cratestack-core 0.4.4

Rust-native schema-first framework for typed HTTP APIs, generated clients, and backend services.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169

//! Batch envelope.
//!
//! tRPC-style per-item envelope for batch operations. The HTTP
//! response is always `200 OK` carrying a [`BatchResponse<T>`];
//! whole-batch infrastructure failures (bad request shape, size cap
//! exceeded, DB connection lost) still flow through the outer
//! `Result<_, CoolError>` and map to their usual status codes via
//! the standard handler.
//!
//! Per-item failures (validation, policy denial, not-found, stale
//! `if_match`, PK conflict) ride inside [`BatchItemStatus::Error`]
//! and DO NOT abort the batch — successful items in the same request
//! still commit. The transactional model used by the server backends
//! is one outer transaction with a per-item SAVEPOINT, so failed
//! items leave no audit row, no event outbox entry, and no row
//! mutation.

use serde::{Deserialize, Serialize};

use crate::error::CoolError;

#[cfg(test)]
mod tests;

/// Per-item result inside a [`BatchResponse`]. The `index` is the
/// item's position in the original request, so clients can pair
/// results with inputs even after server-side reordering (e.g.
/// parallel `batch_get` fetches in the future).
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct BatchItemResult<T> {
    pub index: usize,
    #[serde(flatten)]
    pub status: BatchItemStatus<T>,
}

/// Either a successful per-item outcome (`Ok`) or a per-item failure
/// (`Error`). Serializes as a tagged enum with the discriminant in
/// `status`:
///
/// ```json
/// { "status": "ok",    "value": { ... } }
/// { "status": "error", "error": { "code": "POLICY_DENIED", "message": "…" } }
/// ```
///
/// The `code` field maps 1:1 to [`CoolError::code`], so consumers
/// can share error-code constants across single and batch routes.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
#[serde(tag = "status", rename_all = "lowercase")]
pub enum BatchItemStatus<T> {
    Ok { value: T },
    Error { error: BatchItemError },
}

/// Public, safe-to-expose shape of a per-item failure. Mirrors
/// [`crate::CoolErrorResponse`] without the optional `details` field
/// — batch callers asking for per-item detail can repeat the
/// operation singly against the failed item to get the full error
/// envelope.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct BatchItemError {
    pub code: String,
    pub message: String,
}

impl BatchItemError {
    /// Project a [`CoolError`] into the public per-item shape, using
    /// the same `code()` / `public_message()` mapping the standard
    /// HTTP error handler uses for single-route responses.
    pub fn from_cool(error: &CoolError) -> Self {
        Self {
            code: error.code().to_owned(),
            message: error.public_message().into_owned(),
        }
    }
}

/// Summary counts attached to every [`BatchResponse`] so callers can
/// branch on aggregate status without scanning the result list.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub struct BatchSummary {
    pub total: usize,
    pub ok: usize,
    pub err: usize,
}

/// Wire envelope returned by every batch route. Always `200 OK` at
/// the HTTP layer; inspect `summary.err` (or scan `results`) to
/// surface per-item failures to the user.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct BatchResponse<T> {
    pub results: Vec<BatchItemResult<T>>,
    pub summary: BatchSummary,
}

impl<T> BatchResponse<T> {
    /// Build a [`BatchResponse`] from an in-order
    /// `Vec<Result<T, CoolError>>`. The `index` of each result
    /// matches its position in the input.
    pub fn from_results(per_item: Vec<Result<T, CoolError>>) -> Self {
        let total = per_item.len();
        let mut ok = 0usize;
        let mut err = 0usize;
        let results = per_item
            .into_iter()
            .enumerate()
            .map(|(index, outcome)| match outcome {
                Ok(value) => {
                    ok += 1;
                    BatchItemResult {
                        index,
                        status: BatchItemStatus::Ok { value },
                    }
                }
                Err(error) => {
                    err += 1;
                    BatchItemResult {
                        index,
                        status: BatchItemStatus::Error {
                            error: BatchItemError::from_cool(&error),
                        },
                    }
                }
            })
            .collect();
        Self {
            results,
            summary: BatchSummary { total, ok, err },
        }
    }
}

/// Wire envelope for `POST /<model>/batch-*` request bodies. Holds
/// the items in a single field so the envelope can grow (e.g. a
/// future `client_request_id`) without breaking deserialization.
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct BatchRequest<I> {
    pub items: Vec<I>,
}

/// Default upper bound on items in a single batch request. Server
/// backends enforce this before any SQL runs and surface
/// [`CoolError::Validation`] on the outer `Result` when exceeded.
/// The cap is identical for all five batch operations; deviating
/// per-op would invite footguns where `batch_get` accepts a list
/// that `batch_create` of the same length rejects.
pub const BATCH_MAX_ITEMS: usize = 1000;

/// Detect duplicate keys in a batch input, loud-failing the whole
/// request when found. Returns the first duplicate (by position) so
/// the surfaced error can name a specific offending index. Linear-
/// time, allocation-only in proportion to the input length.
///
/// Used by all five batch primitives — `batch_get`, `batch_delete`,
/// `batch_update`, `batch_create` (when the input carries a client-
/// supplied PK), and `batch_upsert`. The dedup posture is deliberate:
/// silently collapsing duplicates would break the per-item `index`
/// mapping the envelope promises and hide caller bugs.
pub fn find_duplicate_position<K: Eq + std::hash::Hash>(
    keys: impl IntoIterator<Item = K>,
) -> Option<(usize, usize)> {
    let mut seen: std::collections::HashMap<K, usize> = std::collections::HashMap::new();
    for (index, key) in keys.into_iter().enumerate() {
        if let Some(&first) = seen.get(&key) {
            return Some((first, index));
        }
        seen.insert(key, index);
    }
    None
}