fix: improve search and harden API services

Replace in-memory search filtering with PostgreSQL unaccent + ILIKE
across all index views. Search now splits on words so "Jürgen Habermas"
matches "Habermas, Jürgen" in the author field. Accent-insensitive
matching handled at the database level instead of loading all rows
into PHP.

Scope trusted proxies to private networks instead of 0.0.0.0/0.
Add logging to all API service catch blocks.
Add missing indexes on comic_issues.comicvine_issue_id and
episodes.show_id.

Author: dotMavriQ

app/Livewire/Anime/AnimeIndex.php

@@ -8,7 +8,6 @@
 use App\Models\Anime;
 use Illuminate\Support\Facades\Auth;
 use Illuminate\Support\Facades\DB;
-use Illuminate\Support\Str;
 use Livewire\Component;
 use Livewire\WithPagination;
 
@@ -46,21 +45,17 @@ class AnimeIndex extends Component
         'viewMode' => ['except' => 'gallery'],
     ];
 
-    private function normalizeForSearch(string $string): string
+    private function applyAccentInsensitiveSearch($query, string $search, array $columns): void
     {
-        return Str::ascii($string);
-    }
+        $words = preg_split('/\s+/', trim($search));
 
-    private function matchesSearch(?string $value, string $normalizedSearch): bool
-    {
-        if ($value === null) {
-            return false;
+        foreach ($words as $word) {
+            $query->where(function ($q) use ($word, $columns) {
+                foreach ($columns as $column) {
+                    $q->orWhereRaw('unaccent(COALESCE(' . $column . ", '')) ILIKE unaccent(?)", ['%' . $word . '%']);
+                }
+            });
         }
-
-        return str_contains(
-            strtolower($this->normalizeForSearch($value)),
-            strtolower($normalizedSearch)
-        );
     }
 
     public function updatingSearch(): void
@@ -133,13 +128,8 @@ public function updatedSelectAll(bool $value): void
                 });
 
             if ($this->search) {
-                $normalizedSearch = $this->normalizeForSearch($this->search);
-                $allAnime = $query->get();
-                $this->selected = $allAnime->filter(function ($anime) use ($normalizedSearch) {
-                    return $this->matchesSearch($anime->title, $normalizedSearch)
-                        || $this->matchesSearch($anime->original_title, $normalizedSearch)
-                        || $this->matchesSearch($anime->studios, $normalizedSearch);
-                })->pluck('id')->map(fn ($id) => (string) $id)->toArray();
+                $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'original_title', 'studios']);
+                $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             } else {
                 $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             }
@@ -196,39 +186,11 @@ public function render()
         }
 
         if ($this->search) {
-            $normalizedSearch = $this->normalizeForSearch($this->search);
-
-            $exactMatchIds = (clone $query)
-                ->where(function ($q) {
-                    $q->where('title', 'like', '%' . $this->search . '%')
-                        ->orWhere('original_title', 'like', '%' . $this->search . '%')
-                        ->orWhere('studios', 'like', '%' . $this->search . '%');
-                })
-                ->pluck('id');
-
-            $allAnime = $query->get();
-            $filteredIds = $allAnime->filter(function ($anime) use ($normalizedSearch) {
-                return $this->matchesSearch($anime->title, $normalizedSearch)
-                    || $this->matchesSearch($anime->original_title, $normalizedSearch)
-                    || $this->matchesSearch($anime->studios, $normalizedSearch);
-            })->pluck('id');
-
-            $matchingIds = $exactMatchIds->merge($filteredIds)->unique();
-
-            $searchQuery = Anime::query()
-                ->whereIn('id', $matchingIds);
-
-            if ($sortBy === 'date_watched') {
-                $searchQuery->orderBy(DB::raw('COALESCE(date_watched, updated_at)'), $sortDir);
-            } else {
-                $searchQuery->orderBy($sortBy, $sortDir);
-            }
-
-            $animeList = $searchQuery->paginate($perPage);
-        } else {
-            $animeList = $query->paginate($perPage);
+            $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'original_title', 'studios']);
         }
 
+        $animeList = $query->paginate($perPage);
+
         $allMediaTypes = Anime::where('user_id', Auth::id())
             ->whereNotNull('media_type')
             ->distinct()

app/Livewire/Books/BookIndex.php

@@ -8,35 +8,24 @@
 use App\Models\Book;
 use Illuminate\Support\Facades\Auth;
 use Illuminate\Support\Facades\DB;
-use Illuminate\Support\Str;
 use Livewire\Component;
 use Livewire\WithPagination;
 
 class BookIndex extends Component
 {
     use WithPagination;
 
-    /**
-     * Normalize a string by removing diacritics/accents for comparison.
-     */
-    private function normalizeForSearch(string $string): string
+    private function applyAccentInsensitiveSearch($query, string $search, array $columns): void
     {
-        return Str::ascii($string);
-    }
+        $words = preg_split('/\s+/', trim($search));
 
-    /**
-     * Check if a value matches the search term (accent-insensitive).
-     */
-    private function matchesSearch(?string $value, string $normalizedSearch): bool
-    {
-        if ($value === null) {
-            return false;
+        foreach ($words as $word) {
+            $query->where(function ($q) use ($word, $columns) {
+                foreach ($columns as $column) {
+                    $q->orWhereRaw('unaccent(COALESCE(' . $column . ", '')) ILIKE unaccent(?)", ['%' . $word . '%']);
+                }
+            });
         }
-
-        return str_contains(
-            strtolower($this->normalizeForSearch($value)),
-            strtolower($normalizedSearch)
-        );
     }
 
     public string $search = '';
@@ -164,12 +153,8 @@ public function updatedSelectAll(bool $value): void
                 });
 
             if ($this->search) {
-                $normalizedSearch = $this->normalizeForSearch($this->search);
-                $allBooks = $query->get();
-                $this->selected = $allBooks->filter(function ($book) use ($normalizedSearch) {
-                    return $this->matchesSearch($book->title, $normalizedSearch)
-                        || $this->matchesSearch($book->author, $normalizedSearch);
-                })->pluck('id')->map(fn ($id) => (string) $id)->toArray();
+                $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'author']);
+                $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             } else {
                 $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             }
@@ -246,53 +231,12 @@ public function render()
             $query->orderBy($sortBy, $sortDir);
         }
 
-        // For search, use accent-insensitive PHP filtering
         if ($this->search) {
-            $normalizedSearch = $this->normalizeForSearch($this->search);
-
-            // First try exact match in SQL for performance
-            $exactMatchIds = (clone $query)
-                ->where(function ($q) {
-                    $q->where('title', 'like', '%'.$this->search.'%')
-                        ->orWhere('author', 'like', '%'.$this->search.'%');
-                })
-                ->pluck('id');
-
-            // Then get all books and filter with accent-insensitive comparison
-            $allBooks = $query->get();
-            $filteredIds = $allBooks->filter(function ($book) use ($normalizedSearch) {
-                return $this->matchesSearch($book->title, $normalizedSearch)
-                    || $this->matchesSearch($book->author, $normalizedSearch);
-            })->pluck('id');
-
-            // Combine both result sets
-            $matchingIds = $exactMatchIds->merge($filteredIds)->unique();
-
-            $searchQuery = Book::query()
-                ->whereIn('id', $matchingIds)
-                ->with('bookShelves');
-
-            if ($sortBy === 'page_count') {
-                if ($sortDir === 'asc') {
-                    $searchQuery->orderByRaw('page_count IS NOT NULL')
-                        ->orderByRaw('CASE WHEN page_count IS NULL THEN title END ASC')
-                        ->orderBy('page_count', 'asc');
-                } else {
-                    $searchQuery->orderByRaw('page_count IS NULL')
-                        ->orderBy('page_count', 'desc')
-                        ->orderByRaw('CASE WHEN page_count IS NULL THEN title END DESC');
-                }
-            } elseif ($sortBy === 'date_finished') {
-                $searchQuery->orderBy(\Illuminate\Support\Facades\DB::raw('COALESCE(date_finished, updated_at)'), $sortDir);
-            } else {
-                $searchQuery->orderBy($sortBy, $sortDir);
-            }
-
-            $books = $searchQuery->paginate($perPage);
-        } else {
-            $books = $query->paginate($perPage);
+            $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'author']);
         }
 
+        $books = $query->paginate($perPage);
+
         return view('livewire.books.book-index', [
             'books' => $books,
             'statuses' => $this->getStatuses(),

app/Livewire/Comics/ComicIndex.php

@@ -8,29 +8,24 @@
 use App\Models\Comic;
 use Illuminate\Support\Facades\Auth;
 use Illuminate\Support\Facades\DB;
-use Illuminate\Support\Str;
 use Livewire\Component;
 use Livewire\WithPagination;
 
 class ComicIndex extends Component
 {
     use WithPagination;
 
-    private function normalizeForSearch(string $string): string
+    private function applyAccentInsensitiveSearch($query, string $search, array $columns): void
     {
-        return Str::ascii($string);
-    }
+        $words = preg_split('/\s+/', trim($search));
 
-    private function matchesSearch(?string $value, string $normalizedSearch): bool
-    {
-        if ($value === null) {
-            return false;
+        foreach ($words as $word) {
+            $query->where(function ($q) use ($word, $columns) {
+                foreach ($columns as $column) {
+                    $q->orWhereRaw('unaccent(COALESCE(' . $column . ", '')) ILIKE unaccent(?)", ['%' . $word . '%']);
+                }
+            });
         }
-
-        return str_contains(
-            strtolower($this->normalizeForSearch($value)),
-            strtolower($normalizedSearch)
-        );
     }
 
     public string $search = '';
@@ -133,12 +128,8 @@ public function updatedSelectAll(bool $value): void
                 });
 
             if ($this->search) {
-                $normalizedSearch = $this->normalizeForSearch($this->search);
-                $allComics = $query->get();
-                $this->selected = $allComics->filter(function ($comic) use ($normalizedSearch) {
-                    return $this->matchesSearch($comic->title, $normalizedSearch)
-                        || $this->matchesSearch($comic->publisher, $normalizedSearch);
-                })->pluck('id')->map(fn ($id) => (string) $id)->toArray();
+                $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'publisher']);
+                $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             } else {
                 $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             }
@@ -197,47 +188,11 @@ public function render()
         }
 
         if ($this->search) {
-            $normalizedSearch = $this->normalizeForSearch($this->search);
-
-            $exactMatchIds = (clone $query)
-                ->where(function ($q) {
-                    $q->where('title', 'like', '%'.$this->search.'%')
-                        ->orWhere('publisher', 'like', '%'.$this->search.'%');
-                })
-                ->pluck('id');
-
-            $allComics = $query->get();
-            $filteredIds = $allComics->filter(function ($comic) use ($normalizedSearch) {
-                return $this->matchesSearch($comic->title, $normalizedSearch)
-                    || $this->matchesSearch($comic->publisher, $normalizedSearch);
-            })->pluck('id');
-
-            $matchingIds = $exactMatchIds->merge($filteredIds)->unique();
-
-            $searchQuery = Comic::query()
-                ->whereIn('id', $matchingIds);
-
-            if (in_array($sortBy, ['issue_count', 'start_year'])) {
-                if ($sortDir === 'asc') {
-                    $searchQuery->orderByRaw("{$sortBy} IS NOT NULL")
-                        ->orderByRaw("CASE WHEN {$sortBy} IS NULL THEN title END ASC")
-                        ->orderBy($sortBy, 'asc');
-                } else {
-                    $searchQuery->orderByRaw("{$sortBy} IS NULL")
-                        ->orderBy($sortBy, 'desc')
-                        ->orderByRaw("CASE WHEN {$sortBy} IS NULL THEN title END DESC");
-                }
-            } elseif ($sortBy === 'date_finished') {
-                $searchQuery->orderBy(DB::raw('COALESCE(date_finished, updated_at)'), $sortDir);
-            } else {
-                $searchQuery->orderBy($sortBy, $sortDir);
-            }
-
-            $comics = $searchQuery->paginate($perPage);
-        } else {
-            $comics = $query->paginate($perPage);
+            $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'publisher']);
         }
 
+        $comics = $query->paginate($perPage);
+
         $publishers = Comic::query()
             ->where('user_id', Auth::id())
             ->whereNotNull('publisher')

app/Livewire/Movies/MovieIndex.php

@@ -8,7 +8,6 @@
 use App\Models\Movie;
 use Illuminate\Support\Facades\Auth;
 use Illuminate\Support\Facades\DB;
-use Illuminate\Support\Str;
 use Livewire\Component;
 use Livewire\WithPagination;
 
@@ -51,21 +50,17 @@ class MovieIndex extends Component
         'viewMode' => ['except' => 'gallery'],
     ];
 
-    private function normalizeForSearch(string $string): string
+    private function applyAccentInsensitiveSearch($query, string $search, array $columns): void
     {
-        return Str::ascii($string);
-    }
+        $words = preg_split('/\s+/', trim($search));
 
-    private function matchesSearch(?string $value, string $normalizedSearch): bool
-    {
-        if ($value === null) {
-            return false;
+        foreach ($words as $word) {
+            $query->where(function ($q) use ($word, $columns) {
+                foreach ($columns as $column) {
+                    $q->orWhereRaw('unaccent(COALESCE(' . $column . ", '')) ILIKE unaccent(?)", ['%' . $word . '%']);
+                }
+            });
         }
-
-        return str_contains(
-            strtolower($this->normalizeForSearch($value)),
-            strtolower($normalizedSearch)
-        );
     }
 
     public function updatingSearch(): void
@@ -143,13 +138,8 @@ public function updatedSelectAll(bool $value): void
             $this->applyTypeFilter($query);
 
             if ($this->search) {
-                $normalizedSearch = $this->normalizeForSearch($this->search);
-                $allMovies = $query->get();
-                $this->selected = $allMovies->filter(function ($movie) use ($normalizedSearch) {
-                    return $this->matchesSearch($movie->title, $normalizedSearch)
-                        || $this->matchesSearch($movie->director, $normalizedSearch)
-                        || $this->matchesSearch($movie->original_title, $normalizedSearch);
-                })->pluck('id')->map(fn ($id) => (string) $id)->toArray();
+                $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'director', 'original_title']);
+                $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             } else {
                 $this->selected = $query->pluck('id')->map(fn ($id) => (string) $id)->toArray();
             }
@@ -215,16 +205,7 @@ public function render()
         $this->applyTypeFilter($query);
 
         if ($this->search) {
-            $normalizedSearch = $this->normalizeForSearch($this->search);
-
-            $allFilteredMovies = (clone $query)->get();
-            $matchingIds = $allFilteredMovies->filter(function ($movie) use ($normalizedSearch) {
-                return $this->matchesSearch($movie->title, $normalizedSearch)
-                    || $this->matchesSearch($movie->director, $normalizedSearch)
-                    || $this->matchesSearch($movie->original_title, $normalizedSearch);
-            })->pluck('id');
-
-            $query->whereIn('id', $matchingIds);
+            $this->applyAccentInsensitiveSearch($query, $this->search, ['title', 'director', 'original_title']);
         }
 
         if ($sortBy === 'runtime_minutes') {