Feature/daily badge sync job 1763 #2047

Dhirajsharma2060 · 2025-08-11T18:00:47Z

Resolves Implement daily badge sync job #1763

Adds a new management command (github_sync_user_badges) to automate the assignment and removal of the "OWASP Employee" badge.
The command is idempotent and can be scheduled to run daily after the user sync job.

Features

🎯 Badge Assignment & Removal

Assigns the badge to users with is_owasp_employee=True.
Removes the badge from users with is_owasp_employee=False (if previously assigned).

🛠 Auto-Creation

Creates the badge (name, description, css_class, weight) if it doesn’t exist.

♻️ Idempotency

Safe to run multiple times; no duplicate assignments or errors.

📊 Output Summary

Logs counts of assigned and removed badges.

✅ Test Coverage

Covers:
- Assignment/removal logic.
- Auto-creation.
- Idempotency.
- Command output.

Usage

Run manually:

python manage.py github_sync_user_badges

Checklist

I've read and followed the contributing guidelines.
I've run make check-test locally; all checks and tests passed.

…arity

…eryset

…ations

…github.com:Dhirajsharma2060/Nest into feature/top-contributors-has-full-name-filter-1990 did a merger

…sitoryContributor tests

…r-1990

…3' into feature/daily-badge-sync-job-1763 refact:added some changes

coderabbitai · 2025-08-11T18:00:57Z

Summary by CodeRabbit

New Features
- Introduced user badges, including an “OWASP Staff” badge with activation/deactivation.
- Added an admin interface to view, search, and manage user badges.
- Added a command to sync staff badges across users and a Makefile target to run it.
Improvements
- User bio is now optional.
- Clearer labeling for staff status.
Tests
- Added comprehensive tests for badge synchronization and idempotency.
Chores
- Updated build scripts to include Nest app Makefile.

Walkthrough

Adds UserBadge model, admin, and migration in nest app; updates github User model fields and migration; introduces a management command and Makefile target to sync an “OWASP Staff” badge based on is_owasp_staff; includes Makefile wiring and comprehensive tests for the command.

Changes

Cohort / File(s)	Summary
GitHub user field updates `backend/apps/github/models/user.py`, `backend/apps/github/migrations/0035_alter_user_bio_alter_user_is_owasp_staff.py`	Allow blank bio; adjust is_owasp_staff verbose_name/help_text; corresponding migration alters fields.
Nest UserBadge model and migration `backend/apps/nest/models/user_badge.py`, `backend/apps/nest/migrations/0004_userbadge.py`, `backend/apps/nest/models/__init__.py`	Introduces UserBadge model with is_active, note, FKs to Badge/User, unique_together, db_table; exports UserBadge; migration creates table and constraints.
Admin for UserBadge `backend/apps/nest/admin/user_badge.py`, `backend/apps/nest/admin/__init__.py`	Registers UserBadge in admin with list display, filters, search, read-only timestamps; re-exports UserBadgeAdmin.
Badge sync command and Makefile target `backend/apps/nest/management/commands/nest_update_badges.py`, `backend/apps/nest/Makefile`	Adds management command to create/sync “OWASP Staff” badge assignments; Makefile target nest-update-badges delegates to exec-backend-command.
Makefile wiring `backend/Makefile`	Includes backend/apps/nest/Makefile.
Tests for badge sync `backend/tests/apps/nest/management/commands/nest_update_badges_test.py`	Adds tests covering badge creation, syncing adds/removals, and idempotency with mocked ORM interactions.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related issues

Implement daily badge sync job #1763 — Implements badge synchronization machinery tied to staff/employment status, matching the issue’s objective.

Possibly related PRs

implemented matching model and Added slack models #913 — Both touch the GitHub User model; this PR alters bio and is_owasp_staff metadata, related to prior User model adjustments.

Suggested reviewers

kasya

Tip

🔌 Remote MCP (Model Context Protocol) integration is now available!

Pro plan users can now connect to remote MCP servers from the Integrations page. Connect with popular remote MCPs such as Notion and Linear to add more context to your reviews and chats.

✨ Finishing Touches

📝 Generate Docstrings

🧪 Generate unit tests

Create PR with unit tests
Post copyable unit tests in a comment

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbit in a new review comment at the desired location with your query.
PR comments: Tag @coderabbit in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbit gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbit read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbit help to get the list of available commands.

Other keywords and placeholders

Add @coderabbit ignore or @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbit summary or @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbit or @coderabbitai anywhere in the PR title to generate the title automatically.

Status, Documentation and Community

Visit our Status Page to check the current availability of CodeRabbit.
Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

coderabbitai

Actionable comments posted: 4

🧹 Nitpick comments (7)

backend/apps/github/management/commands/github_sync_user_badges.py (3)
24-34: Confirm creation semantics: get_or_create vs update_or_create

Using get_or_create will never update description/css_class/weight on subsequent runs. If you want to enforce these defaults continuously (and heal drift), consider update_or_create; if you want to preserve admin-edited values, keep get_or_create.

Example change:
-        badge, created = Badge.objects.get_or_create(
+        badge, created = Badge.objects.update_or_create(
             name="OWASP Employee",
-            defaults={
+            defaults={
                 "description": "Official OWASP Employee",
                 "css_class": "fa-user-shield",
                 "weight": 100,  # High weight for importance
             },
         )
40-63: Optional: wrap the sync in a transaction for consistency

Wrapping the add/remove operations in a transaction ensures the badge state doesn’t end up partially updated if an error occurs mid-sync.
+from django.db import transaction
@@
-        # Add badge to OWASP employees
-        employees = User.objects.filter(is_owasp_employee=True)
-        count = 0
-        ...
-        # Remove badge from non-OWASP employees
-        non_employees = User.objects.filter(is_owasp_employee=False).filter(badges=badge)
-        ...
+        with transaction.atomic():
+            # Add badge to OWASP employees
+            employees = User.objects.filter(is_owasp_employee=True)
+            count = 0
+            ...
+            # Remove badge from non-OWASP employees
+            non_employees = User.objects.filter(is_owasp_employee=False).filter(badges=badge)
+            ...
50-53: PR objective mismatch: counts are only printed when > 0

The PR description says the command logs counts of assigned and removed badges. Currently, output is conditional. Consider printing counts always (including 0) for observability and to match the description.
-        if count:
-            logger.info("Added 'OWASP Employee' badge to %s users", count)
-            self.stdout.write(f"Added badge to {count} employees")
+        logger.info("Added 'OWASP Employee' badge to %s users", count)
+        self.stdout.write(f"Added badge to {count} employees")
@@
-        if removed_count:
-            logger.info("Removed 'OWASP Employee' badge from %s users", removed_count)
-            self.stdout.write(f"Removed badge from {removed_count} non-employees")
+        logger.info("Removed 'OWASP Employee' badge from %s users", removed_count)
+        self.stdout.write(f"Removed badge from {removed_count} non-employees")
Do you want me to update tests accordingly (to assert zero-count messages when no changes are needed)?

Also applies to: 61-63
backend/tests/apps/github/management/commands/github_sync_user_badges_test.py (4)
10-17: Remove unused fixture

The mock_badge fixture isn’t used. Drop it to reduce noise.
-@pytest.fixture
-def mock_badge():
-    badge = MagicMock()
-    badge.name = "OWASP Employee"
-    badge.css_class = "fa-user-shield"
-    badge.id = 1
-    return badge
-
22-24: Patch where used for robustness

Patching the class’s manager works because it’s the same class object, but patching the imported symbol in the command module is more robust to import/path refactors.
-    @patch("apps.owasp.models.badge.Badge.objects.get_or_create")
-    @patch("apps.github.models.user.User.objects.filter")
+    @patch("backend.apps.github.management.commands.github_sync_user_badges.Badge.objects.get_or_create")
+    @patch("backend.apps.github.management.commands.github_sync_user_badges.User.objects.filter")
31-37: Consider asserting the add-branch is driven by exclusion, not N+1 exists

Today you simulate exists=False per employee. If you adopt the exclude-based optimization, there’s no exists() call. Keeping your test resilient by not depending on exists reduces coupling. You can assert count-based output and add() calls instead.

I can adjust the test to construct mock_employees_without_badge queryset directly (returned by the first filter) and drop the exists mocks if you proceed with the optimization.

1-1: Naming consistency: refer to github_sync_user_badges

Docstrings still say sync_user_badges. Update to the actual command name used by call_command.
-"""Tests for the sync_user_badges management command."""
+"""Tests for the github_sync_user_badges management command."""
@@
-    """Test the sync_user_badges management command."""
+    """Test the github_sync_user_badges management command."""
Also applies to: 20-20

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e137c07 and e0835ed.

📒 Files selected for processing (2)

backend/apps/github/management/commands/github_sync_user_badges.py (1 hunks)
backend/tests/apps/github/management/commands/github_sync_user_badges_test.py (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (1)

backend/apps/github/management/commands/github_sync_user_badges.py (2)

backend/apps/github/api/internal/queries/user.py (1)

user (40-56)

backend/apps/owasp/models/badge.py (1)

Badge (10-41)

backend/apps/github/management/commands/github_sync_user_badges.py

backend/tests/apps/github/management/commands/github_sync_user_badges_test.py

…nc_user_badges command

coderabbitai

Actionable comments posted: 1

🧹 Nitpick comments (1)

backend/tests/apps/github/management/commands/github_sync_user_badges_test.py (1)
89-90: Remove empty comment line

Line 90 contains only a comment marker without any content. This appears to be a leftover from editing.
         call_command("github_sync_user_badges", stdout=out)
 
         # Verify badge creation and defaults
-
         mock_badge_get_or_create.assert_called_once_with(

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e0835ed and fa5020f.

📒 Files selected for processing (2)

backend/apps/github/management/commands/github_sync_user_badges.py (1 hunks)
backend/tests/apps/github/management/commands/github_sync_user_badges_test.py (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

backend/apps/github/management/commands/github_sync_user_badges.py

🔇 Additional comments (1)

backend/tests/apps/github/management/commands/github_sync_user_badges_test.py (1)

104-152: Well-implemented idempotency test!

This test comprehensively validates the command's idempotent behavior by:

Setting up a scenario where the badge is already correctly assigned

Running the command multiple times

Verifying no unnecessary operations are performed

Confirming zero-count messages in the output

This addresses the PR's idempotency requirement effectively.

backend/tests/apps/github/management/commands/github_sync_user_badges_test.py

coderabbitai

Actionable comments posted: 0

🧹 Nitpick comments (4)

backend/apps/nest/admin/user_badge.py (2)
1-1: Tweak docstring for accuracy/consistency.

It’s the Nest app; consider tightening the docstring.

Apply:
-"""Admin configuration for the user badge model in the OWASP app.""" 
+"""Admin for the UserBadge model (Nest app)."""
33-43: Avoid N+1 queries in changelist with list_select_related.

The changelist will dereference user and badge for every row. Selecting related FKs upfront prevents N+1.

Apply:
 class UserBadgeAdmin(admin.ModelAdmin):
@@
     list_display = (
         "user",
         "badge",
         "note",
         "nest_created_at",
         "nest_updated_at",
     )
+    # Performance: prefetch FK objects for list_display
+    list_select_related = ("user", "badge")
     readonly_fields = (
         "nest_created_at",
         "nest_updated_at",
     )
Optionally also add:
+    list_filter = ("badge",)
+    date_hierarchy = "nest_created_at"
+    ordering = ("-nest_created_at",)
backend/apps/nest/models/user_badge.py (2)
23-29: Polish admin help text grammar.

Minor wording improvement; this text is user-facing in admin.

Apply:
     note = models.CharField(
         verbose_name="Note",
         max_length=255,
         blank=True,
         default="",
-        help_text="Optional note of the user badge.",
+        help_text="Optional note for the user badge.",
     )
31-43: Optional: rename related_name on UserBadge for clarity

Our scan of the entire codebase (excluding migrations) yielded no occurrences of badge.users or user.badges, indicating that changing the reverse‐relation names is safe and will reduce collision risk.

Diff suggestion:
-    badge = models.ForeignKey(
-        "nest.Badge",
-        related_name="users",
+    badge = models.ForeignKey(
+        "nest.Badge",
+        related_name="user_badges",
         on_delete=models.CASCADE,
         verbose_name="Badge",
     )
-    user = models.ForeignKey(
-        "github.User",
-        related_name="badges",
+    user = models.ForeignKey(
+        "github.User",
+        related_name="user_badges",
         on_delete=models.CASCADE,
         verbose_name="User",
     )
Next steps:

Apply the above diff in backend/apps/nest/models/user_badge.py.

Run python manage.py makemigrations to generate a migration that renames the reverse relations.

If any code (e.g. admin search_fields or templates) does reference the old names in the future, update those references to user_badges.

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

MCP integration is disabled by default for public repositories
Jira integration is disabled by default for public repositories
Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between caf00f7 and 10473bb.

📒 Files selected for processing (7)

backend/Makefile (1 hunks)
backend/apps/nest/admin/__init__.py (1 hunks)
backend/apps/nest/admin/user_badge.py (1 hunks)
backend/apps/nest/management/commands/nest_update_badges.py (1 hunks)
backend/apps/nest/models/__init__.py (1 hunks)
backend/apps/nest/models/user_badge.py (1 hunks)
cspell/custom-dict.txt (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (4)

backend/Makefile
cspell/custom-dict.txt
backend/apps/nest/models/init.py
backend/apps/nest/management/commands/nest_update_badges.py

🧰 Additional context used

🧬 Code Graph Analysis (3)

backend/apps/nest/admin/user_badge.py (1)

backend/apps/nest/models/user_badge.py (1)

UserBadge (10-47)

backend/apps/nest/admin/__init__.py (1)

backend/apps/nest/admin/user_badge.py (1)

UserBadgeAdmin (8-44)

backend/apps/nest/models/user_badge.py (1)

backend/apps/common/models.py (2)

BulkSaveModel (10-34)

TimestampedModel (37-46)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

GitHub Check: Run frontend e2e tests
GitHub Check: Run backend tests
GitHub Check: Run frontend unit tests

🔇 Additional comments (7)

backend/apps/nest/admin/__init__.py (2)

6-6: Re-export looks good; keeps admin public API consistent.

Importing UserBadgeAdmin here mirrors the pattern used for other admins and makes discovery consistent.

1-7: Management command naming is consistent across the PR. A repository-wide search confirmed that only nest_update_badges is referenced (in tests and the Makefile) and there are no remaining github_sync_user_badges occurrences.
backend/apps/nest/admin/user_badge.py (3)

11-11: Verify prerequisites for autocomplete_fields.

autocomplete_fields=("user","badge") requires the corresponding ModelAdmins for github.User and nest.Badge to define search_fields. Otherwise the admin will raise at runtime.

If missing, add minimal search fields, e.g., in their admins:
 class UserAdmin(admin.ModelAdmin):
+    search_fields = ("login", "name", "email")

 class BadgeAdmin(admin.ModelAdmin):
+    search_fields = ("name", "slug", "description")
12-32: Fieldsets are clear and match the model.

Good separation of user/badge, note, and timestamps; timestamps are not editable.

47-47: Registration is correct.

Model and admin are properly registered.
backend/apps/nest/models/user_badge.py (2)

13-21: Constraint choice is solid for deduplication.

The (user, badge) UniqueConstraint enforces idempotency at the DB level, which aligns with the sync command’s needs.

1-1: Naming convention confirmed as consistent

Across all Nest models (user, badge, api_key, and user_badge), the db_table setting uses the nest_ prefix followed by a plural noun (e.g. nest_users, nest_badges, nest_api_keys, nest_user_badges), so no adjustment is needed.

…ent logic

coderabbitai

Actionable comments posted: 0

🧹 Nitpick comments (3)

backend/apps/nest/migrations/0007_userbadge_is_active.py (3)
13-17: Consider adding a DB-level default (db_default) for stronger invariants

If inserts can bypass the Django ORM (fixtures, raw SQL, admin scripts), a Python-side default isn’t enough. In Django 5.x you can set a database default with db_default=True to enforce True at the DB layer as well.

Apply this diff:
-            field=models.BooleanField(default=True, help_text='Indicates if the badge assignment is active.', verbose_name='Is active'),
+            field=models.BooleanField(default=True, db_default=True, help_text='Indicates if the badge assignment is active.', verbose_name='Is active'),
8-16: Align quotation style with Ruff rule Q000 (double quotes preferred)

Style nit: switch single quotes to double quotes to satisfy the configured lint rule.
-        ('nest', '0006_userbadge_uq_userbadge_user_badge'),
+        ("nest", "0006_userbadge_uq_userbadge_user_badge"),
@@
-            model_name='userbadge',
+            model_name="userbadge",
-            name='is_active',
+            name="is_active",
-            field=models.BooleanField(default=True, help_text='Indicates if the badge assignment is active.', verbose_name='Is active'),
+            field=models.BooleanField(default=True, help_text="Indicates if the badge assignment is active.", verbose_name="Is active"),
13-17: Optional: add a partial index to speed common lookups

If queries frequently fetch active assignments per user (e.g., UserBadge.objects.filter(user=..., is_active=True)), consider a partial index conditioned on is_active=True. This keeps the index small and targeted.

Example follow-up migration (separate file):
from django.db import migrations, models
from django.db.models import Q

class Migration(migrations.Migration):
    dependencies = [
        ("nest", "0007_userbadge_is_active"),
    ]

    operations = [
        migrations.AddIndex(
            model_name="userbadge",
            index=models.Index(
                fields=["user"],
                name="userbadge_user_active_idx",
                condition=Q(is_active=True),
            ),
        ),
    ]

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

MCP integration is disabled by default for public repositories
Jira integration is disabled by default for public repositories
Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 10473bb and 4d29a6d.

📒 Files selected for processing (3)

backend/apps/nest/management/commands/nest_update_badges.py (1 hunks)
backend/apps/nest/migrations/0007_userbadge_is_active.py (1 hunks)
backend/apps/nest/models/user_badge.py (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (2)

backend/apps/nest/management/commands/nest_update_badges.py
backend/apps/nest/models/user_badge.py

🧰 Additional context used

🪛 Ruff (0.12.2)

backend/apps/nest/migrations/0007_userbadge_is_active.py

9-9: Single quotes found but double quotes preferred