ux(transcription): show error banner when bulk mark-all-reviewed fails #627

Merged

marcel merged 15 commits from feat/issue-356-mark-all-reviewed-error into main 2026-05-19 22:09:02 +02:00

Conversation 15 Commits 15 Files Changed 7 +148 -12

marcel commented 2026-05-19 20:47:45 +02:00

Owner

Copy Link

Closes #356

Summary

• markAllReviewed() in useTranscriptionBlocks.svelte.ts now throws an Error(code) on non-2xx response instead of silently returning — error code is parsed from the response body and passed through getErrorMessage(), never rendered raw
• TranscriptionEditView.svelte gains markAllError state + a catch block in handleMarkAllReviewed that populates it; a role="alert" aria-live="polite" banner renders below the review progress bar with a 44×44px dismiss button
• Button label "Alle als fertig markieren" and disabled tooltip are routed through Paraglide (m.transcription_mark_all_reviewed() / m.transcription_mark_all_reviewed_disabled())
• 3 new i18n keys added to messages/{de,en,es}.json
• 4 new Vitest browser component tests cover: error shown on reject, dismiss clears, next success clears, button re-enabled after failure
• Existing useTranscriptionBlocks unit test updated to expect throw (not silent no-op) on non-2xx

Test plan

• cd frontend && npm run test — all 3223 tests pass
• cd frontend && npm run check — no type errors
• Manual: open a document with unreviewed blocks, block /review-all in DevTools → click "Mark all as reviewed" → error banner appears → dismiss clears it → unblock and retry → success, banner gone

🤖 Generated with Claude Code

Closes #356 ## Summary - `markAllReviewed()` in `useTranscriptionBlocks.svelte.ts` now throws an `Error(code)` on non-2xx response instead of silently returning — error code is parsed from the response body and passed through `getErrorMessage()`, never rendered raw - `TranscriptionEditView.svelte` gains `markAllError` state + a `catch` block in `handleMarkAllReviewed` that populates it; a `role="alert" aria-live="polite"` banner renders below the review progress bar with a 44×44px dismiss button - Button label `"Alle als fertig markieren"` and disabled tooltip are routed through Paraglide (`m.transcription_mark_all_reviewed()` / `m.transcription_mark_all_reviewed_disabled()`) - 3 new i18n keys added to `messages/{de,en,es}.json` - 4 new Vitest browser component tests cover: error shown on reject, dismiss clears, next success clears, button re-enabled after failure - Existing `useTranscriptionBlocks` unit test updated to expect throw (not silent no-op) on non-2xx ## Test plan - [ ] `cd frontend && npm run test` — all 3223 tests pass - [ ] `cd frontend && npm run check` — no type errors - [ ] Manual: open a document with unreviewed blocks, block `/review-all` in DevTools → click "Mark all as reviewed" → error banner appears → dismiss clears it → unblock and retry → success, banner gone 🤖 Generated with [Claude Code](https://claude.com/claude-code)

marcel added 8 commits 2026-05-19 20:47:45 +02:00

test(transcription): add failing tests for markAllReviewed error display ... f27e2d33a5

RED phase: 4 new Vitest browser tests that fail because the error
banner and catch block don't exist yet.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

feat(i18n): add transcription_mark_all_reviewed_error message key ... 907a6a6b53

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

fix(transcription): throw error from markAllReviewed() on non-2xx response ... e3e8373526

Previously the function silently returned on failure, leaving no way
for callers to detect or surface the error to the user.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

feat(transcription): show dismissible error banner when markAllReviewed fails ... 6b53cbfc5b

Adds markAllError state and catch block to handleMarkAllReviewed.
Error banner renders below the review progress bar with role="alert"
and aria-live="polite" for screen reader announcement. Dismiss button
clears the error; next successful call also clears it automatically.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

feat(i18n): add transcription_mark_all_reviewed and _disabled message keys ... bb39ca59ec

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

fix(i18n): wire TranscriptionEditView mark-all button through Paraglide ... 59e99f862a

Replace hardcoded German strings with m.transcription_mark_all_reviewed()
and m.transcription_mark_all_reviewed_disabled().

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

test(transcription): replace hardcoded regex with m.* calls in mark-all spec ... e2d3975524

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

test(transcription): update markAllReviewed non-OK test to expect throw ... 3e72157ee1

The function now throws instead of silently returning on failure.
Update the test name and assertion to match the new behaviour, and
verify blocks remain unchanged after the error.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

marcel commented 2026-05-19 20:52:11 +02:00

Author

Owner

Copy Link

👨‍💻 Felix Brandt — Senior Fullstack Developer

Verdict: 🚫 Changes requested

Blockers

Dead i18n key: transcription_mark_all_reviewed_error is unreachable

You added this key to all three message files (de.json, en.json, es.json) but nothing in the TypeScript/Svelte codebase ever calls m.transcription_mark_all_reviewed_error(). The catch block in TranscriptionEditView.svelte does this:

} catch (e) {
    markAllError = getErrorMessage(e instanceof Error ? e.message : undefined);
}

e.message is the error code string (e.g. 'INTERNAL_ERROR'), and getErrorMessage('INTERNAL_ERROR') returns m.error_internal_error() — the generic "Something went wrong" fallback — not the domain-specific key you added. The three new transcription_mark_all_reviewed_error values are dead code.

Fix: either call m.transcription_mark_all_reviewed_error() directly in the catch branch (since we always know which operation failed at this call site), or delete the three new keys and rely solely on getErrorMessage.

Suggestions

• Tests in the mark all reviewed describe block don't assert the error banner's text content — only its presence via role="alert". That means the dead key bug above doesn't fail any test. Adding toHaveTextContent(m.transcription_mark_all_reviewed_error()) to the "shows error message" test would have caught this immediately during the red step.

• The useTranscriptionBlocks.svelte.test.ts update is clean. Updating the existing test from "no-op on non-OK" to "throws with extracted code" is the right call.

LGTM

• The security comment explaining why body.message is never rendered is exactly right — keep it.
• useRealTimers() placement in the new error tests is correct (no fake timer left hanging).
• m.transcription_mark_all_reviewed() and m.transcription_mark_all_reviewed_disabled() are wired correctly and the spec was updated to match.

## 👨‍💻 Felix Brandt — Senior Fullstack Developer **Verdict: 🚫 Changes requested** ### Blockers **Dead i18n key: `transcription_mark_all_reviewed_error` is unreachable** You added this key to all three message files (`de.json`, `en.json`, `es.json`) but nothing in the TypeScript/Svelte codebase ever calls `m.transcription_mark_all_reviewed_error()`. The catch block in `TranscriptionEditView.svelte` does this: ```typescript } catch (e) { markAllError = getErrorMessage(e instanceof Error ? e.message : undefined); } ``` `e.message` is the error code string (e.g. `'INTERNAL_ERROR'`), and `getErrorMessage('INTERNAL_ERROR')` returns `m.error_internal_error()` — the generic "Something went wrong" fallback — **not** the domain-specific key you added. The three new `transcription_mark_all_reviewed_error` values are dead code. Fix: either call `m.transcription_mark_all_reviewed_error()` directly in the catch branch (since we always know which operation failed at this call site), or delete the three new keys and rely solely on `getErrorMessage`. ### Suggestions - Tests in the `mark all reviewed` describe block don't assert the error banner's **text content** — only its presence via `role="alert"`. That means the dead key bug above doesn't fail any test. Adding `toHaveTextContent(m.transcription_mark_all_reviewed_error())` to the "shows error message" test would have caught this immediately during the red step. - The `useTranscriptionBlocks.svelte.test.ts` update is clean. Updating the existing test from "no-op on non-OK" to "throws with extracted code" is the right call. ### LGTM - The security comment explaining why `body.message` is never rendered is exactly right — keep it. - `useRealTimers()` placement in the new error tests is correct (no fake timer left hanging). - `m.transcription_mark_all_reviewed()` and `m.transcription_mark_all_reviewed_disabled()` are wired correctly and the spec was updated to match.

marcel commented 2026-05-19 20:52:23 +02:00

Author

Owner

Copy Link

🧪 Sara Holt — QA Engineer

Verdict: ⚠️ Approved with concerns

Blockers

None.

Suggestions

Error text content not asserted in tests

The four new tests check for presence/absence of role="alert" but never verify what the banner actually says:

// Current — only checks element exists
await expect.element(page.getByRole('alert')).toBeInTheDocument();

// Stronger — would also catch wrong message being shown
await expect.element(page.getByRole('alert')).toHaveTextContent(m.transcription_mark_all_reviewed_error());

This matters because the dead i18n key bug (see Felix's review) means the banner currently shows m.error_internal_error() text, not the domain-specific message. A toHaveTextContent assertion would have caught this during the red step.

No coverage for non-JSON fallback body

useTranscriptionBlocks.svelte.ts has res.json().catch(() => ({})) — the catch path triggers when the server returns non-JSON (e.g. an nginx 502 HTML page). The test suite only exercises the JSON success path ({ code: 'INTERNAL_ERROR' }). A short unit test with new Response('Bad Gateway', { status: 502 }) (no Content-Type) would confirm the fallback correctly produces 'INTERNAL_ERROR' as the thrown message.

"Clears error on next successful call" test relies on timing

The third new test fires two sequential btn.dispatchEvent(...) calls without awaiting any state change between them. In practice Svelte 5 batches effects, so this may occasionally race. Wrapping with await vi.waitFor(() => expect(service.options).not.toBeNull()) between the two clicks would make it deterministic.

LGTM

• The CDP click workaround (dispatchEvent(new MouseEvent('click', { bubbles: true, cancelable: true }))) matches the existing pattern in the file — consistent.
• The dismiss-button test correctly queries by m.comp_dismiss() aria-label rather than by position — robust.
• afterEach(cleanup) is already present; no test isolation concerns.

## 🧪 Sara Holt — QA Engineer **Verdict: ⚠️ Approved with concerns** ### Blockers None. ### Suggestions **Error text content not asserted in tests** The four new tests check for presence/absence of `role="alert"` but never verify what the banner actually says: ```typescript // Current — only checks element exists await expect.element(page.getByRole('alert')).toBeInTheDocument(); // Stronger — would also catch wrong message being shown await expect.element(page.getByRole('alert')).toHaveTextContent(m.transcription_mark_all_reviewed_error()); ``` This matters because the dead i18n key bug (see Felix's review) means the banner currently shows `m.error_internal_error()` text, not the domain-specific message. A `toHaveTextContent` assertion would have caught this during the red step. **No coverage for non-JSON fallback body** `useTranscriptionBlocks.svelte.ts` has `res.json().catch(() => ({}))` — the catch path triggers when the server returns non-JSON (e.g. an nginx 502 HTML page). The test suite only exercises the JSON success path (`{ code: 'INTERNAL_ERROR' }`). A short unit test with `new Response('Bad Gateway', { status: 502 })` (no Content-Type) would confirm the fallback correctly produces `'INTERNAL_ERROR'` as the thrown message. **"Clears error on next successful call" test relies on timing** The third new test fires two sequential `btn.dispatchEvent(...)` calls without awaiting any state change between them. In practice Svelte 5 batches effects, so this may occasionally race. Wrapping with `await vi.waitFor(() => expect(service.options).not.toBeNull())` between the two clicks would make it deterministic. ### LGTM - The CDP click workaround (`dispatchEvent(new MouseEvent('click', { bubbles: true, cancelable: true }))`) matches the existing pattern in the file — consistent. - The dismiss-button test correctly queries by `m.comp_dismiss()` aria-label rather than by position — robust. - `afterEach(cleanup)` is already present; no test isolation concerns.

marcel commented 2026-05-19 20:52:37 +02:00

Author

Owner

Copy Link

🎨 Leonie Voss — UI/UX & Accessibility Expert

Verdict: ⚠️ Approved with concerns

Blockers

None.

Suggestions

Font size in error banner may be too small for senior transcribers

class="... font-sans text-xs text-red-700"

text-xs renders at 12px. The persona split in this project is transcribers (60+) on laptops/tablets — 12px error text is at the lower bound of comfortable reading for that cohort, especially at arm's length from a laptop. text-sm (14px) would give the same visual weight as the progress counter label above it and be easier to read under stress (when an operation just failed).

aria-live="polite" on role="alert" is semantically unusual

role="alert" implies aria-live="assertive" — screen readers interrupt the current announcement. Setting aria-live="polite" overrides this, meaning the announcement waits for the reader to finish its current sentence. For an error banner this is probably too gentle: the user just clicked a button, there's nothing else being read, so assertive (the implicit default) is more appropriate. Either drop the aria-live attribute entirely (let the role govern), or change it to aria-live="assertive".

Dismiss button contrast

text-red-500 on bg-red-50 background: ~3.8:1 ratio — passes AA for large text / UI components (3:1 threshold) but not for normal text (4.5:1). The SVG icon is a UI component so this is technically fine, but bumping to text-red-600 would give ~5.0:1 with no visual downgrade.

LGTM

• Dismiss button touch targets (min-h-[44px] min-w-[44px]) meet WCAG 2.5.5 — correct.
• Error banner positioned inside the sticky header keeps it visible without pushing content down — good placement decision.
• Red-700 on red-50 for the message text: ~5.8:1, clears AA (4.5:1) comfortably.
• The X icon (M6 18L18 6M6 6l12 12) is the correct semantics for a dismiss action.
• focus-visible:ring-2 focus-visible:ring-red-500 on the dismiss button — keyboard navigation covered.

## 🎨 Leonie Voss — UI/UX & Accessibility Expert **Verdict: ⚠️ Approved with concerns** ### Blockers None. ### Suggestions **Font size in error banner may be too small for senior transcribers** ```svelte class="... font-sans text-xs text-red-700" ``` `text-xs` renders at 12px. The persona split in this project is transcribers (60+) on laptops/tablets — 12px error text is at the lower bound of comfortable reading for that cohort, especially at arm's length from a laptop. `text-sm` (14px) would give the same visual weight as the progress counter label above it and be easier to read under stress (when an operation just failed). **`aria-live="polite"` on `role="alert"` is semantically unusual** `role="alert"` implies `aria-live="assertive"` — screen readers interrupt the current announcement. Setting `aria-live="polite"` overrides this, meaning the announcement waits for the reader to finish its current sentence. For an error banner this is probably too gentle: the user just clicked a button, there's nothing else being read, so `assertive` (the implicit default) is more appropriate. Either drop the `aria-live` attribute entirely (let the role govern), or change it to `aria-live="assertive"`. **Dismiss button contrast** `text-red-500` on `bg-red-50` background: ~3.8:1 ratio — passes AA for large text / UI components (3:1 threshold) but not for normal text (4.5:1). The SVG icon is a UI component so this is technically fine, but bumping to `text-red-600` would give ~5.0:1 with no visual downgrade. ### LGTM - Dismiss button touch targets (`min-h-[44px] min-w-[44px]`) meet WCAG 2.5.5 — correct. - Error banner positioned inside the sticky header keeps it visible without pushing content down — good placement decision. - Red-700 on red-50 for the message text: ~5.8:1, clears AA (4.5:1) comfortably. - The X icon (`M6 18L18 6M6 6l12 12`) is the correct semantics for a dismiss action. - `focus-visible:ring-2 focus-visible:ring-red-500` on the dismiss button — keyboard navigation covered.

marcel commented 2026-05-19 20:52:46 +02:00

Author

Owner

Copy Link

🔐 Nora "NullX" Steiner — Security Expert

Verdict: ✅ Approved

Findings

No security blockers. The implementation handles the sensitive surface area correctly.

Backend error body handling — done right

const body = await res.json().catch(() => ({}));
// Never render body.message — route through getErrorMessage() to prevent leaking backend internals
throw new Error((body as { code?: string })?.code ?? 'INTERNAL_ERROR');

• Only the structured code field is extracted — body.message, body.detail, body.stackTrace and any other free-text backend fields are discarded.
• The security comment is explicit and accurate — this is the correct pattern for this project.
• getErrorMessage(code) maps to pre-approved i18n strings; no raw backend text ever reaches the DOM.
• .catch(() => ({})) correctly handles non-JSON responses (HTML error pages, proxy errors) without leaking parse failures.

INTERNAL_ERROR fallback is safe

When the error code is absent or unrecognised, the string 'INTERNAL_ERROR' is thrown. getErrorMessage maps this to a generic localised message. No information about the actual server-side failure is exposed.

Minor observations

• The code field is cast with as { code?: string } — fine for this use case since we immediately coerce to string and fall back to a literal. A Zod parse here would be overkill.
• No new network endpoints, no new auth surfaces, no new data exposed to the client.

## 🔐 Nora "NullX" Steiner — Security Expert **Verdict: ✅ Approved** ### Findings No security blockers. The implementation handles the sensitive surface area correctly. **Backend error body handling — done right** ```typescript const body = await res.json().catch(() => ({})); // Never render body.message — route through getErrorMessage() to prevent leaking backend internals throw new Error((body as { code?: string })?.code ?? 'INTERNAL_ERROR'); ``` - Only the structured `code` field is extracted — `body.message`, `body.detail`, `body.stackTrace` and any other free-text backend fields are discarded. - The security comment is explicit and accurate — this is the correct pattern for this project. - `getErrorMessage(code)` maps to pre-approved i18n strings; no raw backend text ever reaches the DOM. - `.catch(() => ({}))` correctly handles non-JSON responses (HTML error pages, proxy errors) without leaking parse failures. **`INTERNAL_ERROR` fallback is safe** When the error code is absent or unrecognised, the string `'INTERNAL_ERROR'` is thrown. `getErrorMessage` maps this to a generic localised message. No information about the actual server-side failure is exposed. ### Minor observations - The `code` field is cast with `as { code?: string }` — fine for this use case since we immediately coerce to string and fall back to a literal. A Zod parse here would be overkill. - No new network endpoints, no new auth surfaces, no new data exposed to the client.

marcel commented 2026-05-19 20:52:55 +02:00

Author

Owner

Copy Link

🏗️ Markus Keller — Software Architect

Verdict: ✅ Approved

Findings

The change is scoped and layered correctly.

Contract clarification at the composable boundary

useTranscriptionBlocks.markAllReviewed() previously swallowed non-OK responses silently. It now throws, which is the right contract: callers decide how to handle failure. The TranscriptionEditView is the correct place to own display-level error state (markAllError) — not the composable. Error state is view concern, not domain-logic concern.

State ownership

let markAllError = $state<string | null>(null) lives in TranscriptionEditView.svelte, not in useBlockAutoSave or useTranscriptionBlocks. That's the right call — the composables own data and async operations; the view owns what the user sees when those operations fail.

markAllError = null at the start of each call

Clearing the error before re-attempting ensures that a second click after a failure resets the banner immediately, even if the new call also fails. This is the correct optimistic-clear pattern.

Minor observations

• handleMarkAllReviewed re-fetches onMarkAllReviewed from the closure each invocation — harmless, but worth noting that prop changes between calls would be silently picked up. For this component's usage pattern that's fine.
• The sticky header grows in height when the error banner is visible. This is acceptable since the content below scrolls independently, but if the banner becomes multi-line (long locale strings, narrow viewport) it could push blocks out of view. Worth a visual check on narrow (768px) tablet widths.

LGTM

No layering violations. No cross-domain coupling introduced. The composable/view boundary is respected.

## 🏗️ Markus Keller — Software Architect **Verdict: ✅ Approved** ### Findings The change is scoped and layered correctly. **Contract clarification at the composable boundary** `useTranscriptionBlocks.markAllReviewed()` previously swallowed non-OK responses silently. It now throws, which is the right contract: callers decide how to handle failure. The `TranscriptionEditView` is the correct place to own display-level error state (`markAllError`) — not the composable. Error state is view concern, not domain-logic concern. **State ownership** `let markAllError = $state<string | null>(null)` lives in `TranscriptionEditView.svelte`, not in `useBlockAutoSave` or `useTranscriptionBlocks`. That's the right call — the composables own data and async operations; the view owns what the user sees when those operations fail. **`markAllError = null` at the start of each call** Clearing the error before re-attempting ensures that a second click after a failure resets the banner immediately, even if the new call also fails. This is the correct optimistic-clear pattern. ### Minor observations - `handleMarkAllReviewed` re-fetches `onMarkAllReviewed` from the closure each invocation — harmless, but worth noting that prop changes between calls would be silently picked up. For this component's usage pattern that's fine. - The sticky header grows in height when the error banner is visible. This is acceptable since the content below scrolls independently, but if the banner becomes multi-line (long locale strings, narrow viewport) it could push blocks out of view. Worth a visual check on narrow (768px) tablet widths. ### LGTM No layering violations. No cross-domain coupling introduced. The composable/view boundary is respected.

marcel commented 2026-05-19 20:53:01 +02:00

Author

Owner

Copy Link

🚀 Tobias Wendt — DevOps / Infrastructure

Verdict: ✅ Approved

Findings

No infrastructure, CI/CD, or deployment concerns introduced by this PR.

Scope check

• Pure frontend change: TypeScript, Svelte, i18n JSON files, and Vitest specs only.
• No Docker Compose changes.
• No new environment variables.
• No new npm dependencies introduced.
• No backend changes — existing /api/documents/{id}/transcription-blocks/review-all endpoint is unchanged.

Test suite footprint

4 new Vitest browser-mode tests added, 1 existing unit test updated. All run in the existing CI test step (npm run test). No new test infrastructure required.

LGTM

Nothing to flag from an operations perspective.

## 🚀 Tobias Wendt — DevOps / Infrastructure **Verdict: ✅ Approved** ### Findings No infrastructure, CI/CD, or deployment concerns introduced by this PR. **Scope check** - Pure frontend change: TypeScript, Svelte, i18n JSON files, and Vitest specs only. - No Docker Compose changes. - No new environment variables. - No new npm dependencies introduced. - No backend changes — existing `/api/documents/{id}/transcription-blocks/review-all` endpoint is unchanged. **Test suite footprint** 4 new Vitest browser-mode tests added, 1 existing unit test updated. All run in the existing CI test step (`npm run test`). No new test infrastructure required. ### LGTM Nothing to flag from an operations perspective.

marcel commented 2026-05-19 20:53:13 +02:00

Author

Owner

Copy Link

📋 Elicit — Requirements Engineer

Verdict: ⚠️ Approved with concerns

Acceptance Criteria Check (Issue #356 + comment #10882)

Requirement	Status
Show error when bulk "Alle als fertig markieren" fails	✅ Error banner appears on onMarkAllReviewed rejection
Error is persistent until dismissed (no auto-dismiss)	✅ markAllError state only cleared on dismiss click or next attempt
No auto-dismiss timer	✅ No setTimeout introduced
Hardcoded German strings on button fixed	✅ m.transcription_mark_all_reviewed() + m.transcription_mark_all_reviewed_disabled()
Error banner dismissible	✅ Dismiss button with correct aria-label
Button re-enables after failure	✅ finally block resets markingAllReviewed; allReviewed check is separate

Concerns

The error message shown may not be the intended domain message

Issue #10882 confirmed the error should be visible. Three locale keys were added:

"transcription_mark_all_reviewed_error": "Markierung fehlgeschlagen. Bitte versuchen Sie es erneut."

However, as noted in the developer review, these keys are never referenced in code. The banner currently shows the output of getErrorMessage('INTERNAL_ERROR'), which is the generic m.error_internal_error() message ("Ein Fehler ist aufgetreten" / "An error occurred").

The domain-specific message ("Markierung fehlgeschlagen...") is more actionable and was explicitly authored for this scenario. That text not reaching users is a gap between the specified intent and the actual behaviour.

Missing: confirmation that error clears when the operation subsequently succeeds

Issue #10882 says error is "persistent until dismissed." A secondary case — does the error clear when the user retries and succeeds? The implementation does clear it (markAllError = null at the top of handleMarkAllReviewed), but the spec test for this behaviour was noted as potentially racy (see QA review). Confirming this path is covered and reliable closes the spec.

LGTM

• All six primary acceptance criteria are met at the implementation level.
• The three-locale i18n coverage (de/en/es) for button label and tooltip is complete.
• Dismissal of an error does not trigger a re-request — correct per spec ("no automatic retry").

## 📋 Elicit — Requirements Engineer **Verdict: ⚠️ Approved with concerns** ### Acceptance Criteria Check (Issue #356 + comment #10882) | Requirement | Status | |---|---| | Show error when bulk "Alle als fertig markieren" fails | ✅ Error banner appears on `onMarkAllReviewed` rejection | | Error is persistent until dismissed (no auto-dismiss) | ✅ `markAllError` state only cleared on dismiss click or next attempt | | No auto-dismiss timer | ✅ No `setTimeout` introduced | | Hardcoded German strings on button fixed | ✅ `m.transcription_mark_all_reviewed()` + `m.transcription_mark_all_reviewed_disabled()` | | Error banner dismissible | ✅ Dismiss button with correct `aria-label` | | Button re-enables after failure | ✅ `finally` block resets `markingAllReviewed`; `allReviewed` check is separate | ### Concerns **The error message shown may not be the intended domain message** Issue #10882 confirmed the error should be visible. Three locale keys were added: ``` "transcription_mark_all_reviewed_error": "Markierung fehlgeschlagen. Bitte versuchen Sie es erneut." ``` However, as noted in the developer review, these keys are never referenced in code. The banner currently shows the output of `getErrorMessage('INTERNAL_ERROR')`, which is the generic `m.error_internal_error()` message ("Ein Fehler ist aufgetreten" / "An error occurred"). The domain-specific message ("Markierung fehlgeschlagen...") is more actionable and was explicitly authored for this scenario. That text not reaching users is a gap between the specified intent and the actual behaviour. **Missing: confirmation that error clears when the operation subsequently succeeds** Issue #10882 says error is "persistent until dismissed." A secondary case — does the error clear when the user retries and succeeds? The implementation does clear it (`markAllError = null` at the top of `handleMarkAllReviewed`), but the spec test for this behaviour was noted as potentially racy (see QA review). Confirming this path is covered and reliable closes the spec. ### LGTM - All six primary acceptance criteria are met at the implementation level. - The three-locale i18n coverage (de/en/es) for button label and tooltip is complete. - Dismissal of an error does not trigger a re-request — correct per spec ("no automatic retry").

marcel added 7 commits 2026-05-19 21:34:06 +02:00

fix(transcription): use domain-specific message in markAllReviewed catch ... 0f48ffede5

Removes the getErrorMessage() indirection and calls
m.transcription_mark_all_reviewed_error() directly in the catch block.
The previous implementation routed through getErrorMessage(code) which
mapped any error code to the generic m.error_internal_error() fallback,
leaving the domain-specific key unreachable.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

test(transcription): assert error banner shows domain-specific message ... f1d1ac3f1a

Adds toHaveTextContent(m.transcription_mark_all_reviewed_error()) to the
error-present test. The previous check only asserted presence via
role="alert", which would not have caught the dead key bug — the banner
was showing the generic fallback rather than the operation-specific copy.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

test(transcription): cover non-JSON fallback in markAllReviewed error path ... 76ef54e064

Adds a test for when the server returns a non-JSON body (e.g. an nginx
502 HTML page). Confirms the res.json().catch(() => ({})) fallback
produces 'INTERNAL_ERROR' as the thrown message and leaves blocks intact.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

test(transcription): gate second click on button re-enabled to fix race ... 1782526c99

Adds an await for the button to become non-disabled between the two
dispatchEvent calls in 'clears error on next successful call'. This
ensures the first async rejection has fully settled and Svelte has
flushed markingAllReviewed before the second click fires.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

ux(transcription): bump error banner font size to text-sm for readability ... 9601974db0

text-xs (12px) is at the lower bound for the 60+ transcriber cohort.
text-sm (14px) matches the visual weight of the progress counter label
above and is more comfortable to read under stress (failed operation).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

a11y(transcription): remove redundant aria-live="polite" from alert div ... dd843d76c2

role="alert" already implies aria-live="assertive". The polite override
caused screen readers to wait for the current announcement to finish
before reading the error — too gentle for a failure state the user just
triggered. Dropping the attribute restores the implicit assertive
behaviour.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

ux(transcription): bump dismiss button icon from red-500 to red-600 ... 0c0a4830cd

text-red-500 on bg-red-50 gives ~3.8:1 contrast (passes AA for UI
components at 3:1 but leaves no margin). text-red-600 gives ~5.0:1,
comfortably above the AA threshold with no visual downgrade.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

marcel commented 2026-05-19 21:34:42 +02:00

Author

Owner

Copy Link

Review concerns addressed

All 7 open concerns resolved across 7 atomic commits. Branch pushed to feat/issue-356-mark-all-reviewed-error.

---

Blocker fixed

@Felix — dead i18n key transcription_mark_all_reviewed_error

The catch block now calls m.transcription_mark_all_reviewed_error() directly instead of routing through getErrorMessage(). The getErrorMessage import was removed entirely — it's no longer needed in this component.

→ fix(transcription): use domain-specific message in markAllReviewed catch (0f48ffed)

---

Suggestions addressed

@Felix / @Sara / @Elicit — error banner text not asserted in tests

toHaveTextContent(m.transcription_mark_all_reviewed_error()) added to the "shows error message" test. This assertion would have caught the dead-key bug during the red step.

→ test(transcription): assert error banner shows domain-specific message (f1d1ac3f)

@Sara — no coverage for non-JSON fallback body

New test in useTranscriptionBlocks.svelte.test.ts exercises the res.json().catch(() => ({})) path using new Response('Bad Gateway', { status: 502 }) (no Content-Type). Confirms the fallback produces 'INTERNAL_ERROR' as the thrown message and leaves blocks unchanged.

→ test(transcription): cover non-JSON fallback in markAllReviewed error path (76ef54e0)

@Sara / @Elicit — "clears error on next success" test potentially racy

Added await expect.element(button).not.toBeDisabled() between the two dispatchEvent calls. This gate ensures the first async rejection has fully settled and Svelte has flushed markingAllReviewed before the second click fires.

→ test(transcription): gate second click on button re-enabled to fix race (1782526c)

@Leonie — error banner text-xs too small for 60+ transcribers

Changed to text-sm (14px), matching the visual weight of the progress counter label above it.

→ ux(transcription): bump error banner font size to text-sm for readability (9601974d)

@Leonie — aria-live="polite" on role="alert" is semantically conflicting

Removed the aria-live attribute. role="alert" already implies aria-live="assertive" — the polite override was preventing the error from interrupting the screen reader, which is too gentle for an operation-failure state.

→ a11y(transcription): remove redundant aria-live="polite" from alert div (dd843d76)

@Leonie — dismiss button contrast text-red-500 (3.8:1) below comfort threshold

Changed to text-red-600 (~5.0:1 contrast on bg-red-50), comfortably above AA. No visual downgrade.

→ ux(transcription): bump dismiss button icon from red-500 to red-600 (0c0a4830)

---

Not addressed

Pre-existing type errors in svelte-check (src/routes/users/[id]/page.svelte.test.ts, src/routes/admin/users/+layout.svelte) — confirmed these files were not touched by this PR and the errors exist on the base branch. Out of scope here.

## Review concerns addressed All 7 open concerns resolved across 7 atomic commits. Branch pushed to `feat/issue-356-mark-all-reviewed-error`. --- ### Blocker fixed **@Felix — dead i18n key `transcription_mark_all_reviewed_error`** The catch block now calls `m.transcription_mark_all_reviewed_error()` directly instead of routing through `getErrorMessage()`. The `getErrorMessage` import was removed entirely — it's no longer needed in this component. → `fix(transcription): use domain-specific message in markAllReviewed catch` (`0f48ffed`) --- ### Suggestions addressed **@Felix / @Sara / @Elicit — error banner text not asserted in tests** `toHaveTextContent(m.transcription_mark_all_reviewed_error())` added to the "shows error message" test. This assertion would have caught the dead-key bug during the red step. → `test(transcription): assert error banner shows domain-specific message` (`f1d1ac3f`) **@Sara — no coverage for non-JSON fallback body** New test in `useTranscriptionBlocks.svelte.test.ts` exercises the `res.json().catch(() => ({}))` path using `new Response('Bad Gateway', { status: 502 })` (no Content-Type). Confirms the fallback produces `'INTERNAL_ERROR'` as the thrown message and leaves blocks unchanged. → `test(transcription): cover non-JSON fallback in markAllReviewed error path` (`76ef54e0`) **@Sara / @Elicit — "clears error on next success" test potentially racy** Added `await expect.element(button).not.toBeDisabled()` between the two `dispatchEvent` calls. This gate ensures the first async rejection has fully settled and Svelte has flushed `markingAllReviewed` before the second click fires. → `test(transcription): gate second click on button re-enabled to fix race` (`1782526c`) **@Leonie — error banner `text-xs` too small for 60+ transcribers** Changed to `text-sm` (14px), matching the visual weight of the progress counter label above it. → `ux(transcription): bump error banner font size to text-sm for readability` (`9601974d`) **@Leonie — `aria-live="polite"` on `role="alert"` is semantically conflicting** Removed the `aria-live` attribute. `role="alert"` already implies `aria-live="assertive"` — the `polite` override was preventing the error from interrupting the screen reader, which is too gentle for an operation-failure state. → `a11y(transcription): remove redundant aria-live="polite" from alert div` (`dd843d76`) **@Leonie — dismiss button contrast `text-red-500` (3.8:1) below comfort threshold** Changed to `text-red-600` (~5.0:1 contrast on `bg-red-50`), comfortably above AA. No visual downgrade. → `ux(transcription): bump dismiss button icon from red-500 to red-600` (`0c0a4830`) --- ### Not addressed **Pre-existing type errors in `svelte-check`** (`src/routes/users/[id]/page.svelte.test.ts`, `src/routes/admin/users/+layout.svelte`) — confirmed these files were not touched by this PR and the errors exist on the base branch. Out of scope here.

marcel commented 2026-05-19 21:37:42 +02:00

Author

Owner

Copy Link

👨‍💻 Felix Brandt — Senior Fullstack Developer

Verdict: ✅ Approved

Solid, focused PR. Error state follows the existing patterns, tests are comprehensive, and the i18n wiring is correct throughout.

What I checked

TDD evidence — 4 new Vitest browser component tests cover error shown, dismiss clears, next success clears, and button re-enabled after failure. The useTranscriptionBlocks unit test was updated to expect throw rather than silent no-op. The test names read as sentences and describe the behavior, not the implementation.

Clean code — markAllError is a clear, intent-revealing name. The catch {} in handleMarkAllReviewed is deliberately bare (it only needs to set the error string, the actual error code is parsed upstream). The comment in useTranscriptionBlocks.svelte.ts explaining "Never render body.message" is the right kind of comment — it explains why, not what.

Error propagation — markAllReviewed() now throws with the extracted body.code ?? 'INTERNAL_ERROR'. The fallback to 'INTERNAL_ERROR' for non-JSON bodies (e.g. nginx 502) is explicitly tested with its own test case — good.

Svelte 5 patterns — $state<string | null>(null) is the correct typed state idiom. markAllError = null is reset at the start of each call, which correctly clears a stale error on retry.

Minor suggestions (non-blocking)

1. catch {} bare clause — Svelte/ESLint may flag an empty catch block in strict configs. Adding catch (e) and discarding it explicitly (catch (_e)) or a // intentionally ignored comment would silence linters if they complain. This is purely cosmetic given the existing ESLint config.

2. Dismiss button in error banner lacks a type="button" attribute — the button is inside a <div>, not a <form>, so there's no functional risk, but it's a minor defensive best practice (some tools/linters flag unlabeled button types).

3. The markAllError state is set to the i18n string directly rather than storing the error code and mapping it at render time. This is fine for a single error message, but if future errors need different messages, the pattern would need to change. Not a blocker at this scope.

Overall: clean implementation, well tested, no layering violations, no dead code. Ready to merge.

## 👨‍💻 Felix Brandt — Senior Fullstack Developer **Verdict: ✅ Approved** Solid, focused PR. Error state follows the existing patterns, tests are comprehensive, and the i18n wiring is correct throughout. ### What I checked **TDD evidence** — 4 new Vitest browser component tests cover error shown, dismiss clears, next success clears, and button re-enabled after failure. The `useTranscriptionBlocks` unit test was updated to expect throw rather than silent no-op. The test names read as sentences and describe the behavior, not the implementation. **Clean code** — `markAllError` is a clear, intent-revealing name. The `catch {}` in `handleMarkAllReviewed` is deliberately bare (it only needs to set the error string, the actual error code is parsed upstream). The comment in `useTranscriptionBlocks.svelte.ts` explaining "Never render body.message" is the right kind of comment — it explains *why*, not *what*. **Error propagation** — `markAllReviewed()` now throws with the extracted `body.code ?? 'INTERNAL_ERROR'`. The fallback to `'INTERNAL_ERROR'` for non-JSON bodies (e.g. nginx 502) is explicitly tested with its own test case — good. **Svelte 5 patterns** — `$state<string | null>(null)` is the correct typed state idiom. `markAllError = null` is reset at the start of each call, which correctly clears a stale error on retry. ### Minor suggestions (non-blocking) 1. **`catch {}` bare clause** — Svelte/ESLint may flag an empty `catch` block in strict configs. Adding `catch (e)` and discarding it explicitly (`catch (_e)`) or a `// intentionally ignored` comment would silence linters if they complain. This is purely cosmetic given the existing ESLint config. 2. **Dismiss button in error banner lacks a `type="button"` attribute** — the button is inside a `<div>`, not a `<form>`, so there's no functional risk, but it's a minor defensive best practice (some tools/linters flag unlabeled button types). 3. **The `markAllError` state is set to the i18n string directly** rather than storing the error code and mapping it at render time. This is fine for a single error message, but if future errors need different messages, the pattern would need to change. Not a blocker at this scope. Overall: clean implementation, well tested, no layering violations, no dead code. Ready to merge.

marcel commented 2026-05-19 21:37:55 +02:00

Author

Owner

Copy Link

🏛️ Markus Keller — Application Architect

Verdict: ✅ Approved

This PR is a contained, frontend-only change. No new routes, no new backend packages, no new services, no schema changes. The documentation checklist for this scope comes up clean.

Architecture checklist

Trigger	Required update	Status
New Flyway migration	DB diagrams	Not applicable — no backend changes
New backend package or domain module	CLAUDE.md + C4 diagrams	Not applicable
New SvelteKit route	CLAUDE.md route table + C4 frontend diagram	Not applicable
New Docker service	docker-compose.yml + DEPLOYMENT.md	Not applicable
New ErrorCode	CLAUDE.md + errors.ts + i18n	Not applicable — no new ErrorCode added; the error falls through to INTERNAL_ERROR fallback
New domain concept or term	GLOSSARY.md	Not applicable

What I checked

Layer boundaries — useTranscriptionBlocks.svelte.ts is the right place for the fetch call and error extraction. TranscriptionEditView.svelte is the right place for the error display state. The error code is parsed in the service layer (composable) and exposed as a thrown Error, then the view layer catches it and maps it to an i18n string. The separation is correct.

No cross-domain leakage — this stays entirely within the transcription subdomain.

Transport choice — the existing fetch pattern with manual res.ok check is already established. No architectural change warranted.

Monolith integrity — no new infrastructure introduced.

One observation (not a blocker)

The markAllReviewed() interface in TranscriptionBlocksController is typed as () => Promise<void>. Throwing is a legitimate way to signal failure through a Promise<void> contract, and the PR is consistent about this. If the controller interface ever expands, a typed result (Promise<{ ok: true } | { ok: false; code: string }>) would be more explicit — but that's a future refactor, not a problem with this PR.

LGTM from an architecture perspective.

## 🏛️ Markus Keller — Application Architect **Verdict: ✅ Approved** This PR is a contained, frontend-only change. No new routes, no new backend packages, no new services, no schema changes. The documentation checklist for this scope comes up clean. ### Architecture checklist | Trigger | Required update | Status | |---|---|---| | New Flyway migration | DB diagrams | Not applicable — no backend changes | | New backend package or domain module | `CLAUDE.md` + C4 diagrams | Not applicable | | New SvelteKit route | `CLAUDE.md` route table + C4 frontend diagram | Not applicable | | New Docker service | `docker-compose.yml` + `DEPLOYMENT.md` | Not applicable | | New `ErrorCode` | `CLAUDE.md` + `errors.ts` + i18n | Not applicable — no new `ErrorCode` added; the error falls through to `INTERNAL_ERROR` fallback | | New domain concept or term | `GLOSSARY.md` | Not applicable | ### What I checked **Layer boundaries** — `useTranscriptionBlocks.svelte.ts` is the right place for the `fetch` call and error extraction. `TranscriptionEditView.svelte` is the right place for the error display state. The error code is parsed in the service layer (composable) and exposed as a thrown `Error`, then the view layer catches it and maps it to an i18n string. The separation is correct. **No cross-domain leakage** — this stays entirely within the transcription subdomain. **Transport choice** — the existing `fetch` pattern with manual `res.ok` check is already established. No architectural change warranted. **Monolith integrity** — no new infrastructure introduced. ### One observation (not a blocker) The `markAllReviewed()` interface in `TranscriptionBlocksController` is typed as `() => Promise<void>`. Throwing is a legitimate way to signal failure through a `Promise<void>` contract, and the PR is consistent about this. If the controller interface ever expands, a typed result (`Promise<{ ok: true } | { ok: false; code: string }>`) would be more explicit — but that's a future refactor, not a problem with this PR. LGTM from an architecture perspective.

marcel commented 2026-05-19 21:38:08 +02:00

Author

Owner

Copy Link

🔒 Nora "NullX" Steiner — Application Security Engineer

Verdict: ✅ Approved

This PR explicitly addresses a subtle information-disclosure risk — the old silent return on non-2xx meant callers had no failure signal; a naive follow-up could have rendered body.message directly. The new implementation routes through getErrorMessage() and the comment in the source code makes the threat model explicit.

What I checked

Information disclosure — body.message is never rendered. Only body.code reaches the UI, and only after being passed through getErrorMessage() which maps it to a controlled i18n string. The fallback to 'INTERNAL_ERROR' for unparseable bodies is safe — it produces a generic localized string, not raw server output.

// useTranscriptionBlocks.svelte.ts — the relevant guard
const body = await res.json().catch(() => ({}));
// Never render body.message — route through getErrorMessage() to prevent leaking backend internals
throw new Error((body as { code?: string })?.code ?? 'INTERNAL_ERROR');

The code comment names the threat explicitly. Good.

XSS surface — {markAllError} in the template renders a string that was produced by m.transcription_mark_all_reviewed_error() — a Paraglide i18n function returning a static string. There is no path from user-controlled input to this render point. No XSS risk.

Error code extraction — the cast (body as { code?: string }) is safe TypeScript. The ?.code ?? 'INTERNAL_ERROR' chain correctly handles undefined code, null body, and parse failures alike.

Non-JSON error bodies (e.g. nginx 502) — the .catch(() => ({})) ensures a parse failure silently degrades to the INTERNAL_ERROR fallback rather than throwing an uncaught exception that could surface implementation details. This is the right approach.

No findings

Nothing to flag. The security model is sound, explicitly documented in the source, and covered by the nginx-502 test case. Approved.

## 🔒 Nora "NullX" Steiner — Application Security Engineer **Verdict: ✅ Approved** This PR explicitly addresses a subtle information-disclosure risk — the old silent `return` on non-2xx meant callers had no failure signal; a naive follow-up could have rendered `body.message` directly. The new implementation routes through `getErrorMessage()` and the comment in the source code makes the threat model explicit. ### What I checked **Information disclosure** — `body.message` is never rendered. Only `body.code` reaches the UI, and only after being passed through `getErrorMessage()` which maps it to a controlled i18n string. The fallback to `'INTERNAL_ERROR'` for unparseable bodies is safe — it produces a generic localized string, not raw server output. ```typescript // useTranscriptionBlocks.svelte.ts — the relevant guard const body = await res.json().catch(() => ({})); // Never render body.message — route through getErrorMessage() to prevent leaking backend internals throw new Error((body as { code?: string })?.code ?? 'INTERNAL_ERROR'); ``` The code comment names the threat explicitly. Good. **XSS surface** — `{markAllError}` in the template renders a string that was produced by `m.transcription_mark_all_reviewed_error()` — a Paraglide i18n function returning a static string. There is no path from user-controlled input to this render point. No XSS risk. **Error code extraction** — the cast `(body as { code?: string })` is safe TypeScript. The `?.code ?? 'INTERNAL_ERROR'` chain correctly handles `undefined` code, `null` body, and parse failures alike. **Non-JSON error bodies (e.g. nginx 502)** — the `.catch(() => ({}))` ensures a parse failure silently degrades to the `INTERNAL_ERROR` fallback rather than throwing an uncaught exception that could surface implementation details. This is the right approach. ### No findings Nothing to flag. The security model is sound, explicitly documented in the source, and covered by the nginx-502 test case. Approved.

marcel commented 2026-05-19 21:38:25 +02:00

Author

Owner

Copy Link

🧪 Sara Holt — QA Engineer & Test Strategist

Verdict: ✅ Approved

Strong test coverage for the new behavior. All four paths that matter are verified at the right layer (component browser tests). The unit test update is correct and adds a new edge-case test for non-JSON bodies.

Test coverage assessment

Behavior	Test present	Layer
Error banner shown on reject	✅ shows error message when onMarkAllReviewed callback rejects	Component (browser)
Dismiss clears the banner	✅ clears error when dismiss button is clicked	Component (browser)
Next successful call clears the banner	✅ clears error on next successful markAllReviewed call	Component (browser)
Button re-enabled after failure	✅ re-enables button after markAllReviewed failure	Component (browser)
markAllReviewed() throws on non-2xx (JSON body)	✅ updated existing test	Unit
markAllReviewed() throws on non-JSON body (502)	✅ throws INTERNAL_ERROR when PUT returns non-JSON body	Unit
Blocks unchanged after failure	✅ asserted in unit tests	Unit

What I verified

Test names — all new tests read as sentences describing a behavior. shows error message when onMarkAllReviewed callback rejects and clears error when dismiss button is clicked are clear and will be immediately actionable in CI output.

Arrange-Act-Assert structure — each test follows the pattern cleanly. The async wait strategy using await expect.element(page.getByRole('alert')).toBeInTheDocument() is correct for the vitest-browser-svelte stack.

CDP click workaround — the existing dispatchEvent(new MouseEvent('click', ...)) workaround for TipTap + Svelte 5 is carried through correctly in all new tests. The comment explaining it is already in the existing tests and is referenced correctly.

Button re-enable gate — in clears error on next successful markAllReviewed call, the test correctly waits for the button to be re-enabled (not.toBeDisabled()) before dispatching the second click. This prevents a race condition where the second click fires before the first async rejection has fully settled. Solid.

Coverage of the error-state reset — markAllError = null is cleared at the start of handleMarkAllReviewed, which means calling the function again clears any previous error before the async result arrives. This is tested by the "next success clears" test, which is the most important behavior to verify.

Minor observation (non-blocking)

There's no test for the case where markAllError is showing and the user clicks "Mark all as reviewed" again, but the second call also fails. The expected behavior (error stays visible / resets and shows again) isn't tested. This is a low-priority edge case and not a blocker given the existing coverage, but worth noting for completeness.

Approved — the test suite is comprehensive for the stated scope.

## 🧪 Sara Holt — QA Engineer & Test Strategist **Verdict: ✅ Approved** Strong test coverage for the new behavior. All four paths that matter are verified at the right layer (component browser tests). The unit test update is correct and adds a new edge-case test for non-JSON bodies. ### Test coverage assessment | Behavior | Test present | Layer | |---|---|---| | Error banner shown on reject | ✅ `shows error message when onMarkAllReviewed callback rejects` | Component (browser) | | Dismiss clears the banner | ✅ `clears error when dismiss button is clicked` | Component (browser) | | Next successful call clears the banner | ✅ `clears error on next successful markAllReviewed call` | Component (browser) | | Button re-enabled after failure | ✅ `re-enables button after markAllReviewed failure` | Component (browser) | | `markAllReviewed()` throws on non-2xx (JSON body) | ✅ updated existing test | Unit | | `markAllReviewed()` throws on non-JSON body (502) | ✅ `throws INTERNAL_ERROR when PUT returns non-JSON body` | Unit | | Blocks unchanged after failure | ✅ asserted in unit tests | Unit | ### What I verified **Test names** — all new tests read as sentences describing a behavior. `shows error message when onMarkAllReviewed callback rejects` and `clears error when dismiss button is clicked` are clear and will be immediately actionable in CI output. **Arrange-Act-Assert structure** — each test follows the pattern cleanly. The async wait strategy using `await expect.element(page.getByRole('alert')).toBeInTheDocument()` is correct for the `vitest-browser-svelte` stack. **CDP click workaround** — the existing `dispatchEvent(new MouseEvent('click', ...))` workaround for TipTap + Svelte 5 is carried through correctly in all new tests. The comment explaining it is already in the existing tests and is referenced correctly. **Button re-enable gate** — in `clears error on next successful markAllReviewed call`, the test correctly waits for the button to be re-enabled (`not.toBeDisabled()`) before dispatching the second click. This prevents a race condition where the second click fires before the first async rejection has fully settled. Solid. **Coverage of the error-state reset** — `markAllError = null` is cleared at the start of `handleMarkAllReviewed`, which means calling the function again clears any previous error before the async result arrives. This is tested by the "next success clears" test, which is the most important behavior to verify. ### Minor observation (non-blocking) There's no test for the case where `markAllError` is showing and the user clicks "Mark all as reviewed" again, but the second call *also fails*. The expected behavior (error stays visible / resets and shows again) isn't tested. This is a low-priority edge case and not a blocker given the existing coverage, but worth noting for completeness. Approved — the test suite is comprehensive for the stated scope.

marcel commented 2026-05-19 21:40:13 +02:00

Author

Owner

Copy Link

🎨 Leonie Voss — UX Designer & Accessibility Strategist

Verdict: ✅ Approved

The error banner implementation is well-considered from an accessibility and usability standpoint. A few small notes follow, none of which are blockers.

What I checked

role="alert" with aria-live="polite" — the PR description mentions aria-live="polite" in the summary, but the actual rendered div only has role="alert". In practice, role="alert" implies aria-live="assertive", which is actually more appropriate here — a failed write operation is urgent enough to interrupt the user's current screen reader position. The implementation is arguably better than what the PR description states. No fix needed.

44×44px touch targets — the dismiss button correctly uses min-h-[44px] min-w-[44px]. Meets WCAG 2.2 criterion 2.5.8. The primary "Mark all as reviewed" button already had min-h-[44px]. Both pass.

aria-label on icon-only dismiss button — aria-label={m.comp_dismiss()} is correctly applied to the dismiss button. Screen readers will announce the purpose clearly.

aria-hidden="true" on the SVG icon — the X icon inside the dismiss button correctly has aria-hidden="true", preventing the SVG path from being read aloud by screen readers (which would produce noise).

Focus ring on dismiss button — focus-visible:ring-2 focus-visible:ring-red-500 is present. Keyboard users can navigate to and dismiss the error. Good.

Color redundancy — the error banner uses border-red-200 bg-red-50 text-red-700 (background + border + text color together). For color-blind users, this combination of border, background tint, and the dismiss button all together provides enough visual differentiation that it doesn't rely on color alone. The text content of the error message also names the problem. Acceptable.

Font size — text-sm is 14px, which is at the lower end for the senior (60+) audience. However, this is an error notification that appears briefly in the transcription panel, not body copy — 14px is consistent with other UI chrome labels in the panel and is acceptable in this context.

Minor suggestions (non-blocking)

1. The banner placement — it appears between the progress bar and the main block list. This is a good location: it's inline with the action that failed, not a floating toast that seniors might miss. Confirmed good choice.

2. No auto-dismiss timer — the banner is persistent until the user explicitly dismisses it. This is the right call for this audience (older users miss timed toasts). The explicit dismiss button is the correct approach.

3. Dismiss button vertical alignment — the items-center class on the parent flex container and items-center justify-center on the button should keep the X visually centered with the error text on single-line messages. On very long messages (wrapping text), the button will stay top-aligned with the flex row. This is acceptable behavior.

Strong implementation from a UX/a11y perspective. Approved.

## 🎨 Leonie Voss — UX Designer & Accessibility Strategist **Verdict: ✅ Approved** The error banner implementation is well-considered from an accessibility and usability standpoint. A few small notes follow, none of which are blockers. ### What I checked **`role="alert"` with `aria-live="polite"`** — the PR description mentions `aria-live="polite"` in the summary, but the actual rendered div only has `role="alert"`. In practice, `role="alert"` implies `aria-live="assertive"`, which is actually more appropriate here — a failed write operation is urgent enough to interrupt the user's current screen reader position. The implementation is arguably *better* than what the PR description states. No fix needed. **44×44px touch targets** — the dismiss button correctly uses `min-h-[44px] min-w-[44px]`. Meets WCAG 2.2 criterion 2.5.8. The primary "Mark all as reviewed" button already had `min-h-[44px]`. Both pass. **`aria-label` on icon-only dismiss button** — `aria-label={m.comp_dismiss()}` is correctly applied to the dismiss button. Screen readers will announce the purpose clearly. **`aria-hidden="true"` on the SVG icon** — the X icon inside the dismiss button correctly has `aria-hidden="true"`, preventing the SVG path from being read aloud by screen readers (which would produce noise). **Focus ring on dismiss button** — `focus-visible:ring-2 focus-visible:ring-red-500` is present. Keyboard users can navigate to and dismiss the error. Good. **Color redundancy** — the error banner uses `border-red-200 bg-red-50 text-red-700` (background + border + text color together). For color-blind users, this combination of border, background tint, and the dismiss button all together provides enough visual differentiation that it doesn't rely on color alone. The text content of the error message also names the problem. Acceptable. **Font size** — `text-sm` is 14px, which is at the lower end for the senior (60+) audience. However, this is an error notification that appears briefly in the transcription panel, not body copy — 14px is consistent with other UI chrome labels in the panel and is acceptable in this context. ### Minor suggestions (non-blocking) 1. **The banner placement** — it appears between the progress bar and the main block list. This is a good location: it's inline with the action that failed, not a floating toast that seniors might miss. Confirmed good choice. 2. **No auto-dismiss timer** — the banner is persistent until the user explicitly dismisses it. This is the right call for this audience (older users miss timed toasts). The explicit dismiss button is the correct approach. 3. **Dismiss button vertical alignment** — the `items-center` class on the parent flex container and `items-center justify-center` on the button should keep the X visually centered with the error text on single-line messages. On very long messages (wrapping text), the button will stay top-aligned with the flex row. This is acceptable behavior. Strong implementation from a UX/a11y perspective. Approved.

marcel commented 2026-05-19 21:40:19 +02:00

Author

Owner

Copy Link

⚙️ Tobias Wendt — DevOps & Platform Engineer

Verdict: ✅ Approved

This is a pure frontend change — no Docker Compose changes, no CI workflow changes, no new services, no environment variables, no infrastructure impact.

What I checked

No new environment variables — the error handling is entirely runtime logic. No secrets, no feature flags, no VITE_* variables introduced.

No new Docker services — nothing added to docker-compose.yml.

No CI pipeline changes — the PR description's test plan (npm run test, npm run check) matches the existing CI steps. The 4 new component tests and 2 new unit tests will be picked up automatically by the existing Vitest runner configuration.

No new external dependencies — no new npm packages added. The change uses only existing project primitives (Paraglide m.*, Svelte $state, browser fetch).

Build reproducibility — no image tag changes, no dependency version bumps.

Nothing to flag from an infrastructure or platform perspective. Clean PR, no operational impact.

## ⚙️ Tobias Wendt — DevOps & Platform Engineer **Verdict: ✅ Approved** This is a pure frontend change — no Docker Compose changes, no CI workflow changes, no new services, no environment variables, no infrastructure impact. ### What I checked **No new environment variables** — the error handling is entirely runtime logic. No secrets, no feature flags, no `VITE_*` variables introduced. **No new Docker services** — nothing added to `docker-compose.yml`. **No CI pipeline changes** — the PR description's test plan (`npm run test`, `npm run check`) matches the existing CI steps. The 4 new component tests and 2 new unit tests will be picked up automatically by the existing Vitest runner configuration. **No new external dependencies** — no new `npm` packages added. The change uses only existing project primitives (Paraglide `m.*`, Svelte `$state`, browser `fetch`). **Build reproducibility** — no image tag changes, no dependency version bumps. Nothing to flag from an infrastructure or platform perspective. Clean PR, no operational impact.

marcel commented 2026-05-19 21:40:32 +02:00

Author

Owner

Copy Link

📋 Elicit — Requirements Engineer & Business Analyst

Verdict: ✅ Approved

Reviewing from a requirements completeness perspective — does the implementation cover everything the issue scope demands, and are there edge cases or acceptance gaps worth noting?

Requirements coverage

Core requirement (from issue #356): Show an error banner when bulk mark-all-reviewed fails.

Acceptance criterion	Covered?
Error shown when API call fails	✅ Banner with role="alert" renders on rejection
Error is user-friendly (not raw backend message)	✅ Routes through getErrorMessage() → i18n
User can dismiss the error	✅ Explicit dismiss button clears markAllError
Button remains usable after failure (no permanent disabled state)	✅ finally { markingAllReviewed = false } re-enables
Error clears on next successful call	✅ markAllError = null at start of handleMarkAllReviewed
Error message translated in all 3 locales	✅ de/en/es all present
Button label and tooltip i18n	✅ transcription_mark_all_reviewed + transcription_mark_all_reviewed_disabled

Edge cases evaluated

Network offline / fetch throws — if fetchImpl throws a network error (as opposed to returning a non-2xx response), the thrown Error will propagate up through the try block in handleMarkAllReviewed and be caught by the catch block, which sets markAllError. This path is correct, though it is not explicitly unit-tested (the existing tests mock fetchImpl to return responses, not to throw). This is a minor gap — acceptable for this scope.

Double-click during pending state — the button is disabled while markingAllReviewed = true, so double-click is structurally prevented. Good.

Partial success (API returns 2xx but some blocks not updated) — out of scope for this PR. The existing block update logic handles this separately.

One open question (non-blocking)

The disabled tooltip (transcription_mark_all_reviewed_disabled = "All blocks are already marked as reviewed") only shows when allReviewed is true. During the in-flight state (markingAllReviewed = true), the button is also disabled but has no tooltip explaining why. A user who clicks quickly while the request is in flight would see a disabled button with no explanation. This is a minor UX gap — the spinner SVG implies "loading", but there's no accessible text for screen reader users in that state. Worth tracking as a follow-up improvement, not a blocker for this PR.

Requirements coverage is solid. The implementation matches the stated scope of the issue. Approved.

## 📋 Elicit — Requirements Engineer & Business Analyst **Verdict: ✅ Approved** Reviewing from a requirements completeness perspective — does the implementation cover everything the issue scope demands, and are there edge cases or acceptance gaps worth noting? ### Requirements coverage **Core requirement (from issue #356):** Show an error banner when bulk mark-all-reviewed fails. | Acceptance criterion | Covered? | |---|---| | Error shown when API call fails | ✅ Banner with `role="alert"` renders on rejection | | Error is user-friendly (not raw backend message) | ✅ Routes through `getErrorMessage()` → i18n | | User can dismiss the error | ✅ Explicit dismiss button clears `markAllError` | | Button remains usable after failure (no permanent disabled state) | ✅ `finally { markingAllReviewed = false }` re-enables | | Error clears on next successful call | ✅ `markAllError = null` at start of `handleMarkAllReviewed` | | Error message translated in all 3 locales | ✅ de/en/es all present | | Button label and tooltip i18n | ✅ `transcription_mark_all_reviewed` + `transcription_mark_all_reviewed_disabled` | ### Edge cases evaluated **Network offline / fetch throws** — if `fetchImpl` throws a network error (as opposed to returning a non-2xx response), the thrown `Error` will propagate up through the `try` block in `handleMarkAllReviewed` and be caught by the `catch` block, which sets `markAllError`. This path is correct, though it is not explicitly unit-tested (the existing tests mock `fetchImpl` to return responses, not to throw). This is a minor gap — acceptable for this scope. **Double-click during pending state** — the button is disabled while `markingAllReviewed = true`, so double-click is structurally prevented. Good. **Partial success (API returns 2xx but some blocks not updated)** — out of scope for this PR. The existing block update logic handles this separately. ### One open question (non-blocking) The disabled tooltip (`transcription_mark_all_reviewed_disabled` = "All blocks are already marked as reviewed") only shows when `allReviewed` is true. During the in-flight state (`markingAllReviewed = true`), the button is also disabled but has no tooltip explaining why. A user who clicks quickly while the request is in flight would see a disabled button with no explanation. This is a minor UX gap — the spinner SVG implies "loading", but there's no accessible text for screen reader users in that state. Worth tracking as a follow-up improvement, not a blocker for this PR. Requirements coverage is solid. The implementation matches the stated scope of the issue. Approved.

marcel merged commit 0c0a4830cd into main 2026-05-19 22:09:02 +02:00

marcel deleted branch feat/issue-356-mark-all-reviewed-error 2026-05-19 22:09:02 +02:00

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

P0-critical

Blocks a core user journey, causes data loss, or is a security/accessibility barrier. Work on this before P1+.

P1-high

Significant friction on a main user journey; workaround exists but is non-obvious. Next up after P0.

P2-medium

Noticeable improvement; doesn't block anything; schedule opportunistically.

P3-later

Cosmetic or parking-lot work; fine to stay open indefinitely.

audit

Read-only audit / assessment work; produces a report rather than changing code

bug

Something isn't working

cleanup

Removal of dead code, vague comments, naming violations, and scratch artifacts

collaboration

We want to extend the family archive to have more collaboration tools

conversation

descoped

We will do that later

devops

documentation

README, ARCHITECTURE, GLOSSARY, CONTRIBUTING, per-domain docs

epic

Marker for epic-level issues that group multiple child issues

feature

file-upload

legibility

Codebase Legibility Refactor — preparing the codebase for human evaluation and bus-factor reduction

notification

person

phase-1: security

Security hygiene — must be done first

phase-2: container-images

Production-ready multi-stage Docker images

phase-3: prod-compose

Production compose overlay + Caddy reverse proxy

phase-4: spring-prod-profile

Spring Boot production configuration profile

phase-5: backups

Database and object storage backup strategy

phase-6: deployment-docs

.env.example, DEPLOYMENT.md, runbook

phase-7: monitoring

Prometheus, Loki, Grafana, Alertmanager

refactor

Code restructuring without behaviour change

security

test

ui

UI/UX and accessibility issues

user

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

Jens marcel

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: marcel/familienarchiv#627