Prevent negative item quantity in edit form

[FrederickStempfle]

The increment/decrement buttons on the item view already check for negative values, but the advanced edit form lets you type or scroll below zero freely.

This adds validation on both sides:

• Frontend: New min prop on FormTextField, passed through to the HTML input. Quantity field sets min=0.
• Backend: validate:"min=0" on the Quantity field in ItemCreate, ItemUpdate, and ItemPatch structs. The existing go-playground/validator pipeline catches it before anything hits the database.

Fixes #1231

Summary by CodeRabbit

• New Features

  • Numeric input components accept an optional minimum value and this minimum is applied in item edit forms.

• Bug Fixes

  • Quantity inputs now enforce a non-negative minimum (0) across create, update, patch, and template-based item flows to prevent negative quantities.

[coderabbitai]

Walkthrough

Adds non-negative quantity validation across backend structs and propagates a frontend numeric min prop to quantity inputs so the UI can enforce a minimum of 0 while the server validates min=0 for various item-related request fields. (≤50 words)

Changes

Cohort / File(s)	Summary
Backend: item repo structs backend/internal/data/repo/repo_items.go	Added validate:"min=0" to ItemCreate.Quantity and ItemUpdate.Quantity; added validate:"omitempty,min=0" to ItemPatch.Quantity.
Backend: item templates API & repo backend/app/api/handlers/v1/v1_ctrl_item_templates.go, backend/internal/data/repo/repo_item_templates.go	Added validate:"omitempty,min=0" to ItemTemplateCreateItemRequest.Quantity and to ItemTemplateCreate.DefaultQuantity / ItemTemplateUpdate.DefaultQuantity.
Frontend: reusable input component frontend/components/Form/TextField.vue	Introduced optional min prop (Number) and passed it to the underlying Input component.
Frontend: item edit form frontend/pages/item/[id]/index/edit.vue	Added optional min?: number to NumberFormField and bound :min="field.min" for numeric fields; set quantity field min to 0 in form definition.

Estimated Code Review Effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly Related PRs

• Add a quantity field to the item create modal form. #615: Modifies the same Item Quantity fields in repo_items.go; related to quantity handling and validation.

Suggested Reviewers

• tankerkiller125
• tonyaellie

Security Recommendations

• Keep server-side validate:"min=0" authoritative; do not rely on the frontend alone.
• Consider adding a DB-level CHECK constraint (e.g., CHECK (quantity >= 0)) to enforce integrity across all ingestion paths.
• Ensure any import/ETL paths that bypass API validations also enforce non-negative quantities.

Poem

Numbers no longer dip below zero, 📉→0
Frontend nudges, backend guards the flow,
Validators hum, checks in tow,
Inventory steady, steady we go —
Small tags, big peace, onward we row! 🚢✨

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately and concisely describes the main change: adding validation to prevent negative item quantities in the edit form.
Description check	✅ Passed	The description covers the problem, solution across frontend and backend, and includes the linked issue reference, but lacks explicit PR type declaration and testing details.
Linked Issues check	✅ Passed	The PR directly addresses issue #1231 by implementing validation to prevent negative quantities in both the advanced edit form UI and backend data processing.
Out of Scope Changes check	✅ Passed	All changes are strictly scoped to preventing negative item quantities through frontend input constraints and backend validation rules.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

backend/internal/data/repo/repo_items.go (1)

644-656: ⚠️ Potential issue | 🟡 Minor

Security issue: ItemCreateFromTemplate.Quantity missing min=0 validation allows negative quantities through the template creation API.

The endpoint POST /v1/templates/{id}/create-item accepts user-supplied quantity with no validation constraints, then passes it directly to ItemCreateFromTemplate—which lacks the min=0 constraint present in ItemCreate and ItemUpdate. This creates a validation bypass where negative quantities can reach the database.

Proposed fix

 type ItemCreateFromTemplate struct {
     Name             string
     Description      string
-    Quantity         int
+    Quantity         int `validate:"min=0"`
     LocationID       uuid.UUID
     TagIDs           []uuid.UUID

Additionally, add validation to the request body in the handler to catch invalid input early:

// In ItemTemplateCreateItemRequest
Quantity *int `json:"quantity" validate:"omitempty,min=0"`

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@backend/internal/data/repo/repo_items.go` around lines 644 - 656,
ItemCreateFromTemplate currently lacks validation on Quantity allowing negative
values; add the same validation tag used in ItemCreate/ItemUpdate (min=0) to the
Quantity field in the ItemCreateFromTemplate struct to enforce non-negative
quantities, and update the API request struct ItemTemplateCreateItemRequest so
its Quantity is a pointer with `validate:"omitempty,min=0"` to catch invalid
input early in the POST /v1/templates/{id}/create-item handler; ensure any
binding/validation call in that handler is invoked so bad values are rejected
before persisting.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@backend/internal/data/repo/repo_items.go`:
- Line 74: Add a non-negative validation constraint to the template creation
path by updating the DTO and repo types: add validate:"min=0" to
ItemTemplateCreateItemRequest.Quantity (the pointer *int on the request struct
used in v1_ctrl_item_templates.go) and add validate:"min=0" to
ItemCreateFromTemplate.Quantity in backend/internal/data/repo/repo_items.go (or
alternatively perform an explicit check in the handler before calling
CreateFromTemplate()). Ensure the struct tags are applied to the declared fields
so the existing validate.Check()/validate.Struct() pipeline will reject negative
quantities.

---

Outside diff comments:
In `@backend/internal/data/repo/repo_items.go`:
- Around line 644-656: ItemCreateFromTemplate currently lacks validation on
Quantity allowing negative values; add the same validation tag used in
ItemCreate/ItemUpdate (min=0) to the Quantity field in the
ItemCreateFromTemplate struct to enforce non-negative quantities, and update the
API request struct ItemTemplateCreateItemRequest so its Quantity is a pointer
with `validate:"omitempty,min=0"` to catch invalid input early in the POST
/v1/templates/{id}/create-item handler; ensure any binding/validation call in
that handler is invoked so bad values are rejected before persisting.

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

backend/app/api/handlers/v1/v1_ctrl_item_templates.go (1)

133-136: ⚠️ Potential issue | 🟠 Major

Add validate:"min=0" to DefaultQuantity fields in ItemTemplateCreate and ItemTemplateUpdate; add runtime guard in handler.

template.DefaultQuantity (read from database with no validation constraints) can be negative if the template was created/updated without proper validation. When body.Quantity == nil, this negative default bypasses the API request validation and flows into CreateFromTemplate.

Two fixes required:

1. Add validate:"min=0" to DefaultQuantity fields in both ItemTemplateCreate and ItemTemplateUpdate structs (backend/internal/data/repo/repo_item_templates.go lines 47 and 76) to prevent negative defaults from being persisted.

2. Add an explicit runtime check in the handler before passing quantity to CreateFromTemplate as a defence-in-depth layer:

Suggested guard

 quantity := template.DefaultQuantity
 if body.Quantity != nil {
     quantity = *body.Quantity
 }
+if quantity < 0 {
+    return repo.ItemOut{}, validate.NewRequestError(errors.New("quantity must be non-negative"), http.StatusBadRequest)
+}

🛡️ This prevents negative inventory quantities from being created, even if pre-existing or corrupted template data slips through the initial validation layer.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@backend/app/api/handlers/v1/v1_ctrl_item_templates.go` around lines 133 -
136, Add validation tags and a runtime guard to prevent negative default
quantities: in the data structs ItemTemplateCreate and ItemTemplateUpdate add
`validate:"min=0"` to the DefaultQuantity field so negative values cannot be
persisted, and in the handler (v1_ctrl_item_templates.go) add an explicit check
before calling CreateFromTemplate to ensure the resolved `quantity` (the
variable set from `template.DefaultQuantity` or `*body.Quantity`) is >= 0 — if
it's negative return a 4xx validation error (or normalize to 0 per API
conventions) rather than passing it into CreateFromTemplate.

🧹 Nitpick comments (1)

backend/internal/data/repo/repo_items.go (1)

643-647: validate:"min=0" on ItemCreateFromTemplate.Quantity is a no-op — the tag is never executed.

The go-playground/validator library implements value validations based on struct tags, but tags are only enforced when validate.Struct() (or equivalent) is explicitly called on an instance. ItemCreateFromTemplate is an internal struct assembled in the handler — it never passes through the HTTP adapter's DecodeBody/validate.Check() pipeline. The tag documents intent but provides zero runtime protection.

The real safeguard for this path is ItemTemplateCreateItemRequest.Quantity validate:"omitempty,min=0" (the actual request body). The tag here should either be removed to avoid misleading readers, or an explicit validation call should be added before/inside CreateFromTemplate.

♻️ Option A — validate explicitly at the call site in the handler

+if quantity < 0 {
+    return repo.ItemOut{}, validate.NewRequestError(errors.New("quantity must be non-negative"), http.StatusBadRequest)
+}
 return ctrl.repo.Items.CreateFromTemplate(r.Context(), auth.GID, repo.ItemCreateFromTemplate{

♻️ Option B — remove the misleading tag, keep intent in a comment

 type ItemCreateFromTemplate struct {
     Name             string
     Description      string
-    Quantity         int `validate:"min=0"`
+    Quantity         int // must be >= 0; enforced at call sites via ItemTemplateCreateItemRequest validation

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@backend/internal/data/repo/repo_items.go` around lines 643 - 647, The struct
tag `validate:"min=0"` on ItemCreateFromTemplate is never enforced because the
struct is not passed through the validator pipeline; either remove the
misleading tag (and replace it with a short comment noting the expected
non-negative quantity) or add an explicit validation call where the struct is
constructed/used (e.g., call the validator's Validate.Struct(...) or
validate.Check(...) on the ItemCreateFromTemplate instance before calling
CreateFromTemplate/ItemRepository.CreateFromTemplate) so the min=0 rule is
actually enforced; reference ItemCreateFromTemplate and the code path that calls
CreateFromTemplate/ItemRepository.CreateFromTemplate or the handler that builds
the struct (which already validates ItemTemplateCreateItemRequest).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@backend/app/api/handlers/v1/v1_ctrl_item_templates.go`:
- Around line 133-136: Add validation tags and a runtime guard to prevent
negative default quantities: in the data structs ItemTemplateCreate and
ItemTemplateUpdate add `validate:"min=0"` to the DefaultQuantity field so
negative values cannot be persisted, and in the handler
(v1_ctrl_item_templates.go) add an explicit check before calling
CreateFromTemplate to ensure the resolved `quantity` (the variable set from
`template.DefaultQuantity` or `*body.Quantity`) is >= 0 — if it's negative
return a 4xx validation error (or normalize to 0 per API conventions) rather
than passing it into CreateFromTemplate.

---

Nitpick comments:
In `@backend/internal/data/repo/repo_items.go`:
- Around line 643-647: The struct tag `validate:"min=0"` on
ItemCreateFromTemplate is never enforced because the struct is not passed
through the validator pipeline; either remove the misleading tag (and replace it
with a short comment noting the expected non-negative quantity) or add an
explicit validation call where the struct is constructed/used (e.g., call the
validator's Validate.Struct(...) or validate.Check(...) on the
ItemCreateFromTemplate instance before calling
CreateFromTemplate/ItemRepository.CreateFromTemplate) so the min=0 rule is
actually enforced; reference ItemCreateFromTemplate and the code path that calls
CreateFromTemplate/ItemRepository.CreateFromTemplate or the handler that builds
the struct (which already validates ItemTemplateCreateItemRequest).

[coderabbitai]

🧹 Nitpick comments (3)

backend/app/api/handlers/v1/v1_ctrl_item_templates.go (1)

111-111: Validation tag is correct; consider omitnil for pointer precision.

validate:"omitempty,min=0" on *int correctly rejects negative values: omitempty on a pointer checks both whether the pointer is nil and whether the pointed-to value is the zero value. For min=0, a pointed-to value of 0 (the only zero value that triggers the skip) would pass min=0 anyway, so the behavior is safe. However, omitnil is available and allows skipping validation only when the value is nil, which more precisely captures the intent for a pointer field.

✨ More explicit alternative using omitnil

-	Quantity    *int        `json:"quantity"    validate:"omitempty,min=0"`
+	Quantity    *int        `json:"quantity"    validate:"omitnil,min=0"`

Functionally equivalent for min=0, but omitnil documents the intent ("skip when absent/nil") more precisely than omitempty (which also short-circuits on zero values).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@backend/app/api/handlers/v1/v1_ctrl_item_templates.go` at line 111, The
Quantity field's validation tag uses `omitempty` but should use `omitnil` to
make intent explicit for a pointer: update the struct field `Quantity *int` in
v1_ctrl_item_templates.go to replace `validate:"omitempty,min=0"` with
`validate:"omitnil,min=0"` so validation is skipped only when the pointer is nil
(not when the value is the zero value).

backend/internal/data/repo/repo_item_templates.go (1)

47-47: Same omitnil consideration applies here.

Both ItemTemplateCreate.DefaultQuantity and ItemTemplateUpdate.DefaultQuantity use validate:"omitempty,min=0" on *int. The validation is correct and safe for rejecting negatives (same reasoning as the handler). If you adopt omitnil in the handler struct, apply it consistently here too for uniform intent expression.

✨ Consistent omitnil usage

-	DefaultQuantity *int `json:"defaultQuantity,omitempty" validate:"omitempty,min=0"  extensions:"x-nullable"`
+	DefaultQuantity *int `json:"defaultQuantity,omitempty" validate:"omitnil,min=0"   extensions:"x-nullable"`

Apply the same change to line 76 (ItemTemplateUpdate).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@backend/internal/data/repo/repo_item_templates.go` at line 47, Update the
struct tags for the pointer int fields so they consistently signal omission when
nil: change ItemTemplateCreate.DefaultQuantity and
ItemTemplateUpdate.DefaultQuantity to use the same "omitnil" intent (e.g., add
omitnil to the json tag like `json:"defaultQuantity,omitnil,omitempty"` or your
project's canonical omitnil ordering) while keeping the validation tag
`validate:"omitempty,min=0"` unchanged; this makes the handler and repo structs
express the same intent for nil vs zero values.

frontend/pages/item/[id]/index/edit.vue (1)

639-646: min HTML attribute doesn't block typed negative input on programmatic saves — backend is the real guard.

The HTML min attribute on <input type="number"> only:

1. Prevents the spinner/stepper from going below 0.
2. Triggers browser constraint validation on native <form> submit.

Since saveItem is invoked programmatically (button click at line 582 and the Cmd/Ctrl+S shortcut at line 437–448), HTML5 constraint validation never fires. A user can type -5 and save successfully from the UI, receiving a backend 400 error rather than an immediate client-side message.

For a better UX, consider adding a cheap guard in saveItem:

✨ Suggested client-side guard in saveItem

 async function saveItem(redirect: boolean) {
   if (!item.value.location?.id) {
     toast.error(t("items.toast.failed_save_no_location"));
     return;
   }
+
+  if (item.value.quantity < 0) {
+    toast.error(t("items.toast.invalid_quantity"));
+    return;
+  }

This is not a security concern — the backend validate:"min=0" is the authoritative control — but it removes the round-trip error for a common user mistake.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@frontend/pages/item/`[id]/index/edit.vue around lines 639 - 646, Add a
lightweight client-side validation in the saveItem handler to catch negative or
out-of-range numbers before the programmatic save: iterate the form
schema/fields (the same fields that render FormTextField), and for each field
with type === 'number' and a defined field.min, check item[field.ref] is a
number and >= field.min; if any violate, set a local validation error/state or
show the existing UI error feedback and abort the saveItem flow so the request
isn't sent. Use the same identifiers (saveItem, item, field.ref, field.min,
FormTextField) so the check ties to the displayed field configuration and
prevents the round-trip 400 from the backend.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@backend/app/api/handlers/v1/v1_ctrl_item_templates.go`:
- Line 111: The Quantity field's validation tag uses `omitempty` but should use
`omitnil` to make intent explicit for a pointer: update the struct field
`Quantity *int` in v1_ctrl_item_templates.go to replace
`validate:"omitempty,min=0"` with `validate:"omitnil,min=0"` so validation is
skipped only when the pointer is nil (not when the value is the zero value).

In `@backend/internal/data/repo/repo_item_templates.go`:
- Line 47: Update the struct tags for the pointer int fields so they
consistently signal omission when nil: change ItemTemplateCreate.DefaultQuantity
and ItemTemplateUpdate.DefaultQuantity to use the same "omitnil" intent (e.g.,
add omitnil to the json tag like `json:"defaultQuantity,omitnil,omitempty"` or
your project's canonical omitnil ordering) while keeping the validation tag
`validate:"omitempty,min=0"` unchanged; this makes the handler and repo structs
express the same intent for nil vs zero values.

In `@frontend/pages/item/`[id]/index/edit.vue:
- Around line 639-646: Add a lightweight client-side validation in the saveItem
handler to catch negative or out-of-range numbers before the programmatic save:
iterate the form schema/fields (the same fields that render FormTextField), and
for each field with type === 'number' and a defined field.min, check
item[field.ref] is a number and >= field.min; if any violate, set a local
validation error/state or show the existing UI error feedback and abort the
saveItem flow so the request isn't sent. Use the same identifiers (saveItem,
item, field.ref, field.min, FormTextField) so the check ties to the displayed
field configuration and prevents the round-trip 400 from the backend.

[FrederickStempfle]

@tankerkiller125 @tonyaellie