academia/src/backend/Application/Students/Commands/CreateStudentValidator.cs

namespace Application.Students.Commands;

using Application.Common;
using Domain.Ports.Repositories;
using FluentValidation;

/// <summary>
/// Validator for <see cref="CreateStudentCommand"/>.
/// Validates name format, email uniqueness, and prevents XSS attacks.
/// </summary>
public class CreateStudentValidator : AbstractValidator<CreateStudentCommand>
{
    public CreateStudentValidator(IStudentRepository studentRepository)
    {
        RuleFor(x => x.Name)
            .NotEmpty().WithMessage("Name is required")
            .MinimumLength(ValidationPatterns.MinNameLength)
                .WithMessage($"Name must be at least {ValidationPatterns.MinNameLength} characters")
            .MaximumLength(ValidationPatterns.MaxNameLength)
                .WithMessage($"Name must not exceed {ValidationPatterns.MaxNameLength} characters")
            .Matches(ValidationPatterns.SafeNamePattern())
                .WithMessage("Name contains invalid characters")
            .Must(ValidationPatterns.IsSafeContent)
                .WithMessage("Name contains prohibited content");

        RuleFor(x => x.Email)
            .NotEmpty().WithMessage("Email is required")
            .MaximumLength(ValidationPatterns.MaxEmailLength)
                .WithMessage($"Email must not exceed {ValidationPatterns.MaxEmailLength} characters")
            .EmailAddress().WithMessage("Invalid email format")
            .Must(ValidationPatterns.IsSafeContent)
                .WithMessage("Email contains prohibited content")
            .MustAsync(async (email, ct) =>
                !await studentRepository.EmailExistsAsync(email, null, ct))
            .WithMessage("Email already exists");
    }
}

/// <summary>
/// Validator for <see cref="UpdateStudentCommand"/>.
/// Validates name format, email uniqueness (excluding current student), and prevents XSS attacks.
/// </summary>
public class UpdateStudentValidator : AbstractValidator<UpdateStudentCommand>
{
    public UpdateStudentValidator(IStudentRepository studentRepository)
    {
        RuleFor(x => x.Id)
            .GreaterThan(0).WithMessage(ValidationPatterns.InvalidIdMessage);

        RuleFor(x => x.Name)
            .NotEmpty().WithMessage("Name is required")
            .MinimumLength(ValidationPatterns.MinNameLength)
                .WithMessage($"Name must be at least {ValidationPatterns.MinNameLength} characters")
            .MaximumLength(ValidationPatterns.MaxNameLength)
                .WithMessage($"Name must not exceed {ValidationPatterns.MaxNameLength} characters")
            .Matches(ValidationPatterns.SafeNamePattern())
                .WithMessage("Name contains invalid characters")
            .Must(ValidationPatterns.IsSafeContent)
                .WithMessage("Name contains prohibited content");

        RuleFor(x => x.Email)
            .NotEmpty().WithMessage("Email is required")
            .MaximumLength(ValidationPatterns.MaxEmailLength)
                .WithMessage($"Email must not exceed {ValidationPatterns.MaxEmailLength} characters")
            .EmailAddress().WithMessage("Invalid email format")
            .Must(ValidationPatterns.IsSafeContent)
                .WithMessage("Email contains prohibited content")
            .MustAsync(async (command, email, ct) =>
                !await studentRepository.EmailExistsAsync(email, command.Id, ct))
            .WithMessage("Email already exists");
    }
}
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`namespace Application.Students.Commands;`

refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`using Application.Common;`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`using Domain.Ports.Repositories;`
			`using FluentValidation;`

refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`/// <summary>`
			`/// Validator for <see cref="CreateStudentCommand"/>.`
			`/// Validates name format, email uniqueness, and prevents XSS attacks.`
			`/// </summary>`
			`public class CreateStudentValidator : AbstractValidator<CreateStudentCommand>`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`{`
			`public CreateStudentValidator(IStudentRepository studentRepository)`
			`{`
			`RuleFor(x => x.Name)`
			`.NotEmpty().WithMessage("Name is required")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.MinimumLength(ValidationPatterns.MinNameLength)`
			`.WithMessage($"Name must be at least {ValidationPatterns.MinNameLength} characters")`
			`.MaximumLength(ValidationPatterns.MaxNameLength)`
			`.WithMessage($"Name must not exceed {ValidationPatterns.MaxNameLength} characters")`
			`.Matches(ValidationPatterns.SafeNamePattern())`
			`.WithMessage("Name contains invalid characters")`
			`.Must(ValidationPatterns.IsSafeContent)`
			`.WithMessage("Name contains prohibited content");`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00
			`RuleFor(x => x.Email)`
			`.NotEmpty().WithMessage("Email is required")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.MaximumLength(ValidationPatterns.MaxEmailLength)`
			`.WithMessage($"Email must not exceed {ValidationPatterns.MaxEmailLength} characters")`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`.EmailAddress().WithMessage("Invalid email format")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.Must(ValidationPatterns.IsSafeContent)`
			`.WithMessage("Email contains prohibited content")`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`.MustAsync(async (email, ct) =>`
			`!await studentRepository.EmailExistsAsync(email, null, ct))`
			`.WithMessage("Email already exists");`
			`}`
			`}`

refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`/// <summary>`
			`/// Validator for <see cref="UpdateStudentCommand"/>.`
			`/// Validates name format, email uniqueness (excluding current student), and prevents XSS attacks.`
			`/// </summary>`
			`public class UpdateStudentValidator : AbstractValidator<UpdateStudentCommand>`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`{`
			`public UpdateStudentValidator(IStudentRepository studentRepository)`
			`{`
			`RuleFor(x => x.Id)`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.GreaterThan(0).WithMessage(ValidationPatterns.InvalidIdMessage);`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00
			`RuleFor(x => x.Name)`
			`.NotEmpty().WithMessage("Name is required")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.MinimumLength(ValidationPatterns.MinNameLength)`
			`.WithMessage($"Name must be at least {ValidationPatterns.MinNameLength} characters")`
			`.MaximumLength(ValidationPatterns.MaxNameLength)`
			`.WithMessage($"Name must not exceed {ValidationPatterns.MaxNameLength} characters")`
			`.Matches(ValidationPatterns.SafeNamePattern())`
			`.WithMessage("Name contains invalid characters")`
			`.Must(ValidationPatterns.IsSafeContent)`
			`.WithMessage("Name contains prohibited content");`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00
			`RuleFor(x => x.Email)`
			`.NotEmpty().WithMessage("Email is required")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.MaximumLength(ValidationPatterns.MaxEmailLength)`
			`.WithMessage($"Email must not exceed {ValidationPatterns.MaxEmailLength} characters")`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`.EmailAddress().WithMessage("Invalid email format")`
refactor(backend): add validation patterns, query validators, and test builders - Add centralized ValidationPatterns with XSS protection and name regex - Add query validators (GetClassmates, GetStudentById, GetStudentsPaged, GetAvailableSubjects) - Add ClassmateInfo read model for optimized query projections - Add test builders (Student, Subject, Professor, Enrollment) for cleaner tests - Improve repository interfaces with XML documentation - Refactor EnrollmentRepository for better performance - Update EnrollmentDomainService with additional validation helpers 2026-01-08 14:18:27 +00:00			`.Must(ValidationPatterns.IsSafeContent)`
			`.WithMessage("Email contains prohibited content")`
feat(application): add CQRS application layer Commands: - CreateStudent, UpdateStudent, DeleteStudent - EnrollStudent, UnenrollStudent Queries: - GetStudents, GetStudentById, GetStudentsPaged - GetSubjects, GetAvailableSubjects - GetProfessors - GetClassmates DTOs: - StudentDto, SubjectDto, ProfessorDto, EnrollmentDtos Validation: - FluentValidation with ValidationBehavior pipeline - EnrollStudentValidator for input validation Uses MediatR for command/query dispatching 2026-01-08 03:59:23 +00:00			`.MustAsync(async (command, email, ct) =>`
			`!await studentRepository.EmailExistsAsync(email, command.Id, ct))`
			`.WithMessage("Email already exists");`
			`}`
			`}`