npm - @jant/core - Versions diffs - 0.3.27 → 0.3.29 - Mend

@jant/core 0.3.27 → 0.3.29

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (314) hide show

package/bin/reset-password.js +22 -0
package/dist/client/client.css +1 -0
package/dist/client/client.js +31561 -0
package/dist/index.js +15209 -15
package/package.json +25 -15
package/src/__tests__/helpers/app.ts +19 -3
package/src/__tests__/helpers/db.ts +44 -0
package/src/__tests__/helpers/lingui-core-macro-mock.ts +33 -0
package/src/app.tsx +111 -174
package/src/client.ts +13 -0
package/src/db/migrations/0007_post_collections_m2m.sql +94 -0
package/src/db/migrations/0008_add_collection_dividers.sql +8 -0
package/src/db/migrations/0009_drop_collection_show_divider.sql +2 -0
package/src/db/migrations/0010_add_performance_indexes.sql +16 -0
package/src/db/schema.ts +24 -4
package/src/i18n/locales/en.po +810 -385
package/src/i18n/locales/en.ts +1 -1
package/src/i18n/locales/zh-Hans.po +733 -522
package/src/i18n/locales/zh-Hans.ts +1 -1
package/src/i18n/locales/zh-Hant.po +733 -522
package/src/i18n/locales/zh-Hant.ts +1 -1
package/src/i18n/middleware.ts +7 -11
package/src/index.ts +1 -1
package/src/lib/__tests__/icons.test.ts +178 -0
package/src/lib/__tests__/resolve-config.test.ts +184 -0
package/src/lib/__tests__/schemas.test.ts +12 -6
package/src/lib/__tests__/theme.test.ts +62 -0
package/src/lib/__tests__/timezones.test.ts +1 -1
package/src/lib/__tests__/url.test.ts +12 -0
package/src/lib/__tests__/view.test.ts +1 -5
package/src/lib/avatar-upload.ts +18 -10
package/src/lib/collection-form-bridge.ts +52 -0
package/src/lib/collections-reorder.ts +28 -0
package/src/lib/compose-bridge.ts +251 -0
package/src/lib/errors.ts +116 -0
package/src/lib/excerpt.ts +1 -1
package/src/lib/favicon.ts +3 -5
package/src/lib/html.ts +22 -0
package/src/lib/icon-catalog.ts +181 -0
package/src/lib/icons.ts +202 -0
package/src/lib/navigation.ts +18 -33
package/src/lib/pagination.ts +3 -2
package/src/lib/post-form-bridge.ts +136 -0
package/src/lib/render.tsx +11 -4
package/src/lib/resolve-config.ts +157 -0
package/src/lib/schemas.ts +76 -12
package/src/lib/settings-bridge.ts +139 -0
package/src/lib/storage.ts +37 -16
package/src/lib/theme.ts +5 -7
package/src/lib/timeline.ts +4 -8
package/src/lib/toast.ts +134 -0
package/src/lib/upload.ts +71 -0
package/src/lib/url.ts +9 -1
package/src/lib/version.ts +16 -0
package/src/lib/view.ts +9 -10
package/src/middleware/__tests__/auth.test.ts +6 -28
package/src/middleware/__tests__/onboarding.test.ts +1 -1
package/src/middleware/auth.ts +6 -12
package/src/middleware/config.ts +51 -0
package/src/middleware/error-handler.ts +56 -0
package/src/middleware/onboarding.ts +1 -1
package/src/preset.css +6 -0
package/src/routes/__tests__/compose.test.ts +104 -17
package/src/routes/api/__tests__/collections.test.ts +93 -2
package/src/routes/api/__tests__/posts.test.ts +2 -1
package/src/routes/api/__tests__/settings.test.ts +1 -1
package/src/routes/api/collections.ts +64 -68
package/src/routes/api/nav-items.ts +21 -59
package/src/routes/api/pages.ts +18 -46
package/src/routes/api/posts.ts +64 -86
package/src/routes/api/search.ts +6 -4
package/src/routes/api/settings.ts +8 -24
package/src/routes/api/upload.ts +55 -53
package/src/routes/auth/__tests__/setup.test.ts +118 -0
package/src/routes/auth/reset.tsx +17 -66
package/src/routes/auth/setup.tsx +67 -11
package/src/routes/auth/signin.tsx +44 -8
package/src/routes/compose.tsx +194 -0
package/src/routes/dash/__tests__/font-theme.test.ts +110 -0
package/src/routes/dash/__tests__/pages.test.ts +2 -2
package/src/routes/dash/__tests__/settings-avatar.test.ts +23 -12
package/src/routes/dash/appearance.tsx +173 -0
package/src/routes/dash/collections.tsx +80 -14
package/src/routes/dash/index.tsx +12 -14
package/src/routes/dash/media.tsx +46 -49
package/src/routes/dash/pages.tsx +85 -37
package/src/routes/dash/posts.tsx +60 -23
package/src/routes/dash/redirects.tsx +43 -33
package/src/routes/dash/settings.tsx +234 -214
package/src/routes/feed/__tests__/rss.test.ts +7 -3
package/src/routes/feed/rss.ts +11 -16
package/src/routes/feed/sitemap.ts +15 -9
package/src/routes/pages/__tests__/collections.test.ts +9 -8
package/src/routes/pages/archive.tsx +2 -2
package/src/routes/pages/collection.tsx +76 -9
package/src/routes/pages/collections.tsx +3 -1
package/src/routes/pages/featured.tsx +2 -2
package/src/routes/pages/home.tsx +3 -3
package/src/routes/pages/latest.tsx +2 -2
package/src/routes/pages/page.tsx +2 -2
package/src/routes/pages/post.tsx +2 -2
package/src/routes/pages/search.tsx +2 -2
package/src/services/__tests__/collection.test.ts +324 -34
package/src/services/__tests__/media.test.ts +1 -1
package/src/services/__tests__/page.test.ts +116 -1
package/src/services/auth.ts +88 -0
package/src/services/collection.ts +169 -30
package/src/services/index.ts +8 -3
package/src/services/media.ts +39 -12
package/src/services/navigation.ts +17 -5
package/src/services/page.ts +24 -4
package/src/services/post.ts +87 -19
package/src/services/search.ts +0 -1
package/src/services/settings.ts +21 -13
package/src/style.css +3 -0
package/src/styles/components.css +42 -1
package/src/styles/tokens.css +4 -0
package/src/styles/ui.css +902 -73
package/src/types/app-context.ts +25 -0
package/src/types/bindings.ts +1 -0
package/src/types/config.ts +60 -23
package/src/types/entities.ts +12 -2
package/src/types/lingui-react-macro.d.ts +3 -3
package/src/types/operations.ts +2 -4
package/src/types/views.ts +1 -3
package/src/ui/__tests__/font-themes.test.ts +27 -8
package/src/ui/color-themes.ts +1 -1
package/src/ui/components/__tests__/jant-collection-form.test.ts +153 -0
package/src/ui/components/__tests__/jant-compose-dialog.test.ts +512 -0
package/src/ui/components/__tests__/jant-compose-editor.test.ts +272 -0
package/src/ui/components/__tests__/jant-post-form.test.ts +172 -0
package/src/ui/components/__tests__/jant-settings-avatar.test.ts +235 -0
package/src/ui/components/__tests__/jant-settings-general.test.ts +319 -0
package/src/ui/components/collection-types.ts +45 -0
package/src/ui/components/compose-types.ts +75 -0
package/src/ui/components/jant-collection-form.ts +512 -0
package/src/ui/components/jant-compose-dialog.ts +494 -0
package/src/ui/components/jant-compose-editor.ts +799 -0
package/src/ui/components/jant-post-form.ts +290 -0
package/src/ui/components/jant-settings-avatar.ts +231 -0
package/src/ui/components/jant-settings-general.ts +436 -0
package/src/ui/components/post-form-template.ts +260 -0
package/src/ui/components/post-form-types.ts +87 -0
package/src/ui/components/settings-types.ts +62 -0
package/src/ui/compose/ComposeDialog.tsx +141 -385
package/src/ui/compose/ComposePrompt.tsx +3 -3
package/src/ui/dash/PostList.tsx +55 -61
package/src/ui/dash/appearance/AdvancedContent.tsx +80 -0
package/src/ui/dash/appearance/AppearanceNav.tsx +56 -0
package/src/ui/dash/appearance/ColorThemeContent.tsx +129 -0
package/src/ui/dash/appearance/FontThemeContent.tsx +98 -0
package/src/ui/dash/collections/CollectionForm.tsx +130 -117
package/src/ui/dash/collections/CollectionsListContent.tsx +102 -41
package/src/ui/dash/collections/IconPickerGrid.tsx +50 -0
package/src/ui/dash/collections/ViewCollectionContent.tsx +14 -3
package/src/ui/dash/index.ts +1 -1
package/src/ui/dash/posts/PostForm.tsx +248 -0
package/src/ui/dash/settings/AccountContent.tsx +69 -80
package/src/ui/dash/settings/GeneralContent.tsx +159 -478
package/src/ui/dash/settings/SettingsNav.tsx +4 -4
package/src/ui/font-themes.ts +115 -32
package/src/ui/layouts/BaseLayout.tsx +49 -19
package/src/ui/layouts/DashLayout.tsx +14 -9
package/src/ui/layouts/SiteLayout.tsx +38 -23
package/src/ui/pages/CollectionPage.tsx +12 -2
package/src/ui/pages/CollectionsPage.tsx +27 -27
package/src/ui/pages/HomePage.tsx +15 -6
package/src/ui/pages/SearchPage.tsx +1 -2
package/src/ui/shared/CollectionsSidebar.tsx +59 -0
package/src/ui/shared/Pagination.tsx +2 -2
package/dist/app.js +0 -267
package/dist/auth.js +0 -39
package/dist/client.js +0 -13
package/dist/db/index.js +0 -10
package/dist/db/schema.js +0 -224
package/dist/i18n/Trans.js +0 -24
package/dist/i18n/context.js +0 -58
package/dist/i18n/detect.js +0 -26
package/dist/i18n/i18n.js +0 -49
package/dist/i18n/index.js +0 -44
package/dist/i18n/locales/en.js +0 -1
package/dist/i18n/locales/zh-Hans.js +0 -1
package/dist/i18n/locales/zh-Hant.js +0 -1
package/dist/i18n/locales.js +0 -13
package/dist/i18n/middleware.js +0 -30
package/dist/lib/avatar-upload.js +0 -134
package/dist/lib/config.js +0 -143
package/dist/lib/constants.js +0 -50
package/dist/lib/excerpt.js +0 -76
package/dist/lib/favicon.js +0 -102
package/dist/lib/feed.js +0 -123
package/dist/lib/image-processor.js +0 -187
package/dist/lib/image.js +0 -97
package/dist/lib/index.js +0 -7
package/dist/lib/markdown.js +0 -83
package/dist/lib/media-helpers.js +0 -49
package/dist/lib/media-upload.js +0 -104
package/dist/lib/nav-reorder.js +0 -27
package/dist/lib/navigation.js +0 -79
package/dist/lib/pagination.js +0 -44
package/dist/lib/render.js +0 -53
package/dist/lib/schemas.js +0 -174
package/dist/lib/sqid.js +0 -72
package/dist/lib/sse.js +0 -218
package/dist/lib/storage.js +0 -164
package/dist/lib/theme.js +0 -65
package/dist/lib/time.js +0 -159
package/dist/lib/timeline.js +0 -95
package/dist/lib/timezones.js +0 -388
package/dist/lib/url.js +0 -89
package/dist/lib/view.js +0 -217
package/dist/middleware/auth.js +0 -52
package/dist/middleware/onboarding.js +0 -41
package/dist/routes/api/collections.js +0 -124
package/dist/routes/api/nav-items.js +0 -104
package/dist/routes/api/pages.js +0 -91
package/dist/routes/api/posts.js +0 -218
package/dist/routes/api/search.js +0 -48
package/dist/routes/api/settings.js +0 -68
package/dist/routes/api/upload.js +0 -246
package/dist/routes/auth/reset.js +0 -221
package/dist/routes/auth/setup.js +0 -194
package/dist/routes/auth/signin.js +0 -176
package/dist/routes/compose.js +0 -48
package/dist/routes/dash/collections.js +0 -115
package/dist/routes/dash/index.js +0 -118
package/dist/routes/dash/media.js +0 -106
package/dist/routes/dash/pages.js +0 -294
package/dist/routes/dash/posts.js +0 -244
package/dist/routes/dash/redirects.js +0 -257
package/dist/routes/dash/settings.js +0 -379
package/dist/routes/feed/rss.js +0 -62
package/dist/routes/feed/sitemap.js +0 -49
package/dist/routes/pages/archive.js +0 -62
package/dist/routes/pages/collection.js +0 -34
package/dist/routes/pages/collections.js +0 -28
package/dist/routes/pages/featured.js +0 -36
package/dist/routes/pages/home.js +0 -64
package/dist/routes/pages/latest.js +0 -45
package/dist/routes/pages/page.js +0 -68
package/dist/routes/pages/post.js +0 -44
package/dist/routes/pages/search.js +0 -54
package/dist/services/collection.js +0 -109
package/dist/services/index.js +0 -24
package/dist/services/media.js +0 -117
package/dist/services/navigation.js +0 -91
package/dist/services/page.js +0 -84
package/dist/services/post.js +0 -229
package/dist/services/redirect.js +0 -48
package/dist/services/search.js +0 -67
package/dist/services/settings.js +0 -68
package/dist/types/bindings.js +0 -3
package/dist/types/config.js +0 -147
package/dist/types/constants.js +0 -27
package/dist/types/entities.js +0 -3
package/dist/types/lingui-react-macro.d.js +0 -9
package/dist/types/operations.js +0 -3
package/dist/types/props.js +0 -3
package/dist/types/sortablejs.d.js +0 -5
package/dist/types/views.js +0 -5
package/dist/types.js +0 -11
package/dist/ui/color-themes.js +0 -268
package/dist/ui/compose/ComposeDialog.js +0 -467
package/dist/ui/compose/ComposePrompt.js +0 -55
package/dist/ui/dash/ActionButtons.js +0 -46
package/dist/ui/dash/CrudPageHeader.js +0 -22
package/dist/ui/dash/DangerZone.js +0 -36
package/dist/ui/dash/FormatBadge.js +0 -27
package/dist/ui/dash/ListItemRow.js +0 -21
package/dist/ui/dash/PageForm.js +0 -195
package/dist/ui/dash/PostForm.js +0 -395
package/dist/ui/dash/PostList.js +0 -83
package/dist/ui/dash/StatusBadge.js +0 -46
package/dist/ui/dash/collections/CollectionForm.js +0 -152
package/dist/ui/dash/collections/CollectionsListContent.js +0 -68
package/dist/ui/dash/collections/ViewCollectionContent.js +0 -96
package/dist/ui/dash/index.js +0 -10
package/dist/ui/dash/media/MediaListContent.js +0 -166
package/dist/ui/dash/media/ViewMediaContent.js +0 -212
package/dist/ui/dash/pages/LinkFormContent.js +0 -130
package/dist/ui/dash/pages/UnifiedPagesContent.js +0 -193
package/dist/ui/dash/settings/AccountContent.js +0 -209
package/dist/ui/dash/settings/AppearanceContent.js +0 -259
package/dist/ui/dash/settings/GeneralContent.js +0 -536
package/dist/ui/dash/settings/SettingsNav.js +0 -41
package/dist/ui/feed/LinkCard.js +0 -72
package/dist/ui/feed/NoteCard.js +0 -58
package/dist/ui/feed/QuoteCard.js +0 -63
package/dist/ui/feed/ThreadPreview.js +0 -48
package/dist/ui/feed/TimelineFeed.js +0 -41
package/dist/ui/feed/TimelineItem.js +0 -27
package/dist/ui/font-themes.js +0 -36
package/dist/ui/layouts/BaseLayout.js +0 -153
package/dist/ui/layouts/DashLayout.js +0 -141
package/dist/ui/layouts/SiteLayout.js +0 -169
package/dist/ui/pages/ArchivePage.js +0 -143
package/dist/ui/pages/CollectionPage.js +0 -70
package/dist/ui/pages/CollectionsPage.js +0 -76
package/dist/ui/pages/FeaturedPage.js +0 -24
package/dist/ui/pages/HomePage.js +0 -24
package/dist/ui/pages/PostPage.js +0 -55
package/dist/ui/pages/SearchPage.js +0 -122
package/dist/ui/pages/SinglePage.js +0 -23
package/dist/ui/shared/EmptyState.js +0 -27
package/dist/ui/shared/MediaGallery.js +0 -35
package/dist/ui/shared/Pagination.js +0 -195
package/dist/ui/shared/ThreadView.js +0 -108
package/dist/ui/shared/index.js +0 -5
package/dist/vendor/datastar.js +0 -1606
package/src/lib/__tests__/config.test.ts +0 -192
package/src/lib/config.ts +0 -167
package/src/routes/compose.ts +0 -63
package/src/ui/dash/PostForm.tsx +0 -360
package/src/ui/dash/settings/AppearanceContent.tsx +0 -254

package/src/routes/api/pages.ts CHANGED Viewed

@@ -3,25 +3,23 @@
  */
 import { Hono } from "hono";
+import { z } from "zod";
 import type { Bindings } from "../../types.js";
-import type { AppVariables } from "../../app.js";
+import type { AppVariables } from "../../types/app-context.js";
 import { requireAuthApi } from "../../middleware/auth.js";
-import { z } from "zod";
-import { StatusSchema } from "../../lib/schemas.js";
+import {
+  CreatePageSchema,
+  StatusSchema,
+  parseValidated,
+} from "../../lib/schemas.js";
+import { assertFound, parseIntParam, NotFoundError } from "../../lib/errors.js";
 type Env = { Bindings: Bindings; Variables: AppVariables };
 export const pagesApiRoutes = new Hono<Env>();
-const CreatePageSchema = z.object({
-  slug: z.string().min(1),
-  title: z.string().optional(),
-  body: z.string().optional(),
-  status: StatusSchema.optional(),
-});
-const UpdatePageSchema = z.object({
-  slug: z.string().min(1).optional(),
+// API update schema extends shared schema with nullable fields for explicit clearing
+const UpdatePageSchema = CreatePageSchema.partial().extend({
   title: z.string().nullable().optional(),
   body: z.string().nullable().optional(),
   status: StatusSchema.optional(),
@@ -35,28 +33,14 @@ pagesApiRoutes.get("/", async (c) => {
 // Get single page
 pagesApiRoutes.get("/:id", async (c) => {
-  const id = parseInt(c.req.param("id"), 10);
-  if (isNaN(id)) return c.json({ error: "Invalid ID" }, 400);
-  const page = await c.var.services.pages.getById(id);
-  if (!page) return c.json({ error: "Not found" }, 404);
+  const id = parseIntParam(c.req.param("id"));
+  const page = assertFound(await c.var.services.pages.getById(id), "Page");
   return c.json(page);
 });
 // Create page (requires auth)
 pagesApiRoutes.post("/", requireAuthApi(), async (c) => {
-  const rawBody = await c.req.json();
-  const parseResult = CreatePageSchema.safeParse(rawBody);
-  if (!parseResult.success) {
-    return c.json(
-      { error: "Validation failed", details: parseResult.error.flatten() },
-      400,
-    );
-  }
-  const body = parseResult.data;
+  const body = parseValidated(CreatePageSchema, await c.req.json());
   const page = await c.var.services.pages.create({
     slug: body.slug,
@@ -70,32 +54,20 @@ pagesApiRoutes.post("/", requireAuthApi(), async (c) => {
 // Update page (requires auth)
 pagesApiRoutes.put("/:id", requireAuthApi(), async (c) => {
-  const id = parseInt(c.req.param("id"), 10);
-  if (isNaN(id)) return c.json({ error: "Invalid ID" }, 400);
-  const rawBody = await c.req.json();
-  const parseResult = UpdatePageSchema.safeParse(rawBody);
-  if (!parseResult.success) {
-    return c.json(
-      { error: "Validation failed", details: parseResult.error.flatten() },
-      400,
-    );
-  }
+  const id = parseIntParam(c.req.param("id"));
+  const body = parseValidated(UpdatePageSchema, await c.req.json());
-  const page = await c.var.services.pages.update(id, parseResult.data);
-  if (!page) return c.json({ error: "Not found" }, 404);
+  const page = assertFound(await c.var.services.pages.update(id, body), "Page");
   return c.json(page);
 });
 // Delete page (requires auth)
 pagesApiRoutes.delete("/:id", requireAuthApi(), async (c) => {
-  const id = parseInt(c.req.param("id"), 10);
-  if (isNaN(id)) return c.json({ error: "Invalid ID" }, 400);
+  const id = parseIntParam(c.req.param("id"));
   const success = await c.var.services.pages.delete(id);
-  if (!success) return c.json({ error: "Not found" }, 404);
+  if (!success) throw new NotFoundError("Page");
   return c.json({ success: true });
 });

package/src/routes/api/posts.ts CHANGED Viewed

@@ -4,12 +4,13 @@
 import { Hono } from "hono";
 import type { Bindings, Format, Status, Media } from "../../types.js";
-import type { AppVariables } from "../../app.js";
+import type { AppVariables } from "../../types/app-context.js";
 import * as sqid from "../../lib/sqid.js";
 import {
   CreatePostSchema,
   UpdatePostSchema,
   validateMediaCount,
+  parseValidated,
 } from "../../lib/schemas.js";
 import { requireAuthApi } from "../../middleware/auth.js";
 import {
@@ -17,6 +18,11 @@ import {
   getImageUrl,
   getPublicUrlForProvider,
 } from "../../lib/image.js";
+import {
+  assertFound,
+  NotFoundError,
+  ValidationError,
+} from "../../lib/errors.js";
 type Env = { Bindings: Bindings; Variables: AppVariables };
@@ -57,6 +63,24 @@ function toMediaAttachment(
   };
 }
+/**
+ * Validates media IDs: checks count limit and verifies all IDs exist.
+ */
+async function validateMediaIds(
+  mediaIds: string[],
+  getByIds: (ids: string[]) => Promise<Media[]>,
+): Promise<void> {
+  const countError = validateMediaCount(mediaIds);
+  if (countError) throw new ValidationError(countError);
+  if (mediaIds.length > 0) {
+    const existing = await getByIds(mediaIds);
+    if (existing.length !== mediaIds.length) {
+      throw new ValidationError("One or more media IDs are invalid");
+    }
+  }
+}
 // List posts
 postsApiRoutes.get("/", async (c) => {
   const format = c.req.query("format") as Format | undefined;
@@ -74,9 +98,7 @@ postsApiRoutes.get("/", async (c) => {
   // Batch load media for all posts
   const postIds = posts.map((p) => p.id);
   const mediaMap = await c.var.services.media.getByPostIds(postIds);
-  const r2PublicUrl = c.env.R2_PUBLIC_URL;
-  const imageTransformUrl = c.env.IMAGE_TRANSFORM_URL;
-  const s3PublicUrl = c.env.S3_PUBLIC_URL;
+  const { r2PublicUrl, imageTransformUrl, s3PublicUrl } = c.var.appConfig;
   return c.json({
     posts: posts.map((p) => ({
@@ -97,15 +119,12 @@ postsApiRoutes.get("/", async (c) => {
 // Get single post
 postsApiRoutes.get("/:id", async (c) => {
   const id = sqid.decode(c.req.param("id"));
-  if (!id) return c.json({ error: "Invalid ID" }, 400);
+  if (!id) throw new ValidationError("Invalid ID");
-  const post = await c.var.services.posts.getById(id);
-  if (!post) return c.json({ error: "Not found" }, 404);
+  const post = assertFound(await c.var.services.posts.getById(id), "Post");
   const mediaList = await c.var.services.media.getByPostId(post.id);
-  const r2PublicUrl = c.env.R2_PUBLIC_URL;
-  const imageTransformUrl = c.env.IMAGE_TRANSFORM_URL;
-  const s3PublicUrl = c.env.S3_PUBLIC_URL;
+  const { r2PublicUrl, imageTransformUrl, s3PublicUrl } = c.var.appConfig;
   return c.json({
     ...post,
@@ -118,33 +137,13 @@ postsApiRoutes.get("/:id", async (c) => {
 // Create post (requires auth)
 postsApiRoutes.post("/", requireAuthApi(), async (c) => {
-  const rawBody = await c.req.json();
-  // Validate request body
-  const parseResult = CreatePostSchema.safeParse(rawBody);
-  if (!parseResult.success) {
-    return c.json(
-      { error: "Validation failed", details: parseResult.error.flatten() },
-      400,
-    );
-  }
+  const body = parseValidated(CreatePostSchema, await c.req.json());
-  const body = parseResult.data;
-  // Validate media count
+  // Validate media IDs
   if (body.mediaIds) {
-    const mediaError = validateMediaCount(body.mediaIds);
-    if (mediaError) {
-      return c.json({ error: mediaError }, 400);
-    }
-    // Verify all media IDs exist
-    if (body.mediaIds.length > 0) {
-      const existing = await c.var.services.media.getByIds(body.mediaIds);
-      if (existing.length !== body.mediaIds.length) {
-        return c.json({ error: "One or more media IDs are invalid" }, 400);
-      }
-    }
+    await validateMediaIds(body.mediaIds, (ids) =>
+      c.var.services.media.getByIds(ids),
+    );
   }
   const post = await c.var.services.posts.create({
@@ -158,7 +157,7 @@ postsApiRoutes.post("/", requireAuthApi(), async (c) => {
     url: body.url || undefined,
     quoteText: body.quoteText,
     rating: body.rating || undefined,
-    collectionId: body.collectionId || undefined,
+    collectionIds: body.collectionIds?.length ? body.collectionIds : undefined,
     replyToId: body.replyToId
       ? (sqid.decode(body.replyToId) ?? undefined)
       : undefined,
@@ -171,9 +170,7 @@ postsApiRoutes.post("/", requireAuthApi(), async (c) => {
   }
   const mediaList = await c.var.services.media.getByPostId(post.id);
-  const r2PublicUrl = c.env.R2_PUBLIC_URL;
-  const imageTransformUrl = c.env.IMAGE_TRANSFORM_URL;
-  const s3PublicUrl = c.env.S3_PUBLIC_URL;
+  const { r2PublicUrl, imageTransformUrl, s3PublicUrl } = c.var.appConfig;
   return c.json(
     {
@@ -190,53 +187,36 @@ postsApiRoutes.post("/", requireAuthApi(), async (c) => {
 // Update post (requires auth)
 postsApiRoutes.put("/:id", requireAuthApi(), async (c) => {
   const id = sqid.decode(c.req.param("id"));
-  if (!id) return c.json({ error: "Invalid ID" }, 400);
-  const rawBody = await c.req.json();
-  // Validate request body
-  const parseResult = UpdatePostSchema.safeParse(rawBody);
-  if (!parseResult.success) {
-    return c.json(
-      { error: "Validation failed", details: parseResult.error.flatten() },
-      400,
-    );
-  }
+  if (!id) throw new ValidationError("Invalid ID");
-  const body = parseResult.data;
+  const body = parseValidated(UpdatePostSchema, await c.req.json());
-  // Validate media count if mediaIds is provided
+  // Validate media IDs if provided
   if (body.mediaIds !== undefined) {
-    const mediaError = validateMediaCount(body.mediaIds);
-    if (mediaError) {
-      return c.json({ error: mediaError }, 400);
-    }
-    // Verify all media IDs exist
-    if (body.mediaIds.length > 0) {
-      const existing = await c.var.services.media.getByIds(body.mediaIds);
-      if (existing.length !== body.mediaIds.length) {
-        return c.json({ error: "One or more media IDs are invalid" }, 400);
-      }
-    }
+    await validateMediaIds(body.mediaIds, (ids) =>
+      c.var.services.media.getByIds(ids),
+    );
   }
-  const post = await c.var.services.posts.update(id, {
-    format: body.format,
-    title: body.title,
-    body: body.body,
-    path: body.path,
-    status: body.status,
-    featured: body.featured,
-    pinned: body.pinned,
-    url: body.url,
-    quoteText: body.quoteText,
-    rating: body.rating || undefined,
-    collectionId: body.collectionId || undefined,
-    publishedAt: body.publishedAt,
-  });
-  if (!post) return c.json({ error: "Not found" }, 404);
+  const post = assertFound(
+    await c.var.services.posts.update(id, {
+      format: body.format,
+      title: body.title,
+      body: body.body,
+      path: body.path,
+      status: body.status,
+      featured: body.featured,
+      pinned: body.pinned,
+      url: body.url,
+      quoteText: body.quoteText,
+      rating: body.rating || undefined,
+      collectionIds: body.collectionIds?.length
+        ? body.collectionIds
+        : undefined,
+      publishedAt: body.publishedAt,
+    }),
+    "Post",
+  );
   // Update media attachments if provided (including empty array to clear)
   if (body.mediaIds !== undefined) {
@@ -244,9 +224,7 @@ postsApiRoutes.put("/:id", requireAuthApi(), async (c) => {
   }
   const mediaList = await c.var.services.media.getByPostId(post.id);
-  const r2PublicUrl = c.env.R2_PUBLIC_URL;
-  const imageTransformUrl = c.env.IMAGE_TRANSFORM_URL;
-  const s3PublicUrl = c.env.S3_PUBLIC_URL;
+  const { r2PublicUrl, imageTransformUrl, s3PublicUrl } = c.var.appConfig;
   return c.json({
     ...post,
@@ -260,13 +238,13 @@ postsApiRoutes.put("/:id", requireAuthApi(), async (c) => {
 // Delete post (requires auth)
 postsApiRoutes.delete("/:id", requireAuthApi(), async (c) => {
   const id = sqid.decode(c.req.param("id"));
-  if (!id) return c.json({ error: "Invalid ID" }, 400);
+  if (!id) throw new ValidationError("Invalid ID");
   // Detach media before deleting
   await c.var.services.media.detachFromPost(id);
   const success = await c.var.services.posts.delete(id);
-  if (!success) return c.json({ error: "Not found" }, 404);
+  if (!success) throw new NotFoundError("Post");
   return c.json({ success: true });
 });

package/src/routes/api/search.ts CHANGED Viewed

@@ -4,8 +4,9 @@
 import { Hono } from "hono";
 import type { Bindings } from "../../types.js";
-import type { AppVariables } from "../../app.js";
+import type { AppVariables } from "../../types/app-context.js";
 import * as sqid from "../../lib/sqid.js";
+import { ValidationError, ExternalServiceError } from "../../lib/errors.js";
 type Env = { Bindings: Bindings; Variables: AppVariables };
@@ -16,11 +17,11 @@ searchApiRoutes.get("/", async (c) => {
   const query = c.req.query("q");
   if (!query || query.trim().length === 0) {
-    return c.json({ error: "Query parameter 'q' is required" }, 400);
+    throw new ValidationError("Query parameter 'q' is required");
   }
   if (query.length > 200) {
-    return c.json({ error: "Query too long" }, 400);
+    throw new ValidationError("Query too long");
   }
   const limitParam = c.req.query("limit");
@@ -46,8 +47,9 @@ searchApiRoutes.get("/", async (c) => {
       count: results.length,
     });
   } catch (err) {
+    if (err instanceof ValidationError) throw err;
     // eslint-disable-next-line no-console -- Error logging is intentional
     console.error("Search error:", err);
-    return c.json({ error: "Search failed" }, 500);
+    throw new ExternalServiceError("Search failed");
   }
 });

package/src/routes/api/settings.ts CHANGED Viewed

@@ -4,10 +4,12 @@
 import { Hono } from "hono";
 import type { Bindings } from "../../types.js";
-import type { AppVariables } from "../../app.js";
+import type { AppVariables } from "../../types/app-context.js";
 import { requireAuthApi } from "../../middleware/auth.js";
 import { CONFIG_FIELDS, type ConfigKey } from "../../types.js";
 import { z } from "zod";
+import { parseValidated } from "../../lib/schemas.js";
+import { ValidationError } from "../../lib/errors.js";
 type Env = { Bindings: Bindings; Variables: AppVariables };
@@ -35,17 +37,7 @@ settingsApiRoutes.get("/", requireAuthApi(), async (c) => {
 // Update settings (requires auth)
 settingsApiRoutes.put("/", requireAuthApi(), async (c) => {
-  const rawBody = await c.req.json();
-  const parseResult = UpdateSettingsSchema.safeParse(rawBody);
-  if (!parseResult.success) {
-    return c.json(
-      { error: "Validation failed", details: parseResult.error.flatten() },
-      400,
-    );
-  }
-  const updates = parseResult.data;
+  const updates = parseValidated(UpdateSettingsSchema, await c.req.json());
   // Filter to only editable keys
   const filteredUpdates: Partial<Record<ConfigKey, string>> = {};
@@ -60,21 +52,13 @@ settingsApiRoutes.put("/", requireAuthApi(), async (c) => {
   }
   if (rejectedKeys.length > 0 && Object.keys(filteredUpdates).length === 0) {
-    return c.json(
-      {
-        error: "None of the provided keys are editable",
-        rejectedKeys,
-      },
-      400,
-    );
+    throw new ValidationError("None of the provided keys are editable", {
+      rejectedKeys,
+    });
   }
   if (Object.keys(filteredUpdates).length > 0) {
-    // Settings service expects SettingsKey, but our ConfigKeys that are
-    // editable (SITE_NAME, SITE_DESCRIPTION, SITE_LANGUAGE) are valid SettingsKeys
-    for (const [key, value] of Object.entries(filteredUpdates)) {
-      await c.var.services.settings.set(key as never, value as string);
-    }
+    await c.var.services.settings.setMany(filteredUpdates as never);
   }
   // Return updated state

package/src/routes/api/upload.ts CHANGED Viewed

@@ -7,9 +7,9 @@
 import { Hono, type Context } from "hono";
 import { html } from "hono/html";
-import { uuidv7 } from "uuidv7";
+import { msg } from "@lingui/core/macro";
 import type { Bindings } from "../../types.js";
-import type { AppVariables } from "../../app.js";
+import type { AppVariables } from "../../types/app-context.js";
 import { requireAuthApi } from "../../middleware/auth.js";
 import {
   getMediaUrl,
@@ -17,6 +17,9 @@ import {
   getPublicUrlForProvider,
 } from "../../lib/image.js";
 import { sse } from "../../lib/sse.js";
+import { validateUploadFile, generateStorageKey } from "../../lib/upload.js";
+import { assertFound } from "../../lib/errors.js";
+import { getI18n } from "../../i18n/index.js";
 type Env = { Bindings: Bindings; Variables: AppVariables };
@@ -130,56 +133,48 @@ function sseUploadError(c: Context<Env>, message: string): Response {
 // Upload a file
 uploadApiRoutes.post("/", async (c) => {
+  const i18n = getI18n(c);
   const storage = c.var.storage;
   if (!storage) {
+    const errorText = i18n._(
+      msg({
+        message: "Storage not configured",
+        comment: "@context: Error when file storage is not set up",
+      }),
+    );
     if (wantsSSE(c)) {
-      return sseUploadError(c, "Storage not configured");
+      return sseUploadError(c, errorText);
     }
-    return c.json({ error: "Storage not configured" }, 500);
+    return c.json({ error: errorText }, 500);
   }
   const formData = await c.req.formData();
   const file = formData.get("file") as File | null;
   if (!file) {
+    const errorText = i18n._(
+      msg({
+        message: "No file provided",
+        comment: "@context: Error when no file was selected for upload",
+      }),
+    );
     if (wantsSSE(c)) {
-      return sseUploadError(c, "No file provided");
-    }
-    return c.json({ error: "No file provided" }, 400);
-  }
-  // Validate file type
-  const allowedTypes = [
-    "image/jpeg",
-    "image/png",
-    "image/gif",
-    "image/webp",
-    "image/svg+xml",
-  ];
-  if (!allowedTypes.includes(file.type)) {
-    if (wantsSSE(c)) {
-      return sseUploadError(c, "File type not allowed");
+      return sseUploadError(c, errorText);
     }
-    return c.json({ error: "File type not allowed" }, 400);
+    return c.json({ error: errorText }, 400);
   }
-  // Validate file size (max 10MB)
-  const maxSize = 10 * 1024 * 1024;
-  if (file.size > maxSize) {
+  // Validate file type and size
+  const uploadError = validateUploadFile(file);
+  if (uploadError) {
     if (wantsSSE(c)) {
-      return sseUploadError(c, "File too large (max 10MB)");
+      return sseUploadError(c, uploadError);
     }
-    return c.json({ error: "File too large (max 10MB)" }, 400);
+    return c.json({ error: uploadError }, 400);
   }
   // Generate unique filename using UUIDv7
-  const ext = file.name.split(".").pop() || "bin";
-  const id = uuidv7();
-  const date = new Date();
-  const year = date.getUTCFullYear();
-  const month = String(date.getUTCMonth() + 1).padStart(2, "0");
-  const filename = `${id}.${ext}`;
-  const storageKey = `media/${year}/${month}/${filename}`;
+  const { id, filename, storageKey } = generateStorageKey(file.name);
   try {
     // Upload to storage
@@ -195,21 +190,20 @@ uploadApiRoutes.post("/", async (c) => {
       mimeType: file.type,
       size: file.size,
       storageKey,
-      provider: c.env.STORAGE_DRIVER || "r2",
+      provider: c.var.appConfig.storageDriver,
     });
     // SSE response for Datastar
     if (wantsSSE(c)) {
-      const provider = c.env.STORAGE_DRIVER || "r2";
       const mediaPublicUrl = getPublicUrlForProvider(
-        provider,
-        c.env.R2_PUBLIC_URL,
-        c.env.S3_PUBLIC_URL,
+        c.var.appConfig.storageDriver,
+        c.var.appConfig.r2PublicUrl,
+        c.var.appConfig.s3PublicUrl,
       );
       const cardHtml = renderMediaCard(
         media,
         mediaPublicUrl,
-        c.env.IMAGE_TRANSFORM_URL,
+        c.var.appConfig.imageTransformUrl,
       );
       return sse(c, async (stream) => {
@@ -218,16 +212,22 @@ uploadApiRoutes.post("/", async (c) => {
           mode: "outer",
           selector: "#upload-placeholder",
         });
-        await stream.toast("Upload successful!");
+        await stream.toast(
+          i18n._(
+            msg({
+              message: "Upload successful!",
+              comment: "@context: Toast after successful file upload",
+            }),
+          ),
+        );
       });
     }
     // JSON response for API clients
-    const provider = c.env.STORAGE_DRIVER || "r2";
     const mediaPublicUrl = getPublicUrlForProvider(
-      provider,
-      c.env.R2_PUBLIC_URL,
-      c.env.S3_PUBLIC_URL,
+      c.var.appConfig.storageDriver,
+      c.var.appConfig.r2PublicUrl,
+      c.var.appConfig.s3PublicUrl,
     );
     const publicUrl = getMediaUrl(storageKey, mediaPublicUrl);
     return c.json({
@@ -241,22 +241,27 @@ uploadApiRoutes.post("/", async (c) => {
     // eslint-disable-next-line no-console -- Error logging is intentional
     console.error("Upload error:", err);
+    const errorText = i18n._(
+      msg({
+        message: "Upload failed. Please try again.",
+        comment: "@context: Error when file upload fails",
+      }),
+    );
     if (wantsSSE(c)) {
       return sse(c, async (stream) => {
         await stream.remove("#upload-placeholder");
-        await stream.toast("Upload failed. Please try again.", "error");
+        await stream.toast(errorText, "error");
       });
     }
-    return c.json({ error: "Upload failed" }, 500);
+    return c.json({ error: errorText }, 500);
   }
 });
 // List uploaded files (JSON only)
 uploadApiRoutes.get("/", async (c) => {
   const limit = parseInt(c.req.query("limit") ?? "50", 10);
-  const mediaList = await c.var.services.media.list(limit);
-  const r2PublicUrl = c.env.R2_PUBLIC_URL;
-  const s3PublicUrl = c.env.S3_PUBLIC_URL;
+  const mediaList = await c.var.services.media.list({ limit });
+  const { r2PublicUrl, s3PublicUrl } = c.var.appConfig;
   return c.json({
     media: mediaList.map((m) => ({
@@ -276,10 +281,7 @@ uploadApiRoutes.get("/", async (c) => {
 // Delete a file
 uploadApiRoutes.delete("/:id", async (c) => {
   const id = c.req.param("id");
-  const media = await c.var.services.media.getById(id);
-  if (!media) {
-    return c.json({ error: "Not found" }, 404);
-  }
+  const media = assertFound(await c.var.services.media.getById(id), "Media");
   // Delete from storage
   const storage = c.var.storage;