fix: validation of public and private assets

[Palanikannan1437]

Description

Fixed the validation to get, delete and restore assets

Summary by CodeRabbit

• New Features

  • Improved error handling for image loading in the Custom Image Block, enhancing recovery from loading failures.
  • Streamlined URL validation checks for asset management operations, simplifying the logic for determining valid URLs.

• Bug Fixes

  • Enhanced checks for editor container during image loading, ensuring accurate logging and state management.

• Refactor

  • Simplified URL validity checks across various file handler functions, improving clarity and efficiency.

[coderabbitai]

Walkthrough

The changes focus on enhancing the CustomImageBlock component within the editor by improving error handling during image loading and refining state management. The error handling now attempts to restore images using the source from node attributes if loading fails. Additionally, URL validation in helper functions has been simplified by replacing a complex check with a basic string check for HTTP prefixes. These modifications aim to streamline image handling and URL validation processes across the editor's functionalities.

Changes

File Path	Change Summary
packages/editor/src/core/extensions/custom-image/components/image-block.tsx	Updated error handling logic for image loading, refined state management, and improved aspect ratio checks.
space/helpers/editor.helper.ts	Replaced checkURLValidity function with simpler string checks for URL validation in multiple functions.
web/helpers/editor.helper.ts	Removed checkURLValidity function and replaced its usage with basic string checks for URL validation in various functions.

Possibly related PRs

• [WEB-2450] fix: image resize component #5623: The changes in the CustomImageBlock component related to image loading and resizing are relevant as they both enhance the image handling functionality within the same component.
• [WEB-2509] feat: fullscreen option for editor images #5665: The introduction of the ImageToolbarRoot component in CustomImageBlock is related since it modifies the same component and enhances user interaction with images.
• [PE-56] regression: image aspect ratio fix #5792: This PR addresses the aspect ratio handling in the CustomImageBlock, which directly relates to the changes made in the main PR regarding image attributes and resizing logic.
• fix: remoteImageSrc to come from resolved source #5867: The modifications to how the src attribute is handled in the CustomImageBlock component are directly related to the changes in error handling and image loading logic in the main PR.

Suggested labels

✍️editor

Suggested reviewers

• aaryan610
• SatishGandham
• rahulramesha

🐰 In the editor's bright, bustling space,
Images now load with a smoother grace.
When errors arise, they won't cause a fuss,
With clever checks, we can trust!
Simplified paths, oh what a delight,
Hopping along, our code feels just right! 🖼️✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (8)

space/helpers/editor.helper.ts (5)

36-36: Simplified URL validation looks good, but consider a more comprehensive check.

The change from checkURLValidity(path) to path?.startsWith("http") simplifies the URL validation process. While this covers both "http" and "https" protocols, it might be less strict than the previous implementation.

Consider using a more comprehensive check to ensure URL validity:

const isValidURL = (url: string): boolean => {
  try {
    new URL(url);
    return true;
  } catch {
    return false;
  }
};

// Usage
if (path && isValidURL(path)) {
  // ...
}

This approach will validate the entire URL structure while still being relatively simple.

---

44-44: Consistent URL validation change, consider applying the same improvement.

This change is consistent with the previous one, replacing checkURLValidity(src) with src?.startsWith("http").

For consistency, apply the same improvement suggested for the previous change:

if (src && isValidURL(src)) {
  // ...
}

This will ensure a uniform and more robust URL validation throughout the file.

---

51-51: Consistent URL validation change, consider refactoring for better maintainability.

This change maintains consistency with the previous two, replacing checkURLValidity(src) with src?.startsWith("http").

1. Apply the same improvement suggested for the previous changes:

if (src && isValidURL(src)) {
  // ...
}

2. To improve maintainability, consider extracting this repeated logic into a separate function:

const isExternalURL = (url: string): boolean => url && isValidURL(url);

// Usage
if (isExternalURL(src)) {
  // ...
}

This refactoring will centralize the URL validation logic, making it easier to maintain and update in the future.

---

75-75: Consistent URL validation change, consider creating a shared utility function.

This change maintains consistency with the previous ones, replacing checkURLValidity(path) with path?.startsWith("http").

1. Apply the same improvement suggested for the previous changes:

if (path && isValidURL(path)) {
  return path;
}

2. To improve maintainability and reduce code duplication, create a shared utility function for URL validation:

// In a separate utility file (e.g., url-utils.ts)
export const isValidURL = (url: string): boolean => {
  try {
    new URL(url);
    return true;
  } catch {
    return false;
  }
};

export const isExternalURL = (url: string): boolean => url && isValidURL(url);

// Usage in this file
import { isExternalURL } from './url-utils';

// ...

if (isExternalURL(path)) {
  return path;
}

This refactoring will centralize the URL validation logic, making it easier to maintain and update across the entire codebase.

---

Line range hint 1-82: Overall assessment: Good simplification, but consider improving URL validation and code structure.

The changes consistently simplify URL validation across the file, which improves readability. However, there are opportunities for further improvement:

1. Implement a more robust URL validation method to ensure security and correctness.
2. Create a shared utility function for URL validation to reduce code duplication and improve maintainability.
3. Consider the impact of these changes on the overall security of the application, especially if the previous checkURLValidity function was performing additional checks.

To implement these improvements:

1. Create a new utility file (e.g., url-utils.ts) with robust URL validation functions.
2. Replace all instances of path?.startsWith("http") and similar checks with the new utility function.
3. Review the security implications of the new validation method and ensure it meets the application's requirements.

These changes will enhance the code quality, maintainability, and potentially the security of the URL handling in the editor.

web/helpers/editor.helper.ts (3)

Line range hint 48-58: Simplified URL validation approved, but consider more robust checks.

The change from using checkURLValidity to a simple string check simplifies the code and potentially improves performance. However, it may be less robust in detecting invalid URLs that start with "http" but are not actually valid.

Consider using a more robust URL validation method, such as the URL constructor:

if (path && (path.startsWith("http") || path.startsWith("https"))) {
  try {
    new URL(path);
    return path;
  } catch {
    // Invalid URL, fall through to default case
  }
}
// ... rest of the code

This approach maintains simplicity while providing stronger validation.

---

Line range hint 99-109: Consistent URL check in read-only handler, consider robust validation.

The URL validation logic has been simplified consistently with the getEditorFileHandlers function. This change maintains the same behavior for getting asset sources in read-only mode.

For consistency with the earlier suggestion, consider implementing the same robust URL validation method here:

if (path && (path.startsWith("http") || path.startsWith("https"))) {
  try {
    new URL(path);
    return path;
  } catch {
    // Invalid URL, fall through to default case
  }
}
// ... rest of the code

This approach would provide stronger validation while maintaining consistency across the codebase.

---

Line range hint 1-280: Overall assessment: Consistent simplification of URL validation.

The changes in this file consistently simplify URL validation across multiple methods, aligning with the PR objective of fixing validation of public and private assets. While these modifications improve code readability and potentially performance, they may benefit from more robust URL validation to ensure security and correctness.

Consider implementing a shared, robust URL validation utility function that can be used consistently across all methods in this file. This would centralize the logic, making it easier to maintain and update in the future while ensuring consistent behavior across all asset-related operations.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 6f8df32 and 3161e29.

📒 Files selected for processing (3)

• packages/editor/src/core/extensions/custom-image/components/image-block.tsx (1 hunks)
• space/helpers/editor.helper.ts (2 hunks)
• web/helpers/editor.helper.ts (4 hunks)

🧰 Additional context used

🔇 Additional comments (3)

web/helpers/editor.helper.ts (2)

Line range hint 62-72: Consistent URL check in delete method.

The URL validation logic has been simplified consistently with the getAssetSrc method. This change maintains the same behavior for deleting assets based on their source.

---

Line range hint 75-80: Consistent URL check in restore method.

The URL validation logic has been simplified consistently with the previous methods. This change maintains the same behavior for restoring assets based on their source.

packages/editor/src/core/extensions/custom-image/components/image-block.tsx (1)

251-251: LGTM!

The error handling and image restoration logic are correctly implemented. The usage of await is appropriate given the noted type error from Tiptap.