fix: add cache busting to web component extractor

[elibosley]

Summary by CodeRabbit

• Bug Fixes
  • Ensures UI assets use content-hashed filenames so browsers load the latest scripts and styles after updates, reducing stale-cache issues.
  • Keeps scripts and their related styles in sync for consistent rendering and fewer cache-related glitches.
  • Ignores non-asset manifest entries to prevent accidental inclusion of invalid items and ensure correct asset loading.

[coderabbitai]

Walkthrough

Skip processing of the manifest entry with key ts during manifest iteration so it is not treated as an asset; no other manifest processing, path construction, tag generation, or public signatures were changed.

Changes

Cohort / File(s)	Summary of changes
Manifest iteration guard plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php	- Added a guard inside the manifest-entry loop to skip any entry whose key is 'ts'. No other processing logic (asset path construction or HTML tag generation) was modified.
Tests — hashed standalone asset handling plugin/tests/test-extractor.php	- Introduced private properties for hashed standalone JS/CSS filenames and a helper sanitizeForExpectedId(string). Updated tests to reference hashed filenames and sanitized IDs instead of hard-coded names; adjusted assertions and output text accordingly.
Build output naming (Vite/Rollup) web/vite.config.ts	- Rollup output naming changed to include content hash for standalone entry (standalone-apps-[hash].js). CSS asset naming now returns hashed filename (standalone-apps-[hash][extname]) instead of a fixed standalone-apps.css.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  participant Caller
  participant Extractor
  participant Manifest

  Caller->>Extractor: extract(manifest)
  Extractor->>Manifest: iterate entries
  alt entry.key == "ts"
    Note right of Extractor #DDDDDD: Skip processing this entry
    Extractor-->>Manifest: continue
  else other entries
    Extractor->>Extractor: build asset paths & tags (unchanged)
  end
  Extractor-->>Caller: return built assets/tags

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Poem

I hop and sniff the manifest trees,
One little ts I kindly freeze.
Skipped from the loop, no extra fuss,
Assets stay tidy — fussless, thus.
A rabbit's nod to nimble change, we breeze.

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title clearly and concisely summarizes the primary change of the pull request—adding cache busting behavior to the web component extractor—without extraneous detail or ambiguity.

✨ Finishing touches

• 📝 Generate Docstrings

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/cache-busting-behavior

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[claude]

Claude encountered an error —— View job

---

I'll analyze this and get back to you.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 53.34%. Comparing base (f4f3e3c) to head (5ad58f1).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1731      +/-   ##
==========================================
+ Coverage   53.31%   53.34%   +0.03%     
==========================================
  Files         860      860              
  Lines       48271    48271              
  Branches     4918     4926       +8     
==========================================
+ Hits        25734    25752      +18     
+ Misses      22468    22450      -18     
  Partials       69       69              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (3)

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (3)

38-46: Harden version appender: handle anchors and avoid duplicate v=

Current logic appends after a fragment (e.g., url#frag?v=…) and can create multiple v= params if called twice. Insert before any '#' and replace existing v= to be idempotent.

-    private function appendVersionQuery(string $path, string $version): string
-    {
-        if ($version === '') {
-            return $path;
-        }
-
-        $separator = strpos($path, '?') !== false ? '&' : '?';
-        return $path . $separator . 'v=' . rawurlencode($version);
-    }
+    private function appendVersionQuery(string $path, string $version): string
+    {
+        if ($version === '') {
+            return $path;
+        }
+
+        // Split off any fragment so query params are added before '#'
+        $fragment = null;
+        $base = $path;
+        $hashPos = strpos($path, '#');
+        if ($hashPos !== false) {
+            $fragment = substr($path, $hashPos + 1);
+            $base = substr($path, 0, $hashPos);
+        }
+
+        $encoded = rawurlencode($version);
+
+        // If v already present, replace it (idempotent); otherwise append
+        if (preg_match('/([?&])v=/', $base)) {
+            $base = preg_replace('/([?&])v=[^&]*/', '$1v=' . $encoded, $base, 1);
+        } else {
+            $base .= (strpos($base, '?') !== false ? '&' : '?') . 'v=' . $encoded;
+        }
+
+        return $fragment !== null ? $base . '#' . $fragment : $base;
+    }

---

84-86: Skip any alternate version keys if fallback is adopted

If you add the optional fallback, also skip those keys during iteration.

-                if ($key === 'ts') {
+                if (in_array($key, ['ts','version','build','timestamp'], true)) {
                     continue;
                 }

---

75-81: Add optional fallback keys for version extraction
Quick check confirms every manifest has a valid ‘ts’ field, so this change isn’t required now; still, iterating over ['ts','version','build','timestamp'] can future-proof the code.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f4f3e3c and db0fd0e.

📒 Files selected for processing (1)

• plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (3 hunks)

🧰 Additional context used

🧬 Code graph analysis (1)

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (1)

web/scripts/add-timestamp-webcomponent-manifest.js (1)

• filePath (4-4)

🔇 Additional comments (2)

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (2)

94-94: LGTM: applying version when building the asset src

Using the helper at construction time is correct and ensures a single, consistent cache buster per request.

---

115-115: LGTM: per‑entry CSS gets the same version

Consistent versioning for CSS referenced from JS entries avoids stale styles after deploys.

[github-actions]

This plugin has been deployed to Cloudflare R2 and is available for testing.
Download it at this URL:

https://preview.dl.unraid.net/unraid-api/tag/PR1731/dynamix.unraid.net.plg

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

web/vite.config.ts (1)

118-146: Replace static standalone-apps asset URLs in test loader
In web/public/test-pages/load-manifest.js (around lines 114–128), update the hard-coded /dist/standalone-apps.js and /dist/standalone-apps.css references to use the hashed filenames (for example, by pulling them from the Vite manifest or using a dynamic lookup) instead of static URLs.

🧹 Nitpick comments (4)

web/vite.config.ts (2)

11-13: Use .js extensions on local TS ESM imports.

Per the repo guidelines for TS/ESM, add .js extensions to local relative imports to avoid Node16/Bundler resolution pitfalls.

As per coding guidelines.

-import scopeTailwindToUnapi from './postcss/scopeTailwindToUnapi';
-import { serveStaticHtml } from './vite-plugin-serve-static';
+import scopeTailwindToUnapi from './postcss/scopeTailwindToUnapi.js';
+import { serveStaticHtml } from './vite-plugin-serve-static.js';

---

163-186: Tighten types on proxy error handler; remove assertion.

Avoid casting; model proper types. http-proxy can pass an HTTP response or a socket (for WS). Use union types and a type guard to remove the as { writeHead?... } assertion.

As per coding guidelines.

+import type { IncomingMessage, ServerResponse } from 'node:http';
+import type { Socket } from 'node:net';
@@
-          proxy.on('error', (err: Error, _req: unknown, res: unknown) => {
+          proxy.on('error', (err: Error, _req: IncomingMessage | undefined, res?: ServerResponse | Socket) => {
             console.warn('[Vite] GraphQL proxy error (API server may not be running):', err.message);
-            // Check if res has writeHead method (it's an HTTP response, not a socket)
-            const httpRes = res as {
-              writeHead?: (statusCode: number, headers: Record<string, string>) => void;
-              end?: (data: string) => void;
-            };
-            if (
-              httpRes &&
-              typeof httpRes.writeHead === 'function' &&
-              typeof httpRes.end === 'function'
-            ) {
-              httpRes.writeHead(503, {
-                'Content-Type': 'application/json',
-              });
-              httpRes.end(
-                JSON.stringify({
-                  error: 'GraphQL API server not available',
-                  message: 'Please start the API server on port 3001',
-                })
-              );
-            }
+            // If this is an HTTP response (not a socket), return a JSON error
+            if (res && typeof (res as ServerResponse).writeHead === 'function' && typeof (res as ServerResponse).end === 'function') {
+              const httpRes = res as ServerResponse;
+              httpRes.writeHead(503, { 'Content-Type': 'application/json' });
+              httpRes.end(JSON.stringify({
+                error: 'GraphQL API server not available',
+                message: 'Please start the API server on port 3001',
+              }));
+            }
           });

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (1)

81-110: Optional: consider reserving a small set of non-asset keys.

If other metadata keys are added (e.g., timestamp, version), extend the guard to a reserved set to keep logic future-proof.

-            foreach ($manifest as $key => $entry) {
-                if ($key === 'ts') {
+            foreach ($manifest as $key => $entry) {
+                if (in_array($key, ['ts', 'timestamp', 'version'], true)) {
                     continue;
                 }

plugin/tests/test-extractor.php (1)

60-60: Add an explicit test that 'ts' entries are ignored.

You already include a ts key in the fixture; add a quick assertion to ensure it never renders.

@@
         $output = $this->getExtractorOutput();
@@
         echo "\nTest: Invalid Entries Handling\n";
         echo "-------------------------------\n";
         $this->test(
             "Skips entries without 'file' key",
             strpos($output, 'notAFile') === false
         );
+        $this->test(
+            "Skips manifest metadata key 'ts'",
+            strpos($output, 'id="unraid-standalone-apps-ts"') === false
+        );

Also applies to: 131-208

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between db0fd0e and 5ad58f1.

📒 Files selected for processing (3)

• plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (1 hunks)
• plugin/tests/test-extractor.php (8 hunks)
• web/vite.config.ts (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx}

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.{ts,tsx}: Use TypeScript import specifiers with .js extensions for ESM compatibility
Never use the any type; prefer precise typing
Avoid type casting; model proper types from the start

Files:

• web/vite.config.ts

🧬 Code graph analysis (1)

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (1)

web/scripts/add-timestamp-standalone-manifest.js (1)

• key (20-20)

🔇 Additional comments (6)

web/vite.config.ts (1)

129-136: Cache-busted entry and CSS naming look good.

Hashing the entry JS and consolidating CSS to a single hashed asset should resolve stale asset issues and plays nicely with the extractor/tests. No functional concerns from this change.

plugin/source/dynamix.unraid.net/usr/local/emhttp/plugins/dynamix.my.servers/include/web-components-extractor.php (1)

65-71: Explicitly skipping the 'ts' manifest key is fine (and clearer).

This is functionally redundant with the subsequent validation but makes intent obvious and avoids accidental processing if the shape changes later. Low risk; approved.

plugin/tests/test-extractor.php (4)

17-18: Good switch to dynamic hashed filenames in fixtures.

Using $standaloneJsFile/$standaloneCssFile mirrors production and decouples tests from fixed names. Looks solid.

Also applies to: 51-58

---

149-151: Assertions correctly updated for hashed IDs/paths.

Expectations for script/link IDs and paths now account for hashing and sanitization; this aligns with the extractor’s ID generation.

Also applies to: 165-167, 214-215, 279-280, 283-284

---

350-353: Helper matches production sanitizer; nice.

sanitizeForExpectedId mirrors the extractor’s regex, reducing brittle tests.

---

376-376: Minor: exit status propagation is correct.

exit($test->run()); properly propagates test status to the shell. LGTM.