@seasonkoh/webaz 0.1.8 → 0.1.9

package/dist/pwa/routes/orders-create.js

@@ -0,0 +1,339 @@
+export function registerOrdersCreateRoutes(app, deps) {
+    const { db, auth, isTrustedRole, generateId, generateRecipientCode, DONATION_VALID_PCTS, INTERNAL_AUDITOR_ID, addHours, getActiveFlashSale, applyCouponToOrder, getProtocolParam, getProductShareChain, isAllowedSponsor, checkStockAndMaybeDelist, auditSponsorChainCross, appendOrderEvent, transition, notifyTransition, shouldAutoAccept, ensureCharityRep, broadcastSystemEvent } = deps;
+    app.post('/api/orders', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        // P0 fix: 受信角色不可下单（铁律）
+        if (isTrustedRole(user))
+            return void res.status(403).json({ error: '受信角色不可参与交易', error_code: 'TRUSTED_ROLE_NO_TRADE' });
+        if (user.role !== 'buyer')
+            return void res.json({ error: '仅买家可下单' });
+        // 2026-05-23 P0 audit fix 2.1：agent_attestations spend_cap 强制
+        const apiKey = req.headers.authorization?.replace('Bearer ', '');
+        if (apiKey) {
+            const cap = db.prepare(`SELECT spend_cap_per_order, spend_cap_daily FROM agent_attestations
+        WHERE api_key = ? AND user_id = ? AND revoked_at IS NULL`).get(apiKey, user.id);
+            if (cap) {
+                const estQty = Math.max(1, Math.floor(Number(req.body?.quantity ?? 1)));
+                const estPrice = Number(req.body?.expected_price ?? 0);
+                const estTotal = estPrice * estQty;
+                if (cap.spend_cap_per_order != null && estTotal > 0 && estTotal > cap.spend_cap_per_order) {
+                    return void res.status(403).json({
+                        error: `本笔订单 ${estTotal} WAZ 超过 agent 单笔上限 ${cap.spend_cap_per_order} WAZ（用户设定）`,
+                        error_code: 'AGENT_SPEND_CAP_PER_ORDER',
+                        spend_cap: cap.spend_cap_per_order,
+                    });
+                }
+                if (cap.spend_cap_daily != null) {
+                    const todaySpent = db.prepare(`SELECT COALESCE(SUM(total_amount), 0) as t
+            FROM orders WHERE buyer_id = ? AND created_at > datetime('now', '-24 hours') AND status != 'cancelled'`)
+                        .get(user.id).t;
+                    if (todaySpent + estTotal > cap.spend_cap_daily) {
+                        return void res.status(403).json({
+                            error: `24h 累计 ${todaySpent}+${estTotal} 超 agent 日上限 ${cap.spend_cap_daily} WAZ（用户设定）`,
+                            error_code: 'AGENT_SPEND_CAP_DAILY',
+                            spend_cap: cap.spend_cap_daily, today_spent: todaySpent,
+                        });
+                    }
+                }
+            }
+        }
+        const { product_id, shipping_address, notes, session_token, coupon_code, delivery_window, variant_id, expected_price, 
+        // C-2: 礼物订单字段
+        is_gift, gift_recipient_name, gift_recipient_phone, gift_message, 
+        // C-3: 订单保险
+        buy_insurance, 
+        // B2 隐私购物：买家选匿名 → 生成 PR-XXXX 代号，shipping_address 应是中介点
+        anonymous_recipient, 
+        // B5 主动捐赠
+        donation_pct } = req.body;
+        if (!product_id || !shipping_address)
+            return void res.json({ error: '请提供商品ID和收货地址' });
+        const anonymousFlag = anonymous_recipient ? 1 : 0;
+        const recipientCode = anonymousFlag === 1 ? generateRecipientCode() : null;
+        const donationPctNum = Number(donation_pct || 0);
+        if (!DONATION_VALID_PCTS.has(donationPctNum)) {
+            return void res.json({ error: 'donation_pct 必须是 0 / 0.005 / 0.01 / 0.02 / 0.05 之一', error_code: 'DONATION_PCT_INVALID' });
+        }
+        // 数量校验 + 限购
+        const MAX_PER_ORDER = 10;
+        const reqQty = Math.floor(Number(req.body?.quantity ?? 1));
+        if (!Number.isFinite(reqQty) || reqQty < 1)
+            return void res.json({ error: '数量需 ≥ 1', error_code: 'QTY_INVALID' });
+        if (reqQty > MAX_PER_ORDER)
+            return void res.json({ error: `单笔订单最多 ${MAX_PER_ORDER} 件（限购）`, error_code: 'QTY_EXCEEDS_LIMIT', max_per_order: MAX_PER_ORDER });
+        // C-2: 礼物订单参数校验
+        let giftRecipientName = null;
+        let giftRecipientPhone = null;
+        let giftMessage = null;
+        if (is_gift) {
+            if (!gift_recipient_name || String(gift_recipient_name).trim().length < 1)
+                return void res.json({ error: '礼物订单需填收件人姓名' });
+            giftRecipientName = String(gift_recipient_name).slice(0, 60);
+            giftRecipientPhone = gift_recipient_phone ? String(gift_recipient_phone).slice(0, 30) : null;
+            giftMessage = gift_message ? String(gift_message).slice(0, 300) : null;
+        }
+        // Wave B-5: 校验配送时间窗（可选）
+        const VALID_DAY = new Set(['weekday', 'weekend', 'any']);
+        const VALID_TIME = new Set(['morning', 'afternoon', 'evening', 'any']);
+        let deliveryWindowJson = null;
+        if (delivery_window && typeof delivery_window === 'object') {
+            const dt = String(delivery_window.day_type || 'any');
+            const tr = String(delivery_window.time_range || 'any');
+            const fl = delivery_window.flexible !== false;
+            if (!VALID_DAY.has(dt) || !VALID_TIME.has(tr)) {
+                return void res.json({ error: '配送窗口参数无效' });
+            }
+            if (dt !== 'any' || tr !== 'any') {
+                deliveryWindowJson = JSON.stringify({ day_type: dt, time_range: tr, flexible: fl });
+            }
+        }
+        const product = db.prepare(`SELECT p.*, u.id as seller_uid FROM products p
+      JOIN users u ON p.seller_id = u.id WHERE p.id = ? AND p.status = 'active'`).get(product_id);
+        if (!product)
+            return void res.json({ error: '商品不存在或已下架' });
+        let variant = null;
+        if (Number(product.has_variants) === 1) {
+            if (!variant_id)
+                return void res.json({ error: '该商品需选择规格', error_code: 'VARIANT_REQUIRED' });
+            const v = db.prepare(`SELECT id, price_override, stock, options_json
+        FROM product_variants WHERE id = ? AND product_id = ? AND is_active = 1`)
+                .get(variant_id, product_id);
+            if (!v)
+                return void res.json({ error: '规格不存在或已下架' });
+            if (Number(v.stock) < reqQty)
+                return void res.json({ error: `该规格库存不足（剩 ${v.stock}，需 ${reqQty}）`, error_code: 'STOCK_INSUFFICIENT', stock: v.stock });
+            variant = v;
+            if (v.price_override != null)
+                product.price = Number(v.price_override);
+        }
+        else if (variant_id) {
+            return void res.json({ error: '该商品无规格选项，请勿传 variant_id' });
+        }
+        else {
+            if (product.stock < reqQty)
+                return void res.json({ error: `库存不足（剩 ${product.stock}，需 ${reqQty}）`, error_code: 'STOCK_INSUFFICIENT', stock: product.stock });
+        }
+        // Wave D-4: 限时促销 — 命中则覆盖 product.price 为 sale_price
+        const flashSale = getActiveFlashSale(product.id, variant ? variant.id : null);
+        if (flashSale) {
+            product.price = Number(flashSale.sale_price);
+        }
+        // Wave D-4 P0-1: 价格保护（expected_price 不一致 → 409）
+        if (expected_price != null) {
+            const expected = Number(expected_price);
+            if (Number.isFinite(expected) && Math.abs(expected - Number(product.price)) > 0.001) {
+                return void res.status(409).json({
+                    error: 'price_changed',
+                    error_code: 'PRICE_CHANGED',
+                    message: '价格已变动（限时促销可能已结束或商品调价）',
+                    new_price: Number(product.price),
+                    old_price: expected,
+                });
+            }
+        }
+        // Wave A-3: 优惠券应用 — P1-1: flash sale 不可叠加 coupon
+        let couponId = null;
+        let couponDiscount = 0;
+        if (coupon_code && typeof coupon_code === 'string' && coupon_code.trim()) {
+            if (flashSale) {
+                return void res.json({ error: '限时促销不可与优惠券叠加，请去掉优惠码', error_code: 'FLASH_NO_COUPON' });
+            }
+            const result = applyCouponToOrder(coupon_code, product.seller_uid, product_id, Number(product.price) * reqQty);
+            if (!result.ok)
+                return void res.json({ error: result.error, error_code: 'COUPON_INVALID' });
+            couponId = result.coupon.id;
+            couponDiscount = result.discount || 0;
+        }
+        // 验证 session_token（如果提供）
+        if (session_token) {
+            const session = db.prepare(`
+        SELECT * FROM price_sessions WHERE token = ? AND product_id = ? AND user_id = ?
+      `).get(session_token, product_id, user.id);
+            if (!session)
+                return void res.json({ error: 'session_token 无效，请重新调用 verify-price' });
+            if (session.used_at)
+                return void res.json({ error: 'session_token 已使用，请重新调用 verify-price' });
+            if (new Date(session.expires_at) < new Date()) {
+                return void res.json({ error: 'session_token 已过期（10分钟有效），请重新调用 verify-price' });
+            }
+            if (session.price !== product.price) {
+                return void res.json({
+                    error: 'price_changed',
+                    message: `商品价格已变动：验证时 ${session.price} WAZ，当前 ${product.price} WAZ`,
+                    new_price: product.price,
+                    hint: '请重新调用 verify-price 获取新价格',
+                });
+            }
+            db.prepare(`UPDATE price_sessions SET used_at = datetime('now') WHERE token = ?`).run(session_token);
+        }
+        const basePrice = product.price;
+        // 多件：subtotal = basePrice * qty，减 coupon，再加保险（按 subtotal 计费）
+        const subtotal = Math.round(basePrice * reqQty * 100) / 100;
+        const priceAfterCoupon = Math.max(0, Math.round((subtotal - couponDiscount) * 100) / 100);
+        const insuranceRate = getProtocolParam('order_insurance_rate', 0.01);
+        const insurancePremium = buy_insurance ? Math.round(priceAfterCoupon * insuranceRate * 100) / 100 : 0;
+        const totalAmount = Math.max(0, Math.round((priceAfterCoupon + insurancePremium) * 100) / 100);
+        // B5 主动捐赠 — 按订单总额 × 比例算（额外扣款，进 charity_fund）
+        const donationAmount = donationPctNum > 0 ? Math.round(totalAmount * donationPctNum * 100) / 100 : 0;
+        const wallet = db.prepare('SELECT balance FROM wallets WHERE user_id = ?').get(user.id);
+        if (!wallet)
+            return void res.status(500).json({ error: '钱包记录缺失', error_code: 'WALLET_MISSING' });
+        if (wallet.balance < totalAmount + donationAmount)
+            return void res.json({ error: `余额不足：需 ${(totalAmount + donationAmount).toFixed(2)} WAZ（含 ${donationAmount} WAZ 捐赠），当前 ${wallet.balance} WAZ` });
+        const now = new Date();
+        const orderId = generateId('ord');
+        let autoAccepted = false;
+        // P0: 整个下单流程原子化 — INSERT order + UPDATE wallet + UPDATE products + transition 任一步抛错全部回滚
+        try {
+            db.transaction(() => {
+                // 推土机分享快照：从 buyer.sponsor_path 解析 L1/L2/L3，应用 region 限制
+                const buyer = db.prepare("SELECT sponsor_id, sponsor_path, region FROM users WHERE id = ?").get(user.id);
+                // 孤儿用户首次绑 sponsor：buyer 无 sponsor + 客户端传 sponsor_hint
+                // 校验：① 非自己 ② 防环路 ③ hint 必须是 verified buyer
+                const sponsorHint = (typeof req.body.sponsor_hint === 'string' && req.body.sponsor_hint) ? String(req.body.sponsor_hint) : null;
+                if (!buyer.sponsor_id && sponsorHint && sponsorHint !== user.id) {
+                    const hint = db.prepare("SELECT id, sponsor_path FROM users WHERE id = ? AND id NOT IN ('sys_protocol', ?)")
+                        .get(sponsorHint, INTERNAL_AUDITOR_ID);
+                    if (hint && isAllowedSponsor(hint.id)) {
+                        const hintPath = hint.sponsor_path || '';
+                        if (!hintPath.split('>').includes(user.id)) {
+                            const newPath = hint.sponsor_path ? `${hint.sponsor_path}>${hint.id}` : hint.id;
+                            db.prepare("UPDATE users SET sponsor_id = ?, sponsor_path = ?, updated_at = datetime('now') WHERE id = ?")
+                                .run(hint.id, newPath, user.id);
+                            buyer.sponsor_id = hint.id;
+                            buyer.sponsor_path = newPath;
+                        }
+                    }
+                }
+                const maxLevels = (() => {
+                    const r = db.prepare("SELECT max_levels FROM region_config WHERE region = ? AND active = 1").get(buyer?.region || 'global');
+                    return r?.max_levels ?? 3;
+                })();
+                // 商品分享奖励链（per-product），与 PV 系统 sponsor_path 完全解耦
+                // 反推方向：谁分享了 product 给 buyer? → 该 sharer 是 L1
+                const productChain = getProductShareChain(product.id, user.id, 3);
+                const l1 = productChain[0];
+                const l2 = productChain[1];
+                const l3 = (maxLevels >= 3) ? productChain[2] : null;
+                const snapshotRate = Number(product.commission_rate ?? 0.10);
+                // H-2 fix：buyer_region 在下单时快照写入，settleCommission/depositToFund 读快照不读活值
+                const buyerRegionSnapshot = buyer?.region || 'global';
+                // P2P：若为 P2P 商品，下单时快照 content_hash（争议时凭买家所见 hash 判定）
+                const contentHashSnapshot = (Number(product.p2p_mode) === 1 && product.content_hash) ? String(product.content_hash) : null;
+                db.prepare(`INSERT INTO orders (
+          id, product_id, buyer_id, seller_id, quantity, unit_price, total_amount, escrow_amount,
+          status, shipping_address, notes, pay_deadline, accept_deadline, ship_deadline,
+          pickup_deadline, delivery_deadline, confirm_deadline,
+          l1_uid, l2_uid, l3_uid, snapshot_commission_rate, buyer_region, content_hash_at_order,
+          delivery_window, variant_id, variant_options_snapshot,
+          gift_recipient_name, gift_recipient_phone, gift_message, insurance_premium,
+          anonymous_recipient, recipient_code, donation_amount
+        ) VALUES (?,?,?,?,?,?,?,?,'created',?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)`).run(orderId, product.id, user.id, product.seller_uid, reqQty, basePrice, totalAmount, totalAmount, shipping_address, notes || null, addHours(now, 24), addHours(now, 48), addHours(now, 120), addHours(now, 168), addHours(now, 336), addHours(now, 408), l1, l2, l3, snapshotRate, buyerRegionSnapshot, contentHashSnapshot, deliveryWindowJson, variant ? variant.id : null, variant ? variant.options_json : null, giftRecipientName, giftRecipientPhone, giftMessage, insurancePremium, anonymousFlag, recipientCode, donationAmount);
+                // 协议层：写 genesis 事件 — order 创建（必然是 buyer 自己）
+                try {
+                    appendOrderEvent(db, {
+                        orderId,
+                        eventType: 'open',
+                        fromStatus: null,
+                        toStatus: 'created',
+                        actorId: user.id,
+                        actorRole: 'buyer',
+                        extra: {
+                            product_id: product.id,
+                            seller_id: product.seller_uid,
+                            quantity: reqQty,
+                            unit_price: basePrice,
+                            total_amount: totalAmount,
+                            variant_id: variant ? variant.id : null,
+                        },
+                    });
+                }
+                catch (e) {
+                    console.warn('[order-chain] genesis event failed:', e.message);
+                }
+                db.prepare('UPDATE wallets SET balance = balance - ?, escrowed = escrowed + ? WHERE user_id = ?')
+                    .run(totalAmount, totalAmount, user.id);
+                // B5：捐赠 — 从 balance 扣 + 进 charity_fund + 记一笔 donation txn（事务内原子）
+                if (donationAmount > 0) {
+                    db.prepare('UPDATE wallets SET balance = balance - ? WHERE user_id = ?').run(donationAmount, user.id);
+                    db.prepare(`UPDATE charity_fund SET balance = balance + ?, total_donated = total_donated + ?, updated_at = datetime('now') WHERE id = 'main'`)
+                        .run(donationAmount, donationAmount);
+                    db.prepare(`INSERT INTO charity_fund_txns (id, kind, from_user_id, to_user_id, amount, related_order_id, note)
+                      VALUES (?, 'donation', ?, NULL, ?, ?, ?)`).run(generateId('cft'), user.id, donationAmount, orderId, `下单时捐赠 ${(donationPctNum * 100).toFixed(1)}%`);
+                    // 同步 charity_reputation（捐款荣誉）
+                    try {
+                        ensureCharityRep(db, user.id);
+                    }
+                    catch { }
+                    try {
+                        db.prepare(`UPDATE charity_reputation SET donation_total = donation_total + ?, last_active = datetime('now') WHERE user_id = ?`)
+                            .run(donationAmount, user.id);
+                    }
+                    catch { }
+                }
+                // Wave C-1: 有 variant → 同时 -qty variant.stock 和 product.stock（aggregate 保持一致）
+                // P1-3: 条件 UPDATE + changes() 防多 worker 竞态超卖
+                if (variant) {
+                    const upd = db.prepare('UPDATE product_variants SET stock = stock - ?, updated_at = datetime(\'now\') WHERE id = ? AND stock >= ?').run(reqQty, variant.id, reqQty);
+                    if (upd.changes !== 1)
+                        throw new Error('VARIANT_STOCK_RACE');
+                }
+                const updP = db.prepare('UPDATE products SET stock = stock - ? WHERE id = ? AND stock >= ?').run(reqQty, product.id, reqQty);
+                if (updP.changes !== 1)
+                    throw new Error('PRODUCT_STOCK_RACE');
+                checkStockAndMaybeDelist(String(product.id));
+                // Wave D-4: flash sale sold_count 原子递增（max_qty 校验）
+                if (flashSale) {
+                    const updF = db.prepare(`UPDATE flash_sales SET sold_count = sold_count + ?
+            WHERE id = ? AND (max_qty = 0 OR sold_count + ? <= max_qty) AND ends_at > datetime('now')`).run(reqQty, flashSale.id, reqQty);
+                    if (updF.changes !== 1)
+                        throw new Error('FLASH_SALE_EXHAUSTED');
+                }
+                // Wave A-3: 记录 coupon 使用 + 增加 uses_count
+                if (couponId) {
+                    db.prepare('UPDATE orders SET coupon_id = ?, coupon_discount = ? WHERE id = ?')
+                        .run(couponId, couponDiscount, orderId);
+                    db.prepare('UPDATE coupons SET uses_count = uses_count + 1 WHERE id = ?').run(couponId);
+                }
+                transition(db, orderId, 'paid', user.id, [], '模拟支付完成');
+                notifyTransition(db, orderId, 'created', 'paid');
+                // 里程碑 3-C：双轨同支检测（监测+审计；不阻断）
+                try {
+                    auditSponsorChainCross(orderId, user.id, String(product.seller_uid), buyer.sponsor_path);
+                }
+                catch (e) {
+                    console.error('[M3-C audit]', e);
+                }
+                // 检查卖家是否有 auto_accept Skill
+                if (shouldAutoAccept(db, orderId)) {
+                    const sysUser = db.prepare("SELECT id FROM users WHERE id = 'sys_protocol'").get();
+                    if (sysUser) {
+                        const ar = transition(db, orderId, 'accepted', sysUser.id, [], '⚡ auto_accept Skill 自动接单');
+                        if (ar.success) {
+                            notifyTransition(db, orderId, 'paid', 'accepted');
+                            autoAccepted = true;
+                        }
+                    }
+                }
+            })();
+        }
+        catch (e) {
+            const msg = e.message;
+            console.error('[POST /api/orders tx]', msg);
+            if (msg === 'VARIANT_STOCK_RACE' || msg === 'PRODUCT_STOCK_RACE') {
+                return void res.status(409).json({ error: '库存已被抢光，请重试', error_code: 'STOCK_DEPLETED' });
+            }
+            if (msg === 'FLASH_SALE_EXHAUSTED') {
+                return void res.status(409).json({ error: '限时促销名额已售罄', error_code: 'FLASH_EXHAUSTED' });
+            }
+            return void res.status(500).json({ error: '下单失败，请重试', error_code: 'ORDER_TXN_FAILED' });
+        }
+        try {
+            broadcastSystemEvent('order_created', '📦', `订单创建 ${orderId} · ${totalAmount} WAZ`, orderId);
+        }
+        catch { }
+        res.json({ success: true, order_id: orderId, total_amount: totalAmount, auto_accepted: autoAccepted || undefined });
+    });
+}

package/dist/pwa/routes/orders-read.js

@@ -0,0 +1,180 @@
+export function registerOrdersReadRoutes(app, deps) {
+    const { db, auth, getOrderStatus, getOrderChain, verifyOrderChain, getOrderDispute } = deps;
+    app.get('/api/orders', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const orders = db.prepare(`
+      SELECT o.*, p.title as product_title, p.images,
+        ub.name as buyer_name, us.name as seller_name
+      FROM orders o
+      JOIN products p ON o.product_id = p.id
+      JOIN users ub ON o.buyer_id = ub.id
+      JOIN users us ON o.seller_id = us.id
+      WHERE o.buyer_id = ? OR o.seller_id = ? OR o.logistics_id = ?
+      ORDER BY o.created_at DESC LIMIT 50
+    `).all(user.id, user.id, user.id);
+        // B2 隐私购物：列表里也做相同 mask（防 seller/logistics 通过列表绕过详情 mask）
+        for (const o of orders) {
+            if (Number(o.anonymous_recipient) === 1 && o.buyer_id !== user.id) {
+                const code = o.recipient_code || 'PR-?????';
+                o.shipping_address = `🔒 ${code} · ${o.shipping_address}`;
+                delete o.recipient_code;
+                o.buyer_name = '🔒 ' + (typeof code === 'string' ? code : 'PR-?????');
+            }
+        }
+        res.json(orders);
+    });
+    // Wave D-2: 订单导出 CSV
+    app.get('/api/orders/export', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const role = req.query.role === 'seller' ? 'seller' : 'buyer';
+        const field = role === 'seller' ? 'o.seller_id' : 'o.buyer_id';
+        const from = req.query.from ? String(req.query.from) : null;
+        const to = req.query.to ? String(req.query.to) : null;
+        const where = [`${field} = ?`];
+        const params = [user.id];
+        if (from) {
+            where.push(`o.created_at >= ?`);
+            params.push(from);
+        }
+        if (to) {
+            where.push(`o.created_at <= ?`);
+            params.push(to);
+        }
+        const EXPORT_LIMIT = 5000;
+        const rows = db.prepare(`
+      SELECT o.id, o.created_at, o.status, o.quantity, o.unit_price, o.total_amount,
+             o.coupon_discount, o.variant_options_snapshot, o.shipping_address,
+             p.title as product_title, p.category,
+             ub.handle as buyer_handle, ub.name as buyer_name,
+             us.handle as seller_handle, us.name as seller_name
+      FROM orders o
+      JOIN products p ON p.id = o.product_id
+      JOIN users ub ON ub.id = o.buyer_id
+      JOIN users us ON us.id = o.seller_id
+      WHERE ${where.join(' AND ')}
+      ORDER BY o.created_at DESC LIMIT ?
+    `).all(...params, EXPORT_LIMIT + 1);
+        // P1-4: 触达上限 → X-Truncated 头
+        const truncated = rows.length > EXPORT_LIMIT;
+        if (truncated)
+            rows.length = EXPORT_LIMIT;
+        const csvEscape = (val) => {
+            const s = val == null ? '' : String(val);
+            if (s.includes(',') || s.includes('"') || s.includes('\n') || s.includes('\r')) {
+                return `"${s.replace(/"/g, '""')}"`;
+            }
+            return s;
+        };
+        const headers = ['order_id', 'created_at', 'status', 'product', 'category', 'qty', 'unit_price', 'total', 'coupon_discount', 'variant', 'buyer', 'seller', 'address'];
+        const lines = [headers.join(',')];
+        for (const r of rows) {
+            let variantStr = '';
+            try {
+                const v = r.variant_options_snapshot ? JSON.parse(r.variant_options_snapshot) : null;
+                if (v)
+                    variantStr = Object.entries(v).map(([k, val]) => `${k}:${val}`).join(';');
+            }
+            catch { }
+            lines.push([
+                r.id, r.created_at, r.status, r.product_title, r.category,
+                r.quantity, r.unit_price, r.total_amount, r.coupon_discount || 0,
+                variantStr, r.buyer_handle, r.seller_handle, r.shipping_address,
+            ].map(csvEscape).join(','));
+        }
+        const filename = `webaz-orders-${role}-${new Date().toISOString().slice(0, 10)}.csv`;
+        res.setHeader('Content-Type', 'text/csv; charset=utf-8');
+        res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+        if (truncated) {
+            res.setHeader('X-Truncated', '1');
+            res.setHeader('X-Truncated-Limit', String(EXPORT_LIMIT));
+            res.setHeader('Access-Control-Expose-Headers', 'X-Truncated, X-Truncated-Limit');
+        }
+        // UTF-8 BOM 帮 Excel 识别
+        res.send('' + lines.join('\n'));
+    });
+    // 订单签名链 — 当事人 + arbitrator + admin 可查
+    app.get('/api/orders/:id/chain', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const order = db.prepare('SELECT buyer_id, seller_id, logistics_id FROM orders WHERE id = ?').get(req.params.id);
+        if (!order)
+            return void res.status(404).json({ error: '订单不存在' });
+        const uid = user.id;
+        const isParty = uid === order.buyer_id || uid === order.seller_id || uid === order.logistics_id || user.role === 'arbitrator' || user.role === 'admin';
+        if (!isParty)
+            return void res.status(403).json({ error: '无权查看此订单链' });
+        const chain = getOrderChain(db, req.params.id);
+        const verification = verifyOrderChain(db, req.params.id);
+        res.json({ chain, verification });
+    });
+    app.get('/api/orders/:id', (req, res) => {
+        const user = auth(req, res);
+        if (!user)
+            return;
+        const statusInfo = getOrderStatus(db, req.params.id);
+        if (!statusInfo)
+            return void res.status(404).json({ error: '订单不存在' });
+        const order = statusInfo.order;
+        const isLogisticsPickup = user.role === 'logistics' &&
+            !order.logistics_id && order.status === 'shipped';
+        if (order.buyer_id !== user.id && order.seller_id !== user.id && order.logistics_id !== user.id && user.role !== 'arbitrator' && !isLogisticsPickup) {
+            return void res.status(403).json({ error: '无权查看此订单' });
+        }
+        // M8: 二手订单从 secondhand_items 查；商家订单从 products 查
+        const product = order.source === 'secondhand'
+            ? (() => {
+                const si = db.prepare('SELECT title, price, images FROM secondhand_items WHERE id = ?').get(order.product_id);
+                if (!si)
+                    return null;
+                try {
+                    return { title: si.title, price: si.price, images: JSON.parse(si.images || '[]') };
+                }
+                catch {
+                    return { title: si.title, price: si.price, images: [] };
+                }
+            })()
+            : db.prepare('SELECT id, title, price, images, return_days FROM products WHERE id = ?').get(order.product_id);
+        const dispute = getOrderDispute(db, req.params.id);
+        // 为每条历史记录附上证据描述
+        const history = statusInfo.history.map(h => {
+            // P1 fix: 单条脏 evidence_ids 不应封死整个 order 详情
+            let ids = [];
+            try {
+                const p = JSON.parse(h.evidence_ids || '[]');
+                if (Array.isArray(p))
+                    ids = p;
+            }
+            catch { }
+            const evidenceItems = ids.length
+                ? db.prepare(`SELECT description, type FROM evidence WHERE id IN (${ids.map(() => '?').join(',')})`).all(...ids)
+                : [];
+            return { ...h, evidence_items: evidenceItems };
+        });
+        // 物流跟踪摘要：从历史中提取所有物流操作的证据
+        const LOGISTICS_STEPS = ['shipped', 'picked_up', 'in_transit', 'delivered'];
+        const trackingInfo = history
+            .filter(h => LOGISTICS_STEPS.includes(h.to_status))
+            .map(h => ({
+            status: h.to_status,
+            actor: h.actor_name,
+            time: h.created_at,
+            evidence: h.evidence_items.map(e => e.description).filter(Boolean),
+            notes: h.notes,
+        }));
+        // B2 隐私购物：匿名订单 + 非买家本人 → shipping_address 前缀代号；不下放 recipient_code
+        if (Number(order.anonymous_recipient) === 1) {
+            const isBuyer = order.buyer_id === user.id;
+            if (!isBuyer) {
+                const code = order.recipient_code || 'PR-?????';
+                order.shipping_address = `🔒 ${code} · ${order.shipping_address}`;
+                delete order.recipient_code;
+            }
+        }
+        res.json({ ...statusInfo, history, product, dispute, trackingInfo });
+    });
+}