indentlabs
diff --git a/‎app/controllers/api/v1/gallery_images_controller.rb
Lines changed: 118 additions & 0 deletions b/‎app/controllers/api/v1/gallery_images_controller.rb
Lines changed: 118 additions & 0 deletions
diff --git a/‎app/controllers/browse_controller.rb
Lines changed: 103 additions & 102 deletions b/‎app/controllers/browse_controller.rb
Lines changed: 103 additions & 102 deletions
@@ -0,0 +1,118 @@
+class Api::V1::GalleryImagesController < ApplicationController
+  before_action :authenticate_user!
+  skip_before_action :verify_authenticity_token, only: [:sort]
+
+  # POST /api/v1/gallery_images/sort
+  # Handles sorting of gallery images (both ImageUploads and BasilCommissions)
+  # Expected params:
+  # - images: Array of hashes with:
+  #   - id: Image ID
+  #   - type: 'image_upload' or 'basil_commission'
+  #   - position: New position
+  # - content_type: Content type (e.g., 'Character')
+  # - content_id: Content ID
+  def sort
+    # Validate ownership/contribution permissions for the content
+    content_type = params[:content_type]
+    content_id = params[:content_id]
+    content = content_type.constantize.find_by(id: content_id)
+    
+    # Check permissions - must own or contribute to this content
+    unless content && 
+           (content.user_id == current_user.id || 
+            (content.respond_to?(:universe_id) && 
+             content.universe_id.present? && 
+             current_user.contributable_universe_ids.include?(content.universe_id)))
+      return render json: { error: 'Unauthorized' }, status: :unauthorized
+    end
+
+    # Process each image in the array
+    success = true
+    
+    # Add a validation check to ensure all images in params exist
+    # This helps prevent race conditions where an image might have been deleted
+    image_ids_by_type = {
+      'image_upload' => [],
+      'basil_commission' => []
+    }
+    
+    params[:images].each do |image_data|
+      if ['image_upload', 'basil_commission'].include?(image_data[:type])
+        image_ids_by_type[image_data[:type]] << image_data[:id].to_i
+      else
+        success = false
+        return render json: { error: 'Invalid image type' }, status: :unprocessable_entity
+      end
+    end
+    
+    # Verify all images exist and belong to this content
+    image_upload_count = ImageUpload.where(
+      id: image_ids_by_type['image_upload'],
+      content_type: content_type, 
+      content_id: content_id
+    ).count
+    
+    basil_commission_count = BasilCommission.where(
+      id: image_ids_by_type['basil_commission'],
+      entity_type: content_type, 
+      entity_id: content_id
+    ).count
+    
+    if image_upload_count != image_ids_by_type['image_upload'].size ||
+       basil_commission_count != image_ids_by_type['basil_commission'].size
+      return render json: { error: 'Some images do not exist or do not belong to this content' }, 
+                    status: :unprocessable_entity
+    end
+    
+    # Use an advisory lock to prevent concurrent updates
+    # This ensures only one request at a time can update positions for this content
+    lock_key = "gallery_images_#{content_type}_#{content_id}"
+    
+    # Use a transaction to ensure all positions are updated or none are
+    ActiveRecord::Base.transaction do
+      # With_advisory_lock is a gem method, but we handle it with our own locking mechanism
+      # if it's not available
+      if ActiveRecord::Base.connection.respond_to?(:with_advisory_lock)
+        ActiveRecord::Base.connection.with_advisory_lock(lock_key) do
+          update_image_positions(params[:images], content_type, content_id)
+        end
+      else
+        # Fallback to regular transaction if advisory locks aren't supported
+        update_image_positions(params[:images], content_type, content_id)
+      end
+    end
+
+    if success
+      render json: { success: true }
+    else
+      render json: { error: 'Failed to update image positions' }, status: :unprocessable_entity
+    end
+  end
+  
+  private
+  
+  def update_image_positions(images, content_type, content_id)
+    # Process each image in the array
+    images.each do |image_data|
+      if image_data[:type] == 'image_upload'
+        # Update ImageUpload position
+        image = ImageUpload.find_by(id: image_data[:id])
+        if image && image.content_type == content_type && image.content_id.to_s == content_id.to_s
+          image.insert_at(image_data[:position].to_i)
+        else
+          raise ActiveRecord::Rollback
+        end
+      elsif image_data[:type] == 'basil_commission'
+        # Update BasilCommission position
+        image = BasilCommission.find_by(id: image_data[:id])
+        if image && image.entity_type == content_type && image.entity_id.to_s == content_id.to_s
+          image.insert_at(image_data[:position].to_i)
+        else
+          raise ActiveRecord::Rollback
+        end
+      else
+        raise ActiveRecord::Rollback
+      end
+    end
+  end
+end
@@ -3,8 +3,6 @@ class BrowseController < ApplicationController
 
   def tag
     @tag_slug = params[:tag_slug]
-    # Debug logging
-    Rails.logger.info "BrowseController#tag - Looking for content with tag slug: #{@tag_slug}"
 
     # For now, only allow ArtFight2025 tag to be browsed (case insensitive)
     unless @tag_slug.downcase == 'artfight2025'
@@ -18,122 +16,125 @@ def tag
 
     # Directly check database for any pages with this tag
     tag_exists = PageTag.exists?(slug: @tag_slug)
-    Rails.logger.info "Tag exists in PageTag table? #{tag_exists}"
 
     if tag_exists
-      sample_tag = PageTag.find_by(slug: @tag_slug)
-      Rails.logger.info "Sample tag: #{sample_tag.inspect}" 
-    end
-    
-    # Go through each content type and find public items with this tag
-    Rails.application.config.content_types[:all].each do |content_type|
-      # Try a different query approach - first find page IDs with this tag
-      tag_page_ids = PageTag.where(page_type: content_type.name, slug: @tag_slug).pluck(:page_id)
+      # Calculate a daily seed for consistent randomization across page refreshes in same day
+      # This allows for caching while still changing the order daily
+      daily_seed = Date.today.to_time.to_i
 
-      if tag_page_ids.any?
-        Rails.logger.info "Found #{tag_page_ids.count} #{content_type.name} page IDs with tag: #{tag_page_ids}"
-        content_pages = content_type.where(id: tag_page_ids).where(privacy: 'public').order(:name)
-      else
-        Rails.logger.info "No #{content_type.name} pages found with tag"
-        content_pages = content_type.none
-      end
+      # Number of items to show per content type to avoid performance issues
+      per_type_limit = 50
+      
+      # Go through each content type and find public items with this tag
+      Rails.application.config.content_types[:all].each do |content_type|
+        # First find page IDs with this tag
+        tag_page_ids = PageTag.where(page_type: content_type.name, slug: @tag_slug).pluck(:page_id)
+        
+        if tag_page_ids.any?
+          # Use database-level randomization with the daily seed for caching potential
+          # Use PostgreSQL's random function with a seed derived from the ID and daily seed
+          # This is much more efficient than loading all records into memory
+          content_pages = content_type.where(id: tag_page_ids)
+                                    .where(privacy: 'public')
+                                    .order(Arel.sql("RANDOM()"))
+                                    .limit(per_type_limit)
 
-      @tagged_content << {
-        type: content_type.name,
-        icon: content_type.icon,
-        color: content_type.color,
-        content: content_pages
-      } if content_pages.any?
-    end
-    
-    # Add documents separately since they don't use the common content type structure
-    document_tag_page_ids = PageTag.where(page_type: 'Document', slug: @tag_slug).pluck(:page_id)
-    if document_tag_page_ids.any?
-      Rails.logger.info "Found #{document_tag_page_ids.count} Document page IDs with tag: #{document_tag_page_ids}"
-      documents = Document.where(id: document_tag_page_ids).where(privacy: 'public').order(:title)
-    else
-      Rails.logger.info "No Document pages found with tag"
-      documents = Document.none
-    end # Documents use 'title' instead of 'name'
-                      
-    @tagged_content << {
-      type: 'Document',
-      icon: 'description',
-      color: 'blue',
-      content: documents
-    } if documents.any?
-    
-    # Add timelines separately since they don't use the common content type structure
-    timeline_tag_page_ids = PageTag.where(page_type: 'Timeline', slug: @tag_slug).pluck(:page_id)
-    if timeline_tag_page_ids.any?
-      Rails.logger.info "Found #{timeline_tag_page_ids.count} Timeline page IDs with tag: #{timeline_tag_page_ids}"
-      timelines = Timeline.where(id: timeline_tag_page_ids).where(privacy: 'public').order(:name)
-    else
-      Rails.logger.info "No Timeline pages found with tag"
-      timelines = Timeline.none
-    end
-                      
-    @tagged_content << {
-      type: 'Timeline',
-      icon: 'timeline',
-      color: 'blue',
-      content: timelines
-    } if timelines.any?
-    
-    # Get images for content cards from all users
-    content_ids_by_type = {}
-    user_ids = []
-    
-    @tagged_content.each do |content_group|
-      content_group[:content].each do |content|
-        content_type = content.class.name
-        content_ids_by_type[content_type] ||= []
-        content_ids_by_type[content_type] << content.id
-        user_ids << content.user_id
+          @tagged_content << {
+            type: content_type.name,
+            icon: content_type.icon,
+            color: content_type.color,
+            content: content_pages
+          } if content_pages.any?
+        end
       end
-    end
-    
-    # Get unique user IDs
-    user_ids.uniq!
-    
-    # Get all relevant images
-    @random_image_pool_cache = {}
-    if content_ids_by_type.any?
-      content_ids_by_type.each do |content_type, ids|
-        images = ImageUpload.where(content_type: content_type, content_id: ids)
+      
+      # Add documents separately since they don't use the common content type structure
+      document_tag_page_ids = PageTag.where(page_type: 'Document', slug: @tag_slug).pluck(:page_id)
+      if document_tag_page_ids.any?
+        documents = Document.where(id: document_tag_page_ids)
+                          .where(privacy: 'public')
+                          .order(Arel.sql("RANDOM()"))
+                          .limit(per_type_limit)
 
-        images.each do |image|
-          key = [image.content_type, image.content_id]
-          @random_image_pool_cache[key] ||= []
-          @random_image_pool_cache[key] << image
+        @tagged_content << {
+          type: 'Document',
+          icon: 'description',
+          color: 'blue',
+          content: documents
+        } if documents.any?
+      end
+      
+      # Add timelines separately since they don't use the common content type structure
+      timeline_tag_page_ids = PageTag.where(page_type: 'Timeline', slug: @tag_slug).pluck(:page_id)
+      if timeline_tag_page_ids.any?
+        timelines = Timeline.where(id: timeline_tag_page_ids)
+                          .where(privacy: 'public')
+                          .order(Arel.sql("RANDOM()"))
+                          .limit(per_type_limit)
+        
+        @tagged_content << {
+          type: 'Timeline',
+          icon: 'timeline',
+          color: 'blue',
+          content: timelines
+        } if timelines.any?
+      end
+      
+      # Get images for content cards from all users
+      content_ids_by_type = {}
+      user_ids = []
+      
+      @tagged_content.each do |content_group|
+        content_group[:content].each do |content|
+          content_type = content.class.name
+          content_ids_by_type[content_type] ||= []
+          content_ids_by_type[content_type] << content.id
+          user_ids << content.user_id
         end
       end
-    end
-    
-    # Initialize basil commissions if there are any content items
-    if content_ids_by_type.any?
-      entity_types = []
-      entity_ids = []
 
-      content_ids_by_type.each do |content_type, ids|
-        entity_type = content_type.downcase.pluralize
-        entity_types.concat([entity_type] * ids.length)
-        entity_ids.concat(ids)
+      # Get unique user IDs
+      user_ids.uniq!
+      
+      # Get all relevant images - optimize with a single query per content type
+      @random_image_pool_cache = {}
+      if content_ids_by_type.any?
+        content_ids_by_type.each do |content_type, ids|
+          images = ImageUpload.where(content_type: content_type, content_id: ids)
+          
+          images.each do |image|
+            key = [image.content_type, image.content_id]
+            @random_image_pool_cache[key] ||= []
+            @random_image_pool_cache[key] << image
+          end
+        end
+      end
+      
+      # Initialize basil commissions if there are any content items
+      if content_ids_by_type.any?
+        entity_types = []
+        entity_ids = []
+        
+        content_ids_by_type.each do |content_type, ids|
+          entity_type = content_type.downcase.pluralize
+          entity_types.concat([entity_type] * ids.length)
+          entity_ids.concat(ids)
+        end
+        
+        @saved_basil_commissions = BasilCommission.where(
+          entity_type: entity_types,
+          entity_id: entity_ids
+        ).where.not(saved_at: nil)
+        .group_by { |commission| [commission.entity_type, commission.entity_id] }
       end
 
-      @saved_basil_commissions = BasilCommission.where(
-        entity_type: entity_types,
-        entity_id: entity_ids
-      ).where.not(saved_at: nil)
-      .group_by { |commission| [commission.entity_type, commission.entity_id] }
+      # Get usernames for display with content - optimize with a single query
+      @users_cache = User.where(id: user_ids).index_by(&:id)
     end
 
     # Set a default accent color for the page
     @accent_color = 'purple'
 
-    # Get usernames for display with content
-    @users_cache = User.where(id: user_ids).index_by(&:id)
-    
     # Sort content types so Characters always appear first
     @tagged_content = @tagged_content.sort_by do |content_group|
       if content_group[:type] == 'Character'