mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-05-06 11:09:18 +02:00
b12ae73e91
SecurityTest::Test1 was calling $db->searchTheses($string) with a plain string, but searchTheses() was refactored to require array $params when the tag M2M work landed. This caused an immediate PHP fatal TypeError before any SQL ever ran, killing the entire Security test suite with exit code 255 and masking all three tests. Fix: pass each malicious payload via ['query' => $string] which is the correct API and properly exercises the parameterised query path through validateSearchParams() + buildSearchConditions(). Added a clarifying comment explaining why the array form is required. All 4 test suites now pass: - Database (Unit): 7/7 - Rate Limit (Unit): 5/5 - Search (Integration): 6/6 - Security: 3/3
Database Documentation
Complete documentation for the Post-ERG thesis database.
📚 Available Documentation
1. DATABASE_SPECIFICATION.md ⭐
Complete technical specification - 25KB comprehensive document
Contents:
- Complete table definitions with all columns
- Entity relationship diagrams
- Junction table specifications
- Lookup table values
- Business rules and workflows
- Sample queries and use cases
- Instructions for requesting schema changes
Use when: You need complete technical details about the database structure.
2. QUICK_SCHEMA_REFERENCE.md 🚀
Quick reference guide - 5KB at-a-glance reference
Contents:
- Table summary
- Key relationships diagram
- Core fields reference
- Predefined lookup values
- Common SQL queries
- Constraint summary
Use when: You need quick lookup or common query examples.
3. schema.sql 💾
The actual SQL schema - Executable SQL file
Contents:
- Complete CREATE TABLE statements
- Indexes and triggers
- Predefined data (orientations, AP programs, etc.)
- Views for common queries
Use when: Setting up or resetting the database.
🚀 Quick Start
View Database Schema
# Read the quick reference
cat database/QUICK_SCHEMA_REFERENCE.md
# Or full specification
cat database/DATABASE_SPECIFICATION.md
Initialize Database
# Create test database from schema
just init-test-db
# Create with sample data
just create-fixtures
Query Database
# Open SQLite prompt
just query-db
# Show specific thesis
just show-thesis 42
📝 Making Schema Changes
Step 1: Document Your Request
Format:
**Table:** [table_name]
**Change Type:** [add/modify/remove]
**What:** [description]
**Why:** [reason/use case]
**Example Data:** [samples]
Step 2: Specify Details
For new columns:
- Column name
- Data type (TEXT, INTEGER, BOOLEAN, DATETIME)
- NULL/NOT NULL
- Default value
- Indexes needed?
For new tables:
- Table name
- All columns
- Relationships to existing tables
- Sample data
Step 3: Provide Context
Include:
- Use case scenario
- Who will use it?
- How will it be displayed?
- Any constraints?
Example Request
**Table:** theses
**Change Type:** add column
**What:** Add column to track if thesis won an award
**Why:** Need to highlight award-winning theses on homepage
**Column Name:** has_award
**Data Type:** BOOLEAN
**Default:** 0 (false)
**Example:** 1 for "Prix du Jury 2025" winner
🗂️ Database Structure Overview
┌─────────────┐
│ theses │ ◄── Main table (500+ records/year)
└──────┬──────┘
│
├──► authors (via thesis_authors)
├──► supervisors (via thesis_supervisors)
├──► keywords (via thesis_keywords)
├──► languages (via thesis_languages)
├──► formats (via thesis_formats)
├──► thesis_files (attachments)
│
└──► Lookup tables:
• orientations
• ap_programs
• finality_types
• access_types
• license_types
📊 Key Statistics
- Core tables: 3 (theses, authors, supervisors)
- Junction tables: 5 (many-to-many relationships)
- Lookup tables: 7 (predefined values)
- Support tables: 2 (files, pages)
- Views: 2 (full data, public only)
- Indexes: 11 (for performance)
- Triggers: 4 (auto-update timestamps)
🔍 Common Scenarios
Scenario 1: Student Submits Thesis
- Create record in
theses(is_published=0) - Add author to
authors, link viathesis_authors - Add supervisor(s) to
supervisors, link viathesis_supervisors - Set
orientation_id,ap_program_id,finality_id - Upload file to
thesis_files - Add keywords via
thesis_keywords - Set
submitted_attimestamp
Scenario 2: Admin Publishes Thesis
- Verify all required fields present
- Set
defense_date - Set
jury_points - Optional: add
context_note - Set
is_published = 1 - Set
published_at = CURRENT_TIMESTAMP
Scenario 3: Public User Searches
Query v_theses_public view with filters:
- By year
- By orientation
- By keyword
- By author name
- Full-text search in title/synopsis
🛠️ Development Workflow
Local Development
- Use
test.dbfor development - Create via
just init-test-db - Populate with
just create-fixtures - Test queries before deployment
Schema Changes
- Update
schema.sql - Update
DATABASE_SPECIFICATION.md - Test on
test.db - Deploy to production (manual migration)
Testing
# Run tests on local database
just test-public-all
# Check database stats
just stats-public
📞 Need Help?
- Quick lookup → Read
QUICK_SCHEMA_REFERENCE.md - Complete details → Read
DATABASE_SPECIFICATION.md - Schema changes → Follow format in this README
- SQL examples → Check
QUICK_SCHEMA_REFERENCE.md