kikootwo
b1492fc32e
Introduce a per-request release blocklist to auto-block permanently failing releases and provide admin management. Changes include: - Database: add BlockedRelease model (blocked_releases) to Prisma schema with unique (requestId, releaseKey) and indexes; documented in backend database docs. - Service & utils: new blocklist.service, release-key and filter helpers for normalization and matching; processors updated to emit auto-blocks (monitor-download, organize-files, search processors, RSS). - HTTP API: add admin endpoints GET/DELETE /api/admin/blocklist, DELETE /api/admin/blocklist/[id], and GET /api/admin/blocklist/by-request/[requestId]. - Admin UI: new /admin/blocklist page and numerous React components (toolbar, filters, table, rows, pagination, skeleton, chips, date picker) with URL-driven state hook and per-row unblock UX. - Tests: add unit/integration tests for service, routes, utils, and updated processor tests. The blocklist is idempotent (upsert), filters search results before ranking (interactive search shows badges only), and admin-only APIs require auth. This commit wires docs, API, DB, frontend and tests for the new feature.
7.4 KiB
Release Blocklist
Status: ✅ Implemented | Per-request, reactive, auto-block + admin manage.
Overview
Releases that fail to download permanently OR fail to organize after retries are added to a per-request blocklist. Future searches for that request skip them. Admins manage via /admin/blocklist.
Auto-Block Triggers
- Organize failure — final
warntransition inorganize-files.processor.ts(aftermax_import_retries). Source:organize_fail. - Download failure —
progressState === 'failed'inmonitor-download.processor.ts(client-reported permanent failure). Source:download_fail. NOT block-worthy: connection-failure exhaustion, download client unreachable, auth failure. - Transient retry paths do NOT block — only terminal failures do.
Search Filter Scope (filters BEFORE ranking)
All three automatic search paths apply the per-request filter:
search-indexers.processor.ts(audiobook search)search-ebook.processor.ts(ebook search)monitor-rss-feeds.processor.ts(RSS auto-grab)- Interactive search is NOT filtered. Admin sees all results; blocked entries get an "Already blocked" badge in the modal.
Match: case-insensitive on normalized release name OR exact on releaseHash (torrentHash for torrents, nzbId for NZBs).
Data Model
Table: blocked_releases (backend/database.md)
Key fields:
requestId— FK toRequest,onDelete: Cascade.releaseName— verbatim, displayed as-is in admin UI.releaseKey— normalized (trim().toLowerCase()), used for matching.releaseHash— unifiestorrentHash/nzbId.source—'organize_fail' | 'download_fail' | 'manual'(manual reserved for v2).reason— short human-readable (e.g. "No audiobook files found").reasonDetail— longer client error (SABfailMessage, NZBGet par/unpack codes).downloadHistoryId— traceability link.jobId— forJobEventfiltering.
Unique constraint: (requestId, releaseKey) — idempotent upsert under concurrent writes.
Delete behavior:
- Soft-delete of request → blocklist rows survive (no cascade).
- Hard-delete of request → blocklist rows wiped via
onDelete: Cascade.
Service API
File: src/lib/services/blocklist.service.ts
addAutoBlock(input)— idempotent upsert; never throws; emitsJobEvent(contextBlocklist.AutoBlock).isReleaseBlocked(requestId, name, hash?)— match-check used by search filters.getBlocklistForRequest(requestId)— list, newest first; powers chip + interactive-search badge.removeBlock(id)— single unblock.clearBlocklist(where)— filter-scoped bulk delete, returns{ count }.
HTTP API
Auth: all endpoints require requireAuth + requireAdmin.
| Method | Path | Purpose |
|---|---|---|
| GET | /api/admin/blocklist |
Paginated list with filters + sort |
| DELETE | /api/admin/blocklist?… |
Filter-scoped bulk clear (same filter params as GET) |
| DELETE | /api/admin/blocklist/[id] |
Single unblock |
| GET | /api/admin/blocklist/by-request/[requestId] |
Lightweight per-request lookup (chip + badge) |
GET /api/admin/blocklist
Query params: requestId, source, search (contains-OR over releaseName+reason, case-insensitive), dateFrom, dateTo, page, limit (25/50/100), sortBy (createdAt|releaseName|reason), sortOrder (asc|desc).
Response: { entries: BlockedReleaseRow[], pagination: { page, limit, total, totalPages } }. Each entries row includes the joined request.audiobook + request.user for display and request.deletedAt for the "(deleted)" badge.
DELETE /api/admin/blocklist
Filter-scoped — passes the same query params used for the GET. Returns { count }. UI gates with a typed-token modal ("CLEAR"); auth/role is the server-side security boundary.
GET /api/admin/blocklist/by-request/[requestId]
Returns { entries: BlockedRelease[], count }. No pagination (per-request blocklists are small).
buildBlocklistWhere(params) is exported pure for tests + reuse by DELETE.
Admin UI
Page: /admin/blocklist (src/app/admin/blocklist/page.tsx)
Mirrors /admin/logs patterns: URL ↔ state via useBlocklistUrlState, SWR with keepPreviousData, sticky toolbar + filter row + chip strip + table + pagination.
- Columns: Release name (verbatim), Reason (+ expand chevron for detail), Source badge, Associated request (title + author + user, with "(deleted)" badge if soft-deleted), Indexer, Blocked at (relative; title attribute = absolute), Actions.
- Per-row Unblock: real
<button>, optimistic update, toast on success/failure. - Filters: Source dropdown, Date range (shared with logs preset list), free-text search.
- Sort: clickable column headers on Release name / Reason / Blocked at; URL-driven; persists in shareable link.
- Bulk Clear (
Clear filtered (N)orClear all (N)): opens a typed-token confirmation modal. Button label adapts to active filter state. - Empty states: "fresh" / "filters-too-tight" / "search-no-match" — pure function of
{ total, hasFilters, hasSearch }.
Nav entry: Quick Actions tile on the admin dashboard (src/app/admin/page.tsx).
Request Detail Chip
Component: BlockedReleasesChip (src/app/admin/components/BlockedReleasesChip.tsx)
Rendered in the title cell of each request row in RecentRequestsTable when blockedCount > 0. Real <button> with explicit chevron — no surprise expansion. Click opens a portal-anchored popover that lazy-loads GET /api/admin/blocklist/by-request/[requestId] and lists each blocked release with a per-row Unblock button.
The _count.blockedReleases aggregate is included in the existing /api/admin/requests response as an additive field.
Interactive Search Badge
When the admin opens InteractiveTorrentSearchModal for a request, the modal fetches the per-request blocklist (admin-only — non-admin gets 403, no badge). Each result row is checked against the lookup (normalized name OR infoHash). Matches render an amber "Already blocked — <reason>" chip inline. Interactive search results are not filtered — admin sees the full picture.
Test Coverage
tests/utils/release-key.test.ts— normalization rules.tests/services/blocklist.service.test.ts— upsert idempotency, lookup match, JobEvent emission.tests/processors/*— auto-block triggers + filter coverage on each search path.tests/api/admin-blocklist.routes.test.ts— auth gate, where composition, single + bulk DELETE, by-request GET, sort/pagination/limit clamp.
UX Rules Honored
- Intentional affordances — every tappable element is a real
<button>/<a>with hover/focus treatment; expand-rows show an explicit chevron. - Source data stays true — release names render verbatim. Chips/badges add context (source, reason, "blocked"), they never replace the original string.
Out of Scope (v2)
- Global (cross-request) blocklist + per-block toggle UI.
- Manual proactive admin block.
- Requester-facing UI surface.
- Auto-expiration / TTL.
- Zero-seeder torrents as a block trigger.
- Indexer-side push (Prowlarr blocklist API).
Related
- Database schema
- Search processors
- Admin dashboard
- Request deletion — interaction with hard/soft delete cascade.