feat: Refreshed UI

[andypols]

Summary

This PR modernises the git-proxy UI while keeping backend changes to a minimum.

resolves #1106
resolves #1123
resolves #1176
resolves #1258
resolves #1297
resolves #1420
resolves #1495

UI L&F

• Upgraded to the latest React version
• Replaced legacy @material-ui with GitHub’s component library (@primer/react) and Tailwind CSS (fixes Replace MUI v4 styling with Tailwind #1106).
• Replaced legacy moment with luxon for UI date/time handling.
• Removed the left-hand navigation and replaced it with a responsive top navigation bar.
• Updated pages to use query parameters to preserve state, so browser back/forward navigation works as expected.

Standard top navigation:

Mobile (responsive) navigation:

Repositories

• Fixed repository sorting, filtering, and pagination (Sort entries in the admin UI and apply proper pagination #1420)
• Increased the default page size (Improve pagination defaults and layout in admin UI #1297)
• Only show pagination when there is more than one page
• Display the total number of repositories
• Added an activity summary for each repository, including approved, cancelled, rejected, and errored pushes, with links to filtered activity views
• Added sorting by name, activity, pending, and relevance (where relevance means you are a contributor or reviewer)
• Default sort is relevance, as this is the most useful view for most users
• Added 24-hour metadata caching for GitHub rate-limited API calls (Move GitHub project metadata requests from client to backend to avoid unauthenticated rate limits #1495). More below.
• Updated the new repository modal to auto-populate the organisation and repository name fields when pasting a URL, if those fields are blank

Repository list view

Repository

• Added activity summary for the repository
• Replaced the add-user modal with proper autocomplete. User lookup now matches on typed characters instead of showing all users. It also supports pasting a username directly

Repository view

Activities (previously Dashboard)

• Renamed Dashboard to Activities, as “dashboard” was confusing for users.
• “Activities” also gives us room to expand in future to support PRs, issues, comments, and more.
• Fixed activity (push request) sorting, filtering, and pagination (Sort entries in the admin UI and apply proper pagination #1420).
• Increased the default page size (Improve pagination defaults and layout in admin UI #1297)
• Simplified the push request table so it only contains internal git-proxy links (Resolve users to GitHub and Gitlab user profiles in push views #1176).
• Long commit messages are truncated in the table, with the full text shown on hover.
• Tabs now show totals.

Activity list view

Users

• Fixed user sorting, filtering, and pagination (Sort entries in the admin UI and apply proper pagination #1420).
• Increased the default page size (Improve pagination defaults and layout in admin UI #1297)
• Removed gitAccount from the UI (Remove/rename all usages of gitAccount #1258), although it remains in the database.
• Display the total number of users.
• Added an activity summary for each user.

User list view

User

• Added activity summary for the user

User view

Backend APIs & Services

This branch adds the backend APIs and service-layer support needed for the new UI:

• A new GET /api/v1/repo/:id/scm-metadata endpoint fetches and caches GitHub/GitLab repository metadata using new provider-specific logic in src/service/gitProviders. The github api endpoint is currently unauthenticated, but the implementation is structured so future PRs can add bearer-token auth and provider-specific operations such as forking or syncing.
• A new GET /api/v1/user/:id/activity endpoint returns all pushes attributed to a user.
• The existing GET /api/v1/user response now includes activity tab counts.
• The existing GET /api/v1/repo response now includes activity tab counts.

[netlify]

✅ Deploy Preview for endearing-brigadeiros-63f9d0 canceled.

Name	Link
🔨 Latest commit	d07c2f0
🔍 Latest deploy log	https://app.netlify.com/projects/endearing-brigadeiros-63f9d0/deploys/69e65b4aca75bd0007aec881

[codecov]

Codecov Report

❌ Patch coverage is 44.12651% with 371 lines in your changes missing coverage. Please review.
✅ Project coverage is 85.19%. Comparing base (2019faf) to head (d07c2f0).
⚠️ Report is 3 commits behind head on main.

Files with missing lines	Patch %	Lines
src/db/file/pushes.ts	26.92%	76 Missing ⚠️
src/db/mongo/pushes.ts	36.52%	73 Missing ⚠️
src/db/index.ts	27.14%	51 Missing ⚠️
src/service/gitProviders/GitLabProvider.ts	12.24%	43 Missing ⚠️
src/service/scmMetadata.ts	63.63%	40 Missing ⚠️
src/service/gitProviders/GitHubProvider.ts	29.26%	29 Missing ⚠️
src/activity/activityPrimaryStatus.ts	4.76%	20 Missing ⚠️
src/db/userProfilePushQuery.ts	51.72%	14 Missing ⚠️
src/activity/canonicalRemoteUrl.ts	64.51%	9 Missing and 2 partials ⚠️
src/db/repoActivityMerge.ts	70.00%	6 Missing ⚠️
... and 3 more

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1507      +/-   ##
==========================================
- Coverage   90.21%   85.19%   -5.03%     
==========================================
  Files          69       79      +10     
  Lines        5511     6148     +637     
  Branches      944      980      +36     
==========================================
+ Hits         4972     5238     +266     
- Misses        521      890     +369     
- Partials       18       20       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[kriswest]

Hey @andypols, we discussed this PR at #1506 and are (as a group) excited to see this get done. We debated whether to put this PR in scope for 2.1.0 or whether to go for 2.2.0... There are at least 2 PRs also scoped for 2.1.0 that will need UI additions:

• feat(ssh): Add SSH agent forwarding #1332
  • User administration of SSH support
• feat: add password reset for default admin/user accounts #1457
  • Password change dialog

SSH has been waiting for a long time so consensus at the meeting was (reluctantly) to do that first and then ask you to update #1507 to add the additional UI panels (or to collab with you on doing so). Hence, we've marked this for 2.2.0 (and as the only issue in that milestone currently). Does that work for you?

Also, please see the below notes from the meeting agenda:

• there was a question about some additional issues you may or may not be taking care of with the PR (no worries if not, just needed to check and add them to the resolves list if they are getting done):
• We need to know if feat: add server-side pagination to API endpoints #1464 is redundant and can be closed (sounds like a yes, but wanted to be 100% sure)

Agenda except from #1506

• Replace MUI v4 styling with Tailwind #1106 & Resolve users to GitHub and Gitlab user profiles in push views #1176 & Remove/rename all usages of gitAccount #1258 & Improve pagination defaults and layout in admin UI #1297 & Sort entries in the admin UI and apply proper pagination #1420 & Move GitHub project metadata requests from client to backend to avoid unauthenticated rate limits #1495
  • feat: Refreshed UI #1507
  • Are these also solved/solvable?
    • Supress tooltip errors for private projects #1123
    • Ensure Git Proxy user interfaces meet WCAG 2.2 Level AA accessibility requirements #1363
    • Extend Cypress tests for dashboard pages and components #624
  • Is feat: add server-side pagination to API endpoints #1464 still needed or does feat: Refreshed UI #1507 deal with all the same issues (and more)
    • See comment from @andypols: Sort entries in the admin UI and apply proper pagination #1420 (comment) [ ] Create & publish OCI image for GitProxy with production use #1303
  • What is the impact on renovate PRs?

On the final question, we're expecting it to close a few renovate PRs as we drop some dependencies in favour of new ones?

[andypols]

Hey @kriswest

SSH has been waiting for a long time so consensus at the meeting was (reluctantly) to do that first and then ask you to update #1507 to add the additional UI panels (or to collab with you on doing so). Hence, we've marked this for 2.2.0 (and as the only issue in that milestone currently). Does that work for you?

I think the bigger issue is that planning has started to block releases rather than guide them. We used to release regularly; now worthwhile contributions sit for long periods and get pushed back further and further. SSH is a good example, and I’m concerned the UI work may end up the same way.

I’d prefer a simpler approach: merge bug fixes and useful enhancements when they’re ready. Then make release review a standing agenda item at each meeting by asking, “Is there any reason not to release the latest changes?”

• We need to know if feat: add server-side pagination to API endpoints #1464 is redundant and can be closed (sounds like a yes, but wanted to be 100% sure)

I did not implement the paging in the database - we tried to leave the db layer alone and just focus on the UI. #1464 is not redundant, although its not really needed yet and can wait until the ui changes have been made.

• Supress tooltip errors for private projects Supress tooltip errors for private projects #1123

Yes, the caching has addressed this. It will not include any project metadata

• Ensure Git Proxy user interfaces meet WCAG 2.2 Level AA accessibility requirements Ensure Git Proxy user interfaces meet WCAG 2.2 Level AA accessibility requirements #1363

It has probably improved but will still need to be done.

• Extend Cypress tests for dashboard pages and components Extend Cypress tests for dashboard pages and components #624

No this still needs doing. Cypress is hard for us as its blocked internally for security reasons. The existing cypress tests are working locally, no idea why they are failing in the pr tests.

[kriswest]

I think the bigger issue is that planning has started to block releases rather than guide them. We used to release regularly; now worthwhile contributions sit for long periods and get pushed back further and further. SSH is a good example, and I’m concerned the UI work may end up the same way.

The delay on the SSH feature was a decision we made collectively because the wholesale refactor of the code conflicted with everything making it very hard to merge. For 2.1.0 we've picked that and a number of other (pretty much) dev complete PRs to get merged to try and get to release relatively quickly to start clearing our backlog, with the goal of getting back to quicker releases as soon as we've got that done.

Nothing we've picked needs much new work apart from resolving conflicts and review/testing - we just had to deal with the expected conflict between your UI rebuild and a couple of the PRs that will add to the UI. There's not an easy solution to that other than one or the other going first. As per the meeting minutes, I offered to check-in with you as the meeting was keen to get both the UI and SSH etc. in ASAP.

We also have some issues with Cypress testing here - but I've got a machine I can run them on. Perhaps we can get some collab going on resolving those so that the coverage doesn't dip. It might be worth merging this into a FINOS repo branch to do that?

[kriswest]

I think the bigger issue is that planning has started to block releases rather than guide them.

I think we switched from making smaller changes to great big ones which caused this. SSH and a new UI are not small, but not quite as massive as the whole codebase refactor. Hopefully after these we'll have a run of smaller changes.

[kriswest]

I think the cypress failure is down to this id:
https://github.com/qube-rt/git-proxy/blob/d07c2f0aea8eb239d7c788f2ca8080c8886fa35a/src/ui/views/PushDetails/components/Reject.tsx#L132

Which the test expects to be #reason when its #push-reject-reason
https://github.com/qube-rt/git-proxy/blob/d07c2f0aea8eb239d7c788f2ca8080c8886fa35a/cypress/e2e/docker/pushActions.cy.js#L129

[kriswest]

The dependency review check may be having trouble because its a PR from a fork?? Perhaps setting
comment-summary-in-pr: on-failure at:

git-proxy/.github/workflows/dependency-review.yml

Line 22 in 6981427

comment-summary-in-pr: always

will help?

[jescalada]

@andypols Fantastic contributions! Tailwind makes the UI code a lot more readable, and the UI is looking much, much better. 😃

I'm wondering if we could/should do some refactoring for the className strings, I think we might benefit from having these centralized (especially for certain elements such as buttons, form inputs, etc.).

Other than a few minor points, this is looking great!

[jescalada]

It'd be great to add a docstring to explain what bumpMaxTimestampMs and bumpCount are doing; it isn't obvious at first glance 🙂

[jescalada]

Otherwise, more descriptive function names could also work as with bumpUserActivityCount below

[andypols]

Thats fair - not the clearest naming. Although they are placeholders and will be probably get replaced when we implement #1464

[jescalada]

Is there a reason why these functions (bumpUserActivityCount, getUserActivityCountsByUsername) were extracted to src/db/index.ts? Meanwhile the equivalent ones for repos are split into each of the database implementations (src/db/file/pushes.ts, src/db/mongo/pushes.ts).

I'm wondering since we'll add PostgreSQL support soon, perhaps we want to make this more consistent (by either extracting or splitting all helpers) or otherwise explain why not all functions were extracted.

[jescalada]

I just verified that the bumpMaxTimestampMs function is identical in both file and mongo implementations - seems like a prime candidate for extraction 😃

[jescalada]

Should we make a string helpers file just for processing strings, or perhaps import an existing library for this? We're messing with strings in various ways elsewhere and might benefit from having it centralized.

Some other examples are:

• normalizeRepoPathForMatch in src/activity/canonicalRemoteUrl.ts
• trimTrailingDotGit in src/db/helper.ts

Feel free to ignore if too much hassle, this seems more appropriate for a separate PR anyways 🙂

[jescalada]

Would it make sense to extract the common elements in these className strings into a separate file for Tailwind classes? I think it might prevent issues with inconsistent or unmaintainable styles down the road.

[andypols]

I’d avoid extracting Tailwind class strings into a separate file just for reuse. Tailwind’s philosophy is utility-first and markup-local: you generally keep the Tailwind classes on the element they style. A core benefit of Tailwind is that styles stay colocated with the markup, which makes components easier to understand and reduces the chance of orphaned styles.

If the same group of classes is repeated in several places, I’d treat that as a signal that we may want to extract a component, or possibly a variant helper, rather than creating shared class constants.

[jescalada]

Another candidate for class string extraction 🙂

[jescalada]

Might be a good candidate for class string extraction to a shared file, though I'm not sure if it's more appropriate to have these split into style files for each individual component as we did here (we would sacrifice consistency for the sake of quick lookups vs. putting everything in a single src/ui/tailwindClasses.ts).

[jescalada]

Perhaps button styles and colors could be extracted here?

[jescalada]

I think the import for RepoSortField is missing in this file 🤔

[jescalada]

These style strings look like they could be extracted