7dbbf63523
Routes (additiv unter /api/v1/marketplace/*): - POST/GET /authors/me — eigenes Author-Profil anlegen/updaten/lesen - GET /authors/:slug — public Profile-Lookup (banned-reason gestrippt) - POST /decks — Deck-Init (Slug-Validation + Pflicht-Author-Profil + CHECK auf paid + Pro-License) - POST /decks/:slug/publish — Versions-Snapshot mit per-Karte cardContentHash aus @cards/domain, per-Version-Hash, AI-Mod-Stub-Log, atomarer latest_version_id-Bump in Drizzle-Transaction - PATCH /decks/:slug — Metadaten-Update (Owner-Only) - GET /decks/:slug — Public-Detail mit optional-auth-Middleware Geport aus cards-decommission-base:services/cards-server/, mit Greenfield-Anpassungen: - Hashing über @cards/domain.cardContentHash (gemeinsame SoT zwischen privatem cards.cards und marketplace.deck_cards), per- Version-Hash als SHA-256 über sortierte Karten-Hashes mit Ord-Prefix - AI-Moderation als R2-Stub (pass+rationale+model='stub'), echte mana-llm-Anbindung in späterer Welle - Auth-Middleware-Shape an Greenfield (userId/tier/authMode in c.get(...) statt user-Object), optional-auth als Schwester für anonymen Public-Read - Hono-typing: outer Marketplace-Decks-Router ist Partial<AuthVars> weil Public-GET kein JWT braucht; Auth-Subroute ist strict Lese-Referenz: - 3331 LOC altes cards-server-Code (routes, services, middleware, lib) unter docs/marketplace/archive/code/ archiviert. Read-only, nicht im Build-Path. Verifikation: - 16 neue Vitest-Tests (Slug + Version-Hash), 72 gesamt grün - type-check 0 errors - E2E-Smoke gegen lokale cards-api: Cardecky-Author + Deck r2-stoische-ethik mit 3 Karten v1.0.0 (basic + basic + cloze), per-Karten-Hashes geschrieben, ai_moderation_log-Row da, semver-409 + paid-422-Errors verifiziert. Smoke-Daten danach aufgeräumt. Verbleibend für R3+: Discovery (explore + search), Engagement (stars/ subscribe/fork), Smart-Merge mit FSRS-State-Erhalt; danach R4 PRs + Card-Discussions, R5 Frontend-Routes. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
63 lines
1.7 KiB
TypeScript
63 lines
1.7 KiB
TypeScript
/**
|
|
* Domain errors — caught by `serviceErrorHandler` from @mana/shared-hono.
|
|
*
|
|
* The shared handler only translates Hono `HTTPException`s; anything
|
|
* else degrades to 500. So our errors extend HTTPException directly
|
|
* rather than maintaining a parallel hierarchy.
|
|
*
|
|
* `details` (e.g. zod issue tree) is passed via `cause` because the
|
|
* shared handler picks that up and surfaces it in the JSON body.
|
|
*/
|
|
|
|
import { HTTPException } from 'hono/http-exception';
|
|
import type { ContentfulStatusCode } from 'hono/utils/http-status';
|
|
|
|
function makeException(
|
|
status: ContentfulStatusCode,
|
|
message: string,
|
|
code?: string,
|
|
details?: unknown
|
|
) {
|
|
return new HTTPException(status, {
|
|
message,
|
|
cause: details ? { code, details } : code ? { code } : undefined,
|
|
});
|
|
}
|
|
|
|
export class HttpError extends HTTPException {}
|
|
|
|
export class UnauthorizedError extends HTTPException {
|
|
constructor(message = 'Unauthorized') {
|
|
super(401, { message, cause: { code: 'unauthorized' } });
|
|
}
|
|
}
|
|
|
|
export class ForbiddenError extends HTTPException {
|
|
constructor(message = 'Forbidden') {
|
|
super(403, { message, cause: { code: 'forbidden' } });
|
|
}
|
|
}
|
|
|
|
export class NotFoundError extends HTTPException {
|
|
constructor(message = 'Not found') {
|
|
super(404, { message, cause: { code: 'not_found' } });
|
|
}
|
|
}
|
|
|
|
export class ConflictError extends HTTPException {
|
|
constructor(message = 'Conflict') {
|
|
super(409, { message, cause: { code: 'conflict' } });
|
|
}
|
|
}
|
|
|
|
export class BadRequestError extends HTTPException {
|
|
constructor(message = 'Bad request', details?: unknown) {
|
|
super(400, {
|
|
message,
|
|
cause: details ? { code: 'bad_request', details } : { code: 'bad_request' },
|
|
});
|
|
}
|
|
}
|
|
|
|
// Keep makeException exported in case future code wants the raw factory.
|
|
export { makeException };
|