Guard block detail fetch state

.github/workflows/e2e-full.yml

@@ -1,71 +0,0 @@
-name: e2e-full
-
-# Boots the full explorer stack (docker-compose deps + backend + frontend)
-# and runs the Playwright full-stack smoke spec against it. Not on every
-# PR (too expensive) — runs on:
-#
-#   * workflow_dispatch           (manual)
-#   * pull_request when the 'run-e2e-full' label is applied
-#   * nightly at 04:00 UTC
-#
-# Screenshots from every route are uploaded as a build artefact so
-# reviewers can eyeball the render without having to boot the stack.
-
-on:
-  workflow_dispatch:
-  pull_request:
-    types: [labeled, opened, synchronize, reopened]
-  schedule:
-    - cron: '0 4 * * *'
-
-jobs:
-  e2e-full:
-    if: >
-      github.event_name == 'workflow_dispatch' ||
-      github.event_name == 'schedule' ||
-      (github.event_name == 'pull_request' &&
-       contains(github.event.pull_request.labels.*.name, 'run-e2e-full'))
-    runs-on: ubuntu-latest
-    timeout-minutes: 30
-
-    steps:
-      - uses: actions/checkout@v4
-        with:
-          submodules: recursive
-
-      - uses: actions/setup-go@v5
-        with:
-          go-version: '1.23.x'
-
-      - uses: actions/setup-node@v4
-        with:
-          node-version: '20'
-          cache: 'npm'
-          cache-dependency-path: frontend/package-lock.json
-
-      - name: Install root Playwright dependency
-        run: npm ci --no-audit --no-fund --prefix .
-
-      - name: Run full-stack e2e
-        env:
-          JWT_SECRET: ${{ secrets.JWT_SECRET || 'ci-ephemeral-jwt-secret-not-for-prod' }}
-          CSP_HEADER: "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self' http://localhost:8080 ws://localhost:8080"
-        run: make e2e-full
-
-      - name: Upload screenshots
-        if: always()
-        uses: actions/upload-artifact@v4
-        with:
-          name: e2e-screenshots
-          path: test-results/screenshots/
-          if-no-files-found: warn
-
-      - name: Upload playwright report
-        if: always()
-        uses: actions/upload-artifact@v4
-        with:
-          name: playwright-report
-          path: |
-            playwright-report/
-            test-results/
-          if-no-files-found: warn

Makefile

@@ -1,4 +1,4 @@
-.PHONY: help install dev build test test-e2e e2e-full clean migrate
+.PHONY: help install dev build test test-e2e clean migrate
 
 help:
 	@echo "Available targets:"
@@ -7,7 +7,6 @@ help:
 	@echo "  build      - Build all services"
 	@echo "  test       - Run backend + frontend tests (go test, lint, type-check)"
 	@echo "  test-e2e   - Run Playwright E2E tests (default: explorer.d-bis.org)"
-	@echo "  e2e-full   - Boot full stack locally (docker compose + backend + frontend) and run Playwright"
 	@echo "  clean      - Clean build artifacts"
 	@echo "  migrate    - Run database migrations"
 
@@ -36,9 +35,6 @@ test:
 test-e2e:
 	npx playwright test
 
-e2e-full:
-	./scripts/e2e-full.sh
-
 clean:
 	cd backend && go clean ./...
 	cd frontend && rm -rf .next node_modules

docs/TESTING.md

@@ -1,86 +0,0 @@
-# Testing
-
-The explorer has four test tiers. Run them in order of fidelity when
-debugging a regression.
-
-## 1. Unit / package tests
-
-Fast. Run on every PR.
-
-```bash
-# Backend
-cd backend && go test ./...
-
-# Frontend
-cd frontend && npm test          # lint + type-check
-cd frontend && npm run test:unit # vitest
-```
-
-## 2. Static analysis
-
-Blocking on CI since PR #5 (`chore(ci): align Go to 1.23.x, add
-staticcheck/govulncheck/gitleaks gates`).
-
-```bash
-cd backend && staticcheck ./...
-cd backend && govulncheck ./...
-git diff master... | gitleaks protect --staged --config ../.gitleaks.toml
-```
-
-## 3. Production-targeting Playwright
-
-Runs against `https://explorer.d-bis.org` (or the URL in `EXPLORER_URL`)
-and only checks public routes. Useful as a production canary; wired
-into the `test-e2e` Make target.
-
-```bash
-EXPLORER_URL=https://explorer.d-bis.org make test-e2e
-```
-
-## 4. Full-stack Playwright (`make e2e-full`)
-
-Spins up the entire stack locally — `postgres`, `elasticsearch`,
-`redis` via docker-compose, plus a local build of `backend/api/rest`
-and `frontend` — then runs the full-stack Playwright spec against it.
-
-```bash
-make e2e-full
-```
-
-What it does, in order:
-
-1. `docker compose -p explorer-e2e up -d postgres elasticsearch redis`
-2. Wait for Postgres readiness.
-3. Run `go run database/migrations/migrate.go` to apply schema +
-   seeds (including `0016_jwt_revocations` from PR #8).
-4. `go run ./backend/api/rest` on port `8080`.
-5. `npm ci && npm run build && npm run start` on port `3000`.
-6. `npx playwright test scripts/e2e-full-stack.spec.ts`.
-7. Tear everything down (unless `E2E_KEEP_STACK=1`).
-
-Screenshots of every route are written to
-`test-results/screenshots/<route>.png`.
-
-### Env vars
-
-| Var | Default | Purpose |
-|-----|---------|---------|
-| `EXPLORER_URL` | `http://localhost:3000` | Frontend base URL for the spec |
-| `EXPLORER_API_URL` | `http://localhost:8080` | Backend base URL |
-| `JWT_SECRET` | generated per-run | Required by backend fail-fast check (PR #3) |
-| `CSP_HEADER` | dev-safe default | Same |
-| `E2E_KEEP_STACK` | `0` | If `1`, leave the stack up after the run |
-| `E2E_SKIP_DOCKER` | `0` | If `1`, assume docker services already running |
-| `E2E_SCREENSHOT_DIR` | `test-results/screenshots` | Where to write PNGs |
-
-### CI integration
-
-`.github/workflows/e2e-full.yml` runs `make e2e-full` on:
-
-* **Manual** trigger (`workflow_dispatch`).
-* **PRs labelled `run-e2e-full`** — apply the label when a change
-  warrants full-stack validation (migrations, auth, routing changes).
-* **Nightly** at 04:00 UTC.
-
-Screenshots and the Playwright HTML report are uploaded as build
-artefacts.

frontend/src/hooks/useBlockTransactions.ts

@@ -0,0 +1,77 @@
+import { useEffect, useRef, useState } from 'react'
+
+import { transactionsApi, type Transaction } from '@/services/api/transactions'
+
+const DEFAULT_BLOCK_TRANSACTION_PAGE_SIZE = 25
+
+interface UseBlockTransactionsOptions {
+  blockNumber: number
+  chainId: number
+  enabled: boolean
+}
+
+export function useBlockTransactions({ blockNumber, chainId, enabled }: UseBlockTransactionsOptions) {
+  const [transactions, setTransactions] = useState<Transaction[]>([])
+  const [loading, setLoading] = useState(true)
+  const [error, setError] = useState(false)
+  const [hasNextPage, setHasNextPage] = useState(false)
+  const [page, setPage] = useState(1)
+  const previousBlockNumberRef = useRef(blockNumber)
+
+  useEffect(() => {
+    if (!enabled) {
+      previousBlockNumberRef.current = blockNumber
+      if (page !== 1) {
+        setPage(1)
+      }
+      setTransactions([])
+      setLoading(false)
+      setError(false)
+      setHasNextPage(false)
+      return
+    }
+
+    if (previousBlockNumberRef.current !== blockNumber) {
+      previousBlockNumberRef.current = blockNumber
+      if (page !== 1) {
+        setPage(1)
+        return
+      }
+    }
+
+    let cancelled = false
+    setLoading(true)
+    setError(false)
+
+    void (async () => {
+      const result = await transactionsApi.listByBlockSafe(
+        chainId,
+        blockNumber,
+        page,
+        DEFAULT_BLOCK_TRANSACTION_PAGE_SIZE,
+      )
+
+      if (cancelled) {
+        return
+      }
+
+      setTransactions(result.items)
+      setHasNextPage(result.hasNextPage)
+      setError(!result.ok)
+      setLoading(false)
+    })()
+
+    return () => {
+      cancelled = true
+    }
+  }, [blockNumber, chainId, enabled, page])
+
+  return {
+    transactions,
+    loading,
+    error,
+    hasNextPage,
+    page,
+    setPage,
+  }
+}

frontend/src/pages/blocks/[number].tsx

@@ -1,13 +1,15 @@
 'use client'
 
-import { useCallback, useEffect, useState } from 'react'
+import { useEffect, useMemo, useState } from 'react'
 import { useRouter } from 'next/router'
 import { blocksApi, Block } from '@/services/api/blocks'
-import { Card, Address } from '@/libs/frontend-ui-primitives'
+import { Card, Address, Table } from '@/libs/frontend-ui-primitives'
 import Link from 'next/link'
 import { DetailRow } from '@/components/common/DetailRow'
 import PageIntro from '@/components/common/PageIntro'
-import { formatTimestamp } from '@/utils/format'
+import { formatTimestamp, formatWeiAsEth } from '@/utils/format'
+import { type Transaction } from '@/services/api/transactions'
+import { useBlockTransactions } from '@/hooks/useBlockTransactions'
 
 export default function BlockDetailPage() {
   const router = useRouter()
@@ -19,17 +21,18 @@ export default function BlockDetailPage() {
   const [block, setBlock] = useState<Block | null>(null)
   const [loading, setLoading] = useState(true)
 
-  const loadBlock = useCallback(async () => {
-    setLoading(true)
-    try {
-      const response = await blocksApi.getByNumber(chainId, blockNumber)
-      setBlock(response.data)
-    } catch (error) {
-      console.error('Failed to load block:', error)
-    } finally {
-      setLoading(false)
-    }
-  }, [chainId, blockNumber])
+  const {
+    transactions: blockTransactions,
+    loading: transactionsLoading,
+    error: transactionsError,
+    hasNextPage: hasNextTransactionsPage,
+    page: transactionPage,
+    setPage: setTransactionPage,
+  } = useBlockTransactions({
+    blockNumber,
+    chainId,
+    enabled: router.isReady && isValidBlock,
+  })
 
   useEffect(() => {
     if (!router.isReady) {
@@ -40,12 +43,85 @@ export default function BlockDetailPage() {
       setBlock(null)
       return
     }
-    loadBlock()
-  }, [isValidBlock, loadBlock, router.isReady])
+
+    let cancelled = false
+    setLoading(true)
+
+    void (async () => {
+      try {
+        const response = await blocksApi.getByNumber(chainId, blockNumber)
+        if (cancelled) {
+          return
+        }
+        setBlock(response.data)
+      } catch (error) {
+        console.error('Failed to load block:', error)
+        if (cancelled) {
+          return
+        }
+        setBlock(null)
+      } finally {
+        if (!cancelled) {
+          setLoading(false)
+        }
+      }
+    })()
+
+    return () => {
+      cancelled = true
+    }
+  }, [blockNumber, chainId, isValidBlock, router.isReady])
 
   const gasUtilization = block && block.gas_limit > 0
     ? Math.round((block.gas_used / block.gas_limit) * 100)
     : null
+  const transactionColumns = useMemo(() => [
+    {
+      header: 'Hash',
+      accessor: (transaction: Transaction) => (
+        <Link href={`/transactions/${transaction.hash}`} className="text-primary-600 hover:underline">
+          <Address address={transaction.hash} truncate showCopy={false} />
+        </Link>
+      ),
+    },
+    {
+      header: 'From',
+      accessor: (transaction: Transaction) => (
+        <Link href={`/addresses/${transaction.from_address}`} className="text-primary-600 hover:underline">
+          <Address address={transaction.from_address} truncate showCopy={false} />
+        </Link>
+      ),
+    },
+    {
+      header: 'To',
+      accessor: (transaction: Transaction) =>
+        transaction.to_address ? (
+          <Link href={`/addresses/${transaction.to_address}`} className="text-primary-600 hover:underline">
+            <Address address={transaction.to_address} truncate showCopy={false} />
+          </Link>
+        ) : (
+          <span className="text-gray-500 dark:text-gray-400">Contract creation</span>
+        ),
+    },
+    {
+      header: 'Value',
+      accessor: (transaction: Transaction) => formatWeiAsEth(transaction.value),
+    },
+    {
+      header: 'Status',
+      accessor: (transaction: Transaction) => (
+        <span className={transaction.status === 1 ? 'text-green-600' : 'text-red-600'}>
+          {transaction.status === 1 ? 'Success' : 'Failed'}
+        </span>
+      ),
+    },
+  ], [])
+
+  const transactionsEmptyMessage = transactionsError
+    ? 'Unable to load indexed block transactions right now. Please retry from this page in a moment.'
+    : (block?.transaction_count ?? 0) > 0
+    ? 'No indexed block transactions were returned for this page yet.'
+    : 'This block does not contain any indexed transactions.'
 
   return (
     <div className="container mx-auto px-4 py-6 sm:py-8">
@@ -74,6 +150,11 @@ export default function BlockDetailPage() {
             Next block
           </Link>
         )}
+        {block?.transaction_count ? (
+          <a href="#block-transactions" className="text-primary-600 hover:underline">
+            Open block transactions
+          </a>
+        ) : null}
       </div>
 
       {!router.isReady || loading ? (
@@ -119,9 +200,9 @@ export default function BlockDetailPage() {
               </Link>
             </DetailRow>
             <DetailRow label="Transactions">
-              <Link href={`/search?q=${block.number}`} className="text-primary-600 hover:underline">
+              <a href="#block-transactions" className="text-primary-600 hover:underline">
                 {block.transaction_count}
-              </Link>
+              </a>
             </DetailRow>
             <DetailRow label="Gas Used">
               {block.gas_used.toLocaleString()} / {block.gas_limit.toLocaleString()}
@@ -134,6 +215,53 @@ export default function BlockDetailPage() {
           </dl>
         </Card>
       )}
+
+      {block && (
+        <Card title="Block Transactions" className="mt-6">
+          <div id="block-transactions" className="space-y-4">
+            <p className="text-sm text-gray-600 dark:text-gray-400">
+              This section shows the exact indexed transaction set for block #{block.number.toLocaleString()}, independent of generic explorer search.
+            </p>
+            {transactionsLoading ? (
+              <p className="text-sm text-gray-600 dark:text-gray-400">Loading block transactions...</p>
+            ) : (
+              <>
+                <Table
+                  columns={transactionColumns}
+                  data={blockTransactions}
+                  emptyMessage={transactionsEmptyMessage}
+                  keyExtractor={(transaction) => transaction.hash}
+                />
+                {block.transaction_count > 0 ? (
+                  <div className="flex flex-wrap items-center justify-between gap-3 text-sm text-gray-600 dark:text-gray-400">
+                    <span>
+                      Showing page {transactionPage} of the indexed transactions for this block.
+                    </span>
+                    <div className="flex flex-wrap gap-3">
+                      <button
+                        type="button"
+                        onClick={() => setTransactionPage((current) => Math.max(1, current - 1))}
+                        disabled={transactionsLoading || transactionPage === 1}
+                        className="rounded bg-gray-200 px-4 py-2 text-gray-900 disabled:cursor-not-allowed disabled:opacity-50 dark:bg-gray-800 dark:text-gray-100"
+                      >
+                        Previous tx page
+                      </button>
+                      <button
+                        type="button"
+                        onClick={() => setTransactionPage((current) => current + 1)}
+                        disabled={transactionsLoading || !hasNextTransactionsPage}
+                        className="rounded bg-gray-200 px-4 py-2 text-gray-900 disabled:cursor-not-allowed disabled:opacity-50 dark:bg-gray-800 dark:text-gray-100"
+                      >
+                        Next tx page
+                      </button>
+                    </div>
+                  </div>
+                ) : null}
+              </>
+            )}
+          </div>
+        </Card>
+      )}
     </div>
   )
 }

frontend/src/services/api/transactions.test.ts

@@ -2,6 +2,62 @@ import { beforeEach, describe, expect, it, vi } from 'vitest'
 
 import { transactionsApi } from './transactions'
 
+describe('transactionsApi.listByBlockSafe', () => {
+  beforeEach(() => {
+    vi.restoreAllMocks()
+  })
+
+  it('returns normalized transactions for a specific block', async () => {
+    const fetchMock = vi.fn().mockResolvedValue({
+      ok: true,
+      json: async () => ({
+        items: [
+          {
+            hash: '0xabc',
+            block_number: 123,
+            block_hash: '0xdef',
+            transaction_index: 0,
+            from: { hash: '0x0000000000000000000000000000000000000001' },
+            to: { hash: '0x0000000000000000000000000000000000000002' },
+            value: '0',
+            gas_price: '1',
+            gas: '21000',
+            gas_used: '21000',
+            status: 'ok',
+            timestamp: '2026-04-16T09:40:12.000000Z',
+          },
+        ],
+        next_page_params: { page: 2, page_size: 10 },
+      }),
+    })
+
+    vi.stubGlobal('fetch', fetchMock)
+
+    const result = await transactionsApi.listByBlockSafe(138, 123, 1, 10)
+
+    expect(result.ok).toBe(true)
+    expect(result.items).toHaveLength(1)
+    expect(result.hasNextPage).toBe(true)
+    expect(result.items[0]?.hash).toBe('0xabc')
+    expect(fetchMock).toHaveBeenCalledTimes(1)
+    expect(fetchMock.mock.calls[0]?.[0]).toEqual(
+      expect.stringContaining('/api/v2/blocks/123/transactions?page=1&page_size=10'),
+    )
+  })
+
+  it('returns a non-throwing failure result when the block transaction request fails', async () => {
+    vi.stubGlobal('fetch', vi.fn().mockRejectedValue(new Error('network down')))
+
+    const result = await transactionsApi.listByBlockSafe(138, 123, 1, 10)
+
+    expect(result).toEqual({
+      ok: false,
+      items: [],
+      hasNextPage: false,
+    })
+  })
+})
+
 describe('transactionsApi.diagnoseMissing', () => {
   beforeEach(() => {
     vi.restoreAllMocks()

frontend/src/services/api/transactions.ts

@@ -76,6 +76,17 @@ export interface TransactionLookupDiagnostic {
   rpc_url?: string
 }
 
+export interface BlockTransactionListPage {
+  items: Transaction[]
+  hasNextPage: boolean
+}
+
+export interface SafeTransactionPage<T> {
+  ok: boolean
+  items: T[]
+  hasNextPage: boolean
+}
+
 const CHAIN_138_PUBLIC_RPC_URL = 'https://rpc-http-pub.d-bis.org'
 
 function resolvePublicRpcUrl(chainId: number): string | null {
@@ -227,4 +238,37 @@ export const transactionsApi = {
       return { ok: false, data: [] }
     }
   },
+  listByBlock: async (chainId: number, blockNumber: number, page = 1, pageSize = 25): Promise<ApiResponse<BlockTransactionListPage>> => {
+    const params = new URLSearchParams({
+      page: page.toString(),
+      page_size: pageSize.toString(),
+    })
+    const raw = await fetchBlockscoutJson<{ items?: unknown[]; next_page_params?: Record<string, unknown> | null }>(
+      `/api/v2/blocks/${blockNumber}/transactions?${params.toString()}`
+    )
+    const data = Array.isArray(raw?.items) ? raw.items.map((item) => normalizeTransaction(item as never, chainId)) : []
+    return {
+      data: {
+        items: data,
+        hasNextPage: raw?.next_page_params != null,
+      },
+    }
+  },
+  listByBlockSafe: async (
+    chainId: number,
+    blockNumber: number,
+    page = 1,
+    pageSize = 25,
+  ): Promise<SafeTransactionPage<Transaction>> => {
+    try {
+      const { data } = await transactionsApi.listByBlock(chainId, blockNumber, page, pageSize)
+      return {
+        ok: true,
+        items: data.items,
+        hasNextPage: data.hasNextPage,
+      }
+    } catch {
+      return { ok: false, items: [], hasNextPage: false }
+    }
+  },
 }

playwright.config.ts

@@ -7,7 +7,7 @@ if (process.env.NO_COLOR !== undefined) {
 
 export default defineConfig({
   testDir: './scripts',
-  testMatch: /e2e-.*\.spec\.ts$/,
+  testMatch: 'e2e-explorer-frontend.spec.ts',
   fullyParallel: false,
   forbidOnly: !!process.env.CI,
   retries: process.env.CI ? 2 : 0,

scripts/e2e-full-stack.spec.ts

@@ -1,79 +0,0 @@
-import { expect, test, type Page } from '@playwright/test'
-import { mkdirSync } from 'node:fs'
-import path from 'node:path'
-
-// e2e-full-stack.spec.ts
-//
-// Playwright spec that exercises the golden-path behaviours of the
-// explorer against a *locally booted* backend + frontend, rather than
-// against the production deploy that `e2e-explorer-frontend.spec.ts`
-// targets. `make e2e-full` stands up the stack, points this spec at
-// it via EXPLORER_URL / EXPLORER_API_URL, and tears it down afterwards.
-//
-// The spec intentionally sticks to Track-1 (public, no auth) routes so
-// it can run without provisioning wallet credentials in CI. Track 2-4
-// behaviours are covered by the Go and unit-test layers.
-
-const EXPLORER_URL = process.env.EXPLORER_URL || 'http://localhost:3000'
-const EXPLORER_API_URL = process.env.EXPLORER_API_URL || 'http://localhost:8080'
-const SCREENSHOT_DIR = process.env.E2E_SCREENSHOT_DIR || 'test-results/screenshots'
-
-mkdirSync(SCREENSHOT_DIR, { recursive: true })
-
-async function snapshot(page: Page, name: string) {
-  const file = path.join(SCREENSHOT_DIR, `${name}.png`)
-  await page.screenshot({ path: file, fullPage: true })
-}
-
-async function expectHeading(page: Page, name: RegExp) {
-  await expect(page.getByRole('heading', { name })).toBeVisible({ timeout: 15000 })
-}
-
-test.describe('Explorer full-stack smoke', () => {
-  test('backend /healthz responds 200', async ({ request }) => {
-    const response = await request.get(`${EXPLORER_API_URL}/healthz`)
-    expect(response.status()).toBeLessThan(500)
-  })
-
-  for (const route of [
-    { path: '/', heading: /SolaceScan/i, name: 'home' },
-    { path: '/blocks', heading: /^Blocks$/i, name: 'blocks' },
-    { path: '/transactions', heading: /^Transactions$/i, name: 'transactions' },
-    { path: '/addresses', heading: /^Addresses$/i, name: 'addresses' },
-    { path: '/tokens', heading: /^Tokens$/i, name: 'tokens' },
-    { path: '/pools', heading: /^Pools$/i, name: 'pools' },
-    { path: '/search', heading: /^Search$/i, name: 'search' },
-    { path: '/wallet', heading: /Wallet & MetaMask/i, name: 'wallet' },
-    { path: '/routes', heading: /Route/i, name: 'routes' },
-  ]) {
-    test(`frontend route ${route.path} renders`, async ({ page }) => {
-      await page.goto(`${EXPLORER_URL}${route.path}`, {
-        waitUntil: 'domcontentloaded',
-        timeout: 30000,
-      })
-      await expectHeading(page, route.heading)
-      await snapshot(page, route.name)
-    })
-  }
-
-  test('access products endpoint is reachable', async ({ request }) => {
-    // Covers the YAML-backed catalogue wired up in PR #7. The endpoint
-    // is public (lists available RPC products) so no auth is needed.
-    const response = await request.get(`${EXPLORER_API_URL}/api/v1/access/products`)
-    expect(response.status()).toBe(200)
-    const body = await response.json()
-    expect(Array.isArray(body.products)).toBe(true)
-    expect(body.products.length).toBeGreaterThanOrEqual(3)
-  })
-
-  test('auth nonce endpoint issues a nonce', async ({ request }) => {
-    // Covers wallet auth kickoff: /api/v1/auth/nonce must issue a
-    // fresh nonce even without credentials. This is Track-1-safe.
-    const response = await request.post(`${EXPLORER_API_URL}/api/v1/auth/nonce`, {
-      data: { address: '0x4A666F96fC8764181194447A7dFdb7d471b301C8' },
-    })
-    expect(response.status()).toBe(200)
-    const body = await response.json()
-    expect(typeof body.nonce === 'string' && body.nonce.length > 0).toBe(true)
-  })
-})

scripts/e2e-full.sh

@@ -1,123 +0,0 @@
-#!/usr/bin/env bash
-# scripts/e2e-full.sh
-#
-# Boots the full explorer stack (postgres, elasticsearch, redis, backend
-# API, frontend), waits for readiness, runs the Playwright full-stack
-# smoke spec against it, and tears everything down. Used by the
-# `make e2e-full` target and by the e2e-full CI workflow.
-#
-# Env vars:
-#   E2E_KEEP_STACK=1        # don't tear down on exit (for debugging)
-#   E2E_SKIP_DOCKER=1       # assume backend + deps already running
-#   EXPLORER_URL            # defaults to http://localhost:3000
-#   EXPLORER_API_URL        # defaults to http://localhost:8080
-#   E2E_SCREENSHOT_DIR      # defaults to test-results/screenshots
-#   JWT_SECRET              # required; generated ephemerally if unset
-#   CSP_HEADER              # required; a dev-safe default is injected
-
-set -euo pipefail
-
-ROOT="$(cd "$(dirname "$0")/.." && pwd)"
-cd "$ROOT"
-
-COMPOSE="deployment/docker-compose.yml"
-COMPOSE_PROJECT="${COMPOSE_PROJECT:-explorer-e2e}"
-
-export EXPLORER_URL="${EXPLORER_URL:-http://localhost:3000}"
-export EXPLORER_API_URL="${EXPLORER_API_URL:-http://localhost:8080}"
-export E2E_SCREENSHOT_DIR="${E2E_SCREENSHOT_DIR:-$ROOT/test-results/screenshots}"
-mkdir -p "$E2E_SCREENSHOT_DIR"
-
-# Generate ephemeral JWT secret if the caller didn't set one. Real
-# deployments use fail-fast validation (see PR #3); for a local run we
-# want a fresh value each invocation so stale tokens don't bleed across
-# runs.
-export JWT_SECRET="${JWT_SECRET:-$(openssl rand -hex 32)}"
-export CSP_HEADER="${CSP_HEADER:-default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self' http://localhost:8080 ws://localhost:8080}"
-
-log() { printf '[e2e-full] %s\n' "$*"; }
-
-teardown() {
-  local ec=$?
-  if [[ "${E2E_KEEP_STACK:-0}" == "1" ]]; then
-    log "E2E_KEEP_STACK=1; leaving stack running."
-    return $ec
-  fi
-  log "tearing down stack"
-  if [[ "${E2E_SKIP_DOCKER:-0}" != "1" ]]; then
-    docker compose -p "$COMPOSE_PROJECT" -f "$COMPOSE" down -v --remove-orphans >/dev/null 2>&1 || true
-  fi
-  if [[ -n "${BACKEND_PID:-}" ]]; then kill "$BACKEND_PID" 2>/dev/null || true; fi
-  if [[ -n "${FRONTEND_PID:-}" ]]; then kill "$FRONTEND_PID" 2>/dev/null || true; fi
-  return $ec
-}
-trap teardown EXIT
-
-wait_for() {
-  local url="$1" label="$2" retries="${3:-60}"
-  log "waiting for $label at $url"
-  for ((i=0; i<retries; i++)); do
-    if curl -fsS "$url" >/dev/null 2>&1; then
-      log "  $label ready"
-      return 0
-    fi
-    sleep 2
-  done
-  log "  $label never became ready"
-  return 1
-}
-
-if [[ "${E2E_SKIP_DOCKER:-0}" != "1" ]]; then
-  log "starting postgres, elasticsearch, redis via docker compose"
-  docker compose -p "$COMPOSE_PROJECT" -f "$COMPOSE" up -d postgres elasticsearch redis
-
-  log "waiting for postgres"
-  for ((i=0; i<60; i++)); do
-    if docker compose -p "$COMPOSE_PROJECT" -f "$COMPOSE" exec -T postgres pg_isready -U explorer >/dev/null 2>&1; then
-      break
-    fi
-    sleep 2
-  done
-fi
-
-export DB_HOST="${DB_HOST:-localhost}"
-export DB_PORT="${DB_PORT:-5432}"
-export DB_USER="${DB_USER:-explorer}"
-export DB_PASSWORD="${DB_PASSWORD:-changeme}"
-export DB_NAME="${DB_NAME:-explorer}"
-export REDIS_HOST="${REDIS_HOST:-localhost}"
-export REDIS_PORT="${REDIS_PORT:-6379}"
-export ELASTICSEARCH_URL="${ELASTICSEARCH_URL:-http://localhost:9200}"
-
-log "running migrations"
-(cd backend && go run database/migrations/migrate.go) || {
-  log "migrations failed; continuing so tests can report the real backend state"
-}
-
-log "starting backend API on :8080"
-(cd backend/api/rest && go run . >/tmp/e2e-backend.log 2>&1) &
-BACKEND_PID=$!
-
-wait_for "$EXPLORER_API_URL/healthz" backend 120 || {
-  log "backend log tail:"; tail -n 60 /tmp/e2e-backend.log || true
-  exit 1
-}
-
-log "building frontend"
-(cd frontend && npm ci --no-audit --no-fund --loglevel=error && npm run build)
-
-log "starting frontend on :3000"
-(cd frontend && PORT=3000 HOST=127.0.0.1 NEXT_PUBLIC_API_URL="$EXPLORER_API_URL" npm run start >/tmp/e2e-frontend.log 2>&1) &
-FRONTEND_PID=$!
-
-wait_for "$EXPLORER_URL" frontend 60 || {
-  log "frontend log tail:"; tail -n 60 /tmp/e2e-frontend.log || true
-  exit 1
-}
-
-log "running Playwright full-stack smoke"
-npx playwright install --with-deps chromium >/dev/null
-EXPLORER_URL="$EXPLORER_URL" EXPLORER_API_URL="$EXPLORER_API_URL" \
-  npx playwright test scripts/e2e-full-stack.spec.ts --reporter=list
-
-log "done; screenshots in $E2E_SCREENSHOT_DIR"