Overview

This endpoint allows you to delete a shopping basket by its unique identifier. This operation is an essential part of the Basket domain’s lifecycle management.

Business Rules

• Basket must exist to be deleted
• Only the authenticated owner of the basket can delete their own basket
• Deleting a basket will permanently remove all items within it
• The basket ID is automatically derived from the authenticated user’s ID

Authentication

This endpoint requires authentication. The user’s identity is verified using Keycloak authentication:

• A valid authentication token must be provided
• The user’s ID is extracted from the sub claim in the JWT token
• Unauthorized access will result in a 401 Unauthorized response

Implementation Details

The delete operation is handled by the DeleteBasketCommandHandler which:

• Validates user authentication
• Verifies basket ownership
• Removes the basket from the repository
• Uses the user’s ID from claims as the basket identifier

Architecture

DELETE (/api/v1/baskets)

Request

No request body is required. The basket ID is automatically determined from the authenticated user’s identity.

Example Usage

curl -X DELETE https://api.bookworm.com/api/v1/baskets/{basketId} \
  -H "Authorization: Bearer <your-jwt-token>"

Responses

204 No Content

Successful deletion of the basket.

401 Unauthorized

Returned when:

• No authentication token is provided
• Invalid authentication token
• Token has expired

404 Not Found

Returned when:

• The basket does not exist for the authenticated user

Error Examples

{
  "type": "https://tools.ietf.org/html/rfc7235#section-3.1",
  "title": "Unauthorized",
  "status": 401,
  "detail": "User is not authenticated."
}

{
  "type": "https://tools.ietf.org/html/rfc7231#section-6.5.4",
  "title": "Not Found",
  "status": 404,
  "detail": "Basket with id {userId} not found."
}