fix(config): Add defaults to schemas and fix config validation issues

[ChuckBuilds]

Summary

This PR fixes configuration validation issues and ensures configs never start with None values.

Changes

1. Fixed None Value Handling

• Updated merge_with_defaults in schema_manager.py to replace None values with defaults
• Ensures configs always have default values when fields are missing or None

2. Fixed Form Processing

• Added _SKIP_FIELD sentinel to skip empty optional fields without defaults
• Prevents validation errors from None values in number fields
• Empty optional fields without defaults are now skipped instead of set to None

3. Added Defaults to Plugin Schemas

• Created script to automatically add defaults to all plugin config schemas
• Added defaults to 89 fields across 10 plugin schemas
• Defaults are based on field types and constraints (minimum values, empty arrays, etc.)

4. Fixed Save Button Spinner

• Fixed handleConfigSave to check HTTP status code instead of event.detail.successful
• With hx-swap="none", HTMX doesn't set event.detail.successful
• Now properly detects successful saves and stops spinner

Files Changed

• src/plugin_system/schema_manager.py - Enhanced merge_with_defaults
• web_interface/blueprints/api_v3.py - Fixed form processing with _SKIP_FIELD
• web_interface/templates/v3/base.html - Fixed save button handler
• scripts/add_defaults_to_schemas.py - New script to add defaults to schemas
• Plugin schema files (in submodules) - Added default values

Testing

• Tested with hockey-scoreboard plugin configuration
• Verified defaults are applied correctly
• Confirmed save button works and shows proper notifications
• Validated that None values are replaced with defaults

Summary by CodeRabbit

• Bug Fixes

  • Fixed font loading when interface content is dynamically refreshed.
  • Improved error handling and messaging for configuration save operations.
  • Enhanced plugin configuration form processing with better default value handling.

• New Features

  • Added schema-aware default value injection for plugin configurations.

• Chores

  • Updated MQTT notifications plugin dependency.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates the mqtt-notifications plugin submodule, introduces a utility script for injecting default values into plugin configuration schemas, refactors the schema manager to perform deep None-aware merging, disables CSRF protection in the web interface, enhances API v3 config endpoints with schema-aware form parsing and improved error handling, and refactors font initialization to support HTMX content reloads with global state management.

Changes

Cohort / File(s)	Summary
Plugin Submodule Update plugins/mqtt-notifications	Submodule reference updated; no functional code changes.
Schema Defaults Tooling scripts/add_defaults_to_schemas.py	New script that traverses plugin config_schema.json files and recursively injects sensible default values (boolean → False, number/integer → min/max-derived or 0, string → first enum or None, array → [], object → {}). Includes filtering for secret/sensitive fields and logging of added defaults.
Schema Merging Logic src/plugin_system/schema_manager.py	Refactored merge_with_defaults to perform deep None-aware merging via new deep_merge helper; preserves user values with deep copies where needed, replaces None values with defaults at nested levels, and includes fallback normalization via replace_none_with_defaults.
CSRF Protection Removal web_interface/app.py	Removed CSRFProtect initialization, exemption decorators, and before_request checks; CSRF handling now disabled (csrf = None) with explanatory comments on local-only deployment rationale.
API v3 Config Save Enhancement web_interface/blueprints/api_v3.py	Introduces schema-aware form parsing utilities (_is_field_required, _parse_form_value_with_schema), enhanced save_plugin_config with support for array indexing via dot notation, preserved enabled state, deep merge semantics for secrets, and structured error responses using ErrorCode (CONFIG_SAVE_FAILED, UNKNOWN_ERROR).
Web Template Response Handling web_interface/templates/v3/base.html	Changed config save success flow from unconditional to status-based (2xx check); added message extraction from server response (responseJSON.message or parsed responseText); improved error handling with rich message parsing from JSON payloads. Applied similar logic to plugin toggle responses.
Font Initialization HTMX Refactor web_interface/templates/v3/partials/fonts.html	Introduced script load guard (window._fontsScriptLoaded) to prevent multiple executions on HTMX content swaps; migrated font state from module-scoped variables to window properties (window.fontCatalog, window.fontTokens, window.fontOverrides, window.selectedFontFiles); exposed public window.initializeFontsTab() function for re-initialization; updated rendering logic to handle both string and object catalog entries.

Sequence Diagram(s)

sequenceDiagram
    actor User
    participant Client as Web Client
    participant API as API v3 Handler
    participant SchemaMgr as Schema Manager
    participant ConfigFile as Config File

    User->>Client: Submit config form
    Client->>API: POST form data (with parsed values)
    
    rect rgb(220, 240, 255)
        Note over API: Schema-Aware Parsing
        API->>API: _parse_form_value_with_schema()<br/>for each field
        API->>API: Determine required,<br/>skip optional unset fields
    end
    
    rect rgb(220, 250, 235)
        Note over API,SchemaMgr: Deep Merge with Defaults
        API->>SchemaMgr: merge_with_defaults()<br/>user config + defaults
        SchemaMgr->>SchemaMgr: deep_merge()<br/>recursive merge with<br/>None-aware replacement
        SchemaMgr-->>API: merged config
    end
    
    rect rgb(240, 240, 250)
        Note over API: Validation & Secrets
        API->>API: Validate against schema
        API->>API: Separate secrets from config
        API->>ConfigFile: Save main config
        API->>ConfigFile: Save secrets config
    end
    
    alt Success (2xx)
        API-->>Client: 200 OK + message
        Client->>User: Show success notification
    else Validation Error
        API-->>Client: error_response with<br/>validation details
        Client->>User: Show validation errors
    else Save Failed
        API-->>Client: CONFIG_SAVE_FAILED<br/>error code
        Client->>User: Show error details
    end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• fix(web): Resolve font display errors and config API CSRF issues #152: Applies identical changes to web UI CSRF handling, fonts.html initialization refactoring, and api_v3 error-handling updates across the same files.
• Fix/fonts loading error #148: Modifies the same fonts.html file with guarded/idempotent initialization and global font state management refactoring.
• Plugins #145: Updates plugin/config-schema system with schema-default tooling and deep-merge behavior, and includes mqtt-notifications submodule update.

Poem

🐰 Schemas now sing with defaults so true,
Deep merges dance when None needs a cue,
Forms parse with wisdom, secrets kept tight,
Fonts bloom on reload—HTMX delight!
No CSRF chains for local affairs,
Just config harmony floating on air. ✨

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately captures the main objectives of the PR: adding defaults to schemas and fixing config validation issues, which are the core changes across multiple files.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/config-defaults-and-validation

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (3)

web_interface/templates/v3/partials/fonts.html (2)

371-405: baseUrl is function-scoped but used in three other functions; will throw ReferenceError at runtime

loadFontData() defines const baseUrl = window.location.origin; (line 400) within its function scope, but addFontOverride() (line 560), deleteFontOverride() (line 592), and uploadSelectedFonts() (line 783) reference ${baseUrl}/api/v3/... without defining baseUrl in their own scope. With the IIFE wrapper around the entire script, there is no global baseUrl fallback, so these functions will hit a ReferenceError on first use.

Fix by either:

• Hoisting baseUrl to IIFE scope (near the top of the function wrapper) and removing the inner declaration in loadFontData, or
• Adding const baseUrl = window.location.origin; locally at the top of each of the three functions.

---

586-608: deleteFontOverride is inaccessible from inline onclick handlers due to IIFE scoping

The outer IIFE (lines 194–827) encapsulates all function declarations, but only initializeFontsTab is exposed to the window object (line 330). The displayCurrentOverrides function renders buttons with onclick="deleteFontOverride('...')" (line 638), which will fail with a ReferenceError at runtime since window.deleteFontOverride is undefined.

Fix by exposing the function:

 function deleteFontOverride(elementKey) {
     ...
 }
+window.deleteFontOverride = deleteFontOverride;

Or refactor to remove inline onclick and attach event listeners in JavaScript instead.

web_interface/blueprints/api_v3.py (1)

3617-3825: normalize_config_values uses logger before it's guaranteed to be defined

Inside save_plugin_config, the nested normalize_config_values function (lines 3617–3820) calls logger.warning(...) at line 3707, but logger is only conditionally defined:

• Lines 3289 and 3309: logger is created only if array fields exist in the form data branch (lines 3224+)
• For JSON requests (lines 3216–3223), the entire form data branch is skipped, so logger is never defined
• Line 3841: logger is defined AFTER the normalize_config_values call at line 3823

When normalize_config_values is called at line 3823 (which executes for both JSON and form requests) and the normalization path hits the logger.warning fallback at line 3707, you risk a NameError if logger doesn't exist.

Initialize logger inside normalize_config_values to make it self-contained:

 def normalize_config_values(config, schema_props, prefix=''):
     """Recursively normalize config values based on schema types"""
+    import logging
+    logger = logging.getLogger(__name__)
+    
     if not isinstance(config, dict) or not isinstance(schema_props, dict):
         return config

🧹 Nitpick comments (8)

web_interface/app.py (1)

526-531: Stale/misleading comment.

The comment on line 530 states "api_v3 blueprint is exempted above after registration", but since csrf = None on line 36, this exemption block never executes. The comment is misleading about what actually happens.

Consider either:

1. Removing the comment since CSRF is disabled entirely, or
2. Updating the comment to clarify that CSRF exemption is unnecessary because CSRF protection is disabled

🔎 Suggested fix

 # Exempt SSE streams from CSRF and add rate limiting
 if csrf:
     csrf.exempt(stream_stats)
     csrf.exempt(stream_display)
     csrf.exempt(stream_logs)
-    # Note: api_v3 blueprint is exempted above after registration
 
 if limiter:

src/plugin_system/schema_manager.py (1)

431-445: Consider if the second pass is necessary.

The deep_merge function already handles None replacement (lines 419-421). The replace_none_with_defaults pass appears to be a safety net for edge cases.

This is acceptable as defensive coding, but if performance becomes a concern with large configs, you could verify whether this second pass ever actually replaces any values. If not, it could be removed.

scripts/add_defaults_to_schemas.py (2)

123-136: Fix type hint for mutable default argument.

The type hint modified: List[str] = None is technically incorrect per PEP 484. While the None-check pattern at lines 135-136 correctly handles the mutable default argument issue, the type hint should reflect that None is an acceptable value.

🔎 Suggested fix

-def add_defaults_recursive(schema: Dict[str, Any], path: str = "", modified: List[str] = None) -> bool:
+def add_defaults_recursive(schema: Dict[str, Any], path: str = "", modified: Optional[List[str]] = None) -> bool:

---

178-198: Minor cleanup: redundant f-string and broad exception.

Two minor issues flagged by static analysis:

1. Line 181: Catching bare Exception is acceptable for a utility script that should continue processing other files, but you could catch (json.JSONDecodeError, OSError) for more precise error handling.

2. Line 197: The f-string has no placeholders - remove the f prefix.

🔎 Suggested fix

     try:
         with open(schema_path, 'r', encoding='utf-8') as f:
             schema = json.load(f)
-    except Exception as e:
+    except (json.JSONDecodeError, OSError) as e:
         print(f"  Error reading schema: {e}")
         return False
     
     modified_fields = []
     changes_made = add_defaults_recursive(schema, modified=modified_fields)
     
     if changes_made:
         # Write back with pretty formatting
         with open(schema_path, 'w', encoding='utf-8') as f:
             json.dump(schema, f, indent=2, ensure_ascii=False)
             f.write('\n')  # Add trailing newline
         
         print(f"  ✓ Modified {len(modified_fields)} fields")
         return True
     else:
-        print(f"  ✓ No changes needed")
+        print("  ✓ No changes needed")
         return False

web_interface/templates/v3/base.html (2)

4212-4258: Config save now keying off HTTP status looks correct; consider small defensive hardening

Switching to xhr.status to determine success should resolve the hx-swap="none" spinner issue and is more robust than relying on event.detail.successful. The JSON/error parsing and validation error surfacing also look good.

Two minor, non‑blocking suggestions:

• Add a guard for unexpected call sites so this doesn’t throw if event.detail or event.detail.xhr is ever missing (e.g., a non‑HTMX event or a future refactor):

Optional defensive guard

-            window.handleConfigSave = function(event, pluginId) {
-                const btn = event.target.querySelector('[type=submit]');
+            window.handleConfigSave = function(event, pluginId) {
+                if (!event || !event.detail || !event.detail.xhr) {
+                    console.error('handleConfigSave called without HTMX xhr detail');
+                    return;
+                }
+                const btn = event.target.querySelector('[type=submit]');
@@
-                const xhr = event.detail.xhr;
+                const xhr = event.detail.xhr;

• When JSON parsing fails (non‑JSON error responses), consider including the HTTP status code in errorMessage so users see at least “Failed to save configuration (500 Internal Server Error)” instead of a generic message.

---

4265-4312: Toggle handler’s status-based logic is solid; mirror config-save defensiveness

Using xhr.status here as well is consistent with handleConfigSave and should behave correctly for hx-swap="none" responses while keeping the UI in sync and reverting the checkbox on failure.

As with handleConfigSave, you may want to:

• Guard against event.detail/event.detail.xhr being absent to avoid runtime errors if this ever gets wired to a non‑HTMX event.
• Optionally append the HTTP status to errorMessage when JSON parsing fails so the user gets slightly more actionable feedback.

These are polish-level improvements; the current change is otherwise sound.

web_interface/blueprints/api_v3.py (2)

635-640: Use of error_response here looks good; Ruff RUF010 about str(e) is optional

The updated save_main_config exception handler now consistently returns error_response with ErrorCode.CONFIG_SAVE_FAILED, which aligns with the rest of the API error contract and includes traceback details.

Ruff’s RUF010 hint on Line 637 is purely stylistic (f"... {str(e)}" vs f"... {e!s}"). If you’re enforcing that rule repo‑wide, consider changing to:

f"Error saving configuration: {e!s}",

Otherwise this can be safely ignored.

---

1917-1953: _is_field_required works for object properties; doesn’t yet handle array item paths

The helper correctly inspects required at the root and at nested object levels via _get_schema_property, which is sufficient for the form field paths you’re currently passing ("mqtt.username", etc.).

Note that it won’t detect required-ness for properties inside arrays-of-objects (e.g. something like "servers.0.host" or a future dot-notation for array items). If you ever surface per‑item fields in forms, you’ll likely need to extend _get_schema_property / _is_field_required to walk through items schemas as well.

📜 Review details

Configuration used: defaults

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d14b5ff and 2c45acb.

📒 Files selected for processing (7)

• plugins/mqtt-notifications
• scripts/add_defaults_to_schemas.py
• src/plugin_system/schema_manager.py
• web_interface/app.py
• web_interface/blueprints/api_v3.py
• web_interface/templates/v3/base.html
• web_interface/templates/v3/partials/fonts.html

🧰 Additional context used

📓 Path-based instructions (3)

**/*.py

📄 CodeRabbit inference engine (.cursor/rules/coding-standards.mdc)

**/*.py: Prefer clear, readable code over clever optimizations (Simplicity First principle)
Make intentions clear through naming and structure (Explicit over Implicit principle)
Validate inputs and handle errors early (Fail Fast principle)
Use docstrings for classes and complex functions
Use PascalCase for class names (e.g., NHLRecentManager)
Use snake_case for function and variable names (e.g., fetch_game_data)
Use UPPER_SNAKE_CASE for constants (e.g., ESPN_NHL_SCOREBOARD_URL)
Use leading underscore for private methods (e.g., _fetch_data)
Use structured logging with context (e.g., [NHL Recent]) for logging messages
Catch specific exceptions, not bare except: statements
Provide user-friendly error messages that explain what went wrong and potential solutions
Implement graceful degradation to continue operation when non-critical features fail
Use type hints for function parameters and return values
Validate required configuration fields on initialization
Provide sensible default values in code rather than in configuration files
Handle different deployment contexts with environment awareness in code

**/*.py: Code must run on Raspberry Pi, not Windows development machine
Optimize code for Raspberry Pi's limited RAM and CPU capabilities
Clean up resources regularly to manage memory effectively
Implement comprehensive logging for remote debugging on Raspberry Pi
Provide clear error messages for troubleshooting

Files:

• web_interface/app.py
• scripts/add_defaults_to_schemas.py
• src/plugin_system/schema_manager.py
• web_interface/blueprints/api_v3.py

**/*manager*.py

📄 CodeRabbit inference engine (.cursor/rules/coding-standards.mdc)

All sports managers should implement the BaseManager pattern with __init__(self, config, display_manager, cache_manager), update() for fetching/processing data, and display(self, force_clear=False) for rendering

Files:

• src/plugin_system/schema_manager.py

src/**/*.py

📄 CodeRabbit inference engine (.cursor/rules/project-structure.mdc)

All sports, weather, and stock managers should be organized in src/ directory

src/**/*.py: Use rpi-rgb-led-matrix library for hardware control on Raspberry Pi
Use cache_manager.py for data persistence and caching
Implement non-blocking data fetching using background services
Minimize unnecessary redraws to optimize LED matrix display performance
Implement health checks and status reporting
Provide web interface for remote configuration and monitoring on Raspberry Pi

Files:

• src/plugin_system/schema_manager.py

🧠 Learnings (2)

📚 Learning: 2025-12-27T19:16:34.369Z

Learnt from: CR
Repo: ChuckBuilds/LEDMatrix PR: 0
File: .cursor/rules/coding-standards.mdc:0-0
Timestamp: 2025-12-27T19:16:34.369Z
Learning: Applies to **/*.py : Provide sensible default values in code rather than in configuration files

Applied to files:

• scripts/add_defaults_to_schemas.py

📚 Learning: 2025-12-27T19:16:42.155Z

Learnt from: CR
Repo: ChuckBuilds/LEDMatrix PR: 0
File: .cursor/rules/configuration-management.mdc:0-0
Timestamp: 2025-12-27T19:16:42.155Z
Learning: Applies to src/*.py : Provide sensible defaults in code, not just config

Applied to files:

• scripts/add_defaults_to_schemas.py

🧬 Code graph analysis (1)

src/plugin_system/schema_manager.py (1)

web_interface/blueprints/api_v3.py (1)

• deep_merge (2821-2834)

🪛 Ruff (0.14.10)

scripts/add_defaults_to_schemas.py

123-123: PEP 484 prohibits implicit Optional

Convert to T | None

(RUF013)

---

181-181: Do not catch blind exception: Exception

(BLE001)

---

197-197: f-string without any placeholders

Remove extraneous f prefix

(F541)

web_interface/blueprints/api_v3.py

637-637: Use explicit conversion flag

Replace with conversion flag

(RUF010)

🔇 Additional comments (12)

plugins/mqtt-notifications (1)

1-1: Remove this comment - the submodule reference is valid.

The mqtt-notifications submodule update (commit 5c23a842d8efc6e1253bc3dfc67c65ce37a193cc) is already at the correct HEAD of the main branch in the configured repository (ChuckBuilds/ledmatrix-mqtt-notifications). No compatibility concerns exist.

Likely an incorrect or invalid review comment.

src/plugin_system/schema_manager.py (1)

394-446: Well-structured deep merge with None handling.

The implementation correctly:

1. Starts with a deep copy of defaults as the base
2. Recursively merges user config, preserving user values
3. Replaces None values with defaults where available
4. Uses deep copies for mutable types to avoid shared references

scripts/add_defaults_to_schemas.py (3)

15-80: Sensible default value logic.

The heuristics for determining default values are well-thought-out:

• Booleans → False (safe default)
• Numbers/integers → minimum constraint if available, otherwise computed value
• Strings → Only enum values get defaults (avoids problematic empty strings)
• Arrays/objects → Empty containers

This aligns with the coding guideline to "provide sensible default values in code." Based on learnings, this approach is consistent with project standards.

---

98-106: Good security practice for sensitive fields.

Correctly skips adding defaults for:

• Fields marked with x-secret
• Fields containing sensitive keywords (key, password, secret, token, auth, credential)

This prevents the script from accidentally providing defaults for credentials that should be user-supplied.

---

201-230: Clean utility script implementation.

The main function properly:

• Uses pathlib for cross-platform path handling
• Provides clear console output with progress and summary
• Handles missing plugins directory gracefully

web_interface/blueprints/api_v3.py (4)

686-700: Nice upgrade to structured errors in save_raw_main_config

The new handling for ConfigError vs generic exceptions cleanly routes failures through error_response with CONFIG_SAVE_FAILED and UNKNOWN_ERROR plus details and optional config_path context. This should make frontend handling and debugging much easier without changing behavior for successful saves.

---

2954-2996: Empty-field handling now matches “skip optional numeric fields” goal

The changes in _parse_form_value_with_schema for value is None / empty string achieve:

• Arrays → []
• Objects → {}
• Optional strings → "" (instead of None)
• Numeric fields:
  • If default present → use default
  • If not required and no default → _SKIP_FIELD so existing config/defaults remain
  • If required and empty → None so schema validation can fail loudly

This matches the PR intent to avoid None in optional number fields while preserving strictness for required fields. Looks good.

---

3078-3105: _set_nested_value correctly ignores _SKIP_FIELD sentinels

Early‑returning when value is _SKIP_FIELD cleanly prevents accidental writes of “empty optional” fields into the config while leaving the rest of the nested-set logic unchanged. This dovetails well with the new _parse_form_value_with_schema behavior.

---

3287-3314: Array-index field combining respects _SKIP_FIELD

When collapsing indexed fields like foo.0, foo.1 into a single array value, you’re now only calling _set_nested_value if parsed_value is not _SKIP_FIELD. That ensures optional numeric arrays with no defaults can be left untouched rather than forced to None or an empty list. The same pattern in the non‑indexed field loop keeps behavior consistent.

No functional issues here.

web_interface/templates/v3/partials/fonts.html (3)

193-220: HTMX script-load guard is a solid approach

Wrapping the fonts script in an IIFE with window._fontsScriptLoaded and exposing window.initializeFontsTab gives you idempotent behavior on HTMX swaps without redeclaring everything. The delayed re‑init on subsequent loads (50 ms timeout) is also reasonable to ensure the DOM is present.

No issues here.

---

428-437: Good: global + local font state kept in sync after API load

Updating both window.fontCatalog/fontTokens/fontOverrides and then refreshing the local fontCatalog/fontTokens/fontOverrides references ensures:

• Other code that relies on the global window state sees fresh data.
• The rest of this module continues to use the local variables without stale references.

This matches the new global-state pattern introduced at the top of the script.

---

520-526: Font path handling correctly distinguishes bare filenames vs full paths

The updated updateAvailableFontsDisplay now treats fontCatalog values as either:

• A string path, or
• An object with a .path property,

and only prefixes "assets/fonts/" when the path is a bare filename (no / and not already starting with assets/ or /). This avoids double‑prefixing while still normalizing simple filenames.

Looks correct and should work with the new catalog format exposed by the backend.