iframe-proxy

ricaelchiquetti · 2025-10-30T19:40:30Z

📋 Description

Adds Template management endpoints for WhatsApp Business templates.

🔗 Related Issue

Closes #(issue_number)

🧪 Type of Change

🐛 Bug fix (non-breaking change which fixes an issue)
[X ] ✨ New feature (non-breaking change which adds functionality)
💥 Breaking change (fix or feature that would cause existing functionality to not work as expected)
📚 Documentation update
🔧 Refactoring (no functional changes)
⚡ Performance improvement
🧹 Code cleanup
🔒 Security fix

🧪 Testing

Manual testing completed
Functionality verified in development environment
No breaking changes introduced
Tested with different connection types (if applicable)

Manual checks:

POST /template/create with valid TemplateDto creates template and stores metadata
POST /template/edit updates template fields via Meta API
DELETE /template/delete deletes template by name or hsm_id and performs best-effort local cleanup
GET /template/find retrieves templates for the instance
Validation via JSONSchema7 blocks invalid payloads
Error responses are standardized and include Meta error payload when applicable

✅ Checklist

My code follows the project's style guidelines
I have performed a self-review of my code
I have commented my code, particularly in hard-to-understand areas
I have made corresponding changes to the documentation
My changes generate no new warnings
I have manually tested my changes thoroughly
I have verified the changes work with different scenarios
Any dependent changes have been merged and published

📝 Additional Notes

Multi-tenant: All operations are scoped by instance through WAMonitoringService
Validation: Uses JSONSchema7 and DTO classes following Evolution patterns
Error handling: Service propagates Meta API errors with structured payloads; routes use createMetaErrorResponse
Database: On delete, performs best-effort cleanup of local template metadata via Prisma

Summary by Sourcery

Add update and delete operations for WhatsApp Business message templates

New Features:

Implement TemplateService.edit to update templates via Meta API
Implement TemplateService.delete to remove templates and perform local metadata cleanup
Expose POST /template/edit and DELETE /template/delete routes with guards and error handling

Enhancements:

Introduce TemplateEditDto and TemplateDeleteDto with JSONSchema7 validation
Wrap and propagate Meta API errors into standardized responses

Chores:

Apply formatting and semicolon tweaks in makeProxyAgentUndici

sourcery-ai · 2025-10-30T19:40:37Z

Reviewer's Guide

This PR adds support for updating and deleting WhatsApp Business templates by extending the TemplateService with dedicated edit/delete methods and HTTP helpers, wiring new API endpoints with validation and error handling in the router and controller, defining DTOs and JSONSchema validators, and includes minor formatting cleanup in the proxy utility.

Sequence diagram for template edit API flow

sequenceDiagram
  actor User
  participant "TemplateRouter"
  participant "TemplateController"
  participant "TemplateService"
  participant "Meta API"
  User->>"TemplateRouter": POST /template/edit
  "TemplateRouter"->>"TemplateController": editTemplate(instance, data)
  "TemplateController"->>"TemplateService": edit(instance, data)
  "TemplateService"->>"Meta API": requestEditTemplate(templateId, payload)
  "Meta API"-->>"TemplateService": response
  "TemplateService"-->>"TemplateController": response
  "TemplateController"-->>"TemplateRouter": response
  "TemplateRouter"-->>User: HTTP 200 OK / error

Sequence diagram for template delete API flow

sequenceDiagram
  actor User
  participant "TemplateRouter"
  participant "TemplateController"
  participant "TemplateService"
  participant "Meta API"
  participant "PrismaRepository"
  User->>"TemplateRouter": DELETE /template/delete
  "TemplateRouter"->>"TemplateController": deleteTemplate(instance, data)
  "TemplateController"->>"TemplateService": delete(instance, data)
  "TemplateService"->>"Meta API": requestDeleteTemplate({ name, hsm_id })
  "Meta API"-->>"TemplateService": response
  "TemplateService"->>"PrismaRepository": deleteMany({ where: ... })
  "PrismaRepository"-->>"TemplateService": cleanup result
  "TemplateService"-->>"TemplateController": response
  "TemplateController"-->>"TemplateRouter": response
  "TemplateRouter"-->>User: HTTP 200 OK / error

ER diagram for new and updated template DTOs

erDiagram
  TEMPLATE {
    string name
    string language
    string category
    any components
    string webhookUrl
  }
  TEMPLATE_EDIT {
    string templateId
    string category
    boolean allowCategoryChange
    number ttl
    any components
  }
  TEMPLATE_DELETE {
    string name
    string hsmId
  }
  TEMPLATE ||--|| TEMPLATE_EDIT : "edit"
  TEMPLATE ||--|| TEMPLATE_DELETE : "delete"

Class diagram for new and updated template DTOs and service methods

classDiagram
  class TemplateDto {
    +string name
    +string language
    +string category
    +any components
    +string webhookUrl
  }
  class TemplateEditDto {
    +string templateId
    +string category
    +boolean allowCategoryChange
    +number ttl
    +any components
  }
  class TemplateDeleteDto {
    +string name
    +string hsmId
  }
  class TemplateService {
    +edit(instance: InstanceDto, data: TemplateEditDto)
    +delete(instance: InstanceDto, data: TemplateDeleteDto)
    -requestEditTemplate(templateId: string, data: any)
    -requestDeleteTemplate(name: string, hsm_id: string)
  }
  TemplateService ..> TemplateEditDto
  TemplateService ..> TemplateDeleteDto

Class diagram for TemplateController with new methods

classDiagram
  class TemplateController {
    +editTemplate(instance: InstanceDto, data: TemplateEditDto)
    +deleteTemplate(instance: InstanceDto, data: TemplateDeleteDto)
    +findTemplate(instance: InstanceDto)
  }
  TemplateController ..> TemplateEditDto
  TemplateController ..> TemplateDeleteDto

File-Level Changes

Change	Details	Files
Implement template edit and delete operations in TemplateService	Added public 'edit' method to construct payload, invoke Meta API and propagate errors Added public 'delete' method to call Meta API and perform best-effort local metadata cleanup Introduced private requestEditTemplate and requestDeleteTemplate HTTP helpers with logging and error handling	`src/api/services/template.service.ts`
Expose edit and delete endpoints in router and controller	Added POST /template/edit and DELETE /template/delete routes with guards, validation and standardized error responses Implemented editTemplate and deleteTemplate methods in TemplateController to delegate to service	`src/api/routes/template.router.ts` `src/api/controllers/template.controller.ts`
Define DTOs and JSONSchema validators for template editing and deletion	Created TemplateEditDto and TemplateDeleteDto Added templateEdit.schema.ts and templateDelete.schema.ts with JSONSchema7 rules Imported new schemas in validate.schema.ts	`src/api/dto/template.dto.ts` `src/validate/templateEdit.schema.ts` `src/validate/templateDelete.schema.ts` `src/validate/validate.schema.ts`
Refactor proxy agent utility formatting	Standardized semicolons and spacing in makeProxyAgentUndici Consolidated protocol constant declarations	`src/utils/makeProxyAgent.ts`

Tips and commands

Interacting with Sourcery

Trigger a new review: Comment @sourcery-ai review on the pull request.
Continue discussions: Reply directly to Sourcery's review comments.
Generate a GitHub issue from a review comment: Ask Sourcery to create an
issue from a review comment by replying to it. You can also reply to a
review comment with @sourcery-ai issue to create an issue from it.
Generate a pull request title: Write @sourcery-ai anywhere in the pull
request title to generate a title at any time. You can also comment
@sourcery-ai title on the pull request to (re-)generate the title at any time.
Generate a pull request summary: Write @sourcery-ai summary anywhere in
the pull request body to generate a PR summary at any time exactly where you
want it. You can also comment @sourcery-ai summary on the pull request to
(re-)generate the summary at any time.
Generate reviewer's guide: Comment @sourcery-ai guide on the pull
request to (re-)generate the reviewer's guide at any time.
Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
pull request to resolve all Sourcery comments. Useful if you've already
addressed all the comments and don't want to see them anymore.
Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
request to dismiss all existing Sourcery reviews. Especially useful if you
want to start fresh with a new review - don't forget to comment
@sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

Enable or disable review features such as the Sourcery-generated pull request
summary, the reviewer's guide, and others.
Change the review language.
Add, remove or edit custom review instructions.
Adjust other review settings.

Getting Help

Contact our support team for questions or feedback.
Visit our documentation for detailed guides and information.
Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

sourcery-ai

Hey there - I've reviewed your changes - here's some feedback:

Consolidate the instance lookup and token/businessId assignment in TemplateService into a shared private helper to reduce duplication and improve maintainability.
Consider using PATCH instead of POST for the template edit endpoint to better align with RESTful update semantics.
Replace console.error in the router error handlers with the project's logger to ensure consistent logging practices and severity levels.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- Consolidate the instance lookup and token/businessId assignment in TemplateService into a shared private helper to reduce duplication and improve maintainability.
- Consider using PATCH instead of POST for the template edit endpoint to better align with RESTful update semantics.
- Replace console.error in the router error handlers with the project's logger to ensure consistent logging practices and severity levels.

## Individual Comments

### Comment 1
<location> `src/api/services/template.service.ts:107` </location>
<code_context>
+    if (typeof data.category === 'string') payload.category = data.category;
+    if (typeof data.allowCategoryChange === 'boolean') payload.allow_category_change = data.allowCategoryChange;
+    if (typeof data.ttl === 'number') payload.time_to_live = data.ttl;
+    if (data.components) payload.components = data.components;
+
+    const response = await this.requestEditTemplate(data.templateId, payload);
</code_context>

<issue_to_address>
**suggestion:** Check for empty array or object in components assignment.

The current logic excludes empty arrays or objects from assignment, which may be valid. Use a check like data.components !== undefined to allow empty values if appropriate.

```suggestion
    if (data.components !== undefined) payload.components = data.components;
```
</issue_to_address>

### Comment 2
<location> `src/api/services/template.service.ts:145-152` </location>
<code_context>
+
+    try {
+      // Best-effort local cleanup of stored template metadata
+      await this.prismaRepository.template.deleteMany({
+        where: {
+          OR: [
+            { name: data.name, instanceId: getInstance.id },
+            data.hsmId ? { templateId: data.hsmId, instanceId: getInstance.id } : undefined,
+          ].filter(Boolean) as any,
+        },
+      });
</code_context>

<issue_to_address>
**suggestion:** Avoid using 'as any' in Prisma query filter.

Explicitly define the filter type or refactor the query to maintain type safety and prevent hidden type errors.

```suggestion
      const orFilter: Array<{ name?: string; templateId?: string; instanceId: string }> = [
        { name: data.name, instanceId: getInstance.id },
      ];
      if (data.hsmId) {
        orFilter.push({ templateId: data.hsmId, instanceId: getInstance.id });
      }
      await this.prismaRepository.template.deleteMany({
        where: {
          OR: orFilter,
        },
      });
```
</issue_to_address>

### Comment 3
<location> `src/api/services/template.service.ts:154-156` </location>
<code_context>
+        },
+      });
+    } catch (err) {
+      this.logger.warn(
+        `Failed to cleanup local template records after delete: ${(err as Error)?.message || String(err)}`,
+      );
</code_context>

<issue_to_address>
**suggestion:** Consider including error stack in log for better diagnostics.

Including the stack trace will provide more context for debugging cleanup failures.

```suggestion
      this.logger.warn(
        `Failed to cleanup local template records after delete: ${(err as Error)?.message || String(err)}\nStack: ${(err as Error)?.stack || 'No stack trace available.'}`,
      );
```
</issue_to_address>

### Comment 4
<location> `src/validate/templateEdit.schema.ts:31` </location>
<code_context>
+    category: { type: 'string', enum: ['AUTHENTICATION', 'MARKETING', 'UTILITY'] },
+    allowCategoryChange: { type: 'boolean' },
+    ttl: { type: 'number' },
+    components: { type: 'array' },
+  },
+  required: ['templateId'],
</code_context>

<issue_to_address>
**suggestion:** Specify item type for components array in schema.

Defining items: { type: 'object' } for the components array will ensure proper validation and prevent invalid data.

```suggestion
    components: { 
      type: 'array',
      items: { type: 'object' }
    },
```
</issue_to_address>

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

sourcery-ai · 2025-10-30T19:41:26Z

+    if (typeof data.category === 'string') payload.category = data.category;
+    if (typeof data.allowCategoryChange === 'boolean') payload.allow_category_change = data.allowCategoryChange;
+    if (typeof data.ttl === 'number') payload.time_to_live = data.ttl;
+    if (data.components) payload.components = data.components;


suggestion: Check for empty array or object in components assignment.

The current logic excludes empty arrays or objects from assignment, which may be valid. Use a check like data.components !== undefined to allow empty values if appropriate.

Suggested change

if (data.components) payload.components = data.components;

if (data.components !== undefined) payload.components = data.components;

sourcery-ai · 2025-10-30T19:41:26Z

+      await this.prismaRepository.template.deleteMany({
+        where: {
+          OR: [
+            { name: data.name, instanceId: getInstance.id },
+            data.hsmId ? { templateId: data.hsmId, instanceId: getInstance.id } : undefined,
+          ].filter(Boolean) as any,
+        },
+      });


suggestion: Avoid using 'as any' in Prisma query filter.

Explicitly define the filter type or refactor the query to maintain type safety and prevent hidden type errors.

Suggested change

await this.prismaRepository.template.deleteMany({

where: {

OR: [

{ name: data.name, instanceId: getInstance.id },

data.hsmId ? { templateId: data.hsmId, instanceId: getInstance.id } : undefined,

].filter(Boolean) as any,

},

});

const orFilter: Array<{ name?: string; templateId?: string; instanceId: string }> = [

{ name: data.name, instanceId: getInstance.id },

];

if (data.hsmId) {

orFilter.push({ templateId: data.hsmId, instanceId: getInstance.id });

}

await this.prismaRepository.template.deleteMany({

where: {

OR: orFilter,

},

});

sourcery-ai · 2025-10-30T19:41:27Z

+    category: { type: 'string', enum: ['AUTHENTICATION', 'MARKETING', 'UTILITY'] },
+    allowCategoryChange: { type: 'boolean' },
+    ttl: { type: 'number' },
+    components: { type: 'array' },


suggestion: Specify item type for components array in schema.

Defining items: { type: 'object' } for the components array will ensure proper validation and prevent invalid data.

Suggested change

components: { type: 'array' },

components: {

type: 'array',

items: { type: 'object' }

},

  } else {
-    const { host, password, port, protocol: proto, username } = proxy
-    protocol = (proto || 'http').replace(':', '')
+    const { host, password, port, protocol: proto, username } = proxy;


  } else {
-    const { host, password, port, protocol: proto, username } = proxy
-    protocol = (proto || 'http').replace(':', '')
+    const { host, password, port, protocol: proto, username } = proxy;


  } else {
-    const { host, password, port, protocol: proto, username } = proxy
-    protocol = (proto || 'http').replace(':', '')
+    const { host, password, port, protocol: proto, username } = proxy;


  } else {
-    const { host, password, port, protocol: proto, username } = proxy
-    protocol = (proto || 'http').replace(':', '')
+    const { host, password, port, protocol: proto, username } = proxy;


  } else {
-    const { host, password, port, protocol: proto, username } = proxy
-    protocol = (proto || 'http').replace(':', '')
+    const { host, password, port, protocol: proto, username } = proxy;


ricael added 2 commits October 30, 2025 16:28

feat(template): add edit/delete endpoints, DTOs and validation"

a95c843

refactor(utils): lint

3b0432d

sourcery-ai Bot reviewed Oct 30, 2025

View reviewed changes

github-advanced-security AI found potential problems Oct 30, 2025

View reviewed changes

chore(dto): remove unused template edit/delete DTOs

1aaad54

DavidsonGomes merged commit 1e3a235 into EvolutionAPI:develop Nov 7, 2025
4 of 5 checks passed

Sunbelt Computer Software

PL/B Language Development and Support

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Feat/update and delete meta templates#2163

Feat/update and delete meta templates#2163
DavidsonGomes merged 3 commits intoEvolutionAPI:developfrom
ricaelchiquetti:feat/update_delete_meta_templates

ricaelchiquetti commented Oct 30, 2025 •

edited by sourcery-ai Bot

Loading

Uh oh!

sourcery-ai Bot commented Oct 30, 2025 •

edited

Loading

Interacting with Sourcery

Customizing Your Experience

Getting Help

Uh oh!

sourcery-ai Bot left a comment

Uh oh!

sourcery-ai Bot Oct 30, 2025

Uh oh!

sourcery-ai Bot Oct 30, 2025

Uh oh!

sourcery-ai Bot Oct 30, 2025

Uh oh!

Check failure

Check failure

Check failure

Check failure

Check failure

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

	if (data.components) payload.components = data.components;
	if (data.components !== undefined) payload.components = data.components;

Sunbelt Computer Software

PL/B Language Development and Support

Conversation

ricaelchiquetti commented Oct 30, 2025 • edited by sourcery-ai Bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

📋 Description

🔗 Related Issue

🧪 Type of Change

🧪 Testing

✅ Checklist

📝 Additional Notes

Summary by Sourcery

Uh oh!

sourcery-ai Bot commented Oct 30, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Reviewer's Guide

Sequence diagram for template edit API flow

Sequence diagram for template delete API flow

ER diagram for new and updated template DTOs

Class diagram for new and updated template DTOs and service methods

Class diagram for TemplateController with new methods

File-Level Changes

Interacting with Sourcery

Customizing Your Experience

Getting Help

Uh oh!

sourcery-ai Bot left a comment

Choose a reason for hiding this comment

Uh oh!

sourcery-ai Bot Oct 30, 2025

Choose a reason for hiding this comment

Uh oh!

sourcery-ai Bot Oct 30, 2025

Choose a reason for hiding this comment

Uh oh!

sourcery-ai Bot Oct 30, 2025

Choose a reason for hiding this comment

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

Check failure

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

ricaelchiquetti commented Oct 30, 2025 •

edited by sourcery-ai Bot

Loading

sourcery-ai Bot commented Oct 30, 2025 •

edited

Loading