appwrite/src/Appwrite/Advisor/Validator/CTAs.php

<?php

namespace Appwrite\Advisor\Validator;

use Utopia\Validator;

class CTAs extends Validator
{
    public const MAX_COUNT_DEFAULT = 16;

    protected string $message = 'Value must be an array of CTA descriptors. Each entry must define `label`, `service`, `method`, and an optional `params` object.';
    protected array $allowedServices;
    protected array $allowedMethods;

    public function __construct(
        protected int $maxCount = self::MAX_COUNT_DEFAULT,
        ?array $allowedServices = null,
        ?array $allowedMethods = null,
    ) {
        $this->allowedServices = $allowedServices ?? ADVISOR_CTA_SERVICES;
        $this->allowedMethods = $allowedMethods ?? ADVISOR_CTA_METHODS;
    }

    public function getDescription(): string
    {
        return $this->message;
    }

    public function isArray(): bool
    {
        return true;
    }

    public function getType(): string
    {
        return self::TYPE_ARRAY;
    }

    public function isValid($value): bool
    {
        if (!\is_array($value)) {
            return false;
        }

        if (\count($value) > $this->maxCount) {
            $this->message = "A maximum of {$this->maxCount} CTAs are allowed per insight.";
            return false;
        }

        foreach ($value as $entry) {
            if (!\is_array($entry)) {
                return false;
            }

            $maxLengths = ['label' => 256, 'service' => 64, 'method' => 64];
            foreach ($maxLengths as $required => $maxLength) {
                if (!isset($entry[$required]) || !\is_string($entry[$required]) || $entry[$required] === '') {
                    return false;
                }
                if (\strlen($entry[$required]) > $maxLength) {
                    $this->message = "CTA `{$required}` must not exceed {$maxLength} characters.";
                    return false;
                }
            }

            if (!empty($this->allowedServices) && !\in_array($entry['service'], $this->allowedServices, true)) {
                $this->message = "CTA `service` must be one of: " . \implode(', ', $this->allowedServices) . '.';
                return false;
            }

            if (!empty($this->allowedMethods) && !\in_array($entry['method'], $this->allowedMethods, true)) {
                $this->message = "CTA `method` must be one of: " . \implode(', ', $this->allowedMethods) . '.';
                return false;
            }

            if (isset($entry['params']) && !\is_array($entry['params']) && !\is_object($entry['params'])) {
                return false;
            }
        }

        return true;
    }
}
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`<?php`

refactor(advisor): rename module to Advisor (service-named, top-level) The module's namespace and directory now match the top-level service name (`advisor`) instead of one of its resource names (`insights`): - src/Appwrite/Platform/Modules/Insights -> .../Modules/Advisor - src/Appwrite/Insights -> src/Appwrite/Advisor - tests/unit/Insights -> tests/unit/Advisor - Route group label flipped from `'insights'` to `'advisor'` - Section-header comments aligned Resource names (`insights`, `reports`, `insightCTAs`) and the `Insight*`/`Report` response models stay — those are the resources the service exposes, not the service itself. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-11 11:40:06 +00:00			`namespace Appwrite\Advisor\Validator;`
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00
			`use Utopia\Validator;`

refactor(insights): capitalise CTA acronym in identifiers Project-specific override of the default camelCase-acronyms convention: namespaces, class names, file paths, and SDK method names use `CTA` in all caps. Touches all insights surfaces — directories, response models, validators, container resource keys, and SDK method names like `createInsightCTAExecution`. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-01 02:27:45 +00:00			`class CTAs extends Validator`
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`{`
refactor(insights): metadata-only CTAs, platform DB, reports parent Address review feedback on PR #12194: - Pivot CTAs to pure descriptors (id/label/action/params). Drop the server-side execution layer: Action interface, registry, the databases.indexes.create CTA action, the params validator, the /v1/insights/:id/ctas/:id/executions endpoint, the InsightCTAExecution model, the INSIGHT_CTA_* errors, and the corresponding events. The console invokes the existing public API directly with the descriptor's action + params. - Restore Databases\Indexes\Action.php to its pre-CTA shape and inline the index-create body back into Create.php (the createIndex helper was added solely for CTA reuse). - Move insights collection from project DB to platform DB and add a parent reports collection alongside it. Insights carry projectId / projectInternalId for tenant scoping and an optional reportId for grouping. List endpoints filter by projectInternalId; Get/Update/ Delete also enforce project ownership before touching the document. - New Reports module with full CRUD (Create/Get/XList/Update/Delete), Report response model, Reports query validator, REPORT_NOT_FOUND / REPORT_ALREADY_EXISTS errors, reports.read / reports.write scopes, and reports.* event tree. Delete cascades to child insights. - Update.php now mutates the loaded document via setAttribute (instead of passing a partial new Document), reuses CTAsValidator (instead of the looser ArrayList<JSON> + isset check), and rejects duplicate CTA ids. - Create.php enforces unique CTA ids during normalization. - CTAsValidator gained a configurable maxCount (default 16) so the Create path matches the Update path and the DB column size, and oversized payloads return a clean 400. - Validator\Queries\Insights adds status and reportId to ALLOWED_ATTRIBUTES so dismissal / report workflows are filterable. - Realtime channel parser guards $parts[1] for both insights and reports event names. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-06 01:46:07 +00:00			`public const MAX_COUNT_DEFAULT = 16;`

refactor(insights): drop CTA `key` field `key` was a leftover from when CTAs were embedded JSON — there's no remaining reason to require analyzers to invent a within-insight identifier. The execution layer is gone (no `cta.key` event format), insights are immutable from the user side (analyzers re-ingest by delete + recreate, so idempotent matching never happens), and `label` already covers human-facing identification. The console can group/sort CTAs by `service`+`method` if needed. - Schema: drop `key` attribute and the UNIQUE `(insightInternalId, key)` index from insightCTAs. Required fields are now `label`, `service`, `method` (+ optional `params`). - Validator no longer requires `key`. Drop the dup-key normalization loop in the manager Create endpoint — there's no semantic uniqueness to enforce. - Response model: `InsightCTA` keeps `$id` + standard headers, `insightId` backref, and the four functional fields. - E2E: drop sampleCTA's `$key` parameter, drop the testCreateRejectsDuplicateCTAIds test entirely, rename empty-fields test to testCreateRejectsCTAWithEmptyLabel and update the missing- fields tests to drop `key` from their payloads. - Unit tests rewritten to drop `key`. - Comment on the `insights.ctas` virtual attribute updated to reference the renamed `insightCTAs` collection. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-06 06:29:40 +00:00			protected string $message = 'Value must be an array of CTA descriptors. Each entry must define `label`, `service`, `method`, and an optional `params` object.';
(fix): address greptile P1 review comments - Add skipFilters to Reports/Get.php (was the only endpoint still triggering the full N+1 subquery cascade) - Scale CTA batch limit dynamically (insightCount * MAX_CTA_COUNT) instead of fixed APP_LIMIT_SUBQUERY to prevent silent truncation - Revert deleteReport to callback-based pagination so CTAs are not orphaned when a report has more than APP_LIMIT_SUBQUERY insights - Add explicit prefix lengths (700) to _key_project_resource and _key_project_parent_resource indexes to stay under InnoDB 3072-byte limit - Validate CTA service/method against ADVISOR_CTA_SERVICES and ADVISOR_CTA_METHODS enums in the CTAs validator Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-05-12 13:42:59 +00:00			`protected array $allowedServices;`
			`protected array $allowedMethods;`
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00
(fix): address greptile P1 review comments - Add skipFilters to Reports/Get.php (was the only endpoint still triggering the full N+1 subquery cascade) - Scale CTA batch limit dynamically (insightCount * MAX_CTA_COUNT) instead of fixed APP_LIMIT_SUBQUERY to prevent silent truncation - Revert deleteReport to callback-based pagination so CTAs are not orphaned when a report has more than APP_LIMIT_SUBQUERY insights - Add explicit prefix lengths (700) to _key_project_resource and _key_project_parent_resource indexes to stay under InnoDB 3072-byte limit - Validate CTA service/method against ADVISOR_CTA_SERVICES and ADVISOR_CTA_METHODS enums in the CTAs validator Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-05-12 13:42:59 +00:00			`public function __construct(`
			`protected int $maxCount = self::MAX_COUNT_DEFAULT,`
			`?array $allowedServices = null,`
			`?array $allowedMethods = null,`
			`) {`
			`$this->allowedServices = $allowedServices ?? ADVISOR_CTA_SERVICES;`
			`$this->allowedMethods = $allowedMethods ?? ADVISOR_CTA_METHODS;`
refactor(insights): metadata-only CTAs, platform DB, reports parent Address review feedback on PR #12194: - Pivot CTAs to pure descriptors (id/label/action/params). Drop the server-side execution layer: Action interface, registry, the databases.indexes.create CTA action, the params validator, the /v1/insights/:id/ctas/:id/executions endpoint, the InsightCTAExecution model, the INSIGHT_CTA_* errors, and the corresponding events. The console invokes the existing public API directly with the descriptor's action + params. - Restore Databases\Indexes\Action.php to its pre-CTA shape and inline the index-create body back into Create.php (the createIndex helper was added solely for CTA reuse). - Move insights collection from project DB to platform DB and add a parent reports collection alongside it. Insights carry projectId / projectInternalId for tenant scoping and an optional reportId for grouping. List endpoints filter by projectInternalId; Get/Update/ Delete also enforce project ownership before touching the document. - New Reports module with full CRUD (Create/Get/XList/Update/Delete), Report response model, Reports query validator, REPORT_NOT_FOUND / REPORT_ALREADY_EXISTS errors, reports.read / reports.write scopes, and reports.* event tree. Delete cascades to child insights. - Update.php now mutates the loaded document via setAttribute (instead of passing a partial new Document), reuses CTAsValidator (instead of the looser ArrayList<JSON> + isset check), and rejects duplicate CTA ids. - Create.php enforces unique CTA ids during normalization. - CTAsValidator gained a configurable maxCount (default 16) so the Create path matches the Update path and the DB column size, and oversized payloads return a clean 400. - Validator\Queries\Insights adds status and reportId to ALLOWED_ATTRIBUTES so dismissal / report workflows are filterable. - Realtime channel parser guards $parts[1] for both insights and reports event names. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-06 01:46:07 +00:00			`}`

refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`public function getDescription(): string`
			`{`
			`return $this->message;`
			`}`

			`public function isArray(): bool`
			`{`
			`return true;`
			`}`

			`public function getType(): string`
			`{`
			`return self::TYPE_ARRAY;`
			`}`

			`public function isValid($value): bool`
			`{`
			`if (!\is_array($value)) {`
			`return false;`
			`}`

refactor(insights): metadata-only CTAs, platform DB, reports parent Address review feedback on PR #12194: - Pivot CTAs to pure descriptors (id/label/action/params). Drop the server-side execution layer: Action interface, registry, the databases.indexes.create CTA action, the params validator, the /v1/insights/:id/ctas/:id/executions endpoint, the InsightCTAExecution model, the INSIGHT_CTA_* errors, and the corresponding events. The console invokes the existing public API directly with the descriptor's action + params. - Restore Databases\Indexes\Action.php to its pre-CTA shape and inline the index-create body back into Create.php (the createIndex helper was added solely for CTA reuse). - Move insights collection from project DB to platform DB and add a parent reports collection alongside it. Insights carry projectId / projectInternalId for tenant scoping and an optional reportId for grouping. List endpoints filter by projectInternalId; Get/Update/ Delete also enforce project ownership before touching the document. - New Reports module with full CRUD (Create/Get/XList/Update/Delete), Report response model, Reports query validator, REPORT_NOT_FOUND / REPORT_ALREADY_EXISTS errors, reports.read / reports.write scopes, and reports.* event tree. Delete cascades to child insights. - Update.php now mutates the loaded document via setAttribute (instead of passing a partial new Document), reuses CTAsValidator (instead of the looser ArrayList<JSON> + isset check), and rejects duplicate CTA ids. - Create.php enforces unique CTA ids during normalization. - CTAsValidator gained a configurable maxCount (default 16) so the Create path matches the Update path and the DB column size, and oversized payloads return a clean 400. - Validator\Queries\Insights adds status and reportId to ALLOWED_ATTRIBUTES so dismissal / report workflows are filterable. - Realtime channel parser guards $parts[1] for both insights and reports event names. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> 2026-05-06 01:46:07 +00:00			`if (\count($value) > $this->maxCount) {`
			`$this->message = "A maximum of {$this->maxCount} CTAs are allowed per insight.";`
			`return false;`
			`}`

refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`foreach ($value as $entry) {`
			`if (!\is_array($entry)) {`
			`return false;`
			`}`

Update src/Appwrite/Insights/Validator/CTAs.php Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com> 2026-05-09 00:06:09 +00:00			`$maxLengths = ['label' => 256, 'service' => 64, 'method' => 64];`
			`foreach ($maxLengths as $required => $maxLength) {`
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`if (!isset($entry[$required]) \|\| !\is_string($entry[$required]) \|\| $entry[$required] === '') {`
			`return false;`
			`}`
Update src/Appwrite/Insights/Validator/CTAs.php Co-authored-by: greptile-apps[bot] <165735046+greptile-apps[bot]@users.noreply.github.com> 2026-05-09 00:06:09 +00:00			`if (\strlen($entry[$required]) > $maxLength) {`
			$this->message = "CTA `{$required}` must not exceed {$maxLength} characters.";
			`return false;`
			`}`
refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`}`

(fix): address greptile P1 review comments - Add skipFilters to Reports/Get.php (was the only endpoint still triggering the full N+1 subquery cascade) - Scale CTA batch limit dynamically (insightCount * MAX_CTA_COUNT) instead of fixed APP_LIMIT_SUBQUERY to prevent silent truncation - Revert deleteReport to callback-based pagination so CTAs are not orphaned when a report has more than APP_LIMIT_SUBQUERY insights - Add explicit prefix lengths (700) to _key_project_resource and _key_project_parent_resource indexes to stay under InnoDB 3072-byte limit - Validate CTA service/method against ADVISOR_CTA_SERVICES and ADVISOR_CTA_METHODS enums in the CTAs validator Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> 2026-05-12 13:42:59 +00:00			`if (!empty($this->allowedServices) && !\in_array($entry['service'], $this->allowedServices, true)) {`
			$this->message = "CTA `service` must be one of: " . \implode(', ', $this->allowedServices) . '.';
			`return false;`
			`}`

			`if (!empty($this->allowedMethods) && !\in_array($entry['method'], $this->allowedMethods, true)) {`
			$this->message = "CTA `method` must be one of: " . \implode(', ', $this->allowedMethods) . '.';
			`return false;`
			`}`

refactor(insights): use Utopia Platform Action and Registry Replace the bespoke CtaAction/Registry with Utopia\Platform\Action and Utopia\Registry\Registry. Implement DatabasesCreateIndex with the full createDocument('indexes') + queue path used by the existing indexes endpoint, validated via a dedicated Utopia validator. Drop the obsolete unit tests (custom-Action contract) in favor of validator-focused tests. 2026-05-01 01:40:27 +00:00			`if (isset($entry['params']) && !\is_array($entry['params']) && !\is_object($entry['params'])) {`
			`return false;`
			`}`
			`}`

			`return true;`
			`}`
			`}`