Merge pull request #236 from mijinummi/feature/advanced-puzzle-search

feat(puzzles): implement advanced search and filtering API

Author: Mkalbani

src/puzzle/puzzle.controller.ts

@@ -1,51 +1,112 @@
-import { Controller, Post, Body } from '@nestjs/common';
+import {
+  Controller,
+  Post,
+  Get,
+  Body,
+  Query,
+  Req,
+  UseGuards,
+  ValidationPipe,
+} from '@nestjs/common';
+import { Request } from 'express';
+
 import { PuzzleService } from './puzzle.service';
+import { PuzzlesService } from './puzzles.service';
 import { RewardsService } from '../rewards/rewards.service';
 import { NFTService } from '../nft/nft.service';
 
-@Controller('puzzle')
+import { JwtAuthGuard } from '../auth/guards/jwt-auth.guard';
+import { PuzzleSearchParams } from './puzzles.repository';
+
+interface AuthRequest extends Request {
+  user: {
+    id: string;
+  };
+}
+
+@Controller('puzzles')
+@UseGuards(JwtAuthGuard)
 export class PuzzleController {
   constructor(
     private readonly puzzleService: PuzzleService,
+    private readonly puzzlesService: PuzzlesService,
     private readonly rewardsService: RewardsService,
     private readonly nftService: NFTService,
   ) {}
 
+  /**
+   * CREATE PUZZLE
+   */
   @Post('create')
-  async create(@Body() body: { puzzleId: number; solution: string }) {
+  async create(
+    @Body()
+    body: {
+      puzzleId: number;
+      solution: string;
+    },
+  ) {
     return this.puzzleService.createPuzzle(body.puzzleId, body.solution);
   }
 
+  /**
+   * VERIFY SOLUTION + REWARDS + NFT MINT
+   */
   @Post('verify')
-  async verify(@Body() body: { puzzleId: number; solution: string; userAddress: string }) {
+  async verify(
+    @Body()
+    body: {
+      puzzleId: number;
+      solution: string;
+      userAddress: string;
+    },
+  ) {
     const verification = await this.puzzleService.verifySolution(
       body.puzzleId,
       body.solution,
     );
 
-    if (verification.verified) {
-      // Mark puzzle as completed
-      await this.puzzleService.markCompleted(body.puzzleId, body.userAddress);
+    if (!verification.verified) {
+      return verification;
+    }
 
-      // Distribute token rewards
-      const rewardResult = await this.rewardsService.distributeReward(body.userAddress, 100);
+    // mark completion
+    await this.puzzleService.markCompleted(
+      body.puzzleId,
+      body.userAddress,
+    );
 
-      // Mint NFT as achievement
-      const nftResult = await this.nftService.mintNFT(
+    // rewards distribution
+    const rewardResult =
+      await this.rewardsService.distributeReward(
         body.userAddress,
-        Date.now(),
-        `ipfs://puzzle-${body.puzzleId}-achievement`,
+        100,
       );
 
-      return {
-        ...verification,
-        rewardDistributed: rewardResult.success,
-        rewardTransactionHash: rewardResult.transactionHash,
-        nftMinted: nftResult.success,
-        nftTransactionHash: nftResult.transactionHash,
-      };
-    }
+    // NFT minting
+    const nftResult = await this.nftService.mintNFT(
+      body.userAddress,
+      Date.now(),
+      `ipfs://puzzle-${body.puzzleId}-achievement`,
+    );
 
-    return verification;
+    return {
+      ...verification,
+      rewardDistributed: rewardResult.success,
+      rewardTransactionHash: rewardResult.transactionHash,
+      nftMinted: nftResult.success,
+      nftTransactionHash: nftResult.transactionHash,
+    };
   }
-}
+
+  /**
+   * SEARCH PUZZLES (from repository-based system)
+   */
+  @Get('search')
+  async search(
+    @Query(new ValidationPipe({ transform: true }))
+    query: PuzzleSearchParams,
+    @Req() req: AuthRequest,
+  ) {
+    return this.puzzlesService.search(query, req.user.id);
+  }
+}

src/puzzle/puzzles.repository.ts

@@ -0,0 +1,143 @@
+import { Injectable } from '@nestjs/common';
+import { InjectRepository } from '@nestjs/typeorm';
+import { Repository } from 'typeorm';
+import { PuzzleEntity } from './entities/puzzle.entity';
+
+export interface PuzzleSearchParams {
+  q?: string;
+  type?: string;
+  difficulty_min?: number | string;
+  difficulty_max?: number | string;
+  tags?: string;
+  author?: string;
+  status?: 'completed' | 'in-progress' | 'not-started';
+  sortBy?: string;
+  order?: 'ASC' | 'DESC';
+  page?: number | string;
+  limit?: number | string;
+}
+
+@Injectable()
+export class PuzzlesRepository {
+  constructor(
+    @InjectRepository(PuzzleEntity)
+    private readonly repo: Repository<PuzzleEntity>,
+  ) {}
+
+  async search(params: PuzzleSearchParams, userId: string) {
+    const qb = this.repo.createQueryBuilder('puzzle');
+
+    /**
+     * FULL TEXT SEARCH (Postgres)
+     * NOTE: ensure GIN index exists on tsvector expression for performance
+     */
+    if (params.q?.trim()) {
+      qb.andWhere(
+        `to_tsvector('english', puzzle.title || ' ' || puzzle.description)
+         @@ plainto_tsquery(:q)`,
+        { q: params.q.trim() },
+      );
+    }
+
+    // Type filter
+    if (params.type) {
+      qb.andWhere('puzzle.type = :type', { type: params.type });
+    }
+
+    // Difficulty range (safe numeric coercion)
+    if (params.difficulty_min !== undefined) {
+      qb.andWhere('puzzle.difficulty >= :min', {
+        min: Number(params.difficulty_min),
+      });
+    }
+
+    if (params.difficulty_max !== undefined) {
+      qb.andWhere('puzzle.difficulty <= :max', {
+        max: Number(params.difficulty_max),
+      });
+    }
+
+    // Tags (AND logic)
+    if (params.tags?.trim()) {
+      const tags = params.tags
+        .split(',')
+        .map((t) => t.trim())
+        .filter(Boolean);
+
+      tags.forEach((tag, idx) => {
+        qb.andWhere(`:tag${idx} = ANY(puzzle.tags)`, {
+          [`tag${idx}`]: tag,
+        });
+      });
+    }
+
+    // Author filter
+    if (params.author) {
+      qb.andWhere('puzzle.authorId = :author', {
+        author: params.author,
+      });
+    }
+
+    /**
+     * USER PROGRESS JOIN (only when needed)
+     */
+    if (params.status) {
+      qb.leftJoin(
+        'puzzle.progress',
+        'progress',
+        'progress.userId = :userId',
+        { userId },
+      );
+
+      if (params.status === 'completed') {
+        qb.andWhere('progress.completed = true');
+      }
+
+      if (params.status === 'in-progress') {
+        qb.andWhere('progress.started = true AND progress.completed = false');
+      }
+
+      if (params.status === 'not-started') {
+        qb.andWhere('progress.id IS NULL');
+      }
+    }
+
+    /**
+     * SORTING (whitelist recommended to prevent SQL injection)
+     */
+    const allowedSortFields = new Set([
+      'createdAt',
+      'difficulty',
+      'title',
+    ]);
+
+    const sortBy = allowedSortFields.has(params.sortBy ?? '')
+      ? params.sortBy!
+      : 'createdAt';
+
+    const order =
+      params.order?.toUpperCase() === 'ASC' ? 'ASC' : 'DESC';
+
+    qb.orderBy(`puzzle.${sortBy}`, order);
+
+    /**
+     * PAGINATION (safe defaults)
+     */
+    const page = Math.max(parseInt(String(params.page || '1'), 10), 1);
+    const limit = Math.min(
+      Math.max(parseInt(String(params.limit || '20'), 10), 1),
+      100,
+    );
+
+    qb.skip((page - 1) * limit).take(limit);
+
+    const [data, total] = await qb.getManyAndCount();
+
+    return {
+      total,
+      page,
+      limit,
+      data,
+    };
+  }
+}

src/puzzle/puzzles.service.spec.ts

@@ -0,0 +1,95 @@
+import { Test, TestingModule } from '@nestjs/testing';
+import { PuzzlesService } from './puzzles.service';
+import { PuzzlesRepository } from './puzzles.repository';
+
+describe('PuzzlesService.search', () => {
+  let service: PuzzlesService;
+
+  const repoMock = {
+    search: jest.fn(),
+  };
+
+  beforeEach(async () => {
+    const module: TestingModule = await Test.createTestingModule({
+      providers: [
+        PuzzlesService,
+        {
+          provide: PuzzlesRepository,
+          useValue: repoMock,
+        },
+      ],
+    }).compile();
+
+    service = module.get<PuzzlesService>(PuzzlesService);
+  });
+
+  afterEach(() => {
+    jest.clearAllMocks();
+  });
+
+  it('should perform full-text search', async () => {
+    repoMock.search.mockResolvedValue({
+      data: [{ id: 1, difficulty: 3, tags: ['logic', 'math'] }],
+      page: 1,
+      limit: 20,
+      total: 1,
+    });
+
+    const result = await service.search({ q: 'logic puzzle' }, 'user1');
+
+    expect(result.data.length).toBeGreaterThan(0);
+  });
+
+  it('should filter by difficulty range', async () => {
+    repoMock.search.mockResolvedValue({
+      data: [{ difficulty: 3, tags: [] }],
+      page: 1,
+      limit: 20,
+      total: 1,
+    });
+
+    const result = await service.search(
+      { difficulty_min: 2, difficulty_max: 4 },
+      'user1',
+    );
+
+    result.data.forEach((p) => {
+      expect(p.difficulty).toBeGreaterThanOrEqual(2);
+      expect(p.difficulty).toBeLessThanOrEqual(4);
+    });
+  });
+
+  it('should filter by tags AND logic', async () => {
+    repoMock.search.mockResolvedValue({
+      data: [{ tags: ['math', 'algebra'] }],
+      page: 1,
+      limit: 20,
+      total: 1,
+    });
+
+    const result = await service.search(
+      { tags: 'math,algebra' },
+      'user1',
+    );
+
+    result.data.forEach((p) => {
+      expect(p.tags).toEqual(
+        expect.arrayContaining(['math', 'algebra']),
+      );
+    });
+  });
+
+  it('should paginate results', async () => {
+    repoMock.search.mockResolvedValue({
+      data: [],
+      page: 2,
+      limit: 10,
+      total: 100,
+    });
+
+    const result = await service.search({ page: 2, limit: 10 }, 'user1');
+
+    expect(result.page).toBe(2);
+    expect(result.limit).toBe(10);
+  });
+});