fix(transcription): remove annotation canvas delete button that obscured text (#722) #723

Merged

marcel merged 4 commits from fix/issue-722-remove-annotation-canvas-delete-button into main 2026-06-04 12:28:18 +02:00

Conversation 8 Commits 4 Files Changed 7 +69 -156

marcel commented 2026-06-03 22:39:36 +02:00

Owner

Copy Link

Closes #722.

What

Removes the per-annotation delete button from the document canvas — a 44 px circular control pinned to each box's top-right corner. On single-line annotations it was taller than the box itself, overlapping the box below and obscuring the underlying document text.

Why removal (not "improve in place")

The button was redundant in every normal flow: drawing a box atomically creates an annotation and its transcription block, and the right-hand panel already provides a non-overlapping, labelled delete per block that cascades to the annotation. A 44 px touch target (required for tablet transcribers) can't be shrunk enough to stop overlapping small boxes, so the geometry was unwinnable.

What stays

The hidden keyboard Delete shortcut is kept — it obscures nothing and remains a power-user path (and the only cleanup route for orphan annotations, which only arise from backend data corruption). Its full wiring (showDelete → onDeleteRequest → deleteAnnotation) is untouched, so the confirm-dialog + cascade behaviour is unchanged.

Changes

• AnnotationShape.svelte — remove the delete <button> and the now-unused deleteVisible derived; keep the Delete-key branch.
• AnnotationShape.svelte.spec.ts — replace the 6 button-render/click tests with a single contract test asserting no delete button ever renders; keep the keyboard tests.
• AnnotationLayer.svelte.spec.ts — consolidate the two now-vacuous absence tests into one contract test.
• e2e/documents.spec.ts — repoint admin can delete an annotation to the kept path (focus annotation → Delete → confirm "Bestätigen").

Verification

• npm run check, Prettier, ESLint — clean for all touched files (pre-commit lint hook passed).
• Browser component specs + Playwright e2e run in CI.

🤖 Generated with Claude Code

Closes #722. ## What Removes the per-annotation delete button from the document canvas — a 44 px circular control pinned to each box's top-right corner. On single-line annotations it was taller than the box itself, overlapping the box below and obscuring the underlying document text. ## Why removal (not "improve in place") The button was **redundant in every normal flow**: drawing a box atomically creates an annotation *and* its transcription block, and the right-hand panel already provides a non-overlapping, labelled delete per block that cascades to the annotation. A 44 px touch target (required for tablet transcribers) can't be shrunk enough to stop overlapping small boxes, so the geometry was unwinnable. ## What stays The hidden keyboard **Delete** shortcut is **kept** — it obscures nothing and remains a power-user path (and the only cleanup route for orphan annotations, which only arise from backend data corruption). Its full wiring (`showDelete` → `onDeleteRequest` → `deleteAnnotation`) is untouched, so the confirm-dialog + cascade behaviour is unchanged. ## Changes - `AnnotationShape.svelte` — remove the delete `<button>` and the now-unused `deleteVisible` derived; keep the `Delete`-key branch. - `AnnotationShape.svelte.spec.ts` — replace the 6 button-render/click tests with a single contract test asserting no delete button ever renders; keep the keyboard tests. - `AnnotationLayer.svelte.spec.ts` — consolidate the two now-vacuous absence tests into one contract test. - `e2e/documents.spec.ts` — repoint `admin can delete an annotation` to the kept path (focus annotation → `Delete` → confirm "Bestätigen"). ## Verification - `npm run check`, Prettier, ESLint — clean for all touched files (pre-commit lint hook passed). - Browser component specs + Playwright e2e run in CI. 🤖 Generated with [Claude Code](https://claude.com/claude-code)

marcel added 1 commit 2026-06-03 22:39:36 +02:00

fix(transcription): remove annotation canvas delete button that obscured text (#722) ... 63854a80c9

The per-annotation delete button (a 44px circular control pinned to the
box's top-right) overlapped the box below and obscured the underlying
document text. It was redundant: every user-drawn annotation has a
transcription block, and the right-hand panel already offers a
non-overlapping delete per block that cascades to the annotation.

Remove the visible button and its `deleteVisible` derived. Keep the
keyboard Delete shortcut (and its `showDelete`/`onDeleteRequest`/
`deleteAnnotation` wiring) — it obscures nothing and remains a
power-user path and the only cleanup route for orphan annotations.

Tests: replace the button-render/click specs with contract tests
asserting no delete button ever renders; repoint the e2e delete flow
to the keyboard shortcut + confirm dialog.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

marcel commented 2026-06-03 22:46:56 +02:00

Author

Owner

Copy Link

🏛️ Markus Keller — Application Architect

⚠️ Approved with concerns (one minor, non-blocking)

A clean subtraction. This is a pure UI-control removal with no impact on layer boundaries, transport, schema, or module ownership — nothing in my architectural triggers fires (no Flyway migration, no new package/route/controller/service, no ErrorCode/Permission, no infra). The structurally interesting decision — keep the prop contract, remove only the visible affordance — was made correctly.

What I checked

• Component-boundary integrity. The delete chain is preserved end-to-end and verified against the head branch:
  documents/[id]/+page.svelte:263 (onDeleteAnnotationRequest={handleAnnotationDeleteRequest}) → PdfViewer.svelte:297 (onDeleteRequest) → AnnotationLayer.svelte:117-118 (showDelete={canDraw}, onDeleteRequest) → AnnotationShape.svelte:90 keyboard Delete branch → useTranscriptionBlocks.deleteAnnotation. No segment is orphaned.
• Dead wiring left behind. The genuinely-dead derived (deleteVisible) was removed. The retained props showDelete/onDeleteRequest are not dead — showDelete still gates the keyboard branch (AnnotationShape.svelte:90) and onDeleteRequest is still invoked there. Keeping them is the right call: collapsing them now would couple the keyboard path's removal to this change for no benefit. Good restraint.
• Single responsibility. AnnotationShape keeps its one job (render a box + emit interaction intents); the parent still owns the delete policy. Removing the in-shape <button> actually tightens the separation — the component no longer renders its own action chrome.
• No leak the other way. isHovered remains load-bearing (bgAlpha/boxShadow), so it wasn't left as a vestigial prop after the button that consumed it went away.

Suggestion (non-blocking)

• Stale test title — AnnotationLayer.svelte.test.ts:243. This is a different file from the .spec.ts the PR touched, and it still carries the parenthetical 'renders without throwing when canDraw is true (delete button visible)'. The body is fine (no-throw assertion only), but the label now describes behaviour that no longer exists — exactly the kind of stale breadcrumb that misleads a future reader into thinking a delete button renders at canDraw. The issue's scope note said stale delete references were "folded into scope during implementation," but this .test.ts slipped through because the scope table only enumerated the .spec.ts variants. Drop the parenthetical (or retitle to (annotate mode)). Pure hygiene, not a merge blocker.

No architectural objection. Ship after the title tidy if convenient.

## 🏛️ Markus Keller — Application Architect **⚠️ Approved with concerns** (one minor, non-blocking) A clean subtraction. This is a pure UI-control removal with no impact on layer boundaries, transport, schema, or module ownership — nothing in my architectural triggers fires (no Flyway migration, no new package/route/controller/service, no `ErrorCode`/`Permission`, no infra). The structurally interesting decision — *keep the prop contract, remove only the visible affordance* — was made correctly. ### What I checked - **Component-boundary integrity.** The delete chain is preserved end-to-end and verified against the head branch: `documents/[id]/+page.svelte:263` (`onDeleteAnnotationRequest={handleAnnotationDeleteRequest}`) → `PdfViewer.svelte:297` (`onDeleteRequest`) → `AnnotationLayer.svelte:117-118` (`showDelete={canDraw}`, `onDeleteRequest`) → `AnnotationShape.svelte:90` keyboard `Delete` branch → `useTranscriptionBlocks.deleteAnnotation`. No segment is orphaned. - **Dead wiring left behind.** The genuinely-dead derived (`deleteVisible`) was removed. The retained props `showDelete`/`onDeleteRequest` are **not** dead — `showDelete` still gates the keyboard branch (`AnnotationShape.svelte:90`) and `onDeleteRequest` is still invoked there. Keeping them is the right call: collapsing them now would couple the keyboard path's removal to this change for no benefit. Good restraint. - **Single responsibility.** `AnnotationShape` keeps its one job (render a box + emit interaction intents); the parent still owns the delete policy. Removing the in-shape `<button>` actually *tightens* the separation — the component no longer renders its own action chrome. - **No leak the other way.** `isHovered` remains load-bearing (`bgAlpha`/`boxShadow`), so it wasn't left as a vestigial prop after the button that consumed it went away. ### Suggestion (non-blocking) - **Stale test title — `AnnotationLayer.svelte.test.ts:243`.** This is a *different* file from the `.spec.ts` the PR touched, and it still carries the parenthetical `'renders without throwing when canDraw is true (delete button visible)'`. The body is fine (no-throw assertion only), but the label now describes behaviour that no longer exists — exactly the kind of stale breadcrumb that misleads a future reader into thinking a delete button renders at `canDraw`. The issue's scope note said stale delete references were "folded into scope during implementation," but this `.test.ts` slipped through because the scope table only enumerated the `.spec.ts` variants. Drop the parenthetical (or retitle to `(annotate mode)`). Pure hygiene, not a merge blocker. No architectural objection. Ship after the title tidy if convenient.

marcel commented 2026-06-03 22:47:17 +02:00

Author

Owner

Copy Link

⚙️ Tobias Wendt — DevOps & Platform Engineer

✅ Approved

Frontend-only change, no infra/CI/Compose/observability surface touched. I reviewed it purely for CI gate behaviour and e2e reliability — that's the only thing in my lane here, and it holds up.

What I checked

No CI pipeline impact

• No changes to workflows, docker-compose*.yml, Caddyfile, env vars, or any infra config. Diff is 3 spec files + 1 component. Nothing here changes how the build/lint/test jobs provision or run.

e2e flow is correctly wired (not a silent no-op)
The repointed admin can delete an annotation test depends on the kept keyboard path actually firing in CI. I traced the wiring to confirm it's not a dead branch:

• AnnotationShape.svelte:90 — if (e.key === 'Delete' && showDelete) onDeleteRequest?.()
• AnnotationLayer.svelte:117 — showDelete={canDraw}
• The test clicks Annotieren first (documents.spec.ts:387), so canDraw (and thus showDelete) is true before Delete is pressed. The <div> carries tabindex="0", so locator.press('Delete') lands focus correctly. Confirm label /^bestätigen$/i matches btn_confirm in messages/de.json:38. Flow is sound end-to-end.

Ordering / flake assessment

• playwright.config.ts — fullyParallel: false, workers: 1, retries: 2 in CI. Tests in this file run sequentially in declaration order, so the draw test seeds an annotation before the delete test runs.
• The delete test reads countBefore at runtime and asserts countBefore - 1 rather than a hardcoded count, and gates on a visible annotation first (documents.spec.ts:380). Robust to how many annotations prior tests left behind. The cross-test data dependency (delete needs a prior draw) is pre-existing and unchanged by this PR.
• Both waits use explicit timeout: 8000 and the canvas hydration wait pattern is preserved. No new arbitrary sleeps introduced.

Suggestion (non-blocking)

The admin can delete an annotation test silently relies on admin can draw an annotation having run first. With retries: 2 a flaky draw could cascade into a confusing delete failure on a fresh worker retry. Not introduced by this PR, but if you ever touch this block again, consider making the delete test self-seed its own annotation in beforeEach (or wrapping the block in test.describe.serial) to make the dependency explicit. Today's setup works; this is just hardening.

LGTM from the platform side — merge when QA/dev sign off.

## ⚙️ Tobias Wendt — DevOps & Platform Engineer **✅ Approved** Frontend-only change, no infra/CI/Compose/observability surface touched. I reviewed it purely for CI gate behaviour and e2e reliability — that's the only thing in my lane here, and it holds up. ### What I checked **No CI pipeline impact** - No changes to workflows, `docker-compose*.yml`, Caddyfile, env vars, or any infra config. Diff is 3 spec files + 1 component. Nothing here changes how the build/lint/test jobs provision or run. **e2e flow is correctly wired (not a silent no-op)** The repointed `admin can delete an annotation` test depends on the kept keyboard path actually firing in CI. I traced the wiring to confirm it's not a dead branch: - `AnnotationShape.svelte:90` — `if (e.key === 'Delete' && showDelete) onDeleteRequest?.()` - `AnnotationLayer.svelte:117` — `showDelete={canDraw}` - The test clicks **Annotieren** first (`documents.spec.ts:387`), so `canDraw` (and thus `showDelete`) is `true` before `Delete` is pressed. The `<div>` carries `tabindex="0"`, so `locator.press('Delete')` lands focus correctly. Confirm label `/^bestätigen$/i` matches `btn_confirm` in `messages/de.json:38`. Flow is sound end-to-end. **Ordering / flake assessment** - `playwright.config.ts` — `fullyParallel: false`, `workers: 1`, `retries: 2` in CI. Tests in this file run sequentially in declaration order, so the `draw` test seeds an annotation before the `delete` test runs. - The delete test reads `countBefore` at runtime and asserts `countBefore - 1` rather than a hardcoded count, and gates on a visible annotation first (`documents.spec.ts:380`). Robust to how many annotations prior tests left behind. The cross-test data dependency (delete needs a prior draw) is **pre-existing** and unchanged by this PR. - Both waits use explicit `timeout: 8000` and the canvas hydration wait pattern is preserved. No new arbitrary sleeps introduced. ### Suggestion (non-blocking) The `admin can delete an annotation` test silently relies on `admin can draw an annotation` having run first. With `retries: 2` a flaky draw could cascade into a confusing delete failure on a fresh worker retry. Not introduced by this PR, but if you ever touch this block again, consider making the delete test self-seed its own annotation in `beforeEach` (or wrapping the block in `test.describe.serial`) to make the dependency explicit. Today's setup works; this is just hardening. LGTM from the platform side — merge when QA/dev sign off.

marcel commented 2026-06-03 22:47:19 +02:00

Author

Owner

Copy Link

👨‍💻 Felix Brandt — Fullstack Developer (SvelteKit · Spring Boot · Python)

⚠️ Approved with concerns

Clean, focused removal. The on-canvas <button> and the now-orphaned deleteVisible derived are both gone, and I confirmed the retained wiring is genuinely live, not dead: PdfViewer → AnnotationLayer (onDeleteRequest, showDelete={canDraw}) → AnnotationShape keyboard branch (if (e.key === 'Delete' && showDelete) onDeleteRequest?.(), line 90) → parent handleAnnotationDeleteRequest → transcription.deleteAnnotation. So showDelete / onDeleteRequest / deleteAnnotation all earn their keep via the keyboard path. Good call keeping the negative-path test (does not call onDeleteRequest on Delete key when showDelete is false) — that branch is real.

Two things I'd want addressed before merge.

Blockers

None.

Suggestions

1. Stale test that now lies — AnnotationLayer.svelte.test.ts:243 (untouched by this PR)
There is a second test file for this component that the PR didn't catch:

it('renders without throwing when canDraw is true (delete button visible)', async () => {

The (delete button visible) description is now factually wrong — canDraw=true no longer renders any delete button. The test still passes (it only asserts not.toThrow()), so CI stays green, but the description actively misleads the next reader. Per my "dead code is deleted, comments explain why not what" rule, this needs a one-word fix: drop the parenthetical, e.g. renders without throwing when canDraw is true. While here — having both AnnotationLayer.svelte.spec.ts and AnnotationLayer.svelte.test.ts covering the same component is a pre-existing smell, not yours to fix in this PR, but worth a follow-up issue.

2. The rewritten absence assertions are near-vacuous
The three rewritten tests all hang on:

await expect.element(page.getByTestId('annotation-delete-ann-1')).not.toBeInTheDocument();

Since the annotation-delete-{id} testid no longer exists anywhere in the component, this assertion is structurally incapable of failing for any prop combination — it's a tautology. It only guards against someone re-introducing that exact testid. That's a thin contract. It doesn't catch the real regression risk: a future dev re-adding an overlapping on-canvas control under a different selector/testid. Consider asserting against the shape of the regression instead — e.g. that the annotation element renders no descendant <button> (element().querySelector('button') is null) in annotate+active mode. That tests the actual invariant the issue cares about ("nothing obscures the text"), not a string that you yourself just deleted. The keyboard tests (Delete fires / doesn't fire on showDelete) are meaningful — keep those as-is.

3. e2e repoint reads correctly — e2e/documents.spec.ts focus→Delete→Bestätigen exercises the kept path and asserts countBefore - 1, so it's not vacuous. No concern there; the updated comment matches behavior.

Net: the production change is exactly what I'd write. The test rewrite is the soft spot — one stale description in an overlooked file, and absence assertions that are technically true but barely defend the invariant.

## 👨‍💻 Felix Brandt — Fullstack Developer (SvelteKit · Spring Boot · Python) **⚠️ Approved with concerns** Clean, focused removal. The on-canvas `<button>` and the now-orphaned `deleteVisible` derived are both gone, and I confirmed the retained wiring is genuinely live, not dead: `PdfViewer` → `AnnotationLayer` (`onDeleteRequest`, `showDelete={canDraw}`) → `AnnotationShape` keyboard branch (`if (e.key === 'Delete' && showDelete) onDeleteRequest?.()`, line 90) → parent `handleAnnotationDeleteRequest` → `transcription.deleteAnnotation`. So `showDelete` / `onDeleteRequest` / `deleteAnnotation` all earn their keep via the keyboard path. Good call keeping the negative-path test (`does not call onDeleteRequest on Delete key when showDelete is false`) — that branch is real. Two things I'd want addressed before merge. ### Blockers None. ### Suggestions **1. Stale test that now lies — `AnnotationLayer.svelte.test.ts:243` (untouched by this PR)** There is a *second* test file for this component that the PR didn't catch: ```ts it('renders without throwing when canDraw is true (delete button visible)', async () => { ``` The `(delete button visible)` description is now factually wrong — `canDraw=true` no longer renders any delete button. The test still passes (it only asserts `not.toThrow()`), so CI stays green, but the description actively misleads the next reader. Per my "dead code is deleted, comments explain *why* not *what*" rule, this needs a one-word fix: drop the parenthetical, e.g. `renders without throwing when canDraw is true`. While here — having both `AnnotationLayer.svelte.spec.ts` and `AnnotationLayer.svelte.test.ts` covering the same component is a pre-existing smell, not yours to fix in this PR, but worth a follow-up issue. **2. The rewritten absence assertions are near-vacuous** The three rewritten tests all hang on: ```ts await expect.element(page.getByTestId('annotation-delete-ann-1')).not.toBeInTheDocument(); ``` Since the `annotation-delete-{id}` testid no longer exists *anywhere* in the component, this assertion is structurally incapable of failing for any prop combination — it's a tautology. It only guards against someone re-introducing that *exact* testid. That's a thin contract. It doesn't catch the real regression risk: a future dev re-adding an overlapping on-canvas control under a different selector/testid. Consider asserting against the *shape* of the regression instead — e.g. that the annotation element renders no descendant `<button>` (`element().querySelector('button')` is null) in annotate+active mode. That tests the actual invariant the issue cares about ("nothing obscures the text"), not a string that you yourself just deleted. The keyboard tests (`Delete` fires / doesn't fire on `showDelete`) are meaningful — keep those as-is. **3. e2e repoint reads correctly** — `e2e/documents.spec.ts` focus→`Delete`→`Bestätigen` exercises the kept path and asserts `countBefore - 1`, so it's not vacuous. No concern there; the updated comment matches behavior. Net: the production change is exactly what I'd write. The test rewrite is the soft spot — one stale description in an overlooked file, and absence assertions that are technically true but barely defend the invariant.

marcel commented 2026-06-03 22:47:27 +02:00

Author

Owner

Copy Link

🔒 Nora "NullX" Steiner — Application Security Engineer

✅ Approved

Frontend-only change. Through the security lens, this PR removes presentation (a UI button) without touching a single authorization boundary. Nothing here changes who can delete what, or how the destructive action is gated. Clean.

What I checked

1. No authorization logic lived in the removed control. The deleted <button> in AnnotationShape.svelte only called e.stopPropagation() + onDeleteRequest?.(). There was never a client-side permission check on this button to begin with — removing it removes zero security enforcement. Good: the UI was correctly not the trust boundary.

2. Server-side authz on delete is fully intact and untouched. DELETE /api/documents/{documentId}/annotations/{annotationId} in AnnotationController.java:59-68 carries @RequirePermission({Permission.ANNOTATE_ALL, Permission.WRITE_ALL}). The PR diff touches no backend file (PR metadata confirms changed_files: 4, all under frontend/). The real authorization gate is exactly where it should be — declarative AOP at the controller, not in Svelte. This is the property that matters, and it is preserved.

3. Destructive-action confirmation is retained. The kept keyboard path is unchanged: AnnotationShape.svelte:90 (if (e.key === 'Delete' && showDelete) onDeleteRequest?.()) → AnnotationLayer.svelte:118 → handleAnnotationDeleteRequest in routes/documents/[id]/+page.svelte:60-67, which still awaits confirm({ title: m.transcription_block_delete_confirm(), destructive: true }) and bails on !confirmed before calling transcription.deleteAnnotation(). No accidental-deletion regression.

4. No new data exposure / no client-trust assumption introduced. The change is a pure deletion of a render branch and one unused $derived. No new fields surfaced, no new endpoint reachable, no input handling added. The showDelete gate on the kept Delete-key handler is a UX affordance, not a security control — and correctly so, since the backend @RequirePermission is the enforcement layer regardless of what the client sends.

Suggestions (non-blocking)

• The e2e regression test was repointed rather than dropped (e2e/documents.spec.ts — focus annotation → Delete → confirm "Bestätigen"). Good practice: the permission/confirm path still has end-to-end coverage. No action needed; just noting it as the right call.
• Out of scope for this PR, but worth a future ticket: I don't see an explicit Spring test asserting DELETE …/annotations/{id} returns 403 for a READ_ALL-only user and 401 unauthenticated. The annotation could be deleted by any authenticated client hitting the API directly (the UI is irrelevant to that). The @RequirePermission annotation is correct, but a @WithMockUser boundary test would lock the contract in permanently. Not a blocker for this PR — it changes no backend behaviour.

LGTM. Deletion remains authz-gated server-side via @RequirePermission({ANNOTATE_ALL, WRITE_ALL}), the destructive-action confirm dialog is retained, and no authorization logic ever lived in the removed UI button.

## 🔒 Nora "NullX" Steiner — Application Security Engineer **✅ Approved** Frontend-only change. Through the security lens, this PR removes presentation (a UI button) without touching a single authorization boundary. Nothing here changes who can delete what, or how the destructive action is gated. Clean. ### What I checked 1. **No authorization logic lived in the removed control.** The deleted `<button>` in `AnnotationShape.svelte` only called `e.stopPropagation()` + `onDeleteRequest?.()`. There was never a client-side permission check on this button to begin with — removing it removes zero security enforcement. Good: the UI was correctly *not* the trust boundary. 2. **Server-side authz on delete is fully intact and untouched.** `DELETE /api/documents/{documentId}/annotations/{annotationId}` in `AnnotationController.java:59-68` carries `@RequirePermission({Permission.ANNOTATE_ALL, Permission.WRITE_ALL})`. The PR diff touches no backend file (PR metadata confirms `changed_files: 4`, all under `frontend/`). The real authorization gate is exactly where it should be — declarative AOP at the controller, not in Svelte. This is the property that matters, and it is preserved. 3. **Destructive-action confirmation is retained.** The kept keyboard path is unchanged: `AnnotationShape.svelte:90` (`if (e.key === 'Delete' && showDelete) onDeleteRequest?.()`) → `AnnotationLayer.svelte:118` → `handleAnnotationDeleteRequest` in `routes/documents/[id]/+page.svelte:60-67`, which still awaits `confirm({ title: m.transcription_block_delete_confirm(), destructive: true })` and bails on `!confirmed` before calling `transcription.deleteAnnotation()`. No accidental-deletion regression. 4. **No new data exposure / no client-trust assumption introduced.** The change is a pure deletion of a render branch and one unused `$derived`. No new fields surfaced, no new endpoint reachable, no input handling added. The `showDelete` gate on the kept Delete-key handler is a UX affordance, not a security control — and correctly so, since the backend `@RequirePermission` is the enforcement layer regardless of what the client sends. ### Suggestions (non-blocking) - The e2e regression test was repointed rather than dropped (`e2e/documents.spec.ts` — focus annotation → `Delete` → confirm "Bestätigen"). Good practice: the permission/confirm path still has end-to-end coverage. No action needed; just noting it as the right call. - Out of scope for this PR, but worth a future ticket: I don't see an explicit Spring test asserting `DELETE …/annotations/{id}` returns 403 for a `READ_ALL`-only user and 401 unauthenticated. The annotation could be deleted by any authenticated client hitting the API directly (the UI is irrelevant to that). The `@RequirePermission` annotation is correct, but a `@WithMockUser` boundary test would lock the contract in permanently. Not a blocker for this PR — it changes no backend behaviour. LGTM. Deletion remains authz-gated server-side via `@RequirePermission({ANNOTATE_ALL, WRITE_ALL})`, the destructive-action confirm dialog is retained, and no authorization logic ever lived in the removed UI button.

marcel commented 2026-06-03 22:47:40 +02:00

Author

Owner

Copy Link

📋 Elicit — Requirements Engineer & Business Analyst

⚠️ Approved with concerns

The change is faithful to issue #722: the redundant on-canvas control is gone, the keyboard path and its full wiring survive, and the three acceptance criteria are demonstrably met. My concerns are not blockers for this fix — they are unresolved requirements/NFR items the issue itself flags but leaves with no home in the backlog. I want them logged, not silently absorbed.

Acceptance criteria traceability

AC	Verdict	Evidence
AC1 — hover/activate a box ⇒ no delete button rendered, text never obscured	✅ Met	<button> block fully removed from AnnotationShape.svelte; unused deleteVisible derived removed; component + layer contract tests now assert the button never renders, even hovered+active in canDraw mode.
AC2 — focused box + Delete ⇒ confirm dialog, cascade delete unchanged	✅ Met	Keydown branch if (e.key === 'Delete' && showDelete) onDeleteRequest?.() is intact; both the positive test and the negative showDelete:false guard test are retained; e2e repointed to focus → Delete → "Bestätigen".
AC3 — panel block delete ⇒ block + annotation removed, unchanged	✅ Met	TranscriptionBlock.svelte delete (labelled, with confirm dialog) untouched; redundancy premise verified.

The "why removal, not improve-in-place" argument is sound and well-evidenced: the 44 px target is a hard WCAG 2.2 floor that can't coexist with single-line box geometry, and the draw flow guarantees every user-created annotation has a panel-deletable block. No scope creep — the diff matches the declared file list, including the two folded-in spec/e2e items called out in the scope note.

Concerns (Suggestions — none blocking)

1. NFR-A11y — the retained Delete shortcut is a fully hidden affordance (Minor discoverability gap, but worth tracking).
I verified the shortcut is documented nowhere: no mention in routes/hilfe/transkription/+page.svelte, no tooltip, no on-screen cue anywhere in the transcription UI. Worse for the recognition-over-recall heuristic, the box's aria-label is "Block anzeigen" ("show block") — so a keyboard or screen-reader user gets an active contradiction: the element announces itself as "show", while it also silently destroys on Delete. The issue accepts this and defers a help-page line as out of scope. That deferral is reasonable for a bug fix, but it should become a tracked Should-have, not an inline footnote that evaporates on merge. Suggested follow-up issue:

As a transcriber, I want a visible cue for the keyboard delete shortcut, so that I can discover and use deletion on the canvas without prior knowledge.
AC: Given a focused annotation box, when I read its accessible name / a nearby hint, then the Delete action is announced or visibly indicated (e.g. aria-keyshortcuts="Delete" + a help-page line). Given the help page, then the Delete shortcut is listed.

aria-keyshortcuts="Delete" on the box is a near-zero-cost partial mitigation that would at least make the binding machine-discoverable.

2. Requirements debt — the orphan-annotation cleanup path is now removed with no tracking owner.
The PR/issue correctly classify orphan annotations (annotation with no block) as a backend-corruption-only edge case and accept losing the in-app cleanup route. I agree it shouldn't gate this UI fix. But "accepted trade-off" ≠ "requirement closed." Right now the residual risk has no home: if a partial backend failure ever produces an orphan, there is now zero in-app recovery and no documented operational alternative. Recommend a one-line Technical Debt register entry so the decision is auditable rather than buried in a closed PR:

TD-NN | Orphan annotations (block-less) have no in-app cleanup path after canvas delete removal | Impact if deferred: undeletable phantom boxes on data corruption, no transcriber-facing recovery | Suggested timing: only if/when an orphan is observed in prod | Size: XS (a DB/admin remediation note, or a guarded admin action)

A pointer to how an orphan would be remediated (manual SQL? admin endpoint?) in that entry would close the loop.

3. Minor — showDelete / onDeleteRequest now have a single consumer.
With the visible button gone, the entire showDelete → onDeleteRequest → deleteAnnotation chain exists solely to feed one keydown line. That's intentional and correct per the issue (it feeds the shortcut), so no change requested — just flagging that the prop name showDelete now reads as a misnomer (it gates a key handler, shows nothing). A future rename to something like deleteEnabled would aid the next reader. Pure readability nit; out of scope here.

Summary

Clean, well-scoped, well-tested bug fix that meets every acceptance criterion. Approving with the request that the two acknowledged-but-untracked items — the hidden-shortcut discoverability gap (#1) and the orphan-cleanup requirements debt (#2) — be captured as a follow-up issue and a tech-debt entry respectively, so accepted trade-offs stay visible in the backlog instead of disappearing on merge.

## 📋 Elicit — Requirements Engineer & Business Analyst **⚠️ Approved with concerns** The change is faithful to issue #722: the redundant on-canvas control is gone, the keyboard path and its full wiring survive, and the three acceptance criteria are demonstrably met. My concerns are not blockers for *this* fix — they are unresolved requirements/NFR items the issue itself flags but leaves with no home in the backlog. I want them logged, not silently absorbed. ### Acceptance criteria traceability | AC | Verdict | Evidence | |----|---------|----------| | **AC1** — hover/activate a box ⇒ no delete button rendered, text never obscured | ✅ Met | `<button>` block fully removed from `AnnotationShape.svelte`; unused `deleteVisible` derived removed; component + layer contract tests now assert the button *never* renders, even hovered+active in `canDraw` mode. | | **AC2** — focused box + `Delete` ⇒ confirm dialog, cascade delete unchanged | ✅ Met | Keydown branch `if (e.key === 'Delete' && showDelete) onDeleteRequest?.()` is intact; both the positive test and the negative `showDelete:false` guard test are retained; e2e repointed to focus → `Delete` → "Bestätigen". | | **AC3** — panel block delete ⇒ block + annotation removed, unchanged | ✅ Met | `TranscriptionBlock.svelte` delete (labelled, with confirm dialog) untouched; redundancy premise verified. | The "why removal, not improve-in-place" argument is sound and well-evidenced: the 44 px target is a hard WCAG 2.2 floor that can't coexist with single-line box geometry, and the draw flow guarantees every user-created annotation has a panel-deletable block. No scope creep — the diff matches the declared file list, including the two folded-in spec/e2e items called out in the scope note. ### Concerns (Suggestions — none blocking) **1. NFR-A11y — the retained `Delete` shortcut is a fully hidden affordance (Minor discoverability gap, but worth tracking).** I verified the shortcut is documented *nowhere*: no mention in `routes/hilfe/transkription/+page.svelte`, no tooltip, no on-screen cue anywhere in the transcription UI. Worse for the recognition-over-recall heuristic, the box's `aria-label` is `"Block anzeigen"` ("show block") — so a keyboard or screen-reader user gets an *active contradiction*: the element announces itself as "show", while it also silently destroys on `Delete`. The issue accepts this and defers a help-page line as out of scope. That deferral is reasonable for a bug fix, **but it should become a tracked Should-have**, not an inline footnote that evaporates on merge. Suggested follow-up issue: > *As a transcriber, I want a visible cue for the keyboard delete shortcut, so that I can discover and use deletion on the canvas without prior knowledge.* > AC: Given a focused annotation box, when I read its accessible name / a nearby hint, then the `Delete` action is announced or visibly indicated (e.g. aria-keyshortcuts="Delete" + a help-page line). Given the help page, then the `Delete` shortcut is listed. `aria-keyshortcuts="Delete"` on the box is a near-zero-cost partial mitigation that would at least make the binding machine-discoverable. **2. Requirements debt — the orphan-annotation cleanup path is now removed with no tracking owner.** The PR/issue correctly classify orphan annotations (annotation with no block) as a backend-corruption-only edge case and accept losing the in-app cleanup route. I agree it shouldn't gate this UI fix. But "accepted trade-off" ≠ "requirement closed." Right now the residual risk has **no home**: if a partial backend failure ever produces an orphan, there is now zero in-app recovery and no documented operational alternative. Recommend a one-line **Technical Debt register entry** so the decision is auditable rather than buried in a closed PR: > TD-NN | Orphan annotations (block-less) have no in-app cleanup path after canvas delete removal | Impact if deferred: undeletable phantom boxes on data corruption, no transcriber-facing recovery | Suggested timing: only if/when an orphan is observed in prod | Size: XS (a DB/admin remediation note, or a guarded admin action) A pointer to *how* an orphan would be remediated (manual SQL? admin endpoint?) in that entry would close the loop. **3. Minor — `showDelete` / `onDeleteRequest` now have a single consumer.** With the visible button gone, the entire `showDelete → onDeleteRequest → deleteAnnotation` chain exists solely to feed one keydown line. That's intentional and correct per the issue (it feeds the shortcut), so no change requested — just flagging that the prop name `showDelete` now reads as a misnomer (it gates a key handler, shows nothing). A future rename to something like `deleteEnabled` would aid the next reader. Pure readability nit; out of scope here. ### Summary Clean, well-scoped, well-tested bug fix that meets every acceptance criterion. Approving with the request that the two acknowledged-but-untracked items — the hidden-shortcut discoverability gap (#1) and the orphan-cleanup requirements debt (#2) — be captured as a follow-up issue and a tech-debt entry respectively, so accepted trade-offs stay visible in the backlog instead of disappearing on merge.

marcel commented 2026-06-03 22:48:04 +02:00

Author

Owner

Copy Link

🧪 Sara Holt — QA Engineer & Test Strategist

⚠️ Approved with concerns

The behaviour change (removing the on-canvas delete button) is correctly captured: the deleted markup matches the removed assertions, the retained Delete-key path is genuinely exercised at the unit layer, and the e2e was honestly repointed to the surviving deletion route. The concerns are about a vacuously-passing risk in the e2e and a focus-vs-synthetic-event mismatch between the unit test and the real DOM path. None block, but two are worth tightening before this is the only regression net for deletion.

---

What's good (credit where due)

• Unit contract tests are meaningful, not vacuous. AnnotationShape.svelte.spec.ts:40 renders with the strongest possible positive props (isHovered: true, isActive: true, showDelete: true) and asserts the button never appears — plus a positive control (annotation-ann-1 is in the document). That positive control matters: it proves the testid query mechanism works, so the .not.toBeInTheDocument() isn't passing because the whole render silently failed. Same pattern in AnnotationLayer.svelte.spec.ts:103. Good defensive testing.
• The keyboard path is actually covered. Both branches of if (e.key === 'Delete' && showDelete) (AnnotationShape.svelte:90) are tested: fires when showDelete: true (spec line 56) and does not fire when showDelete: false (line 76). That's the retained power-user path and it has real branch coverage — the PR's central claim ("keyboard Delete kept and unchanged") is test-backed.
• The full delete chain checks out. I traced it end to end: canDraw = transcribeMode && canAnnotate → showDelete (PdfViewer.svelte:289/AnnotationLayer.svelte:117) → onDeleteRequest(annotation.id) → handleAnnotationDeleteRequest (+page.svelte:60) → confirm({ destructive: true }) → ConfirmDialog renders a button labelled m.btn_confirm() = "Bestätigen" (ConfirmDialog.svelte:57, messages/de.json:38) → transcription.deleteAnnotation. So the e2e's getByRole('button', { name: /^bestätigen$/i }) selector is correct and resolves to the real confirm button. The repointed flow does exercise actual deletion, not a no-op.

---

Blockers

None.

Suggestions

1. Unit test dispatches a synthetic event; the e2e relies on real focus — neither proves the focus contract. AnnotationShape.svelte.spec.ts:70-71 does annotationEl.dispatchEvent(new KeyboardEvent('keydown', { key: 'Delete', bubbles: true })) — this fires the handler regardless of focus, so it does not verify that the element is focusable/focused when Delete is pressed. The e2e (documents.spec.ts:392-393) does annotation.click() then annotation.press('Delete'), which does depend on the click leaving focus on the role="button" div. The div has tabindex="0" (AnnotationShape.svelte:85) so this should hold — but the only thing guarding that "click focuses, then Delete deletes" contract is now a single e2e. If a future refactor moves focus on click (e.g. opens the panel and focuses an input), the unit test stays green and only the e2e catches it. Consider one browser-mode unit test that does a real .click() then .press('Delete') on the rendered shape to lock the focus contract at the fast layer.

2. The e2e is order-dependent and the count assertion can mask a wrong-element delete. countBefore - 1 (documents.spec.ts:397) only proves the count dropped by one — it passes even if the wrong annotation were deleted, and it silently depends on the earlier draw/persists tests having created at least one annotation. If those tests fail or are run in isolation (--grep "delete"), countBefore is 0 and the assertion becomes toHaveCount(-1) which never settles → an 8s timeout, reported as a delete bug rather than a fixture-ordering bug. Two cheap hardenings: (a) assert countBefore >= 1 up front with a clear message so the failure mode is legible; (b) capture the deleted annotation's data-testid before pressing Delete and additionally assert that specific testid is gone — turns a count check into an identity check.

3. No coverage that confirm-cancel aborts the delete. The if (!confirmed) return; branch (+page.svelte:65) is now the only thing standing between a stray Delete keypress and data loss, and it has no test. A unit/integration test of handleAnnotationDeleteRequest with the confirm stub returning false asserting deleteAnnotation is not called would protect the destructive-action guard. Worth adding since the canvas button (which had its own click-isolation test, stopPropagation) is gone and the keyboard path is faster to trigger accidentally.

4. Minor — dead prop surface. onDeleteRequest / showDelete remain on AnnotationShape purely for the keyboard branch, which is fine, but there's now no longer any test asserting onclick is not fired alongside a delete (the old does not call onclick when delete button is clicked test was correctly dropped with the button). Pressing Delete also runs through onkeydown only, so onclick can't fire — no action needed, just noting the isolation guarantee that test used to provide is no longer relevant.

---

Net: the test changes faithfully follow the behaviour change and the contract tests are well-constructed (positive controls, both keyboard branches). My only real worry is concentration of risk — deletion now has one e2e doing the real focus→Delete→confirm dance, and that e2e's count assertion is both order-fragile and identity-blind. Suggestions 1–3 move that risk back down the pyramid where it's cheap.

## 🧪 Sara Holt — QA Engineer & Test Strategist **⚠️ Approved with concerns** The behaviour change (removing the on-canvas delete button) is correctly captured: the deleted markup matches the removed assertions, the retained `Delete`-key path is genuinely exercised at the unit layer, and the e2e was honestly repointed to the surviving deletion route. The concerns are about a vacuously-passing risk in the e2e and a focus-vs-synthetic-event mismatch between the unit test and the real DOM path. None block, but two are worth tightening before this is the *only* regression net for deletion. --- ### What's good (credit where due) - **Unit contract tests are meaningful, not vacuous.** `AnnotationShape.svelte.spec.ts:40` renders with the strongest possible positive props (`isHovered: true, isActive: true, showDelete: true`) and asserts the button never appears — plus a positive control (`annotation-ann-1` *is* in the document). That positive control matters: it proves the testid query mechanism works, so the `.not.toBeInTheDocument()` isn't passing because the whole render silently failed. Same pattern in `AnnotationLayer.svelte.spec.ts:103`. Good defensive testing. - **The keyboard path is actually covered.** Both branches of `if (e.key === 'Delete' && showDelete)` (`AnnotationShape.svelte:90`) are tested: fires when `showDelete: true` (spec line 56) and does *not* fire when `showDelete: false` (line 76). That's the retained power-user path and it has real branch coverage — the PR's central claim ("keyboard Delete kept and unchanged") is test-backed. - **The full delete chain checks out.** I traced it end to end: `canDraw = transcribeMode && canAnnotate` → `showDelete` (PdfViewer.svelte:289/AnnotationLayer.svelte:117) → `onDeleteRequest(annotation.id)` → `handleAnnotationDeleteRequest` (`+page.svelte:60`) → `confirm({ destructive: true })` → ConfirmDialog renders a button labelled `m.btn_confirm()` = **"Bestätigen"** (`ConfirmDialog.svelte:57`, `messages/de.json:38`) → `transcription.deleteAnnotation`. So the e2e's `getByRole('button', { name: /^bestätigen$/i })` selector is **correct** and resolves to the real confirm button. The repointed flow does exercise actual deletion, not a no-op. --- ### Blockers None. ### Suggestions 1. **Unit test dispatches a synthetic event; the e2e relies on real focus — neither proves the focus contract.** `AnnotationShape.svelte.spec.ts:70-71` does `annotationEl.dispatchEvent(new KeyboardEvent('keydown', { key: 'Delete', bubbles: true }))` — this fires the handler regardless of focus, so it does *not* verify that the element is focusable/focused when Delete is pressed. The e2e (`documents.spec.ts:392-393`) does `annotation.click()` then `annotation.press('Delete')`, which *does* depend on the click leaving focus on the `role="button"` div. The div has `tabindex="0"` (`AnnotationShape.svelte:85`) so this should hold — but the only thing guarding that "click focuses, then Delete deletes" contract is now a single e2e. If a future refactor moves focus on click (e.g. opens the panel and focuses an input), the unit test stays green and only the e2e catches it. Consider one browser-mode unit test that does a real `.click()` then `.press('Delete')` on the rendered shape to lock the focus contract at the fast layer. 2. **The e2e is order-dependent and the count assertion can mask a wrong-element delete.** `countBefore - 1` (`documents.spec.ts:397`) only proves *the count dropped by one* — it passes even if the wrong annotation were deleted, and it silently depends on the earlier `draw`/`persists` tests having created at least one annotation. If those tests fail or are run in isolation (`--grep "delete"`), `countBefore` is 0 and the assertion becomes `toHaveCount(-1)` which never settles → an 8s timeout, reported as a delete bug rather than a fixture-ordering bug. Two cheap hardenings: (a) assert `countBefore >= 1` up front with a clear message so the failure mode is legible; (b) capture the deleted annotation's `data-testid` before pressing Delete and additionally assert *that specific* testid is gone — turns a count check into an identity check. 3. **No coverage that confirm-cancel aborts the delete.** The `if (!confirmed) return;` branch (`+page.svelte:65`) is now the *only* thing standing between a stray Delete keypress and data loss, and it has no test. A unit/integration test of `handleAnnotationDeleteRequest` with the confirm stub returning `false` asserting `deleteAnnotation` is **not** called would protect the destructive-action guard. Worth adding since the canvas button (which had its own click-isolation test, `stopPropagation`) is gone and the keyboard path is faster to trigger accidentally. 4. **Minor — dead prop surface.** `onDeleteRequest` / `showDelete` remain on `AnnotationShape` purely for the keyboard branch, which is fine, but there's now no longer any test asserting `onclick` is *not* fired alongside a delete (the old `does not call onclick when delete button is clicked` test was correctly dropped with the button). Pressing Delete also runs through `onkeydown` only, so `onclick` can't fire — no action needed, just noting the isolation guarantee that test used to provide is no longer relevant. --- Net: the test changes faithfully follow the behaviour change and the contract tests are well-constructed (positive controls, both keyboard branches). My only real worry is concentration of risk — deletion now has one e2e doing the real focus→Delete→confirm dance, and that e2e's count assertion is both order-fragile and identity-blind. Suggestions 1–3 move that risk back down the pyramid where it's cheap.

marcel commented 2026-06-03 22:48:09 +02:00

Author

Owner

Copy Link

🎨 Leonie Voss — UI/UX Design Lead & Accessibility Advocate

🚫 Changes requested

Removing the overlapping on-canvas delete button is the right call — a 44px circle pinned over single-line boxes obscured the very document text people are reading, and that geometry was genuinely unwinnable. I fully support the removal. But the PR leaves the replacement deletion paths in a state that fails my hardest-constraint test: a 67-year-old transcribing on a tablet, no keyboard attached. After this change, can they still delete a mis-drawn box, and can they discover how? Right now the honest answer is "barely, and not discoverably."

---

Blockers

1. The only touch-reachable delete path is a 16px target — fails WCAG 2.2 (2.5.8 Target Size).
frontend/src/lib/document/transcription/TranscriptionBlock.svelte:255-274

With the canvas button gone, the panel delete button becomes the sole deletion route for any touch user. But it is icon-only at h-4 w-4 (16×16px) with no padding-driven hit area:

<button
  type="button"
  class="hover:text-error cursor-pointer text-ink-3 transition-colors"
  aria-label={m.btn_delete()}
  onclick={handleDelete}
>
  <svg class="h-4 w-4" ...>

16px is roughly a third of the 44×44px CSS minimum WCAG 2.2 mandates, and well below the 48px I want for the 60+ audience. The PR description leans on "the right-hand panel already provides a non-overlapping, labelled delete" as the justification for removal — but that fallback is itself not tablet-usable. We're trading an overlapping-but-tappable control for a non-overlapping-but-untappable one.

Fix: give the panel delete button a real target before this lands:

<button
  type="button"
  class="-mr-2 flex min-h-[44px] min-w-[44px] cursor-pointer items-center justify-center
         rounded-sm text-ink-3 transition-colors hover:text-error
         focus-visible:ring-2 focus-visible:ring-brand-navy focus-visible:ring-offset-1 outline-none"
  aria-label={m.btn_delete()}
  onclick={handleDelete}
>
  <svg class="h-5 w-5" ...>

(The -mr-2 keeps the visual icon position while the hit area grows outward. Same treatment applies to the review and comment buttons beside it — they share the same undersized footprint — but the delete button is the blocker because it is now load-bearing.)

2. The kept Delete-key path has no discoverable affordance — invisible to everyone who isn't already a power user.
frontend/src/lib/document/annotation/AnnotationShape.svelte:88-91

onkeydown={(e) => {
  if (e.key === 'Enter' || e.key === ' ') onclick();
  if (e.key === 'Delete' && showDelete) onDeleteRequest?.();
}}

This is a genuinely good, non-overlapping path — but it is completely hidden. There is no tooltip, no hint text, no aria-keyshortcuts, and a grep of messages/de.json confirms no "Entf/Delete" hint string exists anywhere. A keyboard-only user (and our 60+ laptop transcribers are exactly that cohort) has no way to learn this exists. An invisible shortcut is not an affordance; it's a secret. The PR body calls it a "power-user path," which is fine as a supplement — but it cannot be the design's answer to "how does a keyboard user delete," because nothing tells them it's there.

Fix (pick at least one, ideally both):

• Add aria-keyshortcuts="Delete" to the annotation <div> so assistive tech announces it on focus.
• When an annotation is focused/active in annotate mode, surface a small, non-overlapping hint near the panel block (not pinned over the document) — e.g. "Entf-Taste löscht den markierten Block." This restores discoverability without reintroducing the overlap. Add a de/en/es i18n key for it.

---

Suggestions

3. Confirm dialog focus + dual-audience copy. The e2e test now drives focus → Delete → click "Bestätigen". Please verify the confirm dialog moves focus to itself and traps it, and that "Bestätigen"/"Abbrechen" buttons themselves meet 44px — otherwise we've moved the touch-target problem one dialog downstream.

4. Add the touch path to the e2e, not just the keyboard path. frontend/e2e/documents.spec.ts:383+ now exercises only the Delete key. Since the panel button is the only touch route, add a test that taps the panel delete button at a mobile viewport (375px) to lock in that this path keeps working — otherwise the regression that matters most for tablet transcribers is untested.

---

Net: the removal is correct and I want it merged — but not until the surviving paths actually serve the audience the canvas button was protecting. Fix the 16px panel target (Blocker 1) and give the Delete key a visible/announced cue (Blocker 2), and this becomes a clean approve.

— Leonie

## 🎨 Leonie Voss — UI/UX Design Lead & Accessibility Advocate **🚫 Changes requested** Removing the overlapping on-canvas delete button is the right call — a 44px circle pinned over single-line boxes obscured the very document text people are reading, and that geometry was genuinely unwinnable. I fully support the removal. But the PR leaves the *replacement* deletion paths in a state that fails my hardest-constraint test: a 67-year-old transcribing on a tablet, no keyboard attached. After this change, can they still delete a mis-drawn box, and can they *discover* how? Right now the honest answer is "barely, and not discoverably." --- ### Blockers **1. The only touch-reachable delete path is a 16px target — fails WCAG 2.2 (2.5.8 Target Size).** `frontend/src/lib/document/transcription/TranscriptionBlock.svelte:255-274` With the canvas button gone, the panel delete button becomes the *sole* deletion route for any touch user. But it is icon-only at `h-4 w-4` (16×16px) with no padding-driven hit area: ```svelte <button type="button" class="hover:text-error cursor-pointer text-ink-3 transition-colors" aria-label={m.btn_delete()} onclick={handleDelete} > <svg class="h-4 w-4" ...> ``` 16px is roughly a third of the 44×44px CSS minimum WCAG 2.2 mandates, and well below the 48px I want for the 60+ audience. The PR description leans on "the right-hand panel already provides a non-overlapping, labelled delete" as the justification for removal — but that fallback is itself not tablet-usable. We're trading an overlapping-but-tappable control for a non-overlapping-but-untappable one. *Fix:* give the panel delete button a real target before this lands: ```svelte <button type="button" class="-mr-2 flex min-h-[44px] min-w-[44px] cursor-pointer items-center justify-center rounded-sm text-ink-3 transition-colors hover:text-error focus-visible:ring-2 focus-visible:ring-brand-navy focus-visible:ring-offset-1 outline-none" aria-label={m.btn_delete()} onclick={handleDelete} > <svg class="h-5 w-5" ...> ``` (The `-mr-2` keeps the visual icon position while the hit area grows outward. Same treatment applies to the review and comment buttons beside it — they share the same undersized footprint — but the delete button is the blocker because it is now load-bearing.) **2. The kept Delete-key path has no discoverable affordance — invisible to everyone who isn't already a power user.** `frontend/src/lib/document/annotation/AnnotationShape.svelte:88-91` ```svelte onkeydown={(e) => { if (e.key === 'Enter' || e.key === ' ') onclick(); if (e.key === 'Delete' && showDelete) onDeleteRequest?.(); }} ``` This is a genuinely good, non-overlapping path — but it is completely hidden. There is no tooltip, no hint text, no `aria-keyshortcuts`, and a grep of `messages/de.json` confirms no "Entf/Delete" hint string exists anywhere. A keyboard-only user (and our 60+ laptop transcribers are exactly that cohort) has no way to learn this exists. An invisible shortcut is not an affordance; it's a secret. The PR body calls it a "power-user path," which is fine *as a supplement* — but it cannot be the design's answer to "how does a keyboard user delete," because nothing tells them it's there. *Fix (pick at least one, ideally both):* - Add `aria-keyshortcuts="Delete"` to the annotation `<div>` so assistive tech announces it on focus. - When an annotation is focused/active in annotate mode, surface a small, non-overlapping hint near the panel block (not pinned over the document) — e.g. "Entf-Taste löscht den markierten Block." This restores discoverability without reintroducing the overlap. Add a `de/en/es` i18n key for it. --- ### Suggestions **3. Confirm dialog focus + dual-audience copy.** The e2e test now drives focus → `Delete` → click "Bestätigen". Please verify the confirm dialog moves focus to itself and traps it, and that "Bestätigen"/"Abbrechen" buttons themselves meet 44px — otherwise we've moved the touch-target problem one dialog downstream. **4. Add the touch path to the e2e, not just the keyboard path.** `frontend/e2e/documents.spec.ts:383+` now exercises only the `Delete` key. Since the panel button is the *only* touch route, add a test that taps the panel delete button at a mobile viewport (375px) to lock in that this path keeps working — otherwise the regression that matters most for tablet transcribers is untested. --- **Net:** the removal is correct and I want it merged — but not until the surviving paths actually serve the audience the canvas button was protecting. Fix the 16px panel target (Blocker 1) and give the Delete key a visible/announced cue (Blocker 2), and this becomes a clean approve. — Leonie

marcel added 2 commits 2026-06-03 23:00:29 +02:00

fix(transcription): enlarge panel block action buttons to 44px touch target (#722) ... 73237b9595

The panel footer's delete and review-toggle controls were icon-only ~16px
hit areas. After #722 removed the on-canvas delete button, the panel delete
button became the only touch-reachable delete path, so it must meet the WCAG
2.2 §2.5.8 minimum target size (44×44px). Give both icon-only footer actions
a >=44px inline-flex hit area with negative margins so the row layout and the
visible icon size are unchanged.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

test(transcription): harden annotation-delete specs and e2e (#722) ... de804a456b

- Fix a stale test title that still claimed a delete button is visible.
- Strengthen the two "never renders a delete button" contract tests
  (AnnotationShape + AnnotationLayer specs) to assert the annotation
  element has zero descendant <button> elements, not just the absence of
  the removed testid (a near-tautology now that the testid is gone).
- Harden the e2e delete test: guard countBefore > 0 so a missing seed
  fails clearly instead of asserting toHaveCount(-1), and capture the
  deleted annotation's testid to assert that specific element is gone
  (identity check) alongside the count drop.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

marcel commented 2026-06-03 23:01:15 +02:00

Author

Owner

Copy Link

🔧 Review fixes pushed (73237b95, de804a45)

Addressed the review findings:

🎨 Leonie — Blocker 1 (touch target): fixed. TranscriptionBlock.svelte — both icon-only footer actions (Delete and the Review toggle) now have a ≥44×44 px hit area (min-h-[44px] min-w-[44px] inline-flex items-center justify-center with negative margins to preserve row layout); icon glyphs unchanged. Added a browser test asserting both buttons render ≥44 px in each dimension.

🎨 Leonie — Blocker 2 (visible keyboard-shortcut hint): deferred to #327, not fixed here. By decision, the discoverability work for the kept Delete shortcut (visible hint + aria-keyshortcuts + i18n + cheatsheet row) belongs with the transcribe keyboard-shortcuts feature, not this button-removal PR — adding a visible hint here would risk re-introducing the on-canvas overlay this PR set out to remove. Folded into #327 (added a Delete row to its shortcut table and an addendum section).

👨‍💻 Felix / 🏛️ Architect — stale test title: AnnotationLayer.svelte.test.ts:243 retitled (delete button visible) → (no delete button).

👨‍💻 Felix / 🧪 Sara — near-vacuous absence assertions: both "never renders a delete button" contract tests now also assert the annotation element has zero descendant <button> in annotate+active mode (the removed-testid check stays as a positive control).

🧪 Sara / ⚙️ Tobias — e2e fragility: admin can delete an annotation now guards expect(countBefore).toBeGreaterThan(0) and adds an identity check (the specific deleted annotation's data-testid is gone after deletion), alongside the count assertion.

Out of scope (acknowledged, not done here): .spec.ts/.test.ts duplication cleanup; showDelete rename; backend authz boundary test; orphan-annotation tech-debt register entry.

Verified clean on touched files: npm run check, Prettier, ESLint. Browser/e2e specs run in CI.

## 🔧 Review fixes pushed (`73237b95`, `de804a45`) Addressed the review findings: **🎨 Leonie — Blocker 1 (touch target): fixed.** `TranscriptionBlock.svelte` — both icon-only footer actions (Delete and the Review toggle) now have a ≥44×44 px hit area (`min-h-[44px] min-w-[44px] inline-flex items-center justify-center` with negative margins to preserve row layout); icon glyphs unchanged. Added a browser test asserting both buttons render ≥44 px in each dimension. **🎨 Leonie — Blocker 2 (visible keyboard-shortcut hint): deferred to #327, not fixed here.** By decision, the discoverability work for the kept `Delete` shortcut (visible hint + `aria-keyshortcuts` + i18n + cheatsheet row) belongs with the transcribe keyboard-shortcuts feature, not this button-removal PR — adding a visible hint here would risk re-introducing the on-canvas overlay this PR set out to remove. Folded into #327 (added a `Delete` row to its shortcut table and an addendum section). **👨‍💻 Felix / 🏛️ Architect — stale test title:** `AnnotationLayer.svelte.test.ts:243` retitled `(delete button visible)` → `(no delete button)`. **👨‍💻 Felix / 🧪 Sara — near-vacuous absence assertions:** both "never renders a delete button" contract tests now also assert the annotation element has **zero descendant `<button>`** in annotate+active mode (the removed-testid check stays as a positive control). **🧪 Sara / ⚙️ Tobias — e2e fragility:** `admin can delete an annotation` now guards `expect(countBefore).toBeGreaterThan(0)` and adds an identity check (the specific deleted annotation's `data-testid` is gone after deletion), alongside the count assertion. **Out of scope (acknowledged, not done here):** `.spec.ts`/`.test.ts` duplication cleanup; `showDelete` rename; backend authz boundary test; orphan-annotation tech-debt register entry. Verified clean on touched files: `npm run check`, Prettier, ESLint. Browser/e2e specs run in CI.

marcel added 1 commit 2026-06-04 11:50:03 +02:00

test(transcription): assert 44px target classes, not rendered px (#722) ... f94e125c01

The component-test browser env (src/test-setup.ts) loads no Tailwind
stylesheet, so the footer buttons' min-h/min-w-[44px] classes have no
layout effect there and the elements collapse to their 16px icon —
making the getBoundingClientRect size assertions fail in CI.

Assert the sizing utility classes instead; they are the exact mechanism
that produces the WCAG 2.2 §2.5.8 target size in the real app. The
compiled pixel size remains covered by the full-app e2e.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

marcel merged commit 23006a6562 into main 2026-06-04 12:28:18 +02:00

marcel deleted branch fix/issue-722-remove-annotation-canvas-delete-button 2026-06-04 12:28:18 +02:00

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

P0-critical

Blocks a core user journey, causes data loss, or is a security/accessibility barrier. Work on this before P1+.

P1-high

Significant friction on a main user journey; workaround exists but is non-obvious. Next up after P0.

P2-medium

Noticeable improvement; doesn't block anything; schedule opportunistically.

P3-later

Cosmetic or parking-lot work; fine to stay open indefinitely.

audit

Read-only audit / assessment work; produces a report rather than changing code

bug

Something isn't working

cleanup

Removal of dead code, vague comments, naming violations, and scratch artifacts

collaboration

We want to extend the family archive to have more collaboration tools

conversation

descoped

We will do that later

devops

documentation

README, ARCHITECTURE, GLOSSARY, CONTRIBUTING, per-domain docs

epic

Marker for epic-level issues that group multiple child issues

feature

file-upload

legibility

Codebase Legibility Refactor — preparing the codebase for human evaluation and bus-factor reduction

needs-discussion

Has an open decision or design question that must be resolved before implementation can start.

notification

person

phase-1: security

Security hygiene — must be done first

phase-2: container-images

Production-ready multi-stage Docker images

phase-3: prod-compose

Production compose overlay + Caddy reverse proxy

phase-4: spring-prod-profile

Spring Boot production configuration profile

phase-5: backups

Database and object storage backup strategy

phase-6: deployment-docs

.env.example, DEPLOYMENT.md, runbook

phase-7: monitoring

Prometheus, Loki, Grafana, Alertmanager

refactor

Code restructuring without behaviour change

security

test

ui

UI/UX and accessibility issues

user

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

Jens marcel

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: marcel/familienarchiv#723