fix[BE]: validate query page/limit defaults and add exists helpers

2026-05-20 05:21:57 +00:00 · 2025-10-23 22:00:55 +07:00
parent 1b02b660b9
commit 79b3dd47b8
19 changed files with 105 additions and 1 deletions
@@ -2,6 +2,7 @@ package repository

 import (
 	"context"
+	"fmt"

 	"gorm.io/gorm"
 )
@@ -32,3 +33,21 @@ func ExistsByName[T any](ctx context.Context, db *gorm.DB, name string, excludeI
 	}
 	return count > 0, nil
 }
+
+func ExistsByField[T any](ctx context.Context, db *gorm.DB, field string, value any, excludeID *uint) (bool, error) {
+	if field == "" {
+		return false, fmt.Errorf("field is required")
+	}
+	var count int64
+	q := db.WithContext(ctx).
+		Model(new(T)).
+		Where(fmt.Sprintf("%s = ?", field), value).
+		Where("deleted_at IS NULL")
+	if excludeID != nil {
+		q = q.Where("id <> ?", *excludeID)
+	}
+	if err := q.Count(&count).Error; err != nil {
+		return false, err
+	}
+	return count > 0, nil
+}
@@ -29,6 +29,10 @@ func (u *AreaController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.AreaService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *BankController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.BankService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -11,6 +11,7 @@ import (
 type BankRepository interface {
 	repository.BaseRepository[entity.Bank]
 	NameExists(ctx context.Context, name string, excludeID *uint) (bool, error)
+	AccountNumberExists(ctx context.Context, accountNumber string, excludeID *uint) (bool, error)
 }

 type BankRepositoryImpl struct {
@@ -28,3 +29,7 @@ func NewBankRepository(db *gorm.DB) BankRepository {
 func (r *BankRepositoryImpl) NameExists(ctx context.Context, name string, excludeID *uint) (bool, error) {
 	return repository.ExistsByName[entity.Bank](ctx, r.db, name, excludeID)
 }
+
+func (r *BankRepositoryImpl) AccountNumberExists(ctx context.Context, accountNumber string, excludeID *uint) (bool, error) {
+	return repository.ExistsByField[entity.Bank](ctx, r.db, "account_number", accountNumber, excludeID)
+}
@@ -87,6 +87,13 @@ func (s *bankService) CreateOne(c *fiber.Ctx, req *validation.Create) (*entity.B
 		return nil, fiber.NewError(fiber.StatusConflict, fmt.Sprintf("Bank with name %s already exists", req.Name))
 	}

+	if exists, err := s.Repository.AccountNumberExists(c.Context(), req.AccountNumber, nil); err != nil {
+		s.Log.Errorf("Failed to check bank account number: %+v", err)
+		return nil, fiber.NewError(fiber.StatusInternalServerError, "Failed to check bank account number")
+	} else if exists {
+		return nil, fiber.NewError(fiber.StatusConflict, fmt.Sprintf("Bank with account number %s already exists", req.AccountNumber))
+	}
+
 	createBody := &entity.Bank{
 		Name:          req.Name,
 		Alias:         req.Alias,
@@ -29,6 +29,10 @@ func (u *CustomerController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.CustomerService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *FcrController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.FcrService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *FlockController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.FlockService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -31,6 +31,10 @@ func (u *KandangController) GetAll(c *fiber.Ctx) error {
 		PicId:      c.QueryInt("pic_id", 0),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.KandangService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -30,6 +30,10 @@ func (u *LocationController) GetAll(c *fiber.Ctx) error {
 		AreaId: c.QueryInt("area_id", 0),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.LocationService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *NonstockController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.NonstockService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *ProductCategoryController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.ProductCategoryService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -30,6 +30,10 @@ func (u *ProductController) GetAll(c *fiber.Ctx) error {
 		ProductCategoryID: c.QueryInt("product_category_id", 0),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.ProductService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *SupplierController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.SupplierService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -11,7 +11,7 @@ import (
 type SupplierRepository interface {
 	repository.BaseRepository[entity.Supplier]
 	NameExists(ctx context.Context, name string, excludeID *uint) (bool, error)
-	
+	AliasExists(ctx context.Context, alias string, excludeID *uint) (bool, error)
 }

 type SupplierRepositoryImpl struct {
@@ -29,3 +29,7 @@ func NewSupplierRepository(db *gorm.DB) SupplierRepository {
 func (r *SupplierRepositoryImpl) NameExists(ctx context.Context, name string, excludeID *uint) (bool, error) {
 	return repository.ExistsByName[entity.Supplier](ctx, r.db, name, excludeID)
 }
+
+func (r *SupplierRepositoryImpl) AliasExists(ctx context.Context, alias string, excludeID *uint) (bool, error) {
+	return repository.ExistsByField[entity.Supplier](ctx, r.db, "alias", alias, excludeID)
+}
@@ -88,6 +88,13 @@ func (s *supplierService) CreateOne(c *fiber.Ctx, req *validation.Create) (*enti
 		return nil, fiber.NewError(fiber.StatusConflict, fmt.Sprintf("Supplier with name %s already exists", req.Name))
 	}

+	if exists, err := s.Repository.AliasExists(c.Context(), strings.TrimSpace(strings.ToUpper(req.Alias)), nil); err != nil {
+		s.Log.Errorf("Failed to check supplier alias: %+v", err)
+		return nil, fiber.NewError(fiber.StatusInternalServerError, "Failed to check supplier alias")
+	} else if exists {
+		return nil, fiber.NewError(fiber.StatusConflict, fmt.Sprintf("Supplier with alias %s already exists", strings.TrimSpace(strings.ToUpper(req.Alias))))
+	}
+
 	typ := strings.ToUpper(req.Type)
 	if !utils.IsValidCustomerSupplierType(typ) {
 		return nil, fiber.NewError(fiber.StatusBadRequest, "Invalid supplier type")
@@ -143,6 +150,12 @@ func (s supplierService) UpdateOne(c *fiber.Ctx, req *validation.Update, id uint
 	}

 	if req.Alias != nil {
+		if exists, err := s.Repository.AliasExists(c.Context(), strings.TrimSpace(strings.ToUpper(*req.Alias)), &id); err != nil {
+			s.Log.Errorf("Failed to check supplier alias: %+v", err)
+			return nil, fiber.NewError(fiber.StatusInternalServerError, "Failed to check supplier alias")
+		} else if exists {
+			return nil, fiber.NewError(fiber.StatusConflict, fmt.Sprintf("Supplier with alias %s already exists", strings.TrimSpace(strings.ToUpper(*req.Alias))))
+		}
 		updateBody["alias"] = strings.TrimSpace(strings.ToUpper(*req.Alias))
 	}

@@ -29,6 +29,10 @@ func (u *UomController) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.UomService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -30,6 +30,10 @@ func (u *WarehouseController) GetAll(c *fiber.Ctx) error {
 		AreaId: c.QueryInt("area_id", 0),
 	}

+	if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.WarehouseService.GetAll(c, query)
 	if err != nil {
 		return err
@@ -29,6 +29,10 @@ func (u *{{Pascal .Entity}}Controller) GetAll(c *fiber.Ctx) error {
 		Search: c.Query("search", ""),
 	}

+		if query.Page < 1 || query.Limit < 1 {
+		return fiber.NewError(fiber.StatusBadRequest, "page and limit must be greater than 0")
+	}
+
 	result, totalResults, err := u.{{Pascal .Entity}}Service.GetAll(c, query)
 	if err != nil {
 		return err