By name: testing-hriv description: End-to-end testing guide for the HRIV app including local stack setup, seed data, auth, UI navigation, metadata operations, admin export/import, image upload, image replacement, drag-and-drop, tile sidecar routing, bulk import with ManagePage auto-refresh, and canvas annotation edit mode.
Testing HRIV
End-to-end testing guide for the HRIV app: local stack bring-up, seed data, auth,
UI navigation, metadata operations, admin export/import, drag-and-drop, image upload,
and bulk import. For domain-specific flows see the sibling skills
testing-image-processing (tile pipeline / pyvips) and testing-backup-service
(disaster recovery).
Local Setup
- Create an empty
backend/.envfile if it doesn't exist (docker-compose references it):touch backend/.env - Start the full stack:
Services: frontend (Vite on :5173), backend (FastAPI on :8000), db (PostgreSQL), redis, worker (arq), seed. Wait ~10s for the db to seed.docker compose up -d --build - arq worker:
docker-compose.ymlnow defines aworkerservice;docker compose up -dstarts it automatically. If you're on an older checkout without that service, start the worker manually or image processing will enqueue to Redis without being processed:docker compose exec -d backend arq app.worker.WorkerSettings - Frontend: http://localhost:5173
- Backend API: http://localhost:8000
Troubleshooting: Frontend Docker Build Fails
If the frontend Docker build fails with npm ci errors about missing packages from
the lock file, delete the stale frontend/package-lock.json (it is in .gitignore
but may exist locally from a prior npm install) and rebuild:
rm -f frontend/package-lock.json
docker compose up -d --build frontend
Rebuilding After Code Changes
Bind-mounts give hot-reload for most source edits. For Dockerfile / dependency / nginx config changes, rebuild the specific service:
docker compose up -d --build frontend # or backend, worker, etc.
Devin Secrets Needed
None for local testing — seed users are created automatically.
Backup-service S3/Azure testing needs credentials; see testing-backup-service.
Seed Test Accounts
All use password: password
| Role | canEditContent | canManageUsers | |
|---|---|---|---|
| admin@example.ca | admin | Yes | Yes |
| instructor@example.ca | instructor | Yes | No |
| student@example.ca | student | No | No |
Seed Data
Categories (hierarchical)
- Architecture (id=1)
- American (id=4)
- Italian (id=3)
- Gothic (id=5)
- Panoramas (id=2)
Programs
| ID | Name |
|---|---|
| 1 | Administration |
| 2 | Digital Design |
| 3 | Photography |
Images
| ID | Name | Category | Program | Source |
|---|---|---|---|---|
| 1 | Duomo di Milano | Italian | Digital Design | OpenSeadragon examples |
| 2 | Duomo di Milano (Gothic Detail) | Gothic | Digital Design | OpenSeadragon examples |
| 3 | Highsmith Panorama | American | Photography | Library of Congress |
| 4 | Library of Congress | Panoramas | Photography | Library of Congress |
Direct Image Counts per Category
These are direct (first-child) counts, not subtree sums:
| Category | Direct Image Count |
|---|---|
| Architecture | 0 |
| American | 1 |
| Italian | 1 |
| Gothic | 1 |
| Panoramas | 1 |
Getting an API Auth Token
TOKEN=$(curl -s -X POST http://localhost:8000/api/auth/login \
-H 'Content-Type: application/json' \
-d '{"email":"admin@example.ca","password":"password"}' \
| python3 -c "import sys,json; print(json.load(sys.stdin)['access_token'])")
curl -H "Authorization: Bearer $TOKEN" http://localhost:8000/api/images/1
Key UI Navigation
Tabs by Role
- admin: Home, Images, Manage, People, Admin
- instructor: Home, Images, Manage
- student: Home only
Browse (Home)
- Category tiles + uncategorized image tiles.
- Click a tile to drill down; click an image tile to open the OpenSeadragon viewer.
Images Tab
- Table columns: ID, Name, Category, Copyright, Note, Program, Status, Modified, Actions.
- Filter icon next to ADD IMAGE reveals per-column filters. The Category filter
matches the full path (e.g. "Architecture : Italian" — partial string like
archmatches). - Three-dot menu on any row: View / Details / Move / Delete.
- Clicking an image name opens the Edit Details modal.
Edit Details / Add Image / Bulk Edit modals
- All share a category dropdown rendering the full tree with view / edit /
+icons. +on any row opens a "New Category" dialog; the new category is auto-selected.- Edit Details has a VIEW IMAGE button that navigates to the viewer.
- When testing auto-select, cancel without saving after verifying the dropdown value to avoid polluting seed data.
Category Dropdown Image Counts
The category dropdown (CategoryPickerSelect) shows direct image counts next to
each category name — e.g. Architecture (0), Italian (1). These are direct
counts (images directly in that category), not subtree sums. When testing:
- Verify Architecture shows
(0)not(3)— it has no direct images - Verify leaf categories (American, Italian, Gothic, Panoramas) each show
(1)
Program Chip Toggles
All image metadata forms (Edit Details, Add Images, Bulk Edit) use a chip toggle panel for program multi-select — not a Select dropdown. The pattern:
- "Program" appears as a Typography heading above a row of Chip components
- Filled/primary = selected, outlined/default = unselected
- Click a chip to toggle its state (no Ctrl key needed)
- Multiple chips can be selected simultaneously
- In Edit Details: chips reflect the image's current program assignments
- In Add Images: all chips start outlined (no pre-selection)
- In Bulk Edit: all chips start outlined (changes apply to all selected images)
Testing flow:
- Open Edit Details for an image with a known program (e.g. Duomo di Milano → Digital Design)
- Verify the correct chip is filled, others are outlined
- Click an unselected chip → verify it becomes filled (others unchanged)
- Click a selected chip → verify it becomes outlined (others unchanged)
- Cancel to discard changes
- Repeat in Add Images and Bulk Edit modals to verify consistent behavior
Program Management
Programs are a flat, admin/OIDC-managed entity (no hierarchy). The Manage → Programs
menu entry is admin-only (hidden for instructors) and opens ProgramManagementModal:
a name field, an optional OIDC group field, and the list of existing programs with rename
(pencil) and delete actions. Only admins may create, rename, or delete a program; instructors
and students can read programs (e.g. to attach them to categories) but cannot manage them.
A program with an oidc_group has its membership provisioned by the IdP; programs without one
are managed manually via user assignment on the People tab (admin only). A category tagged with
one or more programs is visible to a student only if they belong to at least one of those programs.
Category Management
- Manage > Categories has a full dialog with drag-and-drop reordering.
- Category tree changes are reflected immediately on Browse without a refresh
(frontend invalidates the ETag-cached
/api/categories/treequery).
Category Program Visibility
Edit Category dialog has a "Visible to" radio group:
- All students (default): no program restriction, chip panel hidden
- Specific programs: shows chip toggle panel to select which programs can see the category
Key behaviors:
- Save/Create disabled when "Specific programs" selected but no chips toggled
- Save disabled when label is empty (even if programs changed)
- Inline rename (via category picker in image modals) does NOT show visibility controls and does NOT wipe existing program associations
Duplicate Category Name Validation
The backend returns 409 Conflict when creating or renaming a category to a name
that already exists among its siblings (same parent_id). The frontend dialogs
(AddCategoryDialog, EditCategoryDialog) show an inline red Alert and keep the dialog
open for retry.
Key behaviors to verify:
- Creating a category with the same name as an existing sibling → 409 error, dialog stays open
- Creating a category with a name that exists under a different parent → allowed (succeeds)
- Renaming a category to match an existing sibling → 409 error, dialog stays open
- After a 409 error: Create/Save button re-enables (not stuck in saving state)
- The error Alert is dismissible via its close (X) button
- Validation is sibling-scoped (same
parent_id), not global
Testing flow (Manage > Categories):
- Click
+next to "Root level" → type an existing root name (e.g. "Architecture") → Create → expect error - Click
+next to a different parent (e.g. Panoramas) → type a name that exists elsewhere (e.g. "American") → Create → expect success - Click pencil on a category → type an existing sibling name → Save → expect error
- Clean up any test categories created during step 2 (delete via the trash icon)
Category Program Visibility Picker
The Add/Edit Category dialogs include a "Visible to" radio group:
- "All students" (default for new categories) —
program_ids=[], chip panel hidden - "Specific programs" — reveals clickable chip toggles for each program; filled/primary = selected, outlined = unselected
Key behaviors to verify:
- Edit dialog pre-populates radio state from existing
program_ids(non-empty → "Specific programs" selected) - Edit dialog pre-selects the correct program chips based on
program_ids - Toggling a chip enables the Save button (change detection compares against original set)
- Save persists changes; re-opening the dialog reflects the updated associations
- Add dialog defaults to "All students" with chip panel hidden
- Switching to "Specific programs" reveals all program chips (all unselected initially)
- Creating with programs selected sends
program_idsto API - Inline category rename (via CategoryPickerSelect in EditImageModal, etc.) does NOT wipe program associations —
programIdsparameter is optional and only included when explicitly provided
Testing flow (Manage > Categories):
- Click pencil on "Architecture" → expect "Specific programs" radio selected, "Digital Design" chip filled
- Toggle another chip (e.g. "Photography") → Save → re-open → expect both chips filled
- Click
+at root level → expect "All students" radio, no chip panel → switch to "Specific programs" → select a chip → Create - Verify via API:
GET /api/categories/treereturns correctprogram_idsarrays - Clean up test data: restore Architecture to original
program_ids=[2], delete test categories
Testing flow (inline rename via EditImageModal):
- Check precondition via API: Italian (id=3) has
program_ids=[2] - Navigate to Architecture > Italian > click "Duomo di Milano" image tile
- Click "Edit Details" to open EditImageModal
- Open the Category dropdown (CategoryPickerSelect)
- Click pencil icon next to "Italian" in the dropdown → Edit Category dialog opens
- Verify: dialog shows only the name field — no "Visible to" radio or chip panel (because
programsprop is omitted, meaning no program context) - Rename "Italian" to "Italian2" → Save
- Verify via API:
GET /api/categories/tree→ Italian2 still hasprogram_ids=[2](not wiped to[]) - Clean up: rename back to "Italian" via same flow
Note: CategoryPickerSelect is used in 5 components (EditImageModal, UploadImageModal, BulkEditImagesModal, MoveImageDialog, MoveCategoryDialog). All render EditCategoryDialog without programs prop, so all follow the same code path. Testing via EditImageModal covers the shared behavior.
API verification pattern:
TOKEN=$(curl -s -X POST http://localhost:8000/api/auth/login \
-H 'Content-Type: application/json' \
-d '{"email":"admin@example.ca","password":"password"}' \
| python3 -c "import sys,json; print(json.load(sys.stdin)['access_token'])")
curl -s -H "Authorization: Bearer $TOKEN" http://localhost:8000/api/categories/tree \
| python3 -c "import sys,json; tree=json.load(sys.stdin); [print(f'{c[\"label\"]}: program_ids={c[\"program_ids\"]}') for c in tree]"
Button Guard / Form Validation States
The Save (Edit) and Create (Add) buttons have multi-condition disabled guards. Key invalid states to test:
- Empty label + programs changed: Save stays disabled even though
programsChanged=true(prevents confusing no-op submission) - "Specific programs" with zero chips: Save/Create disabled (prevents sending
program_ids=[]which means "visible to all" — contradicting the explicit "Specific programs" selection) - Positive control: Once a valid state is restored (label filled + at least one chip selected), button re-enables immediately
Testing tip: The category name input is a React-controlled Autocomplete (Combobox). Standard keyboard clearing (triple-click + Delete) may be intercepted by the autocomplete. If keyboard clearing doesn't work, use the browser console to clear it programmatically:
const input = document.querySelector('input[type="text"]')
const nativeInputValueSetter = Object.getOwnPropertyDescriptor(
window.HTMLInputElement.prototype,
'value',
).set
nativeInputValueSetter.call(input, '')
input.dispatchEvent(new Event('input', { bubbles: true }))
input.dispatchEvent(new Event('change', { bubbles: true }))
Manage Members (Groups — bulk association)
GroupManagementModal (Manage → Groups → select a group in the left rail) is built for
instructors to associate many students/instructors at scale (hundreds of students across ~4
heavy programs). It is gated by group co-ownership (canManageGroup). The detail panel has two tabs:
- Students tab — a paginated table (10 rows/page) of student accounts, with:
- Program filter chips (multi-select, OR semantics) — clicking chips narrows the table
to students in any selected program. Chips render from each student's
program_ids. - Search box (name or email, debounced ~300 ms).
- A header "select all on page" checkbox + per-row checkboxes, and an "Add N to group"
button that calls
POST /api/groups/{id}/members/bulkonce for the whole selection. - Existing members show a Member chip + a remove (trash) icon →
DELETE /api/groups/{id}/members/{user_id}.
- Program filter chips (multi-select, OR semantics) — clicking chips narrows the table
to students in any selected program. Chips render from each student's
- Instructors tab — same searchable/paginated table for co-owners, without the program
filter (instructors aren't program-gated). Bulk add →
POST /api/groups/{id}/instructors/bulk; existing co-owners show a Co-owner chip + remove icon (last-instructor removal is blocked with a 409 surfaced as an inline error).
Server-side filtering/pagination is driven by GET /api/users/?role=<student|instructor>&program_id=<id>&q=<text>&page=<n>&page_size=<n>,
reading the X-Total-Count response header to render page controls. The table updates local
state from the GroupOut response returned by the bulk/remove calls (no full re-fetch on toggle).
Key behaviors to verify:
- Selecting one or more program chips filters the student rows to the OR-union of those programs; clearing chips restores the full list. The instructors tab has no program chips.
- Typing in search filters by name/email after the debounce; combining search + program chips applies both (AND between dimensions, OR within the program set).
- "Select all on page" selects only the current page's rows; paging to the next page and the "Add N" count reflects the running multi-page selection.
- "Add N to group" performs one bulk call, the added users immediately appear as members with a remove icon, and the selection clears. No spinner flash / full list re-fetch on add or remove.
- Removing a member/co-owner updates the table from the API response. Removing the final instructor is rejected (409) with an inline message; the co-owner stays listed.
- Student profile menu shows the caller's groups as read-only chips alongside program chips
(
group_namesfromGET /api/auth/me).
Group chip colour: #5B6973 (white text) in light theme, #8A99A6 (dark text) in dark theme
— both WCAG-AA (≥4.5:1). Verify via getGroupChipColors(mode) in frontend/src/theme.ts.
API verification pattern (paginated listing + bulk add):
TOKEN=$(curl -s -X POST http://localhost:8000/api/auth/login \
-H 'Content-Type: application/json' \
-d '{"email":"instructor@example.ca","password":"password"}' \
| python3 -c "import sys,json; print(json.load(sys.stdin)['access_token'])")
# Page 1 of students in program 2, searching "an"; X-Total-Count drives page controls
curl -s -D - -o /dev/null -H "Authorization: Bearer $TOKEN" \
"http://localhost:8000/api/users/?role=student&program_id=2&q=an&page=1&page_size=10" \
| grep -i x-total-count
# Bulk add students 3 and 5 to group 1 → returns the updated GroupOut (member_ids)
curl -s -X POST -H "Authorization: Bearer $TOKEN" -H 'Content-Type: application/json' \
-d '{"user_ids":[3,5]}' http://localhost:8000/api/groups/1/members/bulk \
| python3 -c "import sys,json; print('member_ids=', json.load(sys.stdin)['member_ids'])"
People tab (admin only)
- Add / delete / edit users. Persistence survives a hard refresh.
Admin tab (admin only)
- Database export/import (JSON).
- Filesystem export/import (tar.gz via background tasks with log streaming).
Footer
- "BCIT Teaching and Learning Unit" link → https://www.bcit.ca/learning-teaching-centre/. Visible on all pages.
OpenSeadragon Viewer Toolbar
Bottom-left of the viewer, left to right:
| # | Icon | Function |
|---|---|---|
| 1 | + | Zoom in |
| 2 | – | Zoom out |
| 3 | House | Home (reset view) |
| 4 | Arrows | Fullscreen toggle |
| 5 | CCW arrow | Rotate left |
| 6 | CW arrow | Rotate right |
| 7 | Diagonal arrow | Selection tool (draw rectangles) |
| 8 | Padlock | Lock / unlock overlays |
| 9 | X | Clear overlays |
| 10 | Pencil | Canvas annotation edit |
Warning: Fullscreen (4) is adjacent to the selection tool (7) and easy to hit accidentally. Press Escape to exit fullscreen.
When testing viewer stability after metadata edits, watch the URL — zoom=, x=,
y= params should remain unchanged if the viewport was preserved.
Magnification Badge (Navigator Mini-Map)
The viewer displays a real-time magnification badge (NX) in the bottom-left
corner of the navigator mini-map (the mini-map itself is in the bottom-right
of the viewer). The badge updates on every zoom animation frame.
Two display modes
| Condition | Display |
|---|---|
| No measurement settings on image | Raw image-zoom ratio (e.g. <1X, 1X, 4X) |
| Measurement scale + unit configured | Real-world magnification (e.g. 155X, 2117X) |
Seed images have no measurement settings by default, so the badge shows <1X at
home zoom. To test measurement-aware magnification:
- Click Edit Details on any image.
- Set Scale =
8, Unit =um(8 pixels per micrometre). - Save → badge immediately shows a high value (e.g.
155Xat home zoom). - Clean up after testing — clear Scale and Unit fields and save again.
Expected badge values
- At home zoom without measurement:
<1X(image is smaller than viewport) - At home zoom with 8px/µm: ~`155X` (depends on image dimensions and viewport)
- Zooming in increases the value linearly
- Sub-unity magnification displays
<1Xinstead of0X
Key implementation details for testing
- Badge uses
pointerEvents: none— it should never block clicks on the navigator - Badge is appended to
viewer.navigator.element, NOT added viaviewer.addControl() - Updates on both
animationandanimation-finishevents (matchesrepositionLabelspattern) - After page reload with a share-link URL, the badge should show the correct value
for the restored viewport (not stale
1X)
Testing Metadata Operations
Optimistic Concurrency
Images use version-based optimistic concurrency; PATCH requires If-Match:
VERSION=$(curl -s -H "Authorization: Bearer $TOKEN" http://localhost:8000/api/images/1 \
| python3 -c "import sys,json; print(json.load(sys.stdin)['version'])")
curl -X PATCH http://localhost:8000/api/images/1 \
-H "Authorization: Bearer $TOKEN" \
-H "Content-Type: application/json" \
-H "If-Match: $VERSION" \
-d '{"name": "New Name"}'
Always re-fetch version before each PATCH or you'll get 409 Conflict.
metadata_extra_merge (Partial Updates)
metadata_extra_merge patches individual keys in metadata_extra without
overwriting the rest — this is how the frontend updates locked overlays and
measurement settings independently:
# Add / update a key
curl -X PATCH http://localhost:8000/api/images/1 \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" \
-H "If-Match: $VERSION" \
-d '{"metadata_extra_merge": {"locked_overlays": [{"x":0.1,"y":0.2,"w":0.3,"h":0.4}]}}'
# Remove a key by setting it to null
curl -X PATCH http://localhost:8000/api/images/1 \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" \
-H "If-Match: $VERSION" \
-d '{"metadata_extra_merge": {"locked_overlays": null}}'
metadata_extra and metadata_extra_merge are mutually exclusive — sending both
in one request returns 422.
locked_overlays entries are validated by OverlayRectSchema — each must have
numeric x, y, w, h. Malformed entries are silently filtered on both
backend and frontend.
Injecting Test Data
To exercise frontend handling of malformed metadata, inject directly:
docker exec hriv-db-1 psql -U hriv -d hriv -c \
"UPDATE images SET metadata = jsonb_set(COALESCE(metadata,'{}'), '{locked_overlays}', \
'[{\"x\":0.1,\"y\":0.2,\"w\":0.3,\"h\":0.4},{\"garbage\":true},{\"x\":\"str\",\"y\":0,\"w\":0,\"h\":0}]') \
WHERE id=2"
Then open that image in the browser to verify graceful handling.
Testing Drag-and-Drop (Browse Page)
The Browse page supports HTML5 native drag-and-drop for images, categories, and files.
All drag interactions are gated behind canEditContent — students see no drag affordances.
Tile move vs. reorder runs on
@dnd-kit/reactv2 (pointer sensors), not HTML5 native DnD. The native MIME-type flows below cover file drops and the CategoryTile file-drop overlay. The move-into-category / reorder-between-tiles contract lives indocs/drag-and-drop.md. Feel cannot be proven by a scripted/recorded drag — discrete idealized pointer steps don't reproduce the acceleration/jitter where feel bugs live. Any change to collision detection, drop zones, collision priority, or activation constraints must be feel-tested by a human before merge; a green recording is only a mechanics smoke-test, not feel validation.
Custom MIME Types
application/x-hriv-image— image tile drag payload ({"id": <imageId>})application/x-hriv-category— category tile drag payload ({"id": <categoryId>})Files— native file drag from OS
DnD Interactions to Test
| Action | Expected Result |
|---|---|
| Drag image tile onto category tile | Image moves to target category |
| Drag category tile onto another category | Category reparented under target |
| Drag category onto itself | No-op (self-drop guard) |
| Drop files on category tile | Upload dialog opens with that category pre-selected |
| Drop files on grid (not on a tile) | Upload dialog opens with current path category |
| Student views any tile | draggable="false", no drop handlers |
| Drag text/URL onto category tile | No highlight, drop rejected (MIME filtering) |
Testing the FileDropZone Component
The FileDropZone component renders a prominent drop target at the end of the card
grid only when files are actively being dragged into the viewport. It is gated
behind canEditContent (admin/instructor only).
Key DOM selector: [role="region"][aria-label="Drop files here to upload images"]
Triggering FileDropZone visibility:
// Dispatch dragenter with Files type on window to activate fileDragActive state
const dt = new DataTransfer()
dt.items.add(new File(['test'], 'test.png', { type: 'image/png' }))
window.dispatchEvent(
new DragEvent('dragenter', { bubbles: true, cancelable: true, dataTransfer: dt }),
)
// After ~100ms, check for the dropzone element:
const dz = document.querySelector('[role="region"][aria-label="Drop files here to upload images"]')
// dz should be non-null when fileDragActive=true
Expected visual properties when visible:
border: 3px dashedwithborderColor: rgb(167, 74, 74)(primary.main in light mode)minHeight: 220px,maxWidth: 300pxcursor: copy- Contains "Add images" heading + "Drop files here" subtext + circular badge with AddIcon
Testing drop on FileDropZone:
const dz = document.querySelector('[role="region"][aria-label="Drop files here to upload images"]')
const dt = new DataTransfer()
dt.items.add(new File(['data'], 'photo.jpg', { type: 'image/jpeg' }))
dz.dispatchEvent(new DragEvent('dragenter', { bubbles: true, cancelable: true, dataTransfer: dt }))
dz.dispatchEvent(new DragEvent('dragover', { bubbles: true, cancelable: true, dataTransfer: dt }))
dz.dispatchEvent(new DragEvent('drop', { bubbles: true, cancelable: true, dataTransfer: dt }))
// After ~100ms: upload dialog (.MuiDialog-root) should open, FileDropZone should disappear
Resetting drag state: Dispatch a drop event on window with Files type to reset
fileDragCounter and fileDragActive:
const dt = new DataTransfer()
dt.items.add(new File(['x'], 'x.png', { type: 'image/png' }))
window.dispatchEvent(new DragEvent('drop', { bubbles: true, cancelable: true, dataTransfer: dt }))
Testing CategoryTile Drag-Over State
When files (or images/categories) are dragged over a CategoryTile, it shows:
- 3px dashed outline (primary color) with
outlineOffset: -3(no box-model shift) transform: scale(1.03)for tactile feedback- "Drop here" text overlay with move icon badge and semi-transparent primary background
Verifying drag-over styling:
const card = document.querySelectorAll('.MuiCard-root')[0]
const dt = new DataTransfer()
dt.items.add(new File(['test'], 'test.png', { type: 'image/png' }))
card.dispatchEvent(
new DragEvent('dragenter', { bubbles: true, cancelable: true, dataTransfer: dt }),
)
card.dispatchEvent(new DragEvent('dragover', { bubbles: true, cancelable: true, dataTransfer: dt }))
// After ~100ms, verify computed styles:
const cs = window.getComputedStyle(card)
console.log(cs.outlineStyle) // 'dashed'
console.log(cs.outlineColor) // 'rgb(167, 74, 74)'
console.log(cs.outlineWidth) // '3px'
console.log(cs.transform) // 'matrix(1.03, 0, 0, 1.03, 0, 0)'
console.log(card.textContent.includes('Drop here')) // true
Testing DnD with Synthetic Events
Native HTML5 DnD requires physical mouse gestures that computer-use tools may not
reliably trigger. Use Playwright CDP with synthetic DragEvent dispatch instead:
import asyncio
from playwright.async_api import async_playwright
async def drag_image_to_category():
async with async_playwright() as p:
browser = await p.chromium.connect_over_cdp("http://localhost:9222")
page = browser.contexts[0].pages[0]
result = await page.evaluate("""
() => {
const cards = document.querySelectorAll('.MuiCard-root');
const sourceCard = cards[1]; // image tile
const targetCard = cards[0]; // category tile
const dt = new DataTransfer();
dt.setData('application/x-hriv-image', JSON.stringify({ id: 1 }));
sourceCard.dispatchEvent(new DragEvent('dragstart', { bubbles: true, dataTransfer: dt }));
targetCard.dispatchEvent(new DragEvent('dragenter', { bubbles: true, dataTransfer: dt }));
targetCard.dispatchEvent(new DragEvent('dragover', { bubbles: true, cancelable: true, dataTransfer: dt }));
targetCard.dispatchEvent(new DragEvent('drop', { bubbles: true, cancelable: true, dataTransfer: dt }));
sourceCard.dispatchEvent(new DragEvent('dragend', { bubbles: true, dataTransfer: dt }));
return 'DnD dispatched';
}
""")
print(result)
asyncio.run(drag_image_to_category())
Important notes for synthetic DnD:
- The full event sequence is required:
dragstart→dragenter→dragover→drop→dragend dragovermust havecancelable: trueand the handler must callpreventDefault()to allow the drop- For file drops, use
dt.items.add(new File(['test'], 'test.jpg', { type: 'image/jpeg' }))to populate theFilestype - Visual highlight (outline color change) IS observable via
getComputedStylewith synthetic events after a short delay (~100ms) for the React re-render to complete. UsesetTimeoutor poll the DOM - After destructive tests (moves/reparents), restore seed data via API PATCH
Verifying MIME Type Filtering
The isAcceptedDrag callback checks e.dataTransfer.types before allowing drops.
Verify filtering by checking defaultPrevented on dragover events:
// In browser console or Playwright evaluate:
const card = document.querySelectorAll('.MuiCard-root')[0]
// text/plain should be REJECTED (defaultPrevented = false)
const dtText = new DataTransfer()
dtText.setData('text/plain', 'test')
const textOver = new DragEvent('dragover', {
bubbles: true,
cancelable: true,
dataTransfer: dtText,
})
card.dispatchEvent(textOver)
console.log('text/plain prevented:', textOver.defaultPrevented) // false
// HRIV MIME should be ACCEPTED (defaultPrevented = true)
const dtCat = new DataTransfer()
dtCat.setData('application/x-hriv-category', '{"id":2}')
const catOver = new DragEvent('dragover', { bubbles: true, cancelable: true, dataTransfer: dtCat })
card.dispatchEvent(catOver)
console.log('x-hriv-category prevented:', catOver.defaultPrevented) // true
Verifying File Drop Category Pre-Selection
When files are dropped on a category tile, the upload dialog should open with that category pre-selected. After the dialog opens, verify:
const dialog = document.querySelector('.MuiDialog-root')
const dialogText = dialog.textContent
// Should contain "CategoryArchitecture(0)" (or whichever category was dropped on)
// NOT just "Category" with no selection
After closing and reopening the dialog normally (via ADD IMAGES button), the category field should be empty (no stale pre-selection from the previous file drop).
Data Restoration After DnD Tests
# Restore image back to original category
VERSION=$(curl -s -H "Authorization: Bearer $TOKEN" http://localhost:8000/api/images/1 \
| python3 -c "import sys,json; print(json.load(sys.stdin)['version'])")
curl -s -X PATCH http://localhost:8000/api/images/1 \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" \
-H "If-Match: $VERSION" -d '{"category_id": 3}' # Italian
# Restore category parent
curl -s -X PATCH http://localhost:8000/api/categories/2 \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" \
-d '{"parent_id": null}' # Panoramas back to root
Chrome CDP Port
When launching Chrome manually (e.g. because the CDP proxy on :29229 is not running),
use --remote-debugging-port=9222 and connect Playwright to http://localhost:9222
instead of :29229.
Testing Admin Export/Import
Filesystem Export UI Flow
- Admin tab → Filesystem section → EXPORT.
- Task appears in "Recent Tasks" at the bottom.
- Click the info (i) icon to open the log dialog (status badge, determinate progress bar, streaming logs, CANCEL/CLOSE).
- Completed tasks show a download (↓) icon in the task row.
Seeding Test Data for Export Testing
Default seed data is too small to exercise cancellation. Generate ~1 GB of incompressible data inside the backend container:
docker exec hriv-backend-1 python3 -c "
import os, random
for d in range(20):
path = f'/data/tiles/large_test/dir_{d}'
os.makedirs(path, exist_ok=True)
for f in range(500):
with open(f'{path}/file_{f}.bin', 'wb') as fh:
fh.write(random.randbytes(102400))
"
Verifying Archive Contents
Archives are stored at /data/admin_tasks/ inside the backend container:
docker exec hriv-backend-1 find /data/admin_tasks -name "*.tar.gz" -type f
docker exec hriv-backend-1 tar -tzf /data/admin_tasks/<filename>.tar.gz | head -20
# admin_tasks/ must be excluded from archives (no re-archiving of past exports):
docker exec hriv-backend-1 tar -tzf /data/admin_tasks/<filename>.tar.gz | grep admin_tasks
# (should return nothing)
Backend Implementation Notes
- Archiving runs on
asyncio.to_thread; a concurrent coroutine polls cancellation every 2s. - Cancellation bridges async/sync via
threading.Event. - Log entries buffer in
queue.Queueand flush every 2s. - The frontend polls task status every 2s, so UI state may lag the backend slightly.
Testing Image Upload + Processing
- Log in as admin@example.ca.
- Click ADD IMAGE on Browse.
- Use Playwright CDP for file selection (native chooser doesn't cooperate with computer-use):
from playwright.async_api import async_playwright async with async_playwright() as p: browser = await p.chromium.connect_over_cdp("http://localhost:29229") page = [pg for ctx in browser.contexts for pg in ctx.pages if "localhost:5173" in pg.url][0] async with page.expect_file_chooser() as fc_info: await page.click('text=browse to upload') fc = await fc_info.value await fc.set_files('/path/to/image.jpg') - Click ADD to upload.
- Processing snackbar appears bottom-right with a "View image" link on completion.
The snackbar auto-dismisses after 6 s — use Playwright wait_for to catch the link
deterministically. For deeper image-processing tests (progress flush timing,
synthetic large images, pyvips eval signals) see testing-image-processing.
Testing Bulk Import + ManagePage Auto-Refresh
Bulk imports happen when the user uploads a ZIP file or multiple images at once.
The backend creates a BulkImportJob and processes images asynchronously via arq.
App.tsx polls for job status every 2 seconds and bumps an imagesVersion counter
when the job completes, which triggers ManagePage's loadImages() useEffect.
Creating Test Images for Bulk Import
Use ImageMagick to create small test images and ZIP them:
# Create test JPEGs (PIL may not be installed)
for i in 1 2 3; do
convert -size 200x200 "xc:rgb($((50*i)),100,150)" /tmp/test_bulk_${i}.jpg
done
# Create ZIP archive
python3 -c "
import zipfile
with zipfile.ZipFile('/tmp/test_bulk_import.zip', 'w') as zf:
for i in range(1, 4):
zf.write(f'/tmp/test_bulk_{i}.jpg', f'test_bulk_{i}.jpg')
"
Bulk Import from ManagePage (Images Tab)
Navigate to Images tab (ManagePage) — note the current row count.
Click ADD IMAGES to open the upload modal.
Inject the ZIP file via Playwright (the native file picker won't work with computer-use):
import asyncio from playwright.async_api import async_playwright async def inject_zip(): async with async_playwright() as p: browser = await p.chromium.connect_over_cdp('http://localhost:29229') context = browser.contexts[0] page = [pg for pg in context.pages if 'localhost:5173' in pg.url][0] file_input = page.locator('input[type="file"]') await file_input.set_input_files('/tmp/test_bulk_import.zip') asyncio.run(inject_zip())Select a target category from the dropdown.
Click IMPORT 1 FILE (the button shows file count, not image count).
The upload modal closes, a snackbar shows import progress.
Without navigating away, wait for the import to complete (~5-10 seconds for small images).
Verify the image table auto-refreshes with the new rows.
Key behavior: The table should update automatically when the bulk import
completes. The imagesVersion counter in App.tsx increments on both:
- Bulk import job completion (polling path at
App.tsx:592-594) - Single-image processing completion (processing job path at
App.tsx:477-481)
ManagePage watches imagesVersion in its useEffect dependency array (ManagePage.tsx:223-225).
Verifying No Polling Churn
The old bug (#292) caused useEffect teardown/recreate on every state update, leading to rapid burst polling. To verify this is fixed:
- Instrument
window.fetchbefore starting a bulk import:# Via Playwright evaluate: await page.evaluate(''' window._pollLog = []; const origFetch = window.fetch; window.fetch = function(...args) { const url = typeof args[0] === "string" ? args[0] : (args[0]?.url || ""); if (url.includes("bulk-import")) { window._pollLog.push({ time: Date.now(), url }); } return origFetch.apply(this, args); }; ''') - Start a bulk import.
- After completion, check the logged intervals:
result = await page.evaluate(''' const log = window._pollLog; const intervals = []; for (let i = 1; i < log.length; i++) intervals.push(log[i].time - log[i-1].time); return { total: log.length, intervals }; ''') - Pass criteria: Intervals are ~2000ms apart (the
setInterval(2000)period). No rapid bursts. - Note: Very small test images may process within a single poll interval, so you may see only 1-2 requests total. That's expected — the absence of rapid bursts is what confirms no churn.
Testing Image Replacement
The Edit Details modal supports one-to-one image replacement with a two-step
confirmation flow. This replaces the image file, regenerates tiles and thumbnails,
and clears canvas metadata (locked_overlays, canvas_annotations).
Creating Test Images
Generate synthetic test images of varying sizes:
# Small JPEG for quick tests
python3 -c "import numpy as np; from PIL import Image; Image.fromarray(np.random.randint(0,255,(600,800,3),dtype=np.uint8)).save('/tmp/test_replacement.jpg', quality=85)"
# Large PNG for processing-time tests
python3 -c "import numpy as np; from PIL import Image; Image.fromarray(np.random.randint(0,255,(2000,2000,3),dtype=np.uint8)).save('/tmp/test_replacement_large.png')"
Alternatively, generate a test image directly in the browser console (avoids needing PIL/numpy and the native file picker):
const canvas = document.createElement('canvas')
canvas.width = 4000
canvas.height = 3000
const ctx = canvas.getContext('2d')
for (let y = 0; y < 3000; y += 10)
for (let x = 0; x < 4000; x += 10) {
ctx.fillStyle = `rgb(${(x * y) % 256},${(x + y) % 256},${(x ^ y) % 256})`
ctx.fillRect(x, y, 10, 10)
}
canvas.toBlob(
(blob) => {
const file = new File([blob], 'test_image.jpg', { type: 'image/jpeg' })
const dt = new DataTransfer()
dt.items.add(file)
const input = document.querySelector('input[type="file"]')
input.files = dt.files
input.dispatchEvent(new Event('change', { bubbles: true }))
},
'image/jpeg',
0.98,
)
UI Flow
- Open Edit Details modal (click image name in Images tab, or click "Edit Details" in viewer).
- The drop zone at the top shows "Drag and drop to replace image" with a "browse to upload" link.
- Select a file — the drop zone turns green, shows filename + size + "Clear" button.
- Button changes from "Save" to "Replace & Save" (blue).
- First click on "Replace & Save" → warning alert appears:
"Replacing this image will delete the current image file, all tiles, and any canvas annotations and overlays. This cannot be undone."
- Button changes to "Confirm Replace & Save" (orange/warning color).
- Second click executes the replacement (PATCH metadata, then POST file upload).
- During upload: "Uploading replacement — X%" text with LinearProgress bar, Cancel→"Close", Replace/Delete buttons disabled.
- If modal closed mid-upload: progress transitions to an uploading snackbar.
- After upload completes: modal auto-closes, Processing snackbar appears at bottom.
File Injection via Playwright
Since the file input is hidden, use Playwright CDP to inject the file directly rather than trying to interact with the OS file picker:
Precondition — the Edit Details (or Replace Image) modal must already be open.
The input[type="file"] element is rendered only while that modal is mounted, so
running the snippet with the modal closed makes page.locator('input[type="file"]')
match nothing and set_input_files(...) fails with a locator timeout. Selecting the
correct page (e.g. by localhost:5173 in page.url) does not help here — that
only picks the tab, not whether the modal is visible. Open the modal first (click the
row's ⋮ → Replace image / Edit details), then run:
import asyncio
from playwright.async_api import async_playwright
async def inject_file():
async with async_playwright() as p:
browser = await p.chromium.connect_over_cdp("http://localhost:29229")
context = browser.contexts[0]
page = context.pages[0]
file_input = page.locator('input[type="file"]')
await file_input.set_input_files('/tmp/test_replacement.jpg')
asyncio.run(inject_file())
This directly sets the hidden <input type="file"> without needing to interact
with the native file chooser dialog (modal-open precondition above still applies).
Post-Replacement Verification
After the processing snackbar disappears, verify via API:
curl -s -H "Authorization: Bearer $TOKEN" http://localhost:8000/api/images/1 | python3 -m json.tool
Key assertions:
tile_sourceschanged from external URL to/api/tiles/<id>/image.dzithumbchanged to/api/tiles/<id>/thumbnail.jpegwidthandheightmatch the replacement image dimensionsfile_sizeis populatedmetadata_extrais{}(canvas metadata cleared)name,category_id,copyright,note,program_idsare preservedversionhas incremented
Known Limitation (Issue #271)
The frontend performs two separate API calls for replacement:
- Metadata PATCH (
apiUpdateImage) — updates form fields - File POST (
apiReplaceImage) — uploads the new file
If the file upload fails after the metadata PATCH succeeds, metadata changes are committed but the file remains unchanged. This is a known trade-off; see issue #271 for discussion of potential atomic replacement approaches.
Localhost Throttling Limitation
The in-modal upload progress bar cannot be visually observed on localhost. XHR
upload.onprogress tracks bytes written to the OS TCP send buffer, not bytes received
by the server. On loopback, the kernel's TCP buffers (128KB–4MB) absorb the entire
file instantly — progress jumps 0→100% before the 500ms React re-render tick fires.
Approaches that do NOT work on localhost:
tc qdiscon port 8000 — wrong port (XHR tracks browser→Vite on 5173)tc qdiscon port 5173 IPv4 — Chrome uses IPv6::1, bypasses filtertc qdiscon port 5173 IPv4+IPv6 — throttles ALL traffic including PATCH- XHR monkey-patch — fake events fire but real
send()completes instantly - CDP
Network.emulateNetworkConditions— not available on browser-level WebSocket - TCP proxy with slow reads — no backpressure, OS buffers absorb all data
To test the progress bar, deploy to a real network environment where upload latency is non-trivial, or use a remote server accessible over a WAN link.
Nginx Body Size Limit (On-Cluster)
The Helm chart nginx config (charts/frontend/files/default.conf.template) has
client_max_body_size 0 (unlimited) for upload endpoints and 10MB for other
/api/ routes. The replace endpoint pattern images/\d+/replace must be in the
unlimited list, or large replacements will fail with 413. This doesn't affect
docker-compose testing (Vite dev proxy has no body limit).
Browser & Test Environment Tips
- Chrome CDP: The provisioned Chrome exposes CDP on
http://localhost:29229. Use it for Playwright scripts (p.chromium.connect_over_cdp(...)) when native computer-use is awkward (file uploads, flaky timing, snackbars). - Chrome binary (if you need to relaunch):
/opt/.devin/chrome/chrome/linux-*/chrome-linux64/chromewith--user-data-dir=/home/ubuntu/.browser_data_dirto keep profile state. Thegoogle-chromewrapper requires the CDP proxy. - Maximize the window before recording so the full app is captured:
Installwmctrl -r :ACTIVE: -b add,maximized_vert,maximized_horzwmctrlfirst if needed (sudo apt-get install -y wmctrl). Keyboard shortcuts like Super+Up only tile to half-screen on some window managers. - Seed images use external DZI tiles (openseadragon.github.io). Dark/black tiles on first load usually mean the CDN is still warming — wait a few seconds.
- Small vs large test images: a 1024×1024 solid-color JPEG processes in milliseconds; anything beyond ~200 MB is needed to observe tile-processing progress.
- Chrome CDP proxy may not be running: If
curl -s http://localhost:29229/json/versionreturns empty, launch Chrome manually with--remote-debugging-port=9222and connect Playwright tohttp://localhost:9222. - Playwright may not be pre-installed. Install with
pip install playwright && python3 -m playwright install chromium. Use ImageMagickconvertinstead of PIL for generating test images (it's available by default).
Canvas Annotation Edit Mode
The viewer's pencil icon (toolbar button 10) toggles canvas annotation edit mode,
powered by Fabric.js. Annotations are stored as JSON in metadata_extra.canvas_annotations.
Drawing Tools
| Tool | Fabric Object | Notes |
|---|---|---|
| Rectangle | fabric.Rect |
Outlined or filled via fill-mode toggle |
| Ellipse | fabric.Ellipse |
Outlined or filled via fill-mode toggle |
| Arrow | fabric.Line |
Has arrowhead style selector (none, standard, triangle, circle) |
| Text | fabric.IText |
Inline editable |
| Link | fabric.IText |
Like text but serialises a URL; shown as clickable in view mode |
Dual Rendering Modes
- Edit mode renders via Fabric.js canvas objects (vector, interactive).
- View mode renders via 2D canvas context using
drawArrowhead()inCanvasOverlay.tsx.
When testing arrowhead appearance, check both modes — a bug in drawArrowhead()
only affects view mode, while Fabric object styling only affects edit mode.
Arrowhead Scaling
The view-mode arrowhead scaling formula is:
sw = strokeWidth * zoom
headLen = Math.max(24, sw * 12)
arrowLineWidth = Math.max(1, sw)
Key fix history (PR #589): Standard arrowhead prong stroke was previously
headLen / 4 = sw * 3 (3x thicker than line shaft). Fixed to use lineWidth = sw
so prongs match the shaft thickness.
Testing procedure:
- Open an image, enter edit mode (pencil icon).
- Draw 4 arrows, each with a different arrowhead style (standard, triangle, circle, plain-line).
- Exit edit mode to see the view-mode rendering.
- Zoom to ~2x: verify standard prongs match line thickness (not 3x thicker).
- Zoom to ~4x: verify proportional scaling, no blowup.
- Return to home zoom: verify all 4 styles render correctly.
Line Width Options
LINE_WIDTHS = [1, 2, 4, 8, 16] — follows a 2x scaling pattern. The 16px option
ensures annotations remain visible at low zoom levels.
Multi-Object Operations
- Select all: Click one object to focus the Fabric canvas, then Shift+click others (Ctrl+A selects HTML page text, not canvas objects).
- Copy/Paste: Ctrl+C / Ctrl+V. Pasted objects appear near originals with a small offset.
- Right-click: Should NOT start drawing (guarded since Fabric v7 flipped
fireRightClickdefault).
Fabric.js v7 Breaking Changes (PR #589)
originX/originYdefaults changed from'left'/'top'to'center'/'center'. All 10 fabric constructors explicitly setoriginX: 'left', originY: 'top'.fireRightClick/fireMiddleClickflipped totrue. Mouse handler guards against non-left-button events.fabric.Lineis deprecated in v7 but still functional. Tracked for future migration.