updated from develop

Author: hentrymartin

.circleci/config.yml

@@ -75,7 +75,8 @@ workflows:
                           only:
                               - develop
                               - feat/ai-workflows
-                              - pm-1782
+                              - pm-1792
+
 
             - 'build-prod':
                   context: org-global

prisma/challenge-schema.prisma

@@ -1,4 +1,4 @@
-// Prisma client for Challenge DB (subset used for counters)
+// Prisma client for Challenge DB (subset used for counters and read-only projections)
 
 generator client {
   provider      = "prisma-client-js"
@@ -12,10 +12,77 @@ datasource db {
   url      = env("CHALLENGE_DB_URL")
 }
 
-// Minimal challenge model shape to increment/decrement counters
+enum ChallengeStatusEnum {
+  NEW
+  DRAFT
+  APPROVED
+  ACTIVE
+  COMPLETED
+  DELETED
+  CANCELLED
+  CANCELLED_FAILED_REVIEW
+  CANCELLED_FAILED_SCREENING
+  CANCELLED_ZERO_SUBMISSIONS
+  CANCELLED_WINNER_UNRESPONSIVE
+  CANCELLED_CLIENT_REQUEST
+  CANCELLED_REQUIREMENTS_INFEASIBLE
+  CANCELLED_ZERO_REGISTRATIONS
+  CANCELLED_PAYMENT_FAILED
+}
+
+enum ReviewOpportunityTypeEnum {
+  REGULAR_REVIEW
+  COMPONENT_DEV_REVIEW
+  SPEC_REVIEW
+  ITERATIVE_REVIEW
+  SCENARIOS_REVIEW
+}
+
+// Minimal challenge model shape expanded with read-only fields required by Review API
 model Challenge {
-  id                           String @id
-  numOfSubmissions             Int    @default(0)
-  numOfCheckpointSubmissions   Int    @default(0)
+  id                         String                     @id @db.Uuid
+  name                       String
+  status                     ChallengeStatusEnum
+  numOfRegistrants           Int                        @default(0)
+  numOfSubmissions           Int                        @default(0)
+  numOfCheckpointSubmissions Int                        @default(0)
+  submissionEndDate          DateTime?
+
+  // Relations required for summary aggregations
+  phases    ChallengePhase[]
+  reviewers ChallengeReviewer[]
+}
+
+model ChallengePhase {
+  id                 String   @id @db.Uuid
+  challengeId        String   @db.Uuid
+  phaseId            String   @db.Uuid
+  name               String
+  isOpen             Boolean?
+  scheduledStartDate DateTime?
+  scheduledEndDate   DateTime?
+  actualStartDate    DateTime?
+  actualEndDate      DateTime?
+
+  challenge Challenge @relation(fields: [challengeId], references: [id])
+
+  @@index([challengeId])
 }
 
+model ChallengeReviewer {
+  id                  String                 @id @db.Uuid
+  challengeId         String                 @db.Uuid
+  scorecardId         String
+  isMemberReview      Boolean
+  memberReviewerCount Int?
+  phaseId             String                 @db.Uuid
+  basePayment         Float?
+  incrementalPayment  Float?
+  type                ReviewOpportunityTypeEnum?
+  isAIReviewer        Boolean
+
+  challenge Challenge @relation(fields: [challengeId], references: [id])
+
+  @@index([challengeId])
+  @@index([phaseId])
+}

src/api/ai-workflow/ai-workflow.controller.ts

@@ -25,6 +25,7 @@ import {
   CreateAiWorkflowRunItemsDto,
   UpdateAiWorkflowRunDto,
   CreateRunItemCommentDto,
+  UpdateAiWorkflowRunItemDto,
 } from '../../dto/aiWorkflow.dto';
 import { Scopes } from 'src/shared/decorators/scopes.decorator';
 import { UserRole } from 'src/shared/enums/userRole.enum';
@@ -266,6 +267,52 @@ export class AiWorkflowController {
     );
   }
 
+  @Patch('/:workflowId/runs/:runId/items/:itemId')
+  @Scopes(Scope.UpdateWorkflowRun)
+  @Roles(
+    UserRole.Admin,
+    UserRole.Copilot,
+    UserRole.ProjectManager,
+    UserRole.Reviewer,
+    UserRole.Submitter,
+    UserRole.User,
+  )
+  @ApiOperation({ summary: 'Update an AIWorkflowRunItem by id' })
+  @ApiParam({ name: 'workflowId', description: 'The ID of the AI workflow' })
+  @ApiParam({ name: 'runId', description: 'The ID of the AI workflow run' })
+  @ApiParam({
+    name: 'itemId',
+    description: 'The ID of the AI workflow run item',
+  })
+  @ApiBody({
+    description: 'AIWorkflowRunItem update data',
+    type: UpdateAiWorkflowRunItemDto,
+  })
+  @ApiResponse({
+    status: 200,
+    description: 'AIWorkflowRunItem updated successfully.',
+  })
+  @ApiResponse({ status: 400, description: 'Bad Request.' })
+  @ApiResponse({ status: 401, description: 'Unauthorized.' })
+  @ApiResponse({ status: 403, description: 'Forbidden.' })
+  @ApiResponse({ status: 404, description: 'Workflow, Run or Item not found.' })
+  async updateRunItem(
+    @Param('workflowId') workflowId: string,
+    @Param('runId') runId: string,
+    @Param('itemId') itemId: string,
+    @Body(new ValidationPipe({ whitelist: true, transform: true }))
+    patchData: UpdateAiWorkflowRunItemDto,
+    @User() user: JwtUser,
+  ) {
+    return this.aiWorkflowService.updateRunItem(
+      workflowId,
+      runId,
+      itemId,
+      patchData,
+      user,
+    );
+  }
+
   @Get('/:workflowId/runs/:runId/items')
   @Roles(
     UserRole.Admin,

src/api/ai-workflow/ai-workflow.service.ts

@@ -13,6 +13,7 @@ import {
   CreateRunItemCommentDto,
   UpdateAiWorkflowDto,
   UpdateAiWorkflowRunDto,
+  UpdateAiWorkflowRunItemDto,
 } from '../../dto/aiWorkflow.dto';
 import { ScorecardStatus } from 'src/dto/scorecard.dto';
 import { JwtUser } from 'src/shared/modules/global/jwt.service';
@@ -489,12 +490,12 @@ export class AiWorkflowService {
         UserRole.Submitter,
       ].map((r) => r.toLowerCase());
 
-      const memberRoles = (
-        await this.resourceApiService.getMemberResourcesRoles(
-          challengeId,
-          user.userId,
-        )
-      ).filter((resource) =>
+      const userRoles = await this.resourceApiService.getMemberResourcesRoles(
+        challengeId,
+        user.userId,
+      );
+
+      const memberRoles = userRoles.filter((resource) =>
         requiredRoles.some(
           (role) =>
             resource.roleName!.toLowerCase().indexOf(role.toLowerCase()) >= 0,
@@ -531,4 +532,82 @@ export class AiWorkflowService {
 
     return items;
   }
+
+  async updateRunItem(
+    workflowId: string,
+    runId: string,
+    itemId: string,
+    patchData: UpdateAiWorkflowRunItemDto,
+    user: JwtUser,
+  ) {
+    const workflow = await this.prisma.aiWorkflow.findUnique({
+      where: { id: workflowId },
+    });
+    if (!workflow) {
+      this.logger.error(`Workflow with id ${workflowId} not found.`);
+      throw new NotFoundException(`Workflow with id ${workflowId} not found.`);
+    }
+
+    const run = await this.prisma.aiWorkflowRun.findUnique({
+      where: { id: runId },
+    });
+    if (!run || run.workflowId !== workflowId) {
+      this.logger.error(
+        `Run with id ${runId} not found or does not belong to workflow ${workflowId}.`,
+      );
+      throw new NotFoundException(
+        `Run with id ${runId} not found or does not belong to workflow ${workflowId}.`,
+      );
+    }
+
+    const runItem = await this.prisma.aiWorkflowRunItem.findUnique({
+      where: { id: itemId },
+    });
+    if (!runItem || runItem.workflowRunId !== runId) {
+      this.logger.error(
+        `Run item with id ${itemId} not found or does not belong to run ${runId}.`,
+      );
+      throw new NotFoundException(
+        `Run item with id ${itemId} not found or does not belong to run ${runId}.`,
+      );
+    }
+
+    const updateData: any = {};
+
+    if (patchData.upVotes !== undefined) {
+      updateData.upVotes = patchData.upVotes;
+    }
+    if (patchData.downVotes !== undefined) {
+      updateData.downVotes = patchData.downVotes;
+    }
+
+    if (!user.isMachine) {
+      const keys = Object.keys(patchData);
+      const prohibitedKeys = ['content', 'questionScore'];
+      if (keys.some((key) => prohibitedKeys.includes(key))) {
+        throw new BadRequestException(
+          `Users cannot update one of these properties - ${prohibitedKeys.join(',')}`,
+        );
+      }
+    }
+
+    // Update properties which can be updated only via m2m
+    if (user.isMachine) {
+      if (patchData.content) {
+        updateData.content = patchData.content;
+      }
+
+      if (patchData.questionScore) {
+        updateData.questionScore = patchData.questionScore;
+      }
+    }
+
+    return this.prisma.aiWorkflowRunItem.update({
+      where: { id: itemId },
+      include: {
+        comments: true,
+      },
+      data: updateData,
+    });
+  }
 }

src/api/review-opportunity/reviewOpportunity.controller.ts

@@ -22,6 +22,7 @@ import {
   CreateReviewOpportunityDto,
   QueryReviewOpportunityDto,
   ReviewOpportunityResponseDto,
+  ReviewOpportunitySummaryDto,
   UpdateReviewOpportunityDto,
 } from 'src/dto/reviewOpportunity.dto';
 import { UserRole } from 'src/shared/enums/userRole.enum';
@@ -183,6 +184,27 @@ export class ReviewOpportunityController {
     return OkResponse(await this.service.create(authUser, dto));
   }
 
+  @ApiOperation({
+    summary: 'Get review opportunity summary',
+    description:
+      'Roles: Admin | Scopes: read:review_opportunity, all:review_opportunity',
+  })
+  @ApiResponse({
+    status: 200,
+    description: 'Review opportunity summary list',
+    type: ResponseDto<ReviewOpportunitySummaryDto[]>,
+  })
+  @ApiResponse({ status: 401, description: 'Unauthorized' })
+  @ApiResponse({ status: 403, description: 'Forbidden' })
+  @ApiResponse({ status: 500, description: 'Internal Error' })
+  @Get('/summary')
+  @ApiBearerAuth()
+  @Roles(UserRole.Admin)
+  @Scopes(Scope.ReadReviewOpportunity, Scope.AllReviewOpportunity)
+  async summary() {
+    return OkResponse(await this.service.getSummary());
+  }
+
   @ApiOperation({
     summary: 'Get review opportunity by id',
     description: