Enhance detection filtering and increase result limits

Update API endpoints and storage logic to support filtering detections by anomaly type, minimum/maximum risk score, and to increase the default limit of returned detections. Replit-Commit-Author: Agent Replit-Commit-Session-Id: 7a657272-55ba-4a79-9a2e-f1ed9bc7a528 Replit-Commit-Checkpoint-Type: intermediate_checkpoint Replit-Commit-Event-Id: 2236a0ee-4ac6-4527-bd70-449e36f71c7e Replit-Commit-Screenshot-Url: https://storage.googleapis.com/screenshot-production-us-central1/449cf7c4-c97a-45ae-8234-e5c5b8d6a84f/7a657272-55ba-4a79-9a2e-f1ed9bc7a528/1zhedLT
2025-11-25 09:56:13 +00:00 · 2025-11-25 09:56:13 +00:00 · d9aa466758
commit d9aa466758
parent 163776497f
2 changed files with 48 additions and 6 deletions
--- a/server/routes.ts
+++ b/server/routes.ts
@ -63,8 +63,17 @@ export async function registerRoutes(app: Express): Promise<Server> {
  // Detections
  app.get("/api/detections", async (req, res) => {
    try {
-      const limit = parseInt(req.query.limit as string) || 100;
-      const detections = await storage.getAllDetections(limit);
+      const limit = req.query.limit ? parseInt(req.query.limit as string) : 500;
+      const anomalyType = req.query.anomalyType as string | undefined;
+      const minScore = req.query.minScore ? parseFloat(req.query.minScore as string) : undefined;
+      const maxScore = req.query.maxScore ? parseFloat(req.query.maxScore as string) : undefined;
+      
+      const detections = await storage.getAllDetections({
+        limit,
+        anomalyType,
+        minScore,
+        maxScore
+      });
      res.json(detections);
    } catch (error) {
      console.error('[DB ERROR] Failed to fetch detections:', error);
@ -181,7 +190,7 @@ export async function registerRoutes(app: Express): Promise<Server> {
  app.get("/api/stats", async (req, res) => {
    try {
      const routers = await storage.getAllRouters();
-      const detections = await storage.getAllDetections(1000);
+      const detections = await storage.getAllDetections({ limit: 1000 });
      const recentLogs = await storage.getRecentLogs(1000);
      const whitelist = await storage.getAllWhitelist();
      const latestTraining = await storage.getLatestTraining();
--- a/server/storage.ts
+++ b/server/storage.ts
@ -35,7 +35,12 @@ export interface IStorage {
  getLogsForTraining(limit: number, minTimestamp?: Date): Promise<NetworkLog[]>;

  // Detections
-  getAllDetections(limit: number): Promise<Detection[]>;
+  getAllDetections(options: {
+    limit?: number;
+    anomalyType?: string;
+    minScore?: number;
+    maxScore?: number;
+  }): Promise<Detection[]>;
  getDetectionByIp(sourceIp: string): Promise<Detection | undefined>;
  createDetection(detection: InsertDetection): Promise<Detection>;
  updateDetection(id: string, detection: Partial<InsertDetection>): Promise<Detection | undefined>;
@ -140,12 +145,40 @@ export class DatabaseStorage implements IStorage {
  }

  // Detections
-  async getAllDetections(limit: number): Promise<Detection[]> {
-    return await db
+  async getAllDetections(options: {
+    limit?: number;
+    anomalyType?: string;
+    minScore?: number;
+    maxScore?: number;
+  }): Promise<Detection[]> {
+    const { limit = 500, anomalyType, minScore, maxScore } = options;
+    
+    // Build WHERE conditions
+    const conditions = [];
+    
+    if (anomalyType) {
+      conditions.push(eq(detections.anomalyType, anomalyType));
+    }
+    
+    if (minScore !== undefined) {
+      conditions.push(gte(detections.riskScore, minScore.toString()));
+    }
+    
+    if (maxScore !== undefined) {
+      conditions.push(sql`${detections.riskScore}::numeric <= ${maxScore}`);
+    }
+    
+    const query = db
      .select()
      .from(detections)
      .orderBy(desc(detections.detectedAt))
      .limit(limit);
+    
+    if (conditions.length > 0) {
+      return await query.where(and(...conditions));
+    }
+    
+    return await query;
  }

  async getDetectionByIp(sourceIp: string): Promise<Detection | undefined> {