@unifiedcommerce/core 0.2.0 → 0.2.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +2 -1
- package/src/adapters/console-email.ts +43 -0
- package/src/auth/access.ts +187 -0
- package/src/auth/auth-schema.ts +139 -0
- package/src/auth/middleware.ts +161 -0
- package/src/auth/org.ts +41 -0
- package/src/auth/permissions.ts +28 -0
- package/src/auth/setup.ts +171 -0
- package/src/auth/system-actor.ts +19 -0
- package/src/auth/types.ts +10 -0
- package/src/config/defaults.ts +82 -0
- package/src/config/define-config.ts +53 -0
- package/src/config/types.ts +301 -0
- package/src/generated/plugin-capabilities.d.ts +20 -0
- package/src/generated/plugin-manifest.ts +23 -0
- package/src/generated/plugin-repositories.d.ts +20 -0
- package/src/hooks/checkout-completion.ts +262 -0
- package/src/hooks/checkout.ts +677 -0
- package/src/hooks/order-emails.ts +62 -0
- package/src/index.ts +215 -0
- package/src/interfaces/mcp/agent-prompt.ts +174 -0
- package/src/interfaces/mcp/context-enrichment.ts +177 -0
- package/src/interfaces/mcp/server.ts +47 -0
- package/src/interfaces/mcp/tool-builder.ts +261 -0
- package/src/interfaces/mcp/tools/analytics.ts +76 -0
- package/src/interfaces/mcp/tools/cart.ts +57 -0
- package/src/interfaces/mcp/tools/catalog.ts +299 -0
- package/src/interfaces/mcp/tools/index.ts +22 -0
- package/src/interfaces/mcp/tools/inventory.ts +161 -0
- package/src/interfaces/mcp/tools/orders.ts +104 -0
- package/src/interfaces/mcp/tools/pricing.ts +94 -0
- package/src/interfaces/mcp/tools/promotions.ts +106 -0
- package/src/interfaces/mcp/tools/registry.ts +101 -0
- package/src/interfaces/mcp/tools/search.ts +42 -0
- package/src/interfaces/mcp/tools/webhooks.ts +48 -0
- package/src/interfaces/mcp/transport.ts +128 -0
- package/src/interfaces/rest/customer-portal.ts +299 -0
- package/src/interfaces/rest/index.ts +74 -0
- package/src/interfaces/rest/router.ts +333 -0
- package/src/interfaces/rest/routes/admin-jobs.ts +58 -0
- package/src/interfaces/rest/routes/audit.ts +50 -0
- package/src/interfaces/rest/routes/carts.ts +89 -0
- package/src/interfaces/rest/routes/catalog.ts +493 -0
- package/src/interfaces/rest/routes/checkout.ts +284 -0
- package/src/interfaces/rest/routes/inventory.ts +70 -0
- package/src/interfaces/rest/routes/media.ts +86 -0
- package/src/interfaces/rest/routes/orders.ts +78 -0
- package/src/interfaces/rest/routes/payments.ts +60 -0
- package/src/interfaces/rest/routes/pricing.ts +57 -0
- package/src/interfaces/rest/routes/promotions.ts +93 -0
- package/src/interfaces/rest/routes/search.ts +71 -0
- package/src/interfaces/rest/routes/webhooks.ts +46 -0
- package/src/interfaces/rest/schemas/admin-jobs.ts +40 -0
- package/src/interfaces/rest/schemas/audit.ts +46 -0
- package/src/interfaces/rest/schemas/carts.ts +125 -0
- package/src/interfaces/rest/schemas/catalog.ts +450 -0
- package/src/interfaces/rest/schemas/checkout.ts +66 -0
- package/src/interfaces/rest/schemas/customer-portal.ts +195 -0
- package/src/interfaces/rest/schemas/inventory.ts +138 -0
- package/src/interfaces/rest/schemas/media.ts +75 -0
- package/src/interfaces/rest/schemas/orders.ts +104 -0
- package/src/interfaces/rest/schemas/pricing.ts +80 -0
- package/src/interfaces/rest/schemas/promotions.ts +110 -0
- package/src/interfaces/rest/schemas/responses.ts +85 -0
- package/src/interfaces/rest/schemas/search.ts +58 -0
- package/src/interfaces/rest/schemas/shared.ts +62 -0
- package/src/interfaces/rest/schemas/webhooks.ts +68 -0
- package/src/interfaces/rest/utils.ts +104 -0
- package/src/interfaces/rest/webhook-router.ts +50 -0
- package/src/kernel/compensation/executor.ts +61 -0
- package/src/kernel/compensation/types.ts +26 -0
- package/src/kernel/database/adapter.ts +21 -0
- package/src/kernel/database/drizzle-db.ts +56 -0
- package/src/kernel/database/migrate.ts +76 -0
- package/src/kernel/database/plugin-types.ts +34 -0
- package/src/kernel/database/schema.ts +49 -0
- package/src/kernel/database/scoped-db.ts +68 -0
- package/src/kernel/database/tx-context.ts +46 -0
- package/src/kernel/error-mapper.ts +15 -0
- package/src/kernel/errors.ts +89 -0
- package/src/kernel/factory/repository-factory.ts +244 -0
- package/src/kernel/hooks/create-context.ts +43 -0
- package/src/kernel/hooks/executor.ts +88 -0
- package/src/kernel/hooks/registry.ts +74 -0
- package/src/kernel/hooks/types.ts +52 -0
- package/src/kernel/http-error.ts +44 -0
- package/src/kernel/jobs/adapter.ts +36 -0
- package/src/kernel/jobs/drizzle-adapter.ts +58 -0
- package/src/kernel/jobs/runner.ts +153 -0
- package/src/kernel/jobs/schema.ts +46 -0
- package/src/kernel/jobs/types.ts +30 -0
- package/src/kernel/local-api.ts +187 -0
- package/src/kernel/plugin/manifest.ts +271 -0
- package/src/kernel/query/executor.ts +184 -0
- package/src/kernel/query/registry.ts +46 -0
- package/src/kernel/result.ts +33 -0
- package/src/kernel/schema/extra-columns.ts +37 -0
- package/src/kernel/service-registry.ts +76 -0
- package/src/kernel/service-timing.ts +89 -0
- package/src/kernel/state-machine/machine.ts +101 -0
- package/src/modules/analytics/drizzle-adapter.ts +426 -0
- package/src/modules/analytics/hooks.ts +11 -0
- package/src/modules/analytics/models.ts +125 -0
- package/src/modules/analytics/repository/index.ts +6 -0
- package/src/modules/analytics/service.ts +245 -0
- package/src/modules/analytics/types.ts +180 -0
- package/src/modules/audit/hooks.ts +78 -0
- package/src/modules/audit/schema.ts +33 -0
- package/src/modules/audit/service.ts +151 -0
- package/src/modules/cart/access.ts +27 -0
- package/src/modules/cart/matcher.ts +26 -0
- package/src/modules/cart/repository/index.ts +234 -0
- package/src/modules/cart/schema.ts +42 -0
- package/src/modules/cart/schemas.ts +38 -0
- package/src/modules/cart/service.ts +541 -0
- package/src/modules/catalog/repository/index.ts +772 -0
- package/src/modules/catalog/schema.ts +203 -0
- package/src/modules/catalog/schemas.ts +104 -0
- package/src/modules/catalog/service.ts +1544 -0
- package/src/modules/customers/repository/index.ts +327 -0
- package/src/modules/customers/schema.ts +64 -0
- package/src/modules/customers/service.ts +171 -0
- package/src/modules/fulfillment/repository/index.ts +426 -0
- package/src/modules/fulfillment/schema.ts +101 -0
- package/src/modules/fulfillment/service.ts +555 -0
- package/src/modules/fulfillment/types.ts +59 -0
- package/src/modules/inventory/repository/index.ts +509 -0
- package/src/modules/inventory/schema.ts +94 -0
- package/src/modules/inventory/schemas.ts +38 -0
- package/src/modules/inventory/service.ts +490 -0
- package/src/modules/media/adapter.ts +17 -0
- package/src/modules/media/repository/index.ts +274 -0
- package/src/modules/media/schema.ts +41 -0
- package/src/modules/media/service.ts +151 -0
- package/src/modules/orders/repository/index.ts +287 -0
- package/src/modules/orders/schema.ts +66 -0
- package/src/modules/orders/service.ts +619 -0
- package/src/modules/orders/stale-order-cleanup.ts +76 -0
- package/src/modules/organization/service.ts +191 -0
- package/src/modules/payments/adapter.ts +47 -0
- package/src/modules/payments/repository/index.ts +6 -0
- package/src/modules/payments/service.ts +107 -0
- package/src/modules/pricing/repository/index.ts +291 -0
- package/src/modules/pricing/schema.ts +71 -0
- package/src/modules/pricing/schemas.ts +38 -0
- package/src/modules/pricing/service.ts +494 -0
- package/src/modules/promotions/repository/index.ts +325 -0
- package/src/modules/promotions/schema.ts +62 -0
- package/src/modules/promotions/schemas.ts +38 -0
- package/src/modules/promotions/service.ts +598 -0
- package/src/modules/search/adapter.ts +57 -0
- package/src/modules/search/hooks.ts +12 -0
- package/src/modules/search/repository/index.ts +6 -0
- package/src/modules/search/service.ts +315 -0
- package/src/modules/shipping/calculator.ts +188 -0
- package/src/modules/shipping/repository/index.ts +6 -0
- package/src/modules/shipping/service.ts +51 -0
- package/src/modules/tax/adapter.ts +60 -0
- package/src/modules/tax/repository/index.ts +6 -0
- package/src/modules/tax/service.ts +53 -0
- package/src/modules/webhooks/hook.ts +34 -0
- package/src/modules/webhooks/repository/index.ts +278 -0
- package/src/modules/webhooks/schema.ts +56 -0
- package/src/modules/webhooks/service.ts +117 -0
- package/src/modules/webhooks/signing.ts +6 -0
- package/src/modules/webhooks/ssrf-guard.ts +71 -0
- package/src/modules/webhooks/tasks.ts +52 -0
- package/src/modules/webhooks/worker.ts +134 -0
- package/src/runtime/commerce.ts +145 -0
- package/src/runtime/kernel.ts +426 -0
- package/src/runtime/logger.ts +36 -0
- package/src/runtime/server.ts +355 -0
- package/src/runtime/shutdown.ts +43 -0
- package/src/test-utils/create-pglite-adapter.ts +129 -0
- package/src/test-utils/create-plugin-test-app.ts +128 -0
- package/src/test-utils/create-repository-test-harness.ts +16 -0
- package/src/test-utils/create-test-config.ts +190 -0
- package/src/test-utils/create-test-kernel.ts +7 -0
- package/src/test-utils/create-test-plugin-context.ts +75 -0
- package/src/test-utils/rest-api-test-utils.ts +265 -0
- package/src/test-utils/test-actors.ts +62 -0
- package/src/test-utils/typed-hooks.ts +54 -0
- package/src/types/commerce-types.ts +34 -0
- package/src/utils/id.ts +3 -0
- package/src/utils/logger.ts +18 -0
- package/src/utils/pagination.ts +22 -0
|
@@ -0,0 +1,299 @@
|
|
|
1
|
+
import { OpenAPIHono } from "@hono/zod-openapi";
|
|
2
|
+
import type { Kernel } from "../../runtime/kernel.js";
|
|
3
|
+
import { assertPermission } from "../../auth/permissions.js";
|
|
4
|
+
import type { Actor } from "../../auth/types.js";
|
|
5
|
+
import type { AppEnv } from "./utils.js";
|
|
6
|
+
import {
|
|
7
|
+
getProfileRoute,
|
|
8
|
+
listAddressesRoute,
|
|
9
|
+
listCustomerOrdersRoute,
|
|
10
|
+
getCustomerOrderRoute,
|
|
11
|
+
getOrderTrackingRoute,
|
|
12
|
+
getOrderDownloadsRoute,
|
|
13
|
+
listCoursesRoute,
|
|
14
|
+
deleteAddressRoute,
|
|
15
|
+
reorderRoute,
|
|
16
|
+
updateProfileRoute,
|
|
17
|
+
createAddressRoute,
|
|
18
|
+
} from "./schemas/customer-portal.js";
|
|
19
|
+
import { isUUID, mapErrorToStatus } from "./utils.js";
|
|
20
|
+
|
|
21
|
+
export function createCustomerPortalRoutes(kernel: Kernel) {
|
|
22
|
+
const router = new OpenAPIHono<AppEnv>();
|
|
23
|
+
|
|
24
|
+
router.use("*", async (c, next) => {
|
|
25
|
+
if (!c.get("actor")) {
|
|
26
|
+
return c.json(
|
|
27
|
+
{ error: { code: "FORBIDDEN", message: "Authentication required." } },
|
|
28
|
+
401,
|
|
29
|
+
);
|
|
30
|
+
}
|
|
31
|
+
await next();
|
|
32
|
+
});
|
|
33
|
+
|
|
34
|
+
/**
|
|
35
|
+
* Resolves an actor whose userId is the customer profile UUID (not the Better Auth user ID).
|
|
36
|
+
* Required so that `assertOwnership(actor, order.customerId)` compares UUIDs correctly,
|
|
37
|
+
* since orders.customer_id stores the customer profile UUID, not the Better Auth string ID.
|
|
38
|
+
*/
|
|
39
|
+
async function resolveCustomerActor(actor: Actor): Promise<Actor | null> {
|
|
40
|
+
const customer = await kernel.services.customers.getByUserId(actor.userId, actor);
|
|
41
|
+
if (!customer.ok) return null;
|
|
42
|
+
return { ...actor, userId: customer.value.id };
|
|
43
|
+
}
|
|
44
|
+
|
|
45
|
+
// @ts-expect-error -- openapi handler union return type
|
|
46
|
+
router.openapi(getProfileRoute, async (c) => {
|
|
47
|
+
const actor = c.get("actor") as Actor;
|
|
48
|
+
const customer = await kernel.services.customers.getByUserId(actor.userId, actor);
|
|
49
|
+
if (!customer.ok) return c.json({ error: customer.error }, 404);
|
|
50
|
+
return c.json({ data: customer.value });
|
|
51
|
+
});
|
|
52
|
+
|
|
53
|
+
// @ts-expect-error -- openapi handler union return type
|
|
54
|
+
router.openapi(updateProfileRoute, async (c) => {
|
|
55
|
+
const actor = c.get("actor") as Actor;
|
|
56
|
+
assertPermission(actor, "customers:update:self");
|
|
57
|
+
const result = await kernel.services.customers.updateByUserId(
|
|
58
|
+
actor.userId,
|
|
59
|
+
c.req.valid("json") as Parameters<typeof kernel.services.customers.updateByUserId>[1],
|
|
60
|
+
actor,
|
|
61
|
+
);
|
|
62
|
+
if (!result.ok) return c.json({ error: result.error }, 422);
|
|
63
|
+
return c.json({ data: result.value });
|
|
64
|
+
});
|
|
65
|
+
|
|
66
|
+
router.openapi(listAddressesRoute, async (c) => {
|
|
67
|
+
const actor = c.get("actor") as Actor;
|
|
68
|
+
const addresses = await kernel.services.customers.getAddresses(
|
|
69
|
+
actor.userId,
|
|
70
|
+
actor,
|
|
71
|
+
);
|
|
72
|
+
return c.json({ data: addresses.ok ? addresses.value : [] });
|
|
73
|
+
});
|
|
74
|
+
|
|
75
|
+
// @ts-expect-error -- openapi handler union return type
|
|
76
|
+
router.openapi(createAddressRoute, async (c) => {
|
|
77
|
+
const actor = c.get("actor") as Actor;
|
|
78
|
+
const result = await kernel.services.customers.addAddress(
|
|
79
|
+
actor.userId,
|
|
80
|
+
c.req.valid("json") as Parameters<typeof kernel.services.customers.addAddress>[1],
|
|
81
|
+
actor,
|
|
82
|
+
);
|
|
83
|
+
if (!result.ok) return c.json({ error: result.error }, 422);
|
|
84
|
+
return c.json({ data: result.value }, 201);
|
|
85
|
+
});
|
|
86
|
+
|
|
87
|
+
// @ts-expect-error -- openapi handler union return type
|
|
88
|
+
router.openapi(deleteAddressRoute, async (c) => {
|
|
89
|
+
const actor = c.get("actor") as Actor;
|
|
90
|
+
const result = await kernel.services.customers.deleteAddress(
|
|
91
|
+
actor.userId,
|
|
92
|
+
c.req.param("id"),
|
|
93
|
+
actor,
|
|
94
|
+
);
|
|
95
|
+
if (!result.ok) return c.json({ error: result.error }, 404);
|
|
96
|
+
return c.json({ data: { deleted: true } });
|
|
97
|
+
});
|
|
98
|
+
|
|
99
|
+
// @ts-expect-error -- openapi handler union return type
|
|
100
|
+
router.openapi(listCustomerOrdersRoute, async (c) => {
|
|
101
|
+
const actor = c.get("actor") as Actor;
|
|
102
|
+
const status = c.req.query("status");
|
|
103
|
+
// Resolve customer profile UUID from Better Auth userId
|
|
104
|
+
const customerResult = await kernel.services.customers.getByUserId(actor.userId, actor);
|
|
105
|
+
if (!customerResult.ok) return c.json({ data: [], meta: { total: 0, page: 1, limit: 20, totalPages: 0 } });
|
|
106
|
+
const result = await kernel.services.orders.listByCustomer(customerResult.value.id, {
|
|
107
|
+
page: Number.parseInt(c.req.query("page") ?? "1", 10),
|
|
108
|
+
limit: Number.parseInt(c.req.query("limit") ?? "20", 10),
|
|
109
|
+
...(status !== undefined ? { status } : {}),
|
|
110
|
+
});
|
|
111
|
+
if (!result.ok) return c.json({ error: result.error }, 500);
|
|
112
|
+
return c.json({ data: result.value.items, meta: result.value.pagination });
|
|
113
|
+
});
|
|
114
|
+
|
|
115
|
+
// @ts-expect-error -- openapi handler union return type
|
|
116
|
+
router.openapi(getCustomerOrderRoute, async (c) => {
|
|
117
|
+
const actor = c.get("actor") as Actor;
|
|
118
|
+
const id = c.req.param("idOrNumber");
|
|
119
|
+
const customerActor = await resolveCustomerActor(actor);
|
|
120
|
+
if (!customerActor) return c.json({ error: { code: "NOT_FOUND", message: "Customer profile not found." } }, 404);
|
|
121
|
+
const result = isUUID(id)
|
|
122
|
+
? await kernel.services.orders.getById(id, customerActor)
|
|
123
|
+
: await kernel.services.orders.getByNumber(id, customerActor);
|
|
124
|
+
|
|
125
|
+
if (!result.ok)
|
|
126
|
+
return c.json({ error: result.error }, mapErrorToStatus(result.error));
|
|
127
|
+
return c.json({ data: result.value });
|
|
128
|
+
});
|
|
129
|
+
|
|
130
|
+
// @ts-expect-error -- openapi handler union return type
|
|
131
|
+
router.openapi(getOrderTrackingRoute, async (c) => {
|
|
132
|
+
const actor = c.get("actor") as Actor;
|
|
133
|
+
const id = c.req.param("idOrNumber");
|
|
134
|
+
const customerActor = await resolveCustomerActor(actor);
|
|
135
|
+
if (!customerActor) return c.json({ error: { code: "NOT_FOUND", message: "Customer profile not found." } }, 404);
|
|
136
|
+
|
|
137
|
+
const orderResult = isUUID(id)
|
|
138
|
+
? await kernel.services.orders.getById(id, customerActor)
|
|
139
|
+
: await kernel.services.orders.getByNumber(id, customerActor);
|
|
140
|
+
|
|
141
|
+
if (!orderResult.ok) {
|
|
142
|
+
return c.json(
|
|
143
|
+
{ error: orderResult.error },
|
|
144
|
+
mapErrorToStatus(orderResult.error),
|
|
145
|
+
);
|
|
146
|
+
}
|
|
147
|
+
|
|
148
|
+
const fulfillments = await kernel.services.fulfillment.getByOrderId(
|
|
149
|
+
orderResult.value.id,
|
|
150
|
+
);
|
|
151
|
+
if (!fulfillments.ok) return c.json({ error: fulfillments.error }, 500);
|
|
152
|
+
|
|
153
|
+
return c.json({
|
|
154
|
+
data: fulfillments.value.map((item) => ({
|
|
155
|
+
fulfillmentId: item.id,
|
|
156
|
+
status: item.status,
|
|
157
|
+
carrier: item.carrier ?? null,
|
|
158
|
+
trackingNumber: item.trackingNumber ?? null,
|
|
159
|
+
trackingUrl: item.trackingUrl ?? null,
|
|
160
|
+
estimatedDelivery: item.estimatedDelivery ?? null,
|
|
161
|
+
shippedAt: item.shippedAt ?? null,
|
|
162
|
+
deliveredAt: item.deliveredAt ?? null,
|
|
163
|
+
lineItems: item.lineItems,
|
|
164
|
+
})),
|
|
165
|
+
});
|
|
166
|
+
});
|
|
167
|
+
|
|
168
|
+
// @ts-expect-error -- openapi handler union return type
|
|
169
|
+
router.openapi(getOrderDownloadsRoute, async (c) => {
|
|
170
|
+
const actor = c.get("actor") as Actor;
|
|
171
|
+
const customerActor = await resolveCustomerActor(actor);
|
|
172
|
+
if (!customerActor) return c.json({ error: { code: "NOT_FOUND", message: "Customer profile not found." } }, 404);
|
|
173
|
+
const orderResult = await kernel.services.orders.getById(
|
|
174
|
+
c.req.param("orderId"),
|
|
175
|
+
customerActor,
|
|
176
|
+
);
|
|
177
|
+
if (!orderResult.ok) {
|
|
178
|
+
return c.json(
|
|
179
|
+
{ error: orderResult.error },
|
|
180
|
+
mapErrorToStatus(orderResult.error),
|
|
181
|
+
);
|
|
182
|
+
}
|
|
183
|
+
|
|
184
|
+
const digitalItems = orderResult.value.lineItems.filter(
|
|
185
|
+
(lineItem) => lineItem.entityType === "digitalDownload",
|
|
186
|
+
);
|
|
187
|
+
|
|
188
|
+
const downloads = await Promise.all(
|
|
189
|
+
digitalItems.map(async (lineItem) => {
|
|
190
|
+
const result = await kernel.services.fulfillment.getDownloadUrl(
|
|
191
|
+
orderResult.value.id,
|
|
192
|
+
lineItem.id,
|
|
193
|
+
actor.userId,
|
|
194
|
+
actor,
|
|
195
|
+
);
|
|
196
|
+
|
|
197
|
+
return {
|
|
198
|
+
lineItemId: lineItem.id,
|
|
199
|
+
title: lineItem.title,
|
|
200
|
+
downloadUrl: result.ok ? result.value.url : null,
|
|
201
|
+
downloadsRemaining: result.ok ? result.value.remaining : 0,
|
|
202
|
+
expiresAt: result.ok ? result.value.expiresAt : null,
|
|
203
|
+
};
|
|
204
|
+
}),
|
|
205
|
+
);
|
|
206
|
+
|
|
207
|
+
return c.json({ data: downloads });
|
|
208
|
+
});
|
|
209
|
+
|
|
210
|
+
// @ts-expect-error -- openapi handler union return type
|
|
211
|
+
router.openapi(listCoursesRoute, async (c) => {
|
|
212
|
+
const actor = c.get("actor") as Actor;
|
|
213
|
+
const result = await kernel.services.fulfillment.getDigitalAccess(
|
|
214
|
+
actor.userId,
|
|
215
|
+
"course",
|
|
216
|
+
);
|
|
217
|
+
if (!result.ok) return c.json({ error: result.error }, 500);
|
|
218
|
+
|
|
219
|
+
return c.json({
|
|
220
|
+
data: result.value.map((item) => ({
|
|
221
|
+
entityId: item.entityId,
|
|
222
|
+
title: item.title,
|
|
223
|
+
accessGrantedAt: item.grantedAt,
|
|
224
|
+
accessExpiresAt: item.expiresAt,
|
|
225
|
+
isActive: item.isActive,
|
|
226
|
+
orderId: item.orderId,
|
|
227
|
+
})),
|
|
228
|
+
});
|
|
229
|
+
});
|
|
230
|
+
|
|
231
|
+
// @ts-expect-error -- openapi handler union return type
|
|
232
|
+
router.openapi(reorderRoute, async (c) => {
|
|
233
|
+
const actor = c.get("actor") as Actor;
|
|
234
|
+
const customerActor = await resolveCustomerActor(actor);
|
|
235
|
+
if (!customerActor) return c.json({ error: { code: "NOT_FOUND", message: "Customer profile not found." } }, 404);
|
|
236
|
+
const orderResult = await kernel.services.orders.getById(
|
|
237
|
+
c.req.param("orderId"),
|
|
238
|
+
customerActor,
|
|
239
|
+
);
|
|
240
|
+
if (!orderResult.ok) {
|
|
241
|
+
return c.json(
|
|
242
|
+
{ error: orderResult.error },
|
|
243
|
+
mapErrorToStatus(orderResult.error),
|
|
244
|
+
);
|
|
245
|
+
}
|
|
246
|
+
|
|
247
|
+
const cartResult = await kernel.services.cart.create(
|
|
248
|
+
{
|
|
249
|
+
customerId: actor.userId,
|
|
250
|
+
currency: orderResult.value.currency,
|
|
251
|
+
},
|
|
252
|
+
actor,
|
|
253
|
+
);
|
|
254
|
+
|
|
255
|
+
if (!cartResult.ok) return c.json({ error: cartResult.error }, 500);
|
|
256
|
+
|
|
257
|
+
const addResults = await Promise.all(
|
|
258
|
+
orderResult.value.lineItems.map((lineItem) =>
|
|
259
|
+
kernel.services.cart.addItem(
|
|
260
|
+
{
|
|
261
|
+
cartId: cartResult.value.id,
|
|
262
|
+
entityId: lineItem.entityId,
|
|
263
|
+
quantity: lineItem.quantity,
|
|
264
|
+
unitPriceSnapshot: lineItem.unitPrice,
|
|
265
|
+
currency: orderResult.value.currency,
|
|
266
|
+
...(lineItem.variantId != null
|
|
267
|
+
? { variantId: lineItem.variantId }
|
|
268
|
+
: {}),
|
|
269
|
+
},
|
|
270
|
+
actor,
|
|
271
|
+
),
|
|
272
|
+
),
|
|
273
|
+
);
|
|
274
|
+
|
|
275
|
+
const failures = addResults
|
|
276
|
+
.map((item, index) =>
|
|
277
|
+
item.ok
|
|
278
|
+
? null
|
|
279
|
+
: {
|
|
280
|
+
item: orderResult.value.lineItems[index]?.title ?? "unknown",
|
|
281
|
+
reason: item.error.message,
|
|
282
|
+
},
|
|
283
|
+
)
|
|
284
|
+
.filter(Boolean);
|
|
285
|
+
|
|
286
|
+
return c.json(
|
|
287
|
+
{
|
|
288
|
+
data: {
|
|
289
|
+
cartId: cartResult.value.id,
|
|
290
|
+
itemsAdded: addResults.filter((item) => item.ok).length,
|
|
291
|
+
itemsFailed: failures,
|
|
292
|
+
},
|
|
293
|
+
},
|
|
294
|
+
201,
|
|
295
|
+
);
|
|
296
|
+
});
|
|
297
|
+
|
|
298
|
+
return router;
|
|
299
|
+
}
|
|
@@ -0,0 +1,74 @@
|
|
|
1
|
+
import { OpenAPIHono } from "@hono/zod-openapi";
|
|
2
|
+
import { swaggerUI } from "@hono/swagger-ui";
|
|
3
|
+
import { sql } from "drizzle-orm";
|
|
4
|
+
import type { Kernel } from "../../runtime/kernel.js";
|
|
5
|
+
import type { AppEnv } from "./utils.js";
|
|
6
|
+
import { catalogRoutes } from "./routes/catalog.js";
|
|
7
|
+
import { inventoryRoutes } from "./routes/inventory.js";
|
|
8
|
+
import { mediaRoutes } from "./routes/media.js";
|
|
9
|
+
import { cartRoutes } from "./routes/carts.js";
|
|
10
|
+
import { checkoutRoutes } from "./routes/checkout.js";
|
|
11
|
+
import { orderRoutes } from "./routes/orders.js";
|
|
12
|
+
import { paymentRoutes } from "./routes/payments.js";
|
|
13
|
+
import { webhookRoutes } from "./routes/webhooks.js";
|
|
14
|
+
import { pricingRoutes } from "./routes/pricing.js";
|
|
15
|
+
import { promotionRoutes } from "./routes/promotions.js";
|
|
16
|
+
import { searchRoutes } from "./routes/search.js";
|
|
17
|
+
import { auditRoutes } from "./routes/audit.js";
|
|
18
|
+
import { adminJobRoutes } from "./routes/admin-jobs.js";
|
|
19
|
+
|
|
20
|
+
export function createRestRoutes(kernel: Kernel) {
|
|
21
|
+
const router = new OpenAPIHono<AppEnv>({
|
|
22
|
+
// Standardize Zod validation error responses across all routes
|
|
23
|
+
defaultHook: (result, c) => {
|
|
24
|
+
if (!result.success) {
|
|
25
|
+
const isProd = process.env.NODE_ENV === "production";
|
|
26
|
+
return c.json({
|
|
27
|
+
error: {
|
|
28
|
+
code: "VALIDATION_FAILED",
|
|
29
|
+
// In production: generic message. In dev: detailed field errors.
|
|
30
|
+
message: isProd
|
|
31
|
+
? "Invalid input."
|
|
32
|
+
: result.error.issues
|
|
33
|
+
.map((i) => `${i.path.join(".")}: ${i.message}`)
|
|
34
|
+
.join("; "),
|
|
35
|
+
},
|
|
36
|
+
}, 422);
|
|
37
|
+
}
|
|
38
|
+
},
|
|
39
|
+
});
|
|
40
|
+
|
|
41
|
+
// F5: Health check with database probe — minimal info for load balancers
|
|
42
|
+
router.get("/health", async (c) => {
|
|
43
|
+
try {
|
|
44
|
+
const db = kernel.database.db;
|
|
45
|
+
await (db as { execute: (q: unknown) => Promise<unknown> }).execute(sql`SELECT 1`);
|
|
46
|
+
return c.json({ status: "ok" });
|
|
47
|
+
} catch {
|
|
48
|
+
return c.json({ status: "down" }, 503);
|
|
49
|
+
}
|
|
50
|
+
});
|
|
51
|
+
|
|
52
|
+
// ─── Domain routes ──────────────────────────────────────────────────
|
|
53
|
+
router.route("/catalog", catalogRoutes(kernel));
|
|
54
|
+
router.route("/inventory", inventoryRoutes(kernel));
|
|
55
|
+
router.route("/media", mediaRoutes(kernel));
|
|
56
|
+
router.route("/carts", cartRoutes(kernel));
|
|
57
|
+
router.route("/checkout", checkoutRoutes(kernel));
|
|
58
|
+
router.route("/orders", orderRoutes(kernel));
|
|
59
|
+
router.route("/payments", paymentRoutes(kernel));
|
|
60
|
+
router.route("/webhooks", webhookRoutes(kernel));
|
|
61
|
+
router.route("/pricing", pricingRoutes(kernel));
|
|
62
|
+
router.route("/promotions", promotionRoutes(kernel));
|
|
63
|
+
router.route("/search", searchRoutes(kernel));
|
|
64
|
+
router.route("/audit", auditRoutes(kernel));
|
|
65
|
+
router.route("/admin", adminJobRoutes(kernel));
|
|
66
|
+
|
|
67
|
+
// Swagger UI — disabled in production unless config.exposeOpenApiSpec is true
|
|
68
|
+
const exposeSpec = kernel.config.exposeOpenApiSpec ?? (process.env.NODE_ENV !== "production");
|
|
69
|
+
if (exposeSpec) {
|
|
70
|
+
router.get("/reference", swaggerUI({ url: "/api/doc" }));
|
|
71
|
+
}
|
|
72
|
+
|
|
73
|
+
return router;
|
|
74
|
+
}
|