@seasonkoh/webaz 0.1.7 → 0.1.9

package/dist/pwa/routes/claim-voting.js

@@ -0,0 +1,114 @@
+export function registerClaimVotingRoutes(app, deps) {
+    const { db, auth, isEligibleClaimVerifier, generateId, settleProductClaim, settleGenericClaim, PRODUCT_CLAIM_VERIFIERS_NEEDED, REVIEW_VERIFIERS_NEEDED } = deps;
+    const wire = (cfg) => {
+        const { vertical, taskTable, voteTable, taskAlias: a, partyIdCol, votePrefix, votesNeeded } = cfg;
+        // GET /api/<vertical>-claims/available
+        app.get(`/api/${vertical}-claims/available`, (req, res) => {
+            const user = auth(req, res);
+            if (!user)
+                return;
+            const elig = isEligibleClaimVerifier(user.id);
+            if (!elig.ok)
+                return void res.status(403).json({ error: elig.reason, eligible: false });
+            const sql = `
+        SELECT ${cfg.availableBaseCols},
+               (SELECT COUNT(*) FROM ${voteTable} WHERE claim_id = ${a}.id) as votes_count
+               ${cfg.availableExtraSelect}
+        FROM ${taskTable} ${a}
+        ${cfg.availableJoin}
+        WHERE ${a}.status = 'open'
+          AND ${a}.claimant_id != ? AND ${a}.${partyIdCol} != ?
+          AND NOT EXISTS (SELECT 1 FROM ${voteTable} WHERE claim_id = ${a}.id AND verifier_id = ?)
+          AND (SELECT COUNT(*) FROM ${voteTable} WHERE claim_id = ${a}.id) < ${votesNeeded}
+        ORDER BY ${a}.created_at ASC LIMIT 50
+      `;
+            const rows = db.prepare(sql).all(user.id, user.id, user.id);
+            res.json({ items: rows, eligible: true });
+        });
+        // POST /api/<vertical>-claims/:id/vote
+        app.post(`/api/${vertical}-claims/:id/vote`, (req, res) => {
+            const user = auth(req, res);
+            if (!user)
+                return;
+            const elig = isEligibleClaimVerifier(user.id);
+            if (!elig.ok)
+                return void res.status(403).json({ error: elig.reason });
+            const claim = db.prepare(`SELECT * FROM ${taskTable} WHERE id = ?`).get(req.params.id);
+            if (!claim)
+                return void res.status(404).json({ error: '声明不存在' });
+            if (claim.status !== 'open')
+                return void res.status(400).json({ error: `状态 ${claim.status} 不接受投票` });
+            if (claim.claimant_id === user.id || claim[partyIdCol] === user.id) {
+                return void res.status(403).json({ error: vertical === 'product' ? (claim.claimant_id === user.id ? '发起人不可对自己的声明投票' : '商品卖家不可对自己被诉声明投票') : '当事人不可投票' });
+            }
+            const vote = String(req.body?.vote || '').trim();
+            if (!['upheld', 'dismissed', 'insufficient'].includes(vote)) {
+                return void res.status(400).json({ error: `vote 须为 upheld / dismissed / insufficient` });
+            }
+            const dup = db.prepare(`SELECT id FROM ${voteTable} WHERE claim_id = ? AND verifier_id = ?`).get(req.params.id, user.id);
+            if (dup)
+                return void res.status(409).json({ error: '已投过票' });
+            const votesNow = db.prepare(`SELECT COUNT(*) as n FROM ${voteTable} WHERE claim_id = ?`).get(req.params.id).n;
+            if (votesNow >= votesNeeded)
+                return void res.status(409).json({ error: '已收齐共识票数' });
+            const evidence_uri = req.body?.evidence_uri ? String(req.body.evidence_uri).trim().slice(0, 500) : null;
+            const note = req.body?.note ? String(req.body.note).trim().slice(0, 500) : null;
+            const voteId = generateId(votePrefix);
+            try {
+                db.prepare(`INSERT INTO ${voteTable} (id, claim_id, verifier_id, vote, evidence_uri, note) VALUES (?,?,?,?,?,?)`)
+                    .run(voteId, req.params.id, user.id, vote, evidence_uri, note);
+            }
+            catch {
+                return void res.status(409).json({ error: '投票失败（可能并发重复）' });
+            }
+            const after = db.prepare(`SELECT COUNT(*) as n FROM ${voteTable} WHERE claim_id = ?`).get(req.params.id).n;
+            let settlement = null;
+            if (after >= votesNeeded) {
+                db.prepare(`UPDATE ${taskTable} SET status = 'sealed' WHERE id = ? AND status = 'open'`).run(req.params.id);
+                settlement = cfg.useProductSettle ? settleProductClaim(req.params.id) : settleGenericClaim(taskTable, voteTable, req.params.id);
+            }
+            res.json({ success: true, votes_collected: after, sealed: after >= votesNeeded, settlement });
+        });
+    };
+    // 5 个垂类配置
+    wire({
+        vertical: 'product', taskTable: 'product_claim_tasks', voteTable: 'product_claim_votes',
+        taskAlias: 'pct', partyIdCol: 'seller_id', votePrefix: 'pcv',
+        votesNeeded: PRODUCT_CLAIM_VERIFIERS_NEEDED, useProductSettle: true,
+        availableBaseCols: 'pct.id, pct.product_id, pct.claim_target, pct.claim_text, pct.evidence_uri, pct.deadline_at, pct.created_at',
+        availableExtraSelect: ', p.title as product_title',
+        availableJoin: 'JOIN products p ON p.id = pct.product_id',
+    });
+    wire({
+        vertical: 'review', taskTable: 'review_claim_tasks', voteTable: 'review_claim_votes',
+        taskAlias: 'rct', partyIdCol: 'reviewer_id', votePrefix: 'rcv',
+        votesNeeded: REVIEW_VERIFIERS_NEEDED, useProductSettle: false,
+        availableBaseCols: 'rct.id, rct.review_type, rct.review_id, rct.product_id, rct.claim_target, rct.claim_text, rct.evidence_uri, rct.deadline_at, rct.created_at',
+        availableExtraSelect: '',
+        availableJoin: '',
+    });
+    wire({
+        vertical: 'secondhand', taskTable: 'secondhand_claim_tasks', voteTable: 'secondhand_claim_votes',
+        taskAlias: 'sct', partyIdCol: 'seller_id', votePrefix: 'scv',
+        votesNeeded: 3, useProductSettle: false,
+        availableBaseCols: 'sct.id, sct.sh_item_id, sct.claim_target, sct.claim_text, sct.evidence_uri, sct.deadline_at, sct.created_at',
+        availableExtraSelect: ', si.title as item_title',
+        availableJoin: 'JOIN secondhand_items si ON si.id = sct.sh_item_id',
+    });
+    wire({
+        vertical: 'auction', taskTable: 'auction_claim_tasks', voteTable: 'auction_claim_votes',
+        taskAlias: 'act', partyIdCol: 'seller_id', votePrefix: 'acv',
+        votesNeeded: 3, useProductSettle: false,
+        availableBaseCols: 'act.id, act.auction_id, act.claim_target, act.claim_text, act.evidence_uri, act.deadline_at, act.created_at',
+        availableExtraSelect: ', a.title as auction_title',
+        availableJoin: 'JOIN auctions a ON a.id = act.auction_id',
+    });
+    wire({
+        vertical: 'wish', taskTable: 'wish_claim_tasks', voteTable: 'wish_claim_votes',
+        taskAlias: 'wct', partyIdCol: 'wisher_id', votePrefix: 'wcv',
+        votesNeeded: 3, useProductSettle: false,
+        availableBaseCols: 'wct.id, wct.wish_id, wct.claim_target, wct.claim_text, wct.evidence_uri, wct.deadline_at, wct.created_at',
+        availableExtraSelect: ', w.title as wish_title',
+        availableJoin: 'JOIN wishes w ON w.id = wct.wish_id',
+    });
+}

package/dist/pwa/routes/claim-withdrawals.js

@@ -0,0 +1,20 @@
+export function registerClaimWithdrawalsRoutes(app, deps) {
+    const { auth, withdrawClaim } = deps;
+    const mk = (path, taskTable, voteTable) => {
+        app.delete(path, (req, res) => {
+            const user = auth(req, res);
+            if (!user)
+                return;
+            const id = Array.isArray(req.params.id) ? req.params.id[0] : req.params.id;
+            const r = withdrawClaim(taskTable, voteTable, id, user.id);
+            if (!r.ok)
+                return void res.status(400).json({ error: r.error });
+            res.json({ success: true, stake_refunded: true });
+        });
+    };
+    mk('/api/product-claims/:id', 'product_claim_tasks', 'product_claim_votes');
+    mk('/api/review-claims/:id', 'review_claim_tasks', 'review_claim_votes');
+    mk('/api/secondhand-claims/:id', 'secondhand_claim_tasks', 'secondhand_claim_votes');
+    mk('/api/auction-claims/:id', 'auction_claim_tasks', 'auction_claim_votes');
+    mk('/api/wish-claims/:id', 'wish_claim_tasks', 'wish_claim_votes');
+}

package/dist/pwa/routes/coupons.js

@@ -0,0 +1,165 @@
+/** 计算 coupon 适用 + 折扣。跨域调用：orders 下单流程会用。 */
+export function applyCouponToOrder(db, couponCode, sellerId, productId, totalAmount) {
+    const code = couponCode.trim().toUpperCase();
+    if (!code)
+        return { ok: false, error: '空优惠码' };
+    // scope='all' 平台券由 admin 创建（seller_id = admin id），不能用 product 的 seller_id 匹配
+    // 先查 shop/product 范围（属于该 seller），没找到再查 'all' 全局
+    let coupon = db.prepare(`SELECT * FROM coupons WHERE seller_id = ? AND code = ? AND is_active = 1 AND scope IN ('shop', 'product')`).get(sellerId, code);
+    if (!coupon) {
+        coupon = db.prepare(`SELECT * FROM coupons WHERE code = ? AND is_active = 1 AND scope = 'all' LIMIT 1`).get(code);
+    }
+    if (!coupon)
+        return { ok: false, error: '优惠码无效或已失效' };
+    const now = new Date();
+    if (coupon.starts_at && new Date(coupon.starts_at) > now)
+        return { ok: false, error: '优惠码未到生效时间' };
+    if (coupon.expires_at && new Date(coupon.expires_at) < now)
+        return { ok: false, error: '优惠码已过期' };
+    const maxUses = Number(coupon.max_uses || 0);
+    if (maxUses > 0 && Number(coupon.uses_count || 0) >= maxUses)
+        return { ok: false, error: '优惠码已用完' };
+    const minAmount = Number(coupon.min_order_amount || 0);
+    if (totalAmount < minAmount)
+        return { ok: false, error: `订单需满 ${minAmount} WAZ 才可用此券` };
+    if (coupon.scope === 'product' && coupon.scope_id !== productId) {
+        return { ok: false, error: '此优惠码不适用本商品' };
+    }
+    // shop / all 不需要 scope_id 检查
+    let discount = 0;
+    if (coupon.discount_type === 'percentage') {
+        discount = Math.round(totalAmount * Number(coupon.discount_value) / 100 * 100) / 100;
+    }
+    else if (coupon.discount_type === 'fixed') {
+        discount = Math.min(Number(coupon.discount_value), totalAmount);
+    }
+    return { ok: true, coupon, discount };
+}
+export function registerCouponsRoutes(app, deps) {
+    const { db, generateId, auth, isTrustedRole, safeRoles, errorRes } = deps;
+    app.post('/api/coupons', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        if (user.role !== 'seller' && !safeRoles(user).includes('seller')) {
+            return void res.status(403).json({ error: '仅卖家可发券' });
+        }
+        const { code, scope, scope_id, discount_type, discount_value, min_order_amount, max_uses, starts_at, expires_at } = req.body || {};
+        const codeStr = String(code || '').trim().toUpperCase();
+        if (codeStr.length < 3 || codeStr.length > 24)
+            return void res.status(400).json({ error: 'code 长度需 3-24（大写字母数字）' });
+        if (!/^[A-Z0-9_-]+$/.test(codeStr))
+            return void res.status(400).json({ error: 'code 仅允许大写字母 / 数字 / _ -' });
+        if (!['product', 'shop', 'all'].includes(scope))
+            return void res.status(400).json({ error: 'scope 须为 product / shop / all' });
+        if (scope === 'product' && !scope_id)
+            return void res.status(400).json({ error: 'product scope 需 scope_id' });
+        if (!['percentage', 'fixed'].includes(discount_type))
+            return void res.status(400).json({ error: 'discount_type 须为 percentage / fixed' });
+        const dv = Number(discount_value);
+        if (!Number.isFinite(dv) || dv <= 0)
+            return void res.status(400).json({ error: 'discount_value 须为正数' });
+        if (discount_type === 'percentage' && dv > 90)
+            return void res.status(400).json({ error: 'percentage 最高 90' });
+        if (scope === 'product') {
+            const p = db.prepare('SELECT seller_id FROM products WHERE id = ?').get(scope_id);
+            if (!p)
+                return void res.status(404).json({ error: '商品不存在' });
+            if (p.seller_id !== user.id)
+                return void res.status(403).json({ error: '仅能为自己的商品发券' });
+        }
+        // 'all' scope 仅 admin 可创建
+        if (scope === 'all' && user.role !== 'admin' && !safeRoles(user).includes('admin')) {
+            return void res.status(403).json({ error: 'all-scope 优惠码仅平台可发' });
+        }
+        const id = generateId('cpn');
+        try {
+            db.prepare(`INSERT INTO coupons (id, seller_id, code, scope, scope_id, discount_type, discount_value, min_order_amount, max_uses, starts_at, expires_at) VALUES (?,?,?,?,?,?,?,?,?,?,?)`)
+                .run(id, user.id, codeStr, scope, scope_id || null, discount_type, dv, Number(min_order_amount) || 0, Number(max_uses) || 0, starts_at || null, expires_at || null);
+        }
+        catch {
+            return void res.status(409).json({ error: '此 code 已存在（每个卖家 code 唯一）' });
+        }
+        res.json({ success: true, id, code: codeStr });
+    });
+    // buyer 视角：全平台 + 已购卖家店铺/单品券 + 历史
+    app.get('/api/coupons/available', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        if (isTrustedRole(user))
+            return void errorRes(res, 403, 'TRUSTED_ROLE_NO_TRADE', '受信角色无购物功能');
+        const purchasedSellers = db.prepare(`SELECT DISTINCT seller_id FROM orders WHERE buyer_id = ?`).all(user.id);
+        const sellerIds = purchasedSellers.map(r => r.seller_id);
+        const placeholders = sellerIds.length > 0 ? sellerIds.map(() => '?').join(',') : '';
+        const sellerCondition = sellerIds.length > 0 ? `OR (c.seller_id IN (${placeholders}) AND c.scope IN ('shop','product'))` : '';
+        const sql = `
+      SELECT c.id, c.code, c.scope, c.scope_id, c.discount_type, c.discount_value,
+             c.min_order_amount, c.max_uses, c.uses_count, c.starts_at, c.expires_at,
+             u.name as seller_name, u.handle as seller_handle,
+             p.title as product_title
+      FROM coupons c
+      LEFT JOIN users u ON u.id = c.seller_id
+      LEFT JOIN products p ON p.id = c.scope_id AND c.scope = 'product'
+      WHERE c.is_active = 1
+        AND (c.expires_at IS NULL OR c.expires_at > datetime('now'))
+        AND (c.starts_at IS NULL OR c.starts_at <= datetime('now'))
+        AND (c.max_uses = 0 OR c.uses_count < c.max_uses)
+        AND (c.scope = 'all' ${sellerCondition})
+      ORDER BY
+        CASE c.scope WHEN 'product' THEN 1 WHEN 'shop' THEN 2 ELSE 3 END,
+        c.expires_at ASC NULLS LAST,
+        c.created_at DESC
+      LIMIT 100
+    `;
+        const rows = db.prepare(sql).all(...sellerIds);
+        const history = db.prepare(`
+      SELECT o.id as order_id, o.created_at, o.coupon_discount,
+             c.code, c.scope, c.discount_type, c.discount_value,
+             p.title as product_title
+      FROM orders o
+      JOIN coupons c ON c.id = o.coupon_id
+      JOIN products p ON p.id = o.product_id
+      WHERE o.buyer_id = ? AND o.coupon_id IS NOT NULL
+      ORDER BY o.created_at DESC LIMIT 50
+    `).all(user.id);
+        res.json({ available: rows, history });
+    });
+    app.get('/api/coupons/mine', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const rows = db.prepare(`
+      SELECT * FROM coupons WHERE seller_id = ? ORDER BY created_at DESC LIMIT 100
+    `).all(user.id);
+        res.json({ items: rows });
+    });
+    app.patch('/api/coupons/:id', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const coupon = db.prepare('SELECT * FROM coupons WHERE id = ? AND seller_id = ?').get(req.params.id, user.id);
+        if (!coupon)
+            return void res.status(404).json({ error: '优惠码不存在或无权限' });
+        const { is_active, expires_at, max_uses } = req.body || {};
+        const sets = [];
+        const args = [];
+        if (is_active !== undefined) {
+            sets.push('is_active = ?');
+            args.push(is_active ? 1 : 0);
+        }
+        if (expires_at !== undefined) {
+            sets.push('expires_at = ?');
+            args.push(expires_at);
+        }
+        if (max_uses !== undefined) {
+            sets.push('max_uses = ?');
+            args.push(Number(max_uses) || 0);
+        }
+        if (sets.length === 0)
+            return void res.status(400).json({ error: '无可更新字段' });
+        args.push(req.params.id);
+        db.prepare(`UPDATE coupons SET ${sets.join(', ')} WHERE id = ?`).run(...args);
+        res.json({ success: true });
+    });
+}

package/dist/pwa/routes/dashboards.js

@@ -0,0 +1,99 @@
+export function registerDashboardsRoutes(app, deps) {
+    const { db, auth } = deps;
+    app.get('/api/tokenomics/status', (_req, res) => {
+        const gf = db.prepare("SELECT pool_balance FROM global_fund WHERE id = 1").get();
+        const poolBalance = Number(gf?.pool_balance ?? 0);
+        const histRow = db.prepare(`
+      SELECT AVG(deposited_this_period) as avg_dep
+      FROM settlement_periods
+      WHERE status = 'completed' AND started_at > datetime('now', '-28 days')
+    `).get();
+        const historyAverage = Math.round(Number(histRow?.avg_dep ?? 0) * 100) / 100;
+        let healthLevel = 'cold_start';
+        let distributionCap = 1.0;
+        if (historyAverage > 0) {
+            const healthRatio = poolBalance / historyAverage;
+            distributionCap = Math.max(1.0, Math.min(1.6, healthRatio));
+            if (healthRatio >= 2.0)
+                healthLevel = 'healthy';
+            else if (healthRatio >= 0.5)
+                healthLevel = 'normal';
+            else if (healthRatio >= 0.2)
+                healthLevel = 'strained';
+            else
+                healthLevel = 'critical';
+        }
+        const lastSettled = db.prepare(`
+      SELECT effective_unit_cash, payout_rate, started_at FROM settlement_periods
+      WHERE status = 'completed' ORDER BY started_at DESC LIMIT 1
+    `).get();
+        const recentPaused = db.prepare(`
+      SELECT period_id, started_at, note FROM settlement_periods
+      WHERE status = 'paused_low_water' AND started_at > datetime('now', '-7 days')
+      ORDER BY started_at DESC LIMIT 1
+    `).get();
+        res.json({
+            pool_balance: poolBalance,
+            history_average: historyAverage,
+            health_ratio: historyAverage > 0 ? Math.round(poolBalance / historyAverage * 100) / 100 : null,
+            paused_recent: recentPaused || null,
+            health_level: healthLevel,
+            distribution_cap: Math.round(distributionCap * 100) / 100,
+            last_settlement: lastSettled || null,
+        });
+    });
+    app.get('/api/shares/dashboard', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const userId = user.id;
+        const bought = db.prepare(`
+      SELECT
+        o.id as order_id,
+        o.updated_at as completed_at,
+        p.id, p.title, p.price, p.commission_rate, p.images, p.category,
+        (SELECT COUNT(*) FROM shareables s WHERE s.owner_id = ? AND s.related_order_id = o.id AND s.type = 'note' AND s.status = 'active') as note_count,
+        (SELECT id FROM shareables s WHERE s.owner_id = ? AND s.related_order_id = o.id AND s.type = 'note' AND s.status = 'active' LIMIT 1) as first_note_id,
+        (SELECT COUNT(*) FROM shareables s WHERE s.owner_id = ? AND s.related_product_id = p.id AND s.status = 'active') as product_share_count,
+        (SELECT COUNT(*) FROM anchor_registry ar WHERE ar.owner_id = ? AND ar.target_kind = 'product' AND ar.target_id = p.id AND ar.status = 'active') as anchor_count,
+        (SELECT COUNT(DISTINCT o2.id) FROM orders o2
+           JOIN product_share_attribution psa ON psa.recipient_id = o2.buyer_id AND psa.product_id = o2.product_id
+           JOIN shareables s2 ON s2.id = psa.shareable_id
+           WHERE s2.owner_id = ? AND s2.related_product_id = p.id AND o2.status = 'completed') as induced_orders
+      FROM orders o
+      JOIN products p ON p.id = o.product_id
+      WHERE o.buyer_id = ? AND o.status = 'completed'
+      ORDER BY o.updated_at DESC
+      LIMIT 50
+    `).all(userId, userId, userId, userId, userId, userId);
+        const highComm = db.prepare(`
+      SELECT p.id, p.title, p.price, p.commission_rate, p.images, p.category,
+        (SELECT COUNT(*) FROM orders o WHERE o.product_id = p.id AND o.status = 'completed') as sales_count
+      FROM products p
+      WHERE p.status = 'active'
+        AND p.commission_rate > 0
+        AND p.seller_id != ?
+        AND p.id NOT IN (SELECT product_id FROM orders WHERE buyer_id = ? AND status = 'completed')
+      ORDER BY p.commission_rate DESC, sales_count DESC
+      LIMIT 10
+    `).all(userId, userId);
+        const myCreations = db.prepare(`
+      SELECT s.id, s.type, s.title, s.external_platform, s.external_url,
+        s.related_product_id, s.related_order_id, s.related_anchor, p.title as product_title,
+        s.click_count, s.like_count, s.created_at,
+        (SELECT COUNT(DISTINCT o.id) FROM orders o
+           JOIN product_share_attribution psa ON psa.recipient_id = o.buyer_id AND psa.product_id = o.product_id
+           WHERE psa.shareable_id = s.id AND o.status = 'completed') as induced_orders
+      FROM shareables s
+      LEFT JOIN products p ON p.id = s.related_product_id
+      WHERE s.owner_id = ? AND s.status = 'active'
+      ORDER BY s.created_at DESC
+      LIMIT 30
+    `).all(userId);
+        res.json({
+            bought_products: bought,
+            high_commission_products: highComm,
+            my_creations: myCreations,
+        });
+    });
+}