bretton.dev / coves
A community based topic aggregation platform built on atproto
fork atom

fix(votes): fix error handling and add subject validation

P1 fixes:
- Use errors.Is() in handler to match wrapped errors (ErrNotAuthorized
was returning 500 instead of 403 when wrapped)

P2 fixes:
- Add SubjectValidator interface to check post/comment existence
- Service now validates subject exists before creating vote
- Returns ErrSubjectNotFound per lexicon if subject doesn't exist
- Prevents dangling votes on non-existent content

Also:
- Add CompositeSubjectValidator for checking both posts and comments
- Wire up subject validation in main.go with post/comment repos

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

bretton.dev e2826acf ceb62886

options
unified split
Changed files
+130 -25
cmd
server
main.go
internal
api
handlers
vote
errors.go
core
votes
service_impl.go
subject_validator.go
vote.go
tests
integration
vote_e2e_test.go
+30 -4
cmd/server/main.go 
···

       
389

       
389

       
 

       
	voteRepo := postgresRepo.NewVoteRepository(db)


     

       
390

       
390

       
 

       
	log.Println("✅ Vote repository initialized (Jetstream indexing only)")


     

       
391

       
391

       
 

       



     

       
392

       

       
-

       
	// Initialize vote service (for XRPC API endpoints)


     

       
393

       

       
-

       
	voteService := votes.NewService(voteRepo, oauthClient, oauthStore, nil)


     

       
394

       

       
-

       
	log.Println("✅ Vote service initialized (with OAuth authentication)")


     

       
395

       

       
-

       



     

       
396

       
392

       
 

       
	// Initialize comment repository (used by Jetstream consumer for indexing)


     

       
397

       
393

       
 

       
	commentRepo := postgresRepo.NewCommentRepository(db)


     

       
398

       
394

       
 

       
	log.Println("✅ Comment repository initialized (Jetstream indexing only)")


     

       

       
395

       
+

       



     

       

       
396

       
+

       
	// Initialize subject validator for votes (checks posts and comments exist)


     

       

       
397

       
+

       
	subjectValidator := votes.NewCompositeSubjectValidator(


     

       

       
398

       
+

       
		// Post existence checker


     

       

       
399

       
+

       
		func(ctx context.Context, uri string) (bool, error) {


     

       

       
400

       
+

       
			_, err := postRepo.GetByURI(ctx, uri)


     

       

       
401

       
+

       
			if err != nil {


     

       

       
402

       
+

       
				if err == posts.ErrNotFound {


     

       

       
403

       
+

       
					return false, nil


     

       

       
404

       
+

       
				}


     

       

       
405

       
+

       
				return false, err


     

       

       
406

       
+

       
			}


     

       

       
407

       
+

       
			return true, nil


     

       

       
408

       
+

       
		},


     

       

       
409

       
+

       
		// Comment existence checker


     

       

       
410

       
+

       
		func(ctx context.Context, uri string) (bool, error) {


     

       

       
411

       
+

       
			_, err := commentRepo.GetByURI(ctx, uri)


     

       

       
412

       
+

       
			if err != nil {


     

       

       
413

       
+

       
				if err == comments.ErrCommentNotFound {


     

       

       
414

       
+

       
					return false, nil


     

       

       
415

       
+

       
				}


     

       

       
416

       
+

       
				return false, err


     

       

       
417

       
+

       
			}


     

       

       
418

       
+

       
			return true, nil


     

       

       
419

       
+

       
		},


     

       

       
420

       
+

       
	)


     

       

       
421

       
+

       



     

       

       
422

       
+

       
	// Initialize vote service (for XRPC API endpoints)


     

       

       
423

       
+

       
	voteService := votes.NewService(voteRepo, subjectValidator, oauthClient, oauthStore, nil)


     

       

       
424

       
+

       
	log.Println("✅ Vote service initialized (with OAuth authentication and subject validation)")


     

       
399

       
425

       
 

       



     

       
400

       
426

       
 

       
	// Initialize comment service (for query API)


     

       
401

       
427

       
 

       
	// Requires user and community repos for proper author/community hydration per lexicon
+10 -8
internal/api/handlers/vote/errors.go 
···

       
3

       
3

       
 

       
import (


     

       
4

       
4

       
 

       
	"Coves/internal/core/votes"


     

       
5

       
5

       
 

       
	"encoding/json"


     

       

       
6

       
+

       
	"errors"


     

       
6

       
7

       
 

       
	"log"


     

       
7

       
8

       
 

       
	"net/http"


     

       
8

       
9

       
 

       
)


     
···

       
27

       
28

       
 

       



     

       
28

       
29

       
 

       
// handleServiceError converts service errors to appropriate HTTP responses


     

       
29

       
30

       
 

       
// Error names MUST match lexicon definitions exactly (UpperCamelCase)


     

       

       
31

       
+

       
// Uses errors.Is() to handle wrapped errors correctly


     

       
30

       
32

       
 

       
func handleServiceError(w http.ResponseWriter, err error) {


     

       
31

       

       
-

       
	switch err {


     

       
32

       

       
-

       
	case votes.ErrVoteNotFound:


     

       

       
33

       
+

       
	switch {


     

       

       
34

       
+

       
	case errors.Is(err, votes.ErrVoteNotFound):


     

       
33

       
35

       
 

       
		// Matches: social.coves.feed.vote.delete#VoteNotFound


     

       
34

       
36

       
 

       
		writeError(w, http.StatusNotFound, "VoteNotFound", "No vote found for this subject")


     

       
35

       

       
-

       
	case votes.ErrSubjectNotFound:


     

       

       
37

       
+

       
	case errors.Is(err, votes.ErrSubjectNotFound):


     

       
36

       
38

       
 

       
		// Matches: social.coves.feed.vote.create#SubjectNotFound


     

       
37

       
39

       
 

       
		writeError(w, http.StatusNotFound, "SubjectNotFound", "The subject post or comment was not found")


     

       
38

       

       
-

       
	case votes.ErrInvalidDirection:


     

       

       
40

       
+

       
	case errors.Is(err, votes.ErrInvalidDirection):


     

       
39

       
41

       
 

       
		writeError(w, http.StatusBadRequest, "InvalidRequest", "Vote direction must be 'up' or 'down'")


     

       
40

       

       
-

       
	case votes.ErrInvalidSubject:


     

       

       
42

       
+

       
	case errors.Is(err, votes.ErrInvalidSubject):


     

       
41

       
43

       
 

       
		// Matches: social.coves.feed.vote.create#InvalidSubject


     

       
42

       
44

       
 

       
		writeError(w, http.StatusBadRequest, "InvalidSubject", "The subject reference is invalid or malformed")


     

       
43

       

       
-

       
	case votes.ErrVoteAlreadyExists:


     

       

       
45

       
+

       
	case errors.Is(err, votes.ErrVoteAlreadyExists):


     

       
44

       
46

       
 

       
		writeError(w, http.StatusConflict, "AlreadyExists", "Vote already exists")


     

       
45

       

       
-

       
	case votes.ErrNotAuthorized:


     

       

       
47

       
+

       
	case errors.Is(err, votes.ErrNotAuthorized):


     

       
46

       
48

       
 

       
		// Matches: social.coves.feed.vote.create#NotAuthorized, social.coves.feed.vote.delete#NotAuthorized


     

       
47

       
49

       
 

       
		writeError(w, http.StatusForbidden, "NotAuthorized", "User is not authorized to vote on this content")


     

       
48

       

       
-

       
	case votes.ErrBanned:


     

       

       
50

       
+

       
	case errors.Is(err, votes.ErrBanned):


     

       
49

       
51

       
 

       
		writeError(w, http.StatusForbidden, "NotAuthorized", "User is not authorized to vote on this content")


     

       
50

       
52

       
 

       
	default:


     

       
51

       
53

       
 

       
		// Internal server error - log the actual error for debugging
+27 -9
internal/core/votes/service_impl.go 
···

       
19

       
19

       
 

       



     

       
20

       
20

       
 

       
// voteService implements the Service interface for vote operations


     

       
21

       
21

       
 

       
type voteService struct {


     

       
22

       

       
-

       
	repo        Repository


     

       
23

       

       
-

       
	oauthClient *oauthclient.OAuthClient


     

       
24

       

       
-

       
	oauthStore  oauth.ClientAuthStore


     

       
25

       

       
-

       
	logger      *slog.Logger


     

       

       
22

       
+

       
	repo             Repository


     

       

       
23

       
+

       
	subjectValidator SubjectValidator


     

       

       
24

       
+

       
	oauthClient      *oauthclient.OAuthClient


     

       

       
25

       
+

       
	oauthStore       oauth.ClientAuthStore


     

       

       
26

       
+

       
	logger           *slog.Logger


     

       
26

       
27

       
 

       
}


     

       
27

       
28

       
 

       



     

       
28

       
29

       
 

       
// NewService creates a new vote service instance


     

       
29

       

       
-

       
func NewService(repo Repository, oauthClient *oauthclient.OAuthClient, oauthStore oauth.ClientAuthStore, logger *slog.Logger) Service {


     

       

       
30

       
+

       
// subjectValidator can be nil to skip subject existence checks (not recommended for production)


     

       

       
31

       
+

       
func NewService(repo Repository, subjectValidator SubjectValidator, oauthClient *oauthclient.OAuthClient, oauthStore oauth.ClientAuthStore, logger *slog.Logger) Service {


     

       
30

       
32

       
 

       
	if logger == nil {


     

       
31

       
33

       
 

       
		logger = slog.Default()


     

       
32

       
34

       
 

       
	}


     

       
33

       
35

       
 

       
	return &voteService{


     

       
34

       

       
-

       
		repo:        repo,


     

       
35

       

       
-

       
		oauthClient: oauthClient,


     

       
36

       

       
-

       
		oauthStore:  oauthStore,


     

       
37

       

       
-

       
		logger:      logger,


     

       

       
36

       
+

       
		repo:             repo,


     

       

       
37

       
+

       
		subjectValidator: subjectValidator,


     

       

       
38

       
+

       
		oauthClient:      oauthClient,


     

       

       
39

       
+

       
		oauthStore:       oauthStore,


     

       

       
40

       
+

       
		logger:           logger,


     

       
38

       
41

       
 

       
	}


     

       
39

       
42

       
 

       
}


     

       
40

       
43

       
 

       



     
···

       
60

       
63

       
 

       
	// Validate subject CID is provided


     

       
61

       
64

       
 

       
	if req.Subject.CID == "" {


     

       
62

       
65

       
 

       
		return nil, ErrInvalidSubject


     

       

       
66

       
+

       
	}


     

       

       
67

       
+

       



     

       

       
68

       
+

       
	// Validate subject exists in AppView (post or comment)


     

       

       
69

       
+

       
	// This prevents creating votes on non-existent content


     

       

       
70

       
+

       
	if s.subjectValidator != nil {


     

       

       
71

       
+

       
		exists, err := s.subjectValidator.SubjectExists(ctx, req.Subject.URI)


     

       

       
72

       
+

       
		if err != nil {


     

       

       
73

       
+

       
			s.logger.Error("failed to validate subject existence",


     

       

       
74

       
+

       
				"error", err,


     

       

       
75

       
+

       
				"subject", req.Subject.URI)


     

       

       
76

       
+

       
			return nil, fmt.Errorf("failed to validate subject: %w", err)


     

       

       
77

       
+

       
		}


     

       

       
78

       
+

       
		if !exists {


     

       

       
79

       
+

       
			return nil, ErrSubjectNotFound


     

       

       
80

       
+

       
		}


     

       
63

       
81

       
 

       
	}


     

       
64

       
82

       
 

       



     

       
65

       
83

       
 

       
	// Check for existing vote by querying PDS directly (source of truth)
+50
internal/core/votes/subject_validator.go 
···

       

       
1

       
+

       
package votes


     

       

       
2

       
+

       



     

       

       
3

       
+

       
import (


     

       

       
4

       
+

       
	"context"


     

       

       
5

       
+

       
	"strings"


     

       

       
6

       
+

       
)


     

       

       
7

       
+

       



     

       

       
8

       
+

       
// SubjectExistsFunc is a function type that checks if a subject exists


     

       

       
9

       
+

       
type SubjectExistsFunc func(ctx context.Context, uri string) (bool, error)


     

       

       
10

       
+

       



     

       

       
11

       
+

       
// CompositeSubjectValidator validates subjects by checking both posts and comments


     

       

       
12

       
+

       
type CompositeSubjectValidator struct {


     

       

       
13

       
+

       
	postExists    SubjectExistsFunc


     

       

       
14

       
+

       
	commentExists SubjectExistsFunc


     

       

       
15

       
+

       
}


     

       

       
16

       
+

       



     

       

       
17

       
+

       
// NewCompositeSubjectValidator creates a validator that checks both posts and comments


     

       

       
18

       
+

       
// Pass nil for either function to skip validation for that type


     

       

       
19

       
+

       
func NewCompositeSubjectValidator(postExists, commentExists SubjectExistsFunc) *CompositeSubjectValidator {


     

       

       
20

       
+

       
	return &CompositeSubjectValidator{


     

       

       
21

       
+

       
		postExists:    postExists,


     

       

       
22

       
+

       
		commentExists: commentExists,


     

       

       
23

       
+

       
	}


     

       

       
24

       
+

       
}


     

       

       
25

       
+

       



     

       

       
26

       
+

       
// SubjectExists checks if a post or comment exists at the given URI


     

       

       
27

       
+

       
// Determines type from the collection in the URI (e.g., social.coves.feed.post vs social.coves.feed.comment)


     

       

       
28

       
+

       
func (v *CompositeSubjectValidator) SubjectExists(ctx context.Context, uri string) (bool, error) {


     

       

       
29

       
+

       
	// Parse collection from AT-URI: at://did/collection/rkey


     

       

       
30

       
+

       
	// Example: at://did:plc:xxx/social.coves.feed.post/abc123


     

       

       
31

       
+

       
	if strings.Contains(uri, "/social.coves.feed.post/") {


     

       

       
32

       
+

       
		if v.postExists != nil {


     

       

       
33

       
+

       
			return v.postExists(ctx, uri)


     

       

       
34

       
+

       
		}


     

       

       
35

       
+

       
		// If no post checker, assume exists (for testing)


     

       

       
36

       
+

       
		return true, nil


     

       

       
37

       
+

       
	}


     

       

       
38

       
+

       



     

       

       
39

       
+

       
	if strings.Contains(uri, "/social.coves.feed.comment/") {


     

       

       
40

       
+

       
		if v.commentExists != nil {


     

       

       
41

       
+

       
			return v.commentExists(ctx, uri)


     

       

       
42

       
+

       
		}


     

       

       
43

       
+

       
		// If no comment checker, assume exists (for testing)


     

       

       
44

       
+

       
		return true, nil


     

       

       
45

       
+

       
	}


     

       

       
46

       
+

       



     

       

       
47

       
+

       
	// Unknown collection type - could be from another app


     

       

       
48

       
+

       
	// For now, allow voting on unknown types (future-proofing)


     

       

       
49

       
+

       
	return true, nil


     

       

       
50

       
+

       
}
+9
internal/core/votes/vote.go 
···

       
1

       
1

       
 

       
package votes


     

       
2

       
2

       
 

       



     

       
3

       
3

       
 

       
import (


     

       

       
4

       
+

       
	"context"


     

       
4

       
5

       
 

       
	"time"


     

       
5

       
6

       
 

       
)


     

       

       
7

       
+

       



     

       

       
8

       
+

       
// SubjectValidator validates that vote subjects (posts/comments) exist


     

       

       
9

       
+

       
// This prevents creating votes on non-existent content


     

       

       
10

       
+

       
type SubjectValidator interface {


     

       

       
11

       
+

       
	// SubjectExists checks if a post or comment exists at the given URI


     

       

       
12

       
+

       
	// Returns true if found, false if not found


     

       

       
13

       
+

       
	SubjectExists(ctx context.Context, uri string) (bool, error)


     

       

       
14

       
+

       
}


     

       
6

       
15

       
 

       



     

       
7

       
16

       
 

       
// Vote represents a vote in the AppView database


     

       
8

       
17

       
 

       
// Votes are indexed from the firehose after being written to user repositories
+4 -4
tests/integration/vote_e2e_test.go 
···

       
85

       
85

       
 

       
	oauthClient := SetupOAuthTestClient(t, oauthStore)


     

       
86

       
86

       
 

       



     

       
87

       
87

       
 

       
	// Setup services


     

       
88

       

       
-

       
	voteService := votes.NewService(voteRepo, oauthClient, oauthStore, nil)


     

       

       
88

       
+

       
	voteService := votes.NewService(voteRepo, nil, oauthClient, oauthStore, nil)


     

       
89

       
89

       
 

       



     

       
90

       
90

       
 

       
	// Create test user on PDS


     

       
91

       
91

       
 

       
	testUserHandle := fmt.Sprintf("voter-%d.local.coves.dev", time.Now().Unix())


     
···

       
310

       
310

       
 

       



     

       
311

       
311

       
 

       
	oauthStore := SetupOAuthTestStore(t, db)


     

       
312

       
312

       
 

       
	oauthClient := SetupOAuthTestClient(t, oauthStore)


     

       
313

       

       
-

       
	voteService := votes.NewService(voteRepo, oauthClient, oauthStore, nil)


     

       

       
313

       
+

       
	voteService := votes.NewService(voteRepo, nil, oauthClient, oauthStore, nil)


     

       
314

       
314

       
 

       



     

       
315

       
315

       
 

       
	// Create test user


     

       
316

       
316

       
 

       
	testUserHandle := fmt.Sprintf("toggle-%d.local.coves.dev", time.Now().Unix())


     
···

       
469

       
469

       
 

       



     

       
470

       
470

       
 

       
	oauthStore := SetupOAuthTestStore(t, db)


     

       
471

       
471

       
 

       
	oauthClient := SetupOAuthTestClient(t, oauthStore)


     

       
472

       

       
-

       
	voteService := votes.NewService(voteRepo, oauthClient, oauthStore, nil)


     

       

       
472

       
+

       
	voteService := votes.NewService(voteRepo, nil, oauthClient, oauthStore, nil)


     

       
473

       
473

       
 

       



     

       
474

       
474

       
 

       
	// Create test user


     

       
475

       
475

       
 

       
	testUserHandle := fmt.Sprintf("flip-%d.local.coves.dev", time.Now().Unix())


     
···

       
648

       
648

       
 

       



     

       
649

       
649

       
 

       
	oauthStore := SetupOAuthTestStore(t, db)


     

       
650

       
650

       
 

       
	oauthClient := SetupOAuthTestClient(t, oauthStore)


     

       
651

       

       
-

       
	voteService := votes.NewService(voteRepo, oauthClient, oauthStore, nil)


     

       

       
651

       
+

       
	voteService := votes.NewService(voteRepo, nil, oauthClient, oauthStore, nil)


     

       
652

       
652

       
 

       



     

       
653

       
653

       
 

       
	// Create test user


     

       
654

       
654

       
 

       
	testUserHandle := fmt.Sprintf("delete-%d.local.coves.dev", time.Now().Unix())