AgentSkillsCN

api-conventions

MX Space API 设计规范。在编写控制器、API 端点,或处理 HTTP 请求时,应严格遵循这些规范。

SKILL.md
--- frontmatter
name: api-conventions
description: MX Space API design conventions. Apply when writing controllers, API endpoints, or handling HTTP requests.
user-invocable: false

MX Space API Design Conventions

Controller Decorators

typescript
// Use @ApiController instead of @Controller
// Dev environment has no prefix, production auto-adds /api/v{version} prefix
@ApiController('posts')  // ✓
@Controller('posts')     // ✗

Authentication

typescript
// Endpoints requiring login
@Auth()
async create() {}

// Optional auth (get current user status)
async get(@IsAuthenticated() isAuth: boolean) {}

// Get current user
async get(@CurrentUser() user: UserModel) {}

Response Transformation

ResponseInterceptor automatically handles response format:

Return TypeTransformed Result
Array{ data: [...] }
ObjectReturned directly
undefined204 No Content
@Paginator{ data: [...], pagination: {...} }
@BypassReturned as-is, skips transformation

JSONTransformInterceptor converts all fields to snake_case:

  • createdAtcreated_at
  • categoryIdcategory_id

Pagination

typescript
@Get('/')
@HTTPDecorators.Paginator  // Required decorator
async list(@Query() query: PagerDto) {
  // Must return mongoose.PaginateResult
  return this.model.paginate({}, {
    page: query.page,
    limit: query.size,
    sort: { created: -1 },
  })
}

Parameter Validation

typescript
// Path parameters
@Get('/:id')
async get(@Param() params: MongoIdDto) {
  return this.service.findById(params.id)
}

// Query parameters
@Get('/')
async list(@Query() query: PagerDto) {}

// Request body
@Post('/')
async create(@Body() body: CreateDto) {}

HTTP Methods

MethodPurposeStatus Code
GETRetrieve resource200
POSTCreate resource201
PUTFull update200
PATCHPartial update200
DELETEDelete resource204

Error Handling

typescript
import { BusinessException } from '~/common/exceptions/biz.exception'
import { ErrorCodeEnum } from '~/constants/error-code.constant'

// Business errors
throw new BusinessException(ErrorCodeEnum.PostNotFound)
throw new BusinessException(ErrorCodeEnum.SlugNotAvailable, slug)

// HTTP errors
throw new BadRequestException('Invalid input')
throw new NotFoundException('Resource not found')
throw new UnauthorizedException('Not logged in')

Idempotency

typescript
// Add idempotency protection for create operations
@Post('/')
@HTTPDecorators.Idempotence()
async create() {}

// Custom idempotency key
@HTTPDecorators.Idempotence({ key: 'custom-key' })

Caching

typescript
// Disable cache
@Get('/')
@HttpCache.disable
async list() {}

// Custom cache
@HttpCache({ ttl: 60, key: 'my-key' })
async get() {}