@setzkasten-cms/astro-admin 1.4.0 → 1.4.2

package/dist/api-routes/pages.js

@@ -0,0 +1,88 @@
+import {
+  readPagesMeta
+} from "../chunk-FXNOTESI.js";
+import {
+  resolveStorageConfigForRequest
+} from "../chunk-6UIKVKED.js";
+import {
+  cachedFetch
+} from "../chunk-45ARVNT3.js";
+import {
+  resolveGitHubTokenForRequest
+} from "../chunk-NKDATSPA.js";
+import "../chunk-KH22FJO5.js";
+
+// src/api-routes/pages.ts
+function resolvePages() {
+  const buildPages = typeof __SETZKASTEN_PAGES__ !== "undefined" ? __SETZKASTEN_PAGES__ : null;
+  return buildPages ?? globalThis.__SETZKASTEN_PAGES__ ?? [];
+}
+var GET = async ({ request }) => {
+  const isMulti = request.headers.get("x-sk-website") !== null;
+  const pages = isMulti ? await fetchPagesFromGitHub(request).catch(() => []) : resolvePages();
+  const enriched = await enrichWithLastModified(pages, request).catch(() => pages);
+  return new Response(JSON.stringify({ pages: enriched }), {
+    status: 200,
+    headers: { "Content-Type": "application/json" }
+  });
+};
+async function fetchPagesFromGitHub(request) {
+  const storage = await resolveStorageConfigForRequest(request);
+  if (!storage) return [];
+  const tokenResult = await resolveGitHubTokenForRequest(request);
+  if (!tokenResult.ok) return [];
+  const { owner, repo, branch } = storage;
+  const cacheKey = `pages-list:${owner}/${repo}:${branch}`;
+  return cachedFetch(cacheKey, 5 * 6e4, async () => {
+    const url = `https://api.github.com/repos/${owner}/${repo}/contents/src/pages?ref=${branch}`;
+    const res = await fetch(url, {
+      headers: {
+        Authorization: `Bearer ${tokenResult.value}`,
+        Accept: "application/vnd.github+json",
+        "X-GitHub-Api-Version": "2022-11-28"
+      }
+    });
+    if (!res.ok) return [];
+    const entries = await res.json();
+    if (!Array.isArray(entries)) return [];
+    const pages = [];
+    for (const entry of entries) {
+      if (entry.type !== "file") continue;
+      if (!entry.name.endsWith(".astro")) continue;
+      if (entry.name.startsWith("_") || entry.name.startsWith("[")) continue;
+      const pageKey = entry.name.slice(0, -".astro".length);
+      pages.push({
+        path: entry.path,
+        pageKey,
+        label: pageKey === "index" ? "Startseite" : pageKey,
+        hasConfig: true
+      });
+    }
+    return pages;
+  });
+}
+async function enrichWithLastModified(pages, request) {
+  if (pages.length === 0) return pages;
+  const storage = await resolveStorageConfigForRequest(request);
+  if (!storage) return pages;
+  const tokenResult = await resolveGitHubTokenForRequest(request);
+  if (!tokenResult.ok) return pages;
+  const serverConfig = globalThis.__SETZKASTEN_CONFIG__;
+  const target = {
+    owner: storage.owner,
+    repo: storage.repo,
+    branch: storage.branch,
+    contentPath: serverConfig?.storage?.contentPath ?? "content",
+    token: tokenResult.value
+  };
+  const meta = await readPagesMeta(target);
+  if (!meta.ok) return pages;
+  return pages.map((p) => {
+    const ts = meta.value.meta.pages[p.pageKey]?.lastModified;
+    return ts !== void 0 ? { ...p, lastModified: ts } : p;
+  });
+}
+export {
+  GET,
+  resolvePages
+};

package/dist/api-routes/section-add.d.ts

@@ -0,0 +1,18 @@
+import { APIRoute } from 'astro';
+
+/**
+ * POST /api/setzkasten/sections/add
+ *
+ * Adds a new section instance to a page:
+ * - Creates content JSON with default values from schema (_sections/{key}.json)
+ * - Appends new entry to the page config (pages/_{pageKey}.json)
+ * - Key auto-generated from type: hero → hero (or hero--2 if taken)
+ *
+ * Body: { pageKey, sectionType, sectionKey? (override), sourcePage? (content seed from another page's section), owner?, repo?, branch?, contentPath? }
+ *
+ * sourcePage: if provided, uses the existing content JSON of that section as seed instead of schema defaults.
+ * The source section key is derived from sectionType (or sectionKey if provided) on the sourcePage.
+ */
+declare const POST: APIRoute;
+
+export { POST };

package/dist/api-routes/section-add.js

@@ -0,0 +1,173 @@
+import {
+  addToPageConfig,
+  generateAddKey
+} from "../chunk-GHNK2GFE.js";
+import {
+  guardPageAccess,
+  parseSession
+} from "../chunk-INIWFKQ3.js";
+import {
+  resolveStorageConfigForRequest
+} from "../chunk-6UIKVKED.js";
+import "../chunk-5PIMDP4N.js";
+import "../chunk-45ARVNT3.js";
+import {
+  resolveGitHubTokenForRequest
+} from "../chunk-NKDATSPA.js";
+import "../chunk-TJNJKPUL.js";
+import {
+  withTrailers
+} from "../chunk-KH22FJO5.js";
+
+// src/api-routes/section-add.ts
+var POST = async ({ request, cookies }) => {
+  const session = cookies.get("setzkasten_session")?.value;
+  if (!session) return new Response("Unauthorized", { status: 401 });
+  const tokenResult = await resolveGitHubTokenForRequest(request);
+  if (!tokenResult.ok) {
+    return new Response(tokenResult.error.message, { status: 500 });
+  }
+  const githubToken = tokenResult.value;
+  try {
+    const body = await request.json();
+    const storage = await resolveStorageConfigForRequest(request, body);
+    if (!storage) return Response.json({ error: "Could not resolve owner/repo" }, { status: 400 });
+    const { owner, repo, branch, projectPrefix } = storage;
+    const serverConfig = globalThis.__SETZKASTEN_CONFIG__;
+    const fullConfig = globalThis.__SETZKASTEN_FULL_CONFIG__;
+    const contentPath = body.contentPath || serverConfig?.storage?.contentPath || "content";
+    const { pageKey, sectionType, sourcePage } = body;
+    if (!pageKey || !sectionType) {
+      return Response.json({ error: "pageKey and sectionType are required" }, { status: 400 });
+    }
+    const denied = await guardPageAccess(parseSession(cookies.get("setzkasten_session")?.value), pageKey, fullConfig, request);
+    if (denied) return denied;
+    const headers = {
+      Authorization: `Bearer ${githubToken}`,
+      Accept: "application/vnd.github+json",
+      "X-GitHub-Api-Version": "2022-11-28",
+      "Content-Type": "application/json"
+    };
+    const configKey = "_" + pageKey.replace(/\//g, "_");
+    const pageConfigPath = `${contentPath}/pages/${configKey}.json`;
+    const pageConfigRaw = await fetchFileContent(owner, repo, branch, pageConfigPath, githubToken);
+    if (!pageConfigRaw) return Response.json({ error: "Page config not found" }, { status: 404 });
+    const pageConfig = JSON.parse(pageConfigRaw);
+    const existingKeys = (pageConfig.sections ?? []).map((s) => s.key);
+    const newKey = body.sectionKey ?? generateAddKey(existingKeys, sectionType);
+    if (existingKeys.includes(newKey)) {
+      return Response.json({ error: `Key "${newKey}" already exists on this page` }, { status: 409 });
+    }
+    let defaultContent = {};
+    if (sourcePage) {
+      const sourceKey = sectionType;
+      const sourceJsonPath = `${contentPath}/_sections/${sourceKey}.json`;
+      const sourceContent = await fetchFileContent(owner, repo, branch, sourceJsonPath, githubToken);
+      if (sourceContent) {
+        try {
+          defaultContent = JSON.parse(sourceContent);
+        } catch {
+        }
+      }
+    }
+    if (Object.keys(defaultContent).length === 0) {
+      const sectionDef = findSectionDef(fullConfig, sectionType);
+      defaultContent = sectionDef ? buildDefaultContent(sectionDef.fields ?? {}) : {};
+    }
+    const updatedConfig = addToPageConfig(pageConfig, newKey, sectionType);
+    const sectionJsonPath = `${contentPath}/_sections/${newKey}.json`;
+    const commitResult = await batchCommit(
+      owner,
+      repo,
+      branch,
+      [
+        { path: pageConfigPath, content: JSON.stringify(updatedConfig, null, 2) },
+        { path: sectionJsonPath, content: JSON.stringify(defaultContent, null, 2) }
+      ],
+      withTrailers(
+        `content: add ${sectionType} section "${newKey}" to ${pageKey}`,
+        parseSession(cookies.get("setzkasten_session")?.value)?.user?.email
+      ),
+      headers
+    );
+    if (!commitResult.ok) return Response.json({ error: commitResult.error }, { status: 500 });
+    const { recordPageEdit } = await import("./_pages-meta-store.js");
+    await recordPageEdit(
+      { owner, repo, branch, contentPath, token: tokenResult.value },
+      pageKey
+    ).catch(() => {
+    });
+    return Response.json({ success: true, newKey, commitSha: commitResult.sha });
+  } catch (error) {
+    console.error("[setzkasten] section-add error:", error);
+    return Response.json(
+      { error: error instanceof Error ? error.message : "Add section failed" },
+      { status: 500 }
+    );
+  }
+};
+function findSectionDef(fullConfig, sectionType) {
+  if (!fullConfig?.products) return null;
+  for (const product of Object.values(fullConfig.products)) {
+    if (product?.sections?.[sectionType]) return product.sections[sectionType];
+  }
+  return null;
+}
+function buildDefaultContent(fields) {
+  const result = {};
+  for (const [key, field] of Object.entries(fields)) {
+    if (field.defaultValue !== void 0) {
+      result[key] = field.defaultValue;
+    }
+  }
+  return result;
+}
+async function fetchFileContent(owner, repo, branch, path, token) {
+  try {
+    const res = await fetch(
+      `https://api.github.com/repos/${owner}/${repo}/contents/${path}?ref=${branch}`,
+      { headers: { Authorization: `Bearer ${token}`, Accept: "application/vnd.github+json", "X-GitHub-Api-Version": "2022-11-28" } }
+    );
+    if (!res.ok) return null;
+    const data = await res.json();
+    return data.encoding === "base64" ? Buffer.from(data.content, "base64").toString("utf-8") : data.content;
+  } catch {
+    return null;
+  }
+}
+async function batchCommit(owner, repo, branch, files, message, headers) {
+  try {
+    const refRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, { headers });
+    if (!refRes.ok) return { ok: false, error: `Failed to get HEAD: ${refRes.status}` };
+    const { object: { sha: headSha } } = await refRes.json();
+    const commitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits/${headSha}`, { headers });
+    if (!commitRes.ok) return { ok: false, error: `Failed to get commit: ${commitRes.status}` };
+    const { tree: { sha: baseSha } } = await commitRes.json();
+    const treeRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/trees`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ base_tree: baseSha, tree: files.map((f) => ({ path: f.path, mode: "100644", type: "blob", content: f.content })) })
+    });
+    if (!treeRes.ok) return { ok: false, error: `Failed to create tree: ${treeRes.status}` };
+    const { sha: treeSha } = await treeRes.json();
+    const newCommitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ tree: treeSha, parents: [headSha], message })
+    });
+    if (!newCommitRes.ok) return { ok: false, error: `Failed to create commit: ${newCommitRes.status}` };
+    const { sha: newSha } = await newCommitRes.json();
+    const updateRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, {
+      method: "PATCH",
+      headers,
+      body: JSON.stringify({ sha: newSha })
+    });
+    if (!updateRes.ok) return { ok: false, error: `Failed to update ref: ${updateRes.status}` };
+    return { ok: true, sha: newSha };
+  } catch (error) {
+    return { ok: false, error: error instanceof Error ? error.message : "Commit failed" };
+  }
+}
+export {
+  POST
+};

package/dist/api-routes/section-commit-pending.d.ts

@@ -0,0 +1,18 @@
+import { APIRoute } from 'astro';
+
+/**
+ * POST /api/setzkasten/sections/commit-pending
+ *
+ * Batch-commits all pending (optimistically added) sections in ONE GitHub commit.
+ * This triggers exactly one Vercel build regardless of how many sections were added.
+ *
+ * Body: {
+ *   pageKey: string,
+ *   pageConfig: object,           // full updated page config (already includes pending entries)
+ *   sections: Array<{ key: string, content: Record<string, unknown> }>,
+ *   owner?, repo?, branch?, contentPath?
+ * }
+ */
+declare const POST: APIRoute;
+
+export { POST };

package/dist/api-routes/section-commit-pending.js

@@ -0,0 +1,207 @@
+import {
+  convertToSetHtml
+} from "../chunk-RHJONMLK.js";
+import {
+  readPagesMeta
+} from "../chunk-FXNOTESI.js";
+import {
+  guardPageAccess,
+  parseSession
+} from "../chunk-INIWFKQ3.js";
+import {
+  prefixPath,
+  resolveStorageConfigForRequest
+} from "../chunk-6UIKVKED.js";
+import "../chunk-5PIMDP4N.js";
+import "../chunk-45ARVNT3.js";
+import {
+  resolveGitHubTokenForRequest
+} from "../chunk-NKDATSPA.js";
+import "../chunk-TJNJKPUL.js";
+import {
+  withTrailers
+} from "../chunk-KH22FJO5.js";
+
+// src/api-routes/section-commit-pending.ts
+import { writeFile } from "fs/promises";
+import { join } from "path";
+import { setPageLastModified } from "@setzkasten-cms/core";
+var POST = async ({ request, cookies }) => {
+  const session = cookies.get("setzkasten_session")?.value;
+  if (!session) return new Response("Unauthorized", { status: 401 });
+  const tokenResult = await resolveGitHubTokenForRequest(request);
+  if (!tokenResult.ok) {
+    return new Response(tokenResult.error.message, { status: 500 });
+  }
+  const githubToken = tokenResult.value;
+  try {
+    const body = await request.json();
+    const storage = await resolveStorageConfigForRequest(request, body);
+    if (!storage) return Response.json({ error: "Could not resolve owner/repo" }, { status: 400 });
+    const { owner, repo, branch } = storage;
+    const serverConfig = globalThis.__SETZKASTEN_CONFIG__;
+    const fullConfig = globalThis.__SETZKASTEN_FULL_CONFIG__;
+    const contentPath = body.contentPath || serverConfig?.storage?.contentPath || "content";
+    const { pageKey, pageConfig, sections, edits = [] } = body;
+    if (!pageKey || !pageConfig || !Array.isArray(sections)) {
+      return Response.json({ error: "pageKey, pageConfig, and sections are required" }, { status: 400 });
+    }
+    const denied = await guardPageAccess(parseSession(cookies.get("setzkasten_session")?.value), pageKey, fullConfig, request);
+    if (denied) return denied;
+    const headers = {
+      Authorization: `Bearer ${githubToken}`,
+      Accept: "application/vnd.github+json",
+      "X-GitHub-Api-Version": "2022-11-28",
+      "Content-Type": "application/json"
+    };
+    const configKey = "_" + pageKey.replace(/\//g, "_");
+    const pageConfigPath = `${contentPath}/pages/${configKey}.json`;
+    const files = [
+      { path: pageConfigPath, content: JSON.stringify(pageConfig, null, 2) },
+      ...sections.map((s) => ({
+        path: `${contentPath}/_sections/${s.key}.json`,
+        content: JSON.stringify(s.content, null, 2)
+      })),
+      ...edits.map((s) => ({
+        path: `${contentPath}/_sections/${s.key}.json`,
+        content: JSON.stringify(s.content, null, 2)
+      }))
+    ];
+    const sectionsWithHtml = [...sections, ...edits].filter((s) => containsHtmlValue(s.content)).map((s) => s.key);
+    const projectPrefix = storage.projectPrefix;
+    for (const sectionKey of sectionsWithHtml) {
+      const componentPath = prefixPath(
+        `src/components/sections/${pascalCase(sectionKey)}Section.astro`,
+        projectPrefix ?? ""
+      );
+      if (files.some((f) => f.path === componentPath)) continue;
+      const original = await fetchFileContent(owner, repo, branch, componentPath, githubToken);
+      if (!original) continue;
+      const patched = convertToSetHtml(original);
+      if (patched !== original) {
+        files.push({ path: componentPath, content: patched });
+      }
+    }
+    const metaContentPath = serverConfig?.storage?.contentPath ?? "content";
+    const metaTarget = { owner, repo, branch, contentPath: metaContentPath, token: githubToken };
+    const metaSnapshot = await readPagesMeta(metaTarget);
+    if (metaSnapshot.ok) {
+      const nextMeta = setPageLastModified(metaSnapshot.value.meta, pageKey, Date.now());
+      files.push({
+        path: `${metaContentPath}/_pages-meta.json`,
+        content: JSON.stringify(nextMeta, null, 2)
+      });
+    }
+    const parts = [];
+    if (sections.length > 0) {
+      const keys = sections.map((s) => s.key).join(", ");
+      parts.push(`add ${sections.length} section${sections.length > 1 ? "s" : ""} (${keys})`);
+    }
+    if (edits.length > 0) {
+      const keys = edits.map((s) => s.key).join(", ");
+      parts.push(`update ${edits.length} section${edits.length > 1 ? "s" : ""} (${keys})`);
+    }
+    const editorEmail = parseSession(cookies.get("setzkasten_session")?.value)?.user?.email;
+    const commitMessage = withTrailers(
+      `content: ${parts.length > 0 ? parts.join(", ") : "update page config"} on ${pageKey}`,
+      editorEmail
+    );
+    const commitResult = await batchCommit(owner, repo, branch, files, commitMessage, headers);
+    if (!commitResult.ok) return Response.json({ error: commitResult.error }, { status: 500 });
+    const repoRoot = serverConfig?.repoRoot;
+    if (repoRoot) {
+      await Promise.all(
+        files.map((f) => writeFile(join(repoRoot, f.path), f.content, "utf-8").catch(() => {
+        }))
+      );
+    }
+    const { fireWebhooks } = await import("./_webhook-dispatcher.js");
+    const parsedSession = parseSession(cookies.get("setzkasten_session")?.value);
+    void fireWebhooks(
+      "content.save",
+      {
+        website: { id: owner, repo: `${owner}/${repo}`, branch },
+        user: {
+          email: parsedSession?.user?.email ?? "unknown",
+          name: parsedSession?.user?.name
+        },
+        commit: { sha: commitResult.sha, message: `Commit on ${pageKey}` },
+        files: sections.map((s) => ({
+          path: `${metaContentPath}/_sections/${s.key}.json`
+        }))
+      },
+      request
+    );
+    return Response.json({ success: true, commitSha: commitResult.sha });
+  } catch (error) {
+    console.error("[setzkasten] section-commit-pending error:", error);
+    return Response.json(
+      { error: error instanceof Error ? error.message : "Commit failed" },
+      { status: 500 }
+    );
+  }
+};
+function containsHtmlValue(value) {
+  if (typeof value === "string") return /<\/?[a-z]/i.test(value);
+  if (Array.isArray(value)) return value.some(containsHtmlValue);
+  if (value && typeof value === "object") return Object.values(value).some(containsHtmlValue);
+  return false;
+}
+function pascalCase(input) {
+  return input.split(/[-_\s]+/).filter(Boolean).map((s) => s.charAt(0).toUpperCase() + s.slice(1)).join("");
+}
+async function fetchFileContent(owner, repo, branch, path, token) {
+  try {
+    const res = await fetch(
+      `https://api.github.com/repos/${owner}/${repo}/contents/${path}?ref=${branch}`,
+      {
+        headers: {
+          Authorization: `Bearer ${token}`,
+          Accept: "application/vnd.github+json",
+          "X-GitHub-Api-Version": "2022-11-28"
+        }
+      }
+    );
+    if (!res.ok) return null;
+    const data = await res.json();
+    return data.encoding === "base64" ? Buffer.from(data.content, "base64").toString("utf-8") : data.content;
+  } catch {
+    return null;
+  }
+}
+async function batchCommit(owner, repo, branch, files, message, headers) {
+  try {
+    const refRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, { headers });
+    if (!refRes.ok) return { ok: false, error: `Failed to get HEAD: ${refRes.status}` };
+    const { object: { sha: headSha } } = await refRes.json();
+    const commitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits/${headSha}`, { headers });
+    if (!commitRes.ok) return { ok: false, error: `Failed to get commit: ${commitRes.status}` };
+    const { tree: { sha: baseSha } } = await commitRes.json();
+    const treeRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/trees`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ base_tree: baseSha, tree: files.map((f) => ({ path: f.path, mode: "100644", type: "blob", content: f.content })) })
+    });
+    if (!treeRes.ok) return { ok: false, error: `Failed to create tree: ${treeRes.status}` };
+    const { sha: treeSha } = await treeRes.json();
+    const newCommitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ tree: treeSha, parents: [headSha], message })
+    });
+    if (!newCommitRes.ok) return { ok: false, error: `Failed to create commit: ${newCommitRes.status}` };
+    const { sha: newSha } = await newCommitRes.json();
+    const updateRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, {
+      method: "PATCH",
+      headers,
+      body: JSON.stringify({ sha: newSha })
+    });
+    if (!updateRes.ok) return { ok: false, error: `Failed to update ref: ${updateRes.status}` };
+    return { ok: true, sha: newSha };
+  } catch (error) {
+    return { ok: false, error: error instanceof Error ? error.message : "Commit failed" };
+  }
+}
+export {
+  POST
+};

package/dist/api-routes/section-delete.d.ts

@@ -0,0 +1,15 @@
+import { APIRoute } from 'astro';
+
+/**
+ * DELETE /api/setzkasten/sections
+ *
+ * Removes a section from a page:
+ * - Deletes the content JSON (_sections/{key}.json)
+ * - Removes the entry from the page config (pages/_{pageKey}.json)
+ * All changes committed as a single batch.
+ *
+ * Body: { pageKey, sectionKey, owner?, repo?, branch?, contentPath? }
+ */
+declare const DELETE: APIRoute;
+
+export { DELETE };

package/dist/api-routes/section-delete.js

@@ -0,0 +1,149 @@
+import {
+  removeFromPageConfig
+} from "../chunk-GHNK2GFE.js";
+import {
+  guardPageAccess,
+  parseSession
+} from "../chunk-INIWFKQ3.js";
+import {
+  resolveStorageConfigForRequest
+} from "../chunk-6UIKVKED.js";
+import "../chunk-5PIMDP4N.js";
+import "../chunk-45ARVNT3.js";
+import {
+  resolveGitHubTokenForRequest
+} from "../chunk-NKDATSPA.js";
+import "../chunk-TJNJKPUL.js";
+import {
+  withTrailers
+} from "../chunk-KH22FJO5.js";
+
+// src/api-routes/section-delete.ts
+var DELETE = async ({ request, cookies }) => {
+  const session = cookies.get("setzkasten_session")?.value;
+  if (!session) return new Response("Unauthorized", { status: 401 });
+  const tokenResult = await resolveGitHubTokenForRequest(request);
+  if (!tokenResult.ok) {
+    return new Response(tokenResult.error.message, { status: 500 });
+  }
+  const githubToken = tokenResult.value;
+  try {
+    const body = await request.json();
+    const storage = await resolveStorageConfigForRequest(request, body);
+    if (!storage) return Response.json({ error: "Could not resolve owner/repo" }, { status: 400 });
+    const { owner, repo, branch, projectPrefix } = storage;
+    const serverConfig = globalThis.__SETZKASTEN_CONFIG__;
+    const fullConfig = globalThis.__SETZKASTEN_FULL_CONFIG__;
+    const contentPath = body.contentPath || serverConfig?.storage?.contentPath || "content";
+    const { pageKey, sectionKey } = body;
+    if (!pageKey || !sectionKey) {
+      return Response.json({ error: "pageKey and sectionKey are required" }, { status: 400 });
+    }
+    const denied = await guardPageAccess(parseSession(cookies.get("setzkasten_session")?.value), pageKey, fullConfig, request);
+    if (denied) return denied;
+    const headers = {
+      Authorization: `Bearer ${githubToken}`,
+      Accept: "application/vnd.github+json",
+      "X-GitHub-Api-Version": "2022-11-28",
+      "Content-Type": "application/json"
+    };
+    const configKey = "_" + pageKey.replace(/\//g, "_");
+    const pageConfigPath = `${contentPath}/pages/${configKey}.json`;
+    const pageConfigRaw = await fetchFileContent(owner, repo, branch, pageConfigPath, githubToken);
+    if (!pageConfigRaw) return Response.json({ error: "Page config not found" }, { status: 404 });
+    const pageConfig = JSON.parse(pageConfigRaw);
+    const updatedConfig = removeFromPageConfig(pageConfig, sectionKey);
+    const sectionJsonPath = `${contentPath}/_sections/${sectionKey}.json`;
+    const commitResult = await batchCommitWithDeletions(
+      owner,
+      repo,
+      branch,
+      [{ path: pageConfigPath, content: JSON.stringify(updatedConfig, null, 2) }],
+      [sectionJsonPath],
+      withTrailers(
+        `content: remove ${sectionKey} section from ${pageKey}`,
+        parseSession(cookies.get("setzkasten_session")?.value)?.user?.email
+      ),
+      headers
+    );
+    if (!commitResult.ok) return Response.json({ error: commitResult.error }, { status: 500 });
+    const { recordPageEdit } = await import("./_pages-meta-store.js");
+    await recordPageEdit(
+      { owner, repo, branch, contentPath, token: tokenResult.value },
+      pageKey
+    ).catch(() => {
+    });
+    const { fireWebhooks } = await import("./_webhook-dispatcher.js");
+    const session2 = parseSession(cookies.get("setzkasten_session")?.value);
+    void fireWebhooks(
+      "content.delete",
+      {
+        website: { id: owner, repo: `${owner}/${repo}`, branch },
+        user: { email: session2?.user?.email ?? "unknown", name: session2?.user?.name },
+        commit: { sha: commitResult.sha, message: `Delete ${sectionKey} from ${pageKey}` },
+        files: [{ path: sectionJsonPath }]
+      },
+      request
+    );
+    return Response.json({ success: true, commitSha: commitResult.sha });
+  } catch (error) {
+    console.error("[setzkasten] section-delete error:", error);
+    return Response.json(
+      { error: error instanceof Error ? error.message : "Delete failed" },
+      { status: 500 }
+    );
+  }
+};
+async function fetchFileContent(owner, repo, branch, path, token) {
+  try {
+    const res = await fetch(
+      `https://api.github.com/repos/${owner}/${repo}/contents/${path}?ref=${branch}`,
+      { headers: { Authorization: `Bearer ${token}`, Accept: "application/vnd.github+json", "X-GitHub-Api-Version": "2022-11-28" } }
+    );
+    if (!res.ok) return null;
+    const data = await res.json();
+    return data.encoding === "base64" ? Buffer.from(data.content, "base64").toString("utf-8") : data.content;
+  } catch {
+    return null;
+  }
+}
+async function batchCommitWithDeletions(owner, repo, branch, upserts, deletions, message, headers) {
+  try {
+    const refRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, { headers });
+    if (!refRes.ok) return { ok: false, error: `Failed to get HEAD: ${refRes.status}` };
+    const { object: { sha: headSha } } = await refRes.json();
+    const commitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits/${headSha}`, { headers });
+    if (!commitRes.ok) return { ok: false, error: `Failed to get commit: ${commitRes.status}` };
+    const { tree: { sha: baseSha } } = await commitRes.json();
+    const tree = [
+      ...upserts.map((f) => ({ path: f.path, mode: "100644", type: "blob", content: f.content })),
+      ...deletions.map((path) => ({ path, mode: "100644", type: "blob", sha: null }))
+    ];
+    const treeRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/trees`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ base_tree: baseSha, tree })
+    });
+    if (!treeRes.ok) return { ok: false, error: `Failed to create tree: ${treeRes.status}` };
+    const { sha: treeSha } = await treeRes.json();
+    const newCommitRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/commits`, {
+      method: "POST",
+      headers,
+      body: JSON.stringify({ tree: treeSha, parents: [headSha], message })
+    });
+    if (!newCommitRes.ok) return { ok: false, error: `Failed to create commit: ${newCommitRes.status}` };
+    const { sha: newSha } = await newCommitRes.json();
+    const updateRes = await fetch(`https://api.github.com/repos/${owner}/${repo}/git/refs/heads/${branch}`, {
+      method: "PATCH",
+      headers,
+      body: JSON.stringify({ sha: newSha })
+    });
+    if (!updateRes.ok) return { ok: false, error: `Failed to update ref: ${updateRes.status}` };
+    return { ok: true, sha: newSha };
+  } catch (error) {
+    return { ok: false, error: error instanceof Error ? error.message : "Commit failed" };
+  }
+}
+export {
+  DELETE
+};