."Country" AS comp_id
ON UPPER(comp_id.id) = UPPER(mem."competitionCountryCode")
WHERE rr.name = 'Submitter'
AND res."challengeId" = $1::text
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ security]
Using $1::text for parameterized queries is a good practice for preventing SQL injection. Ensure that the parameter passed is properly validated and sanitized before execution.

ORDER BY res."memberHandle";
11 changes: 11 additions & 0 deletions src/reports/topcoder/dto/registrant-countries.dto.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
import { Transform } from "class-transformer";
import { IsNotEmpty, IsString } from "class-validator";

export class RegistrantCountriesQueryDto {
@Transform(({ value }) =>
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ correctness]
The @Transform decorator is used to trim the challengeId, but it does not handle cases where value might be null or undefined. Consider adding a check to ensure value is a non-null string before trimming.

typeof value === "string" ? value.trim() : value,
)
@IsString()
@IsNotEmpty()
challengeId!: string;
}
23 changes: 22 additions & 1 deletion src/reports/topcoder/topcoder-reports.controller.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
import { Controller, Get } from "@nestjs/common";
import { Controller, Get, Query, Res } from "@nestjs/common";
import { ApiOperation, ApiTags } from "@nestjs/swagger";
import { Response } from "express";
import { TopcoderReportsService } from "./topcoder-reports.service";
import { RegistrantCountriesQueryDto } from "./dto/registrant-countries.dto";

@ApiTags("Topcoder Reports")
@Controller("/topcoder")
Expand All @@ -13,6 +15,25 @@ export class TopcoderReportsController {
return this.reports.getMemberCount();
}

@Get("/registrant-countries")
@ApiOperation({
summary: "Countries of all registrants for the specified challenge",
})
async getRegistrantCountries(
@Query() query: RegistrantCountriesQueryDto,
@Res() res: Response,
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ maintainability]
Using @Res() in combination with @Query() can lead to issues with NestJS's automatic response handling. Consider returning the CSV data directly and allowing NestJS to handle the response, which can improve maintainability and consistency with other endpoints.

) {
const { challengeId } = query;
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[❗❗ security]
Ensure that challengeId is validated properly in RegistrantCountriesQueryDto to prevent potential security issues such as injection attacks.

const csv = await this.reports.getRegistrantCountriesCsv(challengeId);
const filename =
challengeId.length > 0
? `registrant-countries-${challengeId}.csv`
: "registrant-countries.csv";
res.setHeader("Content-Type", "text/csv");
res.setHeader("Content-Disposition", `attachment; filename="${filename}"`);
res.send(csv);
}

@Get("/total-copilots")
@ApiOperation({ summary: "Total number of Copilots" })
getTotalCopilots() {
Expand Down
52 changes: 52 additions & 0 deletions src/reports/topcoder/topcoder-reports.service.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,13 @@ import { Injectable } from "@nestjs/common";
import { DbService } from "../../db/db.service";
import { SqlLoaderService } from "../../common/sql-loader.service";

type RegistrantCountriesRow = {
handle: string | null;
email: string | null;
home_country: string | null;
competition_country: string | null;
};

@Injectable()
export class TopcoderReportsService {
constructor(
Expand Down Expand Up @@ -387,4 +394,49 @@ export class TopcoderReportsService {
),
}));
}

async getRegistrantCountriesCsv(challengeId: string) {
const query = this.sql.load("reports/topcoder/registrant-countries.sql");
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ correctness]
Consider adding error handling for the database query to ensure that any issues during the query execution are properly managed and do not cause the application to crash.

const rows = await this.db.query<RegistrantCountriesRow>(query, [
challengeId,
]);
return this.rowsToCsv(rows);
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ correctness]
The rowsToCsv method assumes that the rows parameter will always be an array of RegistrantCountriesRow. Consider adding validation to ensure that the input is as expected to prevent potential runtime errors.

}

private rowsToCsv(rows: RegistrantCountriesRow[]) {
const header = [
"Handle",
"Email",
"Home country",
"Competition country",
];

const lines = [
header.map((value) => this.toCsvCell(value)).join(","),
...rows.map((row) =>
[
row.handle,
row.email,
row.home_country,
row.competition_country,
]
.map((value) => this.toCsvCell(value))
.join(","),
),
];

return lines.join("\n");
}

private toCsvCell(value: string | null | undefined) {
Copy link

@github-actions github-actions bot Oct 30, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[💡 correctness]
The toCsvCell function currently handles null and undefined values by returning an empty string. Ensure that this behavior is consistent with the requirements for CSV generation, as it may lead to data misinterpretation if not handled correctly.

if (value === null || value === undefined) {
return "";
}
const text = String(value);
if (!/[",\r\n]/.test(text)) {
return text;
}
const escaped = text.replace(/"/g, '""');
return `"${escaped}"`;
}
}