meta {
  name: Unhide Post
  type: http
  seq: 6
}

delete {
  url: {{appview_url}}/api/mod/hide/123456
}

headers {
  Content-Type: application/json
}

body:json {
  {
    "reason": "False positive - post is appropriate"
  }
}

assert {
  res.status: eq 200
  res.body.success: eq true
  res.body.action: eq space.atbb.modAction.undelete
}

docs {
  Unhides a previously hidden post (reversal moderation action).

  Requires authentication via session cookie and `space.atbb.permission.moderatePosts` permission.

  Path parameters:
  - postId: string (required) - Database ID of the post to unhide (in URL path)

  Body parameters:
  - reason: string (required) - Reason for unhiding (1-3000 characters, cannot be empty)

  Returns:
  {
    "success": true,
    "action": "space.atbb.modAction.undelete",
    "postId": "123456",
    "postUri": "at://user-did/space.atbb.post/rkey",
    "uri": "at://forum-did/space.atbb.modAction/rkey",
    "cid": "bafyrei...",
    "alreadyActive": false
  }

  If post is already unhidden, returns 200 with `alreadyActive: true` (idempotent).

  Writes a modAction record to the Forum DID's PDS with:
  - action: "space.atbb.modAction.undelete"
  - subject: { post: { uri, cid } }
  - reason: provided reason
  - createdBy: moderator's DID

  Error codes:
  - 400: Invalid input (invalid postId format, missing/empty reason, malformed JSON)
  - 401: Unauthorized (not authenticated)
  - 403: Forbidden (lacks moderatePosts permission)
  - 404: Post not found
  - 500: ForumAgent not available (server configuration issue)
  - 503: ForumAgent not authenticated or unable to reach Forum PDS (retry later)

  Notes:
  - Unhide writes a distinct "undelete" action type (different from hide's "delete")
  - Read-path logic determines current hidden state by checking most recent action chronologically
  - Additive reversal model: unhide writes new record, doesn't delete hide record
}