Filter by User to Educational Memes

[abdelrahman390]

Related issues

Fixes #619

Checklist

• Did you run the pre-commit? (If not, your PR will most likely not pass — please ensure it passes pre-commit)
• Did you test the change? (Ensure you didn’t just prompt the AI and blindly commit — test the code and confirm it works)
• Added screenshots to the PR description (if applicable)

Fully customized search bar to search for a specific subject and in a specific user.

Before:

After:

Summary by CodeRabbit

• New Features

  • Added a user filter dropdown on the memes page to filter by uploader and combine with subject filtering.
  • View now supports filtering memes by selected uploader and subject together.

• Chores

  • Test data generator now creates educational meme entries with randomized uploaders and recent timestamps.

[coderabbitai]

Warning

Rate limit exceeded

@A1L13N has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 27 minutes and 35 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between 24c9c21 and 0925a58.

📒 Files selected for processing (1)

• web/views.py (1 hunks)

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

Walkthrough

Adds meme test data generation to the test-data command, adds a user filter dropdown and JS to the memes template, and extends the meme_list view to support filtering by uploader via a user GET parameter and expose uploader choices to the template.

Changes

Cohort / File(s)	Change Summary
Test data command web/management/commands/create_test_data.py	Imported Meme, added Meme to cleared models, added create_meme_test_data(self, subjects: list[Subject], users: list[User]) which creates subject-scoped meme fixtures (title, caption, image, uploader, created_at) and is invoked from handle.
Template (frontend) web/templates/memes.html	Added a "Filter by user" <select> populated from memes_creators; replaced subject links with JS buttons and added script that builds URLs with both user and subject query params to reload filtered results.
View (backend) web/views.py	meme_list(request) now collects distinct meme uploaders into memes_creators, reads user GET param as selected_user_id, filters the memes queryset by uploader when present, and adds memes_creators and selected_user_id to the render context (pagination unchanged).

Sequence Diagram(s)

sequenceDiagram
    autonumber
    participant User
    participant Browser
    participant DjangoView
    participant Database

    Note over Browser, DjangoView #f9f0d9: Filter UI interaction (new)
    User->>Browser: Select user from dropdown and/or subject button
    Browser->>DjangoView: GET /memes?user=<user_id>&subject=<subject_slug>
    DjangoView->>Database: Query memes (apply subject filter if present)
    DjangoView->>Database: Query memes (apply uploader filter if present)
    Database-->>DjangoView: Return filtered memes
    DjangoView->>Browser: Render memes list with `memes_creators` and `selected_user_id`

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• Add meme management: new model, form validations, views, and templates #126 — Works on the same "memes" feature (Meme model, views/templates); likely foundational or overlapping with the current changes.

Pre-merge checks and finishing touches

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Out of Scope Changes Check	⚠️ Warning	The addition of the create_meme_test_data method and related test data generation for memes in the management command falls outside the scope of the filter-by-user feature requested in issue #619.	Extract or remove the test data generation changes into a separate pull request to keep the feature implementation focused on the filter-by-user functionality.
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title clearly summarizes the primary change by indicating that a user-based filtering feature has been added to the Educational Memes section, and it directly reflects the pull request’s main purpose.
Linked Issues Check	✅ Passed	The implementation adds a user filter dropdown populated with meme uploaders, filters the queryset by the selected user, and integrates the selected_user_id and memes_creators context variables, fully meeting the coding objectives outlined in issue #619.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Hello @abdelrahman390, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

Summary of Changes

Hello! Gemini or gemini-code-assist here, providing a summary of this pull request to help everyone get up to speed quickly.

This pull request addresses issue #619 by implementing a user filter on the educational memes page. Previously, users could only filter memes by subject. This change adds a dropdown filter that allows users to view memes uploaded by a specific user or all users.

The changes involve modifying the Django view to handle the new filter parameter, updating the template to include the filter dropdown and associated JavaScript for client-side filtering logic, and enhancing the test data creation command to include meme data associated with various users, making testing the new filter easier.

Highlights

• User Filtering: Adds a new filter option to the educational memes page, allowing users to filter the list of memes by the user who uploaded them.
• Backend Logic: Modifies the meme_list view in web/views.py to accept a user query parameter and filter the Meme queryset accordingly. It also collects the list of unique meme creators to populate the filter dropdown.
• Frontend Implementation: Updates the memes.html template to include a new dropdown (<select>) element for selecting a user. A small JavaScript snippet is added to handle the selection change and redirect the page with the appropriate query parameter.
• Test Data: Enhances the create_test_data management command to include the creation of educational memes associated with randomly selected users, facilitating testing of the new user filter feature.

Changelog

Click here to see the changelog

• web/management/commands/create_test_data.py
  • Imported the Meme model (line 27).
  • Added Meme to the list of models cleared by clear_data (line 76).
  • Created a combined list of teachers and students into a users variable (line 120) to be used for assigning meme uploaders.
  • Added a call to a new method create_meme_test_data (line 582) to generate meme test data.
  • Implemented the create_meme_test_data method (starting line 586) which defines sample meme data across various subjects and creates Meme objects, assigning a random user as the uploader and a random created_at date.
• web/templates/memes.html
  • Added a new <span> and <select> element for the user filter dropdown (lines 18-27).
  • Populated the user filter dropdown using the memes_creators context variable, marking the selected_user_id as selected if present (lines 24-25).
  • Added a <script> block (starting line 96) with JavaScript to listen for changes on the user filter dropdown and redirect the page with the selected user ID as a query parameter.
• web/views.py
  • Retrieved the user query parameter from the request (line 4364).
  • Iterated through the initial memes queryset to build a dictionary memes_creators mapping user IDs (as strings) to usernames for all users who have uploaded memes (lines 4366-4371).
  • Added a conditional filter to the memes queryset based on the user_filter parameter (lines 4376-4377).
  • Updated the context dictionary passed to the template to include selected_user_id and memes_creators (lines 4387-4388).

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point in your pull request via creating an issue comment (i.e. comment on the pull request page) using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in issue comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist is currently in preview and may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments to provide feedback.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

---

Memes on the page,
Filter by user, a new stage,
See who made what.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a valuable feature by adding the ability to filter educational memes by user. The implementation in the backend (views and test data generation) is largely well done. However, there are a few issues in the frontend template, particularly with how filter parameters are handled in JavaScript and pagination links, which need to be addressed to ensure correct functionality. Additionally, there's a minor logic issue and a potential N+1 query in the view that could be improved.

Summary of Findings

• JavaScript URL construction for filters: The JavaScript handling user filter changes in memes.html does not preserve the existing subject filter, leading to a loss of the subject context when a user filter is applied.
• Pagination links missing user filter: Pagination links in memes.html do not include the user query parameter, causing the user filter to be lost when navigating pages.
• N+1 Query in meme_list view: The initial fetching of memes in web/views.py lacks select_related('uploader', 'subject'), which can lead to performance issues due to N+1 database queries.
• Incorrect logic for populating memes_creators: In web/views.py, the condition to check for existing creators in the memes_creators dictionary uses the username against keys that are user IDs, which is logically flawed.
• Redundant/Potentially problematic JavaScript variable: In web/templates/memes.html, const subjectSlug = "{{ subject.slug }}"; is declared but not used by the current URL redirection logic, and might be problematic if subject isn't always in the template context.

Merge Readiness

The pull request introduces a useful filtering capability for educational memes. However, there are several issues, primarily in the frontend template (memes.html) related to how filter parameters are handled in JavaScript and pagination links, which impact the user experience and correctness of combined filtering. Additionally, there are opportunities for optimization and a minor logic correction in the backend view (web/views.py).

I recommend addressing the high severity issues concerning URL parameter handling in JavaScript and pagination before merging. The medium severity issues related to query optimization and memes_creators population logic should also be considered for a more robust and efficient implementation.

As an AI, I am not authorized to approve pull requests. Please ensure these changes are reviewed and approved by a human maintainer before merging.

[coderabbitai]

Actionable comments posted: 4

🔭 Outside diff range comments (2)

web/management/commands/create_test_data.py (1)

706-727: 🧹 Nitpick (assertive)

Consider using cryptographically secure random generation

For production code, consider using more secure random generation methods, especially when creating test user associations.

-                # Select a random user as uploader
-                uploader = random.choice(users)
-
-                # Generate a random date within the last month
-                random_date = timezone.now() - timedelta(days=random.randint(0, 30))
+                # Select a random user as uploader using cryptographically secure random
+                import secrets
+                uploader = users[secrets.randbelow(len(users))]
+
+                # Generate a random date within the last month using secure random
+                random_date = timezone.now() - timedelta(days=secrets.randbelow(31))

Note: This is a low-priority suggestion since this is test data generation, not security-sensitive code.

🧰 Tools

🪛 Ruff (0.8.2)

709-709: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

---

712-712: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

web/templates/memes.html (1)

71-74: 🛠️ Refactor suggestion

Update pagination to include user filter parameter

The pagination links don't preserve the user filter parameter, only the subject filter. This will cause the user filter to be lost when navigating between pages.

-            <a href="?{% if selected_subject %}subject={{ selected_subject }}&{% endif %}page={{ memes.previous_page_number }}"
+            <a href="?{% if selected_user_id %}user={{ selected_user_id }}&{% endif %}{% if selected_subject %}subject={{ selected_subject }}&{% endif %}page={{ memes.previous_page_number }}"

Apply similar changes to the page number links and next page link.

Also applies to: 80-84, 87-90

📜 Review details

Configuration used: CodeRabbit UI
Review profile: ASSERTIVE
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 459997a and 73c6a69.

📒 Files selected for processing (3)

• web/management/commands/create_test_data.py (4 hunks)
• web/templates/memes.html (2 hunks)
• web/views.py (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (1)

web/management/commands/create_test_data.py (1)

web/models.py (4)

• Meme (1784-1823)
• Subject (198-216)
• image (1282-1287)
• created_at (2337-2339)

🪛 GitHub Check: CodeQL

web/templates/memes.html

[warning] 102-102: DOM text reinterpreted as HTML
DOM text is reinterpreted as HTML without escaping meta-characters.

🪛 Ruff (0.8.2)

web/management/commands/create_test_data.py

586-586: Missing return type annotation for public function create_meme_test_data

Add return type annotation: None

(ANN201)

---

586-586: Missing type annotation for function argument subjects

(ANN001)

---

586-586: Missing type annotation for function argument users

(ANN001)

---

709-709: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

---

712-712: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: build-and-test
• GitHub Check: Run Tests

🔇 Additional comments (9)

web/management/commands/create_test_data.py (6)

27-27: LGTM - Added Meme model import

The Meme model has been correctly imported to support the new test data generation functionality.

---

76-76: LGTM - Added Meme model to clear_data

Good practice to include the Meme model in the data clearing process to ensure a clean slate for test data generation.

---

120-120: LGTM - Created combined users list

Creating a combined list of teachers and students for random assignment to memes is appropriate.

---

581-583: LGTM - Added call to create meme test data

The new method call is properly placed at the end of the handle method to create test meme data.

---

590-680: LGTM - Well-structured test data

The meme data is well-organized by subject, with appropriate titles, captions, and image paths for each meme.

---

682-705: LGTM - Proper subject handling

The code correctly handles existing subjects and creates new ones when needed, with appropriate attributes.

web/templates/memes.html (1)

18-27: LGTM - Added user filter dropdown

The user filter dropdown is well-implemented with proper styling that matches the existing subject filter.

web/views.py (2)

4364-4377: Feature implementation for user filtering looks good.

The code correctly:

1. Retrieves the user filter parameter from the request
2. Builds a mapping of meme creator IDs to usernames
3. Applies filtering by uploader ID when a user filter is provided

This successfully implements the "Filter by User" feature for educational memes as required in the PR.

---

4383-4389: Context variables properly set for the template.

The updated context dictionary correctly includes:

• selected_user_id: For tracking the currently selected user filter
• memes_creators: The mapping of creator IDs to usernames for populating the filter dropdown

This data structure will allow the template to display the user filter dropdown and maintain the selected state.

[coderabbitai]

Actionable comments posted: 2

🔭 Outside diff range comments (1)

web/templates/memes.html (1)

72-73: 🛠️ Refactor suggestion

Pagination controls need to include user filter.

The pagination links only include the subject filter but not the user filter, which will cause the user filter to be lost when navigating between pages.

Update the pagination links to include the user filter:

-            <a href="?{% if selected_subject %}subject={{ selected_subject }}&{% endif %}page={{ memes.previous_page_number }}"
+            <a href="?{% if selected_user_id %}user={{ selected_user_id }}&{% endif %}{% if selected_subject %}subject={{ selected_subject }}&{% endif %}page={{ memes.previous_page_number }}"
              class="px-4 py-2 text-sm font-medium text-gray-700 dark:text-gray-200 bg-white dark:bg-gray-800 border border-gray-300 dark:border-gray-600 rounded-l-md hover:bg-gray-50 dark:hover:bg-gray-700">

And similarly for other pagination links.

Also applies to: 81-82, 88-89

📜 Review details

Configuration used: CodeRabbit UI
Review profile: ASSERTIVE
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 73c6a69 and 7561a39.

📒 Files selected for processing (3)

• web/management/commands/create_test_data.py (4 hunks)
• web/templates/memes.html (2 hunks)
• web/views.py (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (1)

web/management/commands/create_test_data.py (1)

web/models.py (4)

• Meme (1784-1823)
• Subject (198-216)
• image (1282-1287)
• created_at (2337-2339)

🪛 Ruff (0.8.2)

web/management/commands/create_test_data.py

709-709: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

---

712-712: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

⏰ Context from checks skipped due to timeout of 90000ms (2)

• GitHub Check: build-and-test
• GitHub Check: Run Tests

🔇 Additional comments (14)

web/management/commands/create_test_data.py (8)

27-27: Good addition of the Meme model import.

The Meme model is properly imported to support the new test data generation.

---

76-76: Ensure data cleaning includes Meme model.

The Meme model has been correctly added to the list of models cleared during data reset, which ensures a clean slate for test data generation.

---

120-120: Good approach to combine users.

Combining teachers and students into a single list for random selection is an efficient approach for meme creation.

---

581-583: Well-placed call to create meme test data.

The meme data creation function is appropriately called at the end of the handle method, with proper parameters passed.

---

586-589: Function has proper type annotations.

The function includes clear type annotations for parameters and return value, which improves code readability and type safety.

---

591-680: Well-structured test data with diverse content.

The meme data is well-organized by subject categories with detailed titles, captions, and image paths. The variety of subjects and memes will provide good test coverage for the filtering functionality.

---

684-705: Robust subject handling with fallback creation.

The code intelligently reuses existing subjects or creates new ones when needed, which is a good approach for test data that might be run multiple times.

---

709-709: Using random is appropriate here.

Static analysis flagged random.choice and random.randint as not suitable for cryptographic purposes, but for test data generation this is acceptable and appropriate.

Also applies to: 712-712

🧰 Tools

🪛 Ruff (0.8.2)

709-709: Standard pseudo-random generators are not suitable for cryptographic purposes

(S311)

web/templates/memes.html (3)

18-27: Good implementation of user filter dropdown.

The user filter dropdown is well-structured with appropriate options including an "All users" option and proper selection of the current user.

---

34-38: Button-based subject filtering improves UX.

Converting subject links to buttons with data attributes allows for better integration with the JavaScript-based filtering system and maintains the visual design.

---

97-126: Well-implemented secure filtering with URL API.

The JavaScript code correctly:

1. Uses the URL API for proper parameter encoding, preventing XSS vulnerabilities
2. Preserves both filters when either is changed
3. Handles subject and user filtering consistently

This successfully addresses previous review comments about XSS vulnerabilities and filter preservation.

web/views.py (3)

4366-4375: Good implementation of memes creator dictionary for user filtering.

The code properly builds a dictionary of meme creators, mapping user IDs to usernames for use in the filter dropdown. The implementation correctly converts user IDs to strings for dictionary keys and ensures each creator is added only once.

---

4379-4381: Properly implemented user filtering functionality.

The user filtering implementation correctly applies the filter only when a valid user ID is provided and handles the "None" case appropriately.

---

4386-4392: Context variables properly updated for the template.

The context dictionary has been properly updated to include both the selected user ID and the memes creators mapping, which will allow the template to correctly display the filter and maintain the selected state.

[Copilot]

Pull Request Overview

This PR adds user filtering functionality to the educational memes page, allowing users to filter memes by both subject and uploader. The enhancement improves the discoverability of content by providing granular filtering options.

• Enhanced meme filtering with dual dropdown interface for subjects and users
• Added backend support for user-based filtering alongside existing subject filtering
• Expanded test data generation to include educational memes with random uploaders

Reviewed Changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 3 comments.

File	Description
web/views.py	Added user filtering logic and context data for meme creators
web/templates/memes.html	Implemented user dropdown filter and JavaScript for combined filtering
web/management/commands/create_test_data.py	Added comprehensive meme test data generation with random uploaders

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[Copilot]

The query for uploaders is executed before applying filters, which could be inefficient. Consider moving this query after the filtering logic to only fetch uploaders from the filtered meme set, or use a separate query on the User model to get all users who have uploaded memes.

Suggested change

	# Get distinct uploaders from the database
	uploaders = memes.values("uploader__id", "uploader__username").distinct()
	memes_creators = {str(uploader["uploader__id"]): uploader["uploader__username"] for uploader in uploaders}
	if subject_filter and subject_filter != "None":
	memes = memes.filter(subject__slug=subject_filter)
	if user_filter and user_filter != "None":
	memes = memes.filter(uploader_id=user_filter)
	if subject_filter and subject_filter != "None":
	memes = memes.filter(subject__slug=subject_filter)
	if user_filter and user_filter != "None":
	memes = memes.filter(uploader_id=user_filter)
	# Get distinct uploaders from the filtered memes queryset
	uploaders = memes.values("uploader__id", "uploader__username").distinct()
	memes_creators = {str(uploader["uploader__id"]): uploader["uploader__username"] for uploader in uploaders}

[Copilot]

The user parameter is appended even when selectedUserId/selectedUser is empty or 'None'. This will add an empty user parameter to the URL. Consider only appending the parameter when the value is truthy and not 'None'.

[Copilot]

The user parameter is appended even when selectedUserId/selectedUser is empty or 'None'. This will add an empty user parameter to the URL. Consider only appending the parameter when the value is truthy and not 'None'.

Suggested change

	url.searchParams.append('user', selectedUser);
	if (selectedUser && selectedUser !== 'None') {
	url.searchParams.append('user', selectedUser);
	}

[A1L13N]

Please update this PR:

✅ Ensure all review comments are addressed
🔄 Resolve any merge conflicts
🧭 Verify that database migrations are correct and up to date

Once everything is done, please push the updated commits so we can proceed with the review.

[coderabbitai]

Actionable comments posted: 1

📜 Review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1a6db61 and 24c9c21.

📒 Files selected for processing (1)

• web/views.py (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: Run Tests

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Drop the -created_at ordering before calling values().distinct().

memes still carries order_by("-created_at") when you execute memes.values(...).distinct(). On PostgreSQL this becomes SELECT DISTINCT ... ORDER BY created_at, which fails because the ordered column isn’t in the projection. As soon as someone loads the page you’ll hit a database error. Call .order_by() (with no args) before values() or build the uploader queryset off a fresh Meme.objects.order_by().values(...) so the DISTINCT runs without the invalid ORDER BY.

🤖 Prompt for AI Agents

In web/views.py around lines 4437 to 4448, the queryset `memes` still has
`.order_by("-created_at")` when you call `memes.values(...).distinct()`, which
on Postgres produces an invalid ORDER BY on columns not in the projection;
remove that ordering before calling `values().distinct()` by either calling
`memes = memes.order_by()` (no args) prior to `values(...)` or build the
uploader queryset from a fresh un-ordered queryset like
`Meme.objects.order_by().values(...).distinct()`, so the DISTINCT query runs
without the invalid ORDER BY.