+1 -1

.air/appview.toml

··· 5 5 6 6 exclude_regex = [".*_templ.go"] 7 7 include_ext = ["go", "templ", "html", "css"] 8 8 - exclude_dir = ["target", "atrium"] 8 8 + exclude_dir = ["target", "atrium", "nix"]

+4

.gitignore

··· 14 14 .DS_Store 15 15 .env 16 16 *.rdb 17 17 + .envrc 18 18 + # Created if following hacking.md 19 19 + genjwks.out 20 20 + /nix/vm-data

+12

.prettierrc.json

··· 1 1 + { 2 2 + "overrides": [ 3 3 + { 4 4 + "files": ["*.html"], 5 5 + "options": { 6 6 + "parser": "go-template" 7 7 + } 8 8 + } 9 9 + ], 10 10 + "bracketSameLine": true, 11 11 + "htmlWhitespaceSensitivity": "ignore" 12 12 + }

+2

.tangled/workflows/build.yml

··· 2 2 - event: ["push", "pull_request"] 3 3 branch: ["master"] 4 4 5 5 + engine: nixery 6 6 + 5 7 dependencies: 6 8 nixpkgs: 7 9 - go

+3 -12

.tangled/workflows/fmt.yml

··· 2 2 - event: ["push", "pull_request"] 3 3 branch: ["master"] 4 4 5 5 - dependencies: 6 6 - nixpkgs: 7 7 - - go 8 8 - - alejandra 5 5 + engine: nixery 9 6 10 7 steps: 11 11 - - name: "nix fmt" 8 8 + - name: "Check formatting" 12 9 command: | 13 13 - alejandra -c nix/**/*.nix flake.nix 14 14 - 15 15 - - name: "go fmt" 16 16 - command: | 17 17 - unformatted=$(gofmt -l .) 18 18 - test -z "$unformatted" || (echo "$unformatted" && exit 1) 19 19 - 10 10 + nix run .#fmt -- --ci

+2

.tangled/workflows/test.yml

··· 2 2 - event: ["push", "pull_request"] 3 3 branch: ["master"] 4 4 5 5 + engine: nixery 6 6 + 5 7 dependencies: 6 8 nixpkgs: 7 9 - go

-16

.zed/settings.json

··· 1 1 - // Folder-specific settings 2 2 - // 3 3 - // For a full list of overridable settings, and general information on folder-specific settings, 4 4 - // see the documentation: https://zed.dev/docs/configuring-zed#settings-files 5 5 - { 6 6 - "languages": { 7 7 - "HTML": { 8 8 - "prettier": { 9 9 - "format_on_save": false, 10 10 - "allowed": true, 11 11 - "parser": "go-template", 12 12 - "plugins": ["prettier-plugin-go-template"] 13 13 - } 14 14 - } 15 15 - } 16 16 - }

+1001 -1332

api/tangled/cbor_gen.go

··· 1202 1202 1203 1203 return nil 1204 1204 } 1205 1205 - func (t *GitRefUpdate_Meta) MarshalCBOR(w io.Writer) error { 1206 1206 - if t == nil { 1207 1207 - _, err := w.Write(cbg.CborNull) 1208 1208 - return err 1209 1209 - } 1210 1210 - 1211 1211 - cw := cbg.NewCborWriter(w) 1212 1212 - fieldCount := 3 1213 1213 - 1214 1214 - if t.LangBreakdown == nil { 1215 1215 - fieldCount-- 1216 1216 - } 1217 1217 - 1218 1218 - if _, err := cw.Write(cbg.CborEncodeMajorType(cbg.MajMap, uint64(fieldCount))); err != nil { 1219 1219 - return err 1220 1220 - } 1221 1221 - 1222 1222 - // t.CommitCount (tangled.GitRefUpdate_Meta_CommitCount) (struct) 1223 1223 - if len("commitCount") > 1000000 { 1224 1224 - return xerrors.Errorf("Value in field \"commitCount\" was too long") 1225 1225 - } 1226 1226 - 1227 1227 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("commitCount"))); err != nil { 1228 1228 - return err 1229 1229 - } 1230 1230 - if _, err := cw.WriteString(string("commitCount")); err != nil { 1231 1231 - return err 1232 1232 - } 1233 1233 - 1234 1234 - if err := t.CommitCount.MarshalCBOR(cw); err != nil { 1235 1235 - return err 1236 1236 - } 1237 1237 - 1238 1238 - // t.IsDefaultRef (bool) (bool) 1239 1239 - if len("isDefaultRef") > 1000000 { 1240 1240 - return xerrors.Errorf("Value in field \"isDefaultRef\" was too long") 1241 1241 - } 1242 1242 - 1243 1243 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("isDefaultRef"))); err != nil { 1244 1244 - return err 1245 1245 - } 1246 1246 - if _, err := cw.WriteString(string("isDefaultRef")); err != nil { 1247 1247 - return err 1248 1248 - } 1249 1249 - 1250 1250 - if err := cbg.WriteBool(w, t.IsDefaultRef); err != nil { 1251 1251 - return err 1252 1252 - } 1253 1253 - 1254 1254 - // t.LangBreakdown (tangled.GitRefUpdate_Meta_LangBreakdown) (struct) 1255 1255 - if t.LangBreakdown != nil { 1256 1256 - 1257 1257 - if len("langBreakdown") > 1000000 { 1258 1258 - return xerrors.Errorf("Value in field \"langBreakdown\" was too long") 1259 1259 - } 1260 1260 - 1261 1261 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("langBreakdown"))); err != nil { 1262 1262 - return err 1263 1263 - } 1264 1264 - if _, err := cw.WriteString(string("langBreakdown")); err != nil { 1265 1265 - return err 1266 1266 - } 1267 1267 - 1268 1268 - if err := t.LangBreakdown.MarshalCBOR(cw); err != nil { 1269 1269 - return err 1270 1270 - } 1271 1271 - } 1272 1272 - return nil 1273 1273 - } 1274 1274 - 1275 1275 - func (t *GitRefUpdate_Meta) UnmarshalCBOR(r io.Reader) (err error) { 1276 1276 - *t = GitRefUpdate_Meta{} 1277 1277 - 1278 1278 - cr := cbg.NewCborReader(r) 1279 1279 - 1280 1280 - maj, extra, err := cr.ReadHeader() 1281 1281 - if err != nil { 1282 1282 - return err 1283 1283 - } 1284 1284 - defer func() { 1285 1285 - if err == io.EOF { 1286 1286 - err = io.ErrUnexpectedEOF 1287 1287 - } 1288 1288 - }() 1289 1289 - 1290 1290 - if maj != cbg.MajMap { 1291 1291 - return fmt.Errorf("cbor input should be of type map") 1292 1292 - } 1293 1293 - 1294 1294 - if extra > cbg.MaxLength { 1295 1295 - return fmt.Errorf("GitRefUpdate_Meta: map struct too large (%d)", extra) 1296 1296 - } 1297 1297 - 1298 1298 - n := extra 1299 1299 - 1300 1300 - nameBuf := make([]byte, 13) 1301 1301 - for i := uint64(0); i < n; i++ { 1302 1302 - nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 1303 1303 - if err != nil { 1304 1304 - return err 1305 1305 - } 1306 1306 - 1307 1307 - if !ok { 1308 1308 - // Field doesn't exist on this type, so ignore it 1309 1309 - if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 1310 1310 - return err 1311 1311 - } 1312 1312 - continue 1313 1313 - } 1314 1314 - 1315 1315 - switch string(nameBuf[:nameLen]) { 1316 1316 - // t.CommitCount (tangled.GitRefUpdate_Meta_CommitCount) (struct) 1317 1317 - case "commitCount": 1318 1318 - 1319 1319 - { 1320 1320 - 1321 1321 - b, err := cr.ReadByte() 1322 1322 - if err != nil { 1323 1323 - return err 1324 1324 - } 1325 1325 - if b != cbg.CborNull[0] { 1326 1326 - if err := cr.UnreadByte(); err != nil { 1327 1327 - return err 1328 1328 - } 1329 1329 - t.CommitCount = new(GitRefUpdate_Meta_CommitCount) 1330 1330 - if err := t.CommitCount.UnmarshalCBOR(cr); err != nil { 1331 1331 - return xerrors.Errorf("unmarshaling t.CommitCount pointer: %w", err) 1332 1332 - } 1333 1333 - } 1334 1334 - 1335 1335 - } 1336 1336 - // t.IsDefaultRef (bool) (bool) 1337 1337 - case "isDefaultRef": 1338 1338 - 1339 1339 - maj, extra, err = cr.ReadHeader() 1340 1340 - if err != nil { 1341 1341 - return err 1342 1342 - } 1343 1343 - if maj != cbg.MajOther { 1344 1344 - return fmt.Errorf("booleans must be major type 7") 1345 1345 - } 1346 1346 - switch extra { 1347 1347 - case 20: 1348 1348 - t.IsDefaultRef = false 1349 1349 - case 21: 1350 1350 - t.IsDefaultRef = true 1351 1351 - default: 1352 1352 - return fmt.Errorf("booleans are either major type 7, value 20 or 21 (got %d)", extra) 1353 1353 - } 1354 1354 - // t.LangBreakdown (tangled.GitRefUpdate_Meta_LangBreakdown) (struct) 1355 1355 - case "langBreakdown": 1356 1356 - 1357 1357 - { 1358 1358 - 1359 1359 - b, err := cr.ReadByte() 1360 1360 - if err != nil { 1361 1361 - return err 1362 1362 - } 1363 1363 - if b != cbg.CborNull[0] { 1364 1364 - if err := cr.UnreadByte(); err != nil { 1365 1365 - return err 1366 1366 - } 1367 1367 - t.LangBreakdown = new(GitRefUpdate_Meta_LangBreakdown) 1368 1368 - if err := t.LangBreakdown.UnmarshalCBOR(cr); err != nil { 1369 1369 - return xerrors.Errorf("unmarshaling t.LangBreakdown pointer: %w", err) 1370 1370 - } 1371 1371 - } 1372 1372 - 1373 1373 - } 1374 1374 - 1375 1375 - default: 1376 1376 - // Field doesn't exist on this type, so ignore it 1377 1377 - if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 1378 1378 - return err 1379 1379 - } 1380 1380 - } 1381 1381 - } 1382 1382 - 1383 1383 - return nil 1384 1384 - } 1385 1385 - func (t *GitRefUpdate_Meta_CommitCount) MarshalCBOR(w io.Writer) error { 1205 1205 + func (t *GitRefUpdate_CommitCountBreakdown) MarshalCBOR(w io.Writer) error { 1386 1206 if t == nil { 1387 1207 _, err := w.Write(cbg.CborNull) 1388 1208 return err ··· 1399 1219 return err 1400 1220 } 1401 1221 1402 1402 - // t.ByEmail ([]*tangled.GitRefUpdate_Meta_CommitCount_ByEmail_Elem) (slice) 1222 1222 + // t.ByEmail ([]*tangled.GitRefUpdate_IndividualEmailCommitCount) (slice) 1403 1223 if t.ByEmail != nil { 1404 1224 1405 1225 if len("byEmail") > 1000000 { ··· 1430 1250 return nil 1431 1251 } 1432 1252 1433 1433 - func (t *GitRefUpdate_Meta_CommitCount) UnmarshalCBOR(r io.Reader) (err error) { 1434 1434 - *t = GitRefUpdate_Meta_CommitCount{} 1253 1253 + func (t *GitRefUpdate_CommitCountBreakdown) UnmarshalCBOR(r io.Reader) (err error) { 1254 1254 + *t = GitRefUpdate_CommitCountBreakdown{} 1435 1255 1436 1256 cr := cbg.NewCborReader(r) 1437 1257 ··· 1450 1270 } 1451 1271 1452 1272 if extra > cbg.MaxLength { 1453 1453 - return fmt.Errorf("GitRefUpdate_Meta_CommitCount: map struct too large (%d)", extra) 1273 1273 + return fmt.Errorf("GitRefUpdate_CommitCountBreakdown: map struct too large (%d)", extra) 1454 1274 } 1455 1275 1456 1276 n := extra ··· 1471 1291 } 1472 1292 1473 1293 switch string(nameBuf[:nameLen]) { 1474 1474 - // t.ByEmail ([]*tangled.GitRefUpdate_Meta_CommitCount_ByEmail_Elem) (slice) 1294 1294 + // t.ByEmail ([]*tangled.GitRefUpdate_IndividualEmailCommitCount) (slice) 1475 1295 case "byEmail": 1476 1296 1477 1297 maj, extra, err = cr.ReadHeader() ··· 1488 1308 } 1489 1309 1490 1310 if extra > 0 { 1491 1491 - t.ByEmail = make([]*GitRefUpdate_Meta_CommitCount_ByEmail_Elem, extra) 1311 1311 + t.ByEmail = make([]*GitRefUpdate_IndividualEmailCommitCount, extra) 1492 1312 } 1493 1313 1494 1314 for i := 0; i < int(extra); i++ { ··· 1510 1330 if err := cr.UnreadByte(); err != nil { 1511 1331 return err 1512 1332 } 1513 1513 - t.ByEmail[i] = new(GitRefUpdate_Meta_CommitCount_ByEmail_Elem) 1333 1333 + t.ByEmail[i] = new(GitRefUpdate_IndividualEmailCommitCount) 1514 1334 if err := t.ByEmail[i].UnmarshalCBOR(cr); err != nil { 1515 1335 return xerrors.Errorf("unmarshaling t.ByEmail[i] pointer: %w", err) 1516 1336 } ··· 1531 1351 1532 1352 return nil 1533 1353 } 1534 1534 - func (t *GitRefUpdate_Meta_CommitCount_ByEmail_Elem) MarshalCBOR(w io.Writer) error { 1354 1354 + func (t *GitRefUpdate_IndividualEmailCommitCount) MarshalCBOR(w io.Writer) error { 1535 1355 if t == nil { 1536 1356 _, err := w.Write(cbg.CborNull) 1537 1357 return err ··· 1590 1410 return nil 1591 1411 } 1592 1412 1593 1593 - func (t *GitRefUpdate_Meta_CommitCount_ByEmail_Elem) UnmarshalCBOR(r io.Reader) (err error) { 1594 1594 - *t = GitRefUpdate_Meta_CommitCount_ByEmail_Elem{} 1413 1413 + func (t *GitRefUpdate_IndividualEmailCommitCount) UnmarshalCBOR(r io.Reader) (err error) { 1414 1414 + *t = GitRefUpdate_IndividualEmailCommitCount{} 1595 1415 1596 1416 cr := cbg.NewCborReader(r) 1597 1417 ··· 1610 1430 } 1611 1431 1612 1432 if extra > cbg.MaxLength { 1613 1613 - return fmt.Errorf("GitRefUpdate_Meta_CommitCount_ByEmail_Elem: map struct too large (%d)", extra) 1433 1433 + return fmt.Errorf("GitRefUpdate_IndividualEmailCommitCount: map struct too large (%d)", extra) 1614 1434 } 1615 1435 1616 1436 n := extra ··· 1679 1499 1680 1500 return nil 1681 1501 } 1682 1682 - func (t *GitRefUpdate_Meta_LangBreakdown) MarshalCBOR(w io.Writer) error { 1502 1502 + func (t *GitRefUpdate_LangBreakdown) MarshalCBOR(w io.Writer) error { 1683 1503 if t == nil { 1684 1504 _, err := w.Write(cbg.CborNull) 1685 1505 return err ··· 1696 1516 return err 1697 1517 } 1698 1518 1699 1699 - // t.Inputs ([]*tangled.GitRefUpdate_Pair) (slice) 1519 1519 + // t.Inputs ([]*tangled.GitRefUpdate_IndividualLanguageSize) (slice) 1700 1520 if t.Inputs != nil { 1701 1521 1702 1522 if len("inputs") > 1000000 { ··· 1727 1547 return nil 1728 1548 } 1729 1549 1730 1730 - func (t *GitRefUpdate_Meta_LangBreakdown) UnmarshalCBOR(r io.Reader) (err error) { 1731 1731 - *t = GitRefUpdate_Meta_LangBreakdown{} 1550 1550 + func (t *GitRefUpdate_LangBreakdown) UnmarshalCBOR(r io.Reader) (err error) { 1551 1551 + *t = GitRefUpdate_LangBreakdown{} 1732 1552 1733 1553 cr := cbg.NewCborReader(r) 1734 1554 ··· 1747 1567 } 1748 1568 1749 1569 if extra > cbg.MaxLength { 1750 1750 - return fmt.Errorf("GitRefUpdate_Meta_LangBreakdown: map struct too large (%d)", extra) 1570 1570 + return fmt.Errorf("GitRefUpdate_LangBreakdown: map struct too large (%d)", extra) 1751 1571 } 1752 1572 1753 1573 n := extra ··· 1768 1588 } 1769 1589 1770 1590 switch string(nameBuf[:nameLen]) { 1771 1771 - // t.Inputs ([]*tangled.GitRefUpdate_Pair) (slice) 1591 1591 + // t.Inputs ([]*tangled.GitRefUpdate_IndividualLanguageSize) (slice) 1772 1592 case "inputs": 1773 1593 1774 1594 maj, extra, err = cr.ReadHeader() ··· 1785 1605 } 1786 1606 1787 1607 if extra > 0 { 1788 1788 - t.Inputs = make([]*GitRefUpdate_Pair, extra) 1608 1608 + t.Inputs = make([]*GitRefUpdate_IndividualLanguageSize, extra) 1789 1609 } 1790 1610 1791 1611 for i := 0; i < int(extra); i++ { ··· 1807 1627 if err := cr.UnreadByte(); err != nil { 1808 1628 return err 1809 1629 } 1810 1810 - t.Inputs[i] = new(GitRefUpdate_Pair) 1630 1630 + t.Inputs[i] = new(GitRefUpdate_IndividualLanguageSize) 1811 1631 if err := t.Inputs[i].UnmarshalCBOR(cr); err != nil { 1812 1632 return xerrors.Errorf("unmarshaling t.Inputs[i] pointer: %w", err) 1813 1633 } ··· 1828 1648 1829 1649 return nil 1830 1650 } 1831 1831 - func (t *GitRefUpdate_Pair) MarshalCBOR(w io.Writer) error { 1651 1651 + func (t *GitRefUpdate_IndividualLanguageSize) MarshalCBOR(w io.Writer) error { 1832 1652 if t == nil { 1833 1653 _, err := w.Write(cbg.CborNull) 1834 1654 return err ··· 1888 1708 return nil 1889 1709 } 1890 1710 1891 1891 - func (t *GitRefUpdate_Pair) UnmarshalCBOR(r io.Reader) (err error) { 1892 1892 - *t = GitRefUpdate_Pair{} 1711 1711 + func (t *GitRefUpdate_IndividualLanguageSize) UnmarshalCBOR(r io.Reader) (err error) { 1712 1712 + *t = GitRefUpdate_IndividualLanguageSize{} 1893 1713 1894 1714 cr := cbg.NewCborReader(r) 1895 1715 ··· 1908 1728 } 1909 1729 1910 1730 if extra > cbg.MaxLength { 1911 1911 - return fmt.Errorf("GitRefUpdate_Pair: map struct too large (%d)", extra) 1731 1731 + return fmt.Errorf("GitRefUpdate_IndividualLanguageSize: map struct too large (%d)", extra) 1912 1732 } 1913 1733 1914 1734 n := extra ··· 1977 1797 1978 1798 return nil 1979 1799 } 1800 1800 + func (t *GitRefUpdate_Meta) MarshalCBOR(w io.Writer) error { 1801 1801 + if t == nil { 1802 1802 + _, err := w.Write(cbg.CborNull) 1803 1803 + return err 1804 1804 + } 1805 1805 + 1806 1806 + cw := cbg.NewCborWriter(w) 1807 1807 + fieldCount := 3 1808 1808 + 1809 1809 + if t.LangBreakdown == nil { 1810 1810 + fieldCount-- 1811 1811 + } 1812 1812 + 1813 1813 + if _, err := cw.Write(cbg.CborEncodeMajorType(cbg.MajMap, uint64(fieldCount))); err != nil { 1814 1814 + return err 1815 1815 + } 1816 1816 + 1817 1817 + // t.CommitCount (tangled.GitRefUpdate_CommitCountBreakdown) (struct) 1818 1818 + if len("commitCount") > 1000000 { 1819 1819 + return xerrors.Errorf("Value in field \"commitCount\" was too long") 1820 1820 + } 1821 1821 + 1822 1822 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("commitCount"))); err != nil { 1823 1823 + return err 1824 1824 + } 1825 1825 + if _, err := cw.WriteString(string("commitCount")); err != nil { 1826 1826 + return err 1827 1827 + } 1828 1828 + 1829 1829 + if err := t.CommitCount.MarshalCBOR(cw); err != nil { 1830 1830 + return err 1831 1831 + } 1832 1832 + 1833 1833 + // t.IsDefaultRef (bool) (bool) 1834 1834 + if len("isDefaultRef") > 1000000 { 1835 1835 + return xerrors.Errorf("Value in field \"isDefaultRef\" was too long") 1836 1836 + } 1837 1837 + 1838 1838 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("isDefaultRef"))); err != nil { 1839 1839 + return err 1840 1840 + } 1841 1841 + if _, err := cw.WriteString(string("isDefaultRef")); err != nil { 1842 1842 + return err 1843 1843 + } 1844 1844 + 1845 1845 + if err := cbg.WriteBool(w, t.IsDefaultRef); err != nil { 1846 1846 + return err 1847 1847 + } 1848 1848 + 1849 1849 + // t.LangBreakdown (tangled.GitRefUpdate_LangBreakdown) (struct) 1850 1850 + if t.LangBreakdown != nil { 1851 1851 + 1852 1852 + if len("langBreakdown") > 1000000 { 1853 1853 + return xerrors.Errorf("Value in field \"langBreakdown\" was too long") 1854 1854 + } 1855 1855 + 1856 1856 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("langBreakdown"))); err != nil { 1857 1857 + return err 1858 1858 + } 1859 1859 + if _, err := cw.WriteString(string("langBreakdown")); err != nil { 1860 1860 + return err 1861 1861 + } 1862 1862 + 1863 1863 + if err := t.LangBreakdown.MarshalCBOR(cw); err != nil { 1864 1864 + return err 1865 1865 + } 1866 1866 + } 1867 1867 + return nil 1868 1868 + } 1869 1869 + 1870 1870 + func (t *GitRefUpdate_Meta) UnmarshalCBOR(r io.Reader) (err error) { 1871 1871 + *t = GitRefUpdate_Meta{} 1872 1872 + 1873 1873 + cr := cbg.NewCborReader(r) 1874 1874 + 1875 1875 + maj, extra, err := cr.ReadHeader() 1876 1876 + if err != nil { 1877 1877 + return err 1878 1878 + } 1879 1879 + defer func() { 1880 1880 + if err == io.EOF { 1881 1881 + err = io.ErrUnexpectedEOF 1882 1882 + } 1883 1883 + }() 1884 1884 + 1885 1885 + if maj != cbg.MajMap { 1886 1886 + return fmt.Errorf("cbor input should be of type map") 1887 1887 + } 1888 1888 + 1889 1889 + if extra > cbg.MaxLength { 1890 1890 + return fmt.Errorf("GitRefUpdate_Meta: map struct too large (%d)", extra) 1891 1891 + } 1892 1892 + 1893 1893 + n := extra 1894 1894 + 1895 1895 + nameBuf := make([]byte, 13) 1896 1896 + for i := uint64(0); i < n; i++ { 1897 1897 + nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 1898 1898 + if err != nil { 1899 1899 + return err 1900 1900 + } 1901 1901 + 1902 1902 + if !ok { 1903 1903 + // Field doesn't exist on this type, so ignore it 1904 1904 + if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 1905 1905 + return err 1906 1906 + } 1907 1907 + continue 1908 1908 + } 1909 1909 + 1910 1910 + switch string(nameBuf[:nameLen]) { 1911 1911 + // t.CommitCount (tangled.GitRefUpdate_CommitCountBreakdown) (struct) 1912 1912 + case "commitCount": 1913 1913 + 1914 1914 + { 1915 1915 + 1916 1916 + b, err := cr.ReadByte() 1917 1917 + if err != nil { 1918 1918 + return err 1919 1919 + } 1920 1920 + if b != cbg.CborNull[0] { 1921 1921 + if err := cr.UnreadByte(); err != nil { 1922 1922 + return err 1923 1923 + } 1924 1924 + t.CommitCount = new(GitRefUpdate_CommitCountBreakdown) 1925 1925 + if err := t.CommitCount.UnmarshalCBOR(cr); err != nil { 1926 1926 + return xerrors.Errorf("unmarshaling t.CommitCount pointer: %w", err) 1927 1927 + } 1928 1928 + } 1929 1929 + 1930 1930 + } 1931 1931 + // t.IsDefaultRef (bool) (bool) 1932 1932 + case "isDefaultRef": 1933 1933 + 1934 1934 + maj, extra, err = cr.ReadHeader() 1935 1935 + if err != nil { 1936 1936 + return err 1937 1937 + } 1938 1938 + if maj != cbg.MajOther { 1939 1939 + return fmt.Errorf("booleans must be major type 7") 1940 1940 + } 1941 1941 + switch extra { 1942 1942 + case 20: 1943 1943 + t.IsDefaultRef = false 1944 1944 + case 21: 1945 1945 + t.IsDefaultRef = true 1946 1946 + default: 1947 1947 + return fmt.Errorf("booleans are either major type 7, value 20 or 21 (got %d)", extra) 1948 1948 + } 1949 1949 + // t.LangBreakdown (tangled.GitRefUpdate_LangBreakdown) (struct) 1950 1950 + case "langBreakdown": 1951 1951 + 1952 1952 + { 1953 1953 + 1954 1954 + b, err := cr.ReadByte() 1955 1955 + if err != nil { 1956 1956 + return err 1957 1957 + } 1958 1958 + if b != cbg.CborNull[0] { 1959 1959 + if err := cr.UnreadByte(); err != nil { 1960 1960 + return err 1961 1961 + } 1962 1962 + t.LangBreakdown = new(GitRefUpdate_LangBreakdown) 1963 1963 + if err := t.LangBreakdown.UnmarshalCBOR(cr); err != nil { 1964 1964 + return xerrors.Errorf("unmarshaling t.LangBreakdown pointer: %w", err) 1965 1965 + } 1966 1966 + } 1967 1967 + 1968 1968 + } 1969 1969 + 1970 1970 + default: 1971 1971 + // Field doesn't exist on this type, so ignore it 1972 1972 + if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 1973 1973 + return err 1974 1974 + } 1975 1975 + } 1976 1976 + } 1977 1977 + 1978 1978 + return nil 1979 1979 + } 1980 1980 func (t *GraphFollow) MarshalCBOR(w io.Writer) error { 1981 1981 if t == nil { 1982 1982 _, err := w.Write(cbg.CborNull) ··· 2118 2118 } 2119 2119 2120 2120 t.Subject = string(sval) 2121 2121 + } 2122 2122 + // t.CreatedAt (string) (string) 2123 2123 + case "createdAt": 2124 2124 + 2125 2125 + { 2126 2126 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 2127 2127 + if err != nil { 2128 2128 + return err 2129 2129 + } 2130 2130 + 2131 2131 + t.CreatedAt = string(sval) 2132 2132 + } 2133 2133 + 2134 2134 + default: 2135 2135 + // Field doesn't exist on this type, so ignore it 2136 2136 + if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 2137 2137 + return err 2138 2138 + } 2139 2139 + } 2140 2140 + } 2141 2141 + 2142 2142 + return nil 2143 2143 + } 2144 2144 + func (t *Knot) MarshalCBOR(w io.Writer) error { 2145 2145 + if t == nil { 2146 2146 + _, err := w.Write(cbg.CborNull) 2147 2147 + return err 2148 2148 + } 2149 2149 + 2150 2150 + cw := cbg.NewCborWriter(w) 2151 2151 + 2152 2152 + if _, err := cw.Write([]byte{162}); err != nil { 2153 2153 + return err 2154 2154 + } 2155 2155 + 2156 2156 + // t.LexiconTypeID (string) (string) 2157 2157 + if len("$type") > 1000000 { 2158 2158 + return xerrors.Errorf("Value in field \"$type\" was too long") 2159 2159 + } 2160 2160 + 2161 2161 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("$type"))); err != nil { 2162 2162 + return err 2163 2163 + } 2164 2164 + if _, err := cw.WriteString(string("$type")); err != nil { 2165 2165 + return err 2166 2166 + } 2167 2167 + 2168 2168 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("sh.tangled.knot"))); err != nil { 2169 2169 + return err 2170 2170 + } 2171 2171 + if _, err := cw.WriteString(string("sh.tangled.knot")); err != nil { 2172 2172 + return err 2173 2173 + } 2174 2174 + 2175 2175 + // t.CreatedAt (string) (string) 2176 2176 + if len("createdAt") > 1000000 { 2177 2177 + return xerrors.Errorf("Value in field \"createdAt\" was too long") 2178 2178 + } 2179 2179 + 2180 2180 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("createdAt"))); err != nil { 2181 2181 + return err 2182 2182 + } 2183 2183 + if _, err := cw.WriteString(string("createdAt")); err != nil { 2184 2184 + return err 2185 2185 + } 2186 2186 + 2187 2187 + if len(t.CreatedAt) > 1000000 { 2188 2188 + return xerrors.Errorf("Value in field t.CreatedAt was too long") 2189 2189 + } 2190 2190 + 2191 2191 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.CreatedAt))); err != nil { 2192 2192 + return err 2193 2193 + } 2194 2194 + if _, err := cw.WriteString(string(t.CreatedAt)); err != nil { 2195 2195 + return err 2196 2196 + } 2197 2197 + return nil 2198 2198 + } 2199 2199 + 2200 2200 + func (t *Knot) UnmarshalCBOR(r io.Reader) (err error) { 2201 2201 + *t = Knot{} 2202 2202 + 2203 2203 + cr := cbg.NewCborReader(r) 2204 2204 + 2205 2205 + maj, extra, err := cr.ReadHeader() 2206 2206 + if err != nil { 2207 2207 + return err 2208 2208 + } 2209 2209 + defer func() { 2210 2210 + if err == io.EOF { 2211 2211 + err = io.ErrUnexpectedEOF 2212 2212 + } 2213 2213 + }() 2214 2214 + 2215 2215 + if maj != cbg.MajMap { 2216 2216 + return fmt.Errorf("cbor input should be of type map") 2217 2217 + } 2218 2218 + 2219 2219 + if extra > cbg.MaxLength { 2220 2220 + return fmt.Errorf("Knot: map struct too large (%d)", extra) 2221 2221 + } 2222 2222 + 2223 2223 + n := extra 2224 2224 + 2225 2225 + nameBuf := make([]byte, 9) 2226 2226 + for i := uint64(0); i < n; i++ { 2227 2227 + nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 2228 2228 + if err != nil { 2229 2229 + return err 2230 2230 + } 2231 2231 + 2232 2232 + if !ok { 2233 2233 + // Field doesn't exist on this type, so ignore it 2234 2234 + if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 2235 2235 + return err 2236 2236 + } 2237 2237 + continue 2238 2238 + } 2239 2239 + 2240 2240 + switch string(nameBuf[:nameLen]) { 2241 2241 + // t.LexiconTypeID (string) (string) 2242 2242 + case "$type": 2243 2243 + 2244 2244 + { 2245 2245 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 2246 2246 + if err != nil { 2247 2247 + return err 2248 2248 + } 2249 2249 + 2250 2250 + t.LexiconTypeID = string(sval) 2121 2251 } 2122 2252 // t.CreatedAt (string) (string) 2123 2253 case "createdAt": ··· 2728 2858 2729 2859 return nil 2730 2860 } 2731 2731 - func (t *Pipeline_Dependency) MarshalCBOR(w io.Writer) error { 2732 2732 - if t == nil { 2733 2733 - _, err := w.Write(cbg.CborNull) 2734 2734 - return err 2735 2735 - } 2736 2736 - 2737 2737 - cw := cbg.NewCborWriter(w) 2738 2738 - 2739 2739 - if _, err := cw.Write([]byte{162}); err != nil { 2740 2740 - return err 2741 2741 - } 2742 2742 - 2743 2743 - // t.Packages ([]string) (slice) 2744 2744 - if len("packages") > 1000000 { 2745 2745 - return xerrors.Errorf("Value in field \"packages\" was too long") 2746 2746 - } 2747 2747 - 2748 2748 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("packages"))); err != nil { 2749 2749 - return err 2750 2750 - } 2751 2751 - if _, err := cw.WriteString(string("packages")); err != nil { 2752 2752 - return err 2753 2753 - } 2754 2754 - 2755 2755 - if len(t.Packages) > 8192 { 2756 2756 - return xerrors.Errorf("Slice value in field t.Packages was too long") 2757 2757 - } 2758 2758 - 2759 2759 - if err := cw.WriteMajorTypeHeader(cbg.MajArray, uint64(len(t.Packages))); err != nil { 2760 2760 - return err 2761 2761 - } 2762 2762 - for _, v := range t.Packages { 2763 2763 - if len(v) > 1000000 { 2764 2764 - return xerrors.Errorf("Value in field v was too long") 2765 2765 - } 2766 2766 - 2767 2767 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(v))); err != nil { 2768 2768 - return err 2769 2769 - } 2770 2770 - if _, err := cw.WriteString(string(v)); err != nil { 2771 2771 - return err 2772 2772 - } 2773 2773 - 2774 2774 - } 2775 2775 - 2776 2776 - // t.Registry (string) (string) 2777 2777 - if len("registry") > 1000000 { 2778 2778 - return xerrors.Errorf("Value in field \"registry\" was too long") 2779 2779 - } 2780 2780 - 2781 2781 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("registry"))); err != nil { 2782 2782 - return err 2783 2783 - } 2784 2784 - if _, err := cw.WriteString(string("registry")); err != nil { 2785 2785 - return err 2786 2786 - } 2787 2787 - 2788 2788 - if len(t.Registry) > 1000000 { 2789 2789 - return xerrors.Errorf("Value in field t.Registry was too long") 2790 2790 - } 2791 2791 - 2792 2792 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Registry))); err != nil { 2793 2793 - return err 2794 2794 - } 2795 2795 - if _, err := cw.WriteString(string(t.Registry)); err != nil { 2796 2796 - return err 2797 2797 - } 2798 2798 - return nil 2799 2799 - } 2800 2800 - 2801 2801 - func (t *Pipeline_Dependency) UnmarshalCBOR(r io.Reader) (err error) { 2802 2802 - *t = Pipeline_Dependency{} 2803 2803 - 2804 2804 - cr := cbg.NewCborReader(r) 2805 2805 - 2806 2806 - maj, extra, err := cr.ReadHeader() 2807 2807 - if err != nil { 2808 2808 - return err 2809 2809 - } 2810 2810 - defer func() { 2811 2811 - if err == io.EOF { 2812 2812 - err = io.ErrUnexpectedEOF 2813 2813 - } 2814 2814 - }() 2815 2815 - 2816 2816 - if maj != cbg.MajMap { 2817 2817 - return fmt.Errorf("cbor input should be of type map") 2818 2818 - } 2819 2819 - 2820 2820 - if extra > cbg.MaxLength { 2821 2821 - return fmt.Errorf("Pipeline_Dependency: map struct too large (%d)", extra) 2822 2822 - } 2823 2823 - 2824 2824 - n := extra 2825 2825 - 2826 2826 - nameBuf := make([]byte, 8) 2827 2827 - for i := uint64(0); i < n; i++ { 2828 2828 - nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 2829 2829 - if err != nil { 2830 2830 - return err 2831 2831 - } 2832 2832 - 2833 2833 - if !ok { 2834 2834 - // Field doesn't exist on this type, so ignore it 2835 2835 - if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 2836 2836 - return err 2837 2837 - } 2838 2838 - continue 2839 2839 - } 2840 2840 - 2841 2841 - switch string(nameBuf[:nameLen]) { 2842 2842 - // t.Packages ([]string) (slice) 2843 2843 - case "packages": 2844 2844 - 2845 2845 - maj, extra, err = cr.ReadHeader() 2846 2846 - if err != nil { 2847 2847 - return err 2848 2848 - } 2849 2849 - 2850 2850 - if extra > 8192 { 2851 2851 - return fmt.Errorf("t.Packages: array too large (%d)", extra) 2852 2852 - } 2853 2853 - 2854 2854 - if maj != cbg.MajArray { 2855 2855 - return fmt.Errorf("expected cbor array") 2856 2856 - } 2857 2857 - 2858 2858 - if extra > 0 { 2859 2859 - t.Packages = make([]string, extra) 2860 2860 - } 2861 2861 - 2862 2862 - for i := 0; i < int(extra); i++ { 2863 2863 - { 2864 2864 - var maj byte 2865 2865 - var extra uint64 2866 2866 - var err error 2867 2867 - _ = maj 2868 2868 - _ = extra 2869 2869 - _ = err 2870 2870 - 2871 2871 - { 2872 2872 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 2873 2873 - if err != nil { 2874 2874 - return err 2875 2875 - } 2876 2876 - 2877 2877 - t.Packages[i] = string(sval) 2878 2878 - } 2879 2879 - 2880 2880 - } 2881 2881 - } 2882 2882 - // t.Registry (string) (string) 2883 2883 - case "registry": 2884 2884 - 2885 2885 - { 2886 2886 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 2887 2887 - if err != nil { 2888 2888 - return err 2889 2889 - } 2890 2890 - 2891 2891 - t.Registry = string(sval) 2892 2892 - } 2893 2893 - 2894 2894 - default: 2895 2895 - // Field doesn't exist on this type, so ignore it 2896 2896 - if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 2897 2897 - return err 2898 2898 - } 2899 2899 - } 2900 2900 - } 2901 2901 - 2902 2902 - return nil 2903 2903 - } 2904 2861 func (t *Pipeline_ManualTriggerData) MarshalCBOR(w io.Writer) error { 2905 2862 if t == nil { 2906 2863 _, err := w.Write(cbg.CborNull) ··· 3916 3873 3917 3874 return nil 3918 3875 } 3919 3919 - func (t *Pipeline_Step) MarshalCBOR(w io.Writer) error { 3920 3920 - if t == nil { 3921 3921 - _, err := w.Write(cbg.CborNull) 3922 3922 - return err 3923 3923 - } 3924 3924 - 3925 3925 - cw := cbg.NewCborWriter(w) 3926 3926 - fieldCount := 3 3927 3927 - 3928 3928 - if t.Environment == nil { 3929 3929 - fieldCount-- 3930 3930 - } 3931 3931 - 3932 3932 - if _, err := cw.Write(cbg.CborEncodeMajorType(cbg.MajMap, uint64(fieldCount))); err != nil { 3933 3933 - return err 3934 3934 - } 3935 3935 - 3936 3936 - // t.Name (string) (string) 3937 3937 - if len("name") > 1000000 { 3938 3938 - return xerrors.Errorf("Value in field \"name\" was too long") 3939 3939 - } 3940 3940 - 3941 3941 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("name"))); err != nil { 3942 3942 - return err 3943 3943 - } 3944 3944 - if _, err := cw.WriteString(string("name")); err != nil { 3945 3945 - return err 3946 3946 - } 3947 3947 - 3948 3948 - if len(t.Name) > 1000000 { 3949 3949 - return xerrors.Errorf("Value in field t.Name was too long") 3950 3950 - } 3951 3951 - 3952 3952 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Name))); err != nil { 3953 3953 - return err 3954 3954 - } 3955 3955 - if _, err := cw.WriteString(string(t.Name)); err != nil { 3956 3956 - return err 3957 3957 - } 3958 3958 - 3959 3959 - // t.Command (string) (string) 3960 3960 - if len("command") > 1000000 { 3961 3961 - return xerrors.Errorf("Value in field \"command\" was too long") 3962 3962 - } 3963 3963 - 3964 3964 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("command"))); err != nil { 3965 3965 - return err 3966 3966 - } 3967 3967 - if _, err := cw.WriteString(string("command")); err != nil { 3968 3968 - return err 3969 3969 - } 3970 3970 - 3971 3971 - if len(t.Command) > 1000000 { 3972 3972 - return xerrors.Errorf("Value in field t.Command was too long") 3973 3973 - } 3974 3974 - 3975 3975 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Command))); err != nil { 3976 3976 - return err 3977 3977 - } 3978 3978 - if _, err := cw.WriteString(string(t.Command)); err != nil { 3979 3979 - return err 3980 3980 - } 3981 3981 - 3982 3982 - // t.Environment ([]*tangled.Pipeline_Pair) (slice) 3983 3983 - if t.Environment != nil { 3984 3984 - 3985 3985 - if len("environment") > 1000000 { 3986 3986 - return xerrors.Errorf("Value in field \"environment\" was too long") 3987 3987 - } 3988 3988 - 3989 3989 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("environment"))); err != nil { 3990 3990 - return err 3991 3991 - } 3992 3992 - if _, err := cw.WriteString(string("environment")); err != nil { 3993 3993 - return err 3994 3994 - } 3995 3995 - 3996 3996 - if len(t.Environment) > 8192 { 3997 3997 - return xerrors.Errorf("Slice value in field t.Environment was too long") 3998 3998 - } 3999 3999 - 4000 4000 - if err := cw.WriteMajorTypeHeader(cbg.MajArray, uint64(len(t.Environment))); err != nil { 4001 4001 - return err 4002 4002 - } 4003 4003 - for _, v := range t.Environment { 4004 4004 - if err := v.MarshalCBOR(cw); err != nil { 4005 4005 - return err 4006 4006 - } 4007 4007 - 4008 4008 - } 4009 4009 - } 4010 4010 - return nil 4011 4011 - } 4012 4012 - 4013 4013 - func (t *Pipeline_Step) UnmarshalCBOR(r io.Reader) (err error) { 4014 4014 - *t = Pipeline_Step{} 4015 4015 - 4016 4016 - cr := cbg.NewCborReader(r) 4017 4017 - 4018 4018 - maj, extra, err := cr.ReadHeader() 4019 4019 - if err != nil { 4020 4020 - return err 4021 4021 - } 4022 4022 - defer func() { 4023 4023 - if err == io.EOF { 4024 4024 - err = io.ErrUnexpectedEOF 4025 4025 - } 4026 4026 - }() 4027 4027 - 4028 4028 - if maj != cbg.MajMap { 4029 4029 - return fmt.Errorf("cbor input should be of type map") 4030 4030 - } 4031 4031 - 4032 4032 - if extra > cbg.MaxLength { 4033 4033 - return fmt.Errorf("Pipeline_Step: map struct too large (%d)", extra) 4034 4034 - } 4035 4035 - 4036 4036 - n := extra 4037 4037 - 4038 4038 - nameBuf := make([]byte, 11) 4039 4039 - for i := uint64(0); i < n; i++ { 4040 4040 - nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 4041 4041 - if err != nil { 4042 4042 - return err 4043 4043 - } 4044 4044 - 4045 4045 - if !ok { 4046 4046 - // Field doesn't exist on this type, so ignore it 4047 4047 - if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 4048 4048 - return err 4049 4049 - } 4050 4050 - continue 4051 4051 - } 4052 4052 - 4053 4053 - switch string(nameBuf[:nameLen]) { 4054 4054 - // t.Name (string) (string) 4055 4055 - case "name": 4056 4056 - 4057 4057 - { 4058 4058 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 4059 4059 - if err != nil { 4060 4060 - return err 4061 4061 - } 4062 4062 - 4063 4063 - t.Name = string(sval) 4064 4064 - } 4065 4065 - // t.Command (string) (string) 4066 4066 - case "command": 4067 4067 - 4068 4068 - { 4069 4069 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 4070 4070 - if err != nil { 4071 4071 - return err 4072 4072 - } 4073 4073 - 4074 4074 - t.Command = string(sval) 4075 4075 - } 4076 4076 - // t.Environment ([]*tangled.Pipeline_Pair) (slice) 4077 4077 - case "environment": 4078 4078 - 4079 4079 - maj, extra, err = cr.ReadHeader() 4080 4080 - if err != nil { 4081 4081 - return err 4082 4082 - } 4083 4083 - 4084 4084 - if extra > 8192 { 4085 4085 - return fmt.Errorf("t.Environment: array too large (%d)", extra) 4086 4086 - } 4087 4087 - 4088 4088 - if maj != cbg.MajArray { 4089 4089 - return fmt.Errorf("expected cbor array") 4090 4090 - } 4091 4091 - 4092 4092 - if extra > 0 { 4093 4093 - t.Environment = make([]*Pipeline_Pair, extra) 4094 4094 - } 4095 4095 - 4096 4096 - for i := 0; i < int(extra); i++ { 4097 4097 - { 4098 4098 - var maj byte 4099 4099 - var extra uint64 4100 4100 - var err error 4101 4101 - _ = maj 4102 4102 - _ = extra 4103 4103 - _ = err 4104 4104 - 4105 4105 - { 4106 4106 - 4107 4107 - b, err := cr.ReadByte() 4108 4108 - if err != nil { 4109 4109 - return err 4110 4110 - } 4111 4111 - if b != cbg.CborNull[0] { 4112 4112 - if err := cr.UnreadByte(); err != nil { 4113 4113 - return err 4114 4114 - } 4115 4115 - t.Environment[i] = new(Pipeline_Pair) 4116 4116 - if err := t.Environment[i].UnmarshalCBOR(cr); err != nil { 4117 4117 - return xerrors.Errorf("unmarshaling t.Environment[i] pointer: %w", err) 4118 4118 - } 4119 4119 - } 4120 4120 - 4121 4121 - } 4122 4122 - 4123 4123 - } 4124 4124 - } 4125 4125 - 4126 4126 - default: 4127 4127 - // Field doesn't exist on this type, so ignore it 4128 4128 - if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 4129 4129 - return err 4130 4130 - } 4131 4131 - } 4132 4132 - } 4133 4133 - 4134 4134 - return nil 4135 4135 - } 4136 3876 func (t *Pipeline_TriggerMetadata) MarshalCBOR(w io.Writer) error { 4137 3877 if t == nil { 4138 3878 _, err := w.Write(cbg.CborNull) ··· 4609 4349 4610 4350 cw := cbg.NewCborWriter(w) 4611 4351 4612 4612 - if _, err := cw.Write([]byte{165}); err != nil { 4352 4352 + if _, err := cw.Write([]byte{164}); err != nil { 4353 4353 + return err 4354 4354 + } 4355 4355 + 4356 4356 + // t.Raw (string) (string) 4357 4357 + if len("raw") > 1000000 { 4358 4358 + return xerrors.Errorf("Value in field \"raw\" was too long") 4359 4359 + } 4360 4360 + 4361 4361 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("raw"))); err != nil { 4362 4362 + return err 4363 4363 + } 4364 4364 + if _, err := cw.WriteString(string("raw")); err != nil { 4365 4365 + return err 4366 4366 + } 4367 4367 + 4368 4368 + if len(t.Raw) > 1000000 { 4369 4369 + return xerrors.Errorf("Value in field t.Raw was too long") 4370 4370 + } 4371 4371 + 4372 4372 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Raw))); err != nil { 4373 4373 + return err 4374 4374 + } 4375 4375 + if _, err := cw.WriteString(string(t.Raw)); err != nil { 4613 4376 return err 4614 4377 } 4615 4378 ··· 4652 4415 return err 4653 4416 } 4654 4417 4655 4655 - // t.Steps ([]*tangled.Pipeline_Step) (slice) 4656 4656 - if len("steps") > 1000000 { 4657 4657 - return xerrors.Errorf("Value in field \"steps\" was too long") 4658 4658 - } 4659 4659 - 4660 4660 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("steps"))); err != nil { 4661 4661 - return err 4662 4662 - } 4663 4663 - if _, err := cw.WriteString(string("steps")); err != nil { 4664 4664 - return err 4418 4418 + // t.Engine (string) (string) 4419 4419 + if len("engine") > 1000000 { 4420 4420 + return xerrors.Errorf("Value in field \"engine\" was too long") 4665 4421 } 4666 4422 4667 4667 - if len(t.Steps) > 8192 { 4668 4668 - return xerrors.Errorf("Slice value in field t.Steps was too long") 4669 4669 - } 4670 4670 - 4671 4671 - if err := cw.WriteMajorTypeHeader(cbg.MajArray, uint64(len(t.Steps))); err != nil { 4672 4672 - return err 4673 4673 - } 4674 4674 - for _, v := range t.Steps { 4675 4675 - if err := v.MarshalCBOR(cw); err != nil { 4676 4676 - return err 4677 4677 - } 4678 4678 - 4679 4679 - } 4680 4680 - 4681 4681 - // t.Environment ([]*tangled.Pipeline_Pair) (slice) 4682 4682 - if len("environment") > 1000000 { 4683 4683 - return xerrors.Errorf("Value in field \"environment\" was too long") 4684 4684 - } 4685 4685 - 4686 4686 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("environment"))); err != nil { 4687 4687 - return err 4688 4688 - } 4689 4689 - if _, err := cw.WriteString(string("environment")); err != nil { 4423 4423 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("engine"))); err != nil { 4690 4424 return err 4691 4425 } 4692 4692 - 4693 4693 - if len(t.Environment) > 8192 { 4694 4694 - return xerrors.Errorf("Slice value in field t.Environment was too long") 4695 4695 - } 4696 4696 - 4697 4697 - if err := cw.WriteMajorTypeHeader(cbg.MajArray, uint64(len(t.Environment))); err != nil { 4426 4426 + if _, err := cw.WriteString(string("engine")); err != nil { 4698 4427 return err 4699 4699 - } 4700 4700 - for _, v := range t.Environment { 4701 4701 - if err := v.MarshalCBOR(cw); err != nil { 4702 4702 - return err 4703 4703 - } 4704 4704 - 4705 4428 } 4706 4429 4707 4707 - // t.Dependencies ([]*tangled.Pipeline_Dependency) (slice) 4708 4708 - if len("dependencies") > 1000000 { 4709 4709 - return xerrors.Errorf("Value in field \"dependencies\" was too long") 4430 4430 + if len(t.Engine) > 1000000 { 4431 4431 + return xerrors.Errorf("Value in field t.Engine was too long") 4710 4432 } 4711 4433 4712 4712 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("dependencies"))); err != nil { 4434 4434 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Engine))); err != nil { 4713 4435 return err 4714 4436 } 4715 4715 - if _, err := cw.WriteString(string("dependencies")); err != nil { 4716 4716 - return err 4717 4717 - } 4718 4718 - 4719 4719 - if len(t.Dependencies) > 8192 { 4720 4720 - return xerrors.Errorf("Slice value in field t.Dependencies was too long") 4721 4721 - } 4722 4722 - 4723 4723 - if err := cw.WriteMajorTypeHeader(cbg.MajArray, uint64(len(t.Dependencies))); err != nil { 4437 4437 + if _, err := cw.WriteString(string(t.Engine)); err != nil { 4724 4438 return err 4725 4725 - } 4726 4726 - for _, v := range t.Dependencies { 4727 4727 - if err := v.MarshalCBOR(cw); err != nil { 4728 4728 - return err 4729 4729 - } 4730 4730 - 4731 4439 } 4732 4440 return nil 4733 4441 } ··· 4757 4465 4758 4466 n := extra 4759 4467 4760 4760 - nameBuf := make([]byte, 12) 4468 4468 + nameBuf := make([]byte, 6) 4761 4469 for i := uint64(0); i < n; i++ { 4762 4470 nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 4763 4471 if err != nil { ··· 4773 4481 } 4774 4482 4775 4483 switch string(nameBuf[:nameLen]) { 4776 4776 - // t.Name (string) (string) 4484 4484 + // t.Raw (string) (string) 4485 4485 + case "raw": 4486 4486 + 4487 4487 + { 4488 4488 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 4489 4489 + if err != nil { 4490 4490 + return err 4491 4491 + } 4492 4492 + 4493 4493 + t.Raw = string(sval) 4494 4494 + } 4495 4495 + // t.Name (string) (string) 4777 4496 case "name": 4778 4497 4779 4498 { ··· 4804 4523 } 4805 4524 4806 4525 } 4807 4807 - // t.Steps ([]*tangled.Pipeline_Step) (slice) 4808 4808 - case "steps": 4526 4526 + // t.Engine (string) (string) 4527 4527 + case "engine": 4809 4528 4810 4810 - maj, extra, err = cr.ReadHeader() 4811 4811 - if err != nil { 4812 4812 - return err 4813 4813 - } 4814 4814 - 4815 4815 - if extra > 8192 { 4816 4816 - return fmt.Errorf("t.Steps: array too large (%d)", extra) 4817 4817 - } 4818 4818 - 4819 4819 - if maj != cbg.MajArray { 4820 4820 - return fmt.Errorf("expected cbor array") 4821 4821 - } 4822 4822 - 4823 4823 - if extra > 0 { 4824 4824 - t.Steps = make([]*Pipeline_Step, extra) 4825 4825 - } 4826 4826 - 4827 4827 - for i := 0; i < int(extra); i++ { 4828 4828 - { 4829 4829 - var maj byte 4830 4830 - var extra uint64 4831 4831 - var err error 4832 4832 - _ = maj 4833 4833 - _ = extra 4834 4834 - _ = err 4835 4835 - 4836 4836 - { 4837 4837 - 4838 4838 - b, err := cr.ReadByte() 4839 4839 - if err != nil { 4840 4840 - return err 4841 4841 - } 4842 4842 - if b != cbg.CborNull[0] { 4843 4843 - if err := cr.UnreadByte(); err != nil { 4844 4844 - return err 4845 4845 - } 4846 4846 - t.Steps[i] = new(Pipeline_Step) 4847 4847 - if err := t.Steps[i].UnmarshalCBOR(cr); err != nil { 4848 4848 - return xerrors.Errorf("unmarshaling t.Steps[i] pointer: %w", err) 4849 4849 - } 4850 4850 - } 4851 4851 - 4852 4852 - } 4853 4853 - 4529 4529 + { 4530 4530 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 4531 4531 + if err != nil { 4532 4532 + return err 4854 4533 } 4855 4855 - } 4856 4856 - // t.Environment ([]*tangled.Pipeline_Pair) (slice) 4857 4857 - case "environment": 4858 4534 4859 4859 - maj, extra, err = cr.ReadHeader() 4860 4860 - if err != nil { 4861 4861 - return err 4862 4862 - } 4863 4863 - 4864 4864 - if extra > 8192 { 4865 4865 - return fmt.Errorf("t.Environment: array too large (%d)", extra) 4866 4866 - } 4867 4867 - 4868 4868 - if maj != cbg.MajArray { 4869 4869 - return fmt.Errorf("expected cbor array") 4870 4870 - } 4871 4871 - 4872 4872 - if extra > 0 { 4873 4873 - t.Environment = make([]*Pipeline_Pair, extra) 4874 4874 - } 4875 4875 - 4876 4876 - for i := 0; i < int(extra); i++ { 4877 4877 - { 4878 4878 - var maj byte 4879 4879 - var extra uint64 4880 4880 - var err error 4881 4881 - _ = maj 4882 4882 - _ = extra 4883 4883 - _ = err 4884 4884 - 4885 4885 - { 4886 4886 - 4887 4887 - b, err := cr.ReadByte() 4888 4888 - if err != nil { 4889 4889 - return err 4890 4890 - } 4891 4891 - if b != cbg.CborNull[0] { 4892 4892 - if err := cr.UnreadByte(); err != nil { 4893 4893 - return err 4894 4894 - } 4895 4895 - t.Environment[i] = new(Pipeline_Pair) 4896 4896 - if err := t.Environment[i].UnmarshalCBOR(cr); err != nil { 4897 4897 - return xerrors.Errorf("unmarshaling t.Environment[i] pointer: %w", err) 4898 4898 - } 4899 4899 - } 4900 4900 - 4901 4901 - } 4902 4902 - 4903 4903 - } 4904 4904 - } 4905 4905 - // t.Dependencies ([]*tangled.Pipeline_Dependency) (slice) 4906 4906 - case "dependencies": 4907 4907 - 4908 4908 - maj, extra, err = cr.ReadHeader() 4909 4909 - if err != nil { 4910 4910 - return err 4911 4911 - } 4912 4912 - 4913 4913 - if extra > 8192 { 4914 4914 - return fmt.Errorf("t.Dependencies: array too large (%d)", extra) 4915 4915 - } 4916 4916 - 4917 4917 - if maj != cbg.MajArray { 4918 4918 - return fmt.Errorf("expected cbor array") 4919 4919 - } 4920 4920 - 4921 4921 - if extra > 0 { 4922 4922 - t.Dependencies = make([]*Pipeline_Dependency, extra) 4923 4923 - } 4924 4924 - 4925 4925 - for i := 0; i < int(extra); i++ { 4926 4926 - { 4927 4927 - var maj byte 4928 4928 - var extra uint64 4929 4929 - var err error 4930 4930 - _ = maj 4931 4931 - _ = extra 4932 4932 - _ = err 4933 4933 - 4934 4934 - { 4935 4935 - 4936 4936 - b, err := cr.ReadByte() 4937 4937 - if err != nil { 4938 4938 - return err 4939 4939 - } 4940 4940 - if b != cbg.CborNull[0] { 4941 4941 - if err := cr.UnreadByte(); err != nil { 4942 4942 - return err 4943 4943 - } 4944 4944 - t.Dependencies[i] = new(Pipeline_Dependency) 4945 4945 - if err := t.Dependencies[i].UnmarshalCBOR(cr); err != nil { 4946 4946 - return xerrors.Errorf("unmarshaling t.Dependencies[i] pointer: %w", err) 4947 4947 - } 4948 4948 - } 4949 4949 - 4950 4950 - } 4951 4951 - 4952 4952 - } 4535 4535 + t.Engine = string(sval) 4953 4536 } 4954 4537 4955 4538 default: ··· 5854 5437 5855 5438 return nil 5856 5439 } 5440 5440 + func (t *RepoCollaborator) MarshalCBOR(w io.Writer) error { 5441 5441 + if t == nil { 5442 5442 + _, err := w.Write(cbg.CborNull) 5443 5443 + return err 5444 5444 + } 5445 5445 + 5446 5446 + cw := cbg.NewCborWriter(w) 5447 5447 + 5448 5448 + if _, err := cw.Write([]byte{164}); err != nil { 5449 5449 + return err 5450 5450 + } 5451 5451 + 5452 5452 + // t.Repo (string) (string) 5453 5453 + if len("repo") > 1000000 { 5454 5454 + return xerrors.Errorf("Value in field \"repo\" was too long") 5455 5455 + } 5456 5456 + 5457 5457 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("repo"))); err != nil { 5458 5458 + return err 5459 5459 + } 5460 5460 + if _, err := cw.WriteString(string("repo")); err != nil { 5461 5461 + return err 5462 5462 + } 5463 5463 + 5464 5464 + if len(t.Repo) > 1000000 { 5465 5465 + return xerrors.Errorf("Value in field t.Repo was too long") 5466 5466 + } 5467 5467 + 5468 5468 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Repo))); err != nil { 5469 5469 + return err 5470 5470 + } 5471 5471 + if _, err := cw.WriteString(string(t.Repo)); err != nil { 5472 5472 + return err 5473 5473 + } 5474 5474 + 5475 5475 + // t.LexiconTypeID (string) (string) 5476 5476 + if len("$type") > 1000000 { 5477 5477 + return xerrors.Errorf("Value in field \"$type\" was too long") 5478 5478 + } 5479 5479 + 5480 5480 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("$type"))); err != nil { 5481 5481 + return err 5482 5482 + } 5483 5483 + if _, err := cw.WriteString(string("$type")); err != nil { 5484 5484 + return err 5485 5485 + } 5486 5486 + 5487 5487 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("sh.tangled.repo.collaborator"))); err != nil { 5488 5488 + return err 5489 5489 + } 5490 5490 + if _, err := cw.WriteString(string("sh.tangled.repo.collaborator")); err != nil { 5491 5491 + return err 5492 5492 + } 5493 5493 + 5494 5494 + // t.Subject (string) (string) 5495 5495 + if len("subject") > 1000000 { 5496 5496 + return xerrors.Errorf("Value in field \"subject\" was too long") 5497 5497 + } 5498 5498 + 5499 5499 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("subject"))); err != nil { 5500 5500 + return err 5501 5501 + } 5502 5502 + if _, err := cw.WriteString(string("subject")); err != nil { 5503 5503 + return err 5504 5504 + } 5505 5505 + 5506 5506 + if len(t.Subject) > 1000000 { 5507 5507 + return xerrors.Errorf("Value in field t.Subject was too long") 5508 5508 + } 5509 5509 + 5510 5510 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Subject))); err != nil { 5511 5511 + return err 5512 5512 + } 5513 5513 + if _, err := cw.WriteString(string(t.Subject)); err != nil { 5514 5514 + return err 5515 5515 + } 5516 5516 + 5517 5517 + // t.CreatedAt (string) (string) 5518 5518 + if len("createdAt") > 1000000 { 5519 5519 + return xerrors.Errorf("Value in field \"createdAt\" was too long") 5520 5520 + } 5521 5521 + 5522 5522 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("createdAt"))); err != nil { 5523 5523 + return err 5524 5524 + } 5525 5525 + if _, err := cw.WriteString(string("createdAt")); err != nil { 5526 5526 + return err 5527 5527 + } 5528 5528 + 5529 5529 + if len(t.CreatedAt) > 1000000 { 5530 5530 + return xerrors.Errorf("Value in field t.CreatedAt was too long") 5531 5531 + } 5532 5532 + 5533 5533 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.CreatedAt))); err != nil { 5534 5534 + return err 5535 5535 + } 5536 5536 + if _, err := cw.WriteString(string(t.CreatedAt)); err != nil { 5537 5537 + return err 5538 5538 + } 5539 5539 + return nil 5540 5540 + } 5541 5541 + 5542 5542 + func (t *RepoCollaborator) UnmarshalCBOR(r io.Reader) (err error) { 5543 5543 + *t = RepoCollaborator{} 5544 5544 + 5545 5545 + cr := cbg.NewCborReader(r) 5546 5546 + 5547 5547 + maj, extra, err := cr.ReadHeader() 5548 5548 + if err != nil { 5549 5549 + return err 5550 5550 + } 5551 5551 + defer func() { 5552 5552 + if err == io.EOF { 5553 5553 + err = io.ErrUnexpectedEOF 5554 5554 + } 5555 5555 + }() 5556 5556 + 5557 5557 + if maj != cbg.MajMap { 5558 5558 + return fmt.Errorf("cbor input should be of type map") 5559 5559 + } 5560 5560 + 5561 5561 + if extra > cbg.MaxLength { 5562 5562 + return fmt.Errorf("RepoCollaborator: map struct too large (%d)", extra) 5563 5563 + } 5564 5564 + 5565 5565 + n := extra 5566 5566 + 5567 5567 + nameBuf := make([]byte, 9) 5568 5568 + for i := uint64(0); i < n; i++ { 5569 5569 + nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 5570 5570 + if err != nil { 5571 5571 + return err 5572 5572 + } 5573 5573 + 5574 5574 + if !ok { 5575 5575 + // Field doesn't exist on this type, so ignore it 5576 5576 + if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 5577 5577 + return err 5578 5578 + } 5579 5579 + continue 5580 5580 + } 5581 5581 + 5582 5582 + switch string(nameBuf[:nameLen]) { 5583 5583 + // t.Repo (string) (string) 5584 5584 + case "repo": 5585 5585 + 5586 5586 + { 5587 5587 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 5588 5588 + if err != nil { 5589 5589 + return err 5590 5590 + } 5591 5591 + 5592 5592 + t.Repo = string(sval) 5593 5593 + } 5594 5594 + // t.LexiconTypeID (string) (string) 5595 5595 + case "$type": 5596 5596 + 5597 5597 + { 5598 5598 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 5599 5599 + if err != nil { 5600 5600 + return err 5601 5601 + } 5602 5602 + 5603 5603 + t.LexiconTypeID = string(sval) 5604 5604 + } 5605 5605 + // t.Subject (string) (string) 5606 5606 + case "subject": 5607 5607 + 5608 5608 + { 5609 5609 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 5610 5610 + if err != nil { 5611 5611 + return err 5612 5612 + } 5613 5613 + 5614 5614 + t.Subject = string(sval) 5615 5615 + } 5616 5616 + // t.CreatedAt (string) (string) 5617 5617 + case "createdAt": 5618 5618 + 5619 5619 + { 5620 5620 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 5621 5621 + if err != nil { 5622 5622 + return err 5623 5623 + } 5624 5624 + 5625 5625 + t.CreatedAt = string(sval) 5626 5626 + } 5627 5627 + 5628 5628 + default: 5629 5629 + // Field doesn't exist on this type, so ignore it 5630 5630 + if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 5631 5631 + return err 5632 5632 + } 5633 5633 + } 5634 5634 + } 5635 5635 + 5636 5636 + return nil 5637 5637 + } 5857 5638 func (t *RepoIssue) MarshalCBOR(w io.Writer) error { 5858 5639 if t == nil { 5859 5640 _, err := w.Write(cbg.CborNull) ··· 5861 5642 } 5862 5643 5863 5644 cw := cbg.NewCborWriter(w) 5864 5864 - fieldCount := 7 5645 5645 + fieldCount := 5 5865 5646 5866 5647 if t.Body == nil { 5867 5648 fieldCount-- ··· 5945 5726 return err 5946 5727 } 5947 5728 5948 5948 - // t.Owner (string) (string) 5949 5949 - if len("owner") > 1000000 { 5950 5950 - return xerrors.Errorf("Value in field \"owner\" was too long") 5951 5951 - } 5952 5952 - 5953 5953 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("owner"))); err != nil { 5954 5954 - return err 5955 5955 - } 5956 5956 - if _, err := cw.WriteString(string("owner")); err != nil { 5957 5957 - return err 5958 5958 - } 5959 5959 - 5960 5960 - if len(t.Owner) > 1000000 { 5961 5961 - return xerrors.Errorf("Value in field t.Owner was too long") 5962 5962 - } 5963 5963 - 5964 5964 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Owner))); err != nil { 5965 5965 - return err 5966 5966 - } 5967 5967 - if _, err := cw.WriteString(string(t.Owner)); err != nil { 5968 5968 - return err 5969 5969 - } 5970 5970 - 5971 5729 // t.Title (string) (string) 5972 5730 if len("title") > 1000000 { 5973 5731 return xerrors.Errorf("Value in field \"title\" was too long") ··· 5989 5747 } 5990 5748 if _, err := cw.WriteString(string(t.Title)); err != nil { 5991 5749 return err 5992 5992 - } 5993 5993 - 5994 5994 - // t.IssueId (int64) (int64) 5995 5995 - if len("issueId") > 1000000 { 5996 5996 - return xerrors.Errorf("Value in field \"issueId\" was too long") 5997 5997 - } 5998 5998 - 5999 5999 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("issueId"))); err != nil { 6000 6000 - return err 6001 6001 - } 6002 6002 - if _, err := cw.WriteString(string("issueId")); err != nil { 6003 6003 - return err 6004 6004 - } 6005 6005 - 6006 6006 - if t.IssueId >= 0 { 6007 6007 - if err := cw.WriteMajorTypeHeader(cbg.MajUnsignedInt, uint64(t.IssueId)); err != nil { 6008 6008 - return err 6009 6009 - } 6010 6010 - } else { 6011 6011 - if err := cw.WriteMajorTypeHeader(cbg.MajNegativeInt, uint64(-t.IssueId-1)); err != nil { 6012 6012 - return err 6013 6013 - } 6014 5750 } 6015 5751 6016 5752 // t.CreatedAt (string) (string) ··· 6122 5858 6123 5859 t.LexiconTypeID = string(sval) 6124 5860 } 6125 6125 - // t.Owner (string) (string) 6126 6126 - case "owner": 6127 6127 - 6128 6128 - { 6129 6129 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 6130 6130 - if err != nil { 6131 6131 - return err 6132 6132 - } 6133 6133 - 6134 6134 - t.Owner = string(sval) 6135 6135 - } 6136 5861 // t.Title (string) (string) 6137 5862 case "title": 6138 5863 ··· 6144 5869 6145 5870 t.Title = string(sval) 6146 5871 } 6147 6147 - // t.IssueId (int64) (int64) 6148 6148 - case "issueId": 6149 6149 - { 6150 6150 - maj, extra, err := cr.ReadHeader() 6151 6151 - if err != nil { 6152 6152 - return err 6153 6153 - } 6154 6154 - var extraI int64 6155 6155 - switch maj { 6156 6156 - case cbg.MajUnsignedInt: 6157 6157 - extraI = int64(extra) 6158 6158 - if extraI < 0 { 6159 6159 - return fmt.Errorf("int64 positive overflow") 6160 6160 - } 6161 6161 - case cbg.MajNegativeInt: 6162 6162 - extraI = int64(extra) 6163 6163 - if extraI < 0 { 6164 6164 - return fmt.Errorf("int64 negative overflow") 6165 6165 - } 6166 6166 - extraI = -1 - extraI 6167 6167 - default: 6168 6168 - return fmt.Errorf("wrong type for int64 field: %d", maj) 6169 6169 - } 6170 6170 - 6171 6171 - t.IssueId = int64(extraI) 6172 6172 - } 6173 5872 // t.CreatedAt (string) (string) 6174 5873 case "createdAt": 6175 5874 ··· 6199 5898 } 6200 5899 6201 5900 cw := cbg.NewCborWriter(w) 6202 6202 - fieldCount := 7 5901 5901 + fieldCount := 5 6203 5902 6204 6204 - if t.CommentId == nil { 6205 6205 - fieldCount-- 6206 6206 - } 6207 6207 - 6208 6208 - if t.Owner == nil { 6209 6209 - fieldCount-- 6210 6210 - } 6211 6211 - 6212 6212 - if t.Repo == nil { 5903 5903 + if t.ReplyTo == nil { 6213 5904 fieldCount-- 6214 5905 } 6215 5906 ··· 6240 5931 return err 6241 5932 } 6242 5933 6243 6243 - // t.Repo (string) (string) 6244 6244 - if t.Repo != nil { 6245 6245 - 6246 6246 - if len("repo") > 1000000 { 6247 6247 - return xerrors.Errorf("Value in field \"repo\" was too long") 6248 6248 - } 6249 6249 - 6250 6250 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("repo"))); err != nil { 6251 6251 - return err 6252 6252 - } 6253 6253 - if _, err := cw.WriteString(string("repo")); err != nil { 6254 6254 - return err 6255 6255 - } 6256 6256 - 6257 6257 - if t.Repo == nil { 6258 6258 - if _, err := cw.Write(cbg.CborNull); err != nil { 6259 6259 - return err 6260 6260 - } 6261 6261 - } else { 6262 6262 - if len(*t.Repo) > 1000000 { 6263 6263 - return xerrors.Errorf("Value in field t.Repo was too long") 6264 6264 - } 6265 6265 - 6266 6266 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(*t.Repo))); err != nil { 6267 6267 - return err 6268 6268 - } 6269 6269 - if _, err := cw.WriteString(string(*t.Repo)); err != nil { 6270 6270 - return err 6271 6271 - } 6272 6272 - } 6273 6273 - } 6274 6274 - 6275 5934 // t.LexiconTypeID (string) (string) 6276 5935 if len("$type") > 1000000 { 6277 5936 return xerrors.Errorf("Value in field \"$type\" was too long") ··· 6314 5973 return err 6315 5974 } 6316 5975 6317 6317 - // t.Owner (string) (string) 6318 6318 - if t.Owner != nil { 5976 5976 + // t.ReplyTo (string) (string) 5977 5977 + if t.ReplyTo != nil { 6319 5978 6320 6320 - if len("owner") > 1000000 { 6321 6321 - return xerrors.Errorf("Value in field \"owner\" was too long") 5979 5979 + if len("replyTo") > 1000000 { 5980 5980 + return xerrors.Errorf("Value in field \"replyTo\" was too long") 6322 5981 } 6323 5982 6324 6324 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("owner"))); err != nil { 5983 5983 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("replyTo"))); err != nil { 6325 5984 return err 6326 5985 } 6327 6327 - if _, err := cw.WriteString(string("owner")); err != nil { 5986 5986 + if _, err := cw.WriteString(string("replyTo")); err != nil { 6328 5987 return err 6329 5988 } 6330 5989 6331 6331 - if t.Owner == nil { 5990 5990 + if t.ReplyTo == nil { 6332 5991 if _, err := cw.Write(cbg.CborNull); err != nil { 6333 5992 return err 6334 5993 } 6335 5994 } else { 6336 6336 - if len(*t.Owner) > 1000000 { 6337 6337 - return xerrors.Errorf("Value in field t.Owner was too long") 5995 5995 + if len(*t.ReplyTo) > 1000000 { 5996 5996 + return xerrors.Errorf("Value in field t.ReplyTo was too long") 6338 5997 } 6339 5998 6340 6340 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(*t.Owner))); err != nil { 5999 5999 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(*t.ReplyTo))); err != nil { 6341 6000 return err 6342 6001 } 6343 6343 - if _, err := cw.WriteString(string(*t.Owner)); err != nil { 6002 6002 + if _, err := cw.WriteString(string(*t.ReplyTo)); err != nil { 6344 6003 return err 6345 6004 } 6346 6005 } 6347 6006 } 6348 6007 6349 6349 - // t.CommentId (int64) (int64) 6350 6350 - if t.CommentId != nil { 6351 6351 - 6352 6352 - if len("commentId") > 1000000 { 6353 6353 - return xerrors.Errorf("Value in field \"commentId\" was too long") 6354 6354 - } 6355 6355 - 6356 6356 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("commentId"))); err != nil { 6357 6357 - return err 6358 6358 - } 6359 6359 - if _, err := cw.WriteString(string("commentId")); err != nil { 6360 6360 - return err 6361 6361 - } 6362 6362 - 6363 6363 - if t.CommentId == nil { 6364 6364 - if _, err := cw.Write(cbg.CborNull); err != nil { 6365 6365 - return err 6366 6366 - } 6367 6367 - } else { 6368 6368 - if *t.CommentId >= 0 { 6369 6369 - if err := cw.WriteMajorTypeHeader(cbg.MajUnsignedInt, uint64(*t.CommentId)); err != nil { 6370 6370 - return err 6371 6371 - } 6372 6372 - } else { 6373 6373 - if err := cw.WriteMajorTypeHeader(cbg.MajNegativeInt, uint64(-*t.CommentId-1)); err != nil { 6374 6374 - return err 6375 6375 - } 6376 6376 - } 6377 6377 - } 6378 6378 - 6379 6379 - } 6380 6380 - 6381 6008 // t.CreatedAt (string) (string) 6382 6009 if len("createdAt") > 1000000 { 6383 6010 return xerrors.Errorf("Value in field \"createdAt\" was too long") ··· 6455 6082 6456 6083 t.Body = string(sval) 6457 6084 } 6458 6458 - // t.Repo (string) (string) 6459 6459 - case "repo": 6460 6460 - 6461 6461 - { 6462 6462 - b, err := cr.ReadByte() 6463 6463 - if err != nil { 6464 6464 - return err 6465 6465 - } 6466 6466 - if b != cbg.CborNull[0] { 6467 6467 - if err := cr.UnreadByte(); err != nil { 6468 6468 - return err 6469 6469 - } 6470 6470 - 6471 6471 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 6472 6472 - if err != nil { 6473 6473 - return err 6474 6474 - } 6475 6475 - 6476 6476 - t.Repo = (*string)(&sval) 6477 6477 - } 6478 6478 - } 6479 6085 // t.LexiconTypeID (string) (string) 6480 6086 case "$type": 6481 6087 ··· 6498 6104 6499 6105 t.Issue = string(sval) 6500 6106 } 6501 6501 - // t.Owner (string) (string) 6502 6502 - case "owner": 6107 6107 + // t.ReplyTo (string) (string) 6108 6108 + case "replyTo": 6503 6109 6504 6110 { 6505 6111 b, err := cr.ReadByte() ··· 6516 6122 return err 6517 6123 } 6518 6124 6519 6519 - t.Owner = (*string)(&sval) 6520 6520 - } 6521 6521 - } 6522 6522 - // t.CommentId (int64) (int64) 6523 6523 - case "commentId": 6524 6524 - { 6525 6525 - 6526 6526 - b, err := cr.ReadByte() 6527 6527 - if err != nil { 6528 6528 - return err 6529 6529 - } 6530 6530 - if b != cbg.CborNull[0] { 6531 6531 - if err := cr.UnreadByte(); err != nil { 6532 6532 - return err 6533 6533 - } 6534 6534 - maj, extra, err := cr.ReadHeader() 6535 6535 - if err != nil { 6536 6536 - return err 6537 6537 - } 6538 6538 - var extraI int64 6539 6539 - switch maj { 6540 6540 - case cbg.MajUnsignedInt: 6541 6541 - extraI = int64(extra) 6542 6542 - if extraI < 0 { 6543 6543 - return fmt.Errorf("int64 positive overflow") 6544 6544 - } 6545 6545 - case cbg.MajNegativeInt: 6546 6546 - extraI = int64(extra) 6547 6547 - if extraI < 0 { 6548 6548 - return fmt.Errorf("int64 negative overflow") 6549 6549 - } 6550 6550 - extraI = -1 - extraI 6551 6551 - default: 6552 6552 - return fmt.Errorf("wrong type for int64 field: %d", maj) 6553 6553 - } 6554 6554 - 6555 6555 - t.CommentId = (*int64)(&extraI) 6125 6125 + t.ReplyTo = (*string)(&sval) 6556 6126 } 6557 6127 } 6558 6128 // t.CreatedAt (string) (string) ··· 6748 6318 } 6749 6319 6750 6320 cw := cbg.NewCborWriter(w) 6751 6751 - fieldCount := 9 6321 6321 + fieldCount := 7 6752 6322 6753 6323 if t.Body == nil { 6754 6324 fieldCount-- ··· 6859 6429 return err 6860 6430 } 6861 6431 6862 6862 - // t.PullId (int64) (int64) 6863 6863 - if len("pullId") > 1000000 { 6864 6864 - return xerrors.Errorf("Value in field \"pullId\" was too long") 6865 6865 - } 6866 6866 - 6867 6867 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("pullId"))); err != nil { 6868 6868 - return err 6869 6869 - } 6870 6870 - if _, err := cw.WriteString(string("pullId")); err != nil { 6871 6871 - return err 6872 6872 - } 6873 6873 - 6874 6874 - if t.PullId >= 0 { 6875 6875 - if err := cw.WriteMajorTypeHeader(cbg.MajUnsignedInt, uint64(t.PullId)); err != nil { 6876 6876 - return err 6877 6877 - } 6878 6878 - } else { 6879 6879 - if err := cw.WriteMajorTypeHeader(cbg.MajNegativeInt, uint64(-t.PullId-1)); err != nil { 6880 6880 - return err 6881 6881 - } 6882 6882 - } 6883 6883 - 6884 6432 // t.Source (tangled.RepoPull_Source) (struct) 6885 6433 if t.Source != nil { 6886 6434 ··· 6900 6448 } 6901 6449 } 6902 6450 6903 6903 - // t.CreatedAt (string) (string) 6904 6904 - if len("createdAt") > 1000000 { 6905 6905 - return xerrors.Errorf("Value in field \"createdAt\" was too long") 6451 6451 + // t.Target (tangled.RepoPull_Target) (struct) 6452 6452 + if len("target") > 1000000 { 6453 6453 + return xerrors.Errorf("Value in field \"target\" was too long") 6906 6454 } 6907 6455 6908 6908 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("createdAt"))); err != nil { 6456 6456 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("target"))); err != nil { 6909 6457 return err 6910 6458 } 6911 6911 - if _, err := cw.WriteString(string("createdAt")); err != nil { 6459 6459 + if _, err := cw.WriteString(string("target")); err != nil { 6912 6460 return err 6913 6461 } 6914 6462 6915 6915 - if len(t.CreatedAt) > 1000000 { 6916 6916 - return xerrors.Errorf("Value in field t.CreatedAt was too long") 6917 6917 - } 6918 6918 - 6919 6919 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.CreatedAt))); err != nil { 6920 6920 - return err 6921 6921 - } 6922 6922 - if _, err := cw.WriteString(string(t.CreatedAt)); err != nil { 6463 6463 + if err := t.Target.MarshalCBOR(cw); err != nil { 6923 6464 return err 6924 6465 } 6925 6466 6926 6926 - // t.TargetRepo (string) (string) 6927 6927 - if len("targetRepo") > 1000000 { 6928 6928 - return xerrors.Errorf("Value in field \"targetRepo\" was too long") 6929 6929 - } 6930 6930 - 6931 6931 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("targetRepo"))); err != nil { 6932 6932 - return err 6933 6933 - } 6934 6934 - if _, err := cw.WriteString(string("targetRepo")); err != nil { 6935 6935 - return err 6936 6936 - } 6937 6937 - 6938 6938 - if len(t.TargetRepo) > 1000000 { 6939 6939 - return xerrors.Errorf("Value in field t.TargetRepo was too long") 6940 6940 - } 6941 6941 - 6942 6942 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.TargetRepo))); err != nil { 6943 6943 - return err 6944 6944 - } 6945 6945 - if _, err := cw.WriteString(string(t.TargetRepo)); err != nil { 6946 6946 - return err 6947 6947 - } 6948 6948 - 6949 6949 - // t.TargetBranch (string) (string) 6950 6950 - if len("targetBranch") > 1000000 { 6951 6951 - return xerrors.Errorf("Value in field \"targetBranch\" was too long") 6467 6467 + // t.CreatedAt (string) (string) 6468 6468 + if len("createdAt") > 1000000 { 6469 6469 + return xerrors.Errorf("Value in field \"createdAt\" was too long") 6952 6470 } 6953 6471 6954 6954 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("targetBranch"))); err != nil { 6472 6472 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("createdAt"))); err != nil { 6955 6473 return err 6956 6474 } 6957 6957 - if _, err := cw.WriteString(string("targetBranch")); err != nil { 6475 6475 + if _, err := cw.WriteString(string("createdAt")); err != nil { 6958 6476 return err 6959 6477 } 6960 6478 6961 6961 - if len(t.TargetBranch) > 1000000 { 6962 6962 - return xerrors.Errorf("Value in field t.TargetBranch was too long") 6479 6479 + if len(t.CreatedAt) > 1000000 { 6480 6480 + return xerrors.Errorf("Value in field t.CreatedAt was too long") 6963 6481 } 6964 6482 6965 6965 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.TargetBranch))); err != nil { 6483 6483 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.CreatedAt))); err != nil { 6966 6484 return err 6967 6485 } 6968 6968 - if _, err := cw.WriteString(string(t.TargetBranch)); err != nil { 6486 6486 + if _, err := cw.WriteString(string(t.CreatedAt)); err != nil { 6969 6487 return err 6970 6488 } 6971 6489 return nil ··· 6996 6514 6997 6515 n := extra 6998 6516 6999 6999 - nameBuf := make([]byte, 12) 6517 6517 + nameBuf := make([]byte, 9) 7000 6518 for i := uint64(0); i < n; i++ { 7001 6519 nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 7002 6520 if err != nil { ··· 7066 6584 7067 6585 t.Title = string(sval) 7068 6586 } 7069 7069 - // t.PullId (int64) (int64) 7070 7070 - case "pullId": 7071 7071 - { 7072 7072 - maj, extra, err := cr.ReadHeader() 7073 7073 - if err != nil { 7074 7074 - return err 7075 7075 - } 7076 7076 - var extraI int64 7077 7077 - switch maj { 7078 7078 - case cbg.MajUnsignedInt: 7079 7079 - extraI = int64(extra) 7080 7080 - if extraI < 0 { 7081 7081 - return fmt.Errorf("int64 positive overflow") 7082 7082 - } 7083 7083 - case cbg.MajNegativeInt: 7084 7084 - extraI = int64(extra) 7085 7085 - if extraI < 0 { 7086 7086 - return fmt.Errorf("int64 negative overflow") 7087 7087 - } 7088 7088 - extraI = -1 - extraI 7089 7089 - default: 7090 7090 - return fmt.Errorf("wrong type for int64 field: %d", maj) 7091 7091 - } 7092 7092 - 7093 7093 - t.PullId = int64(extraI) 7094 7094 - } 7095 6587 // t.Source (tangled.RepoPull_Source) (struct) 7096 6588 case "source": 7097 6589 ··· 7112 6604 } 7113 6605 7114 6606 } 7115 7115 - // t.CreatedAt (string) (string) 7116 7116 - case "createdAt": 6607 6607 + // t.Target (tangled.RepoPull_Target) (struct) 6608 6608 + case "target": 7117 6609 7118 6610 { 7119 7119 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 6611 6611 + 6612 6612 + b, err := cr.ReadByte() 7120 6613 if err != nil { 7121 6614 return err 7122 6615 } 7123 7123 - 7124 7124 - t.CreatedAt = string(sval) 7125 7125 - } 7126 7126 - // t.TargetRepo (string) (string) 7127 7127 - case "targetRepo": 7128 7128 - 7129 7129 - { 7130 7130 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 7131 7131 - if err != nil { 7132 7132 - return err 6616 6616 + if b != cbg.CborNull[0] { 6617 6617 + if err := cr.UnreadByte(); err != nil { 6618 6618 + return err 6619 6619 + } 6620 6620 + t.Target = new(RepoPull_Target) 6621 6621 + if err := t.Target.UnmarshalCBOR(cr); err != nil { 6622 6622 + return xerrors.Errorf("unmarshaling t.Target pointer: %w", err) 6623 6623 + } 7133 6624 } 7134 6625 7135 7135 - t.TargetRepo = string(sval) 7136 6626 } 7137 7137 - // t.TargetBranch (string) (string) 7138 7138 - case "targetBranch": 6627 6627 + // t.CreatedAt (string) (string) 6628 6628 + case "createdAt": 7139 6629 7140 6630 { 7141 6631 sval, err := cbg.ReadStringWithMax(cr, 1000000) ··· 7143 6633 return err 7144 6634 } 7145 6635 7146 7146 - t.TargetBranch = string(sval) 6636 6636 + t.CreatedAt = string(sval) 7147 6637 } 7148 6638 7149 6639 default: ··· 7163 6653 } 7164 6654 7165 6655 cw := cbg.NewCborWriter(w) 7166 7166 - fieldCount := 7 7167 6656 7168 7168 - if t.CommentId == nil { 7169 7169 - fieldCount-- 7170 7170 - } 7171 7171 - 7172 7172 - if t.Owner == nil { 7173 7173 - fieldCount-- 7174 7174 - } 7175 7175 - 7176 7176 - if t.Repo == nil { 7177 7177 - fieldCount-- 7178 7178 - } 7179 7179 - 7180 7180 - if _, err := cw.Write(cbg.CborEncodeMajorType(cbg.MajMap, uint64(fieldCount))); err != nil { 6657 6657 + if _, err := cw.Write([]byte{164}); err != nil { 7181 6658 return err 7182 6659 } 7183 6660 ··· 7227 6704 return err 7228 6705 } 7229 6706 7230 7230 - // t.Repo (string) (string) 7231 7231 - if t.Repo != nil { 7232 7232 - 7233 7233 - if len("repo") > 1000000 { 7234 7234 - return xerrors.Errorf("Value in field \"repo\" was too long") 7235 7235 - } 7236 7236 - 7237 7237 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("repo"))); err != nil { 7238 7238 - return err 7239 7239 - } 7240 7240 - if _, err := cw.WriteString(string("repo")); err != nil { 7241 7241 - return err 7242 7242 - } 7243 7243 - 7244 7244 - if t.Repo == nil { 7245 7245 - if _, err := cw.Write(cbg.CborNull); err != nil { 7246 7246 - return err 7247 7247 - } 7248 7248 - } else { 7249 7249 - if len(*t.Repo) > 1000000 { 7250 7250 - return xerrors.Errorf("Value in field t.Repo was too long") 7251 7251 - } 7252 7252 - 7253 7253 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(*t.Repo))); err != nil { 7254 7254 - return err 7255 7255 - } 7256 7256 - if _, err := cw.WriteString(string(*t.Repo)); err != nil { 7257 7257 - return err 7258 7258 - } 7259 7259 - } 7260 7260 - } 7261 7261 - 7262 6707 // t.LexiconTypeID (string) (string) 7263 6708 if len("$type") > 1000000 { 7264 6709 return xerrors.Errorf("Value in field \"$type\" was too long") ··· 7276 6721 } 7277 6722 if _, err := cw.WriteString(string("sh.tangled.repo.pull.comment")); err != nil { 7278 6723 return err 7279 7279 - } 7280 7280 - 7281 7281 - // t.Owner (string) (string) 7282 7282 - if t.Owner != nil { 7283 7283 - 7284 7284 - if len("owner") > 1000000 { 7285 7285 - return xerrors.Errorf("Value in field \"owner\" was too long") 7286 7286 - } 7287 7287 - 7288 7288 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("owner"))); err != nil { 7289 7289 - return err 7290 7290 - } 7291 7291 - if _, err := cw.WriteString(string("owner")); err != nil { 7292 7292 - return err 7293 7293 - } 7294 7294 - 7295 7295 - if t.Owner == nil { 7296 7296 - if _, err := cw.Write(cbg.CborNull); err != nil { 7297 7297 - return err 7298 7298 - } 7299 7299 - } else { 7300 7300 - if len(*t.Owner) > 1000000 { 7301 7301 - return xerrors.Errorf("Value in field t.Owner was too long") 7302 7302 - } 7303 7303 - 7304 7304 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(*t.Owner))); err != nil { 7305 7305 - return err 7306 7306 - } 7307 7307 - if _, err := cw.WriteString(string(*t.Owner)); err != nil { 7308 7308 - return err 7309 7309 - } 7310 7310 - } 7311 7311 - } 7312 7312 - 7313 7313 - // t.CommentId (int64) (int64) 7314 7314 - if t.CommentId != nil { 7315 7315 - 7316 7316 - if len("commentId") > 1000000 { 7317 7317 - return xerrors.Errorf("Value in field \"commentId\" was too long") 7318 7318 - } 7319 7319 - 7320 7320 - if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("commentId"))); err != nil { 7321 7321 - return err 7322 7322 - } 7323 7323 - if _, err := cw.WriteString(string("commentId")); err != nil { 7324 7324 - return err 7325 7325 - } 7326 7326 - 7327 7327 - if t.CommentId == nil { 7328 7328 - if _, err := cw.Write(cbg.CborNull); err != nil { 7329 7329 - return err 7330 7330 - } 7331 7331 - } else { 7332 7332 - if *t.CommentId >= 0 { 7333 7333 - if err := cw.WriteMajorTypeHeader(cbg.MajUnsignedInt, uint64(*t.CommentId)); err != nil { 7334 7334 - return err 7335 7335 - } 7336 7336 - } else { 7337 7337 - if err := cw.WriteMajorTypeHeader(cbg.MajNegativeInt, uint64(-*t.CommentId-1)); err != nil { 7338 7338 - return err 7339 7339 - } 7340 7340 - } 7341 7341 - } 7342 7342 - 7343 6724 } 7344 6725 7345 6726 // t.CreatedAt (string) (string) ··· 7430 6811 7431 6812 t.Pull = string(sval) 7432 6813 } 7433 7433 - // t.Repo (string) (string) 7434 7434 - case "repo": 7435 7435 - 7436 7436 - { 7437 7437 - b, err := cr.ReadByte() 7438 7438 - if err != nil { 7439 7439 - return err 7440 7440 - } 7441 7441 - if b != cbg.CborNull[0] { 7442 7442 - if err := cr.UnreadByte(); err != nil { 7443 7443 - return err 7444 7444 - } 7445 7445 - 7446 7446 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 7447 7447 - if err != nil { 7448 7448 - return err 7449 7449 - } 7450 7450 - 7451 7451 - t.Repo = (*string)(&sval) 7452 7452 - } 7453 7453 - } 7454 6814 // t.LexiconTypeID (string) (string) 7455 6815 case "$type": 7456 6816 ··· 7461 6821 } 7462 6822 7463 6823 t.LexiconTypeID = string(sval) 7464 7464 - } 7465 7465 - // t.Owner (string) (string) 7466 7466 - case "owner": 7467 7467 - 7468 7468 - { 7469 7469 - b, err := cr.ReadByte() 7470 7470 - if err != nil { 7471 7471 - return err 7472 7472 - } 7473 7473 - if b != cbg.CborNull[0] { 7474 7474 - if err := cr.UnreadByte(); err != nil { 7475 7475 - return err 7476 7476 - } 7477 7477 - 7478 7478 - sval, err := cbg.ReadStringWithMax(cr, 1000000) 7479 7479 - if err != nil { 7480 7480 - return err 7481 7481 - } 7482 7482 - 7483 7483 - t.Owner = (*string)(&sval) 7484 7484 - } 7485 7485 - } 7486 7486 - // t.CommentId (int64) (int64) 7487 7487 - case "commentId": 7488 7488 - { 7489 7489 - 7490 7490 - b, err := cr.ReadByte() 7491 7491 - if err != nil { 7492 7492 - return err 7493 7493 - } 7494 7494 - if b != cbg.CborNull[0] { 7495 7495 - if err := cr.UnreadByte(); err != nil { 7496 7496 - return err 7497 7497 - } 7498 7498 - maj, extra, err := cr.ReadHeader() 7499 7499 - if err != nil { 7500 7500 - return err 7501 7501 - } 7502 7502 - var extraI int64 7503 7503 - switch maj { 7504 7504 - case cbg.MajUnsignedInt: 7505 7505 - extraI = int64(extra) 7506 7506 - if extraI < 0 { 7507 7507 - return fmt.Errorf("int64 positive overflow") 7508 7508 - } 7509 7509 - case cbg.MajNegativeInt: 7510 7510 - extraI = int64(extra) 7511 7511 - if extraI < 0 { 7512 7512 - return fmt.Errorf("int64 negative overflow") 7513 7513 - } 7514 7514 - extraI = -1 - extraI 7515 7515 - default: 7516 7516 - return fmt.Errorf("wrong type for int64 field: %d", maj) 7517 7517 - } 7518 7518 - 7519 7519 - t.CommentId = (*int64)(&extraI) 7520 7520 - } 7521 6824 } 7522 6825 // t.CreatedAt (string) (string) 7523 6826 case "createdAt": ··· 7897 7200 7898 7201 return nil 7899 7202 } 7203 7203 + func (t *RepoPull_Target) MarshalCBOR(w io.Writer) error { 7204 7204 + if t == nil { 7205 7205 + _, err := w.Write(cbg.CborNull) 7206 7206 + return err 7207 7207 + } 7208 7208 + 7209 7209 + cw := cbg.NewCborWriter(w) 7210 7210 + 7211 7211 + if _, err := cw.Write([]byte{162}); err != nil { 7212 7212 + return err 7213 7213 + } 7214 7214 + 7215 7215 + // t.Repo (string) (string) 7216 7216 + if len("repo") > 1000000 { 7217 7217 + return xerrors.Errorf("Value in field \"repo\" was too long") 7218 7218 + } 7219 7219 + 7220 7220 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("repo"))); err != nil { 7221 7221 + return err 7222 7222 + } 7223 7223 + if _, err := cw.WriteString(string("repo")); err != nil { 7224 7224 + return err 7225 7225 + } 7226 7226 + 7227 7227 + if len(t.Repo) > 1000000 { 7228 7228 + return xerrors.Errorf("Value in field t.Repo was too long") 7229 7229 + } 7230 7230 + 7231 7231 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Repo))); err != nil { 7232 7232 + return err 7233 7233 + } 7234 7234 + if _, err := cw.WriteString(string(t.Repo)); err != nil { 7235 7235 + return err 7236 7236 + } 7237 7237 + 7238 7238 + // t.Branch (string) (string) 7239 7239 + if len("branch") > 1000000 { 7240 7240 + return xerrors.Errorf("Value in field \"branch\" was too long") 7241 7241 + } 7242 7242 + 7243 7243 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("branch"))); err != nil { 7244 7244 + return err 7245 7245 + } 7246 7246 + if _, err := cw.WriteString(string("branch")); err != nil { 7247 7247 + return err 7248 7248 + } 7249 7249 + 7250 7250 + if len(t.Branch) > 1000000 { 7251 7251 + return xerrors.Errorf("Value in field t.Branch was too long") 7252 7252 + } 7253 7253 + 7254 7254 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Branch))); err != nil { 7255 7255 + return err 7256 7256 + } 7257 7257 + if _, err := cw.WriteString(string(t.Branch)); err != nil { 7258 7258 + return err 7259 7259 + } 7260 7260 + return nil 7261 7261 + } 7262 7262 + 7263 7263 + func (t *RepoPull_Target) UnmarshalCBOR(r io.Reader) (err error) { 7264 7264 + *t = RepoPull_Target{} 7265 7265 + 7266 7266 + cr := cbg.NewCborReader(r) 7267 7267 + 7268 7268 + maj, extra, err := cr.ReadHeader() 7269 7269 + if err != nil { 7270 7270 + return err 7271 7271 + } 7272 7272 + defer func() { 7273 7273 + if err == io.EOF { 7274 7274 + err = io.ErrUnexpectedEOF 7275 7275 + } 7276 7276 + }() 7277 7277 + 7278 7278 + if maj != cbg.MajMap { 7279 7279 + return fmt.Errorf("cbor input should be of type map") 7280 7280 + } 7281 7281 + 7282 7282 + if extra > cbg.MaxLength { 7283 7283 + return fmt.Errorf("RepoPull_Target: map struct too large (%d)", extra) 7284 7284 + } 7285 7285 + 7286 7286 + n := extra 7287 7287 + 7288 7288 + nameBuf := make([]byte, 6) 7289 7289 + for i := uint64(0); i < n; i++ { 7290 7290 + nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 7291 7291 + if err != nil { 7292 7292 + return err 7293 7293 + } 7294 7294 + 7295 7295 + if !ok { 7296 7296 + // Field doesn't exist on this type, so ignore it 7297 7297 + if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 7298 7298 + return err 7299 7299 + } 7300 7300 + continue 7301 7301 + } 7302 7302 + 7303 7303 + switch string(nameBuf[:nameLen]) { 7304 7304 + // t.Repo (string) (string) 7305 7305 + case "repo": 7306 7306 + 7307 7307 + { 7308 7308 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7309 7309 + if err != nil { 7310 7310 + return err 7311 7311 + } 7312 7312 + 7313 7313 + t.Repo = string(sval) 7314 7314 + } 7315 7315 + // t.Branch (string) (string) 7316 7316 + case "branch": 7317 7317 + 7318 7318 + { 7319 7319 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7320 7320 + if err != nil { 7321 7321 + return err 7322 7322 + } 7323 7323 + 7324 7324 + t.Branch = string(sval) 7325 7325 + } 7326 7326 + 7327 7327 + default: 7328 7328 + // Field doesn't exist on this type, so ignore it 7329 7329 + if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 7330 7330 + return err 7331 7331 + } 7332 7332 + } 7333 7333 + } 7334 7334 + 7335 7335 + return nil 7336 7336 + } 7900 7337 func (t *Spindle) MarshalCBOR(w io.Writer) error { 7901 7338 if t == nil { 7902 7339 _, err := w.Write(cbg.CborNull) ··· 8225 7662 8226 7663 return nil 8227 7664 } 7665 7665 + func (t *String) MarshalCBOR(w io.Writer) error { 7666 7666 + if t == nil { 7667 7667 + _, err := w.Write(cbg.CborNull) 7668 7668 + return err 7669 7669 + } 7670 7670 + 7671 7671 + cw := cbg.NewCborWriter(w) 7672 7672 + 7673 7673 + if _, err := cw.Write([]byte{165}); err != nil { 7674 7674 + return err 7675 7675 + } 7676 7676 + 7677 7677 + // t.LexiconTypeID (string) (string) 7678 7678 + if len("$type") > 1000000 { 7679 7679 + return xerrors.Errorf("Value in field \"$type\" was too long") 7680 7680 + } 7681 7681 + 7682 7682 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("$type"))); err != nil { 7683 7683 + return err 7684 7684 + } 7685 7685 + if _, err := cw.WriteString(string("$type")); err != nil { 7686 7686 + return err 7687 7687 + } 7688 7688 + 7689 7689 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("sh.tangled.string"))); err != nil { 7690 7690 + return err 7691 7691 + } 7692 7692 + if _, err := cw.WriteString(string("sh.tangled.string")); err != nil { 7693 7693 + return err 7694 7694 + } 7695 7695 + 7696 7696 + // t.Contents (string) (string) 7697 7697 + if len("contents") > 1000000 { 7698 7698 + return xerrors.Errorf("Value in field \"contents\" was too long") 7699 7699 + } 7700 7700 + 7701 7701 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("contents"))); err != nil { 7702 7702 + return err 7703 7703 + } 7704 7704 + if _, err := cw.WriteString(string("contents")); err != nil { 7705 7705 + return err 7706 7706 + } 7707 7707 + 7708 7708 + if len(t.Contents) > 1000000 { 7709 7709 + return xerrors.Errorf("Value in field t.Contents was too long") 7710 7710 + } 7711 7711 + 7712 7712 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Contents))); err != nil { 7713 7713 + return err 7714 7714 + } 7715 7715 + if _, err := cw.WriteString(string(t.Contents)); err != nil { 7716 7716 + return err 7717 7717 + } 7718 7718 + 7719 7719 + // t.Filename (string) (string) 7720 7720 + if len("filename") > 1000000 { 7721 7721 + return xerrors.Errorf("Value in field \"filename\" was too long") 7722 7722 + } 7723 7723 + 7724 7724 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("filename"))); err != nil { 7725 7725 + return err 7726 7726 + } 7727 7727 + if _, err := cw.WriteString(string("filename")); err != nil { 7728 7728 + return err 7729 7729 + } 7730 7730 + 7731 7731 + if len(t.Filename) > 1000000 { 7732 7732 + return xerrors.Errorf("Value in field t.Filename was too long") 7733 7733 + } 7734 7734 + 7735 7735 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Filename))); err != nil { 7736 7736 + return err 7737 7737 + } 7738 7738 + if _, err := cw.WriteString(string(t.Filename)); err != nil { 7739 7739 + return err 7740 7740 + } 7741 7741 + 7742 7742 + // t.CreatedAt (string) (string) 7743 7743 + if len("createdAt") > 1000000 { 7744 7744 + return xerrors.Errorf("Value in field \"createdAt\" was too long") 7745 7745 + } 7746 7746 + 7747 7747 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("createdAt"))); err != nil { 7748 7748 + return err 7749 7749 + } 7750 7750 + if _, err := cw.WriteString(string("createdAt")); err != nil { 7751 7751 + return err 7752 7752 + } 7753 7753 + 7754 7754 + if len(t.CreatedAt) > 1000000 { 7755 7755 + return xerrors.Errorf("Value in field t.CreatedAt was too long") 7756 7756 + } 7757 7757 + 7758 7758 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.CreatedAt))); err != nil { 7759 7759 + return err 7760 7760 + } 7761 7761 + if _, err := cw.WriteString(string(t.CreatedAt)); err != nil { 7762 7762 + return err 7763 7763 + } 7764 7764 + 7765 7765 + // t.Description (string) (string) 7766 7766 + if len("description") > 1000000 { 7767 7767 + return xerrors.Errorf("Value in field \"description\" was too long") 7768 7768 + } 7769 7769 + 7770 7770 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("description"))); err != nil { 7771 7771 + return err 7772 7772 + } 7773 7773 + if _, err := cw.WriteString(string("description")); err != nil { 7774 7774 + return err 7775 7775 + } 7776 7776 + 7777 7777 + if len(t.Description) > 1000000 { 7778 7778 + return xerrors.Errorf("Value in field t.Description was too long") 7779 7779 + } 7780 7780 + 7781 7781 + if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len(t.Description))); err != nil { 7782 7782 + return err 7783 7783 + } 7784 7784 + if _, err := cw.WriteString(string(t.Description)); err != nil { 7785 7785 + return err 7786 7786 + } 7787 7787 + return nil 7788 7788 + } 7789 7789 + 7790 7790 + func (t *String) UnmarshalCBOR(r io.Reader) (err error) { 7791 7791 + *t = String{} 7792 7792 + 7793 7793 + cr := cbg.NewCborReader(r) 7794 7794 + 7795 7795 + maj, extra, err := cr.ReadHeader() 7796 7796 + if err != nil { 7797 7797 + return err 7798 7798 + } 7799 7799 + defer func() { 7800 7800 + if err == io.EOF { 7801 7801 + err = io.ErrUnexpectedEOF 7802 7802 + } 7803 7803 + }() 7804 7804 + 7805 7805 + if maj != cbg.MajMap { 7806 7806 + return fmt.Errorf("cbor input should be of type map") 7807 7807 + } 7808 7808 + 7809 7809 + if extra > cbg.MaxLength { 7810 7810 + return fmt.Errorf("String: map struct too large (%d)", extra) 7811 7811 + } 7812 7812 + 7813 7813 + n := extra 7814 7814 + 7815 7815 + nameBuf := make([]byte, 11) 7816 7816 + for i := uint64(0); i < n; i++ { 7817 7817 + nameLen, ok, err := cbg.ReadFullStringIntoBuf(cr, nameBuf, 1000000) 7818 7818 + if err != nil { 7819 7819 + return err 7820 7820 + } 7821 7821 + 7822 7822 + if !ok { 7823 7823 + // Field doesn't exist on this type, so ignore it 7824 7824 + if err := cbg.ScanForLinks(cr, func(cid.Cid) {}); err != nil { 7825 7825 + return err 7826 7826 + } 7827 7827 + continue 7828 7828 + } 7829 7829 + 7830 7830 + switch string(nameBuf[:nameLen]) { 7831 7831 + // t.LexiconTypeID (string) (string) 7832 7832 + case "$type": 7833 7833 + 7834 7834 + { 7835 7835 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7836 7836 + if err != nil { 7837 7837 + return err 7838 7838 + } 7839 7839 + 7840 7840 + t.LexiconTypeID = string(sval) 7841 7841 + } 7842 7842 + // t.Contents (string) (string) 7843 7843 + case "contents": 7844 7844 + 7845 7845 + { 7846 7846 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7847 7847 + if err != nil { 7848 7848 + return err 7849 7849 + } 7850 7850 + 7851 7851 + t.Contents = string(sval) 7852 7852 + } 7853 7853 + // t.Filename (string) (string) 7854 7854 + case "filename": 7855 7855 + 7856 7856 + { 7857 7857 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7858 7858 + if err != nil { 7859 7859 + return err 7860 7860 + } 7861 7861 + 7862 7862 + t.Filename = string(sval) 7863 7863 + } 7864 7864 + // t.CreatedAt (string) (string) 7865 7865 + case "createdAt": 7866 7866 + 7867 7867 + { 7868 7868 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7869 7869 + if err != nil { 7870 7870 + return err 7871 7871 + } 7872 7872 + 7873 7873 + t.CreatedAt = string(sval) 7874 7874 + } 7875 7875 + // t.Description (string) (string) 7876 7876 + case "description": 7877 7877 + 7878 7878 + { 7879 7879 + sval, err := cbg.ReadStringWithMax(cr, 1000000) 7880 7880 + if err != nil { 7881 7881 + return err 7882 7882 + } 7883 7883 + 7884 7884 + t.Description = string(sval) 7885 7885 + } 7886 7886 + 7887 7887 + default: 7888 7888 + // Field doesn't exist on this type, so ignore it 7889 7889 + if err := cbg.ScanForLinks(r, func(cid.Cid) {}); err != nil { 7890 7890 + return err 7891 7891 + } 7892 7892 + } 7893 7893 + } 7894 7894 + 7895 7895 + return nil 7896 7896 + }

+19 -15

api/tangled/gitrefUpdate.go

··· 33 33 RepoName string `json:"repoName" cborgen:"repoName"` 34 34 } 35 35 36 36 - type GitRefUpdate_Meta struct { 37 37 - CommitCount *GitRefUpdate_Meta_CommitCount `json:"commitCount" cborgen:"commitCount"` 38 38 - IsDefaultRef bool `json:"isDefaultRef" cborgen:"isDefaultRef"` 39 39 - LangBreakdown *GitRefUpdate_Meta_LangBreakdown `json:"langBreakdown,omitempty" cborgen:"langBreakdown,omitempty"` 36 36 + // GitRefUpdate_CommitCountBreakdown is a "commitCountBreakdown" in the sh.tangled.git.refUpdate schema. 37 37 + type GitRefUpdate_CommitCountBreakdown struct { 38 38 + ByEmail []*GitRefUpdate_IndividualEmailCommitCount `json:"byEmail,omitempty" cborgen:"byEmail,omitempty"` 40 39 } 41 40 42 42 - type GitRefUpdate_Meta_CommitCount struct { 43 43 - ByEmail []*GitRefUpdate_Meta_CommitCount_ByEmail_Elem `json:"byEmail,omitempty" cborgen:"byEmail,omitempty"` 44 44 - } 45 45 - 46 46 - type GitRefUpdate_Meta_CommitCount_ByEmail_Elem struct { 41 41 + // GitRefUpdate_IndividualEmailCommitCount is a "individualEmailCommitCount" in the sh.tangled.git.refUpdate schema. 42 42 + type GitRefUpdate_IndividualEmailCommitCount struct { 47 43 Count int64 `json:"count" cborgen:"count"` 48 44 Email string `json:"email" cborgen:"email"` 49 45 } 50 46 51 51 - type GitRefUpdate_Meta_LangBreakdown struct { 52 52 - Inputs []*GitRefUpdate_Pair `json:"inputs,omitempty" cborgen:"inputs,omitempty"` 53 53 - } 54 54 - 55 55 - // GitRefUpdate_Pair is a "pair" in the sh.tangled.git.refUpdate schema. 56 56 - type GitRefUpdate_Pair struct { 47 47 + // GitRefUpdate_IndividualLanguageSize is a "individualLanguageSize" in the sh.tangled.git.refUpdate schema. 48 48 + type GitRefUpdate_IndividualLanguageSize struct { 57 49 Lang string `json:"lang" cborgen:"lang"` 58 50 Size int64 `json:"size" cborgen:"size"` 59 51 } 52 52 + 53 53 + // GitRefUpdate_LangBreakdown is a "langBreakdown" in the sh.tangled.git.refUpdate schema. 54 54 + type GitRefUpdate_LangBreakdown struct { 55 55 + Inputs []*GitRefUpdate_IndividualLanguageSize `json:"inputs,omitempty" cborgen:"inputs,omitempty"` 56 56 + } 57 57 + 58 58 + // GitRefUpdate_Meta is a "meta" in the sh.tangled.git.refUpdate schema. 59 59 + type GitRefUpdate_Meta struct { 60 60 + CommitCount *GitRefUpdate_CommitCountBreakdown `json:"commitCount" cborgen:"commitCount"` 61 61 + IsDefaultRef bool `json:"isDefaultRef" cborgen:"isDefaultRef"` 62 62 + LangBreakdown *GitRefUpdate_LangBreakdown `json:"langBreakdown,omitempty" cborgen:"langBreakdown,omitempty"` 63 63 + }

+1 -3

api/tangled/issuecomment.go

··· 19 19 type RepoIssueComment struct { 20 20 LexiconTypeID string `json:"$type,const=sh.tangled.repo.issue.comment" cborgen:"$type,const=sh.tangled.repo.issue.comment"` 21 21 Body string `json:"body" cborgen:"body"` 22 22 - CommentId *int64 `json:"commentId,omitempty" cborgen:"commentId,omitempty"` 23 22 CreatedAt string `json:"createdAt" cborgen:"createdAt"` 24 23 Issue string `json:"issue" cborgen:"issue"` 25 25 - Owner *string `json:"owner,omitempty" cborgen:"owner,omitempty"` 26 26 - Repo *string `json:"repo,omitempty" cborgen:"repo,omitempty"` 24 24 + ReplyTo *string `json:"replyTo,omitempty" cborgen:"replyTo,omitempty"` 27 25 }

+53

api/tangled/knotlistKeys.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.knot.listKeys 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + KnotListKeysNSID = "sh.tangled.knot.listKeys" 15 15 + ) 16 16 + 17 17 + // KnotListKeys_Output is the output of a sh.tangled.knot.listKeys call. 18 18 + type KnotListKeys_Output struct { 19 19 + // cursor: Pagination cursor for next page 20 20 + Cursor *string `json:"cursor,omitempty" cborgen:"cursor,omitempty"` 21 21 + Keys []*KnotListKeys_PublicKey `json:"keys" cborgen:"keys"` 22 22 + } 23 23 + 24 24 + // KnotListKeys_PublicKey is a "publicKey" in the sh.tangled.knot.listKeys schema. 25 25 + type KnotListKeys_PublicKey struct { 26 26 + // createdAt: Key upload timestamp 27 27 + CreatedAt string `json:"createdAt" cborgen:"createdAt"` 28 28 + // did: DID associated with the public key 29 29 + Did string `json:"did" cborgen:"did"` 30 30 + // key: Public key contents 31 31 + Key string `json:"key" cborgen:"key"` 32 32 + } 33 33 + 34 34 + // KnotListKeys calls the XRPC method "sh.tangled.knot.listKeys". 35 35 + // 36 36 + // cursor: Pagination cursor 37 37 + // limit: Maximum number of keys to return 38 38 + func KnotListKeys(ctx context.Context, c util.LexClient, cursor string, limit int64) (*KnotListKeys_Output, error) { 39 39 + var out KnotListKeys_Output 40 40 + 41 41 + params := map[string]interface{}{} 42 42 + if cursor != "" { 43 43 + params["cursor"] = cursor 44 44 + } 45 45 + if limit != 0 { 46 46 + params["limit"] = limit 47 47 + } 48 48 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.knot.listKeys", params, nil, &out); err != nil { 49 49 + return nil, err 50 50 + } 51 51 + 52 52 + return &out, nil 53 53 + }

+30

api/tangled/knotversion.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.knot.version 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + KnotVersionNSID = "sh.tangled.knot.version" 15 15 + ) 16 16 + 17 17 + // KnotVersion_Output is the output of a sh.tangled.knot.version call. 18 18 + type KnotVersion_Output struct { 19 19 + Version string `json:"version" cborgen:"version"` 20 20 + } 21 21 + 22 22 + // KnotVersion calls the XRPC method "sh.tangled.knot.version". 23 23 + func KnotVersion(ctx context.Context, c util.LexClient) (*KnotVersion_Output, error) { 24 24 + var out KnotVersion_Output 25 25 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.knot.version", nil, nil, &out); err != nil { 26 26 + return nil, err 27 27 + } 28 28 + 29 29 + return &out, nil 30 30 + }

+4 -7

api/tangled/pullcomment.go

··· 17 17 } // 18 18 // RECORDTYPE: RepoPullComment 19 19 type RepoPullComment struct { 20 20 - LexiconTypeID string `json:"$type,const=sh.tangled.repo.pull.comment" cborgen:"$type,const=sh.tangled.repo.pull.comment"` 21 21 - Body string `json:"body" cborgen:"body"` 22 22 - CommentId *int64 `json:"commentId,omitempty" cborgen:"commentId,omitempty"` 23 23 - CreatedAt string `json:"createdAt" cborgen:"createdAt"` 24 24 - Owner *string `json:"owner,omitempty" cborgen:"owner,omitempty"` 25 25 - Pull string `json:"pull" cborgen:"pull"` 26 26 - Repo *string `json:"repo,omitempty" cborgen:"repo,omitempty"` 20 20 + LexiconTypeID string `json:"$type,const=sh.tangled.repo.pull.comment" cborgen:"$type,const=sh.tangled.repo.pull.comment"` 21 21 + Body string `json:"body" cborgen:"body"` 22 22 + CreatedAt string `json:"createdAt" cborgen:"createdAt"` 23 23 + Pull string `json:"pull" cborgen:"pull"` 27 24 }

+41

api/tangled/repoarchive.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.archive 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoArchiveNSID = "sh.tangled.repo.archive" 16 16 + ) 17 17 + 18 18 + // RepoArchive calls the XRPC method "sh.tangled.repo.archive". 19 19 + // 20 20 + // format: Archive format 21 21 + // prefix: Prefix for files in the archive 22 22 + // ref: Git reference (branch, tag, or commit SHA) 23 23 + // repo: Repository identifier in format 'did:plc:.../repoName' 24 24 + func RepoArchive(ctx context.Context, c util.LexClient, format string, prefix string, ref string, repo string) ([]byte, error) { 25 25 + buf := new(bytes.Buffer) 26 26 + 27 27 + params := map[string]interface{}{} 28 28 + if format != "" { 29 29 + params["format"] = format 30 30 + } 31 31 + if prefix != "" { 32 32 + params["prefix"] = prefix 33 33 + } 34 34 + params["ref"] = ref 35 35 + params["repo"] = repo 36 36 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.archive", params, nil, buf); err != nil { 37 37 + return nil, err 38 38 + } 39 39 + 40 40 + return buf.Bytes(), nil 41 41 + }

+80

api/tangled/repoblob.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.blob 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoBlobNSID = "sh.tangled.repo.blob" 15 15 + ) 16 16 + 17 17 + // RepoBlob_LastCommit is a "lastCommit" in the sh.tangled.repo.blob schema. 18 18 + type RepoBlob_LastCommit struct { 19 19 + Author *RepoBlob_Signature `json:"author,omitempty" cborgen:"author,omitempty"` 20 20 + // hash: Commit hash 21 21 + Hash string `json:"hash" cborgen:"hash"` 22 22 + // message: Commit message 23 23 + Message string `json:"message" cborgen:"message"` 24 24 + // shortHash: Short commit hash 25 25 + ShortHash *string `json:"shortHash,omitempty" cborgen:"shortHash,omitempty"` 26 26 + // when: Commit timestamp 27 27 + When string `json:"when" cborgen:"when"` 28 28 + } 29 29 + 30 30 + // RepoBlob_Output is the output of a sh.tangled.repo.blob call. 31 31 + type RepoBlob_Output struct { 32 32 + // content: File content (base64 encoded for binary files) 33 33 + Content string `json:"content" cborgen:"content"` 34 34 + // encoding: Content encoding 35 35 + Encoding *string `json:"encoding,omitempty" cborgen:"encoding,omitempty"` 36 36 + // isBinary: Whether the file is binary 37 37 + IsBinary *bool `json:"isBinary,omitempty" cborgen:"isBinary,omitempty"` 38 38 + LastCommit *RepoBlob_LastCommit `json:"lastCommit,omitempty" cborgen:"lastCommit,omitempty"` 39 39 + // mimeType: MIME type of the file 40 40 + MimeType *string `json:"mimeType,omitempty" cborgen:"mimeType,omitempty"` 41 41 + // path: The file path 42 42 + Path string `json:"path" cborgen:"path"` 43 43 + // ref: The git reference used 44 44 + Ref string `json:"ref" cborgen:"ref"` 45 45 + // size: File size in bytes 46 46 + Size *int64 `json:"size,omitempty" cborgen:"size,omitempty"` 47 47 + } 48 48 + 49 49 + // RepoBlob_Signature is a "signature" in the sh.tangled.repo.blob schema. 50 50 + type RepoBlob_Signature struct { 51 51 + // email: Author email 52 52 + Email string `json:"email" cborgen:"email"` 53 53 + // name: Author name 54 54 + Name string `json:"name" cborgen:"name"` 55 55 + // when: Author timestamp 56 56 + When string `json:"when" cborgen:"when"` 57 57 + } 58 58 + 59 59 + // RepoBlob calls the XRPC method "sh.tangled.repo.blob". 60 60 + // 61 61 + // path: Path to the file within the repository 62 62 + // raw: Return raw file content instead of JSON response 63 63 + // ref: Git reference (branch, tag, or commit SHA) 64 64 + // repo: Repository identifier in format 'did:plc:.../repoName' 65 65 + func RepoBlob(ctx context.Context, c util.LexClient, path string, raw bool, ref string, repo string) (*RepoBlob_Output, error) { 66 66 + var out RepoBlob_Output 67 67 + 68 68 + params := map[string]interface{}{} 69 69 + params["path"] = path 70 70 + if raw { 71 71 + params["raw"] = raw 72 72 + } 73 73 + params["ref"] = ref 74 74 + params["repo"] = repo 75 75 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.blob", params, nil, &out); err != nil { 76 76 + return nil, err 77 77 + } 78 78 + 79 79 + return &out, nil 80 80 + }

+59

api/tangled/repobranch.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.branch 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoBranchNSID = "sh.tangled.repo.branch" 15 15 + ) 16 16 + 17 17 + // RepoBranch_Output is the output of a sh.tangled.repo.branch call. 18 18 + type RepoBranch_Output struct { 19 19 + Author *RepoBranch_Signature `json:"author,omitempty" cborgen:"author,omitempty"` 20 20 + // hash: Latest commit hash on this branch 21 21 + Hash string `json:"hash" cborgen:"hash"` 22 22 + // isDefault: Whether this is the default branch 23 23 + IsDefault *bool `json:"isDefault,omitempty" cborgen:"isDefault,omitempty"` 24 24 + // message: Latest commit message 25 25 + Message *string `json:"message,omitempty" cborgen:"message,omitempty"` 26 26 + // name: Branch name 27 27 + Name string `json:"name" cborgen:"name"` 28 28 + // shortHash: Short commit hash 29 29 + ShortHash *string `json:"shortHash,omitempty" cborgen:"shortHash,omitempty"` 30 30 + // when: Timestamp of latest commit 31 31 + When string `json:"when" cborgen:"when"` 32 32 + } 33 33 + 34 34 + // RepoBranch_Signature is a "signature" in the sh.tangled.repo.branch schema. 35 35 + type RepoBranch_Signature struct { 36 36 + // email: Author email 37 37 + Email string `json:"email" cborgen:"email"` 38 38 + // name: Author name 39 39 + Name string `json:"name" cborgen:"name"` 40 40 + // when: Author timestamp 41 41 + When string `json:"when" cborgen:"when"` 42 42 + } 43 43 + 44 44 + // RepoBranch calls the XRPC method "sh.tangled.repo.branch". 45 45 + // 46 46 + // name: Branch name to get information for 47 47 + // repo: Repository identifier in format 'did:plc:.../repoName' 48 48 + func RepoBranch(ctx context.Context, c util.LexClient, name string, repo string) (*RepoBranch_Output, error) { 49 49 + var out RepoBranch_Output 50 50 + 51 51 + params := map[string]interface{}{} 52 52 + params["name"] = name 53 53 + params["repo"] = repo 54 54 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.branch", params, nil, &out); err != nil { 55 55 + return nil, err 56 56 + } 57 57 + 58 58 + return &out, nil 59 59 + }

+39

api/tangled/repobranches.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.branches 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoBranchesNSID = "sh.tangled.repo.branches" 16 16 + ) 17 17 + 18 18 + // RepoBranches calls the XRPC method "sh.tangled.repo.branches". 19 19 + // 20 20 + // cursor: Pagination cursor 21 21 + // limit: Maximum number of branches to return 22 22 + // repo: Repository identifier in format 'did:plc:.../repoName' 23 23 + func RepoBranches(ctx context.Context, c util.LexClient, cursor string, limit int64, repo string) ([]byte, error) { 24 24 + buf := new(bytes.Buffer) 25 25 + 26 26 + params := map[string]interface{}{} 27 27 + if cursor != "" { 28 28 + params["cursor"] = cursor 29 29 + } 30 30 + if limit != 0 { 31 31 + params["limit"] = limit 32 32 + } 33 33 + params["repo"] = repo 34 34 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.branches", params, nil, buf); err != nil { 35 35 + return nil, err 36 36 + } 37 37 + 38 38 + return buf.Bytes(), nil 39 39 + }

+25

api/tangled/repocollaborator.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.collaborator 6 6 + 7 7 + import ( 8 8 + "github.com/bluesky-social/indigo/lex/util" 9 9 + ) 10 10 + 11 11 + const ( 12 12 + RepoCollaboratorNSID = "sh.tangled.repo.collaborator" 13 13 + ) 14 14 + 15 15 + func init() { 16 16 + util.RegisterType("sh.tangled.repo.collaborator", &RepoCollaborator{}) 17 17 + } // 18 18 + // RECORDTYPE: RepoCollaborator 19 19 + type RepoCollaborator struct { 20 20 + LexiconTypeID string `json:"$type,const=sh.tangled.repo.collaborator" cborgen:"$type,const=sh.tangled.repo.collaborator"` 21 21 + CreatedAt string `json:"createdAt" cborgen:"createdAt"` 22 22 + // repo: repo to add this user to 23 23 + Repo string `json:"repo" cborgen:"repo"` 24 24 + Subject string `json:"subject" cborgen:"subject"` 25 25 + }

+35

api/tangled/repocompare.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.compare 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoCompareNSID = "sh.tangled.repo.compare" 16 16 + ) 17 17 + 18 18 + // RepoCompare calls the XRPC method "sh.tangled.repo.compare". 19 19 + // 20 20 + // repo: Repository identifier in format 'did:plc:.../repoName' 21 21 + // rev1: First revision (commit, branch, or tag) 22 22 + // rev2: Second revision (commit, branch, or tag) 23 23 + func RepoCompare(ctx context.Context, c util.LexClient, repo string, rev1 string, rev2 string) ([]byte, error) { 24 24 + buf := new(bytes.Buffer) 25 25 + 26 26 + params := map[string]interface{}{} 27 27 + params["repo"] = repo 28 28 + params["rev1"] = rev1 29 29 + params["rev2"] = rev2 30 30 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.compare", params, nil, buf); err != nil { 31 31 + return nil, err 32 32 + } 33 33 + 34 34 + return buf.Bytes(), nil 35 35 + }

+34

api/tangled/repocreate.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.create 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoCreateNSID = "sh.tangled.repo.create" 15 15 + ) 16 16 + 17 17 + // RepoCreate_Input is the input argument to a sh.tangled.repo.create call. 18 18 + type RepoCreate_Input struct { 19 19 + // defaultBranch: Default branch to push to 20 20 + DefaultBranch *string `json:"defaultBranch,omitempty" cborgen:"defaultBranch,omitempty"` 21 21 + // rkey: Rkey of the repository record 22 22 + Rkey string `json:"rkey" cborgen:"rkey"` 23 23 + // source: A source URL to clone from, populate this when forking or importing a repository. 24 24 + Source *string `json:"source,omitempty" cborgen:"source,omitempty"` 25 25 + } 26 26 + 27 27 + // RepoCreate calls the XRPC method "sh.tangled.repo.create". 28 28 + func RepoCreate(ctx context.Context, c util.LexClient, input *RepoCreate_Input) error { 29 29 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.create", nil, input, nil); err != nil { 30 30 + return err 31 31 + } 32 32 + 33 33 + return nil 34 34 + }

+34

api/tangled/repodelete.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.delete 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoDeleteNSID = "sh.tangled.repo.delete" 15 15 + ) 16 16 + 17 17 + // RepoDelete_Input is the input argument to a sh.tangled.repo.delete call. 18 18 + type RepoDelete_Input struct { 19 19 + // did: DID of the repository owner 20 20 + Did string `json:"did" cborgen:"did"` 21 21 + // name: Name of the repository to delete 22 22 + Name string `json:"name" cborgen:"name"` 23 23 + // rkey: Rkey of the repository record 24 24 + Rkey string `json:"rkey" cborgen:"rkey"` 25 25 + } 26 26 + 27 27 + // RepoDelete calls the XRPC method "sh.tangled.repo.delete". 28 28 + func RepoDelete(ctx context.Context, c util.LexClient, input *RepoDelete_Input) error { 29 29 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.delete", nil, input, nil); err != nil { 30 30 + return err 31 31 + } 32 32 + 33 33 + return nil 34 34 + }

+33

api/tangled/repodiff.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.diff 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoDiffNSID = "sh.tangled.repo.diff" 16 16 + ) 17 17 + 18 18 + // RepoDiff calls the XRPC method "sh.tangled.repo.diff". 19 19 + // 20 20 + // ref: Git reference (branch, tag, or commit SHA) 21 21 + // repo: Repository identifier in format 'did:plc:.../repoName' 22 22 + func RepoDiff(ctx context.Context, c util.LexClient, ref string, repo string) ([]byte, error) { 23 23 + buf := new(bytes.Buffer) 24 24 + 25 25 + params := map[string]interface{}{} 26 26 + params["ref"] = ref 27 27 + params["repo"] = repo 28 28 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.diff", params, nil, buf); err != nil { 29 29 + return nil, err 30 30 + } 31 31 + 32 32 + return buf.Bytes(), nil 33 33 + }

+45

api/tangled/repoforkStatus.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.forkStatus 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoForkStatusNSID = "sh.tangled.repo.forkStatus" 15 15 + ) 16 16 + 17 17 + // RepoForkStatus_Input is the input argument to a sh.tangled.repo.forkStatus call. 18 18 + type RepoForkStatus_Input struct { 19 19 + // branch: Branch to check status for 20 20 + Branch string `json:"branch" cborgen:"branch"` 21 21 + // did: DID of the fork owner 22 22 + Did string `json:"did" cborgen:"did"` 23 23 + // hiddenRef: Hidden ref to use for comparison 24 24 + HiddenRef string `json:"hiddenRef" cborgen:"hiddenRef"` 25 25 + // name: Name of the forked repository 26 26 + Name string `json:"name" cborgen:"name"` 27 27 + // source: Source repository URL 28 28 + Source string `json:"source" cborgen:"source"` 29 29 + } 30 30 + 31 31 + // RepoForkStatus_Output is the output of a sh.tangled.repo.forkStatus call. 32 32 + type RepoForkStatus_Output struct { 33 33 + // status: Fork status: 0=UpToDate, 1=FastForwardable, 2=Conflict, 3=MissingBranch 34 34 + Status int64 `json:"status" cborgen:"status"` 35 35 + } 36 36 + 37 37 + // RepoForkStatus calls the XRPC method "sh.tangled.repo.forkStatus". 38 38 + func RepoForkStatus(ctx context.Context, c util.LexClient, input *RepoForkStatus_Input) (*RepoForkStatus_Output, error) { 39 39 + var out RepoForkStatus_Output 40 40 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.forkStatus", nil, input, &out); err != nil { 41 41 + return nil, err 42 42 + } 43 43 + 44 44 + return &out, nil 45 45 + }

+36

api/tangled/repoforkSync.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.forkSync 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoForkSyncNSID = "sh.tangled.repo.forkSync" 15 15 + ) 16 16 + 17 17 + // RepoForkSync_Input is the input argument to a sh.tangled.repo.forkSync call. 18 18 + type RepoForkSync_Input struct { 19 19 + // branch: Branch to sync 20 20 + Branch string `json:"branch" cborgen:"branch"` 21 21 + // did: DID of the fork owner 22 22 + Did string `json:"did" cborgen:"did"` 23 23 + // name: Name of the forked repository 24 24 + Name string `json:"name" cborgen:"name"` 25 25 + // source: AT-URI of the source repository 26 26 + Source string `json:"source" cborgen:"source"` 27 27 + } 28 28 + 29 29 + // RepoForkSync calls the XRPC method "sh.tangled.repo.forkSync". 30 30 + func RepoForkSync(ctx context.Context, c util.LexClient, input *RepoForkSync_Input) error { 31 31 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.forkSync", nil, input, nil); err != nil { 32 32 + return err 33 33 + } 34 34 + 35 35 + return nil 36 36 + }

+55

api/tangled/repogetDefaultBranch.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.getDefaultBranch 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoGetDefaultBranchNSID = "sh.tangled.repo.getDefaultBranch" 15 15 + ) 16 16 + 17 17 + // RepoGetDefaultBranch_Output is the output of a sh.tangled.repo.getDefaultBranch call. 18 18 + type RepoGetDefaultBranch_Output struct { 19 19 + Author *RepoGetDefaultBranch_Signature `json:"author,omitempty" cborgen:"author,omitempty"` 20 20 + // hash: Latest commit hash on default branch 21 21 + Hash string `json:"hash" cborgen:"hash"` 22 22 + // message: Latest commit message 23 23 + Message *string `json:"message,omitempty" cborgen:"message,omitempty"` 24 24 + // name: Default branch name 25 25 + Name string `json:"name" cborgen:"name"` 26 26 + // shortHash: Short commit hash 27 27 + ShortHash *string `json:"shortHash,omitempty" cborgen:"shortHash,omitempty"` 28 28 + // when: Timestamp of latest commit 29 29 + When string `json:"when" cborgen:"when"` 30 30 + } 31 31 + 32 32 + // RepoGetDefaultBranch_Signature is a "signature" in the sh.tangled.repo.getDefaultBranch schema. 33 33 + type RepoGetDefaultBranch_Signature struct { 34 34 + // email: Author email 35 35 + Email string `json:"email" cborgen:"email"` 36 36 + // name: Author name 37 37 + Name string `json:"name" cborgen:"name"` 38 38 + // when: Author timestamp 39 39 + When string `json:"when" cborgen:"when"` 40 40 + } 41 41 + 42 42 + // RepoGetDefaultBranch calls the XRPC method "sh.tangled.repo.getDefaultBranch". 43 43 + // 44 44 + // repo: Repository identifier in format 'did:plc:.../repoName' 45 45 + func RepoGetDefaultBranch(ctx context.Context, c util.LexClient, repo string) (*RepoGetDefaultBranch_Output, error) { 46 46 + var out RepoGetDefaultBranch_Output 47 47 + 48 48 + params := map[string]interface{}{} 49 49 + params["repo"] = repo 50 50 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.getDefaultBranch", params, nil, &out); err != nil { 51 51 + return nil, err 52 52 + } 53 53 + 54 54 + return &out, nil 55 55 + }

+45

api/tangled/repohiddenRef.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.hiddenRef 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoHiddenRefNSID = "sh.tangled.repo.hiddenRef" 15 15 + ) 16 16 + 17 17 + // RepoHiddenRef_Input is the input argument to a sh.tangled.repo.hiddenRef call. 18 18 + type RepoHiddenRef_Input struct { 19 19 + // forkRef: Fork reference name 20 20 + ForkRef string `json:"forkRef" cborgen:"forkRef"` 21 21 + // remoteRef: Remote reference name 22 22 + RemoteRef string `json:"remoteRef" cborgen:"remoteRef"` 23 23 + // repo: AT-URI of the repository 24 24 + Repo string `json:"repo" cborgen:"repo"` 25 25 + } 26 26 + 27 27 + // RepoHiddenRef_Output is the output of a sh.tangled.repo.hiddenRef call. 28 28 + type RepoHiddenRef_Output struct { 29 29 + // error: Error message if creation failed 30 30 + Error *string `json:"error,omitempty" cborgen:"error,omitempty"` 31 31 + // ref: The created hidden ref name 32 32 + Ref *string `json:"ref,omitempty" cborgen:"ref,omitempty"` 33 33 + // success: Whether the hidden ref was created successfully 34 34 + Success bool `json:"success" cborgen:"success"` 35 35 + } 36 36 + 37 37 + // RepoHiddenRef calls the XRPC method "sh.tangled.repo.hiddenRef". 38 38 + func RepoHiddenRef(ctx context.Context, c util.LexClient, input *RepoHiddenRef_Input) (*RepoHiddenRef_Output, error) { 39 39 + var out RepoHiddenRef_Output 40 40 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.hiddenRef", nil, input, &out); err != nil { 41 41 + return nil, err 42 42 + } 43 43 + 44 44 + return &out, nil 45 45 + }

-2

api/tangled/repoissue.go

··· 20 20 LexiconTypeID string `json:"$type,const=sh.tangled.repo.issue" cborgen:"$type,const=sh.tangled.repo.issue"` 21 21 Body *string `json:"body,omitempty" cborgen:"body,omitempty"` 22 22 CreatedAt string `json:"createdAt" cborgen:"createdAt"` 23 23 - IssueId int64 `json:"issueId" cborgen:"issueId"` 24 24 - Owner string `json:"owner" cborgen:"owner"` 25 23 Repo string `json:"repo" cborgen:"repo"` 26 24 Title string `json:"title" cborgen:"title"` 27 25 }

+61

api/tangled/repolanguages.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.languages 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoLanguagesNSID = "sh.tangled.repo.languages" 15 15 + ) 16 16 + 17 17 + // RepoLanguages_Language is a "language" in the sh.tangled.repo.languages schema. 18 18 + type RepoLanguages_Language struct { 19 19 + // color: Hex color code for this language 20 20 + Color *string `json:"color,omitempty" cborgen:"color,omitempty"` 21 21 + // extensions: File extensions associated with this language 22 22 + Extensions []string `json:"extensions,omitempty" cborgen:"extensions,omitempty"` 23 23 + // fileCount: Number of files in this language 24 24 + FileCount *int64 `json:"fileCount,omitempty" cborgen:"fileCount,omitempty"` 25 25 + // name: Programming language name 26 26 + Name string `json:"name" cborgen:"name"` 27 27 + // percentage: Percentage of total codebase (0-100) 28 28 + Percentage int64 `json:"percentage" cborgen:"percentage"` 29 29 + // size: Total size of files in this language (bytes) 30 30 + Size int64 `json:"size" cborgen:"size"` 31 31 + } 32 32 + 33 33 + // RepoLanguages_Output is the output of a sh.tangled.repo.languages call. 34 34 + type RepoLanguages_Output struct { 35 35 + Languages []*RepoLanguages_Language `json:"languages" cborgen:"languages"` 36 36 + // ref: The git reference used 37 37 + Ref string `json:"ref" cborgen:"ref"` 38 38 + // totalFiles: Total number of files analyzed 39 39 + TotalFiles *int64 `json:"totalFiles,omitempty" cborgen:"totalFiles,omitempty"` 40 40 + // totalSize: Total size of all analyzed files in bytes 41 41 + TotalSize *int64 `json:"totalSize,omitempty" cborgen:"totalSize,omitempty"` 42 42 + } 43 43 + 44 44 + // RepoLanguages calls the XRPC method "sh.tangled.repo.languages". 45 45 + // 46 46 + // ref: Git reference (branch, tag, or commit SHA) 47 47 + // repo: Repository identifier in format 'did:plc:.../repoName' 48 48 + func RepoLanguages(ctx context.Context, c util.LexClient, ref string, repo string) (*RepoLanguages_Output, error) { 49 49 + var out RepoLanguages_Output 50 50 + 51 51 + params := map[string]interface{}{} 52 52 + if ref != "" { 53 53 + params["ref"] = ref 54 54 + } 55 55 + params["repo"] = repo 56 56 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.languages", params, nil, &out); err != nil { 57 57 + return nil, err 58 58 + } 59 59 + 60 60 + return &out, nil 61 61 + }

+45

api/tangled/repolog.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.log 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoLogNSID = "sh.tangled.repo.log" 16 16 + ) 17 17 + 18 18 + // RepoLog calls the XRPC method "sh.tangled.repo.log". 19 19 + // 20 20 + // cursor: Pagination cursor (commit SHA) 21 21 + // limit: Maximum number of commits to return 22 22 + // path: Path to filter commits by 23 23 + // ref: Git reference (branch, tag, or commit SHA) 24 24 + // repo: Repository identifier in format 'did:plc:.../repoName' 25 25 + func RepoLog(ctx context.Context, c util.LexClient, cursor string, limit int64, path string, ref string, repo string) ([]byte, error) { 26 26 + buf := new(bytes.Buffer) 27 27 + 28 28 + params := map[string]interface{}{} 29 29 + if cursor != "" { 30 30 + params["cursor"] = cursor 31 31 + } 32 32 + if limit != 0 { 33 33 + params["limit"] = limit 34 34 + } 35 35 + if path != "" { 36 36 + params["path"] = path 37 37 + } 38 38 + params["ref"] = ref 39 39 + params["repo"] = repo 40 40 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.log", params, nil, buf); err != nil { 41 41 + return nil, err 42 42 + } 43 43 + 44 44 + return buf.Bytes(), nil 45 45 + }

+44

api/tangled/repomerge.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.merge 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoMergeNSID = "sh.tangled.repo.merge" 15 15 + ) 16 16 + 17 17 + // RepoMerge_Input is the input argument to a sh.tangled.repo.merge call. 18 18 + type RepoMerge_Input struct { 19 19 + // authorEmail: Author email for the merge commit 20 20 + AuthorEmail *string `json:"authorEmail,omitempty" cborgen:"authorEmail,omitempty"` 21 21 + // authorName: Author name for the merge commit 22 22 + AuthorName *string `json:"authorName,omitempty" cborgen:"authorName,omitempty"` 23 23 + // branch: Target branch to merge into 24 24 + Branch string `json:"branch" cborgen:"branch"` 25 25 + // commitBody: Additional commit message body 26 26 + CommitBody *string `json:"commitBody,omitempty" cborgen:"commitBody,omitempty"` 27 27 + // commitMessage: Merge commit message 28 28 + CommitMessage *string `json:"commitMessage,omitempty" cborgen:"commitMessage,omitempty"` 29 29 + // did: DID of the repository owner 30 30 + Did string `json:"did" cborgen:"did"` 31 31 + // name: Name of the repository 32 32 + Name string `json:"name" cborgen:"name"` 33 33 + // patch: Patch content to merge 34 34 + Patch string `json:"patch" cborgen:"patch"` 35 35 + } 36 36 + 37 37 + // RepoMerge calls the XRPC method "sh.tangled.repo.merge". 38 38 + func RepoMerge(ctx context.Context, c util.LexClient, input *RepoMerge_Input) error { 39 39 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.merge", nil, input, nil); err != nil { 40 40 + return err 41 41 + } 42 42 + 43 43 + return nil 44 44 + }

+57

api/tangled/repomergeCheck.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.mergeCheck 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoMergeCheckNSID = "sh.tangled.repo.mergeCheck" 15 15 + ) 16 16 + 17 17 + // RepoMergeCheck_ConflictInfo is a "conflictInfo" in the sh.tangled.repo.mergeCheck schema. 18 18 + type RepoMergeCheck_ConflictInfo struct { 19 19 + // filename: Name of the conflicted file 20 20 + Filename string `json:"filename" cborgen:"filename"` 21 21 + // reason: Reason for the conflict 22 22 + Reason string `json:"reason" cborgen:"reason"` 23 23 + } 24 24 + 25 25 + // RepoMergeCheck_Input is the input argument to a sh.tangled.repo.mergeCheck call. 26 26 + type RepoMergeCheck_Input struct { 27 27 + // branch: Target branch to merge into 28 28 + Branch string `json:"branch" cborgen:"branch"` 29 29 + // did: DID of the repository owner 30 30 + Did string `json:"did" cborgen:"did"` 31 31 + // name: Name of the repository 32 32 + Name string `json:"name" cborgen:"name"` 33 33 + // patch: Patch or pull request to check for merge conflicts 34 34 + Patch string `json:"patch" cborgen:"patch"` 35 35 + } 36 36 + 37 37 + // RepoMergeCheck_Output is the output of a sh.tangled.repo.mergeCheck call. 38 38 + type RepoMergeCheck_Output struct { 39 39 + // conflicts: List of files with merge conflicts 40 40 + Conflicts []*RepoMergeCheck_ConflictInfo `json:"conflicts,omitempty" cborgen:"conflicts,omitempty"` 41 41 + // error: Error message if check failed 42 42 + Error *string `json:"error,omitempty" cborgen:"error,omitempty"` 43 43 + // is_conflicted: Whether the merge has conflicts 44 44 + Is_conflicted bool `json:"is_conflicted" cborgen:"is_conflicted"` 45 45 + // message: Additional message about the merge check 46 46 + Message *string `json:"message,omitempty" cborgen:"message,omitempty"` 47 47 + } 48 48 + 49 49 + // RepoMergeCheck calls the XRPC method "sh.tangled.repo.mergeCheck". 50 50 + func RepoMergeCheck(ctx context.Context, c util.LexClient, input *RepoMergeCheck_Input) (*RepoMergeCheck_Output, error) { 51 51 + var out RepoMergeCheck_Output 52 52 + if err := c.LexDo(ctx, util.Procedure, "application/json", "sh.tangled.repo.mergeCheck", nil, input, &out); err != nil { 53 53 + return nil, err 54 54 + } 55 55 + 56 56 + return &out, nil 57 57 + }

+7 -3

api/tangled/repopull.go

··· 21 21 Body *string `json:"body,omitempty" cborgen:"body,omitempty"` 22 22 CreatedAt string `json:"createdAt" cborgen:"createdAt"` 23 23 Patch string `json:"patch" cborgen:"patch"` 24 24 - PullId int64 `json:"pullId" cborgen:"pullId"` 25 24 Source *RepoPull_Source `json:"source,omitempty" cborgen:"source,omitempty"` 26 26 - TargetBranch string `json:"targetBranch" cborgen:"targetBranch"` 27 27 - TargetRepo string `json:"targetRepo" cborgen:"targetRepo"` 25 25 + Target *RepoPull_Target `json:"target" cborgen:"target"` 28 26 Title string `json:"title" cborgen:"title"` 29 27 } 30 28 ··· 34 32 Repo *string `json:"repo,omitempty" cborgen:"repo,omitempty"` 35 33 Sha string `json:"sha" cborgen:"sha"` 36 34 } 35 35 + 36 36 + // RepoPull_Target is a "target" in the sh.tangled.repo.pull schema. 37 37 + type RepoPull_Target struct { 38 38 + Branch string `json:"branch" cborgen:"branch"` 39 39 + Repo string `json:"repo" cborgen:"repo"` 40 40 + }

+39

api/tangled/repotags.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.tags 6 6 + 7 7 + import ( 8 8 + "bytes" 9 9 + "context" 10 10 + 11 11 + "github.com/bluesky-social/indigo/lex/util" 12 12 + ) 13 13 + 14 14 + const ( 15 15 + RepoTagsNSID = "sh.tangled.repo.tags" 16 16 + ) 17 17 + 18 18 + // RepoTags calls the XRPC method "sh.tangled.repo.tags". 19 19 + // 20 20 + // cursor: Pagination cursor 21 21 + // limit: Maximum number of tags to return 22 22 + // repo: Repository identifier in format 'did:plc:.../repoName' 23 23 + func RepoTags(ctx context.Context, c util.LexClient, cursor string, limit int64, repo string) ([]byte, error) { 24 24 + buf := new(bytes.Buffer) 25 25 + 26 26 + params := map[string]interface{}{} 27 27 + if cursor != "" { 28 28 + params["cursor"] = cursor 29 29 + } 30 30 + if limit != 0 { 31 31 + params["limit"] = limit 32 32 + } 33 33 + params["repo"] = repo 34 34 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.tags", params, nil, buf); err != nil { 35 35 + return nil, err 36 36 + } 37 37 + 38 38 + return buf.Bytes(), nil 39 39 + }

+72

api/tangled/repotree.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.repo.tree 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + RepoTreeNSID = "sh.tangled.repo.tree" 15 15 + ) 16 16 + 17 17 + // RepoTree_LastCommit is a "lastCommit" in the sh.tangled.repo.tree schema. 18 18 + type RepoTree_LastCommit struct { 19 19 + // hash: Commit hash 20 20 + Hash string `json:"hash" cborgen:"hash"` 21 21 + // message: Commit message 22 22 + Message string `json:"message" cborgen:"message"` 23 23 + // when: Commit timestamp 24 24 + When string `json:"when" cborgen:"when"` 25 25 + } 26 26 + 27 27 + // RepoTree_Output is the output of a sh.tangled.repo.tree call. 28 28 + type RepoTree_Output struct { 29 29 + // dotdot: Parent directory path 30 30 + Dotdot *string `json:"dotdot,omitempty" cborgen:"dotdot,omitempty"` 31 31 + Files []*RepoTree_TreeEntry `json:"files" cborgen:"files"` 32 32 + // parent: The parent path in the tree 33 33 + Parent *string `json:"parent,omitempty" cborgen:"parent,omitempty"` 34 34 + // ref: The git reference used 35 35 + Ref string `json:"ref" cborgen:"ref"` 36 36 + } 37 37 + 38 38 + // RepoTree_TreeEntry is a "treeEntry" in the sh.tangled.repo.tree schema. 39 39 + type RepoTree_TreeEntry struct { 40 40 + // is_file: Whether this entry is a file 41 41 + Is_file bool `json:"is_file" cborgen:"is_file"` 42 42 + // is_subtree: Whether this entry is a directory/subtree 43 43 + Is_subtree bool `json:"is_subtree" cborgen:"is_subtree"` 44 44 + Last_commit *RepoTree_LastCommit `json:"last_commit,omitempty" cborgen:"last_commit,omitempty"` 45 45 + // mode: File mode 46 46 + Mode string `json:"mode" cborgen:"mode"` 47 47 + // name: Relative file or directory name 48 48 + Name string `json:"name" cborgen:"name"` 49 49 + // size: File size in bytes 50 50 + Size int64 `json:"size" cborgen:"size"` 51 51 + } 52 52 + 53 53 + // RepoTree calls the XRPC method "sh.tangled.repo.tree". 54 54 + // 55 55 + // path: Path within the repository tree 56 56 + // ref: Git reference (branch, tag, or commit SHA) 57 57 + // repo: Repository identifier in format 'did:plc:.../repoName' 58 58 + func RepoTree(ctx context.Context, c util.LexClient, path string, ref string, repo string) (*RepoTree_Output, error) { 59 59 + var out RepoTree_Output 60 60 + 61 61 + params := map[string]interface{}{} 62 62 + if path != "" { 63 63 + params["path"] = path 64 64 + } 65 65 + params["ref"] = ref 66 66 + params["repo"] = repo 67 67 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.repo.tree", params, nil, &out); err != nil { 68 68 + return nil, err 69 69 + } 70 70 + 71 71 + return &out, nil 72 72 + }

+22

api/tangled/tangledknot.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.knot 6 6 + 7 7 + import ( 8 8 + "github.com/bluesky-social/indigo/lex/util" 9 9 + ) 10 10 + 11 11 + const ( 12 12 + KnotNSID = "sh.tangled.knot" 13 13 + ) 14 14 + 15 15 + func init() { 16 16 + util.RegisterType("sh.tangled.knot", &Knot{}) 17 17 + } // 18 18 + // RECORDTYPE: Knot 19 19 + type Knot struct { 20 20 + LexiconTypeID string `json:"$type,const=sh.tangled.knot" cborgen:"$type,const=sh.tangled.knot"` 21 21 + CreatedAt string `json:"createdAt" cborgen:"createdAt"` 22 22 + }

+30

api/tangled/tangledowner.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.owner 6 6 + 7 7 + import ( 8 8 + "context" 9 9 + 10 10 + "github.com/bluesky-social/indigo/lex/util" 11 11 + ) 12 12 + 13 13 + const ( 14 14 + OwnerNSID = "sh.tangled.owner" 15 15 + ) 16 16 + 17 17 + // Owner_Output is the output of a sh.tangled.owner call. 18 18 + type Owner_Output struct { 19 19 + Owner string `json:"owner" cborgen:"owner"` 20 20 + } 21 21 + 22 22 + // Owner calls the XRPC method "sh.tangled.owner". 23 23 + func Owner(ctx context.Context, c util.LexClient) (*Owner_Output, error) { 24 24 + var out Owner_Output 25 25 + if err := c.LexDo(ctx, util.Query, "", "sh.tangled.owner", nil, nil, &out); err != nil { 26 26 + return nil, err 27 27 + } 28 28 + 29 29 + return &out, nil 30 30 + }

+4 -18

api/tangled/tangledpipeline.go

··· 29 29 Submodules bool `json:"submodules" cborgen:"submodules"` 30 30 } 31 31 32 32 - // Pipeline_Dependency is a "dependency" in the sh.tangled.pipeline schema. 33 33 - type Pipeline_Dependency struct { 34 34 - Packages []string `json:"packages" cborgen:"packages"` 35 35 - Registry string `json:"registry" cborgen:"registry"` 36 36 - } 37 37 - 38 32 // Pipeline_ManualTriggerData is a "manualTriggerData" in the sh.tangled.pipeline schema. 39 33 type Pipeline_ManualTriggerData struct { 40 34 Inputs []*Pipeline_Pair `json:"inputs,omitempty" cborgen:"inputs,omitempty"` ··· 61 55 Ref string `json:"ref" cborgen:"ref"` 62 56 } 63 57 64 64 - // Pipeline_Step is a "step" in the sh.tangled.pipeline schema. 65 65 - type Pipeline_Step struct { 66 66 - Command string `json:"command" cborgen:"command"` 67 67 - Environment []*Pipeline_Pair `json:"environment,omitempty" cborgen:"environment,omitempty"` 68 68 - Name string `json:"name" cborgen:"name"` 69 69 - } 70 70 - 71 58 // Pipeline_TriggerMetadata is a "triggerMetadata" in the sh.tangled.pipeline schema. 72 59 type Pipeline_TriggerMetadata struct { 73 60 Kind string `json:"kind" cborgen:"kind"` ··· 87 74 88 75 // Pipeline_Workflow is a "workflow" in the sh.tangled.pipeline schema. 89 76 type Pipeline_Workflow struct { 90 90 - Clone *Pipeline_CloneOpts `json:"clone" cborgen:"clone"` 91 91 - Dependencies []*Pipeline_Dependency `json:"dependencies" cborgen:"dependencies"` 92 92 - Environment []*Pipeline_Pair `json:"environment" cborgen:"environment"` 93 93 - Name string `json:"name" cborgen:"name"` 94 94 - Steps []*Pipeline_Step `json:"steps" cborgen:"steps"` 77 77 + Clone *Pipeline_CloneOpts `json:"clone" cborgen:"clone"` 78 78 + Engine string `json:"engine" cborgen:"engine"` 79 79 + Name string `json:"name" cborgen:"name"` 80 80 + Raw string `json:"raw" cborgen:"raw"` 95 81 }

+25

api/tangled/tangledstring.go

··· 1 1 + // Code generated by cmd/lexgen (see Makefile's lexgen); DO NOT EDIT. 2 2 + 3 3 + package tangled 4 4 + 5 5 + // schema: sh.tangled.string 6 6 + 7 7 + import ( 8 8 + "github.com/bluesky-social/indigo/lex/util" 9 9 + ) 10 10 + 11 11 + const ( 12 12 + StringNSID = "sh.tangled.string" 13 13 + ) 14 14 + 15 15 + func init() { 16 16 + util.RegisterType("sh.tangled.string", &String{}) 17 17 + } // 18 18 + // RECORDTYPE: String 19 19 + type String struct { 20 20 + LexiconTypeID string `json:"$type,const=sh.tangled.string" cborgen:"$type,const=sh.tangled.string"` 21 21 + Contents string `json:"contents" cborgen:"contents"` 22 22 + CreatedAt string `json:"createdAt" cborgen:"createdAt"` 23 23 + Description string `json:"description" cborgen:"description"` 24 24 + Filename string `json:"filename" cborgen:"filename"` 25 25 + }

+1

appview/cache/session/store.go

··· 31 31 PkceVerifier string 32 32 DpopAuthserverNonce string 33 33 DpopPrivateJwk string 34 34 + ReturnUrl string 34 35 } 35 36 36 37 type SessionStore struct {

+24 -5

appview/config/config.go

··· 10 10 ) 11 11 12 12 type CoreConfig struct { 13 13 - CookieSecret string `env:"COOKIE_SECRET, default=00000000000000000000000000000000"` 14 14 - DbPath string `env:"DB_PATH, default=appview.db"` 15 15 - ListenAddr string `env:"LISTEN_ADDR, default=0.0.0.0:3000"` 16 16 - AppviewHost string `env:"APPVIEW_HOST, default=https://tangled.sh"` 17 17 - Dev bool `env:"DEV, default=false"` 13 13 + CookieSecret string `env:"COOKIE_SECRET, default=00000000000000000000000000000000"` 14 14 + DbPath string `env:"DB_PATH, default=appview.db"` 15 15 + ListenAddr string `env:"LISTEN_ADDR, default=0.0.0.0:3000"` 16 16 + AppviewHost string `env:"APPVIEW_HOST, default=https://tangled.sh"` 17 17 + Dev bool `env:"DEV, default=false"` 18 18 + DisallowedNicknamesFile string `env:"DISALLOWED_NICKNAMES_FILE"` 19 19 + 20 20 + // temporarily, to add users to default knot and spindle 21 21 + AppPassword string `env:"APP_PASSWORD"` 22 22 + 23 23 + // uhhhh this is because knot1 is under icy's did 24 24 + TmpAltAppPassword string `env:"ALT_APP_PASSWORD"` 18 25 } 19 26 20 27 type OAuthConfig struct { ··· 59 66 DB int `env:"DB, default=0"` 60 67 } 61 68 69 69 + type PdsConfig struct { 70 70 + Host string `env:"HOST, default=https://tngl.sh"` 71 71 + AdminSecret string `env:"ADMIN_SECRET"` 72 72 + } 73 73 + 74 74 + type Cloudflare struct { 75 75 + ApiToken string `env:"API_TOKEN"` 76 76 + ZoneId string `env:"ZONE_ID"` 77 77 + } 78 78 + 62 79 func (cfg RedisConfig) ToURL() string { 63 80 u := &url.URL{ 64 81 Scheme: "redis", ··· 84 101 Avatar AvatarConfig `env:",prefix=TANGLED_AVATAR_"` 85 102 OAuth OAuthConfig `env:",prefix=TANGLED_OAUTH_"` 86 103 Redis RedisConfig `env:",prefix=TANGLED_REDIS_"` 104 104 + Pds PdsConfig `env:",prefix=TANGLED_PDS_"` 105 105 + Cloudflare Cloudflare `env:",prefix=TANGLED_CLOUDFLARE_"` 87 106 } 88 107 89 108 func LoadConfig(ctx context.Context) (*Config, error) {

+76

appview/db/collaborators.go

··· 1 1 + package db 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "strings" 6 6 + "time" 7 7 + 8 8 + "github.com/bluesky-social/indigo/atproto/syntax" 9 9 + ) 10 10 + 11 11 + type Collaborator struct { 12 12 + // identifiers for the record 13 13 + Id int64 14 14 + Did syntax.DID 15 15 + Rkey string 16 16 + 17 17 + // content 18 18 + SubjectDid syntax.DID 19 19 + RepoAt syntax.ATURI 20 20 + 21 21 + // meta 22 22 + Created time.Time 23 23 + } 24 24 + 25 25 + func AddCollaborator(e Execer, c Collaborator) error { 26 26 + _, err := e.Exec( 27 27 + `insert into collaborators (did, rkey, subject_did, repo_at) values (?, ?, ?, ?);`, 28 28 + c.Did, c.Rkey, c.SubjectDid, c.RepoAt, 29 29 + ) 30 30 + return err 31 31 + } 32 32 + 33 33 + func DeleteCollaborator(e Execer, filters ...filter) error { 34 34 + var conditions []string 35 35 + var args []any 36 36 + for _, filter := range filters { 37 37 + conditions = append(conditions, filter.Condition()) 38 38 + args = append(args, filter.Arg()...) 39 39 + } 40 40 + 41 41 + whereClause := "" 42 42 + if conditions != nil { 43 43 + whereClause = " where " + strings.Join(conditions, " and ") 44 44 + } 45 45 + 46 46 + query := fmt.Sprintf(`delete from collaborators %s`, whereClause) 47 47 + 48 48 + _, err := e.Exec(query, args...) 49 49 + return err 50 50 + } 51 51 + 52 52 + func CollaboratingIn(e Execer, collaborator string) ([]Repo, error) { 53 53 + rows, err := e.Query(`select repo_at from collaborators where subject_did = ?`, collaborator) 54 54 + if err != nil { 55 55 + return nil, err 56 56 + } 57 57 + defer rows.Close() 58 58 + 59 59 + var repoAts []string 60 60 + for rows.Next() { 61 61 + var aturi string 62 62 + err := rows.Scan(&aturi) 63 63 + if err != nil { 64 64 + return nil, err 65 65 + } 66 66 + repoAts = append(repoAts, aturi) 67 67 + } 68 68 + if err := rows.Err(); err != nil { 69 69 + return nil, err 70 70 + } 71 71 + if repoAts == nil { 72 72 + return nil, nil 73 73 + } 74 74 + 75 75 + return GetRepos(e, 0, FilterIn("at_uri", repoAts)) 76 76 + }

+318 -24

appview/db/db.go

··· 27 27 } 28 28 29 29 func Make(dbPath string) (*DB, error) { 30 30 - db, err := sql.Open("sqlite3", dbPath) 30 30 + // https://github.com/mattn/go-sqlite3#connection-string 31 31 + opts := []string{ 32 32 + "_foreign_keys=1", 33 33 + "_journal_mode=WAL", 34 34 + "_synchronous=NORMAL", 35 35 + "_auto_vacuum=incremental", 36 36 + } 37 37 + 38 38 + db, err := sql.Open("sqlite3", dbPath+"?"+strings.Join(opts, "&")) 31 39 if err != nil { 32 40 return nil, err 33 41 } 34 34 - _, err = db.Exec(` 35 35 - pragma journal_mode = WAL; 36 36 - pragma synchronous = normal; 37 37 - pragma foreign_keys = on; 38 38 - pragma temp_store = memory; 39 39 - pragma mmap_size = 30000000000; 40 40 - pragma page_size = 32768; 41 41 - pragma auto_vacuum = incremental; 42 42 - pragma busy_timeout = 5000; 42 42 + 43 43 + ctx := context.Background() 43 44 45 45 + conn, err := db.Conn(ctx) 46 46 + if err != nil { 47 47 + return nil, err 48 48 + } 49 49 + defer conn.Close() 50 50 + 51 51 + _, err = conn.ExecContext(ctx, ` 44 52 create table if not exists registrations ( 45 53 id integer primary key autoincrement, 46 54 domain text not null unique, ··· 436 444 unique(repo_at, ref, language) 437 445 ); 438 446 447 447 + create table if not exists signups_inflight ( 448 448 + id integer primary key autoincrement, 449 449 + email text not null unique, 450 450 + invite_code text not null, 451 451 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')) 452 452 + ); 453 453 + 454 454 + create table if not exists strings ( 455 455 + -- identifiers 456 456 + did text not null, 457 457 + rkey text not null, 458 458 + 459 459 + -- content 460 460 + filename text not null, 461 461 + description text, 462 462 + content text not null, 463 463 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 464 464 + edited text, 465 465 + 466 466 + primary key (did, rkey) 467 467 + ); 468 468 + 439 469 create table if not exists migrations ( 440 470 id integer primary key autoincrement, 441 471 name text unique 442 472 ); 473 473 + 474 474 + -- indexes for better star query performance 475 475 + create index if not exists idx_stars_created on stars(created); 476 476 + create index if not exists idx_stars_repo_at_created on stars(repo_at, created); 443 477 `) 444 478 if err != nil { 445 479 return nil, err 446 480 } 447 481 448 482 // run migrations 449 449 - runMigration(db, "add-description-to-repos", func(tx *sql.Tx) error { 483 483 + runMigration(conn, "add-description-to-repos", func(tx *sql.Tx) error { 450 484 tx.Exec(` 451 485 alter table repos add column description text check (length(description) <= 200); 452 486 `) 453 487 return nil 454 488 }) 455 489 456 456 - runMigration(db, "add-rkey-to-pubkeys", func(tx *sql.Tx) error { 490 490 + runMigration(conn, "add-rkey-to-pubkeys", func(tx *sql.Tx) error { 457 491 // add unconstrained column 458 492 _, err := tx.Exec(` 459 493 alter table public_keys ··· 476 510 return nil 477 511 }) 478 512 479 479 - runMigration(db, "add-rkey-to-comments", func(tx *sql.Tx) error { 513 513 + runMigration(conn, "add-rkey-to-comments", func(tx *sql.Tx) error { 480 514 _, err := tx.Exec(` 481 515 alter table comments drop column comment_at; 482 516 alter table comments add column rkey text; ··· 484 518 return err 485 519 }) 486 520 487 487 - runMigration(db, "add-deleted-and-edited-to-issue-comments", func(tx *sql.Tx) error { 521 521 + runMigration(conn, "add-deleted-and-edited-to-issue-comments", func(tx *sql.Tx) error { 488 522 _, err := tx.Exec(` 489 523 alter table comments add column deleted text; -- timestamp 490 524 alter table comments add column edited text; -- timestamp ··· 492 526 return err 493 527 }) 494 528 495 495 - runMigration(db, "add-source-info-to-pulls-and-submissions", func(tx *sql.Tx) error { 529 529 + runMigration(conn, "add-source-info-to-pulls-and-submissions", func(tx *sql.Tx) error { 496 530 _, err := tx.Exec(` 497 531 alter table pulls add column source_branch text; 498 532 alter table pulls add column source_repo_at text; ··· 501 535 return err 502 536 }) 503 537 504 504 - runMigration(db, "add-source-to-repos", func(tx *sql.Tx) error { 538 538 + runMigration(conn, "add-source-to-repos", func(tx *sql.Tx) error { 505 539 _, err := tx.Exec(` 506 540 alter table repos add column source text; 507 541 `) ··· 512 546 // NOTE: this cannot be done in a transaction, so it is run outside [0] 513 547 // 514 548 // [0]: https://sqlite.org/pragma.html#pragma_foreign_keys 515 515 - db.Exec("pragma foreign_keys = off;") 516 516 - runMigration(db, "recreate-pulls-column-for-stacking-support", func(tx *sql.Tx) error { 549 549 + conn.ExecContext(ctx, "pragma foreign_keys = off;") 550 550 + runMigration(conn, "recreate-pulls-column-for-stacking-support", func(tx *sql.Tx) error { 517 551 _, err := tx.Exec(` 518 552 create table pulls_new ( 519 553 -- identifiers ··· 568 602 `) 569 603 return err 570 604 }) 571 571 - db.Exec("pragma foreign_keys = on;") 605 605 + conn.ExecContext(ctx, "pragma foreign_keys = on;") 572 606 573 607 // run migrations 574 574 - runMigration(db, "add-spindle-to-repos", func(tx *sql.Tx) error { 608 608 + runMigration(conn, "add-spindle-to-repos", func(tx *sql.Tx) error { 575 609 tx.Exec(` 576 610 alter table repos add column spindle text; 577 611 `) 578 612 return nil 579 613 }) 580 614 615 615 + // drop all knot secrets, add unique constraint to knots 616 616 + // 617 617 + // knots will henceforth use service auth for signed requests 618 618 + runMigration(conn, "no-more-secrets", func(tx *sql.Tx) error { 619 619 + _, err := tx.Exec(` 620 620 + create table registrations_new ( 621 621 + id integer primary key autoincrement, 622 622 + domain text not null, 623 623 + did text not null, 624 624 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 625 625 + registered text, 626 626 + read_only integer not null default 0, 627 627 + unique(domain, did) 628 628 + ); 629 629 + 630 630 + insert into registrations_new (id, domain, did, created, registered, read_only) 631 631 + select id, domain, did, created, registered, 1 from registrations 632 632 + where registered is not null; 633 633 + 634 634 + drop table registrations; 635 635 + alter table registrations_new rename to registrations; 636 636 + `) 637 637 + return err 638 638 + }) 639 639 + 640 640 + // recreate and add rkey + created columns with default constraint 641 641 + runMigration(conn, "rework-collaborators-table", func(tx *sql.Tx) error { 642 642 + // create new table 643 643 + // - repo_at instead of repo integer 644 644 + // - rkey field 645 645 + // - created field 646 646 + _, err := tx.Exec(` 647 647 + create table collaborators_new ( 648 648 + -- identifiers for the record 649 649 + id integer primary key autoincrement, 650 650 + did text not null, 651 651 + rkey text, 652 652 + 653 653 + -- content 654 654 + subject_did text not null, 655 655 + repo_at text not null, 656 656 + 657 657 + -- meta 658 658 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 659 659 + 660 660 + -- constraints 661 661 + foreign key (repo_at) references repos(at_uri) on delete cascade 662 662 + ) 663 663 + `) 664 664 + if err != nil { 665 665 + return err 666 666 + } 667 667 + 668 668 + // copy data 669 669 + _, err = tx.Exec(` 670 670 + insert into collaborators_new (id, did, rkey, subject_did, repo_at) 671 671 + select 672 672 + c.id, 673 673 + r.did, 674 674 + '', 675 675 + c.did, 676 676 + r.at_uri 677 677 + from collaborators c 678 678 + join repos r on c.repo = r.id 679 679 + `) 680 680 + if err != nil { 681 681 + return err 682 682 + } 683 683 + 684 684 + // drop old table 685 685 + _, err = tx.Exec(`drop table collaborators`) 686 686 + if err != nil { 687 687 + return err 688 688 + } 689 689 + 690 690 + // rename new table 691 691 + _, err = tx.Exec(`alter table collaborators_new rename to collaborators`) 692 692 + return err 693 693 + }) 694 694 + 695 695 + runMigration(conn, "add-rkey-to-issues", func(tx *sql.Tx) error { 696 696 + _, err := tx.Exec(` 697 697 + alter table issues add column rkey text not null default ''; 698 698 + 699 699 + -- get last url section from issue_at and save to rkey column 700 700 + update issues 701 701 + set rkey = replace(issue_at, rtrim(issue_at, replace(issue_at, '/', '')), ''); 702 702 + `) 703 703 + return err 704 704 + }) 705 705 + 706 706 + // repurpose the read-only column to "needs-upgrade" 707 707 + runMigration(conn, "rename-registrations-read-only-to-needs-upgrade", func(tx *sql.Tx) error { 708 708 + _, err := tx.Exec(` 709 709 + alter table registrations rename column read_only to needs_upgrade; 710 710 + `) 711 711 + return err 712 712 + }) 713 713 + 714 714 + // require all knots to upgrade after the release of total xrpc 715 715 + runMigration(conn, "migrate-knots-to-total-xrpc", func(tx *sql.Tx) error { 716 716 + _, err := tx.Exec(` 717 717 + update registrations set needs_upgrade = 1; 718 718 + `) 719 719 + return err 720 720 + }) 721 721 + 722 722 + // require all knots to upgrade after the release of total xrpc 723 723 + runMigration(conn, "migrate-spindles-to-xrpc-owner", func(tx *sql.Tx) error { 724 724 + _, err := tx.Exec(` 725 725 + alter table spindles add column needs_upgrade integer not null default 0; 726 726 + `) 727 727 + if err != nil { 728 728 + return err 729 729 + } 730 730 + 731 731 + _, err = tx.Exec(` 732 732 + update spindles set needs_upgrade = 1; 733 733 + `) 734 734 + return err 735 735 + }) 736 736 + 737 737 + // remove issue_at from issues and replace with generated column 738 738 + // 739 739 + // this requires a full table recreation because stored columns 740 740 + // cannot be added via alter 741 741 + // 742 742 + // couple other changes: 743 743 + // - columns renamed to be more consistent 744 744 + // - adds edited and deleted fields 745 745 + // 746 746 + // disable foreign-keys for the next migration 747 747 + conn.ExecContext(ctx, "pragma foreign_keys = off;") 748 748 + runMigration(conn, "remove-issue-at-from-issues", func(tx *sql.Tx) error { 749 749 + _, err := tx.Exec(` 750 750 + create table if not exists issues_new ( 751 751 + -- identifiers 752 752 + id integer primary key autoincrement, 753 753 + did text not null, 754 754 + rkey text not null, 755 755 + at_uri text generated always as ('at://' || did || '/' || 'sh.tangled.repo.issue' || '/' || rkey) stored, 756 756 + 757 757 + -- at identifiers 758 758 + repo_at text not null, 759 759 + 760 760 + -- content 761 761 + issue_id integer not null, 762 762 + title text not null, 763 763 + body text not null, 764 764 + open integer not null default 1, 765 765 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 766 766 + edited text, -- timestamp 767 767 + deleted text, -- timestamp 768 768 + 769 769 + unique(did, rkey), 770 770 + unique(repo_at, issue_id), 771 771 + unique(at_uri), 772 772 + foreign key (repo_at) references repos(at_uri) on delete cascade 773 773 + ); 774 774 + `) 775 775 + if err != nil { 776 776 + return err 777 777 + } 778 778 + 779 779 + // transfer data 780 780 + _, err = tx.Exec(` 781 781 + insert into issues_new (id, did, rkey, repo_at, issue_id, title, body, open, created) 782 782 + select 783 783 + i.id, 784 784 + i.owner_did, 785 785 + i.rkey, 786 786 + i.repo_at, 787 787 + i.issue_id, 788 788 + i.title, 789 789 + i.body, 790 790 + i.open, 791 791 + i.created 792 792 + from issues i; 793 793 + `) 794 794 + if err != nil { 795 795 + return err 796 796 + } 797 797 + 798 798 + // drop old table 799 799 + _, err = tx.Exec(`drop table issues`) 800 800 + if err != nil { 801 801 + return err 802 802 + } 803 803 + 804 804 + // rename new table 805 805 + _, err = tx.Exec(`alter table issues_new rename to issues`) 806 806 + return err 807 807 + }) 808 808 + conn.ExecContext(ctx, "pragma foreign_keys = on;") 809 809 + 810 810 + // - renames the comments table to 'issue_comments' 811 811 + // - rework issue comments to update constraints: 812 812 + // * unique(did, rkey) 813 813 + // * remove comment-id and just use the global ID 814 814 + // * foreign key (repo_at, issue_id) 815 815 + // - new columns 816 816 + // * column "reply_to" which can be any other comment 817 817 + // * column "at-uri" which is a generated column 818 818 + runMigration(conn, "rework-issue-comments", func(tx *sql.Tx) error { 819 819 + _, err := tx.Exec(` 820 820 + create table if not exists issue_comments ( 821 821 + -- identifiers 822 822 + id integer primary key autoincrement, 823 823 + did text not null, 824 824 + rkey text, 825 825 + at_uri text generated always as ('at://' || did || '/' || 'sh.tangled.repo.issue.comment' || '/' || rkey) stored, 826 826 + 827 827 + -- at identifiers 828 828 + issue_at text not null, 829 829 + reply_to text, -- at_uri of parent comment 830 830 + 831 831 + -- content 832 832 + body text not null, 833 833 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 834 834 + edited text, 835 835 + deleted text, 836 836 + 837 837 + -- constraints 838 838 + unique(did, rkey), 839 839 + unique(at_uri), 840 840 + foreign key (issue_at) references issues(at_uri) on delete cascade 841 841 + ); 842 842 + `) 843 843 + if err != nil { 844 844 + return err 845 845 + } 846 846 + 847 847 + // transfer data 848 848 + _, err = tx.Exec(` 849 849 + insert into issue_comments (id, did, rkey, issue_at, body, created, edited, deleted) 850 850 + select 851 851 + c.id, 852 852 + c.owner_did, 853 853 + c.rkey, 854 854 + i.at_uri, -- get at_uri from issues table 855 855 + c.body, 856 856 + c.created, 857 857 + c.edited, 858 858 + c.deleted 859 859 + from comments c 860 860 + join issues i on c.repo_at = i.repo_at and c.issue_id = i.issue_id; 861 861 + `) 862 862 + if err != nil { 863 863 + return err 864 864 + } 865 865 + 866 866 + // drop old table 867 867 + _, err = tx.Exec(`drop table comments`) 868 868 + return err 869 869 + }) 870 870 + 581 871 return &DB{db}, nil 582 872 } 583 873 584 874 type migrationFn = func(*sql.Tx) error 585 875 586 586 - func runMigration(d *sql.DB, name string, migrationFn migrationFn) error { 587 587 - tx, err := d.Begin() 876 876 + func runMigration(c *sql.Conn, name string, migrationFn migrationFn) error { 877 877 + tx, err := c.BeginTx(context.Background(), nil) 588 878 if err != nil { 589 879 return err 590 880 } ··· 624 914 return nil 625 915 } 626 916 917 917 + func (d *DB) Close() error { 918 918 + return d.DB.Close() 919 919 + } 920 920 + 627 921 type filter struct { 628 922 key string 629 923 arg any ··· 651 945 kind := rv.Kind() 652 946 653 947 // if we have `FilterIn(k, [1, 2, 3])`, compile it down to `k in (?, ?, ?)` 654 654 - if kind == reflect.Slice || kind == reflect.Array { 948 948 + if (kind == reflect.Slice && rv.Type().Elem().Kind() != reflect.Uint8) || kind == reflect.Array { 655 949 if rv.Len() == 0 { 656 950 // always false 657 951 return "1 = 0" ··· 671 965 func (f filter) Arg() []any { 672 966 rv := reflect.ValueOf(f.arg) 673 967 kind := rv.Kind() 674 674 - if kind == reflect.Slice || kind == reflect.Array { 968 968 + if (kind == reflect.Slice && rv.Type().Elem().Kind() != reflect.Uint8) || kind == reflect.Array { 675 969 if rv.Len() == 0 { 676 970 return nil 677 971 }

+16 -2

appview/db/email.go

··· 103 103 query := ` 104 104 select email, did 105 105 from emails 106 106 - where 107 107 - verified = ? 106 106 + where 107 107 + verified = ? 108 108 and email in (` + strings.Join(placeholders, ",") + `) 109 109 ` 110 110 ··· 153 153 ` 154 154 var count int 155 155 err := e.QueryRow(query, did, email).Scan(&count) 156 156 + if err != nil { 157 157 + return false, err 158 158 + } 159 159 + return count > 0, nil 160 160 + } 161 161 + 162 162 + func CheckEmailExistsAtAll(e Execer, email string) (bool, error) { 163 163 + query := ` 164 164 + select count(*) 165 165 + from emails 166 166 + where email = ? 167 167 + ` 168 168 + var count int 169 169 + err := e.QueryRow(query, email).Scan(&count) 156 170 if err != nil { 157 171 return false, err 158 172 }

+145 -42

appview/db/follow.go

··· 1 1 package db 2 2 3 3 import ( 4 4 + "fmt" 4 5 "log" 6 6 + "strings" 5 7 "time" 6 8 ) 7 9 ··· 53 55 return err 54 56 } 55 57 56 56 - func GetFollowerFollowing(e Execer, did string) (int, int, error) { 57 57 - followers, following := 0, 0 58 58 + type FollowStats struct { 59 59 + Followers int64 60 60 + Following int64 61 61 + } 62 62 + 63 63 + func GetFollowerFollowingCount(e Execer, did string) (FollowStats, error) { 64 64 + var followers, following int64 58 65 err := e.QueryRow( 59 59 - `SELECT 66 66 + `SELECT 60 67 COUNT(CASE WHEN subject_did = ? THEN 1 END) AS followers, 61 68 COUNT(CASE WHEN user_did = ? THEN 1 END) AS following 62 69 FROM follows;`, did, did).Scan(&followers, &following) 63 70 if err != nil { 64 64 - return 0, 0, err 71 71 + return FollowStats{}, err 65 72 } 66 66 - return followers, following, nil 73 73 + return FollowStats{ 74 74 + Followers: followers, 75 75 + Following: following, 76 76 + }, nil 67 77 } 68 78 69 69 - type FollowStatus int 79 79 + func GetFollowerFollowingCounts(e Execer, dids []string) (map[string]FollowStats, error) { 80 80 + if len(dids) == 0 { 81 81 + return nil, nil 82 82 + } 70 83 71 71 - const ( 72 72 - IsNotFollowing FollowStatus = iota 73 73 - IsFollowing 74 74 - IsSelf 75 75 - ) 84 84 + placeholders := make([]string, len(dids)) 85 85 + for i := range placeholders { 86 86 + placeholders[i] = "?" 87 87 + } 88 88 + placeholderStr := strings.Join(placeholders, ",") 76 89 77 77 - func (s FollowStatus) String() string { 78 78 - switch s { 79 79 - case IsNotFollowing: 80 80 - return "IsNotFollowing" 81 81 - case IsFollowing: 82 82 - return "IsFollowing" 83 83 - case IsSelf: 84 84 - return "IsSelf" 85 85 - default: 86 86 - return "IsNotFollowing" 90 90 + args := make([]any, len(dids)*2) 91 91 + for i, did := range dids { 92 92 + args[i] = did 93 93 + args[i+len(dids)] = did 87 94 } 88 88 - } 95 95 + 96 96 + query := fmt.Sprintf(` 97 97 + select 98 98 + coalesce(f.did, g.did) as did, 99 99 + coalesce(f.followers, 0) as followers, 100 100 + coalesce(g.following, 0) as following 101 101 + from ( 102 102 + select subject_did as did, count(*) as followers 103 103 + from follows 104 104 + where subject_did in (%s) 105 105 + group by subject_did 106 106 + ) f 107 107 + full outer join ( 108 108 + select user_did as did, count(*) as following 109 109 + from follows 110 110 + where user_did in (%s) 111 111 + group by user_did 112 112 + ) g on f.did = g.did`, 113 113 + placeholderStr, placeholderStr) 114 114 + 115 115 + result := make(map[string]FollowStats) 116 116 + 117 117 + rows, err := e.Query(query, args...) 118 118 + if err != nil { 119 119 + return nil, err 120 120 + } 121 121 + defer rows.Close() 122 122 + 123 123 + for rows.Next() { 124 124 + var did string 125 125 + var followers, following int64 126 126 + if err := rows.Scan(&did, &followers, &following); err != nil { 127 127 + return nil, err 128 128 + } 129 129 + result[did] = FollowStats{ 130 130 + Followers: followers, 131 131 + Following: following, 132 132 + } 133 133 + } 89 134 90 90 - func GetFollowStatus(e Execer, userDid, subjectDid string) FollowStatus { 91 91 - if userDid == subjectDid { 92 92 - return IsSelf 93 93 - } else if _, err := GetFollow(e, userDid, subjectDid); err != nil { 94 94 - return IsNotFollowing 95 95 - } else { 96 96 - return IsFollowing 135 135 + for _, did := range dids { 136 136 + if _, exists := result[did]; !exists { 137 137 + result[did] = FollowStats{ 138 138 + Followers: 0, 139 139 + Following: 0, 140 140 + } 141 141 + } 97 142 } 143 143 + 144 144 + return result, nil 98 145 } 99 146 100 100 - func GetAllFollows(e Execer, limit int) ([]Follow, error) { 147 147 + func GetFollows(e Execer, limit int, filters ...filter) ([]Follow, error) { 101 148 var follows []Follow 102 149 103 103 - rows, err := e.Query(` 104 104 - select user_did, subject_did, followed_at, rkey 150 150 + var conditions []string 151 151 + var args []any 152 152 + for _, filter := range filters { 153 153 + conditions = append(conditions, filter.Condition()) 154 154 + args = append(args, filter.Arg()...) 155 155 + } 156 156 + 157 157 + whereClause := "" 158 158 + if conditions != nil { 159 159 + whereClause = " where " + strings.Join(conditions, " and ") 160 160 + } 161 161 + limitClause := "" 162 162 + if limit > 0 { 163 163 + limitClause = " limit ?" 164 164 + args = append(args, limit) 165 165 + } 166 166 + 167 167 + query := fmt.Sprintf( 168 168 + `select user_did, subject_did, followed_at, rkey 105 169 from follows 170 170 + %s 106 171 order by followed_at desc 107 107 - limit ?`, limit, 108 108 - ) 172 172 + %s 173 173 + `, whereClause, limitClause) 174 174 + 175 175 + rows, err := e.Query(query, args...) 109 176 if err != nil { 110 177 return nil, err 111 178 } 112 112 - defer rows.Close() 113 113 - 114 179 for rows.Next() { 115 180 var follow Follow 116 181 var followedAt string 117 117 - if err := rows.Scan(&follow.UserDid, &follow.SubjectDid, &followedAt, &follow.Rkey); err != nil { 182 182 + err := rows.Scan( 183 183 + &follow.UserDid, 184 184 + &follow.SubjectDid, 185 185 + &followedAt, 186 186 + &follow.Rkey, 187 187 + ) 188 188 + if err != nil { 118 189 return nil, err 119 190 } 120 120 - 121 191 followedAtTime, err := time.Parse(time.RFC3339, followedAt) 122 192 if err != nil { 123 193 log.Println("unable to determine followed at time") ··· 125 195 } else { 126 196 follow.FollowedAt = followedAtTime 127 197 } 128 128 - 129 198 follows = append(follows, follow) 130 199 } 200 200 + return follows, nil 201 201 + } 202 202 + 203 203 + func GetFollowers(e Execer, did string) ([]Follow, error) { 204 204 + return GetFollows(e, 0, FilterEq("subject_did", did)) 205 205 + } 131 206 132 132 - if err := rows.Err(); err != nil { 133 133 - return nil, err 207 207 + func GetFollowing(e Execer, did string) ([]Follow, error) { 208 208 + return GetFollows(e, 0, FilterEq("user_did", did)) 209 209 + } 210 210 + 211 211 + type FollowStatus int 212 212 + 213 213 + const ( 214 214 + IsNotFollowing FollowStatus = iota 215 215 + IsFollowing 216 216 + IsSelf 217 217 + ) 218 218 + 219 219 + func (s FollowStatus) String() string { 220 220 + switch s { 221 221 + case IsNotFollowing: 222 222 + return "IsNotFollowing" 223 223 + case IsFollowing: 224 224 + return "IsFollowing" 225 225 + case IsSelf: 226 226 + return "IsSelf" 227 227 + default: 228 228 + return "IsNotFollowing" 134 229 } 230 230 + } 135 231 136 136 - return follows, nil 232 232 + func GetFollowStatus(e Execer, userDid, subjectDid string) FollowStatus { 233 233 + if userDid == subjectDid { 234 234 + return IsSelf 235 235 + } else if _, err := GetFollow(e, userDid, subjectDid); err != nil { 236 236 + return IsNotFollowing 237 237 + } else { 238 238 + return IsFollowing 239 239 + } 137 240 }

+459 -311

appview/db/issues.go

··· 2 2 3 3 import ( 4 4 "database/sql" 5 5 + "fmt" 6 6 + "maps" 7 7 + "slices" 8 8 + "sort" 9 9 + "strings" 5 10 "time" 6 11 7 12 "github.com/bluesky-social/indigo/atproto/syntax" 13 13 + "tangled.sh/tangled.sh/core/api/tangled" 8 14 "tangled.sh/tangled.sh/core/appview/pagination" 9 15 ) 10 16 11 17 type Issue struct { 12 12 - ID int64 13 13 - RepoAt syntax.ATURI 14 14 - OwnerDid string 15 15 - IssueId int 16 16 - IssueAt string 17 17 - Created time.Time 18 18 - Title string 19 19 - Body string 20 20 - Open bool 18 18 + Id int64 19 19 + Did string 20 20 + Rkey string 21 21 + RepoAt syntax.ATURI 22 22 + IssueId int 23 23 + Created time.Time 24 24 + Edited *time.Time 25 25 + Deleted *time.Time 26 26 + Title string 27 27 + Body string 28 28 + Open bool 21 29 22 30 // optionally, populate this when querying for reverse mappings 23 31 // like comment counts, parent repo etc. 24 24 - Metadata *IssueMetadata 32 32 + Comments []IssueComment 33 33 + Repo *Repo 25 34 } 26 35 27 27 - type IssueMetadata struct { 28 28 - CommentCount int 29 29 - Repo *Repo 30 30 - // labels, assignee etc. 36 36 + func (i *Issue) AtUri() syntax.ATURI { 37 37 + return syntax.ATURI(fmt.Sprintf("at://%s/%s/%s", i.Did, tangled.RepoIssueNSID, i.Rkey)) 38 38 + } 39 39 + 40 40 + func (i *Issue) AsRecord() tangled.RepoIssue { 41 41 + return tangled.RepoIssue{ 42 42 + Repo: i.RepoAt.String(), 43 43 + Title: i.Title, 44 44 + Body: &i.Body, 45 45 + CreatedAt: i.Created.Format(time.RFC3339), 46 46 + } 47 47 + } 48 48 + 49 49 + func (i *Issue) State() string { 50 50 + if i.Open { 51 51 + return "open" 52 52 + } 53 53 + return "closed" 31 54 } 32 55 33 33 - type Comment struct { 34 34 - OwnerDid string 35 35 - RepoAt syntax.ATURI 36 36 - Rkey string 37 37 - Issue int 38 38 - CommentId int 39 39 - Body string 40 40 - Created *time.Time 41 41 - Deleted *time.Time 42 42 - Edited *time.Time 56 56 + type CommentListItem struct { 57 57 + Self *IssueComment 58 58 + Replies []*IssueComment 43 59 } 44 60 45 45 - func NewIssue(tx *sql.Tx, issue *Issue) error { 46 46 - defer tx.Rollback() 61 61 + func (i *Issue) CommentList() []CommentListItem { 62 62 + // Create a map to quickly find comments by their aturi 63 63 + toplevel := make(map[string]*CommentListItem) 64 64 + var replies []*IssueComment 47 65 48 48 - _, err := tx.Exec(` 49 49 - insert or ignore into repo_issue_seqs (repo_at, next_issue_id) 50 50 - values (?, 1) 51 51 - `, issue.RepoAt) 52 52 - if err != nil { 53 53 - return err 66 66 + // collect top level comments into the map 67 67 + for _, comment := range i.Comments { 68 68 + if comment.IsTopLevel() { 69 69 + toplevel[comment.AtUri().String()] = &CommentListItem{ 70 70 + Self: &comment, 71 71 + } 72 72 + } else { 73 73 + replies = append(replies, &comment) 74 74 + } 75 75 + } 76 76 + 77 77 + for _, r := range replies { 78 78 + parentAt := *r.ReplyTo 79 79 + if parent, exists := toplevel[parentAt]; exists { 80 80 + parent.Replies = append(parent.Replies, r) 81 81 + } 82 82 + } 83 83 + 84 84 + var listing []CommentListItem 85 85 + for _, v := range toplevel { 86 86 + listing = append(listing, *v) 54 87 } 55 88 56 56 - var nextId int 57 57 - err = tx.QueryRow(` 58 58 - update repo_issue_seqs 59 59 - set next_issue_id = next_issue_id + 1 60 60 - where repo_at = ? 61 61 - returning next_issue_id - 1 62 62 - `, issue.RepoAt).Scan(&nextId) 63 63 - if err != nil { 64 64 - return err 89 89 + // sort everything 90 90 + sortFunc := func(a, b *IssueComment) bool { 91 91 + return a.Created.Before(b.Created) 92 92 + } 93 93 + sort.Slice(listing, func(i, j int) bool { 94 94 + return sortFunc(listing[i].Self, listing[j].Self) 95 95 + }) 96 96 + for _, r := range listing { 97 97 + sort.Slice(r.Replies, func(i, j int) bool { 98 98 + return sortFunc(r.Replies[i], r.Replies[j]) 99 99 + }) 65 100 } 66 101 67 67 - issue.IssueId = nextId 102 102 + return listing 103 103 + } 68 104 69 69 - res, err := tx.Exec(` 70 70 - insert into issues (repo_at, owner_did, issue_id, title, body) 71 71 - values (?, ?, ?, ?, ?) 72 72 - `, issue.RepoAt, issue.OwnerDid, issue.IssueId, issue.Title, issue.Body) 105 105 + func IssueFromRecord(did, rkey string, record tangled.RepoIssue) Issue { 106 106 + created, err := time.Parse(time.RFC3339, record.CreatedAt) 73 107 if err != nil { 74 74 - return err 108 108 + created = time.Now() 75 109 } 76 110 77 77 - lastID, err := res.LastInsertId() 78 78 - if err != nil { 79 79 - return err 111 111 + body := "" 112 112 + if record.Body != nil { 113 113 + body = *record.Body 80 114 } 81 81 - issue.ID = lastID 82 115 83 83 - if err := tx.Commit(); err != nil { 84 84 - return err 116 116 + return Issue{ 117 117 + RepoAt: syntax.ATURI(record.Repo), 118 118 + Did: did, 119 119 + Rkey: rkey, 120 120 + Created: created, 121 121 + Title: record.Title, 122 122 + Body: body, 123 123 + Open: true, // new issues are open by default 85 124 } 125 125 + } 86 126 87 87 - return nil 127 127 + type IssueComment struct { 128 128 + Id int64 129 129 + Did string 130 130 + Rkey string 131 131 + IssueAt string 132 132 + ReplyTo *string 133 133 + Body string 134 134 + Created time.Time 135 135 + Edited *time.Time 136 136 + Deleted *time.Time 88 137 } 89 138 90 90 - func SetIssueAt(e Execer, repoAt syntax.ATURI, issueId int, issueAt string) error { 91 91 - _, err := e.Exec(`update issues set issue_at = ? where repo_at = ? and issue_id = ?`, issueAt, repoAt, issueId) 92 92 - return err 139 139 + func (i *IssueComment) AtUri() syntax.ATURI { 140 140 + return syntax.ATURI(fmt.Sprintf("at://%s/%s/%s", i.Did, tangled.RepoIssueCommentNSID, i.Rkey)) 93 141 } 94 142 95 95 - func GetIssueAt(e Execer, repoAt syntax.ATURI, issueId int) (string, error) { 96 96 - var issueAt string 97 97 - err := e.QueryRow(`select issue_at from issues where repo_at = ? and issue_id = ?`, repoAt, issueId).Scan(&issueAt) 98 98 - return issueAt, err 143 143 + func (i *IssueComment) AsRecord() tangled.RepoIssueComment { 144 144 + return tangled.RepoIssueComment{ 145 145 + Body: i.Body, 146 146 + Issue: i.IssueAt, 147 147 + CreatedAt: i.Created.Format(time.RFC3339), 148 148 + ReplyTo: i.ReplyTo, 149 149 + } 99 150 } 100 151 101 101 - func GetIssueOwnerDid(e Execer, repoAt syntax.ATURI, issueId int) (string, error) { 102 102 - var ownerDid string 103 103 - err := e.QueryRow(`select owner_did from issues where repo_at = ? and issue_id = ?`, repoAt, issueId).Scan(&ownerDid) 104 104 - return ownerDid, err 152 152 + func (i *IssueComment) IsTopLevel() bool { 153 153 + return i.ReplyTo == nil 105 154 } 106 155 107 107 - func GetIssues(e Execer, repoAt syntax.ATURI, isOpen bool, page pagination.Page) ([]Issue, error) { 108 108 - var issues []Issue 109 109 - openValue := 0 110 110 - if isOpen { 111 111 - openValue = 1 156 156 + func IssueCommentFromRecord(e Execer, did, rkey string, record tangled.RepoIssueComment) (*IssueComment, error) { 157 157 + created, err := time.Parse(time.RFC3339, record.CreatedAt) 158 158 + if err != nil { 159 159 + created = time.Now() 112 160 } 113 161 114 114 - rows, err := e.Query( 115 115 - ` 116 116 - with numbered_issue as ( 117 117 - select 118 118 - i.id, 119 119 - i.owner_did, 120 120 - i.issue_id, 121 121 - i.created, 122 122 - i.title, 123 123 - i.body, 124 124 - i.open, 125 125 - count(c.id) as comment_count, 126 126 - row_number() over (order by i.created desc) as row_num 127 127 - from 128 128 - issues i 129 129 - left join 130 130 - comments c on i.repo_at = c.repo_at and i.issue_id = c.issue_id 131 131 - where 132 132 - i.repo_at = ? and i.open = ? 133 133 - group by 134 134 - i.id, i.owner_did, i.issue_id, i.created, i.title, i.body, i.open 135 135 - ) 136 136 - select 137 137 - id, 138 138 - owner_did, 139 139 - issue_id, 140 140 - created, 141 141 - title, 142 142 - body, 143 143 - open, 144 144 - comment_count 145 145 - from 146 146 - numbered_issue 147 147 - where 148 148 - row_num between ? and ?`, 149 149 - repoAt, openValue, page.Offset+1, page.Offset+page.Limit) 150 150 - if err != nil { 162 162 + ownerDid := did 163 163 + 164 164 + if _, err = syntax.ParseATURI(record.Issue); err != nil { 151 165 return nil, err 152 166 } 153 153 - defer rows.Close() 154 167 155 155 - for rows.Next() { 156 156 - var issue Issue 157 157 - var createdAt string 158 158 - var metadata IssueMetadata 159 159 - err := rows.Scan(&issue.ID, &issue.OwnerDid, &issue.IssueId, &createdAt, &issue.Title, &issue.Body, &issue.Open, &metadata.CommentCount) 160 160 - if err != nil { 161 161 - return nil, err 162 162 - } 168 168 + comment := IssueComment{ 169 169 + Did: ownerDid, 170 170 + Rkey: rkey, 171 171 + Body: record.Body, 172 172 + IssueAt: record.Issue, 173 173 + ReplyTo: record.ReplyTo, 174 174 + Created: created, 175 175 + } 163 176 164 164 - createdTime, err := time.Parse(time.RFC3339, createdAt) 165 165 - if err != nil { 166 166 - return nil, err 177 177 + return &comment, nil 178 178 + } 179 179 + 180 180 + func PutIssue(tx *sql.Tx, issue *Issue) error { 181 181 + // ensure sequence exists 182 182 + _, err := tx.Exec(` 183 183 + insert or ignore into repo_issue_seqs (repo_at, next_issue_id) 184 184 + values (?, 1) 185 185 + `, issue.RepoAt) 186 186 + if err != nil { 187 187 + return err 188 188 + } 189 189 + 190 190 + issues, err := GetIssues( 191 191 + tx, 192 192 + FilterEq("did", issue.Did), 193 193 + FilterEq("rkey", issue.Rkey), 194 194 + ) 195 195 + switch { 196 196 + case err != nil: 197 197 + return err 198 198 + case len(issues) == 0: 199 199 + return createNewIssue(tx, issue) 200 200 + case len(issues) != 1: // should be unreachable 201 201 + return fmt.Errorf("invalid number of issues returned: %d", len(issues)) 202 202 + default: 203 203 + // if content is identical, do not edit 204 204 + existingIssue := issues[0] 205 205 + if existingIssue.Title == issue.Title && existingIssue.Body == issue.Body { 206 206 + return nil 167 207 } 168 168 - issue.Created = createdTime 169 169 - issue.Metadata = &metadata 170 208 171 171 - issues = append(issues, issue) 209 209 + issue.Id = existingIssue.Id 210 210 + issue.IssueId = existingIssue.IssueId 211 211 + return updateIssue(tx, issue) 172 212 } 213 213 + } 173 214 174 174 - if err := rows.Err(); err != nil { 175 175 - return nil, err 215 215 + func createNewIssue(tx *sql.Tx, issue *Issue) error { 216 216 + // get next issue_id 217 217 + var newIssueId int 218 218 + err := tx.QueryRow(` 219 219 + update repo_issue_seqs 220 220 + set next_issue_id = next_issue_id + 1 221 221 + where repo_at = ? 222 222 + returning next_issue_id - 1 223 223 + `, issue.RepoAt).Scan(&newIssueId) 224 224 + if err != nil { 225 225 + return err 176 226 } 177 227 178 178 - return issues, nil 228 228 + // insert new issue 229 229 + row := tx.QueryRow(` 230 230 + insert into issues (repo_at, did, rkey, issue_id, title, body) 231 231 + values (?, ?, ?, ?, ?, ?) 232 232 + returning rowid, issue_id 233 233 + `, issue.RepoAt, issue.Did, issue.Rkey, newIssueId, issue.Title, issue.Body) 234 234 + 235 235 + return row.Scan(&issue.Id, &issue.IssueId) 179 236 } 180 237 181 181 - // timeframe here is directly passed into the sql query filter, and any 182 182 - // timeframe in the past should be negative; e.g.: "-3 months" 183 183 - func GetIssuesByOwnerDid(e Execer, ownerDid string, timeframe string) ([]Issue, error) { 184 184 - var issues []Issue 238 238 + func updateIssue(tx *sql.Tx, issue *Issue) error { 239 239 + // update existing issue 240 240 + _, err := tx.Exec(` 241 241 + update issues 242 242 + set title = ?, body = ?, edited = ? 243 243 + where did = ? and rkey = ? 244 244 + `, issue.Title, issue.Body, time.Now().Format(time.RFC3339), issue.Did, issue.Rkey) 245 245 + return err 246 246 + } 185 247 186 186 - rows, err := e.Query( 187 187 - `select 188 188 - i.id, 189 189 - i.owner_did, 190 190 - i.repo_at, 191 191 - i.issue_id, 192 192 - i.created, 193 193 - i.title, 194 194 - i.body, 195 195 - i.open, 196 196 - r.did, 197 197 - r.name, 198 198 - r.knot, 199 199 - r.rkey, 200 200 - r.created 201 201 - from 202 202 - issues i 203 203 - join 204 204 - repos r on i.repo_at = r.at_uri 205 205 - where 206 206 - i.owner_did = ? and i.created >= date ('now', ?) 207 207 - order by 208 208 - i.created desc`, 209 209 - ownerDid, timeframe) 248 248 + func GetIssuesPaginated(e Execer, page pagination.Page, filters ...filter) ([]Issue, error) { 249 249 + issueMap := make(map[string]*Issue) // at-uri -> issue 250 250 + 251 251 + var conditions []string 252 252 + var args []any 253 253 + 254 254 + for _, filter := range filters { 255 255 + conditions = append(conditions, filter.Condition()) 256 256 + args = append(args, filter.Arg()...) 257 257 + } 258 258 + 259 259 + whereClause := "" 260 260 + if conditions != nil { 261 261 + whereClause = " where " + strings.Join(conditions, " and ") 262 262 + } 263 263 + 264 264 + pLower := FilterGte("row_num", page.Offset+1) 265 265 + pUpper := FilterLte("row_num", page.Offset+page.Limit) 266 266 + 267 267 + args = append(args, pLower.Arg()...) 268 268 + args = append(args, pUpper.Arg()...) 269 269 + pagination := " where " + pLower.Condition() + " and " + pUpper.Condition() 270 270 + 271 271 + query := fmt.Sprintf( 272 272 + ` 273 273 + select * from ( 274 274 + select 275 275 + id, 276 276 + did, 277 277 + rkey, 278 278 + repo_at, 279 279 + issue_id, 280 280 + title, 281 281 + body, 282 282 + open, 283 283 + created, 284 284 + edited, 285 285 + deleted, 286 286 + row_number() over (order by created desc) as row_num 287 287 + from 288 288 + issues 289 289 + %s 290 290 + ) ranked_issues 291 291 + %s 292 292 + `, 293 293 + whereClause, 294 294 + pagination, 295 295 + ) 296 296 + 297 297 + rows, err := e.Query(query, args...) 210 298 if err != nil { 211 211 - return nil, err 299 299 + return nil, fmt.Errorf("failed to query issues table: %w", err) 212 300 } 213 301 defer rows.Close() 214 302 215 303 for rows.Next() { 216 304 var issue Issue 217 217 - var issueCreatedAt, repoCreatedAt string 218 218 - var repo Repo 305 305 + var createdAt string 306 306 + var editedAt, deletedAt sql.Null[string] 307 307 + var rowNum int64 219 308 err := rows.Scan( 220 220 - &issue.ID, 221 221 - &issue.OwnerDid, 309 309 + &issue.Id, 310 310 + &issue.Did, 311 311 + &issue.Rkey, 222 312 &issue.RepoAt, 223 313 &issue.IssueId, 224 224 - &issueCreatedAt, 225 314 &issue.Title, 226 315 &issue.Body, 227 316 &issue.Open, 228 228 - &repo.Did, 229 229 - &repo.Name, 230 230 - &repo.Knot, 231 231 - &repo.Rkey, 232 232 - &repoCreatedAt, 317 317 + &createdAt, 318 318 + &editedAt, 319 319 + &deletedAt, 320 320 + &rowNum, 233 321 ) 234 322 if err != nil { 235 235 - return nil, err 323 323 + return nil, fmt.Errorf("failed to scan issue: %w", err) 236 324 } 237 325 238 238 - issueCreatedTime, err := time.Parse(time.RFC3339, issueCreatedAt) 239 239 - if err != nil { 240 240 - return nil, err 326 326 + if t, err := time.Parse(time.RFC3339, createdAt); err == nil { 327 327 + issue.Created = t 241 328 } 242 242 - issue.Created = issueCreatedTime 243 329 244 244 - repoCreatedTime, err := time.Parse(time.RFC3339, repoCreatedAt) 245 245 - if err != nil { 246 246 - return nil, err 330 330 + if editedAt.Valid { 331 331 + if t, err := time.Parse(time.RFC3339, editedAt.V); err == nil { 332 332 + issue.Edited = &t 333 333 + } 334 334 + } 335 335 + 336 336 + if deletedAt.Valid { 337 337 + if t, err := time.Parse(time.RFC3339, deletedAt.V); err == nil { 338 338 + issue.Deleted = &t 339 339 + } 247 340 } 248 248 - repo.Created = repoCreatedTime 249 341 250 250 - issue.Metadata = &IssueMetadata{ 251 251 - Repo: &repo, 342 342 + atUri := issue.AtUri().String() 343 343 + issueMap[atUri] = &issue 344 344 + } 345 345 + 346 346 + // collect reverse repos 347 347 + repoAts := make([]string, 0, len(issueMap)) // or just []string{} 348 348 + for _, issue := range issueMap { 349 349 + repoAts = append(repoAts, string(issue.RepoAt)) 350 350 + } 351 351 + 352 352 + repos, err := GetRepos(e, 0, FilterIn("at_uri", repoAts)) 353 353 + if err != nil { 354 354 + return nil, fmt.Errorf("failed to build repo mappings: %w", err) 355 355 + } 356 356 + 357 357 + repoMap := make(map[string]*Repo) 358 358 + for i := range repos { 359 359 + repoMap[string(repos[i].RepoAt())] = &repos[i] 360 360 + } 361 361 + 362 362 + for issueAt, i := range issueMap { 363 363 + if r, ok := repoMap[string(i.RepoAt)]; ok { 364 364 + i.Repo = r 365 365 + } else { 366 366 + // do not show up the issue if the repo is deleted 367 367 + // TODO: foreign key where? 368 368 + delete(issueMap, issueAt) 252 369 } 370 370 + } 253 371 254 254 - issues = append(issues, issue) 372 372 + // collect comments 373 373 + issueAts := slices.Collect(maps.Keys(issueMap)) 374 374 + comments, err := GetIssueComments(e, FilterIn("issue_at", issueAts)) 375 375 + if err != nil { 376 376 + return nil, fmt.Errorf("failed to query comments: %w", err) 255 377 } 256 378 257 257 - if err := rows.Err(); err != nil { 258 258 - return nil, err 379 379 + for i := range comments { 380 380 + issueAt := comments[i].IssueAt 381 381 + if issue, ok := issueMap[issueAt]; ok { 382 382 + issue.Comments = append(issue.Comments, comments[i]) 383 383 + } 384 384 + } 385 385 + 386 386 + var issues []Issue 387 387 + for _, i := range issueMap { 388 388 + issues = append(issues, *i) 259 389 } 260 390 391 391 + sort.Slice(issues, func(i, j int) bool { 392 392 + return issues[i].Created.After(issues[j].Created) 393 393 + }) 394 394 + 261 395 return issues, nil 396 396 + } 397 397 + 398 398 + func GetIssues(e Execer, filters ...filter) ([]Issue, error) { 399 399 + return GetIssuesPaginated(e, pagination.FirstPage(), filters...) 262 400 } 263 401 264 402 func GetIssue(e Execer, repoAt syntax.ATURI, issueId int) (*Issue, error) { 265 265 - query := `select id, owner_did, created, title, body, open from issues where repo_at = ? and issue_id = ?` 403 403 + query := `select id, owner_did, rkey, created, title, body, open from issues where repo_at = ? and issue_id = ?` 266 404 row := e.QueryRow(query, repoAt, issueId) 267 405 268 406 var issue Issue 269 407 var createdAt string 270 270 - err := row.Scan(&issue.ID, &issue.OwnerDid, &createdAt, &issue.Title, &issue.Body, &issue.Open) 408 408 + err := row.Scan(&issue.Id, &issue.Did, &issue.Rkey, &createdAt, &issue.Title, &issue.Body, &issue.Open) 271 409 if err != nil { 272 410 return nil, err 273 411 } ··· 281 419 return &issue, nil 282 420 } 283 421 284 284 - func GetIssueWithComments(e Execer, repoAt syntax.ATURI, issueId int) (*Issue, []Comment, error) { 285 285 - query := `select id, owner_did, issue_id, created, title, body, open, issue_at from issues where repo_at = ? and issue_id = ?` 286 286 - row := e.QueryRow(query, repoAt, issueId) 287 287 - 288 288 - var issue Issue 289 289 - var createdAt string 290 290 - err := row.Scan(&issue.ID, &issue.OwnerDid, &issue.IssueId, &createdAt, &issue.Title, &issue.Body, &issue.Open, &issue.IssueAt) 422 422 + func AddIssueComment(e Execer, c IssueComment) (int64, error) { 423 423 + result, err := e.Exec( 424 424 + `insert into issue_comments ( 425 425 + did, 426 426 + rkey, 427 427 + issue_at, 428 428 + body, 429 429 + reply_to, 430 430 + created, 431 431 + edited 432 432 + ) 433 433 + values (?, ?, ?, ?, ?, ?, null) 434 434 + on conflict(did, rkey) do update set 435 435 + issue_at = excluded.issue_at, 436 436 + body = excluded.body, 437 437 + edited = case 438 438 + when 439 439 + issue_comments.issue_at != excluded.issue_at 440 440 + or issue_comments.body != excluded.body 441 441 + or issue_comments.reply_to != excluded.reply_to 442 442 + then ? 443 443 + else issue_comments.edited 444 444 + end`, 445 445 + c.Did, 446 446 + c.Rkey, 447 447 + c.IssueAt, 448 448 + c.Body, 449 449 + c.ReplyTo, 450 450 + c.Created.Format(time.RFC3339), 451 451 + time.Now().Format(time.RFC3339), 452 452 + ) 291 453 if err != nil { 292 292 - return nil, nil, err 454 454 + return 0, err 293 455 } 294 456 295 295 - createdTime, err := time.Parse(time.RFC3339, createdAt) 457 457 + id, err := result.LastInsertId() 296 458 if err != nil { 297 297 - return nil, nil, err 459 459 + return 0, err 298 460 } 299 299 - issue.Created = createdTime 300 461 301 301 - comments, err := GetComments(e, repoAt, issueId) 302 302 - if err != nil { 303 303 - return nil, nil, err 462 462 + return id, nil 463 463 + } 464 464 + 465 465 + func DeleteIssueComments(e Execer, filters ...filter) error { 466 466 + var conditions []string 467 467 + var args []any 468 468 + for _, filter := range filters { 469 469 + conditions = append(conditions, filter.Condition()) 470 470 + args = append(args, filter.Arg()...) 304 471 } 305 472 306 306 - return &issue, comments, nil 307 307 - } 473 473 + whereClause := "" 474 474 + if conditions != nil { 475 475 + whereClause = " where " + strings.Join(conditions, " and ") 476 476 + } 308 477 309 309 - func NewIssueComment(e Execer, comment *Comment) error { 310 310 - query := `insert into comments (owner_did, repo_at, rkey, issue_id, comment_id, body) values (?, ?, ?, ?, ?, ?)` 311 311 - _, err := e.Exec( 312 312 - query, 313 313 - comment.OwnerDid, 314 314 - comment.RepoAt, 315 315 - comment.Rkey, 316 316 - comment.Issue, 317 317 - comment.CommentId, 318 318 - comment.Body, 319 319 - ) 478 478 + query := fmt.Sprintf(`update issue_comments set body = "", deleted = strftime('%%Y-%%m-%%dT%%H:%%M:%%SZ', 'now') %s`, whereClause) 479 479 + 480 480 + _, err := e.Exec(query, args...) 320 481 return err 321 482 } 322 483 323 323 - func GetComments(e Execer, repoAt syntax.ATURI, issueId int) ([]Comment, error) { 324 324 - var comments []Comment 484 484 + func GetIssueComments(e Execer, filters ...filter) ([]IssueComment, error) { 485 485 + var comments []IssueComment 486 486 + 487 487 + var conditions []string 488 488 + var args []any 489 489 + for _, filter := range filters { 490 490 + conditions = append(conditions, filter.Condition()) 491 491 + args = append(args, filter.Arg()...) 492 492 + } 325 493 326 326 - rows, err := e.Query(` 494 494 + whereClause := "" 495 495 + if conditions != nil { 496 496 + whereClause = " where " + strings.Join(conditions, " and ") 497 497 + } 498 498 + 499 499 + query := fmt.Sprintf(` 327 500 select 328 328 - owner_did, 329 329 - issue_id, 330 330 - comment_id, 501 501 + id, 502 502 + did, 331 503 rkey, 504 504 + issue_at, 505 505 + reply_to, 332 506 body, 333 507 created, 334 508 edited, 335 509 deleted 336 510 from 337 337 - comments 338 338 - where 339 339 - repo_at = ? and issue_id = ? 340 340 - order by 341 341 - created asc`, 342 342 - repoAt, 343 343 - issueId, 344 344 - ) 345 345 - if err == sql.ErrNoRows { 346 346 - return []Comment{}, nil 347 347 - } 511 511 + issue_comments 512 512 + %s 513 513 + `, whereClause) 514 514 + 515 515 + rows, err := e.Query(query, args...) 348 516 if err != nil { 349 517 return nil, err 350 518 } 351 351 - defer rows.Close() 352 519 353 520 for rows.Next() { 354 354 - var comment Comment 355 355 - var createdAt string 356 356 - var deletedAt, editedAt, rkey sql.NullString 357 357 - err := rows.Scan(&comment.OwnerDid, &comment.Issue, &comment.CommentId, &rkey, &comment.Body, &createdAt, &editedAt, &deletedAt) 521 521 + var comment IssueComment 522 522 + var created string 523 523 + var rkey, edited, deleted, replyTo sql.Null[string] 524 524 + err := rows.Scan( 525 525 + &comment.Id, 526 526 + &comment.Did, 527 527 + &rkey, 528 528 + &comment.IssueAt, 529 529 + &replyTo, 530 530 + &comment.Body, 531 531 + &created, 532 532 + &edited, 533 533 + &deleted, 534 534 + ) 358 535 if err != nil { 359 536 return nil, err 360 537 } 361 538 362 362 - createdAtTime, err := time.Parse(time.RFC3339, createdAt) 363 363 - if err != nil { 364 364 - return nil, err 539 539 + // this is a remnant from old times, newer comments always have rkey 540 540 + if rkey.Valid { 541 541 + comment.Rkey = rkey.V 365 542 } 366 366 - comment.Created = &createdAtTime 367 543 368 368 - if deletedAt.Valid { 369 369 - deletedTime, err := time.Parse(time.RFC3339, deletedAt.String) 370 370 - if err != nil { 371 371 - return nil, err 544 544 + if t, err := time.Parse(time.RFC3339, created); err == nil { 545 545 + comment.Created = t 546 546 + } 547 547 + 548 548 + if edited.Valid { 549 549 + if t, err := time.Parse(time.RFC3339, edited.V); err == nil { 550 550 + comment.Edited = &t 372 551 } 373 373 - comment.Deleted = &deletedTime 374 552 } 375 553 376 376 - if editedAt.Valid { 377 377 - editedTime, err := time.Parse(time.RFC3339, editedAt.String) 378 378 - if err != nil { 379 379 - return nil, err 554 554 + if deleted.Valid { 555 555 + if t, err := time.Parse(time.RFC3339, deleted.V); err == nil { 556 556 + comment.Deleted = &t 380 557 } 381 381 - comment.Edited = &editedTime 382 558 } 383 559 384 384 - if rkey.Valid { 385 385 - comment.Rkey = rkey.String 560 560 + if replyTo.Valid { 561 561 + comment.ReplyTo = &replyTo.V 386 562 } 387 563 388 564 comments = append(comments, comment) 389 565 } 390 566 391 391 - if err := rows.Err(); err != nil { 567 567 + if err = rows.Err(); err != nil { 392 568 return nil, err 393 569 } 394 570 395 571 return comments, nil 396 572 } 397 573 398 398 - func GetComment(e Execer, repoAt syntax.ATURI, issueId, commentId int) (*Comment, error) { 399 399 - query := ` 400 400 - select 401 401 - owner_did, body, rkey, created, deleted, edited 402 402 - from 403 403 - comments where repo_at = ? and issue_id = ? and comment_id = ? 404 404 - ` 405 405 - row := e.QueryRow(query, repoAt, issueId, commentId) 406 406 - 407 407 - var comment Comment 408 408 - var createdAt string 409 409 - var deletedAt, editedAt, rkey sql.NullString 410 410 - err := row.Scan(&comment.OwnerDid, &comment.Body, &rkey, &createdAt, &deletedAt, &editedAt) 411 411 - if err != nil { 412 412 - return nil, err 574 574 + func DeleteIssues(e Execer, filters ...filter) error { 575 575 + var conditions []string 576 576 + var args []any 577 577 + for _, filter := range filters { 578 578 + conditions = append(conditions, filter.Condition()) 579 579 + args = append(args, filter.Arg()...) 413 580 } 414 581 415 415 - createdTime, err := time.Parse(time.RFC3339, createdAt) 416 416 - if err != nil { 417 417 - return nil, err 582 582 + whereClause := "" 583 583 + if conditions != nil { 584 584 + whereClause = " where " + strings.Join(conditions, " and ") 418 585 } 419 419 - comment.Created = &createdTime 420 586 421 421 - if deletedAt.Valid { 422 422 - deletedTime, err := time.Parse(time.RFC3339, deletedAt.String) 423 423 - if err != nil { 424 424 - return nil, err 425 425 - } 426 426 - comment.Deleted = &deletedTime 427 427 - } 587 587 + query := fmt.Sprintf(`delete from issues %s`, whereClause) 588 588 + _, err := e.Exec(query, args...) 589 589 + return err 590 590 + } 428 591 429 429 - if editedAt.Valid { 430 430 - editedTime, err := time.Parse(time.RFC3339, editedAt.String) 431 431 - if err != nil { 432 432 - return nil, err 433 433 - } 434 434 - comment.Edited = &editedTime 592 592 + func CloseIssues(e Execer, filters ...filter) error { 593 593 + var conditions []string 594 594 + var args []any 595 595 + for _, filter := range filters { 596 596 + conditions = append(conditions, filter.Condition()) 597 597 + args = append(args, filter.Arg()...) 435 598 } 436 599 437 437 - if rkey.Valid { 438 438 - comment.Rkey = rkey.String 600 600 + whereClause := "" 601 601 + if conditions != nil { 602 602 + whereClause = " where " + strings.Join(conditions, " and ") 439 603 } 440 604 441 441 - comment.RepoAt = repoAt 442 442 - comment.Issue = issueId 443 443 - comment.CommentId = commentId 444 444 - 445 445 - return &comment, nil 446 446 - } 447 447 - 448 448 - func EditComment(e Execer, repoAt syntax.ATURI, issueId, commentId int, newBody string) error { 449 449 - _, err := e.Exec( 450 450 - ` 451 451 - update comments 452 452 - set body = ?, 453 453 - edited = strftime('%Y-%m-%dT%H:%M:%SZ', 'now') 454 454 - where repo_at = ? and issue_id = ? and comment_id = ? 455 455 - `, newBody, repoAt, issueId, commentId) 605 605 + query := fmt.Sprintf(`update issues set open = 0 %s`, whereClause) 606 606 + _, err := e.Exec(query, args...) 456 607 return err 457 608 } 458 609 459 459 - func DeleteComment(e Execer, repoAt syntax.ATURI, issueId, commentId int) error { 460 460 - _, err := e.Exec( 461 461 - ` 462 462 - update comments 463 463 - set body = "", 464 464 - deleted = strftime('%Y-%m-%dT%H:%M:%SZ', 'now') 465 465 - where repo_at = ? and issue_id = ? and comment_id = ? 466 466 - `, repoAt, issueId, commentId) 467 467 - return err 468 468 - } 610 610 + func ReopenIssues(e Execer, filters ...filter) error { 611 611 + var conditions []string 612 612 + var args []any 613 613 + for _, filter := range filters { 614 614 + conditions = append(conditions, filter.Condition()) 615 615 + args = append(args, filter.Arg()...) 616 616 + } 469 617 470 470 - func CloseIssue(e Execer, repoAt syntax.ATURI, issueId int) error { 471 471 - _, err := e.Exec(`update issues set open = 0 where repo_at = ? and issue_id = ?`, repoAt, issueId) 472 472 - return err 473 473 - } 618 618 + whereClause := "" 619 619 + if conditions != nil { 620 620 + whereClause = " where " + strings.Join(conditions, " and ") 621 621 + } 474 622 475 475 - func ReopenIssue(e Execer, repoAt syntax.ATURI, issueId int) error { 476 476 - _, err := e.Exec(`update issues set open = 1 where repo_at = ? and issue_id = ?`, repoAt, issueId) 623 623 + query := fmt.Sprintf(`update issues set open = 1 %s`, whereClause) 624 624 + _, err := e.Exec(query, args...) 477 625 return err 478 626 } 479 627

-62

appview/db/migrations/20250305_113405.sql

··· 1 1 - -- Simplified SQLite Database Migration Script for Issues and Comments 2 2 - 3 3 - -- Migration for issues table 4 4 - CREATE TABLE issues_new ( 5 5 - id integer primary key autoincrement, 6 6 - owner_did text not null, 7 7 - repo_at text not null, 8 8 - issue_id integer not null, 9 9 - title text not null, 10 10 - body text not null, 11 11 - open integer not null default 1, 12 12 - created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 13 13 - issue_at text, 14 14 - unique(repo_at, issue_id), 15 15 - foreign key (repo_at) references repos(at_uri) on delete cascade 16 16 - ); 17 17 - 18 18 - -- Migrate data to new issues table 19 19 - INSERT INTO issues_new ( 20 20 - id, owner_did, repo_at, issue_id, 21 21 - title, body, open, created, issue_at 22 22 - ) 23 23 - SELECT 24 24 - id, owner_did, repo_at, issue_id, 25 25 - title, body, open, created, issue_at 26 26 - FROM issues; 27 27 - 28 28 - -- Drop old issues table 29 29 - DROP TABLE issues; 30 30 - 31 31 - -- Rename new issues table 32 32 - ALTER TABLE issues_new RENAME TO issues; 33 33 - 34 34 - -- Migration for comments table 35 35 - CREATE TABLE comments_new ( 36 36 - id integer primary key autoincrement, 37 37 - owner_did text not null, 38 38 - issue_id integer not null, 39 39 - repo_at text not null, 40 40 - comment_id integer not null, 41 41 - comment_at text not null, 42 42 - body text not null, 43 43 - created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 44 44 - unique(issue_id, comment_id), 45 45 - foreign key (repo_at, issue_id) references issues(repo_at, issue_id) on delete cascade 46 46 - ); 47 47 - 48 48 - -- Migrate data to new comments table 49 49 - INSERT INTO comments_new ( 50 50 - id, owner_did, issue_id, repo_at, 51 51 - comment_id, comment_at, body, created 52 52 - ) 53 53 - SELECT 54 54 - id, owner_did, issue_id, repo_at, 55 55 - comment_id, comment_at, body, created 56 56 - FROM comments; 57 57 - 58 58 - -- Drop old comments table 59 59 - DROP TABLE comments; 60 60 - 61 61 - -- Rename new comments table 62 62 - ALTER TABLE comments_new RENAME TO comments;

-66

appview/db/migrations/validate.sql

··· 1 1 - -- Validation Queries for Database Migration 2 2 - 3 3 - -- 1. Verify Issues Table Structure 4 4 - PRAGMA table_info(issues); 5 5 - 6 6 - -- 2. Verify Comments Table Structure 7 7 - PRAGMA table_info(comments); 8 8 - 9 9 - -- 3. Check Total Row Count Consistency 10 10 - SELECT 11 11 - 'Issues Row Count' AS check_type, 12 12 - (SELECT COUNT(*) FROM issues) AS row_count 13 13 - UNION ALL 14 14 - SELECT 15 15 - 'Comments Row Count' AS check_type, 16 16 - (SELECT COUNT(*) FROM comments) AS row_count; 17 17 - 18 18 - -- 4. Verify Unique Constraint on Issues 19 19 - SELECT 20 20 - repo_at, 21 21 - issue_id, 22 22 - COUNT(*) as duplicate_count 23 23 - FROM issues 24 24 - GROUP BY repo_at, issue_id 25 25 - HAVING duplicate_count > 1; 26 26 - 27 27 - -- 5. Verify Foreign Key Integrity for Comments 28 28 - SELECT 29 29 - 'Orphaned Comments' AS check_type, 30 30 - COUNT(*) AS orphaned_count 31 31 - FROM comments c 32 32 - LEFT JOIN issues i ON c.repo_at = i.repo_at AND c.issue_id = i.issue_id 33 33 - WHERE i.id IS NULL; 34 34 - 35 35 - -- 6. Check Foreign Key Constraint 36 36 - PRAGMA foreign_key_list(comments); 37 37 - 38 38 - -- 7. Sample Data Integrity Check 39 39 - SELECT 40 40 - 'Sample Issues' AS check_type, 41 41 - repo_at, 42 42 - issue_id, 43 43 - title, 44 44 - created 45 45 - FROM issues 46 46 - LIMIT 5; 47 47 - 48 48 - -- 8. Sample Comments Data Integrity Check 49 49 - SELECT 50 50 - 'Sample Comments' AS check_type, 51 51 - repo_at, 52 52 - issue_id, 53 53 - comment_id, 54 54 - body, 55 55 - created 56 56 - FROM comments 57 57 - LIMIT 5; 58 58 - 59 59 - -- 9. Verify Constraint on Comments (Issue ID and Comment ID Uniqueness) 60 60 - SELECT 61 61 - issue_id, 62 62 - comment_id, 63 63 - COUNT(*) as duplicate_count 64 64 - FROM comments 65 65 - GROUP BY issue_id, comment_id 66 66 - HAVING duplicate_count > 1;

+25 -12

appview/db/profile.go

··· 22 22 ByMonth []ByMonth 23 23 } 24 24 25 25 + func (p *ProfileTimeline) IsEmpty() bool { 26 26 + if p == nil { 27 27 + return true 28 28 + } 29 29 + 30 30 + for _, m := range p.ByMonth { 31 31 + if !m.IsEmpty() { 32 32 + return false 33 33 + } 34 34 + } 35 35 + 36 36 + return true 37 37 + } 38 38 + 25 39 type ByMonth struct { 26 40 RepoEvents []RepoEvent 27 41 IssueEvents IssueEvents ··· 118 132 *items = append(*items, &pull) 119 133 } 120 134 121 121 - issues, err := GetIssuesByOwnerDid(e, forDid, timeframe) 135 135 + issues, err := GetIssues( 136 136 + e, 137 137 + FilterEq("did", forDid), 138 138 + FilterGte("created", time.Now().AddDate(0, -TimeframeMonths, 0)), 139 139 + ) 122 140 if err != nil { 123 141 return nil, fmt.Errorf("error getting issues by owner did: %w", err) 124 142 } ··· 137 155 *items = append(*items, &issue) 138 156 } 139 157 140 140 - repos, err := GetAllReposByDid(e, forDid) 158 158 + repos, err := GetRepos(e, 0, FilterEq("did", forDid)) 141 159 if err != nil { 142 160 return nil, fmt.Errorf("error getting all repos by did: %w", err) 143 161 } ··· 348 366 return tx.Commit() 349 367 } 350 368 351 351 - func GetProfiles(e Execer, filters ...filter) ([]Profile, error) { 369 369 + func GetProfiles(e Execer, filters ...filter) (map[string]*Profile, error) { 352 370 var conditions []string 353 371 var args []any 354 372 for _, filter := range filters { ··· 448 466 idxs[did] = idx + 1 449 467 } 450 468 451 451 - var profiles []Profile 452 452 - for _, p := range profileMap { 453 453 - profiles = append(profiles, *p) 454 454 - } 455 455 - 456 456 - return profiles, nil 469 469 + return profileMap, nil 457 470 } 458 471 459 472 func GetProfile(e Execer, did string) (*Profile, error) { ··· 540 553 query = `select count(id) from pulls where owner_did = ? and state = ?` 541 554 args = append(args, did, PullOpen) 542 555 case VanityStatOpenIssueCount: 543 543 - query = `select count(id) from issues where owner_did = ? and open = 1` 556 556 + query = `select count(id) from issues where did = ? and open = 1` 544 557 args = append(args, did) 545 558 case VanityStatClosedIssueCount: 546 546 - query = `select count(id) from issues where owner_did = ? and open = 0` 559 559 + query = `select count(id) from issues where did = ? and open = 0` 547 560 args = append(args, did) 548 561 case VanityStatRepositoryCount: 549 562 query = `select count(id) from repos where did = ?` ··· 577 590 } 578 591 579 592 // ensure all pinned repos are either own repos or collaborating repos 580 580 - repos, err := GetAllReposByDid(e, profile.Did) 593 593 + repos, err := GetRepos(e, 0, FilterEq("did", profile.Did)) 581 594 if err != nil { 582 595 log.Printf("getting repos for %s: %s", profile.Did, err) 583 596 }

+31 -11

appview/db/pulls.go

··· 91 91 } 92 92 93 93 record := tangled.RepoPull{ 94 94 - Title: p.Title, 95 95 - Body: &p.Body, 96 96 - CreatedAt: p.Created.Format(time.RFC3339), 97 97 - PullId: int64(p.PullId), 98 98 - TargetRepo: p.RepoAt.String(), 99 99 - TargetBranch: p.TargetBranch, 100 100 - Patch: p.LatestPatch(), 101 101 - Source: source, 94 94 + Title: p.Title, 95 95 + Body: &p.Body, 96 96 + CreatedAt: p.Created.Format(time.RFC3339), 97 97 + Target: &tangled.RepoPull_Target{ 98 98 + Repo: p.RepoAt.String(), 99 99 + Branch: p.TargetBranch, 100 100 + }, 101 101 + Patch: p.LatestPatch(), 102 102 + Source: source, 102 103 } 103 104 return record 104 105 } ··· 310 311 return pullId - 1, err 311 312 } 312 313 313 313 - func GetPulls(e Execer, filters ...filter) ([]*Pull, error) { 314 314 + func GetPullsWithLimit(e Execer, limit int, filters ...filter) ([]*Pull, error) { 314 315 pulls := make(map[int]*Pull) 315 316 316 317 var conditions []string ··· 324 325 if conditions != nil { 325 326 whereClause = " where " + strings.Join(conditions, " and ") 326 327 } 328 328 + limitClause := "" 329 329 + if limit != 0 { 330 330 + limitClause = fmt.Sprintf(" limit %d ", limit) 331 331 + } 327 332 328 333 query := fmt.Sprintf(` 329 334 select ··· 344 349 from 345 350 pulls 346 351 %s 347 347 - `, whereClause) 352 352 + order by 353 353 + created desc 354 354 + %s 355 355 + `, whereClause, limitClause) 348 356 349 357 rows, err := e.Query(query, args...) 350 358 if err != nil { ··· 412 420 inClause := strings.TrimSuffix(strings.Repeat("?, ", len(pulls)), ", ") 413 421 submissionsQuery := fmt.Sprintf(` 414 422 select 415 415 - id, pull_id, round_number, patch, source_rev 423 423 + id, pull_id, round_number, patch, created, source_rev 416 424 from 417 425 pull_submissions 418 426 where ··· 438 446 for submissionsRows.Next() { 439 447 var s PullSubmission 440 448 var sourceRev sql.NullString 449 449 + var createdAt string 441 450 err := submissionsRows.Scan( 442 451 &s.ID, 443 452 &s.PullId, 444 453 &s.RoundNumber, 445 454 &s.Patch, 455 455 + &createdAt, 446 456 &sourceRev, 447 457 ) 448 458 if err != nil { 449 459 return nil, err 450 460 } 451 461 462 462 + createdTime, err := time.Parse(time.RFC3339, createdAt) 463 463 + if err != nil { 464 464 + return nil, err 465 465 + } 466 466 + s.Created = createdTime 467 467 + 452 468 if sourceRev.Valid { 453 469 s.SourceRev = sourceRev.String 454 470 } ··· 511 527 }) 512 528 513 529 return orderedByPullId, nil 530 530 + } 531 531 + 532 532 + func GetPulls(e Execer, filters ...filter) ([]*Pull, error) { 533 533 + return GetPullsWithLimit(e, 0, filters...) 514 534 } 515 535 516 536 func GetPull(e Execer, repoAt syntax.ATURI, pullId int) (*Pull, error) {

+4 -4

appview/db/punchcard.go

··· 29 29 Punches []Punch 30 30 } 31 31 32 32 - func MakePunchcard(e Execer, filters ...filter) (Punchcard, error) { 33 33 - punchcard := Punchcard{} 32 32 + func MakePunchcard(e Execer, filters ...filter) (*Punchcard, error) { 33 33 + punchcard := &Punchcard{} 34 34 now := time.Now() 35 35 startOfYear := time.Date(now.Year(), 1, 1, 0, 0, 0, 0, time.UTC) 36 36 endOfYear := time.Date(now.Year(), 12, 31, 0, 0, 0, 0, time.UTC) ··· 63 63 64 64 rows, err := e.Query(query, args...) 65 65 if err != nil { 66 66 - return punchcard, err 66 66 + return nil, err 67 67 } 68 68 defer rows.Close() 69 69 ··· 72 72 var date string 73 73 var count sql.NullInt64 74 74 if err := rows.Scan(&date, &count); err != nil { 75 75 - return punchcard, err 75 75 + return nil, err 76 76 } 77 77 78 78 punch.Date, err = time.Parse(time.DateOnly, date)

+7 -7

appview/db/reaction.go

··· 11 11 12 12 const ( 13 13 Like ReactionKind = "👍" 14 14 - Unlike = "👎" 15 15 - Laugh = "😆" 16 16 - Celebration = "🎉" 17 17 - Confused = "🫤" 18 18 - Heart = "❤️" 19 19 - Rocket = "🚀" 20 20 - Eyes = "👀" 14 14 + Unlike ReactionKind = "👎" 15 15 + Laugh ReactionKind = "😆" 16 16 + Celebration ReactionKind = "🎉" 17 17 + Confused ReactionKind = "🫤" 18 18 + Heart ReactionKind = "❤️" 19 19 + Rocket ReactionKind = "🚀" 20 20 + Eyes ReactionKind = "👀" 21 21 ) 22 22 23 23 func (rk ReactionKind) String() string {

+94 -130

appview/db/registration.go

··· 1 1 package db 2 2 3 3 import ( 4 4 - "crypto/rand" 5 4 "database/sql" 6 6 - "encoding/hex" 7 5 "fmt" 8 8 - "log" 6 6 + "strings" 9 7 "time" 10 8 ) 11 9 10 10 + // Registration represents a knot registration. Knot would've been a better 11 11 + // name but we're stuck with this for historical reasons. 12 12 type Registration struct { 13 13 - Id int64 14 14 - Domain string 15 15 - ByDid string 16 16 - Created *time.Time 17 17 - Registered *time.Time 13 13 + Id int64 14 14 + Domain string 15 15 + ByDid string 16 16 + Created *time.Time 17 17 + Registered *time.Time 18 18 + NeedsUpgrade bool 18 19 } 19 20 20 21 func (r *Registration) Status() Status { 21 21 - if r.Registered != nil { 22 22 + if r.NeedsUpgrade { 23 23 + return NeedsUpgrade 24 24 + } else if r.Registered != nil { 22 25 return Registered 23 26 } else { 24 27 return Pending 25 28 } 26 29 } 27 30 31 31 + func (r *Registration) IsRegistered() bool { 32 32 + return r.Status() == Registered 33 33 + } 34 34 + 35 35 + func (r *Registration) IsNeedsUpgrade() bool { 36 36 + return r.Status() == NeedsUpgrade 37 37 + } 38 38 + 39 39 + func (r *Registration) IsPending() bool { 40 40 + return r.Status() == Pending 41 41 + } 42 42 + 28 43 type Status uint32 29 44 30 45 const ( 31 46 Registered Status = iota 32 47 Pending 48 48 + NeedsUpgrade 33 49 ) 34 50 35 35 - // returns registered status, did of owner, error 36 36 - func RegistrationsByDid(e Execer, did string) ([]Registration, error) { 51 51 + func GetRegistrations(e Execer, filters ...filter) ([]Registration, error) { 37 52 var registrations []Registration 38 53 39 39 - rows, err := e.Query(` 40 40 - select id, domain, did, created, registered from registrations 41 41 - where did = ? 42 42 - `, did) 54 54 + var conditions []string 55 55 + var args []any 56 56 + for _, filter := range filters { 57 57 + conditions = append(conditions, filter.Condition()) 58 58 + args = append(args, filter.Arg()...) 59 59 + } 60 60 + 61 61 + whereClause := "" 62 62 + if conditions != nil { 63 63 + whereClause = " where " + strings.Join(conditions, " and ") 64 64 + } 65 65 + 66 66 + query := fmt.Sprintf(` 67 67 + select id, domain, did, created, registered, needs_upgrade 68 68 + from registrations 69 69 + %s 70 70 + order by created 71 71 + `, 72 72 + whereClause, 73 73 + ) 74 74 + 75 75 + rows, err := e.Query(query, args...) 43 76 if err != nil { 44 77 return nil, err 45 78 } 46 79 47 80 for rows.Next() { 48 48 - var createdAt *string 49 49 - var registeredAt *string 50 50 - var registration Registration 51 51 - err = rows.Scan(&registration.Id, &registration.Domain, &registration.ByDid, &createdAt, &registeredAt) 81 81 + var createdAt string 82 82 + var registeredAt sql.Null[string] 83 83 + var needsUpgrade int 84 84 + var reg Registration 52 85 86 86 + err = rows.Scan(&reg.Id, &reg.Domain, &reg.ByDid, &createdAt, &registeredAt, &needsUpgrade) 53 87 if err != nil { 54 54 - log.Println(err) 55 55 - } else { 56 56 - createdAtTime, _ := time.Parse(time.RFC3339, *createdAt) 57 57 - var registeredAtTime *time.Time 58 58 - if registeredAt != nil { 59 59 - x, _ := time.Parse(time.RFC3339, *registeredAt) 60 60 - registeredAtTime = &x 61 61 - } 62 62 - 63 63 - registration.Created = &createdAtTime 64 64 - registration.Registered = registeredAtTime 65 65 - registrations = append(registrations, registration) 88 88 + return nil, err 66 89 } 67 67 - } 68 90 69 69 - return registrations, nil 70 70 - } 71 71 - 72 72 - // returns registered status, did of owner, error 73 73 - func RegistrationByDomain(e Execer, domain string) (*Registration, error) { 74 74 - var createdAt *string 75 75 - var registeredAt *string 76 76 - var registration Registration 91 91 + if t, err := time.Parse(time.RFC3339, createdAt); err == nil { 92 92 + reg.Created = &t 93 93 + } 77 94 78 78 - err := e.QueryRow(` 79 79 - select id, domain, did, created, registered from registrations 80 80 - where domain = ? 81 81 - `, domain).Scan(&registration.Id, &registration.Domain, &registration.ByDid, &createdAt, &registeredAt) 95 95 + if registeredAt.Valid { 96 96 + if t, err := time.Parse(time.RFC3339, registeredAt.V); err == nil { 97 97 + reg.Registered = &t 98 98 + } 99 99 + } 82 100 83 83 - if err != nil { 84 84 - if err == sql.ErrNoRows { 85 85 - return nil, nil 86 86 - } else { 87 87 - return nil, err 101 101 + if needsUpgrade != 0 { 102 102 + reg.NeedsUpgrade = true 88 103 } 89 89 - } 90 104 91 91 - createdAtTime, _ := time.Parse(time.RFC3339, *createdAt) 92 92 - var registeredAtTime *time.Time 93 93 - if registeredAt != nil { 94 94 - x, _ := time.Parse(time.RFC3339, *registeredAt) 95 95 - registeredAtTime = &x 105 105 + registrations = append(registrations, reg) 96 106 } 97 107 98 98 - registration.Created = &createdAtTime 99 99 - registration.Registered = registeredAtTime 100 100 - 101 101 - return &registration, nil 102 102 - } 103 103 - 104 104 - func genSecret() string { 105 105 - key := make([]byte, 32) 106 106 - rand.Read(key) 107 107 - return hex.EncodeToString(key) 108 108 + return registrations, nil 108 109 } 109 110 110 110 - func GenerateRegistrationKey(e Execer, domain, did string) (string, error) { 111 111 - // sanity check: does this domain already have a registration? 112 112 - reg, err := RegistrationByDomain(e, domain) 113 113 - if err != nil { 114 114 - return "", err 115 115 - } 116 116 - 117 117 - // registration is open 118 118 - if reg != nil { 119 119 - switch reg.Status() { 120 120 - case Registered: 121 121 - // already registered by `owner` 122 122 - return "", fmt.Errorf("%s already registered by %s", domain, reg.ByDid) 123 123 - case Pending: 124 124 - // TODO: be loud about this 125 125 - log.Printf("%s registered by %s, status pending", domain, reg.ByDid) 126 126 - } 111 111 + func MarkRegistered(e Execer, filters ...filter) error { 112 112 + var conditions []string 113 113 + var args []any 114 114 + for _, filter := range filters { 115 115 + conditions = append(conditions, filter.Condition()) 116 116 + args = append(args, filter.Arg()...) 127 117 } 128 118 129 129 - secret := genSecret() 130 130 - 131 131 - _, err = e.Exec(` 132 132 - insert into registrations (domain, did, secret) 133 133 - values (?, ?, ?) 134 134 - on conflict(domain) do update set did = excluded.did, secret = excluded.secret, created = excluded.created 135 135 - `, domain, did, secret) 136 136 - 137 137 - if err != nil { 138 138 - return "", err 119 119 + query := "update registrations set registered = strftime('%Y-%m-%dT%H:%M:%SZ', 'now'), needs_upgrade = 0" 120 120 + if len(conditions) > 0 { 121 121 + query += " where " + strings.Join(conditions, " and ") 139 122 } 140 123 141 141 - return secret, nil 124 124 + _, err := e.Exec(query, args...) 125 125 + return err 142 126 } 143 127 144 144 - func GetRegistrationKey(e Execer, domain string) (string, error) { 145 145 - res := e.QueryRow(`select secret from registrations where domain = ?`, domain) 146 146 - 147 147 - var secret string 148 148 - err := res.Scan(&secret) 149 149 - if err != nil || secret == "" { 150 150 - return "", err 151 151 - } 152 152 - 153 153 - return secret, nil 128 128 + func AddKnot(e Execer, domain, did string) error { 129 129 + _, err := e.Exec(` 130 130 + insert into registrations (domain, did) 131 131 + values (?, ?) 132 132 + `, domain, did) 133 133 + return err 154 134 } 155 135 156 156 - func GetCompletedRegistrations(e Execer) ([]string, error) { 157 157 - rows, err := e.Query(`select domain from registrations where registered not null`) 158 158 - if err != nil { 159 159 - return nil, err 160 160 - } 161 161 - 162 162 - var domains []string 163 163 - for rows.Next() { 164 164 - var domain string 165 165 - err = rows.Scan(&domain) 166 166 - 167 167 - if err != nil { 168 168 - log.Println(err) 169 169 - } else { 170 170 - domains = append(domains, domain) 171 171 - } 136 136 + func DeleteKnot(e Execer, filters ...filter) error { 137 137 + var conditions []string 138 138 + var args []any 139 139 + for _, filter := range filters { 140 140 + conditions = append(conditions, filter.Condition()) 141 141 + args = append(args, filter.Arg()...) 172 142 } 173 143 174 174 - if err = rows.Err(); err != nil { 175 175 - return nil, err 144 144 + whereClause := "" 145 145 + if conditions != nil { 146 146 + whereClause = " where " + strings.Join(conditions, " and ") 176 147 } 177 148 178 178 - return domains, nil 179 179 - } 180 180 - 181 181 - func Register(e Execer, domain string) error { 182 182 - _, err := e.Exec(` 183 183 - update registrations 184 184 - set registered = strftime('%Y-%m-%dT%H:%M:%SZ', 'now') 185 185 - where domain = ?; 186 186 - `, domain) 149 149 + query := fmt.Sprintf(`delete from registrations %s`, whereClause) 187 150 151 151 + _, err := e.Exec(query, args...) 188 152 return err 189 153 }

+36 -174

appview/db/repos.go

··· 2 2 3 3 import ( 4 4 "database/sql" 5 5 + "errors" 5 6 "fmt" 6 7 "log" 7 8 "slices" ··· 19 20 Knot string 20 21 Rkey string 21 22 Created time.Time 22 22 - AtUri string 23 23 Description string 24 24 Spindle string 25 25 ··· 37 37 func (r Repo) DidSlashRepo() string { 38 38 p, _ := securejoin.SecureJoin(r.Did, r.Name) 39 39 return p 40 40 - } 41 41 - 42 42 - func GetAllRepos(e Execer, limit int) ([]Repo, error) { 43 43 - var repos []Repo 44 44 - 45 45 - rows, err := e.Query( 46 46 - `select did, name, knot, rkey, description, created, source 47 47 - from repos 48 48 - order by created desc 49 49 - limit ? 50 50 - `, 51 51 - limit, 52 52 - ) 53 53 - if err != nil { 54 54 - return nil, err 55 55 - } 56 56 - defer rows.Close() 57 57 - 58 58 - for rows.Next() { 59 59 - var repo Repo 60 60 - err := scanRepo( 61 61 - rows, &repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &repo.Description, &repo.Created, &repo.Source, 62 62 - ) 63 63 - if err != nil { 64 64 - return nil, err 65 65 - } 66 66 - repos = append(repos, repo) 67 67 - } 68 68 - 69 69 - if err := rows.Err(); err != nil { 70 70 - return nil, err 71 71 - } 72 72 - 73 73 - return repos, nil 74 40 } 75 41 76 42 func GetRepos(e Execer, limit int, filters ...filter) ([]Repo, error) { ··· 311 277 312 278 slices.SortFunc(repos, func(a, b Repo) int { 313 279 if a.Created.After(b.Created) { 314 314 - return 1 280 280 + return -1 315 281 } 316 316 - return -1 282 282 + return 1 317 283 }) 318 284 319 285 return repos, nil 320 286 } 321 287 322 322 - func GetAllReposByDid(e Execer, did string) ([]Repo, error) { 323 323 - var repos []Repo 324 324 - 325 325 - rows, err := e.Query( 326 326 - `select 327 327 - r.did, 328 328 - r.name, 329 329 - r.knot, 330 330 - r.rkey, 331 331 - r.description, 332 332 - r.created, 333 333 - count(s.id) as star_count, 334 334 - r.source 335 335 - from 336 336 - repos r 337 337 - left join 338 338 - stars s on r.at_uri = s.repo_at 339 339 - where 340 340 - r.did = ? 341 341 - group by 342 342 - r.at_uri 343 343 - order by r.created desc`, 344 344 - did) 345 345 - if err != nil { 346 346 - return nil, err 288 288 + func CountRepos(e Execer, filters ...filter) (int64, error) { 289 289 + var conditions []string 290 290 + var args []any 291 291 + for _, filter := range filters { 292 292 + conditions = append(conditions, filter.Condition()) 293 293 + args = append(args, filter.Arg()...) 347 294 } 348 348 - defer rows.Close() 349 349 - 350 350 - for rows.Next() { 351 351 - var repo Repo 352 352 - var repoStats RepoStats 353 353 - var createdAt string 354 354 - var nullableDescription sql.NullString 355 355 - var nullableSource sql.NullString 356 356 - 357 357 - err := rows.Scan(&repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &nullableDescription, &createdAt, &repoStats.StarCount, &nullableSource) 358 358 - if err != nil { 359 359 - return nil, err 360 360 - } 361 361 - 362 362 - if nullableDescription.Valid { 363 363 - repo.Description = nullableDescription.String 364 364 - } 365 295 366 366 - if nullableSource.Valid { 367 367 - repo.Source = nullableSource.String 368 368 - } 369 369 - 370 370 - createdAtTime, err := time.Parse(time.RFC3339, createdAt) 371 371 - if err != nil { 372 372 - repo.Created = time.Now() 373 373 - } else { 374 374 - repo.Created = createdAtTime 375 375 - } 376 376 - 377 377 - repo.RepoStats = &repoStats 378 378 - 379 379 - repos = append(repos, repo) 296 296 + whereClause := "" 297 297 + if conditions != nil { 298 298 + whereClause = " where " + strings.Join(conditions, " and ") 380 299 } 381 300 382 382 - if err := rows.Err(); err != nil { 383 383 - return nil, err 301 301 + repoQuery := fmt.Sprintf(`select count(1) from repos %s`, whereClause) 302 302 + var count int64 303 303 + err := e.QueryRow(repoQuery, args...).Scan(&count) 304 304 + 305 305 + if !errors.Is(err, sql.ErrNoRows) && err != nil { 306 306 + return 0, err 384 307 } 385 308 386 386 - return repos, nil 309 309 + return count, nil 387 310 } 388 311 389 312 func GetRepo(e Execer, did, name string) (*Repo, error) { ··· 391 314 var description, spindle sql.NullString 392 315 393 316 row := e.QueryRow(` 394 394 - select did, name, knot, created, at_uri, description, spindle 317 317 + select did, name, knot, created, description, spindle, rkey 395 318 from repos 396 319 where did = ? and name = ? 397 320 `, ··· 400 323 ) 401 324 402 325 var createdAt string 403 403 - if err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &createdAt, &repo.AtUri, &description, &spindle); err != nil { 326 326 + if err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &createdAt, &description, &spindle, &repo.Rkey); err != nil { 404 327 return nil, err 405 328 } 406 329 createdAtTime, _ := time.Parse(time.RFC3339, createdAt) ··· 421 344 var repo Repo 422 345 var nullableDescription sql.NullString 423 346 424 424 - row := e.QueryRow(`select did, name, knot, created, at_uri, description from repos where at_uri = ?`, atUri) 347 347 + row := e.QueryRow(`select did, name, knot, created, rkey, description from repos where at_uri = ?`, atUri) 425 348 426 349 var createdAt string 427 427 - if err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &createdAt, &repo.AtUri, &nullableDescription); err != nil { 350 350 + if err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &createdAt, &repo.Rkey, &nullableDescription); err != nil { 428 351 return nil, err 429 352 } 430 353 createdAtTime, _ := time.Parse(time.RFC3339, createdAt) ··· 444 367 `insert into repos 445 368 (did, name, knot, rkey, at_uri, description, source) 446 369 values (?, ?, ?, ?, ?, ?, ?)`, 447 447 - repo.Did, repo.Name, repo.Knot, repo.Rkey, repo.AtUri, repo.Description, repo.Source, 370 370 + repo.Did, repo.Name, repo.Knot, repo.Rkey, repo.RepoAt().String(), repo.Description, repo.Source, 448 371 ) 449 372 return err 450 373 } ··· 467 390 var repos []Repo 468 391 469 392 rows, err := e.Query( 470 470 - `select did, name, knot, rkey, description, created, at_uri, source 471 471 - from repos 472 472 - where did = ? and source is not null and source != '' 473 473 - order by created desc`, 474 474 - did, 393 393 + `select distinct r.did, r.name, r.knot, r.rkey, r.description, r.created, r.source 394 394 + from repos r 395 395 + left join collaborators c on r.at_uri = c.repo_at 396 396 + where (r.did = ? or c.subject_did = ?) 397 397 + and r.source is not null 398 398 + and r.source != '' 399 399 + order by r.created desc`, 400 400 + did, did, 475 401 ) 476 402 if err != nil { 477 403 return nil, err ··· 484 410 var nullableDescription sql.NullString 485 411 var nullableSource sql.NullString 486 412 487 487 - err := rows.Scan(&repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &nullableDescription, &createdAt, &repo.AtUri, &nullableSource) 413 413 + err := rows.Scan(&repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &nullableDescription, &createdAt, &nullableSource) 488 414 if err != nil { 489 415 return nil, err 490 416 } ··· 521 447 var nullableSource sql.NullString 522 448 523 449 row := e.QueryRow( 524 524 - `select did, name, knot, rkey, description, created, at_uri, source 450 450 + `select did, name, knot, rkey, description, created, source 525 451 from repos 526 452 where did = ? and name = ? and source is not null and source != ''`, 527 453 did, name, 528 454 ) 529 455 530 530 - err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &nullableDescription, &createdAt, &repo.AtUri, &nullableSource) 456 456 + err := row.Scan(&repo.Did, &repo.Name, &repo.Knot, &repo.Rkey, &nullableDescription, &createdAt, &nullableSource) 531 457 if err != nil { 532 458 return nil, err 533 459 } ··· 550 476 return &repo, nil 551 477 } 552 478 553 553 - func AddCollaborator(e Execer, collaborator, repoOwnerDid, repoName, repoKnot string) error { 554 554 - _, err := e.Exec( 555 555 - `insert into collaborators (did, repo) 556 556 - values (?, (select id from repos where did = ? and name = ? and knot = ?));`, 557 557 - collaborator, repoOwnerDid, repoName, repoKnot) 558 558 - return err 559 559 - } 560 560 - 561 479 func UpdateDescription(e Execer, repoAt, newDescription string) error { 562 480 _, err := e.Exec( 563 481 `update repos set description = ? where at_uri = ?`, newDescription, repoAt) 564 482 return err 565 483 } 566 484 567 567 - func UpdateSpindle(e Execer, repoAt, spindle string) error { 485 485 + func UpdateSpindle(e Execer, repoAt string, spindle *string) error { 568 486 _, err := e.Exec( 569 487 `update repos set spindle = ? where at_uri = ?`, spindle, repoAt) 570 488 return err 571 489 } 572 490 573 573 - func CollaboratingIn(e Execer, collaborator string) ([]Repo, error) { 574 574 - rows, err := e.Query(`select repo from collaborators where did = ?`, collaborator) 575 575 - if err != nil { 576 576 - return nil, err 577 577 - } 578 578 - defer rows.Close() 579 579 - 580 580 - var repoIds []int 581 581 - for rows.Next() { 582 582 - var id int 583 583 - err := rows.Scan(&id) 584 584 - if err != nil { 585 585 - return nil, err 586 586 - } 587 587 - repoIds = append(repoIds, id) 588 588 - } 589 589 - if err := rows.Err(); err != nil { 590 590 - return nil, err 591 591 - } 592 592 - if repoIds == nil { 593 593 - return nil, nil 594 594 - } 595 595 - 596 596 - return GetRepos(e, 0, FilterIn("id", repoIds)) 597 597 - } 598 598 - 599 491 type RepoStats struct { 600 492 Language string 601 493 StarCount int 602 494 IssueCount IssueCount 603 495 PullCount PullCount 604 496 } 605 605 - 606 606 - func scanRepo(rows *sql.Rows, did, name, knot, rkey, description *string, created *time.Time, source *string) error { 607 607 - var createdAt string 608 608 - var nullableDescription sql.NullString 609 609 - var nullableSource sql.NullString 610 610 - if err := rows.Scan(did, name, knot, rkey, &nullableDescription, &createdAt, &nullableSource); err != nil { 611 611 - return err 612 612 - } 613 613 - 614 614 - if nullableDescription.Valid { 615 615 - *description = nullableDescription.String 616 616 - } else { 617 617 - *description = "" 618 618 - } 619 619 - 620 620 - createdAtTime, err := time.Parse(time.RFC3339, createdAt) 621 621 - if err != nil { 622 622 - *created = time.Now() 623 623 - } else { 624 624 - *created = createdAtTime 625 625 - } 626 626 - 627 627 - if nullableSource.Valid { 628 628 - *source = nullableSource.String 629 629 - } else { 630 630 - *source = "" 631 631 - } 632 632 - 633 633 - return nil 634 634 - }

+29

appview/db/signup.go

··· 1 1 + package db 2 2 + 3 3 + import "time" 4 4 + 5 5 + type InflightSignup struct { 6 6 + Id int64 7 7 + Email string 8 8 + InviteCode string 9 9 + Created time.Time 10 10 + } 11 11 + 12 12 + func AddInflightSignup(e Execer, signup InflightSignup) error { 13 13 + query := `insert into signups_inflight (email, invite_code) values (?, ?)` 14 14 + _, err := e.Exec(query, signup.Email, signup.InviteCode) 15 15 + return err 16 16 + } 17 17 + 18 18 + func DeleteInflightSignup(e Execer, email string) error { 19 19 + query := `delete from signups_inflight where email = ?` 20 20 + _, err := e.Exec(query, email) 21 21 + return err 22 22 + } 23 23 + 24 24 + func GetEmailForCode(e Execer, inviteCode string) (string, error) { 25 25 + query := `select email from signups_inflight where invite_code = ?` 26 26 + var email string 27 27 + err := e.QueryRow(query, inviteCode).Scan(&email) 28 28 + return email, err 29 29 + }

+14 -7

appview/db/spindle.go

··· 10 10 ) 11 11 12 12 type Spindle struct { 13 13 - Id int 14 14 - Owner syntax.DID 15 15 - Instance string 16 16 - Verified *time.Time 17 17 - Created time.Time 13 13 + Id int 14 14 + Owner syntax.DID 15 15 + Instance string 16 16 + Verified *time.Time 17 17 + Created time.Time 18 18 + NeedsUpgrade bool 18 19 } 19 20 20 21 type SpindleMember struct { ··· 42 43 } 43 44 44 45 query := fmt.Sprintf( 45 45 - `select id, owner, instance, verified, created 46 46 + `select id, owner, instance, verified, created, needs_upgrade 46 47 from spindles 47 48 %s 48 49 order by created ··· 61 62 var spindle Spindle 62 63 var createdAt string 63 64 var verified sql.NullString 65 65 + var needsUpgrade int 64 66 65 67 if err := rows.Scan( 66 68 &spindle.Id, ··· 68 70 &spindle.Instance, 69 71 &verified, 70 72 &createdAt, 73 73 + &needsUpgrade, 71 74 ); err != nil { 72 75 return nil, err 73 76 } ··· 86 89 spindle.Verified = &t 87 90 } 88 91 92 92 + if needsUpgrade != 0 { 93 93 + spindle.NeedsUpgrade = true 94 94 + } 95 95 + 89 96 spindles = append(spindles, spindle) 90 97 } 91 98 ··· 115 122 whereClause = " where " + strings.Join(conditions, " and ") 116 123 } 117 124 118 118 - query := fmt.Sprintf(`update spindles set verified = strftime('%%Y-%%m-%%dT%%H:%%M:%%SZ', 'now') %s`, whereClause) 125 125 + query := fmt.Sprintf(`update spindles set verified = strftime('%%Y-%%m-%%dT%%H:%%M:%%SZ', 'now'), needs_upgrade = 0 %s`, whereClause) 119 126 120 127 res, err := e.Exec(query, args...) 121 128 if err != nil {

+100 -6

appview/db/star.go

··· 1 1 package db 2 2 3 3 import ( 4 4 + "database/sql" 5 5 + "errors" 4 6 "fmt" 5 7 "log" 6 8 "strings" ··· 47 49 // Get a star record 48 50 func GetStar(e Execer, starredByDid string, repoAt syntax.ATURI) (*Star, error) { 49 51 query := ` 50 50 - select starred_by_did, repo_at, created, rkey 52 52 + select starred_by_did, repo_at, created, rkey 51 53 from stars 52 54 where starred_by_did = ? and repo_at = ?` 53 55 row := e.QueryRow(query, starredByDid, repoAt) ··· 119 121 } 120 122 121 123 repoQuery := fmt.Sprintf( 122 122 - `select starred_by_did, repo_at, created, rkey 124 124 + `select starred_by_did, repo_at, created, rkey 123 125 from stars 124 126 %s 125 127 order by created desc ··· 183 185 return stars, nil 184 186 } 185 187 188 188 + func CountStars(e Execer, filters ...filter) (int64, error) { 189 189 + var conditions []string 190 190 + var args []any 191 191 + for _, filter := range filters { 192 192 + conditions = append(conditions, filter.Condition()) 193 193 + args = append(args, filter.Arg()...) 194 194 + } 195 195 + 196 196 + whereClause := "" 197 197 + if conditions != nil { 198 198 + whereClause = " where " + strings.Join(conditions, " and ") 199 199 + } 200 200 + 201 201 + repoQuery := fmt.Sprintf(`select count(1) from stars %s`, whereClause) 202 202 + var count int64 203 203 + err := e.QueryRow(repoQuery, args...).Scan(&count) 204 204 + 205 205 + if !errors.Is(err, sql.ErrNoRows) && err != nil { 206 206 + return 0, err 207 207 + } 208 208 + 209 209 + return count, nil 210 210 + } 211 211 + 186 212 func GetAllStars(e Execer, limit int) ([]Star, error) { 187 213 var stars []Star 188 214 189 215 rows, err := e.Query(` 190 190 - select 216 216 + select 191 217 s.starred_by_did, 192 218 s.repo_at, 193 219 s.rkey, ··· 196 222 r.name, 197 223 r.knot, 198 224 r.rkey, 199 199 - r.created, 200 200 - r.at_uri 225 225 + r.created 201 226 from stars s 202 227 join repos r on s.repo_at = r.at_uri 203 228 `) ··· 222 247 &repo.Knot, 223 248 &repo.Rkey, 224 249 &repoCreatedAt, 225 225 - &repo.AtUri, 226 250 ); err != nil { 227 251 return nil, err 228 252 } ··· 246 270 247 271 return stars, nil 248 272 } 273 273 + 274 274 + // GetTopStarredReposLastWeek returns the top 8 most starred repositories from the last week 275 275 + func GetTopStarredReposLastWeek(e Execer) ([]Repo, error) { 276 276 + // first, get the top repo URIs by star count from the last week 277 277 + query := ` 278 278 + with recent_starred_repos as ( 279 279 + select distinct repo_at 280 280 + from stars 281 281 + where created >= datetime('now', '-7 days') 282 282 + ), 283 283 + repo_star_counts as ( 284 284 + select 285 285 + s.repo_at, 286 286 + count(*) as stars_gained_last_week 287 287 + from stars s 288 288 + join recent_starred_repos rsr on s.repo_at = rsr.repo_at 289 289 + where s.created >= datetime('now', '-7 days') 290 290 + group by s.repo_at 291 291 + ) 292 292 + select rsc.repo_at 293 293 + from repo_star_counts rsc 294 294 + order by rsc.stars_gained_last_week desc 295 295 + limit 8 296 296 + ` 297 297 + 298 298 + rows, err := e.Query(query) 299 299 + if err != nil { 300 300 + return nil, err 301 301 + } 302 302 + defer rows.Close() 303 303 + 304 304 + var repoUris []string 305 305 + for rows.Next() { 306 306 + var repoUri string 307 307 + err := rows.Scan(&repoUri) 308 308 + if err != nil { 309 309 + return nil, err 310 310 + } 311 311 + repoUris = append(repoUris, repoUri) 312 312 + } 313 313 + 314 314 + if err := rows.Err(); err != nil { 315 315 + return nil, err 316 316 + } 317 317 + 318 318 + if len(repoUris) == 0 { 319 319 + return []Repo{}, nil 320 320 + } 321 321 + 322 322 + // get full repo data 323 323 + repos, err := GetRepos(e, 0, FilterIn("at_uri", repoUris)) 324 324 + if err != nil { 325 325 + return nil, err 326 326 + } 327 327 + 328 328 + // sort repos by the original trending order 329 329 + repoMap := make(map[string]Repo) 330 330 + for _, repo := range repos { 331 331 + repoMap[repo.RepoAt().String()] = repo 332 332 + } 333 333 + 334 334 + orderedRepos := make([]Repo, 0, len(repoUris)) 335 335 + for _, uri := range repoUris { 336 336 + if repo, exists := repoMap[uri]; exists { 337 337 + orderedRepos = append(orderedRepos, repo) 338 338 + } 339 339 + } 340 340 + 341 341 + return orderedRepos, nil 342 342 + }

+276

appview/db/strings.go

··· 1 1 + package db 2 2 + 3 3 + import ( 4 4 + "bytes" 5 5 + "database/sql" 6 6 + "errors" 7 7 + "fmt" 8 8 + "io" 9 9 + "strings" 10 10 + "time" 11 11 + "unicode/utf8" 12 12 + 13 13 + "github.com/bluesky-social/indigo/atproto/syntax" 14 14 + "tangled.sh/tangled.sh/core/api/tangled" 15 15 + ) 16 16 + 17 17 + type String struct { 18 18 + Did syntax.DID 19 19 + Rkey string 20 20 + 21 21 + Filename string 22 22 + Description string 23 23 + Contents string 24 24 + Created time.Time 25 25 + Edited *time.Time 26 26 + } 27 27 + 28 28 + func (s *String) StringAt() syntax.ATURI { 29 29 + return syntax.ATURI(fmt.Sprintf("at://%s/%s/%s", s.Did, tangled.StringNSID, s.Rkey)) 30 30 + } 31 31 + 32 32 + type StringStats struct { 33 33 + LineCount uint64 34 34 + ByteCount uint64 35 35 + } 36 36 + 37 37 + func (s String) Stats() StringStats { 38 38 + lineCount, err := countLines(strings.NewReader(s.Contents)) 39 39 + if err != nil { 40 40 + // non-fatal 41 41 + // TODO: log this? 42 42 + } 43 43 + 44 44 + return StringStats{ 45 45 + LineCount: uint64(lineCount), 46 46 + ByteCount: uint64(len(s.Contents)), 47 47 + } 48 48 + } 49 49 + 50 50 + func (s String) Validate() error { 51 51 + var err error 52 52 + 53 53 + if utf8.RuneCountInString(s.Filename) > 140 { 54 54 + err = errors.Join(err, fmt.Errorf("filename too long")) 55 55 + } 56 56 + 57 57 + if utf8.RuneCountInString(s.Description) > 280 { 58 58 + err = errors.Join(err, fmt.Errorf("description too long")) 59 59 + } 60 60 + 61 61 + if len(s.Contents) == 0 { 62 62 + err = errors.Join(err, fmt.Errorf("contents is empty")) 63 63 + } 64 64 + 65 65 + return err 66 66 + } 67 67 + 68 68 + func (s *String) AsRecord() tangled.String { 69 69 + return tangled.String{ 70 70 + Filename: s.Filename, 71 71 + Description: s.Description, 72 72 + Contents: s.Contents, 73 73 + CreatedAt: s.Created.Format(time.RFC3339), 74 74 + } 75 75 + } 76 76 + 77 77 + func StringFromRecord(did, rkey string, record tangled.String) String { 78 78 + created, err := time.Parse(record.CreatedAt, time.RFC3339) 79 79 + if err != nil { 80 80 + created = time.Now() 81 81 + } 82 82 + return String{ 83 83 + Did: syntax.DID(did), 84 84 + Rkey: rkey, 85 85 + Filename: record.Filename, 86 86 + Description: record.Description, 87 87 + Contents: record.Contents, 88 88 + Created: created, 89 89 + } 90 90 + } 91 91 + 92 92 + func AddString(e Execer, s String) error { 93 93 + _, err := e.Exec( 94 94 + `insert into strings ( 95 95 + did, 96 96 + rkey, 97 97 + filename, 98 98 + description, 99 99 + content, 100 100 + created, 101 101 + edited 102 102 + ) 103 103 + values (?, ?, ?, ?, ?, ?, null) 104 104 + on conflict(did, rkey) do update set 105 105 + filename = excluded.filename, 106 106 + description = excluded.description, 107 107 + content = excluded.content, 108 108 + edited = case 109 109 + when 110 110 + strings.content != excluded.content 111 111 + or strings.filename != excluded.filename 112 112 + or strings.description != excluded.description then ? 113 113 + else strings.edited 114 114 + end`, 115 115 + s.Did, 116 116 + s.Rkey, 117 117 + s.Filename, 118 118 + s.Description, 119 119 + s.Contents, 120 120 + s.Created.Format(time.RFC3339), 121 121 + time.Now().Format(time.RFC3339), 122 122 + ) 123 123 + return err 124 124 + } 125 125 + 126 126 + func GetStrings(e Execer, limit int, filters ...filter) ([]String, error) { 127 127 + var all []String 128 128 + 129 129 + var conditions []string 130 130 + var args []any 131 131 + for _, filter := range filters { 132 132 + conditions = append(conditions, filter.Condition()) 133 133 + args = append(args, filter.Arg()...) 134 134 + } 135 135 + 136 136 + whereClause := "" 137 137 + if conditions != nil { 138 138 + whereClause = " where " + strings.Join(conditions, " and ") 139 139 + } 140 140 + 141 141 + limitClause := "" 142 142 + if limit != 0 { 143 143 + limitClause = fmt.Sprintf(" limit %d ", limit) 144 144 + } 145 145 + 146 146 + query := fmt.Sprintf(`select 147 147 + did, 148 148 + rkey, 149 149 + filename, 150 150 + description, 151 151 + content, 152 152 + created, 153 153 + edited 154 154 + from strings 155 155 + %s 156 156 + order by created desc 157 157 + %s`, 158 158 + whereClause, 159 159 + limitClause, 160 160 + ) 161 161 + 162 162 + rows, err := e.Query(query, args...) 163 163 + 164 164 + if err != nil { 165 165 + return nil, err 166 166 + } 167 167 + defer rows.Close() 168 168 + 169 169 + for rows.Next() { 170 170 + var s String 171 171 + var createdAt string 172 172 + var editedAt sql.NullString 173 173 + 174 174 + if err := rows.Scan( 175 175 + &s.Did, 176 176 + &s.Rkey, 177 177 + &s.Filename, 178 178 + &s.Description, 179 179 + &s.Contents, 180 180 + &createdAt, 181 181 + &editedAt, 182 182 + ); err != nil { 183 183 + return nil, err 184 184 + } 185 185 + 186 186 + s.Created, err = time.Parse(time.RFC3339, createdAt) 187 187 + if err != nil { 188 188 + s.Created = time.Now() 189 189 + } 190 190 + 191 191 + if editedAt.Valid { 192 192 + e, err := time.Parse(time.RFC3339, editedAt.String) 193 193 + if err != nil { 194 194 + e = time.Now() 195 195 + } 196 196 + s.Edited = &e 197 197 + } 198 198 + 199 199 + all = append(all, s) 200 200 + } 201 201 + 202 202 + if err := rows.Err(); err != nil { 203 203 + return nil, err 204 204 + } 205 205 + 206 206 + return all, nil 207 207 + } 208 208 + 209 209 + func CountStrings(e Execer, filters ...filter) (int64, error) { 210 210 + var conditions []string 211 211 + var args []any 212 212 + for _, filter := range filters { 213 213 + conditions = append(conditions, filter.Condition()) 214 214 + args = append(args, filter.Arg()...) 215 215 + } 216 216 + 217 217 + whereClause := "" 218 218 + if conditions != nil { 219 219 + whereClause = " where " + strings.Join(conditions, " and ") 220 220 + } 221 221 + 222 222 + repoQuery := fmt.Sprintf(`select count(1) from strings %s`, whereClause) 223 223 + var count int64 224 224 + err := e.QueryRow(repoQuery, args...).Scan(&count) 225 225 + 226 226 + if !errors.Is(err, sql.ErrNoRows) && err != nil { 227 227 + return 0, err 228 228 + } 229 229 + 230 230 + return count, nil 231 231 + } 232 232 + 233 233 + func DeleteString(e Execer, filters ...filter) error { 234 234 + var conditions []string 235 235 + var args []any 236 236 + for _, filter := range filters { 237 237 + conditions = append(conditions, filter.Condition()) 238 238 + args = append(args, filter.Arg()...) 239 239 + } 240 240 + 241 241 + whereClause := "" 242 242 + if conditions != nil { 243 243 + whereClause = " where " + strings.Join(conditions, " and ") 244 244 + } 245 245 + 246 246 + query := fmt.Sprintf(`delete from strings %s`, whereClause) 247 247 + 248 248 + _, err := e.Exec(query, args...) 249 249 + return err 250 250 + } 251 251 + 252 252 + func countLines(r io.Reader) (int, error) { 253 253 + buf := make([]byte, 32*1024) 254 254 + bufLen := 0 255 255 + count := 0 256 256 + nl := []byte{'\n'} 257 257 + 258 258 + for { 259 259 + c, err := r.Read(buf) 260 260 + if c > 0 { 261 261 + bufLen += c 262 262 + } 263 263 + count += bytes.Count(buf[:c], nl) 264 264 + 265 265 + switch { 266 266 + case err == io.EOF: 267 267 + /* handle last line not having a newline at the end */ 268 268 + if bufLen >= 1 && buf[(bufLen-1)%(32*1024)] != '\n' { 269 269 + count++ 270 270 + } 271 271 + return count, nil 272 272 + case err != nil: 273 273 + return 0, err 274 274 + } 275 275 + } 276 276 + }

+17 -35

appview/db/timeline.go

··· 20 20 *FollowStats 21 21 } 22 22 23 23 - type FollowStats struct { 24 24 - Followers int 25 25 - Following int 26 26 - } 27 27 - 28 28 - const Limit = 50 29 29 - 30 23 // TODO: this gathers heterogenous events from different sources and aggregates 31 24 // them in code; if we did this entirely in sql, we could order and limit and paginate easily 32 32 - func MakeTimeline(e Execer) ([]TimelineEvent, error) { 25 25 + func MakeTimeline(e Execer, limit int) ([]TimelineEvent, error) { 33 26 var events []TimelineEvent 34 27 35 35 - repos, err := getTimelineRepos(e) 28 28 + repos, err := getTimelineRepos(e, limit) 36 29 if err != nil { 37 30 return nil, err 38 31 } 39 32 40 40 - stars, err := getTimelineStars(e) 33 33 + stars, err := getTimelineStars(e, limit) 41 34 if err != nil { 42 35 return nil, err 43 36 } 44 37 45 45 - follows, err := getTimelineFollows(e) 38 38 + follows, err := getTimelineFollows(e, limit) 46 39 if err != nil { 47 40 return nil, err 48 41 } ··· 56 49 }) 57 50 58 51 // Limit the slice to 100 events 59 59 - if len(events) > Limit { 60 60 - events = events[:Limit] 52 52 + if len(events) > limit { 53 53 + events = events[:limit] 61 54 } 62 55 63 56 return events, nil 64 57 } 65 58 66 66 - func getTimelineRepos(e Execer) ([]TimelineEvent, error) { 67 67 - repos, err := GetRepos(e, Limit) 59 59 + func getTimelineRepos(e Execer, limit int) ([]TimelineEvent, error) { 60 60 + repos, err := GetRepos(e, limit) 68 61 if err != nil { 69 62 return nil, err 70 63 } ··· 109 102 return events, nil 110 103 } 111 104 112 112 - func getTimelineStars(e Execer) ([]TimelineEvent, error) { 113 113 - stars, err := GetStars(e, Limit) 105 105 + func getTimelineStars(e Execer, limit int) ([]TimelineEvent, error) { 106 106 + stars, err := GetStars(e, limit) 114 107 if err != nil { 115 108 return nil, err 116 109 } ··· 136 129 return events, nil 137 130 } 138 131 139 139 - func getTimelineFollows(e Execer) ([]TimelineEvent, error) { 140 140 - follows, err := GetAllFollows(e, Limit) 132 132 + func getTimelineFollows(e Execer, limit int) ([]TimelineEvent, error) { 133 133 + follows, err := GetFollows(e, limit) 141 134 if err != nil { 142 135 return nil, err 143 136 } ··· 151 144 return nil, nil 152 145 } 153 146 154 154 - profileMap := make(map[string]Profile) 155 147 profiles, err := GetProfiles(e, FilterIn("did", subjects)) 156 148 if err != nil { 157 149 return nil, err 158 150 } 159 159 - for _, p := range profiles { 160 160 - profileMap[p.Did] = p 161 161 - } 162 151 163 163 - followStatMap := make(map[string]FollowStats) 164 164 - for _, s := range subjects { 165 165 - followers, following, err := GetFollowerFollowing(e, s) 166 166 - if err != nil { 167 167 - return nil, err 168 168 - } 169 169 - followStatMap[s] = FollowStats{ 170 170 - Followers: followers, 171 171 - Following: following, 172 172 - } 152 152 + followStatMap, err := GetFollowerFollowingCounts(e, subjects) 153 153 + if err != nil { 154 154 + return nil, err 173 155 } 174 156 175 157 var events []TimelineEvent 176 158 for _, f := range follows { 177 177 - profile, _ := profileMap[f.SubjectDid] 159 159 + profile, _ := profiles[f.SubjectDid] 178 160 followStatMap, _ := followStatMap[f.SubjectDid] 179 161 180 162 events = append(events, TimelineEvent{ 181 163 Follow: &f, 182 182 - Profile: &profile, 164 164 + Profile: profile, 183 165 FollowStats: &followStatMap, 184 166 EventAt: f.FollowedAt, 185 167 })

+53

appview/dns/cloudflare.go

··· 1 1 + package dns 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "fmt" 6 6 + 7 7 + "github.com/cloudflare/cloudflare-go" 8 8 + "tangled.sh/tangled.sh/core/appview/config" 9 9 + ) 10 10 + 11 11 + type Record struct { 12 12 + Type string 13 13 + Name string 14 14 + Content string 15 15 + TTL int 16 16 + Proxied bool 17 17 + } 18 18 + 19 19 + type Cloudflare struct { 20 20 + api *cloudflare.API 21 21 + zone string 22 22 + } 23 23 + 24 24 + func NewCloudflare(c *config.Config) (*Cloudflare, error) { 25 25 + apiToken := c.Cloudflare.ApiToken 26 26 + api, err := cloudflare.NewWithAPIToken(apiToken) 27 27 + if err != nil { 28 28 + return nil, err 29 29 + } 30 30 + return &Cloudflare{api: api, zone: c.Cloudflare.ZoneId}, nil 31 31 + } 32 32 + 33 33 + func (cf *Cloudflare) CreateDNSRecord(ctx context.Context, record Record) error { 34 34 + _, err := cf.api.CreateDNSRecord(ctx, cloudflare.ZoneIdentifier(cf.zone), cloudflare.CreateDNSRecordParams{ 35 35 + Type: record.Type, 36 36 + Name: record.Name, 37 37 + Content: record.Content, 38 38 + TTL: record.TTL, 39 39 + Proxied: &record.Proxied, 40 40 + }) 41 41 + if err != nil { 42 42 + return fmt.Errorf("failed to create DNS record: %w", err) 43 43 + } 44 44 + return nil 45 45 + } 46 46 + 47 47 + func (cf *Cloudflare) DeleteDNSRecord(ctx context.Context, recordID string) error { 48 48 + err := cf.api.DeleteDNSRecord(ctx, cloudflare.ZoneIdentifier(cf.zone), recordID) 49 49 + if err != nil { 50 50 + return fmt.Errorf("failed to delete DNS record: %w", err) 51 51 + } 52 52 + return nil 53 53 + }

+357 -10

appview/ingester.go

··· 5 5 "encoding/json" 6 6 "fmt" 7 7 "log/slog" 8 8 + 8 9 "time" 9 10 10 11 "github.com/bluesky-social/indigo/atproto/syntax" ··· 14 15 "tangled.sh/tangled.sh/core/api/tangled" 15 16 "tangled.sh/tangled.sh/core/appview/config" 16 17 "tangled.sh/tangled.sh/core/appview/db" 17 17 - "tangled.sh/tangled.sh/core/appview/spindleverify" 18 18 + "tangled.sh/tangled.sh/core/appview/serververify" 19 19 + "tangled.sh/tangled.sh/core/appview/validator" 18 20 "tangled.sh/tangled.sh/core/idresolver" 19 21 "tangled.sh/tangled.sh/core/rbac" 20 22 ) ··· 25 27 IdResolver *idresolver.Resolver 26 28 Config *config.Config 27 29 Logger *slog.Logger 30 30 + Validator *validator.Validator 28 31 } 29 32 30 33 type processFunc func(ctx context.Context, e *models.Event) error ··· 61 64 case tangled.ActorProfileNSID: 62 65 err = i.ingestProfile(e) 63 66 case tangled.SpindleMemberNSID: 64 64 - err = i.ingestSpindleMember(e) 67 67 + err = i.ingestSpindleMember(ctx, e) 65 68 case tangled.SpindleNSID: 66 66 - err = i.ingestSpindle(e) 69 69 + err = i.ingestSpindle(ctx, e) 70 70 + case tangled.KnotMemberNSID: 71 71 + err = i.ingestKnotMember(e) 72 72 + case tangled.KnotNSID: 73 73 + err = i.ingestKnot(e) 74 74 + case tangled.StringNSID: 75 75 + err = i.ingestString(e) 76 76 + case tangled.RepoIssueNSID: 77 77 + err = i.ingestIssue(ctx, e) 78 78 + case tangled.RepoIssueCommentNSID: 79 79 + err = i.ingestIssueComment(e) 67 80 } 68 81 l = i.Logger.With("nsid", e.Commit.Collection) 69 82 } 70 83 71 84 if err != nil { 72 72 - l.Error("error ingesting record", "err", err) 85 85 + l.Debug("error ingesting record", "err", err) 73 86 } 74 87 75 75 - return err 88 88 + return nil 76 89 } 77 90 } 78 91 ··· 334 347 return nil 335 348 } 336 349 337 337 - func (i *Ingester) ingestSpindleMember(e *models.Event) error { 350 350 + func (i *Ingester) ingestSpindleMember(ctx context.Context, e *models.Event) error { 338 351 did := e.Did 339 352 var err error 340 353 ··· 357 370 return fmt.Errorf("failed to enforce permissions: %w", err) 358 371 } 359 372 360 360 - memberId, err := i.IdResolver.ResolveIdent(context.Background(), record.Subject) 373 373 + memberId, err := i.IdResolver.ResolveIdent(ctx, record.Subject) 361 374 if err != nil { 362 375 return err 363 376 } ··· 385 398 if err != nil { 386 399 return fmt.Errorf("failed to update ACLs: %w", err) 387 400 } 401 401 + 402 402 + l.Info("added spindle member") 388 403 case models.CommitOperationDelete: 389 404 rkey := e.Commit.RKey 390 405 ··· 431 446 if err = i.Enforcer.E.SavePolicy(); err != nil { 432 447 return fmt.Errorf("failed to save ACLs: %w", err) 433 448 } 449 449 + 450 450 + l.Info("removed spindle member") 434 451 } 435 452 436 453 return nil 437 454 } 438 455 439 439 - func (i *Ingester) ingestSpindle(e *models.Event) error { 456 456 + func (i *Ingester) ingestSpindle(ctx context.Context, e *models.Event) error { 440 457 did := e.Did 441 458 var err error 442 459 ··· 469 486 return err 470 487 } 471 488 472 472 - err = spindleverify.RunVerification(context.Background(), instance, did, i.Config.Core.Dev) 489 489 + err = serververify.RunVerification(ctx, instance, did, i.Config.Core.Dev) 473 490 if err != nil { 474 491 l.Error("failed to add spindle to db", "err", err, "instance", instance) 475 492 return err 476 493 } 477 494 478 478 - _, err = spindleverify.MarkVerified(ddb, i.Enforcer, instance, did) 495 495 + _, err = serververify.MarkSpindleVerified(ddb, i.Enforcer, instance, did) 479 496 if err != nil { 480 497 return fmt.Errorf("failed to mark verified: %w", err) 481 498 } ··· 549 566 550 567 return nil 551 568 } 569 569 + 570 570 + func (i *Ingester) ingestString(e *models.Event) error { 571 571 + did := e.Did 572 572 + rkey := e.Commit.RKey 573 573 + 574 574 + var err error 575 575 + 576 576 + l := i.Logger.With("handler", "ingestString", "nsid", e.Commit.Collection, "did", did, "rkey", rkey) 577 577 + l.Info("ingesting record") 578 578 + 579 579 + ddb, ok := i.Db.Execer.(*db.DB) 580 580 + if !ok { 581 581 + return fmt.Errorf("failed to index string record, invalid db cast") 582 582 + } 583 583 + 584 584 + switch e.Commit.Operation { 585 585 + case models.CommitOperationCreate, models.CommitOperationUpdate: 586 586 + raw := json.RawMessage(e.Commit.Record) 587 587 + record := tangled.String{} 588 588 + err = json.Unmarshal(raw, &record) 589 589 + if err != nil { 590 590 + l.Error("invalid record", "err", err) 591 591 + return err 592 592 + } 593 593 + 594 594 + string := db.StringFromRecord(did, rkey, record) 595 595 + 596 596 + if err = string.Validate(); err != nil { 597 597 + l.Error("invalid record", "err", err) 598 598 + return err 599 599 + } 600 600 + 601 601 + if err = db.AddString(ddb, string); err != nil { 602 602 + l.Error("failed to add string", "err", err) 603 603 + return err 604 604 + } 605 605 + 606 606 + return nil 607 607 + 608 608 + case models.CommitOperationDelete: 609 609 + if err := db.DeleteString( 610 610 + ddb, 611 611 + db.FilterEq("did", did), 612 612 + db.FilterEq("rkey", rkey), 613 613 + ); err != nil { 614 614 + l.Error("failed to delete", "err", err) 615 615 + return fmt.Errorf("failed to delete string record: %w", err) 616 616 + } 617 617 + 618 618 + return nil 619 619 + } 620 620 + 621 621 + return nil 622 622 + } 623 623 + 624 624 + func (i *Ingester) ingestKnotMember(e *models.Event) error { 625 625 + did := e.Did 626 626 + var err error 627 627 + 628 628 + l := i.Logger.With("handler", "ingestKnotMember") 629 629 + l = l.With("nsid", e.Commit.Collection) 630 630 + 631 631 + switch e.Commit.Operation { 632 632 + case models.CommitOperationCreate: 633 633 + raw := json.RawMessage(e.Commit.Record) 634 634 + record := tangled.KnotMember{} 635 635 + err = json.Unmarshal(raw, &record) 636 636 + if err != nil { 637 637 + l.Error("invalid record", "err", err) 638 638 + return err 639 639 + } 640 640 + 641 641 + // only knot owner can invite to knots 642 642 + ok, err := i.Enforcer.IsKnotInviteAllowed(did, record.Domain) 643 643 + if err != nil || !ok { 644 644 + return fmt.Errorf("failed to enforce permissions: %w", err) 645 645 + } 646 646 + 647 647 + memberId, err := i.IdResolver.ResolveIdent(context.Background(), record.Subject) 648 648 + if err != nil { 649 649 + return err 650 650 + } 651 651 + 652 652 + if memberId.Handle.IsInvalidHandle() { 653 653 + return err 654 654 + } 655 655 + 656 656 + err = i.Enforcer.AddKnotMember(record.Domain, memberId.DID.String()) 657 657 + if err != nil { 658 658 + return fmt.Errorf("failed to update ACLs: %w", err) 659 659 + } 660 660 + 661 661 + l.Info("added knot member") 662 662 + case models.CommitOperationDelete: 663 663 + // we don't store knot members in a table (like we do for spindle) 664 664 + // and we can't remove this just yet. possibly fixed if we switch 665 665 + // to either: 666 666 + // 1. a knot_members table like with spindle and store the rkey 667 667 + // 2. use the knot host as the rkey 668 668 + // 669 669 + // TODO: implement member deletion 670 670 + l.Info("skipping knot member delete", "did", did, "rkey", e.Commit.RKey) 671 671 + } 672 672 + 673 673 + return nil 674 674 + } 675 675 + 676 676 + func (i *Ingester) ingestKnot(e *models.Event) error { 677 677 + did := e.Did 678 678 + var err error 679 679 + 680 680 + l := i.Logger.With("handler", "ingestKnot") 681 681 + l = l.With("nsid", e.Commit.Collection) 682 682 + 683 683 + switch e.Commit.Operation { 684 684 + case models.CommitOperationCreate: 685 685 + raw := json.RawMessage(e.Commit.Record) 686 686 + record := tangled.Knot{} 687 687 + err = json.Unmarshal(raw, &record) 688 688 + if err != nil { 689 689 + l.Error("invalid record", "err", err) 690 690 + return err 691 691 + } 692 692 + 693 693 + domain := e.Commit.RKey 694 694 + 695 695 + ddb, ok := i.Db.Execer.(*db.DB) 696 696 + if !ok { 697 697 + return fmt.Errorf("failed to index profile record, invalid db cast") 698 698 + } 699 699 + 700 700 + err := db.AddKnot(ddb, domain, did) 701 701 + if err != nil { 702 702 + l.Error("failed to add knot to db", "err", err, "domain", domain) 703 703 + return err 704 704 + } 705 705 + 706 706 + err = serververify.RunVerification(context.Background(), domain, did, i.Config.Core.Dev) 707 707 + if err != nil { 708 708 + l.Error("failed to verify knot", "err", err, "domain", domain) 709 709 + return err 710 710 + } 711 711 + 712 712 + err = serververify.MarkKnotVerified(ddb, i.Enforcer, domain, did) 713 713 + if err != nil { 714 714 + return fmt.Errorf("failed to mark verified: %w", err) 715 715 + } 716 716 + 717 717 + return nil 718 718 + 719 719 + case models.CommitOperationDelete: 720 720 + domain := e.Commit.RKey 721 721 + 722 722 + ddb, ok := i.Db.Execer.(*db.DB) 723 723 + if !ok { 724 724 + return fmt.Errorf("failed to index knot record, invalid db cast") 725 725 + } 726 726 + 727 727 + // get record from db first 728 728 + registrations, err := db.GetRegistrations( 729 729 + ddb, 730 730 + db.FilterEq("domain", domain), 731 731 + db.FilterEq("did", did), 732 732 + ) 733 733 + if err != nil { 734 734 + return fmt.Errorf("failed to get registration: %w", err) 735 735 + } 736 736 + if len(registrations) != 1 { 737 737 + return fmt.Errorf("got incorret number of registrations: %d, expected 1", len(registrations)) 738 738 + } 739 739 + registration := registrations[0] 740 740 + 741 741 + tx, err := ddb.Begin() 742 742 + if err != nil { 743 743 + return err 744 744 + } 745 745 + defer func() { 746 746 + tx.Rollback() 747 747 + i.Enforcer.E.LoadPolicy() 748 748 + }() 749 749 + 750 750 + err = db.DeleteKnot( 751 751 + tx, 752 752 + db.FilterEq("did", did), 753 753 + db.FilterEq("domain", domain), 754 754 + ) 755 755 + if err != nil { 756 756 + return err 757 757 + } 758 758 + 759 759 + if registration.Registered != nil { 760 760 + err = i.Enforcer.RemoveKnot(domain) 761 761 + if err != nil { 762 762 + return err 763 763 + } 764 764 + } 765 765 + 766 766 + err = tx.Commit() 767 767 + if err != nil { 768 768 + return err 769 769 + } 770 770 + 771 771 + err = i.Enforcer.E.SavePolicy() 772 772 + if err != nil { 773 773 + return err 774 774 + } 775 775 + } 776 776 + 777 777 + return nil 778 778 + } 779 779 + func (i *Ingester) ingestIssue(ctx context.Context, e *models.Event) error { 780 780 + did := e.Did 781 781 + rkey := e.Commit.RKey 782 782 + 783 783 + var err error 784 784 + 785 785 + l := i.Logger.With("handler", "ingestIssue", "nsid", e.Commit.Collection, "did", did, "rkey", rkey) 786 786 + l.Info("ingesting record") 787 787 + 788 788 + ddb, ok := i.Db.Execer.(*db.DB) 789 789 + if !ok { 790 790 + return fmt.Errorf("failed to index issue record, invalid db cast") 791 791 + } 792 792 + 793 793 + switch e.Commit.Operation { 794 794 + case models.CommitOperationCreate, models.CommitOperationUpdate: 795 795 + raw := json.RawMessage(e.Commit.Record) 796 796 + record := tangled.RepoIssue{} 797 797 + err = json.Unmarshal(raw, &record) 798 798 + if err != nil { 799 799 + l.Error("invalid record", "err", err) 800 800 + return err 801 801 + } 802 802 + 803 803 + issue := db.IssueFromRecord(did, rkey, record) 804 804 + 805 805 + if err := i.Validator.ValidateIssue(&issue); err != nil { 806 806 + return fmt.Errorf("failed to validate issue: %w", err) 807 807 + } 808 808 + 809 809 + tx, err := ddb.BeginTx(ctx, nil) 810 810 + if err != nil { 811 811 + l.Error("failed to begin transaction", "err", err) 812 812 + return err 813 813 + } 814 814 + defer tx.Rollback() 815 815 + 816 816 + err = db.PutIssue(tx, &issue) 817 817 + if err != nil { 818 818 + l.Error("failed to create issue", "err", err) 819 819 + return err 820 820 + } 821 821 + 822 822 + err = tx.Commit() 823 823 + if err != nil { 824 824 + l.Error("failed to commit txn", "err", err) 825 825 + return err 826 826 + } 827 827 + 828 828 + return nil 829 829 + 830 830 + case models.CommitOperationDelete: 831 831 + if err := db.DeleteIssues( 832 832 + ddb, 833 833 + db.FilterEq("did", did), 834 834 + db.FilterEq("rkey", rkey), 835 835 + ); err != nil { 836 836 + l.Error("failed to delete", "err", err) 837 837 + return fmt.Errorf("failed to delete issue record: %w", err) 838 838 + } 839 839 + 840 840 + return nil 841 841 + } 842 842 + 843 843 + return nil 844 844 + } 845 845 + 846 846 + func (i *Ingester) ingestIssueComment(e *models.Event) error { 847 847 + did := e.Did 848 848 + rkey := e.Commit.RKey 849 849 + 850 850 + var err error 851 851 + 852 852 + l := i.Logger.With("handler", "ingestIssueComment", "nsid", e.Commit.Collection, "did", did, "rkey", rkey) 853 853 + l.Info("ingesting record") 854 854 + 855 855 + ddb, ok := i.Db.Execer.(*db.DB) 856 856 + if !ok { 857 857 + return fmt.Errorf("failed to index issue comment record, invalid db cast") 858 858 + } 859 859 + 860 860 + switch e.Commit.Operation { 861 861 + case models.CommitOperationCreate, models.CommitOperationUpdate: 862 862 + raw := json.RawMessage(e.Commit.Record) 863 863 + record := tangled.RepoIssueComment{} 864 864 + err = json.Unmarshal(raw, &record) 865 865 + if err != nil { 866 866 + return fmt.Errorf("invalid record: %w", err) 867 867 + } 868 868 + 869 869 + comment, err := db.IssueCommentFromRecord(ddb, did, rkey, record) 870 870 + if err != nil { 871 871 + return fmt.Errorf("failed to parse comment from record: %w", err) 872 872 + } 873 873 + 874 874 + if err := i.Validator.ValidateIssueComment(comment); err != nil { 875 875 + return fmt.Errorf("failed to validate comment: %w", err) 876 876 + } 877 877 + 878 878 + _, err = db.AddIssueComment(ddb, *comment) 879 879 + if err != nil { 880 880 + return fmt.Errorf("failed to create issue comment: %w", err) 881 881 + } 882 882 + 883 883 + return nil 884 884 + 885 885 + case models.CommitOperationDelete: 886 886 + if err := db.DeleteIssueComments( 887 887 + ddb, 888 888 + db.FilterEq("did", did), 889 889 + db.FilterEq("rkey", rkey), 890 890 + ); err != nil { 891 891 + return fmt.Errorf("failed to delete issue comment record: %w", err) 892 892 + } 893 893 + 894 894 + return nil 895 895 + } 896 896 + 897 897 + return nil 898 898 + }

+474 -332

appview/issues/issues.go

··· 1 1 package issues 2 2 3 3 import ( 4 4 + "context" 5 5 + "database/sql" 6 6 + "errors" 4 7 "fmt" 5 8 "log" 6 6 - mathrand "math/rand/v2" 9 9 + "log/slog" 7 10 "net/http" 8 11 "slices" 9 9 - "strconv" 10 12 "time" 11 13 12 14 comatproto "github.com/bluesky-social/indigo/api/atproto" 13 13 - "github.com/bluesky-social/indigo/atproto/data" 14 15 "github.com/bluesky-social/indigo/atproto/syntax" 15 16 lexutil "github.com/bluesky-social/indigo/lex/util" 16 17 "github.com/go-chi/chi/v5" ··· 23 24 "tangled.sh/tangled.sh/core/appview/pages" 24 25 "tangled.sh/tangled.sh/core/appview/pagination" 25 26 "tangled.sh/tangled.sh/core/appview/reporesolver" 27 27 + "tangled.sh/tangled.sh/core/appview/validator" 28 28 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 26 29 "tangled.sh/tangled.sh/core/idresolver" 30 30 + tlog "tangled.sh/tangled.sh/core/log" 27 31 "tangled.sh/tangled.sh/core/tid" 28 32 ) 29 33 ··· 35 39 db *db.DB 36 40 config *config.Config 37 41 notifier notify.Notifier 42 42 + logger *slog.Logger 43 43 + validator *validator.Validator 38 44 } 39 45 40 46 func New( ··· 45 51 db *db.DB, 46 52 config *config.Config, 47 53 notifier notify.Notifier, 54 54 + validator *validator.Validator, 48 55 ) *Issues { 49 56 return &Issues{ 50 57 oauth: oauth, ··· 54 61 db: db, 55 62 config: config, 56 63 notifier: notifier, 64 64 + logger: tlog.New("issues"), 65 65 + validator: validator, 57 66 } 58 67 } 59 68 60 69 func (rp *Issues) RepoSingleIssue(w http.ResponseWriter, r *http.Request) { 70 70 + l := rp.logger.With("handler", "RepoSingleIssue") 61 71 user := rp.oauth.GetUser(r) 62 72 f, err := rp.repoResolver.Resolve(r) 63 73 if err != nil { ··· 65 75 return 66 76 } 67 77 68 68 - issueId := chi.URLParam(r, "issue") 69 69 - issueIdInt, err := strconv.Atoi(issueId) 70 70 - if err != nil { 71 71 - http.Error(w, "bad issue id", http.StatusBadRequest) 72 72 - log.Println("failed to parse issue id", err) 78 78 + issue, ok := r.Context().Value("issue").(*db.Issue) 79 79 + if !ok { 80 80 + l.Error("failed to get issue") 81 81 + rp.pages.Error404(w) 73 82 return 74 83 } 75 84 76 76 - issue, comments, err := db.GetIssueWithComments(rp.db, f.RepoAt, issueIdInt) 85 85 + reactionCountMap, err := db.GetReactionCountMap(rp.db, issue.AtUri()) 77 86 if err != nil { 78 78 - log.Println("failed to get issue and comments", err) 79 79 - rp.pages.Notice(w, "issues", "Failed to load issue. Try again later.") 80 80 - return 81 81 - } 82 82 - 83 83 - reactionCountMap, err := db.GetReactionCountMap(rp.db, syntax.ATURI(issue.IssueAt)) 84 84 - if err != nil { 85 85 - log.Println("failed to get issue reactions") 86 86 - rp.pages.Notice(w, "issues", "Failed to load issue. Try again later.") 87 87 + l.Error("failed to get issue reactions", "err", err) 87 88 } 88 89 89 90 userReactions := map[db.ReactionKind]bool{} 90 91 if user != nil { 91 91 - userReactions = db.GetReactionStatusMap(rp.db, user.Did, syntax.ATURI(issue.IssueAt)) 92 92 + userReactions = db.GetReactionStatusMap(rp.db, user.Did, issue.AtUri()) 92 93 } 93 94 94 94 - issueOwnerIdent, err := rp.idResolver.ResolveIdent(r.Context(), issue.OwnerDid) 95 95 + rp.pages.RepoSingleIssue(w, pages.RepoSingleIssueParams{ 96 96 + LoggedInUser: user, 97 97 + RepoInfo: f.RepoInfo(user), 98 98 + Issue: issue, 99 99 + CommentList: issue.CommentList(), 100 100 + OrderedReactionKinds: db.OrderedReactionKinds, 101 101 + Reactions: reactionCountMap, 102 102 + UserReacted: userReactions, 103 103 + }) 104 104 + } 105 105 + 106 106 + func (rp *Issues) EditIssue(w http.ResponseWriter, r *http.Request) { 107 107 + l := rp.logger.With("handler", "EditIssue") 108 108 + user := rp.oauth.GetUser(r) 109 109 + f, err := rp.repoResolver.Resolve(r) 95 110 if err != nil { 96 96 - log.Println("failed to resolve issue owner", err) 111 111 + log.Println("failed to get repo and knot", err) 112 112 + return 97 113 } 98 114 99 99 - identsToResolve := make([]string, len(comments)) 100 100 - for i, comment := range comments { 101 101 - identsToResolve[i] = comment.OwnerDid 115 115 + issue, ok := r.Context().Value("issue").(*db.Issue) 116 116 + if !ok { 117 117 + l.Error("failed to get issue") 118 118 + rp.pages.Error404(w) 119 119 + return 102 120 } 103 103 - resolvedIds := rp.idResolver.ResolveIdents(r.Context(), identsToResolve) 104 104 - didHandleMap := make(map[string]string) 105 105 - for _, identity := range resolvedIds { 106 106 - if !identity.Handle.IsInvalidHandle() { 107 107 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 108 108 - } else { 109 109 - didHandleMap[identity.DID.String()] = identity.DID.String() 121 121 + 122 122 + switch r.Method { 123 123 + case http.MethodGet: 124 124 + rp.pages.EditIssueFragment(w, pages.EditIssueParams{ 125 125 + LoggedInUser: user, 126 126 + RepoInfo: f.RepoInfo(user), 127 127 + Issue: issue, 128 128 + }) 129 129 + case http.MethodPost: 130 130 + noticeId := "issues" 131 131 + newIssue := issue 132 132 + newIssue.Title = r.FormValue("title") 133 133 + newIssue.Body = r.FormValue("body") 134 134 + 135 135 + if err := rp.validator.ValidateIssue(newIssue); err != nil { 136 136 + l.Error("validation error", "err", err) 137 137 + rp.pages.Notice(w, noticeId, fmt.Sprintf("Failed to edit issue: %s", err)) 138 138 + return 110 139 } 111 111 - } 112 140 113 113 - rp.pages.RepoSingleIssue(w, pages.RepoSingleIssueParams{ 114 114 - LoggedInUser: user, 115 115 - RepoInfo: f.RepoInfo(user), 116 116 - Issue: *issue, 117 117 - Comments: comments, 141 141 + newRecord := newIssue.AsRecord() 118 142 119 119 - IssueOwnerHandle: issueOwnerIdent.Handle.String(), 120 120 - DidHandleMap: didHandleMap, 143 143 + // edit an atproto record 144 144 + client, err := rp.oauth.AuthorizedClient(r) 145 145 + if err != nil { 146 146 + l.Error("failed to get authorized client", "err", err) 147 147 + rp.pages.Notice(w, noticeId, "Failed to edit issue.") 148 148 + return 149 149 + } 121 150 122 122 - OrderedReactionKinds: db.OrderedReactionKinds, 123 123 - Reactions: reactionCountMap, 124 124 - UserReacted: userReactions, 125 125 - }) 151 151 + ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoIssueNSID, user.Did, newIssue.Rkey) 152 152 + if err != nil { 153 153 + l.Error("failed to get record", "err", err) 154 154 + rp.pages.Notice(w, noticeId, "Failed to edit issue, no record found on PDS.") 155 155 + return 156 156 + } 157 157 + 158 158 + _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 159 159 + Collection: tangled.RepoIssueNSID, 160 160 + Repo: user.Did, 161 161 + Rkey: newIssue.Rkey, 162 162 + SwapRecord: ex.Cid, 163 163 + Record: &lexutil.LexiconTypeDecoder{ 164 164 + Val: &newRecord, 165 165 + }, 166 166 + }) 167 167 + if err != nil { 168 168 + l.Error("failed to edit record on PDS", "err", err) 169 169 + rp.pages.Notice(w, noticeId, "Failed to edit issue on PDS.") 170 170 + return 171 171 + } 172 172 + 173 173 + // modify on DB -- TODO: transact this cleverly 174 174 + tx, err := rp.db.Begin() 175 175 + if err != nil { 176 176 + l.Error("failed to edit issue on DB", "err", err) 177 177 + rp.pages.Notice(w, noticeId, "Failed to edit issue.") 178 178 + return 179 179 + } 180 180 + defer tx.Rollback() 181 181 + 182 182 + err = db.PutIssue(tx, newIssue) 183 183 + if err != nil { 184 184 + log.Println("failed to edit issue", err) 185 185 + rp.pages.Notice(w, "issues", "Failed to edit issue.") 186 186 + return 187 187 + } 188 188 + 189 189 + if err = tx.Commit(); err != nil { 190 190 + l.Error("failed to edit issue", "err", err) 191 191 + rp.pages.Notice(w, "issues", "Failed to cedit issue.") 192 192 + return 193 193 + } 126 194 195 195 + rp.pages.HxRefresh(w) 196 196 + } 127 197 } 128 198 129 129 - func (rp *Issues) CloseIssue(w http.ResponseWriter, r *http.Request) { 199 199 + func (rp *Issues) DeleteIssue(w http.ResponseWriter, r *http.Request) { 200 200 + l := rp.logger.With("handler", "DeleteIssue") 201 201 + noticeId := "issue-actions-error" 202 202 + 130 203 user := rp.oauth.GetUser(r) 204 204 + 131 205 f, err := rp.repoResolver.Resolve(r) 132 206 if err != nil { 133 133 - log.Println("failed to get repo and knot", err) 207 207 + l.Error("failed to get repo and knot", "err", err) 208 208 + return 209 209 + } 210 210 + 211 211 + issue, ok := r.Context().Value("issue").(*db.Issue) 212 212 + if !ok { 213 213 + l.Error("failed to get issue") 214 214 + rp.pages.Notice(w, noticeId, "Failed to delete issue.") 134 215 return 135 216 } 217 217 + l = l.With("did", issue.Did, "rkey", issue.Rkey) 136 218 137 137 - issueId := chi.URLParam(r, "issue") 138 138 - issueIdInt, err := strconv.Atoi(issueId) 219 219 + // delete from PDS 220 220 + client, err := rp.oauth.AuthorizedClient(r) 139 221 if err != nil { 140 140 - http.Error(w, "bad issue id", http.StatusBadRequest) 141 141 - log.Println("failed to parse issue id", err) 222 222 + log.Println("failed to get authorized client", err) 223 223 + rp.pages.Notice(w, "issue-comment", "Failed to delete comment.") 224 224 + return 225 225 + } 226 226 + _, err = client.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 227 227 + Collection: tangled.RepoIssueNSID, 228 228 + Repo: issue.Did, 229 229 + Rkey: issue.Rkey, 230 230 + }) 231 231 + if err != nil { 232 232 + // TODO: transact this better 233 233 + l.Error("failed to delete issue from PDS", "err", err) 234 234 + rp.pages.Notice(w, noticeId, "Failed to delete issue.") 142 235 return 143 236 } 144 237 145 145 - issue, err := db.GetIssue(rp.db, f.RepoAt, issueIdInt) 238 238 + // delete from db 239 239 + if err := db.DeleteIssues(rp.db, db.FilterEq("id", issue.Id)); err != nil { 240 240 + l.Error("failed to delete issue", "err", err) 241 241 + rp.pages.Notice(w, noticeId, "Failed to delete issue.") 242 242 + return 243 243 + } 244 244 + 245 245 + // return to all issues page 246 246 + rp.pages.HxRedirect(w, "/"+f.RepoInfo(user).FullName()+"/issues") 247 247 + } 248 248 + 249 249 + func (rp *Issues) CloseIssue(w http.ResponseWriter, r *http.Request) { 250 250 + l := rp.logger.With("handler", "CloseIssue") 251 251 + user := rp.oauth.GetUser(r) 252 252 + f, err := rp.repoResolver.Resolve(r) 146 253 if err != nil { 147 147 - log.Println("failed to get issue", err) 148 148 - rp.pages.Notice(w, "issue-action", "Failed to close issue. Try again later.") 254 254 + l.Error("failed to get repo and knot", "err", err) 255 255 + return 256 256 + } 257 257 + 258 258 + issue, ok := r.Context().Value("issue").(*db.Issue) 259 259 + if !ok { 260 260 + l.Error("failed to get issue") 261 261 + rp.pages.Error404(w) 149 262 return 150 263 } 151 264 ··· 156 269 isCollaborator := slices.ContainsFunc(collaborators, func(collab pages.Collaborator) bool { 157 270 return user.Did == collab.Did 158 271 }) 159 159 - isIssueOwner := user.Did == issue.OwnerDid 272 272 + isIssueOwner := user.Did == issue.Did 160 273 161 274 // TODO: make this more granular 162 275 if isIssueOwner || isCollaborator { 163 163 - 164 164 - closed := tangled.RepoIssueStateClosed 165 165 - 166 166 - client, err := rp.oauth.AuthorizedClient(r) 167 167 - if err != nil { 168 168 - log.Println("failed to get authorized client", err) 169 169 - return 170 170 - } 171 171 - _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 172 172 - Collection: tangled.RepoIssueStateNSID, 173 173 - Repo: user.Did, 174 174 - Rkey: tid.TID(), 175 175 - Record: &lexutil.LexiconTypeDecoder{ 176 176 - Val: &tangled.RepoIssueState{ 177 177 - Issue: issue.IssueAt, 178 178 - State: closed, 179 179 - }, 180 180 - }, 181 181 - }) 182 182 - 183 183 - if err != nil { 184 184 - log.Println("failed to update issue state", err) 185 185 - rp.pages.Notice(w, "issue-action", "Failed to close issue. Try again later.") 186 186 - return 187 187 - } 188 188 - 189 189 - err = db.CloseIssue(rp.db, f.RepoAt, issueIdInt) 276 276 + err = db.CloseIssues( 277 277 + rp.db, 278 278 + db.FilterEq("id", issue.Id), 279 279 + ) 190 280 if err != nil { 191 281 log.Println("failed to close issue", err) 192 282 rp.pages.Notice(w, "issue-action", "Failed to close issue. Try again later.") 193 283 return 194 284 } 195 285 196 196 - rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d", f.OwnerSlashRepo(), issueIdInt)) 286 286 + rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d", f.OwnerSlashRepo(), issue.IssueId)) 197 287 return 198 288 } else { 199 289 log.Println("user is not permitted to close issue") ··· 203 293 } 204 294 205 295 func (rp *Issues) ReopenIssue(w http.ResponseWriter, r *http.Request) { 296 296 + l := rp.logger.With("handler", "ReopenIssue") 206 297 user := rp.oauth.GetUser(r) 207 298 f, err := rp.repoResolver.Resolve(r) 208 299 if err != nil { ··· 210 301 return 211 302 } 212 303 213 213 - issueId := chi.URLParam(r, "issue") 214 214 - issueIdInt, err := strconv.Atoi(issueId) 215 215 - if err != nil { 216 216 - http.Error(w, "bad issue id", http.StatusBadRequest) 217 217 - log.Println("failed to parse issue id", err) 218 218 - return 219 219 - } 220 220 - 221 221 - issue, err := db.GetIssue(rp.db, f.RepoAt, issueIdInt) 222 222 - if err != nil { 223 223 - log.Println("failed to get issue", err) 224 224 - rp.pages.Notice(w, "issue-action", "Failed to close issue. Try again later.") 304 304 + issue, ok := r.Context().Value("issue").(*db.Issue) 305 305 + if !ok { 306 306 + l.Error("failed to get issue") 307 307 + rp.pages.Error404(w) 225 308 return 226 309 } 227 310 ··· 232 315 isCollaborator := slices.ContainsFunc(collaborators, func(collab pages.Collaborator) bool { 233 316 return user.Did == collab.Did 234 317 }) 235 235 - isIssueOwner := user.Did == issue.OwnerDid 318 318 + isIssueOwner := user.Did == issue.Did 236 319 237 320 if isCollaborator || isIssueOwner { 238 238 - err := db.ReopenIssue(rp.db, f.RepoAt, issueIdInt) 321 321 + err := db.ReopenIssues( 322 322 + rp.db, 323 323 + db.FilterEq("id", issue.Id), 324 324 + ) 239 325 if err != nil { 240 326 log.Println("failed to reopen issue", err) 241 327 rp.pages.Notice(w, "issue-action", "Failed to reopen issue. Try again later.") 242 328 return 243 329 } 244 244 - rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d", f.OwnerSlashRepo(), issueIdInt)) 330 330 + rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d", f.OwnerSlashRepo(), issue.IssueId)) 245 331 return 246 332 } else { 247 333 log.Println("user is not the owner of the repo") ··· 251 337 } 252 338 253 339 func (rp *Issues) NewIssueComment(w http.ResponseWriter, r *http.Request) { 340 340 + l := rp.logger.With("handler", "NewIssueComment") 254 341 user := rp.oauth.GetUser(r) 255 342 f, err := rp.repoResolver.Resolve(r) 256 343 if err != nil { 257 257 - log.Println("failed to get repo and knot", err) 344 344 + l.Error("failed to get repo and knot", "err", err) 258 345 return 259 346 } 260 347 261 261 - issueId := chi.URLParam(r, "issue") 262 262 - issueIdInt, err := strconv.Atoi(issueId) 263 263 - if err != nil { 264 264 - http.Error(w, "bad issue id", http.StatusBadRequest) 265 265 - log.Println("failed to parse issue id", err) 348 348 + issue, ok := r.Context().Value("issue").(*db.Issue) 349 349 + if !ok { 350 350 + l.Error("failed to get issue") 351 351 + rp.pages.Error404(w) 266 352 return 267 353 } 268 354 269 269 - switch r.Method { 270 270 - case http.MethodPost: 271 271 - body := r.FormValue("body") 272 272 - if body == "" { 273 273 - rp.pages.Notice(w, "issue", "Body is required") 274 274 - return 275 275 - } 355 355 + body := r.FormValue("body") 356 356 + if body == "" { 357 357 + rp.pages.Notice(w, "issue", "Body is required") 358 358 + return 359 359 + } 276 360 277 277 - commentId := mathrand.IntN(1000000) 278 278 - rkey := tid.TID() 279 279 - 280 280 - err := db.NewIssueComment(rp.db, &db.Comment{ 281 281 - OwnerDid: user.Did, 282 282 - RepoAt: f.RepoAt, 283 283 - Issue: issueIdInt, 284 284 - CommentId: commentId, 285 285 - Body: body, 286 286 - Rkey: rkey, 287 287 - }) 288 288 - if err != nil { 289 289 - log.Println("failed to create comment", err) 290 290 - rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 291 291 - return 292 292 - } 293 293 - 294 294 - createdAt := time.Now().Format(time.RFC3339) 295 295 - commentIdInt64 := int64(commentId) 296 296 - ownerDid := user.Did 297 297 - issueAt, err := db.GetIssueAt(rp.db, f.RepoAt, issueIdInt) 298 298 - if err != nil { 299 299 - log.Println("failed to get issue at", err) 300 300 - rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 301 301 - return 302 302 - } 303 303 - 304 304 - atUri := f.RepoAt.String() 305 305 - client, err := rp.oauth.AuthorizedClient(r) 306 306 - if err != nil { 307 307 - log.Println("failed to get authorized client", err) 308 308 - rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 309 309 - return 310 310 - } 311 311 - _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 312 312 - Collection: tangled.RepoIssueCommentNSID, 313 313 - Repo: user.Did, 314 314 - Rkey: rkey, 315 315 - Record: &lexutil.LexiconTypeDecoder{ 316 316 - Val: &tangled.RepoIssueComment{ 317 317 - Repo: &atUri, 318 318 - Issue: issueAt, 319 319 - CommentId: &commentIdInt64, 320 320 - Owner: &ownerDid, 321 321 - Body: body, 322 322 - CreatedAt: createdAt, 323 323 - }, 324 324 - }, 325 325 - }) 326 326 - if err != nil { 327 327 - log.Println("failed to create comment", err) 328 328 - rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 329 329 - return 330 330 - } 361 361 + replyToUri := r.FormValue("reply-to") 362 362 + var replyTo *string 363 363 + if replyToUri != "" { 364 364 + replyTo = &replyToUri 365 365 + } 331 366 332 332 - rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d#comment-%d", f.OwnerSlashRepo(), issueIdInt, commentId)) 367 367 + comment := db.IssueComment{ 368 368 + Did: user.Did, 369 369 + Rkey: tid.TID(), 370 370 + IssueAt: issue.AtUri().String(), 371 371 + ReplyTo: replyTo, 372 372 + Body: body, 373 373 + Created: time.Now(), 374 374 + } 375 375 + if err = rp.validator.ValidateIssueComment(&comment); err != nil { 376 376 + l.Error("failed to validate comment", "err", err) 377 377 + rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 333 378 return 334 379 } 335 335 - } 380 380 + record := comment.AsRecord() 336 381 337 337 - func (rp *Issues) IssueComment(w http.ResponseWriter, r *http.Request) { 338 338 - user := rp.oauth.GetUser(r) 339 339 - f, err := rp.repoResolver.Resolve(r) 382 382 + client, err := rp.oauth.AuthorizedClient(r) 340 383 if err != nil { 341 341 - log.Println("failed to get repo and knot", err) 384 384 + l.Error("failed to get authorized client", "err", err) 385 385 + rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 342 386 return 343 387 } 344 388 345 345 - issueId := chi.URLParam(r, "issue") 346 346 - issueIdInt, err := strconv.Atoi(issueId) 389 389 + // create a record first 390 390 + resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 391 391 + Collection: tangled.RepoIssueCommentNSID, 392 392 + Repo: comment.Did, 393 393 + Rkey: comment.Rkey, 394 394 + Record: &lexutil.LexiconTypeDecoder{ 395 395 + Val: &record, 396 396 + }, 397 397 + }) 347 398 if err != nil { 348 348 - http.Error(w, "bad issue id", http.StatusBadRequest) 349 349 - log.Println("failed to parse issue id", err) 399 399 + l.Error("failed to create comment", "err", err) 400 400 + rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 350 401 return 351 402 } 403 403 + atUri := resp.Uri 404 404 + defer func() { 405 405 + if err := rollbackRecord(context.Background(), atUri, client); err != nil { 406 406 + l.Error("rollback failed", "err", err) 407 407 + } 408 408 + }() 352 409 353 353 - commentId := chi.URLParam(r, "comment_id") 354 354 - commentIdInt, err := strconv.Atoi(commentId) 410 410 + commentId, err := db.AddIssueComment(rp.db, comment) 355 411 if err != nil { 356 356 - http.Error(w, "bad comment id", http.StatusBadRequest) 357 357 - log.Println("failed to parse issue id", err) 412 412 + l.Error("failed to create comment", "err", err) 413 413 + rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 358 414 return 359 415 } 360 416 361 361 - issue, err := db.GetIssue(rp.db, f.RepoAt, issueIdInt) 417 417 + // reset atUri to make rollback a no-op 418 418 + atUri = "" 419 419 + rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d#comment-%d", f.OwnerSlashRepo(), issue.IssueId, commentId)) 420 420 + } 421 421 + 422 422 + func (rp *Issues) IssueComment(w http.ResponseWriter, r *http.Request) { 423 423 + l := rp.logger.With("handler", "IssueComment") 424 424 + user := rp.oauth.GetUser(r) 425 425 + f, err := rp.repoResolver.Resolve(r) 362 426 if err != nil { 363 363 - log.Println("failed to get issue", err) 364 364 - rp.pages.Notice(w, "issues", "Failed to load issue. Try again later.") 427 427 + l.Error("failed to get repo and knot", "err", err) 365 428 return 366 429 } 367 430 368 368 - comment, err := db.GetComment(rp.db, f.RepoAt, issueIdInt, commentIdInt) 369 369 - if err != nil { 370 370 - http.Error(w, "bad comment id", http.StatusBadRequest) 431 431 + issue, ok := r.Context().Value("issue").(*db.Issue) 432 432 + if !ok { 433 433 + l.Error("failed to get issue") 434 434 + rp.pages.Error404(w) 371 435 return 372 436 } 373 437 374 374 - identity, err := rp.idResolver.ResolveIdent(r.Context(), comment.OwnerDid) 438 438 + commentId := chi.URLParam(r, "commentId") 439 439 + comments, err := db.GetIssueComments( 440 440 + rp.db, 441 441 + db.FilterEq("id", commentId), 442 442 + ) 375 443 if err != nil { 376 376 - log.Println("failed to resolve did") 444 444 + l.Error("failed to fetch comment", "id", commentId) 445 445 + http.Error(w, "failed to fetch comment id", http.StatusBadRequest) 377 446 return 378 447 } 379 379 - 380 380 - didHandleMap := make(map[string]string) 381 381 - if !identity.Handle.IsInvalidHandle() { 382 382 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 383 383 - } else { 384 384 - didHandleMap[identity.DID.String()] = identity.DID.String() 448 448 + if len(comments) != 1 { 449 449 + l.Error("incorrect number of comments returned", "id", commentId, "len(comments)", len(comments)) 450 450 + http.Error(w, "invalid comment id", http.StatusBadRequest) 451 451 + return 385 452 } 453 453 + comment := comments[0] 386 454 387 387 - rp.pages.SingleIssueCommentFragment(w, pages.SingleIssueCommentParams{ 455 455 + rp.pages.IssueCommentBodyFragment(w, pages.IssueCommentBodyParams{ 388 456 LoggedInUser: user, 389 457 RepoInfo: f.RepoInfo(user), 390 390 - DidHandleMap: didHandleMap, 391 458 Issue: issue, 392 392 - Comment: comment, 459 459 + Comment: &comment, 393 460 }) 394 461 } 395 462 396 463 func (rp *Issues) EditIssueComment(w http.ResponseWriter, r *http.Request) { 464 464 + l := rp.logger.With("handler", "EditIssueComment") 397 465 user := rp.oauth.GetUser(r) 398 466 f, err := rp.repoResolver.Resolve(r) 399 467 if err != nil { 400 400 - log.Println("failed to get repo and knot", err) 468 468 + l.Error("failed to get repo and knot", "err", err) 401 469 return 402 470 } 403 471 404 404 - issueId := chi.URLParam(r, "issue") 405 405 - issueIdInt, err := strconv.Atoi(issueId) 406 406 - if err != nil { 407 407 - http.Error(w, "bad issue id", http.StatusBadRequest) 408 408 - log.Println("failed to parse issue id", err) 472 472 + issue, ok := r.Context().Value("issue").(*db.Issue) 473 473 + if !ok { 474 474 + l.Error("failed to get issue") 475 475 + rp.pages.Error404(w) 409 476 return 410 477 } 411 478 412 412 - commentId := chi.URLParam(r, "comment_id") 413 413 - commentIdInt, err := strconv.Atoi(commentId) 414 414 - if err != nil { 415 415 - http.Error(w, "bad comment id", http.StatusBadRequest) 416 416 - log.Println("failed to parse issue id", err) 417 417 - return 418 418 - } 419 419 - 420 420 - issue, err := db.GetIssue(rp.db, f.RepoAt, issueIdInt) 479 479 + commentId := chi.URLParam(r, "commentId") 480 480 + comments, err := db.GetIssueComments( 481 481 + rp.db, 482 482 + db.FilterEq("id", commentId), 483 483 + ) 421 484 if err != nil { 422 422 - log.Println("failed to get issue", err) 423 423 - rp.pages.Notice(w, "issues", "Failed to load issue. Try again later.") 485 485 + l.Error("failed to fetch comment", "id", commentId) 486 486 + http.Error(w, "failed to fetch comment id", http.StatusBadRequest) 424 487 return 425 488 } 426 426 - 427 427 - comment, err := db.GetComment(rp.db, f.RepoAt, issueIdInt, commentIdInt) 428 428 - if err != nil { 429 429 - http.Error(w, "bad comment id", http.StatusBadRequest) 489 489 + if len(comments) != 1 { 490 490 + l.Error("incorrect number of comments returned", "id", commentId, "len(comments)", len(comments)) 491 491 + http.Error(w, "invalid comment id", http.StatusBadRequest) 430 492 return 431 493 } 494 494 + comment := comments[0] 432 495 433 433 - if comment.OwnerDid != user.Did { 496 496 + if comment.Did != user.Did { 497 497 + l.Error("unauthorized comment edit", "expectedDid", comment.Did, "gotDid", user.Did) 434 498 http.Error(w, "you are not the author of this comment", http.StatusUnauthorized) 435 499 return 436 500 } ··· 441 505 LoggedInUser: user, 442 506 RepoInfo: f.RepoInfo(user), 443 507 Issue: issue, 444 444 - Comment: comment, 508 508 + Comment: &comment, 445 509 }) 446 510 case http.MethodPost: 447 511 // extract form value ··· 452 516 rp.pages.Notice(w, "issue-comment", "Failed to create comment.") 453 517 return 454 518 } 455 455 - rkey := comment.Rkey 456 519 457 457 - // optimistic update 458 458 - edited := time.Now() 459 459 - err = db.EditComment(rp.db, comment.RepoAt, comment.Issue, comment.CommentId, newBody) 520 520 + now := time.Now() 521 521 + newComment := comment 522 522 + newComment.Body = newBody 523 523 + newComment.Edited = &now 524 524 + record := newComment.AsRecord() 525 525 + 526 526 + _, err = db.AddIssueComment(rp.db, newComment) 460 527 if err != nil { 461 528 log.Println("failed to perferom update-description query", err) 462 529 rp.pages.Notice(w, "repo-notice", "Failed to update description, try again later.") ··· 464 531 } 465 532 466 533 // rkey is optional, it was introduced later 467 467 - if comment.Rkey != "" { 534 534 + if newComment.Rkey != "" { 468 535 // update the record on pds 469 469 - ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoIssueCommentNSID, user.Did, rkey) 536 536 + ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoIssueCommentNSID, user.Did, comment.Rkey) 470 537 if err != nil { 471 471 - // failed to get record 472 472 - log.Println(err, rkey) 538 538 + log.Println("failed to get record", "err", err, "did", newComment.Did, "rkey", newComment.Rkey) 473 539 rp.pages.Notice(w, fmt.Sprintf("comment-%s-status", commentId), "Failed to update description, no record found on PDS.") 474 540 return 475 541 } 476 476 - value, _ := ex.Value.MarshalJSON() // we just did get record; it is valid json 477 477 - record, _ := data.UnmarshalJSON(value) 478 478 - 479 479 - repoAt := record["repo"].(string) 480 480 - issueAt := record["issue"].(string) 481 481 - createdAt := record["createdAt"].(string) 482 482 - commentIdInt64 := int64(commentIdInt) 483 542 484 543 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 485 544 Collection: tangled.RepoIssueCommentNSID, 486 545 Repo: user.Did, 487 487 - Rkey: rkey, 546 546 + Rkey: newComment.Rkey, 488 547 SwapRecord: ex.Cid, 489 548 Record: &lexutil.LexiconTypeDecoder{ 490 490 - Val: &tangled.RepoIssueComment{ 491 491 - Repo: &repoAt, 492 492 - Issue: issueAt, 493 493 - CommentId: &commentIdInt64, 494 494 - Owner: &comment.OwnerDid, 495 495 - Body: newBody, 496 496 - CreatedAt: createdAt, 497 497 - }, 549 549 + Val: &record, 498 550 }, 499 551 }) 500 552 if err != nil { 501 501 - log.Println(err) 553 553 + l.Error("failed to update record on PDS", "err", err) 502 554 } 503 555 } 504 504 - 505 505 - // optimistic update for htmx 506 506 - didHandleMap := map[string]string{ 507 507 - user.Did: user.Handle, 508 508 - } 509 509 - comment.Body = newBody 510 510 - comment.Edited = &edited 511 556 512 557 // return new comment body with htmx 513 513 - rp.pages.SingleIssueCommentFragment(w, pages.SingleIssueCommentParams{ 558 558 + rp.pages.IssueCommentBodyFragment(w, pages.IssueCommentBodyParams{ 514 559 LoggedInUser: user, 515 560 RepoInfo: f.RepoInfo(user), 516 516 - DidHandleMap: didHandleMap, 517 561 Issue: issue, 518 518 - Comment: comment, 562 562 + Comment: &newComment, 519 563 }) 564 564 + } 565 565 + } 566 566 + 567 567 + func (rp *Issues) ReplyIssueCommentPlaceholder(w http.ResponseWriter, r *http.Request) { 568 568 + l := rp.logger.With("handler", "ReplyIssueCommentPlaceholder") 569 569 + user := rp.oauth.GetUser(r) 570 570 + f, err := rp.repoResolver.Resolve(r) 571 571 + if err != nil { 572 572 + l.Error("failed to get repo and knot", "err", err) 520 573 return 574 574 + } 521 575 576 576 + issue, ok := r.Context().Value("issue").(*db.Issue) 577 577 + if !ok { 578 578 + l.Error("failed to get issue") 579 579 + rp.pages.Error404(w) 580 580 + return 522 581 } 523 582 583 583 + commentId := chi.URLParam(r, "commentId") 584 584 + comments, err := db.GetIssueComments( 585 585 + rp.db, 586 586 + db.FilterEq("id", commentId), 587 587 + ) 588 588 + if err != nil { 589 589 + l.Error("failed to fetch comment", "id", commentId) 590 590 + http.Error(w, "failed to fetch comment id", http.StatusBadRequest) 591 591 + return 592 592 + } 593 593 + if len(comments) != 1 { 594 594 + l.Error("incorrect number of comments returned", "id", commentId, "len(comments)", len(comments)) 595 595 + http.Error(w, "invalid comment id", http.StatusBadRequest) 596 596 + return 597 597 + } 598 598 + comment := comments[0] 599 599 + 600 600 + rp.pages.ReplyIssueCommentPlaceholderFragment(w, pages.ReplyIssueCommentPlaceholderParams{ 601 601 + LoggedInUser: user, 602 602 + RepoInfo: f.RepoInfo(user), 603 603 + Issue: issue, 604 604 + Comment: &comment, 605 605 + }) 524 606 } 525 607 526 526 - func (rp *Issues) DeleteIssueComment(w http.ResponseWriter, r *http.Request) { 608 608 + func (rp *Issues) ReplyIssueComment(w http.ResponseWriter, r *http.Request) { 609 609 + l := rp.logger.With("handler", "ReplyIssueComment") 527 610 user := rp.oauth.GetUser(r) 528 611 f, err := rp.repoResolver.Resolve(r) 529 612 if err != nil { 530 530 - log.Println("failed to get repo and knot", err) 613 613 + l.Error("failed to get repo and knot", "err", err) 614 614 + return 615 615 + } 616 616 + 617 617 + issue, ok := r.Context().Value("issue").(*db.Issue) 618 618 + if !ok { 619 619 + l.Error("failed to get issue") 620 620 + rp.pages.Error404(w) 531 621 return 532 622 } 533 623 534 534 - issueId := chi.URLParam(r, "issue") 535 535 - issueIdInt, err := strconv.Atoi(issueId) 624 624 + commentId := chi.URLParam(r, "commentId") 625 625 + comments, err := db.GetIssueComments( 626 626 + rp.db, 627 627 + db.FilterEq("id", commentId), 628 628 + ) 536 629 if err != nil { 537 537 - http.Error(w, "bad issue id", http.StatusBadRequest) 538 538 - log.Println("failed to parse issue id", err) 630 630 + l.Error("failed to fetch comment", "id", commentId) 631 631 + http.Error(w, "failed to fetch comment id", http.StatusBadRequest) 632 632 + return 633 633 + } 634 634 + if len(comments) != 1 { 635 635 + l.Error("incorrect number of comments returned", "id", commentId, "len(comments)", len(comments)) 636 636 + http.Error(w, "invalid comment id", http.StatusBadRequest) 539 637 return 540 638 } 639 639 + comment := comments[0] 541 640 542 542 - issue, err := db.GetIssue(rp.db, f.RepoAt, issueIdInt) 641 641 + rp.pages.ReplyIssueCommentFragment(w, pages.ReplyIssueCommentParams{ 642 642 + LoggedInUser: user, 643 643 + RepoInfo: f.RepoInfo(user), 644 644 + Issue: issue, 645 645 + Comment: &comment, 646 646 + }) 647 647 + } 648 648 + 649 649 + func (rp *Issues) DeleteIssueComment(w http.ResponseWriter, r *http.Request) { 650 650 + l := rp.logger.With("handler", "DeleteIssueComment") 651 651 + user := rp.oauth.GetUser(r) 652 652 + f, err := rp.repoResolver.Resolve(r) 543 653 if err != nil { 544 544 - log.Println("failed to get issue", err) 545 545 - rp.pages.Notice(w, "issues", "Failed to load issue. Try again later.") 654 654 + l.Error("failed to get repo and knot", "err", err) 546 655 return 547 656 } 548 657 549 549 - commentId := chi.URLParam(r, "comment_id") 550 550 - commentIdInt, err := strconv.Atoi(commentId) 551 551 - if err != nil { 552 552 - http.Error(w, "bad comment id", http.StatusBadRequest) 553 553 - log.Println("failed to parse issue id", err) 658 658 + issue, ok := r.Context().Value("issue").(*db.Issue) 659 659 + if !ok { 660 660 + l.Error("failed to get issue") 661 661 + rp.pages.Error404(w) 554 662 return 555 663 } 556 664 557 557 - comment, err := db.GetComment(rp.db, f.RepoAt, issueIdInt, commentIdInt) 665 665 + commentId := chi.URLParam(r, "commentId") 666 666 + comments, err := db.GetIssueComments( 667 667 + rp.db, 668 668 + db.FilterEq("id", commentId), 669 669 + ) 558 670 if err != nil { 559 559 - http.Error(w, "bad comment id", http.StatusBadRequest) 671 671 + l.Error("failed to fetch comment", "id", commentId) 672 672 + http.Error(w, "failed to fetch comment id", http.StatusBadRequest) 560 673 return 561 674 } 675 675 + if len(comments) != 1 { 676 676 + l.Error("incorrect number of comments returned", "id", commentId, "len(comments)", len(comments)) 677 677 + http.Error(w, "invalid comment id", http.StatusBadRequest) 678 678 + return 679 679 + } 680 680 + comment := comments[0] 562 681 563 563 - if comment.OwnerDid != user.Did { 682 682 + if comment.Did != user.Did { 683 683 + l.Error("unauthorized action", "expectedDid", comment.Did, "gotDid", user.Did) 564 684 http.Error(w, "you are not the author of this comment", http.StatusUnauthorized) 565 685 return 566 686 } ··· 572 692 573 693 // optimistic deletion 574 694 deleted := time.Now() 575 575 - err = db.DeleteComment(rp.db, f.RepoAt, issueIdInt, commentIdInt) 695 695 + err = db.DeleteIssueComments(rp.db, db.FilterEq("id", comment.Id)) 576 696 if err != nil { 577 577 - log.Println("failed to delete comment") 697 697 + l.Error("failed to delete comment", "err", err) 578 698 rp.pages.Notice(w, fmt.Sprintf("comment-%s-status", commentId), "failed to delete comment") 579 699 return 580 700 } ··· 588 708 return 589 709 } 590 710 _, err = client.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 591 591 - Collection: tangled.GraphFollowNSID, 711 711 + Collection: tangled.RepoIssueCommentNSID, 592 712 Repo: user.Did, 593 713 Rkey: comment.Rkey, 594 714 }) ··· 598 718 } 599 719 600 720 // optimistic update for htmx 601 601 - didHandleMap := map[string]string{ 602 602 - user.Did: user.Handle, 603 603 - } 604 721 comment.Body = "" 605 722 comment.Deleted = &deleted 606 723 607 724 // htmx fragment of comment after deletion 608 608 - rp.pages.SingleIssueCommentFragment(w, pages.SingleIssueCommentParams{ 725 725 + rp.pages.IssueCommentBodyFragment(w, pages.IssueCommentBodyParams{ 609 726 LoggedInUser: user, 610 727 RepoInfo: f.RepoInfo(user), 611 611 - DidHandleMap: didHandleMap, 612 728 Issue: issue, 613 613 - Comment: comment, 729 729 + Comment: &comment, 614 730 }) 615 615 - return 616 731 } 617 732 618 733 func (rp *Issues) RepoIssues(w http.ResponseWriter, r *http.Request) { ··· 641 756 return 642 757 } 643 758 644 644 - issues, err := db.GetIssues(rp.db, f.RepoAt, isOpen, page) 759 759 + openVal := 0 760 760 + if isOpen { 761 761 + openVal = 1 762 762 + } 763 763 + issues, err := db.GetIssuesPaginated( 764 764 + rp.db, 765 765 + page, 766 766 + db.FilterEq("repo_at", f.RepoAt()), 767 767 + db.FilterEq("open", openVal), 768 768 + ) 645 769 if err != nil { 646 770 log.Println("failed to get issues", err) 647 771 rp.pages.Notice(w, "issues", "Failed to load issues. Try again later.") 648 772 return 649 773 } 650 774 651 651 - identsToResolve := make([]string, len(issues)) 652 652 - for i, issue := range issues { 653 653 - identsToResolve[i] = issue.OwnerDid 654 654 - } 655 655 - resolvedIds := rp.idResolver.ResolveIdents(r.Context(), identsToResolve) 656 656 - didHandleMap := make(map[string]string) 657 657 - for _, identity := range resolvedIds { 658 658 - if !identity.Handle.IsInvalidHandle() { 659 659 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 660 660 - } else { 661 661 - didHandleMap[identity.DID.String()] = identity.DID.String() 662 662 - } 663 663 - } 664 664 - 665 775 rp.pages.RepoIssues(w, pages.RepoIssuesParams{ 666 776 LoggedInUser: rp.oauth.GetUser(r), 667 777 RepoInfo: f.RepoInfo(user), 668 778 Issues: issues, 669 669 - DidHandleMap: didHandleMap, 670 779 FilteringByOpen: isOpen, 671 780 Page: page, 672 781 }) 673 673 - return 674 782 } 675 783 676 784 func (rp *Issues) NewIssue(w http.ResponseWriter, r *http.Request) { 785 785 + l := rp.logger.With("handler", "NewIssue") 677 786 user := rp.oauth.GetUser(r) 678 787 679 788 f, err := rp.repoResolver.Resolve(r) 680 789 if err != nil { 681 681 - log.Println("failed to get repo and knot", err) 790 790 + l.Error("failed to get repo and knot", "err", err) 682 791 return 683 792 } 684 793 ··· 689 798 RepoInfo: f.RepoInfo(user), 690 799 }) 691 800 case http.MethodPost: 692 692 - title := r.FormValue("title") 693 693 - body := r.FormValue("body") 694 694 - 695 695 - if title == "" || body == "" { 696 696 - rp.pages.Notice(w, "issues", "Title and body are required") 697 697 - return 801 801 + issue := &db.Issue{ 802 802 + RepoAt: f.RepoAt(), 803 803 + Rkey: tid.TID(), 804 804 + Title: r.FormValue("title"), 805 805 + Body: r.FormValue("body"), 806 806 + Did: user.Did, 807 807 + Created: time.Now(), 698 808 } 699 809 700 700 - tx, err := rp.db.BeginTx(r.Context(), nil) 701 701 - if err != nil { 702 702 - rp.pages.Notice(w, "issues", "Failed to create issue, try again later") 810 810 + if err := rp.validator.ValidateIssue(issue); err != nil { 811 811 + l.Error("validation error", "err", err) 812 812 + rp.pages.Notice(w, "issues", fmt.Sprintf("Failed to create issue: %s", err)) 703 813 return 704 814 } 705 815 706 706 - issue := &db.Issue{ 707 707 - RepoAt: f.RepoAt, 708 708 - Title: title, 709 709 - Body: body, 710 710 - OwnerDid: user.Did, 711 711 - } 712 712 - err = db.NewIssue(tx, issue) 713 713 - if err != nil { 714 714 - log.Println("failed to create issue", err) 715 715 - rp.pages.Notice(w, "issues", "Failed to create issue.") 716 716 - return 717 717 - } 816 816 + record := issue.AsRecord() 718 817 818 818 + // create an atproto record 719 819 client, err := rp.oauth.AuthorizedClient(r) 720 820 if err != nil { 721 721 - log.Println("failed to get authorized client", err) 821 821 + l.Error("failed to get authorized client", "err", err) 722 822 rp.pages.Notice(w, "issues", "Failed to create issue.") 723 823 return 724 824 } 725 725 - atUri := f.RepoAt.String() 726 825 resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 727 826 Collection: tangled.RepoIssueNSID, 728 827 Repo: user.Did, 729 729 - Rkey: tid.TID(), 828 828 + Rkey: issue.Rkey, 730 829 Record: &lexutil.LexiconTypeDecoder{ 731 731 - Val: &tangled.RepoIssue{ 732 732 - Repo: atUri, 733 733 - Title: title, 734 734 - Body: &body, 735 735 - Owner: user.Did, 736 736 - IssueId: int64(issue.IssueId), 737 737 - }, 830 830 + Val: &record, 738 831 }, 739 832 }) 740 833 if err != nil { 741 741 - log.Println("failed to create issue", err) 834 834 + l.Error("failed to create issue", "err", err) 742 835 rp.pages.Notice(w, "issues", "Failed to create issue.") 743 836 return 744 837 } 838 838 + atUri := resp.Uri 745 839 746 746 - err = db.SetIssueAt(rp.db, f.RepoAt, issue.IssueId, resp.Uri) 840 840 + tx, err := rp.db.BeginTx(r.Context(), nil) 747 841 if err != nil { 748 748 - log.Println("failed to set issue at", err) 842 842 + rp.pages.Notice(w, "issues", "Failed to create issue, try again later") 843 843 + return 844 844 + } 845 845 + rollback := func() { 846 846 + err1 := tx.Rollback() 847 847 + err2 := rollbackRecord(context.Background(), atUri, client) 848 848 + 849 849 + if errors.Is(err1, sql.ErrTxDone) { 850 850 + err1 = nil 851 851 + } 852 852 + 853 853 + if err := errors.Join(err1, err2); err != nil { 854 854 + l.Error("failed to rollback txn", "err", err) 855 855 + } 856 856 + } 857 857 + defer rollback() 858 858 + 859 859 + err = db.PutIssue(tx, issue) 860 860 + if err != nil { 861 861 + log.Println("failed to create issue", err) 749 862 rp.pages.Notice(w, "issues", "Failed to create issue.") 750 863 return 751 864 } 752 865 753 753 - rp.notifier.NewIssue(r.Context(), issue) 866 866 + if err = tx.Commit(); err != nil { 867 867 + log.Println("failed to create issue", err) 868 868 + rp.pages.Notice(w, "issues", "Failed to create issue.") 869 869 + return 870 870 + } 754 871 872 872 + // everything is successful, do not rollback the atproto record 873 873 + atUri = "" 874 874 + rp.notifier.NewIssue(r.Context(), issue) 755 875 rp.pages.HxLocation(w, fmt.Sprintf("/%s/issues/%d", f.OwnerSlashRepo(), issue.IssueId)) 756 876 return 757 877 } 758 878 } 879 879 + 880 880 + // this is used to rollback changes made to the PDS 881 881 + // 882 882 + // it is a no-op if the provided ATURI is empty 883 883 + func rollbackRecord(ctx context.Context, aturi string, xrpcc *xrpcclient.Client) error { 884 884 + if aturi == "" { 885 885 + return nil 886 886 + } 887 887 + 888 888 + parsed := syntax.ATURI(aturi) 889 889 + 890 890 + collection := parsed.Collection().String() 891 891 + repo := parsed.Authority().String() 892 892 + rkey := parsed.RecordKey().String() 893 893 + 894 894 + _, err := xrpcc.RepoDeleteRecord(ctx, &comatproto.RepoDeleteRecord_Input{ 895 895 + Collection: collection, 896 896 + Repo: repo, 897 897 + Rkey: rkey, 898 898 + }) 899 899 + return err 900 900 + }

+24 -10

appview/issues/router.go

··· 12 12 13 13 r.Route("/", func(r chi.Router) { 14 14 r.With(middleware.Paginate).Get("/", i.RepoIssues) 15 15 - r.Get("/{issue}", i.RepoSingleIssue) 15 15 + 16 16 + r.Route("/{issue}", func(r chi.Router) { 17 17 + r.Use(mw.ResolveIssue()) 18 18 + r.Get("/", i.RepoSingleIssue) 19 19 + 20 20 + // authenticated routes 21 21 + r.Group(func(r chi.Router) { 22 22 + r.Use(middleware.AuthMiddleware(i.oauth)) 23 23 + r.Post("/comment", i.NewIssueComment) 24 24 + r.Route("/comment/{commentId}/", func(r chi.Router) { 25 25 + r.Get("/", i.IssueComment) 26 26 + r.Delete("/", i.DeleteIssueComment) 27 27 + r.Get("/edit", i.EditIssueComment) 28 28 + r.Post("/edit", i.EditIssueComment) 29 29 + r.Get("/reply", i.ReplyIssueComment) 30 30 + r.Get("/replyPlaceholder", i.ReplyIssueCommentPlaceholder) 31 31 + }) 32 32 + r.Get("/edit", i.EditIssue) 33 33 + r.Post("/edit", i.EditIssue) 34 34 + r.Delete("/", i.DeleteIssue) 35 35 + r.Post("/close", i.CloseIssue) 36 36 + r.Post("/reopen", i.ReopenIssue) 37 37 + }) 38 38 + }) 16 39 17 40 r.Group(func(r chi.Router) { 18 41 r.Use(middleware.AuthMiddleware(i.oauth)) 19 42 r.Get("/new", i.NewIssue) 20 43 r.Post("/new", i.NewIssue) 21 21 - r.Post("/{issue}/comment", i.NewIssueComment) 22 22 - r.Route("/{issue}/comment/{comment_id}/", func(r chi.Router) { 23 23 - r.Get("/", i.IssueComment) 24 24 - r.Delete("/", i.DeleteIssueComment) 25 25 - r.Get("/edit", i.EditIssueComment) 26 26 - r.Post("/edit", i.EditIssueComment) 27 27 - }) 28 28 - r.Post("/{issue}/close", i.CloseIssue) 29 29 - r.Post("/{issue}/reopen", i.ReopenIssue) 30 44 }) 31 45 }) 32 46

+415 -233

appview/knots/knots.go

··· 1 1 package knots 2 2 3 3 import ( 4 4 - "context" 5 5 - "crypto/hmac" 6 6 - "crypto/sha256" 7 7 - "encoding/hex" 4 4 + "errors" 8 5 "fmt" 9 6 "log/slog" 10 7 "net/http" 11 11 - "strings" 8 8 + "slices" 12 9 "time" 13 10 14 11 "github.com/go-chi/chi/v5" ··· 18 15 "tangled.sh/tangled.sh/core/appview/middleware" 19 16 "tangled.sh/tangled.sh/core/appview/oauth" 20 17 "tangled.sh/tangled.sh/core/appview/pages" 18 18 + "tangled.sh/tangled.sh/core/appview/serververify" 19 19 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 21 20 "tangled.sh/tangled.sh/core/eventconsumer" 22 21 "tangled.sh/tangled.sh/core/idresolver" 23 23 - "tangled.sh/tangled.sh/core/knotclient" 24 22 "tangled.sh/tangled.sh/core/rbac" 25 23 "tangled.sh/tangled.sh/core/tid" 26 24 ··· 39 37 Knotstream *eventconsumer.Consumer 40 38 } 41 39 42 42 - func (k *Knots) Router(mw *middleware.Middleware) http.Handler { 40 40 + func (k *Knots) Router() http.Handler { 43 41 r := chi.NewRouter() 44 42 45 45 - r.Use(middleware.AuthMiddleware(k.OAuth)) 43 43 + r.With(middleware.AuthMiddleware(k.OAuth)).Get("/", k.knots) 44 44 + r.With(middleware.AuthMiddleware(k.OAuth)).Post("/register", k.register) 46 45 47 47 - r.Get("/", k.index) 48 48 - r.Post("/key", k.generateKey) 46 46 + r.With(middleware.AuthMiddleware(k.OAuth)).Get("/{domain}", k.dashboard) 47 47 + r.With(middleware.AuthMiddleware(k.OAuth)).Delete("/{domain}", k.delete) 49 48 50 50 - r.Route("/{domain}", func(r chi.Router) { 51 51 - r.Post("/init", k.init) 52 52 - r.Get("/", k.dashboard) 53 53 - r.Route("/member", func(r chi.Router) { 54 54 - r.Use(mw.KnotOwner()) 55 55 - r.Get("/", k.members) 56 56 - r.Put("/", k.addMember) 57 57 - r.Delete("/", k.removeMember) 58 58 - }) 59 59 - }) 49 49 + r.With(middleware.AuthMiddleware(k.OAuth)).Post("/{domain}/retry", k.retry) 50 50 + r.With(middleware.AuthMiddleware(k.OAuth)).Post("/{domain}/add", k.addMember) 51 51 + r.With(middleware.AuthMiddleware(k.OAuth)).Post("/{domain}/remove", k.removeMember) 60 52 61 53 return r 62 54 } 63 55 64 64 - // get knots registered by this user 65 65 - func (k *Knots) index(w http.ResponseWriter, r *http.Request) { 66 66 - l := k.Logger.With("handler", "index") 67 67 - 56 56 + func (k *Knots) knots(w http.ResponseWriter, r *http.Request) { 68 57 user := k.OAuth.GetUser(r) 69 69 - registrations, err := db.RegistrationsByDid(k.Db, user.Did) 58 58 + registrations, err := db.GetRegistrations( 59 59 + k.Db, 60 60 + db.FilterEq("did", user.Did), 61 61 + ) 70 62 if err != nil { 71 71 - l.Error("failed to get registrations by did", "err", err) 63 63 + k.Logger.Error("failed to fetch knot registrations", "err", err) 64 64 + w.WriteHeader(http.StatusInternalServerError) 65 65 + return 72 66 } 73 67 74 68 k.Pages.Knots(w, pages.KnotsParams{ ··· 77 71 }) 78 72 } 79 73 80 80 - // requires auth 81 81 - func (k *Knots) generateKey(w http.ResponseWriter, r *http.Request) { 82 82 - l := k.Logger.With("handler", "generateKey") 74 74 + func (k *Knots) dashboard(w http.ResponseWriter, r *http.Request) { 75 75 + l := k.Logger.With("handler", "dashboard") 83 76 84 77 user := k.OAuth.GetUser(r) 85 85 - did := user.Did 86 86 - l = l.With("did", did) 78 78 + l = l.With("user", user.Did) 87 79 88 88 - // check if domain is valid url, and strip extra bits down to just host 89 89 - domain := r.FormValue("domain") 80 80 + domain := chi.URLParam(r, "domain") 90 81 if domain == "" { 91 91 - l.Error("empty domain") 92 92 - http.Error(w, "Invalid form", http.StatusBadRequest) 93 82 return 94 83 } 95 84 l = l.With("domain", domain) 96 85 97 97 - noticeId := "registration-error" 98 98 - fail := func() { 99 99 - k.Pages.Notice(w, noticeId, "Failed to generate registration key.") 86 86 + registrations, err := db.GetRegistrations( 87 87 + k.Db, 88 88 + db.FilterEq("did", user.Did), 89 89 + db.FilterEq("domain", domain), 90 90 + ) 91 91 + if err != nil { 92 92 + l.Error("failed to get registrations", "err", err) 93 93 + http.Error(w, "Not found", http.StatusNotFound) 94 94 + return 100 95 } 96 96 + if len(registrations) != 1 { 97 97 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 98 98 + return 99 99 + } 100 100 + registration := registrations[0] 101 101 102 102 - key, err := db.GenerateRegistrationKey(k.Db, domain, did) 102 102 + members, err := k.Enforcer.GetUserByRole("server:member", domain) 103 103 if err != nil { 104 104 - l.Error("failed to generate registration key", "err", err) 105 105 - fail() 104 104 + l.Error("failed to get knot members", "err", err) 105 105 + http.Error(w, "Not found", http.StatusInternalServerError) 106 106 return 107 107 } 108 108 + slices.Sort(members) 108 109 109 109 - allRegs, err := db.RegistrationsByDid(k.Db, did) 110 110 + repos, err := db.GetRepos( 111 111 + k.Db, 112 112 + 0, 113 113 + db.FilterEq("knot", domain), 114 114 + ) 110 115 if err != nil { 111 111 - l.Error("failed to generate registration key", "err", err) 112 112 - fail() 116 116 + l.Error("failed to get knot repos", "err", err) 117 117 + http.Error(w, "Not found", http.StatusInternalServerError) 113 118 return 114 119 } 115 120 116 116 - k.Pages.KnotListingFull(w, pages.KnotListingFullParams{ 117 117 - Registrations: allRegs, 118 118 - }) 119 119 - k.Pages.KnotSecret(w, pages.KnotSecretParams{ 120 120 - Secret: key, 121 121 + // organize repos by did 122 122 + repoMap := make(map[string][]db.Repo) 123 123 + for _, r := range repos { 124 124 + repoMap[r.Did] = append(repoMap[r.Did], r) 125 125 + } 126 126 + 127 127 + k.Pages.Knot(w, pages.KnotParams{ 128 128 + LoggedInUser: user, 129 129 + Registration: &registration, 130 130 + Members: members, 131 131 + Repos: repoMap, 132 132 + IsOwner: true, 121 133 }) 122 134 } 123 135 124 124 - // create a signed request and check if a node responds to that 125 125 - func (k *Knots) init(w http.ResponseWriter, r *http.Request) { 126 126 - l := k.Logger.With("handler", "init") 136 136 + func (k *Knots) register(w http.ResponseWriter, r *http.Request) { 127 137 user := k.OAuth.GetUser(r) 138 138 + l := k.Logger.With("handler", "register") 128 139 129 129 - noticeId := "operation-error" 130 130 - defaultErr := "Failed to initialize knot. Try again later." 140 140 + noticeId := "register-error" 141 141 + defaultErr := "Failed to register knot. Try again later." 131 142 fail := func() { 132 143 k.Pages.Notice(w, noticeId, defaultErr) 133 144 } 134 145 135 135 - domain := chi.URLParam(r, "domain") 146 146 + domain := r.FormValue("domain") 136 147 if domain == "" { 137 137 - http.Error(w, "malformed url", http.StatusBadRequest) 148 148 + k.Pages.Notice(w, noticeId, "Incomplete form.") 138 149 return 139 150 } 140 151 l = l.With("domain", domain) 152 152 + l = l.With("user", user.Did) 141 153 142 142 - l.Info("checking domain") 154 154 + tx, err := k.Db.Begin() 155 155 + if err != nil { 156 156 + l.Error("failed to start transaction", "err", err) 157 157 + fail() 158 158 + return 159 159 + } 160 160 + defer func() { 161 161 + tx.Rollback() 162 162 + k.Enforcer.E.LoadPolicy() 163 163 + }() 143 164 144 144 - registration, err := db.RegistrationByDomain(k.Db, domain) 165 165 + err = db.AddKnot(tx, domain, user.Did) 145 166 if err != nil { 146 146 - l.Error("failed to get registration for domain", "err", err) 167 167 + l.Error("failed to insert", "err", err) 147 168 fail() 148 169 return 149 170 } 150 150 - if registration.ByDid != user.Did { 151 151 - l.Error("unauthorized", "wantedDid", registration.ByDid, "gotDid", user.Did) 152 152 - w.WriteHeader(http.StatusUnauthorized) 171 171 + 172 172 + err = k.Enforcer.AddKnot(domain) 173 173 + if err != nil { 174 174 + l.Error("failed to create knot", "err", err) 175 175 + fail() 153 176 return 154 177 } 155 178 156 156 - secret, err := db.GetRegistrationKey(k.Db, domain) 179 179 + // create record on pds 180 180 + client, err := k.OAuth.AuthorizedClient(r) 157 181 if err != nil { 158 158 - l.Error("failed to get registration key for domain", "err", err) 182 182 + l.Error("failed to authorize client", "err", err) 159 183 fail() 160 184 return 161 185 } 162 186 163 163 - client, err := knotclient.NewSignedClient(domain, secret, k.Config.Core.Dev) 187 187 + ex, _ := client.RepoGetRecord(r.Context(), "", tangled.KnotNSID, user.Did, domain) 188 188 + var exCid *string 189 189 + if ex != nil { 190 190 + exCid = ex.Cid 191 191 + } 192 192 + 193 193 + // re-announce by registering under same rkey 194 194 + _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 195 195 + Collection: tangled.KnotNSID, 196 196 + Repo: user.Did, 197 197 + Rkey: domain, 198 198 + Record: &lexutil.LexiconTypeDecoder{ 199 199 + Val: &tangled.Knot{ 200 200 + CreatedAt: time.Now().Format(time.RFC3339), 201 201 + }, 202 202 + }, 203 203 + SwapRecord: exCid, 204 204 + }) 205 205 + 164 206 if err != nil { 165 165 - l.Error("failed to create knotclient", "err", err) 207 207 + l.Error("failed to put record", "err", err) 166 208 fail() 167 209 return 168 210 } 169 211 170 170 - resp, err := client.Init(user.Did) 212 212 + err = tx.Commit() 171 213 if err != nil { 172 172 - k.Pages.Notice(w, noticeId, fmt.Sprintf("Failed to make request: %s", err.Error())) 173 173 - l.Error("failed to make init request", "err", err) 214 214 + l.Error("failed to commit transaction", "err", err) 215 215 + fail() 174 216 return 175 217 } 176 218 177 177 - if resp.StatusCode == http.StatusConflict { 178 178 - k.Pages.Notice(w, noticeId, "This knot is already registered") 179 179 - l.Error("knot already registered", "statuscode", resp.StatusCode) 219 219 + err = k.Enforcer.E.SavePolicy() 220 220 + if err != nil { 221 221 + l.Error("failed to update ACL", "err", err) 222 222 + k.Pages.HxRefresh(w) 180 223 return 181 224 } 182 225 183 183 - if resp.StatusCode != http.StatusNoContent { 184 184 - k.Pages.Notice(w, noticeId, fmt.Sprintf("Received status %d from knot, expected %d", resp.StatusCode, http.StatusNoContent)) 185 185 - l.Error("incorrect statuscode returned", "statuscode", resp.StatusCode, "expected", http.StatusNoContent) 226 226 + // begin verification 227 227 + err = serververify.RunVerification(r.Context(), domain, user.Did, k.Config.Core.Dev) 228 228 + if err != nil { 229 229 + l.Error("verification failed", "err", err) 230 230 + k.Pages.HxRefresh(w) 186 231 return 187 232 } 188 233 189 189 - // verify response mac 190 190 - signature := resp.Header.Get("X-Signature") 191 191 - signatureBytes, err := hex.DecodeString(signature) 234 234 + err = serververify.MarkKnotVerified(k.Db, k.Enforcer, domain, user.Did) 192 235 if err != nil { 236 236 + l.Error("failed to mark verified", "err", err) 237 237 + k.Pages.HxRefresh(w) 193 238 return 194 239 } 195 240 196 196 - expectedMac := hmac.New(sha256.New, []byte(secret)) 197 197 - expectedMac.Write([]byte("ok")) 241 241 + // add this knot to knotstream 242 242 + go k.Knotstream.AddSource( 243 243 + r.Context(), 244 244 + eventconsumer.NewKnotSource(domain), 245 245 + ) 198 246 199 199 - if !hmac.Equal(expectedMac.Sum(nil), signatureBytes) { 200 200 - k.Pages.Notice(w, noticeId, "Response signature mismatch, consider regenerating the secret and retrying.") 201 201 - l.Error("signature mismatch", "bytes", signatureBytes) 202 202 - return 247 247 + // ok 248 248 + k.Pages.HxRefresh(w) 249 249 + } 250 250 + 251 251 + func (k *Knots) delete(w http.ResponseWriter, r *http.Request) { 252 252 + user := k.OAuth.GetUser(r) 253 253 + l := k.Logger.With("handler", "delete") 254 254 + 255 255 + noticeId := "operation-error" 256 256 + defaultErr := "Failed to delete knot. Try again later." 257 257 + fail := func() { 258 258 + k.Pages.Notice(w, noticeId, defaultErr) 203 259 } 204 260 205 205 - tx, err := k.Db.BeginTx(r.Context(), nil) 206 206 - if err != nil { 207 207 - l.Error("failed to start tx", "err", err) 261 261 + domain := chi.URLParam(r, "domain") 262 262 + if domain == "" { 263 263 + l.Error("empty domain") 208 264 fail() 209 265 return 210 266 } 211 211 - defer func() { 212 212 - tx.Rollback() 213 213 - err = k.Enforcer.E.LoadPolicy() 214 214 - if err != nil { 215 215 - l.Error("rollback failed", "err", err) 216 216 - } 217 217 - }() 218 267 219 219 - // mark as registered 220 220 - err = db.Register(tx, domain) 268 268 + // get record from db first 269 269 + registrations, err := db.GetRegistrations( 270 270 + k.Db, 271 271 + db.FilterEq("did", user.Did), 272 272 + db.FilterEq("domain", domain), 273 273 + ) 221 274 if err != nil { 222 222 - l.Error("failed to register domain", "err", err) 275 275 + l.Error("failed to get registration", "err", err) 276 276 + fail() 277 277 + return 278 278 + } 279 279 + if len(registrations) != 1 { 280 280 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 223 281 fail() 224 282 return 225 283 } 284 284 + registration := registrations[0] 226 285 227 227 - // set permissions for this did as owner 228 228 - reg, err := db.RegistrationByDomain(tx, domain) 286 286 + tx, err := k.Db.Begin() 229 287 if err != nil { 230 230 - l.Error("failed get registration by domain", "err", err) 288 288 + l.Error("failed to start txn", "err", err) 231 289 fail() 232 290 return 233 291 } 292 292 + defer func() { 293 293 + tx.Rollback() 294 294 + k.Enforcer.E.LoadPolicy() 295 295 + }() 234 296 235 235 - // add basic acls for this domain 236 236 - err = k.Enforcer.AddKnot(domain) 297 297 + err = db.DeleteKnot( 298 298 + tx, 299 299 + db.FilterEq("did", user.Did), 300 300 + db.FilterEq("domain", domain), 301 301 + ) 237 302 if err != nil { 238 238 - l.Error("failed to add knot to enforcer", "err", err) 303 303 + l.Error("failed to delete registration", "err", err) 239 304 fail() 240 305 return 241 306 } 242 307 243 243 - // add this did as owner of this domain 244 244 - err = k.Enforcer.AddKnotOwner(domain, reg.ByDid) 308 308 + // delete from enforcer if it was registered 309 309 + if registration.Registered != nil { 310 310 + err = k.Enforcer.RemoveKnot(domain) 311 311 + if err != nil { 312 312 + l.Error("failed to update ACL", "err", err) 313 313 + fail() 314 314 + return 315 315 + } 316 316 + } 317 317 + 318 318 + client, err := k.OAuth.AuthorizedClient(r) 245 319 if err != nil { 246 246 - l.Error("failed to add knot owner to enforcer", "err", err) 320 320 + l.Error("failed to authorize client", "err", err) 247 321 fail() 248 322 return 249 323 } 250 324 325 325 + _, err = client.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 326 326 + Collection: tangled.KnotNSID, 327 327 + Repo: user.Did, 328 328 + Rkey: domain, 329 329 + }) 330 330 + if err != nil { 331 331 + // non-fatal 332 332 + l.Error("failed to delete record", "err", err) 333 333 + } 334 334 + 251 335 err = tx.Commit() 252 336 if err != nil { 253 253 - l.Error("failed to commit changes", "err", err) 337 337 + l.Error("failed to delete knot", "err", err) 254 338 fail() 255 339 return 256 340 } 257 341 258 342 err = k.Enforcer.E.SavePolicy() 259 343 if err != nil { 260 260 - l.Error("failed to update ACLs", "err", err) 261 261 - fail() 344 344 + l.Error("failed to update ACL", "err", err) 345 345 + k.Pages.HxRefresh(w) 262 346 return 263 347 } 264 348 265 265 - // add this knot to knotstream 266 266 - go k.Knotstream.AddSource( 267 267 - context.Background(), 268 268 - eventconsumer.NewKnotSource(domain), 269 269 - ) 349 349 + shouldRedirect := r.Header.Get("shouldRedirect") 350 350 + if shouldRedirect == "true" { 351 351 + k.Pages.HxRedirect(w, "/knots") 352 352 + return 353 353 + } 270 354 271 271 - k.Pages.KnotListing(w, pages.KnotListingParams{ 272 272 - Registration: *reg, 273 273 - }) 355 355 + w.Write([]byte{}) 274 356 } 275 357 276 276 - func (k *Knots) dashboard(w http.ResponseWriter, r *http.Request) { 277 277 - l := k.Logger.With("handler", "dashboard") 358 358 + func (k *Knots) retry(w http.ResponseWriter, r *http.Request) { 359 359 + user := k.OAuth.GetUser(r) 360 360 + l := k.Logger.With("handler", "retry") 361 361 + 362 362 + noticeId := "operation-error" 363 363 + defaultErr := "Failed to verify knot. Try again later." 278 364 fail := func() { 279 279 - w.WriteHeader(http.StatusInternalServerError) 365 365 + k.Pages.Notice(w, noticeId, defaultErr) 280 366 } 281 367 282 368 domain := chi.URLParam(r, "domain") 283 369 if domain == "" { 284 284 - http.Error(w, "malformed url", http.StatusBadRequest) 370 370 + l.Error("empty domain") 371 371 + fail() 285 372 return 286 373 } 287 374 l = l.With("domain", domain) 375 375 + l = l.With("user", user.Did) 288 376 289 289 - user := k.OAuth.GetUser(r) 290 290 - l = l.With("did", user.Did) 291 291 - 292 292 - // dashboard is only available to owners 293 293 - ok, err := k.Enforcer.IsKnotOwner(user.Did, domain) 377 377 + // get record from db first 378 378 + registrations, err := db.GetRegistrations( 379 379 + k.Db, 380 380 + db.FilterEq("did", user.Did), 381 381 + db.FilterEq("domain", domain), 382 382 + ) 294 383 if err != nil { 295 295 - l.Error("failed to query enforcer", "err", err) 384 384 + l.Error("failed to get registration", "err", err) 296 385 fail() 386 386 + return 297 387 } 298 298 - if !ok { 299 299 - http.Error(w, "only owners can view dashboards", http.StatusUnauthorized) 388 388 + if len(registrations) != 1 { 389 389 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 390 390 + fail() 300 391 return 301 392 } 393 393 + registration := registrations[0] 302 394 303 303 - reg, err := db.RegistrationByDomain(k.Db, domain) 395 395 + // begin verification 396 396 + err = serververify.RunVerification(r.Context(), domain, user.Did, k.Config.Core.Dev) 304 397 if err != nil { 305 305 - l.Error("failed to get registration by domain", "err", err) 398 398 + l.Error("verification failed", "err", err) 399 399 + 400 400 + if errors.Is(err, xrpcclient.ErrXrpcUnsupported) { 401 401 + k.Pages.Notice(w, noticeId, "Failed to verify knot, XRPC queries are unsupported on this knot, consider upgrading!") 402 402 + return 403 403 + } 404 404 + 405 405 + if e, ok := err.(*serververify.OwnerMismatch); ok { 406 406 + k.Pages.Notice(w, noticeId, e.Error()) 407 407 + return 408 408 + } 409 409 + 306 410 fail() 307 411 return 308 412 } 309 413 310 310 - var members []string 311 311 - if reg.Registered != nil { 312 312 - members, err = k.Enforcer.GetUserByRole("server:member", domain) 414 414 + err = serververify.MarkKnotVerified(k.Db, k.Enforcer, domain, user.Did) 415 415 + if err != nil { 416 416 + l.Error("failed to mark verified", "err", err) 417 417 + k.Pages.Notice(w, noticeId, err.Error()) 418 418 + return 419 419 + } 420 420 + 421 421 + // if this knot requires upgrade, then emit a record too 422 422 + // 423 423 + // this is part of migrating from the old knot system to the new one 424 424 + if registration.NeedsUpgrade { 425 425 + // re-announce by registering under same rkey 426 426 + client, err := k.OAuth.AuthorizedClient(r) 313 427 if err != nil { 314 314 - l.Error("failed to get members list", "err", err) 428 428 + l.Error("failed to authorize client", "err", err) 315 429 fail() 316 430 return 317 431 } 318 318 - } 319 432 320 320 - repos, err := db.GetRepos( 321 321 - k.Db, 322 322 - 0, 323 323 - db.FilterEq("knot", domain), 324 324 - db.FilterIn("did", members), 325 325 - ) 326 326 - if err != nil { 327 327 - l.Error("failed to get repos list", "err", err) 328 328 - fail() 329 329 - return 330 330 - } 331 331 - // convert to map 332 332 - repoByMember := make(map[string][]db.Repo) 333 333 - for _, r := range repos { 334 334 - repoByMember[r.Did] = append(repoByMember[r.Did], r) 335 335 - } 433 433 + ex, _ := client.RepoGetRecord(r.Context(), "", tangled.KnotNSID, user.Did, domain) 434 434 + var exCid *string 435 435 + if ex != nil { 436 436 + exCid = ex.Cid 437 437 + } 336 438 337 337 - var didsToResolve []string 338 338 - for _, m := range members { 339 339 - didsToResolve = append(didsToResolve, m) 340 340 - } 341 341 - didsToResolve = append(didsToResolve, reg.ByDid) 342 342 - resolvedIds := k.IdResolver.ResolveIdents(r.Context(), didsToResolve) 343 343 - didHandleMap := make(map[string]string) 344 344 - for _, identity := range resolvedIds { 345 345 - if !identity.Handle.IsInvalidHandle() { 346 346 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 347 347 - } else { 348 348 - didHandleMap[identity.DID.String()] = identity.DID.String() 439 439 + // ignore the error here 440 440 + _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 441 441 + Collection: tangled.KnotNSID, 442 442 + Repo: user.Did, 443 443 + Rkey: domain, 444 444 + Record: &lexutil.LexiconTypeDecoder{ 445 445 + Val: &tangled.Knot{ 446 446 + CreatedAt: time.Now().Format(time.RFC3339), 447 447 + }, 448 448 + }, 449 449 + SwapRecord: exCid, 450 450 + }) 451 451 + if err != nil { 452 452 + l.Error("non-fatal: failed to reannouce knot", "err", err) 349 453 } 350 454 } 351 455 352 352 - k.Pages.Knot(w, pages.KnotParams{ 353 353 - LoggedInUser: user, 354 354 - DidHandleMap: didHandleMap, 355 355 - Registration: reg, 356 356 - Members: members, 357 357 - Repos: repoByMember, 358 358 - IsOwner: true, 359 359 - }) 360 360 - } 456 456 + // add this knot to knotstream 457 457 + go k.Knotstream.AddSource( 458 458 + r.Context(), 459 459 + eventconsumer.NewKnotSource(domain), 460 460 + ) 361 461 362 362 - // list members of domain, requires auth and requires owner status 363 363 - func (k *Knots) members(w http.ResponseWriter, r *http.Request) { 364 364 - l := k.Logger.With("handler", "members") 365 365 - 366 366 - domain := chi.URLParam(r, "domain") 367 367 - if domain == "" { 368 368 - http.Error(w, "malformed url", http.StatusBadRequest) 462 462 + shouldRefresh := r.Header.Get("shouldRefresh") 463 463 + if shouldRefresh == "true" { 464 464 + k.Pages.HxRefresh(w) 369 465 return 370 466 } 371 371 - l = l.With("domain", domain) 372 467 373 373 - // list all members for this domain 374 374 - memberDids, err := k.Enforcer.GetUserByRole("server:member", domain) 468 468 + // Get updated registration to show 469 469 + registrations, err = db.GetRegistrations( 470 470 + k.Db, 471 471 + db.FilterEq("did", user.Did), 472 472 + db.FilterEq("domain", domain), 473 473 + ) 375 474 if err != nil { 376 376 - w.Write([]byte("failed to fetch member list")) 475 475 + l.Error("failed to get registration", "err", err) 476 476 + fail() 377 477 return 378 478 } 479 479 + if len(registrations) != 1 { 480 480 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 481 481 + fail() 482 482 + return 483 483 + } 484 484 + updatedRegistration := registrations[0] 379 485 380 380 - w.Write([]byte(strings.Join(memberDids, "\n"))) 486 486 + w.Header().Set("HX-Reswap", "outerHTML") 487 487 + k.Pages.KnotListing(w, pages.KnotListingParams{ 488 488 + Registration: &updatedRegistration, 489 489 + }) 381 490 } 382 491 383 383 - // add member to domain, requires auth and requires invite access 384 492 func (k *Knots) addMember(w http.ResponseWriter, r *http.Request) { 385 385 - l := k.Logger.With("handler", "members") 493 493 + user := k.OAuth.GetUser(r) 494 494 + l := k.Logger.With("handler", "addMember") 386 495 387 496 domain := chi.URLParam(r, "domain") 388 497 if domain == "" { 389 389 - http.Error(w, "malformed url", http.StatusBadRequest) 498 498 + l.Error("empty domain") 499 499 + http.Error(w, "Not found", http.StatusNotFound) 390 500 return 391 501 } 392 502 l = l.With("domain", domain) 503 503 + l = l.With("user", user.Did) 393 504 394 394 - reg, err := db.RegistrationByDomain(k.Db, domain) 505 505 + registrations, err := db.GetRegistrations( 506 506 + k.Db, 507 507 + db.FilterEq("did", user.Did), 508 508 + db.FilterEq("domain", domain), 509 509 + db.FilterIsNot("registered", "null"), 510 510 + ) 395 511 if err != nil { 396 396 - l.Error("failed to get registration by domain", "err", err) 397 397 - http.Error(w, "malformed url", http.StatusBadRequest) 512 512 + l.Error("failed to get registration", "err", err) 513 513 + return 514 514 + } 515 515 + if len(registrations) != 1 { 516 516 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 398 517 return 399 518 } 519 519 + registration := registrations[0] 400 520 401 401 - noticeId := fmt.Sprintf("add-member-error-%d", reg.Id) 402 402 - l = l.With("notice-id", noticeId) 521 521 + noticeId := fmt.Sprintf("add-member-error-%d", registration.Id) 403 522 defaultErr := "Failed to add member. Try again later." 404 523 fail := func() { 405 524 k.Pages.Notice(w, noticeId, defaultErr) 406 525 } 407 526 408 408 - subjectIdentifier := r.FormValue("subject") 409 409 - if subjectIdentifier == "" { 410 410 - http.Error(w, "malformed form", http.StatusBadRequest) 527 527 + member := r.FormValue("member") 528 528 + if member == "" { 529 529 + l.Error("empty member") 530 530 + k.Pages.Notice(w, noticeId, "Failed to add member, empty form.") 411 531 return 412 532 } 413 413 - l = l.With("subjectIdentifier", subjectIdentifier) 533 533 + l = l.With("member", member) 414 534 415 415 - subjectIdentity, err := k.IdResolver.ResolveIdent(r.Context(), subjectIdentifier) 535 535 + memberId, err := k.IdResolver.ResolveIdent(r.Context(), member) 416 536 if err != nil { 417 417 - l.Error("failed to resolve identity", "err", err) 537 537 + l.Error("failed to resolve member identity to handle", "err", err) 418 538 k.Pages.Notice(w, noticeId, "Failed to add member, identity resolution failed.") 419 539 return 420 540 } 421 421 - l = l.With("subjectDid", subjectIdentity.DID) 422 422 - 423 423 - l.Info("adding member to knot") 541 541 + if memberId.Handle.IsInvalidHandle() { 542 542 + l.Error("failed to resolve member identity to handle") 543 543 + k.Pages.Notice(w, noticeId, "Failed to add member, identity resolution failed.") 544 544 + return 545 545 + } 424 546 425 425 - // announce this relation into the firehose, store into owners' pds 547 547 + // write to pds 426 548 client, err := k.OAuth.AuthorizedClient(r) 427 549 if err != nil { 428 428 - l.Error("failed to create client", "err", err) 550 550 + l.Error("failed to authorize client", "err", err) 429 551 fail() 430 552 return 431 553 } 432 554 433 433 - currentUser := k.OAuth.GetUser(r) 434 434 - createdAt := time.Now().Format(time.RFC3339) 435 435 - resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 555 555 + rkey := tid.TID() 556 556 + 557 557 + _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 436 558 Collection: tangled.KnotMemberNSID, 437 437 - Repo: currentUser.Did, 438 438 - Rkey: tid.TID(), 559 559 + Repo: user.Did, 560 560 + Rkey: rkey, 439 561 Record: &lexutil.LexiconTypeDecoder{ 440 562 Val: &tangled.KnotMember{ 441 441 - Subject: subjectIdentity.DID.String(), 563 563 + CreatedAt: time.Now().Format(time.RFC3339), 442 564 Domain: domain, 443 443 - CreatedAt: createdAt, 444 444 - }}, 565 565 + Subject: memberId.DID.String(), 566 566 + }, 567 567 + }, 445 568 }) 446 446 - // invalid record 447 569 if err != nil { 448 448 - l.Error("failed to write to PDS", "err", err) 449 449 - fail() 570 570 + l.Error("failed to add record to PDS", "err", err) 571 571 + k.Pages.Notice(w, noticeId, "Failed to add record to PDS, try again later.") 450 572 return 451 573 } 452 452 - l = l.With("at-uri", resp.Uri) 453 453 - l.Info("wrote record to PDS") 454 574 455 455 - secret, err := db.GetRegistrationKey(k.Db, domain) 575 575 + err = k.Enforcer.AddKnotMember(domain, memberId.DID.String()) 456 576 if err != nil { 457 457 - l.Error("failed to get registration key", "err", err) 577 577 + l.Error("failed to add member to ACLs", "err", err) 458 578 fail() 459 579 return 460 580 } 461 581 462 462 - ksClient, err := knotclient.NewSignedClient(domain, secret, k.Config.Core.Dev) 582 582 + err = k.Enforcer.E.SavePolicy() 463 583 if err != nil { 464 464 - l.Error("failed to create client", "err", err) 584 584 + l.Error("failed to save ACL policy", "err", err) 465 585 fail() 466 586 return 467 587 } 468 588 469 469 - ksResp, err := ksClient.AddMember(subjectIdentity.DID.String()) 589 589 + // success 590 590 + k.Pages.HxRedirect(w, fmt.Sprintf("/knots/%s", domain)) 591 591 + } 592 592 + 593 593 + func (k *Knots) removeMember(w http.ResponseWriter, r *http.Request) { 594 594 + user := k.OAuth.GetUser(r) 595 595 + l := k.Logger.With("handler", "removeMember") 596 596 + 597 597 + noticeId := "operation-error" 598 598 + defaultErr := "Failed to remove member. Try again later." 599 599 + fail := func() { 600 600 + k.Pages.Notice(w, noticeId, defaultErr) 601 601 + } 602 602 + 603 603 + domain := chi.URLParam(r, "domain") 604 604 + if domain == "" { 605 605 + l.Error("empty domain") 606 606 + fail() 607 607 + return 608 608 + } 609 609 + l = l.With("domain", domain) 610 610 + l = l.With("user", user.Did) 611 611 + 612 612 + registrations, err := db.GetRegistrations( 613 613 + k.Db, 614 614 + db.FilterEq("did", user.Did), 615 615 + db.FilterEq("domain", domain), 616 616 + db.FilterIsNot("registered", "null"), 617 617 + ) 470 618 if err != nil { 471 471 - l.Error("failed to reach knotserver", "err", err) 472 472 - k.Pages.Notice(w, noticeId, "Failed to reach to knotserver.") 619 619 + l.Error("failed to get registration", "err", err) 620 620 + return 621 621 + } 622 622 + if len(registrations) != 1 { 623 623 + l.Error("got incorret number of registrations", "got", len(registrations), "expected", 1) 624 624 + return 625 625 + } 626 626 + 627 627 + member := r.FormValue("member") 628 628 + if member == "" { 629 629 + l.Error("empty member") 630 630 + k.Pages.Notice(w, noticeId, "Failed to remove member, empty form.") 631 631 + return 632 632 + } 633 633 + l = l.With("member", member) 634 634 + 635 635 + memberId, err := k.IdResolver.ResolveIdent(r.Context(), member) 636 636 + if err != nil { 637 637 + l.Error("failed to resolve member identity to handle", "err", err) 638 638 + k.Pages.Notice(w, noticeId, "Failed to remove member, identity resolution failed.") 639 639 + return 640 640 + } 641 641 + if memberId.Handle.IsInvalidHandle() { 642 642 + l.Error("failed to resolve member identity to handle") 643 643 + k.Pages.Notice(w, noticeId, "Failed to remove member, identity resolution failed.") 473 644 return 474 645 } 475 646 476 476 - if ksResp.StatusCode != http.StatusNoContent { 477 477 - l.Error("status mismatch", "got", ksResp.StatusCode, "expected", http.StatusNoContent) 478 478 - k.Pages.Notice(w, noticeId, fmt.Sprintf("Unexpected status code from knotserver %d, expected %d", ksResp.StatusCode, http.StatusNoContent)) 647 647 + // remove from enforcer 648 648 + err = k.Enforcer.RemoveKnotMember(domain, memberId.DID.String()) 649 649 + if err != nil { 650 650 + l.Error("failed to update ACLs", "err", err) 651 651 + fail() 479 652 return 480 653 } 481 654 482 482 - err = k.Enforcer.AddKnotMember(domain, subjectIdentity.DID.String()) 655 655 + client, err := k.OAuth.AuthorizedClient(r) 483 656 if err != nil { 484 484 - l.Error("failed to add member to enforcer", "err", err) 657 657 + l.Error("failed to authorize client", "err", err) 485 658 fail() 486 659 return 487 660 } 488 661 489 489 - // success 490 490 - k.Pages.HxRedirect(w, fmt.Sprintf("/knots/%s", domain)) 491 491 - } 662 662 + // TODO: We need to track the rkey for knot members to delete the record 663 663 + // For now, just remove from ACLs 664 664 + _ = client 492 665 493 493 - func (k *Knots) removeMember(w http.ResponseWriter, r *http.Request) { 666 666 + // commit everything 667 667 + err = k.Enforcer.E.SavePolicy() 668 668 + if err != nil { 669 669 + l.Error("failed to save ACLs", "err", err) 670 670 + fail() 671 671 + return 672 672 + } 673 673 + 674 674 + // ok 675 675 + k.Pages.HxRefresh(w) 494 676 }

+59 -24

appview/middleware/middleware.go

··· 5 5 "fmt" 6 6 "log" 7 7 "net/http" 8 8 + "net/url" 8 9 "slices" 9 10 "strconv" 10 11 "strings" 11 11 - "time" 12 12 13 13 "github.com/bluesky-social/indigo/atproto/identity" 14 14 "github.com/go-chi/chi/v5" ··· 46 46 func AuthMiddleware(a *oauth.OAuth) middlewareFunc { 47 47 return func(next http.Handler) http.Handler { 48 48 return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 49 49 + returnURL := "/" 50 50 + if u, err := url.Parse(r.Header.Get("Referer")); err == nil { 51 51 + returnURL = u.RequestURI() 52 52 + } 53 53 + 54 54 + loginURL := fmt.Sprintf("/login?return_url=%s", url.QueryEscape(returnURL)) 55 55 + 49 56 redirectFunc := func(w http.ResponseWriter, r *http.Request) { 50 50 - http.Redirect(w, r, "/login", http.StatusTemporaryRedirect) 57 57 + http.Redirect(w, r, loginURL, http.StatusTemporaryRedirect) 51 58 } 52 59 if r.Header.Get("HX-Request") == "true" { 53 60 redirectFunc = func(w http.ResponseWriter, _ *http.Request) { 54 54 - w.Header().Set("HX-Redirect", "/login") 61 61 + w.Header().Set("HX-Redirect", loginURL) 55 62 w.WriteHeader(http.StatusOK) 56 63 } 57 64 } ··· 167 174 } 168 175 } 169 176 170 170 - func StripLeadingAt(next http.Handler) http.Handler { 171 171 - return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) { 172 172 - path := req.URL.EscapedPath() 173 173 - if strings.HasPrefix(path, "/@") { 174 174 - req.URL.RawPath = "/" + strings.TrimPrefix(path, "/@") 175 175 - } 176 176 - next.ServeHTTP(w, req) 177 177 - }) 178 178 - } 179 179 - 180 177 func (mw Middleware) ResolveIdent() middlewareFunc { 181 178 excluded := []string{"favicon.ico"} 182 179 ··· 188 185 return 189 186 } 190 187 188 188 + didOrHandle = strings.TrimPrefix(didOrHandle, "@") 189 189 + 191 190 id, err := mw.idResolver.ResolveIdent(req.Context(), didOrHandle) 192 191 if err != nil { 193 192 // invalid did or handle 194 194 - log.Println("failed to resolve did/handle:", err) 193 193 + log.Printf("failed to resolve did/handle '%s': %s\n", didOrHandle, err) 195 194 mw.pages.Error404(w) 196 195 return 197 196 } ··· 218 217 if err != nil { 219 218 // invalid did or handle 220 219 log.Println("failed to resolve repo") 221 221 - mw.pages.Error404(w) 220 220 + mw.pages.ErrorKnot404(w) 222 221 return 223 222 } 224 223 225 225 - ctx := context.WithValue(req.Context(), "knot", repo.Knot) 226 226 - ctx = context.WithValue(ctx, "repoAt", repo.AtUri) 227 227 - ctx = context.WithValue(ctx, "repoDescription", repo.Description) 228 228 - ctx = context.WithValue(ctx, "repoSpindle", repo.Spindle) 229 229 - ctx = context.WithValue(ctx, "repoAddedAt", repo.Created.Format(time.RFC3339)) 224 224 + ctx := context.WithValue(req.Context(), "repo", repo) 230 225 next.ServeHTTP(w, req.WithContext(ctx)) 231 226 }) 232 227 } ··· 239 234 f, err := mw.repoResolver.Resolve(r) 240 235 if err != nil { 241 236 log.Println("failed to fully resolve repo", err) 242 242 - http.Error(w, "invalid repo url", http.StatusNotFound) 237 237 + mw.pages.ErrorKnot404(w) 243 238 return 244 239 } 245 240 ··· 251 246 return 252 247 } 253 248 254 254 - pr, err := db.GetPull(mw.db, f.RepoAt, prIdInt) 249 249 + pr, err := db.GetPull(mw.db, f.RepoAt(), prIdInt) 255 250 if err != nil { 256 251 log.Println("failed to get pull and comments", err) 257 252 return ··· 280 275 } 281 276 } 282 277 278 278 + // middleware that is tacked on top of /{user}/{repo}/issues/{issue} 279 279 + func (mw Middleware) ResolveIssue() middlewareFunc { 280 280 + return func(next http.Handler) http.Handler { 281 281 + return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 282 282 + f, err := mw.repoResolver.Resolve(r) 283 283 + if err != nil { 284 284 + log.Println("failed to fully resolve repo", err) 285 285 + mw.pages.ErrorKnot404(w) 286 286 + return 287 287 + } 288 288 + 289 289 + issueIdStr := chi.URLParam(r, "issue") 290 290 + issueId, err := strconv.Atoi(issueIdStr) 291 291 + if err != nil { 292 292 + log.Println("failed to fully resolve issue ID", err) 293 293 + mw.pages.ErrorKnot404(w) 294 294 + return 295 295 + } 296 296 + 297 297 + issues, err := db.GetIssues( 298 298 + mw.db, 299 299 + db.FilterEq("repo_at", f.RepoAt()), 300 300 + db.FilterEq("issue_id", issueId), 301 301 + ) 302 302 + if err != nil { 303 303 + log.Println("failed to get issues", "err", err) 304 304 + return 305 305 + } 306 306 + if len(issues) != 1 { 307 307 + log.Println("got incorrect number of issues", "len(issuse)", len(issues)) 308 308 + return 309 309 + } 310 310 + issue := issues[0] 311 311 + 312 312 + ctx := context.WithValue(r.Context(), "issue", &issue) 313 313 + next.ServeHTTP(w, r.WithContext(ctx)) 314 314 + }) 315 315 + } 316 316 + } 317 317 + 283 318 // this should serve the go-import meta tag even if the path is technically 284 319 // a 404 like tangled.sh/oppi.li/go-git/v5 285 320 func (mw Middleware) GoImport() middlewareFunc { ··· 288 323 f, err := mw.repoResolver.Resolve(r) 289 324 if err != nil { 290 325 log.Println("failed to fully resolve repo", err) 291 291 - http.Error(w, "invalid repo url", http.StatusNotFound) 326 326 + mw.pages.ErrorKnot404(w) 292 327 return 293 328 } 294 329 295 295 - fullName := f.OwnerHandle() + "/" + f.RepoName 330 330 + fullName := f.OwnerHandle() + "/" + f.Name 296 331 297 332 if r.Header.Get("User-Agent") == "Go-http-client/1.1" { 298 333 if r.URL.Query().Get("go-get") == "1" {

+18

appview/notify/merged_notifier.go

··· 66 66 notifier.UpdateProfile(ctx, profile) 67 67 } 68 68 } 69 69 + 70 70 + func (m *mergedNotifier) NewString(ctx context.Context, string *db.String) { 71 71 + for _, notifier := range m.notifiers { 72 72 + notifier.NewString(ctx, string) 73 73 + } 74 74 + } 75 75 + 76 76 + func (m *mergedNotifier) EditString(ctx context.Context, string *db.String) { 77 77 + for _, notifier := range m.notifiers { 78 78 + notifier.EditString(ctx, string) 79 79 + } 80 80 + } 81 81 + 82 82 + func (m *mergedNotifier) DeleteString(ctx context.Context, did, rkey string) { 83 83 + for _, notifier := range m.notifiers { 84 84 + notifier.DeleteString(ctx, did, rkey) 85 85 + } 86 86 + }

+8

appview/notify/notifier.go

··· 21 21 NewPullComment(ctx context.Context, comment *db.PullComment) 22 22 23 23 UpdateProfile(ctx context.Context, profile *db.Profile) 24 24 + 25 25 + NewString(ctx context.Context, s *db.String) 26 26 + EditString(ctx context.Context, s *db.String) 27 27 + DeleteString(ctx context.Context, did, rkey string) 24 28 } 25 29 26 30 // BaseNotifier is a listener that does nothing ··· 42 46 func (m *BaseNotifier) NewPullComment(ctx context.Context, comment *db.PullComment) {} 43 47 44 48 func (m *BaseNotifier) UpdateProfile(ctx context.Context, profile *db.Profile) {} 49 49 + 50 50 + func (m *BaseNotifier) NewString(ctx context.Context, s *db.String) {} 51 51 + func (m *BaseNotifier) EditString(ctx context.Context, s *db.String) {} 52 52 + func (m *BaseNotifier) DeleteString(ctx context.Context, did, rkey string) {}

+196 -17

appview/oauth/handler/handler.go

··· 1 1 package oauth 2 2 3 3 import ( 4 4 + "bytes" 5 5 + "context" 4 6 "encoding/json" 5 7 "fmt" 6 8 "log" 7 9 "net/http" 8 10 "net/url" 11 11 + "slices" 9 12 "strings" 13 13 + "time" 10 14 11 15 "github.com/go-chi/chi/v5" 12 16 "github.com/gorilla/sessions" 13 17 "github.com/lestrrat-go/jwx/v2/jwk" 14 18 "github.com/posthog/posthog-go" 15 19 "tangled.sh/icyphox.sh/atproto-oauth/helpers" 20 20 + tangled "tangled.sh/tangled.sh/core/api/tangled" 16 21 sessioncache "tangled.sh/tangled.sh/core/appview/cache/session" 17 22 "tangled.sh/tangled.sh/core/appview/config" 18 23 "tangled.sh/tangled.sh/core/appview/db" ··· 21 26 "tangled.sh/tangled.sh/core/appview/oauth/client" 22 27 "tangled.sh/tangled.sh/core/appview/pages" 23 28 "tangled.sh/tangled.sh/core/idresolver" 24 24 - "tangled.sh/tangled.sh/core/knotclient" 25 29 "tangled.sh/tangled.sh/core/rbac" 30 30 + "tangled.sh/tangled.sh/core/tid" 26 31 ) 27 32 28 33 const ( ··· 104 109 func (o *OAuthHandler) login(w http.ResponseWriter, r *http.Request) { 105 110 switch r.Method { 106 111 case http.MethodGet: 107 107 - o.pages.Login(w, pages.LoginParams{}) 112 112 + returnURL := r.URL.Query().Get("return_url") 113 113 + o.pages.Login(w, pages.LoginParams{ 114 114 + ReturnUrl: returnURL, 115 115 + }) 108 116 case http.MethodPost: 109 117 handle := r.FormValue("handle") 110 118 ··· 189 197 DpopAuthserverNonce: parResp.DpopAuthserverNonce, 190 198 DpopPrivateJwk: string(dpopKeyJson), 191 199 State: parResp.State, 200 200 + ReturnUrl: r.FormValue("return_url"), 192 201 }) 193 202 if err != nil { 194 203 log.Println("failed to save oauth request:", err) ··· 244 253 return 245 254 } 246 255 256 256 + if iss != oauthRequest.AuthserverIss { 257 257 + log.Println("mismatched iss:", iss, "!=", oauthRequest.AuthserverIss, "for state:", state) 258 258 + o.pages.Notice(w, "login-msg", "Failed to authenticate. Try again later.") 259 259 + return 260 260 + } 261 261 + 247 262 self := o.oauth.ClientMetadata() 248 263 249 264 oauthClient, err := client.NewClient( ··· 294 309 295 310 log.Println("session saved successfully") 296 311 go o.addToDefaultKnot(oauthRequest.Did) 312 312 + go o.addToDefaultSpindle(oauthRequest.Did) 297 313 298 314 if !o.config.Core.Dev { 299 315 err = o.posthog.Enqueue(posthog.Capture{ ··· 305 321 } 306 322 } 307 323 308 308 - http.Redirect(w, r, "/", http.StatusFound) 324 324 + returnUrl := oauthRequest.ReturnUrl 325 325 + if returnUrl == "" { 326 326 + returnUrl = "/" 327 327 + } 328 328 + 329 329 + http.Redirect(w, r, returnUrl, http.StatusFound) 309 330 } 310 331 311 332 func (o *OAuthHandler) logout(w http.ResponseWriter, r *http.Request) { ··· 332 353 return pubKey, nil 333 354 } 334 355 335 335 - func (o *OAuthHandler) addToDefaultKnot(did string) { 336 336 - defaultKnot := "knot1.tangled.sh" 356 356 + var ( 357 357 + tangledDid = "did:plc:wshs7t2adsemcrrd4snkeqli" 358 358 + icyDid = "did:plc:hwevmowznbiukdf6uk5dwrrq" 337 359 338 338 - log.Printf("adding %s to default knot", did) 339 339 - err := o.enforcer.AddKnotMember(defaultKnot, did) 360 360 + defaultSpindle = "spindle.tangled.sh" 361 361 + defaultKnot = "knot1.tangled.sh" 362 362 + ) 363 363 + 364 364 + func (o *OAuthHandler) addToDefaultSpindle(did string) { 365 365 + // use the tangled.sh app password to get an accessJwt 366 366 + // and create an sh.tangled.spindle.member record with that 367 367 + spindleMembers, err := db.GetSpindleMembers( 368 368 + o.db, 369 369 + db.FilterEq("instance", "spindle.tangled.sh"), 370 370 + db.FilterEq("subject", did), 371 371 + ) 340 372 if err != nil { 341 341 - log.Println("failed to add user to knot1.tangled.sh: ", err) 373 373 + log.Printf("failed to get spindle members for did %s: %v", did, err) 374 374 + return 375 375 + } 376 376 + 377 377 + if len(spindleMembers) != 0 { 378 378 + log.Printf("did %s is already a member of the default spindle", did) 342 379 return 343 380 } 344 344 - err = o.enforcer.E.SavePolicy() 381 381 + 382 382 + log.Printf("adding %s to default spindle", did) 383 383 + session, err := o.createAppPasswordSession(o.config.Core.AppPassword, tangledDid) 345 384 if err != nil { 346 346 - log.Println("failed to add user to knot1.tangled.sh: ", err) 385 385 + log.Printf("failed to create session: %s", err) 386 386 + return 387 387 + } 388 388 + 389 389 + record := tangled.SpindleMember{ 390 390 + LexiconTypeID: "sh.tangled.spindle.member", 391 391 + Subject: did, 392 392 + Instance: defaultSpindle, 393 393 + CreatedAt: time.Now().Format(time.RFC3339), 394 394 + } 395 395 + 396 396 + if err := session.putRecord(record, tangled.SpindleMemberNSID); err != nil { 397 397 + log.Printf("failed to add member to default spindle: %s", err) 347 398 return 348 399 } 349 400 350 350 - secret, err := db.GetRegistrationKey(o.db, defaultKnot) 401 401 + log.Printf("successfully added %s to default spindle", did) 402 402 + } 403 403 + 404 404 + func (o *OAuthHandler) addToDefaultKnot(did string) { 405 405 + // use the tangled.sh app password to get an accessJwt 406 406 + // and create an sh.tangled.spindle.member record with that 407 407 + 408 408 + allKnots, err := o.enforcer.GetKnotsForUser(did) 351 409 if err != nil { 352 352 - log.Println("failed to get registration key for knot1.tangled.sh") 410 410 + log.Printf("failed to get knot members for did %s: %v", did, err) 411 411 + return 412 412 + } 413 413 + 414 414 + if slices.Contains(allKnots, defaultKnot) { 415 415 + log.Printf("did %s is already a member of the default knot", did) 353 416 return 354 417 } 355 355 - signedClient, err := knotclient.NewSignedClient(defaultKnot, secret, o.config.Core.Dev) 356 356 - resp, err := signedClient.AddMember(did) 418 418 + 419 419 + log.Printf("adding %s to default knot", did) 420 420 + session, err := o.createAppPasswordSession(o.config.Core.TmpAltAppPassword, icyDid) 357 421 if err != nil { 358 358 - log.Println("failed to add user to knot1.tangled.sh: ", err) 422 422 + log.Printf("failed to create session: %s", err) 359 423 return 360 424 } 361 425 362 362 - if resp.StatusCode != http.StatusNoContent { 363 363 - log.Println("failed to add user to knot1.tangled.sh: ", resp.StatusCode) 426 426 + record := tangled.KnotMember{ 427 427 + LexiconTypeID: "sh.tangled.knot.member", 428 428 + Subject: did, 429 429 + Domain: defaultKnot, 430 430 + CreatedAt: time.Now().Format(time.RFC3339), 431 431 + } 432 432 + 433 433 + if err := session.putRecord(record, tangled.KnotMemberNSID); err != nil { 434 434 + log.Printf("failed to add member to default knot: %s", err) 435 435 + return 436 436 + } 437 437 + 438 438 + if err := o.enforcer.AddKnotMember(defaultKnot, did); err != nil { 439 439 + log.Printf("failed to set up enforcer rules: %s", err) 364 440 return 365 441 } 442 442 + 443 443 + log.Printf("successfully added %s to default Knot", did) 444 444 + } 445 445 + 446 446 + // create a session using apppasswords 447 447 + type session struct { 448 448 + AccessJwt string `json:"accessJwt"` 449 449 + PdsEndpoint string 450 450 + Did string 451 451 + } 452 452 + 453 453 + func (o *OAuthHandler) createAppPasswordSession(appPassword, did string) (*session, error) { 454 454 + if appPassword == "" { 455 455 + return nil, fmt.Errorf("no app password configured, skipping member addition") 456 456 + } 457 457 + 458 458 + resolved, err := o.idResolver.ResolveIdent(context.Background(), did) 459 459 + if err != nil { 460 460 + return nil, fmt.Errorf("failed to resolve tangled.sh DID %s: %v", did, err) 461 461 + } 462 462 + 463 463 + pdsEndpoint := resolved.PDSEndpoint() 464 464 + if pdsEndpoint == "" { 465 465 + return nil, fmt.Errorf("no PDS endpoint found for tangled.sh DID %s", did) 466 466 + } 467 467 + 468 468 + sessionPayload := map[string]string{ 469 469 + "identifier": did, 470 470 + "password": appPassword, 471 471 + } 472 472 + sessionBytes, err := json.Marshal(sessionPayload) 473 473 + if err != nil { 474 474 + return nil, fmt.Errorf("failed to marshal session payload: %v", err) 475 475 + } 476 476 + 477 477 + sessionURL := pdsEndpoint + "/xrpc/com.atproto.server.createSession" 478 478 + sessionReq, err := http.NewRequestWithContext(context.Background(), "POST", sessionURL, bytes.NewBuffer(sessionBytes)) 479 479 + if err != nil { 480 480 + return nil, fmt.Errorf("failed to create session request: %v", err) 481 481 + } 482 482 + sessionReq.Header.Set("Content-Type", "application/json") 483 483 + 484 484 + client := &http.Client{Timeout: 30 * time.Second} 485 485 + sessionResp, err := client.Do(sessionReq) 486 486 + if err != nil { 487 487 + return nil, fmt.Errorf("failed to create session: %v", err) 488 488 + } 489 489 + defer sessionResp.Body.Close() 490 490 + 491 491 + if sessionResp.StatusCode != http.StatusOK { 492 492 + return nil, fmt.Errorf("failed to create session: HTTP %d", sessionResp.StatusCode) 493 493 + } 494 494 + 495 495 + var session session 496 496 + if err := json.NewDecoder(sessionResp.Body).Decode(&session); err != nil { 497 497 + return nil, fmt.Errorf("failed to decode session response: %v", err) 498 498 + } 499 499 + 500 500 + session.PdsEndpoint = pdsEndpoint 501 501 + session.Did = did 502 502 + 503 503 + return &session, nil 504 504 + } 505 505 + 506 506 + func (s *session) putRecord(record any, collection string) error { 507 507 + recordBytes, err := json.Marshal(record) 508 508 + if err != nil { 509 509 + return fmt.Errorf("failed to marshal knot member record: %w", err) 510 510 + } 511 511 + 512 512 + payload := map[string]any{ 513 513 + "repo": s.Did, 514 514 + "collection": collection, 515 515 + "rkey": tid.TID(), 516 516 + "record": json.RawMessage(recordBytes), 517 517 + } 518 518 + 519 519 + payloadBytes, err := json.Marshal(payload) 520 520 + if err != nil { 521 521 + return fmt.Errorf("failed to marshal request payload: %w", err) 522 522 + } 523 523 + 524 524 + url := s.PdsEndpoint + "/xrpc/com.atproto.repo.putRecord" 525 525 + req, err := http.NewRequestWithContext(context.Background(), "POST", url, bytes.NewBuffer(payloadBytes)) 526 526 + if err != nil { 527 527 + return fmt.Errorf("failed to create HTTP request: %w", err) 528 528 + } 529 529 + 530 530 + req.Header.Set("Content-Type", "application/json") 531 531 + req.Header.Set("Authorization", "Bearer "+s.AccessJwt) 532 532 + 533 533 + client := &http.Client{Timeout: 30 * time.Second} 534 534 + resp, err := client.Do(req) 535 535 + if err != nil { 536 536 + return fmt.Errorf("failed to add user to default service: %w", err) 537 537 + } 538 538 + defer resp.Body.Close() 539 539 + 540 540 + if resp.StatusCode != http.StatusOK { 541 541 + return fmt.Errorf("failed to add user to default service: HTTP %d", resp.StatusCode) 542 542 + } 543 543 + 544 544 + return nil 366 545 }

+16 -3

appview/oauth/oauth.go

··· 103 103 if err != nil { 104 104 return nil, false, fmt.Errorf("error parsing expiry time: %w", err) 105 105 } 106 106 - if expiry.Sub(time.Now()) <= 5*time.Minute { 106 106 + if time.Until(expiry) <= 5*time.Minute { 107 107 privateJwk, err := helpers.ParseJWKFromBytes([]byte(session.DpopPrivateJwk)) 108 108 if err != nil { 109 109 return nil, false, err ··· 224 224 s.service = service 225 225 } 226 226 } 227 227 + 228 228 + // Specify the Duration in seconds for the expiry of this token 229 229 + // 230 230 + // The time of expiry is calculated as time.Now().Unix() + exp 227 231 func WithExp(exp int64) ServiceClientOpt { 228 232 return func(s *ServiceClientOpts) { 229 229 - s.exp = exp 233 233 + s.exp = time.Now().Unix() + exp 230 234 } 231 235 } 232 236 ··· 266 270 return nil, err 267 271 } 268 272 273 273 + // force expiry to atleast 60 seconds in the future 274 274 + sixty := time.Now().Unix() + 60 275 275 + if opts.exp < sixty { 276 276 + opts.exp = sixty 277 277 + } 278 278 + 269 279 resp, err := authorizedClient.ServerGetServiceAuth(r.Context(), opts.Audience(), opts.exp, opts.lxm) 270 280 if err != nil { 271 281 return nil, err ··· 276 286 AccessJwt: resp.Token, 277 287 }, 278 288 Host: opts.Host(), 289 289 + Client: &http.Client{ 290 290 + Timeout: time.Second * 5, 291 291 + }, 279 292 }, nil 280 293 } 281 294 ··· 305 318 redirectURIs := makeRedirectURIs(clientURI) 306 319 307 320 if o.config.Core.Dev { 308 308 - clientURI = fmt.Sprintf("http://127.0.0.1:3000") 321 321 + clientURI = "http://127.0.0.1:3000" 309 322 redirectURIs = makeRedirectURIs(clientURI) 310 323 311 324 query := url.Values{}

+35

appview/pages/cache.go

··· 1 1 + package pages 2 2 + 3 3 + import ( 4 4 + "sync" 5 5 + ) 6 6 + 7 7 + type TmplCache[K comparable, V any] struct { 8 8 + data map[K]V 9 9 + mutex sync.RWMutex 10 10 + } 11 11 + 12 12 + func NewTmplCache[K comparable, V any]() *TmplCache[K, V] { 13 13 + return &TmplCache[K, V]{ 14 14 + data: make(map[K]V), 15 15 + } 16 16 + } 17 17 + 18 18 + func (c *TmplCache[K, V]) Get(key K) (V, bool) { 19 19 + c.mutex.RLock() 20 20 + defer c.mutex.RUnlock() 21 21 + val, exists := c.data[key] 22 22 + return val, exists 23 23 + } 24 24 + 25 25 + func (c *TmplCache[K, V]) Set(key K, value V) { 26 26 + c.mutex.Lock() 27 27 + defer c.mutex.Unlock() 28 28 + c.data[key] = value 29 29 + } 30 30 + 31 31 + func (c *TmplCache[K, V]) Size() int { 32 32 + c.mutex.RLock() 33 33 + defer c.mutex.RUnlock() 34 34 + return len(c.data) 35 35 + }

+45 -6

appview/pages/funcmap.go

··· 1 1 package pages 2 2 3 3 import ( 4 4 + "context" 4 5 "crypto/hmac" 5 6 "crypto/sha256" 6 7 "encoding/hex" ··· 18 19 19 20 "github.com/dustin/go-humanize" 20 21 "github.com/go-enry/go-enry/v2" 21 21 - "github.com/microcosm-cc/bluemonday" 22 22 "tangled.sh/tangled.sh/core/appview/filetree" 23 23 "tangled.sh/tangled.sh/core/appview/pages/markup" 24 24 + "tangled.sh/tangled.sh/core/crypto" 24 25 ) 25 26 26 27 func (p *Pages) funcMap() template.FuncMap { ··· 28 29 "split": func(s string) []string { 29 30 return strings.Split(s, "\n") 30 31 }, 32 32 + "contains": func(s string, target string) bool { 33 33 + return strings.Contains(s, target) 34 34 + }, 35 35 + "resolve": func(s string) string { 36 36 + identity, err := p.resolver.ResolveIdent(context.Background(), s) 37 37 + 38 38 + if err != nil { 39 39 + return s 40 40 + } 41 41 + 42 42 + if identity.Handle.IsInvalidHandle() { 43 43 + return "handle.invalid" 44 44 + } 45 45 + 46 46 + return "@" + identity.Handle.String() 47 47 + }, 31 48 "truncateAt30": func(s string) string { 32 49 if len(s) <= 30 { 33 50 return s ··· 74 91 "negf64": func(a float64) float64 { 75 92 return -a 76 93 }, 77 77 - "cond": func(cond interface{}, a, b string) string { 94 94 + "cond": func(cond any, a, b string) string { 78 95 if cond == nil { 79 96 return b 80 97 } ··· 167 184 return html.UnescapeString(s) 168 185 }, 169 186 "nl2br": func(text string) template.HTML { 170 170 - return template.HTML(strings.Replace(template.HTMLEscapeString(text), "\n", "<br>", -1)) 187 187 + return template.HTML(strings.ReplaceAll(template.HTMLEscapeString(text), "\n", "<br>")) 171 188 }, 172 189 "unwrapText": func(text string) string { 173 190 paragraphs := strings.Split(text, "\n\n") ··· 193 210 } 194 211 return v.Slice(0, min(n, v.Len())).Interface() 195 212 }, 196 196 - 197 213 "markdown": func(text string) template.HTML { 198 198 - rctx := &markup.RenderContext{RendererType: markup.RendererTypeDefault} 199 199 - return template.HTML(bluemonday.UGCPolicy().Sanitize(rctx.RenderMarkdown(text))) 214 214 + p.rctx.RendererType = markup.RendererTypeDefault 215 215 + htmlString := p.rctx.RenderMarkdown(text) 216 216 + sanitized := p.rctx.SanitizeDefault(htmlString) 217 217 + return template.HTML(sanitized) 218 218 + }, 219 219 + "description": func(text string) template.HTML { 220 220 + p.rctx.RendererType = markup.RendererTypeDefault 221 221 + htmlString := p.rctx.RenderMarkdown(text) 222 222 + sanitized := p.rctx.SanitizeDescription(htmlString) 223 223 + return template.HTML(sanitized) 200 224 }, 201 225 "isNil": func(t any) bool { 202 226 // returns false for other "zero" values ··· 236 260 }, 237 261 "cssContentHash": CssContentHash, 238 262 "fileTree": filetree.FileTree, 263 263 + "pathEscape": func(s string) string { 264 264 + return url.PathEscape(s) 265 265 + }, 239 266 "pathUnescape": func(s string) string { 240 267 u, _ := url.PathUnescape(s) 241 268 return u ··· 253 280 }, 254 281 "layoutCenter": func() string { 255 282 return "col-span-1 md:col-span-8 lg:col-span-6" 283 283 + }, 284 284 + 285 285 + "normalizeForHtmlId": func(s string) string { 286 286 + // TODO: extend this to handle other cases? 287 287 + return strings.ReplaceAll(s, ":", "_") 288 288 + }, 289 289 + "sshFingerprint": func(pubKey string) string { 290 290 + fp, err := crypto.SSHFingerprint(pubKey) 291 291 + if err != nil { 292 292 + return "error" 293 293 + } 294 294 + return fp 256 295 }, 257 296 } 258 297 }

+12

appview/pages/markup/format.go

··· 13 13 FormatMarkdown: []string{".md", ".markdown", ".mdown", ".mkdn", ".mkd"}, 14 14 } 15 15 16 16 + // ReadmeFilenames contains the list of common README filenames to search for, 17 17 + // in order of preference. Only includes well-supported formats. 18 18 + var ReadmeFilenames = []string{ 19 19 + "README.md", "readme.md", 20 20 + "README", 21 21 + "readme", 22 22 + "README.markdown", 23 23 + "readme.markdown", 24 24 + "README.txt", 25 25 + "readme.txt", 26 26 + } 27 27 + 16 28 func GetFormat(filename string) Format { 17 29 for format, extensions := range FileTypes { 18 30 for _, extension := range extensions {

+73 -39

appview/pages/markup/markdown.go

··· 9 9 "path" 10 10 "strings" 11 11 12 12 - "github.com/microcosm-cc/bluemonday" 12 12 + chromahtml "github.com/alecthomas/chroma/v2/formatters/html" 13 13 + "github.com/alecthomas/chroma/v2/styles" 14 14 + treeblood "github.com/wyatt915/goldmark-treeblood" 13 15 "github.com/yuin/goldmark" 16 16 + highlighting "github.com/yuin/goldmark-highlighting/v2" 14 17 "github.com/yuin/goldmark/ast" 15 18 "github.com/yuin/goldmark/extension" 16 19 "github.com/yuin/goldmark/parser" ··· 19 22 "github.com/yuin/goldmark/util" 20 23 htmlparse "golang.org/x/net/html" 21 24 25 25 + "tangled.sh/tangled.sh/core/api/tangled" 22 26 "tangled.sh/tangled.sh/core/appview/pages/repoinfo" 23 27 ) 24 28 ··· 40 44 repoinfo.RepoInfo 41 45 IsDev bool 42 46 RendererType RendererType 47 47 + Sanitizer Sanitizer 43 48 } 44 49 45 50 func (rctx *RenderContext) RenderMarkdown(source string) string { 46 51 md := goldmark.New( 47 47 - goldmark.WithExtensions(extension.GFM), 52 52 + goldmark.WithExtensions( 53 53 + extension.GFM, 54 54 + highlighting.NewHighlighting( 55 55 + highlighting.WithFormatOptions( 56 56 + chromahtml.Standalone(false), 57 57 + chromahtml.WithClasses(true), 58 58 + ), 59 59 + highlighting.WithCustomStyle(styles.Get("catppuccin-latte")), 60 60 + ), 61 61 + extension.NewFootnote( 62 62 + extension.WithFootnoteIDPrefix([]byte("footnote")), 63 63 + ), 64 64 + treeblood.MathML(), 65 65 + ), 48 66 goldmark.WithParserOptions( 49 67 parser.WithAutoHeadingID(), 50 68 ), ··· 145 163 } 146 164 } 147 165 148 148 - func (rctx *RenderContext) Sanitize(html string) string { 149 149 - policy := bluemonday.UGCPolicy() 166 166 + func (rctx *RenderContext) SanitizeDefault(html string) string { 167 167 + return rctx.Sanitizer.SanitizeDefault(html) 168 168 + } 150 169 151 151 - // video 152 152 - policy.AllowElements("video") 153 153 - policy.AllowAttrs("controls").OnElements("video") 154 154 - policy.AllowElements("source") 155 155 - policy.AllowAttrs("src", "type").OnElements("source") 156 156 - 157 157 - // centering content 158 158 - policy.AllowElements("center") 159 159 - 160 160 - policy.AllowAttrs("align", "style", "width", "height").Globally() 161 161 - policy.AllowStyles( 162 162 - "margin", 163 163 - "padding", 164 164 - "text-align", 165 165 - "font-weight", 166 166 - "text-decoration", 167 167 - "padding-left", 168 168 - "padding-right", 169 169 - "padding-top", 170 170 - "padding-bottom", 171 171 - "margin-left", 172 172 - "margin-right", 173 173 - "margin-top", 174 174 - "margin-bottom", 175 175 - ) 176 176 - return policy.Sanitize(html) 170 170 + func (rctx *RenderContext) SanitizeDescription(html string) string { 171 171 + return rctx.Sanitizer.SanitizeDescription(html) 177 172 } 178 173 179 174 type MarkdownTransformer struct { ··· 189 184 switch a.rctx.RendererType { 190 185 case RendererTypeRepoMarkdown: 191 186 switch n := n.(type) { 187 187 + case *ast.Heading: 188 188 + a.rctx.anchorHeadingTransformer(n) 192 189 case *ast.Link: 193 190 a.rctx.relativeLinkTransformer(n) 194 191 case *ast.Image: ··· 197 194 } 198 195 case RendererTypeDefault: 199 196 switch n := n.(type) { 197 197 + case *ast.Heading: 198 198 + a.rctx.anchorHeadingTransformer(n) 200 199 case *ast.Image: 201 200 a.rctx.imageFromKnotAstTransformer(n) 202 201 a.rctx.camoImageLinkAstTransformer(n) ··· 211 210 212 211 dst := string(link.Destination) 213 212 214 214 - if isAbsoluteUrl(dst) { 213 213 + if isAbsoluteUrl(dst) || isFragment(dst) || isMail(dst) { 215 214 return 216 215 } 217 216 ··· 233 232 234 233 actualPath := rctx.actualPath(dst) 235 234 235 235 + repoName := fmt.Sprintf("%s/%s", rctx.RepoInfo.OwnerDid, rctx.RepoInfo.Name) 236 236 + 237 237 + query := fmt.Sprintf("repo=%s&ref=%s&path=%s&raw=true", 238 238 + url.PathEscape(repoName), url.PathEscape(rctx.RepoInfo.Ref), actualPath) 239 239 + 236 240 parsedURL := &url.URL{ 237 237 - Scheme: scheme, 238 238 - Host: rctx.Knot, 239 239 - Path: path.Join("/", 240 240 - rctx.RepoInfo.OwnerDid, 241 241 - rctx.RepoInfo.Name, 242 242 - "raw", 243 243 - url.PathEscape(rctx.RepoInfo.Ref), 244 244 - actualPath), 241 241 + Scheme: scheme, 242 242 + Host: rctx.Knot, 243 243 + Path: path.Join("/xrpc", tangled.RepoBlobNSID), 244 244 + RawQuery: query, 245 245 } 246 246 newPath := parsedURL.String() 247 247 return newPath ··· 252 252 img.Destination = []byte(rctx.imageFromKnotTransformer(dst)) 253 253 } 254 254 255 255 + func (rctx *RenderContext) anchorHeadingTransformer(h *ast.Heading) { 256 256 + idGeneric, exists := h.AttributeString("id") 257 257 + if !exists { 258 258 + return // no id, nothing to do 259 259 + } 260 260 + id, ok := idGeneric.([]byte) 261 261 + if !ok { 262 262 + return 263 263 + } 264 264 + 265 265 + // create anchor link 266 266 + anchor := ast.NewLink() 267 267 + anchor.Destination = fmt.Appendf(nil, "#%s", string(id)) 268 268 + anchor.SetAttribute([]byte("class"), []byte("anchor")) 269 269 + 270 270 + // create icon text 271 271 + iconText := ast.NewString([]byte("#")) 272 272 + anchor.AppendChild(anchor, iconText) 273 273 + 274 274 + // set class on heading 275 275 + h.SetAttribute([]byte("class"), []byte("heading")) 276 276 + 277 277 + // append anchor to heading 278 278 + h.AppendChild(h, anchor) 279 279 + } 280 280 + 255 281 // actualPath decides when to join the file path with the 256 282 // current repository directory (essentially only when the link 257 283 // destination is relative. if it's absolute then we assume the ··· 271 297 } 272 298 return parsed.IsAbs() 273 299 } 300 300 + 301 301 + func isFragment(link string) bool { 302 302 + return strings.HasPrefix(link, "#") 303 303 + } 304 304 + 305 305 + func isMail(link string) bool { 306 306 + return strings.HasPrefix(link, "mailto:") 307 307 + }

+134

appview/pages/markup/sanitizer.go

··· 1 1 + package markup 2 2 + 3 3 + import ( 4 4 + "maps" 5 5 + "regexp" 6 6 + "slices" 7 7 + "strings" 8 8 + 9 9 + "github.com/alecthomas/chroma/v2" 10 10 + "github.com/microcosm-cc/bluemonday" 11 11 + ) 12 12 + 13 13 + type Sanitizer struct { 14 14 + defaultPolicy *bluemonday.Policy 15 15 + descriptionPolicy *bluemonday.Policy 16 16 + } 17 17 + 18 18 + func NewSanitizer() Sanitizer { 19 19 + return Sanitizer{ 20 20 + defaultPolicy: defaultPolicy(), 21 21 + descriptionPolicy: descriptionPolicy(), 22 22 + } 23 23 + } 24 24 + 25 25 + func (s *Sanitizer) SanitizeDefault(html string) string { 26 26 + return s.defaultPolicy.Sanitize(html) 27 27 + } 28 28 + func (s *Sanitizer) SanitizeDescription(html string) string { 29 29 + return s.descriptionPolicy.Sanitize(html) 30 30 + } 31 31 + 32 32 + func defaultPolicy() *bluemonday.Policy { 33 33 + policy := bluemonday.UGCPolicy() 34 34 + 35 35 + // Allow generally safe attributes 36 36 + generalSafeAttrs := []string{ 37 37 + "abbr", "accept", "accept-charset", 38 38 + "accesskey", "action", "align", "alt", 39 39 + "aria-describedby", "aria-hidden", "aria-label", "aria-labelledby", 40 40 + "axis", "border", "cellpadding", "cellspacing", "char", 41 41 + "charoff", "charset", "checked", 42 42 + "clear", "cols", "colspan", "color", 43 43 + "compact", "coords", "datetime", "dir", 44 44 + "disabled", "enctype", "for", "frame", 45 45 + "headers", "height", "hreflang", 46 46 + "hspace", "ismap", "label", "lang", 47 47 + "maxlength", "media", "method", 48 48 + "multiple", "name", "nohref", "noshade", 49 49 + "nowrap", "open", "prompt", "readonly", "rel", "rev", 50 50 + "rows", "rowspan", "rules", "scope", 51 51 + "selected", "shape", "size", "span", 52 52 + "start", "summary", "tabindex", "target", 53 53 + "title", "type", "usemap", "valign", "value", 54 54 + "vspace", "width", "itemprop", 55 55 + } 56 56 + 57 57 + generalSafeElements := []string{ 58 58 + "h1", "h2", "h3", "h4", "h5", "h6", "h7", "h8", "br", "b", "i", "strong", "em", "a", "pre", "code", "img", "tt", 59 59 + "div", "ins", "del", "sup", "sub", "p", "ol", "ul", "table", "thead", "tbody", "tfoot", "blockquote", "label", 60 60 + "dl", "dt", "dd", "kbd", "q", "samp", "var", "hr", "ruby", "rt", "rp", "li", "tr", "td", "th", "s", "strike", "summary", 61 61 + "details", "caption", "figure", "figcaption", 62 62 + "abbr", "bdo", "cite", "dfn", "mark", "small", "span", "time", "video", "wbr", 63 63 + } 64 64 + 65 65 + policy.AllowAttrs(generalSafeAttrs...).OnElements(generalSafeElements...) 66 66 + 67 67 + // video 68 68 + policy.AllowAttrs("src", "autoplay", "controls").OnElements("video") 69 69 + 70 70 + // checkboxes 71 71 + policy.AllowAttrs("type").Matching(regexp.MustCompile(`^checkbox$`)).OnElements("input") 72 72 + policy.AllowAttrs("checked", "disabled", "data-source-position").OnElements("input") 73 73 + 74 74 + // for code blocks 75 75 + policy.AllowAttrs("class").Matching(regexp.MustCompile(`chroma`)).OnElements("pre") 76 76 + policy.AllowAttrs("class").Matching(regexp.MustCompile(`anchor|footnote-ref|footnote-backref`)).OnElements("a") 77 77 + policy.AllowAttrs("class").Matching(regexp.MustCompile(`heading`)).OnElements("h1", "h2", "h3", "h4", "h5", "h6", "h7", "h8") 78 78 + policy.AllowAttrs("class").Matching(regexp.MustCompile(strings.Join(slices.Collect(maps.Values(chroma.StandardTypes)), "|"))).OnElements("span") 79 79 + 80 80 + // centering content 81 81 + policy.AllowElements("center") 82 82 + 83 83 + policy.AllowAttrs("align", "style", "width", "height").Globally() 84 84 + policy.AllowStyles( 85 85 + "margin", 86 86 + "padding", 87 87 + "text-align", 88 88 + "font-weight", 89 89 + "text-decoration", 90 90 + "padding-left", 91 91 + "padding-right", 92 92 + "padding-top", 93 93 + "padding-bottom", 94 94 + "margin-left", 95 95 + "margin-right", 96 96 + "margin-top", 97 97 + "margin-bottom", 98 98 + ) 99 99 + 100 100 + // math 101 101 + mathAttrs := []string{ 102 102 + "accent", "columnalign", "columnlines", "columnspan", "dir", "display", 103 103 + "displaystyle", "encoding", "fence", "form", "largeop", "linebreak", 104 104 + "linethickness", "lspace", "mathcolor", "mathsize", "mathvariant", "minsize", 105 105 + "movablelimits", "notation", "rowalign", "rspace", "rowspacing", "rowspan", 106 106 + "scriptlevel", "stretchy", "symmetric", "title", "voffset", "width", 107 107 + } 108 108 + mathElements := []string{ 109 109 + "annotation", "math", "menclose", "merror", "mfrac", "mi", "mmultiscripts", 110 110 + "mn", "mo", "mover", "mpadded", "mprescripts", "mroot", "mrow", "mspace", 111 111 + "msqrt", "mstyle", "msub", "msubsup", "msup", "mtable", "mtd", "mtext", 112 112 + "mtr", "munder", "munderover", "semantics", 113 113 + } 114 114 + policy.AllowNoAttrs().OnElements(mathElements...) 115 115 + policy.AllowAttrs(mathAttrs...).OnElements(mathElements...) 116 116 + 117 117 + return policy 118 118 + } 119 119 + 120 120 + func descriptionPolicy() *bluemonday.Policy { 121 121 + policy := bluemonday.NewPolicy() 122 122 + policy.AllowStandardURLs() 123 123 + 124 124 + // allow italics and bold. 125 125 + policy.AllowElements("i", "b", "em", "strong") 126 126 + 127 127 + // allow code. 128 128 + policy.AllowElements("code") 129 129 + 130 130 + // allow links 131 131 + policy.AllowAttrs("href", "target", "rel").OnElements("a") 132 132 + 133 133 + return policy 134 134 + }

+477 -251

appview/pages/pages.go

··· 9 9 "html/template" 10 10 "io" 11 11 "io/fs" 12 12 - "log" 12 12 + "log/slog" 13 13 "net/http" 14 14 "os" 15 15 "path/filepath" ··· 24 24 "tangled.sh/tangled.sh/core/appview/pages/markup" 25 25 "tangled.sh/tangled.sh/core/appview/pages/repoinfo" 26 26 "tangled.sh/tangled.sh/core/appview/pagination" 27 27 + "tangled.sh/tangled.sh/core/idresolver" 27 28 "tangled.sh/tangled.sh/core/patchutil" 28 29 "tangled.sh/tangled.sh/core/types" 29 30 ··· 31 32 chromahtml "github.com/alecthomas/chroma/v2/formatters/html" 32 33 "github.com/alecthomas/chroma/v2/lexers" 33 34 "github.com/alecthomas/chroma/v2/styles" 35 35 + "github.com/bluesky-social/indigo/atproto/identity" 34 36 "github.com/bluesky-social/indigo/atproto/syntax" 35 37 "github.com/go-git/go-git/v5/plumbing" 36 38 "github.com/go-git/go-git/v5/plumbing/object" ··· 40 42 var Files embed.FS 41 43 42 44 type Pages struct { 43 43 - mu sync.RWMutex 44 44 - t map[string]*template.Template 45 45 + mu sync.RWMutex 46 46 + cache *TmplCache[string, *template.Template] 45 47 46 48 avatar config.AvatarConfig 49 49 + resolver *idresolver.Resolver 47 50 dev bool 48 48 - embedFS embed.FS 51 51 + embedFS fs.FS 49 52 templateDir string // Path to templates on disk for dev mode 50 53 rctx *markup.RenderContext 54 54 + logger *slog.Logger 51 55 } 52 56 53 53 - func NewPages(config *config.Config) *Pages { 57 57 + func NewPages(config *config.Config, res *idresolver.Resolver) *Pages { 54 58 // initialized with safe defaults, can be overriden per use 55 59 rctx := &markup.RenderContext{ 56 60 IsDev: config.Core.Dev, 57 61 CamoUrl: config.Camo.Host, 58 62 CamoSecret: config.Camo.SharedSecret, 63 63 + Sanitizer: markup.NewSanitizer(), 59 64 } 60 65 61 66 p := &Pages{ 62 67 mu: sync.RWMutex{}, 63 63 - t: make(map[string]*template.Template), 68 68 + cache: NewTmplCache[string, *template.Template](), 64 69 dev: config.Core.Dev, 65 70 avatar: config.Avatar, 66 66 - embedFS: Files, 67 71 rctx: rctx, 72 72 + resolver: res, 68 73 templateDir: "appview/pages", 74 74 + logger: slog.Default().With("component", "pages"), 69 75 } 70 76 71 71 - // Initial load of all templates 72 72 - p.loadAllTemplates() 77 77 + if p.dev { 78 78 + p.embedFS = os.DirFS(p.templateDir) 79 79 + } else { 80 80 + p.embedFS = Files 81 81 + } 73 82 74 83 return p 75 84 } 76 85 77 77 - func (p *Pages) loadAllTemplates() { 78 78 - templates := make(map[string]*template.Template) 86 86 + func (p *Pages) pathToName(s string) string { 87 87 + return strings.TrimSuffix(strings.TrimPrefix(s, "templates/"), ".html") 88 88 + } 89 89 + 90 90 + // reverse of pathToName 91 91 + func (p *Pages) nameToPath(s string) string { 92 92 + return "templates/" + s + ".html" 93 93 + } 94 94 + 95 95 + func (p *Pages) fragmentPaths() ([]string, error) { 79 96 var fragmentPaths []string 80 80 - 81 81 - // Use embedded FS for initial loading 82 82 - // First, collect all fragment paths 83 97 err := fs.WalkDir(p.embedFS, "templates", func(path string, d fs.DirEntry, err error) error { 84 98 if err != nil { 85 99 return err ··· 93 107 if !strings.Contains(path, "fragments/") { 94 108 return nil 95 109 } 96 96 - name := strings.TrimPrefix(path, "templates/") 97 97 - name = strings.TrimSuffix(name, ".html") 98 98 - tmpl, err := template.New(name). 99 99 - Funcs(p.funcMap()). 100 100 - ParseFS(p.embedFS, path) 101 101 - if err != nil { 102 102 - log.Fatalf("setting up fragment: %v", err) 103 103 - } 104 104 - templates[name] = tmpl 105 110 fragmentPaths = append(fragmentPaths, path) 106 106 - log.Printf("loaded fragment: %s", name) 107 111 return nil 108 112 }) 109 113 if err != nil { 110 110 - log.Fatalf("walking template dir for fragments: %v", err) 114 114 + return nil, err 111 115 } 112 116 113 113 - // Then walk through and setup the rest of the templates 114 114 - err = fs.WalkDir(p.embedFS, "templates", func(path string, d fs.DirEntry, err error) error { 115 115 - if err != nil { 116 116 - return err 117 117 - } 118 118 - if d.IsDir() { 119 119 - return nil 120 120 - } 121 121 - if !strings.HasSuffix(path, "html") { 122 122 - return nil 123 123 - } 124 124 - // Skip fragments as they've already been loaded 125 125 - if strings.Contains(path, "fragments/") { 126 126 - return nil 127 127 - } 128 128 - // Skip layouts 129 129 - if strings.Contains(path, "layouts/") { 130 130 - return nil 131 131 - } 132 132 - name := strings.TrimPrefix(path, "templates/") 133 133 - name = strings.TrimSuffix(name, ".html") 134 134 - // Add the page template on top of the base 135 135 - allPaths := []string{} 136 136 - allPaths = append(allPaths, "templates/layouts/*.html") 137 137 - allPaths = append(allPaths, fragmentPaths...) 138 138 - allPaths = append(allPaths, path) 139 139 - tmpl, err := template.New(name). 140 140 - Funcs(p.funcMap()). 141 141 - ParseFS(p.embedFS, allPaths...) 142 142 - if err != nil { 143 143 - return fmt.Errorf("setting up template: %w", err) 144 144 - } 145 145 - templates[name] = tmpl 146 146 - log.Printf("loaded template: %s", name) 147 147 - return nil 148 148 - }) 117 117 + return fragmentPaths, nil 118 118 + } 119 119 + 120 120 + // parse without memoization 121 121 + func (p *Pages) rawParse(stack ...string) (*template.Template, error) { 122 122 + paths, err := p.fragmentPaths() 149 123 if err != nil { 150 150 - log.Fatalf("walking template dir: %v", err) 124 124 + return nil, err 125 125 + } 126 126 + for _, s := range stack { 127 127 + paths = append(paths, p.nameToPath(s)) 128 128 + } 129 129 + 130 130 + funcs := p.funcMap() 131 131 + top := stack[len(stack)-1] 132 132 + parsed, err := template.New(top). 133 133 + Funcs(funcs). 134 134 + ParseFS(p.embedFS, paths...) 135 135 + if err != nil { 136 136 + return nil, err 151 137 } 152 138 153 153 - log.Printf("total templates loaded: %d", len(templates)) 154 154 - p.mu.Lock() 155 155 - defer p.mu.Unlock() 156 156 - p.t = templates 139 139 + return parsed, nil 157 140 } 158 141 159 159 - // loadTemplateFromDisk loads a template from the filesystem in dev mode 160 160 - func (p *Pages) loadTemplateFromDisk(name string) error { 161 161 - if !p.dev { 162 162 - return nil 142 142 + func (p *Pages) parse(stack ...string) (*template.Template, error) { 143 143 + key := strings.Join(stack, "|") 144 144 + 145 145 + // never cache in dev mode 146 146 + if cached, exists := p.cache.Get(key); !p.dev && exists { 147 147 + return cached, nil 163 148 } 164 149 165 165 - log.Printf("reloading template from disk: %s", name) 166 166 - 167 167 - // Find all fragments first 168 168 - var fragmentPaths []string 169 169 - err := filepath.WalkDir(filepath.Join(p.templateDir, "templates"), func(path string, d fs.DirEntry, err error) error { 170 170 - if err != nil { 171 171 - return err 172 172 - } 173 173 - if d.IsDir() { 174 174 - return nil 175 175 - } 176 176 - if !strings.HasSuffix(path, ".html") { 177 177 - return nil 178 178 - } 179 179 - if !strings.Contains(path, "fragments/") { 180 180 - return nil 181 181 - } 182 182 - fragmentPaths = append(fragmentPaths, path) 183 183 - return nil 184 184 - }) 150 150 + result, err := p.rawParse(stack...) 185 151 if err != nil { 186 186 - return fmt.Errorf("walking disk template dir for fragments: %w", err) 152 152 + return nil, err 187 153 } 188 154 189 189 - // Find the template path on disk 190 190 - templatePath := filepath.Join(p.templateDir, "templates", name+".html") 191 191 - if _, err := os.Stat(templatePath); os.IsNotExist(err) { 192 192 - return fmt.Errorf("template not found on disk: %s", name) 155 155 + p.cache.Set(key, result) 156 156 + return result, nil 157 157 + } 158 158 + 159 159 + func (p *Pages) parseBase(top string) (*template.Template, error) { 160 160 + stack := []string{ 161 161 + "layouts/base", 162 162 + top, 193 163 } 194 194 - 195 195 - // Create a new template 196 196 - tmpl := template.New(name).Funcs(p.funcMap()) 164 164 + return p.parse(stack...) 165 165 + } 197 166 198 198 - // Parse layouts 199 199 - layoutGlob := filepath.Join(p.templateDir, "templates", "layouts", "*.html") 200 200 - layouts, err := filepath.Glob(layoutGlob) 201 201 - if err != nil { 202 202 - return fmt.Errorf("finding layout templates: %w", err) 167 167 + func (p *Pages) parseRepoBase(top string) (*template.Template, error) { 168 168 + stack := []string{ 169 169 + "layouts/base", 170 170 + "layouts/repobase", 171 171 + top, 203 172 } 173 173 + return p.parse(stack...) 174 174 + } 204 175 205 205 - // Create paths for parsing 206 206 - allFiles := append(layouts, fragmentPaths...) 207 207 - allFiles = append(allFiles, templatePath) 176 176 + func (p *Pages) parseProfileBase(top string) (*template.Template, error) { 177 177 + stack := []string{ 178 178 + "layouts/base", 179 179 + "layouts/profilebase", 180 180 + top, 181 181 + } 182 182 + return p.parse(stack...) 183 183 + } 208 184 209 209 - // Parse all templates 210 210 - tmpl, err = tmpl.ParseFiles(allFiles...) 185 185 + func (p *Pages) executePlain(name string, w io.Writer, params any) error { 186 186 + tpl, err := p.parse(name) 211 187 if err != nil { 212 212 - return fmt.Errorf("parsing template files: %w", err) 188 188 + return err 213 189 } 214 190 215 215 - // Update the template in the map 216 216 - p.mu.Lock() 217 217 - defer p.mu.Unlock() 218 218 - p.t[name] = tmpl 219 219 - log.Printf("template reloaded from disk: %s", name) 220 220 - return nil 191 191 + return tpl.Execute(w, params) 221 192 } 222 193 223 223 - func (p *Pages) executeOrReload(templateName string, w io.Writer, base string, params any) error { 224 224 - // In dev mode, reload the template from disk before executing 225 225 - if p.dev { 226 226 - if err := p.loadTemplateFromDisk(templateName); err != nil { 227 227 - log.Printf("warning: failed to reload template %s from disk: %v", templateName, err) 228 228 - // Continue with the existing template 229 229 - } 194 194 + func (p *Pages) execute(name string, w io.Writer, params any) error { 195 195 + tpl, err := p.parseBase(name) 196 196 + if err != nil { 197 197 + return err 230 198 } 231 199 232 232 - p.mu.RLock() 233 233 - defer p.mu.RUnlock() 234 234 - tmpl, exists := p.t[templateName] 235 235 - if !exists { 236 236 - return fmt.Errorf("template not found: %s", templateName) 200 200 + return tpl.ExecuteTemplate(w, "layouts/base", params) 201 201 + } 202 202 + 203 203 + func (p *Pages) executeRepo(name string, w io.Writer, params any) error { 204 204 + tpl, err := p.parseRepoBase(name) 205 205 + if err != nil { 206 206 + return err 237 207 } 238 208 239 239 - if base == "" { 240 240 - return tmpl.Execute(w, params) 241 241 - } else { 242 242 - return tmpl.ExecuteTemplate(w, base, params) 243 243 - } 209 209 + return tpl.ExecuteTemplate(w, "layouts/base", params) 244 210 } 245 211 246 246 - func (p *Pages) execute(name string, w io.Writer, params any) error { 247 247 - return p.executeOrReload(name, w, "layouts/base", params) 248 248 - } 212 212 + func (p *Pages) executeProfile(name string, w io.Writer, params any) error { 213 213 + tpl, err := p.parseProfileBase(name) 214 214 + if err != nil { 215 215 + return err 216 216 + } 249 217 250 250 - func (p *Pages) executePlain(name string, w io.Writer, params any) error { 251 251 - return p.executeOrReload(name, w, "", params) 218 218 + return tpl.ExecuteTemplate(w, "layouts/base", params) 252 219 } 253 220 254 254 - func (p *Pages) executeRepo(name string, w io.Writer, params any) error { 255 255 - return p.executeOrReload(name, w, "layouts/repobase", params) 221 221 + func (p *Pages) Favicon(w io.Writer) error { 222 222 + return p.executePlain("favicon", w, nil) 256 223 } 257 224 258 225 type LoginParams struct { 226 226 + ReturnUrl string 259 227 } 260 228 261 229 func (p *Pages) Login(w io.Writer, params LoginParams) error { 262 230 return p.executePlain("user/login", w, params) 263 231 } 264 232 233 233 + func (p *Pages) Signup(w io.Writer) error { 234 234 + return p.executePlain("user/signup", w, nil) 235 235 + } 236 236 + 237 237 + func (p *Pages) CompleteSignup(w io.Writer) error { 238 238 + return p.executePlain("user/completeSignup", w, nil) 239 239 + } 240 240 + 241 241 + type TermsOfServiceParams struct { 242 242 + LoggedInUser *oauth.User 243 243 + Content template.HTML 244 244 + } 245 245 + 246 246 + func (p *Pages) TermsOfService(w io.Writer, params TermsOfServiceParams) error { 247 247 + filename := "terms.md" 248 248 + filePath := filepath.Join("legal", filename) 249 249 + markdownBytes, err := os.ReadFile(filePath) 250 250 + if err != nil { 251 251 + return fmt.Errorf("failed to read %s: %w", filename, err) 252 252 + } 253 253 + 254 254 + p.rctx.RendererType = markup.RendererTypeDefault 255 255 + htmlString := p.rctx.RenderMarkdown(string(markdownBytes)) 256 256 + sanitized := p.rctx.SanitizeDefault(htmlString) 257 257 + params.Content = template.HTML(sanitized) 258 258 + 259 259 + return p.execute("legal/terms", w, params) 260 260 + } 261 261 + 262 262 + type PrivacyPolicyParams struct { 263 263 + LoggedInUser *oauth.User 264 264 + Content template.HTML 265 265 + } 266 266 + 267 267 + func (p *Pages) PrivacyPolicy(w io.Writer, params PrivacyPolicyParams) error { 268 268 + filename := "privacy.md" 269 269 + filePath := filepath.Join("legal", filename) 270 270 + markdownBytes, err := os.ReadFile(filePath) 271 271 + if err != nil { 272 272 + return fmt.Errorf("failed to read %s: %w", filename, err) 273 273 + } 274 274 + 275 275 + p.rctx.RendererType = markup.RendererTypeDefault 276 276 + htmlString := p.rctx.RenderMarkdown(string(markdownBytes)) 277 277 + sanitized := p.rctx.SanitizeDefault(htmlString) 278 278 + params.Content = template.HTML(sanitized) 279 279 + 280 280 + return p.execute("legal/privacy", w, params) 281 281 + } 282 282 + 265 283 type TimelineParams struct { 266 284 LoggedInUser *oauth.User 267 285 Timeline []db.TimelineEvent 268 268 - DidHandleMap map[string]string 286 286 + Repos []db.Repo 269 287 } 270 288 271 289 func (p *Pages) Timeline(w io.Writer, params TimelineParams) error { 272 272 - return p.execute("timeline", w, params) 290 290 + return p.execute("timeline/timeline", w, params) 291 291 + } 292 292 + 293 293 + type UserProfileSettingsParams struct { 294 294 + LoggedInUser *oauth.User 295 295 + Tabs []map[string]any 296 296 + Tab string 297 297 + } 298 298 + 299 299 + func (p *Pages) UserProfileSettings(w io.Writer, params UserProfileSettingsParams) error { 300 300 + return p.execute("user/settings/profile", w, params) 273 301 } 274 302 275 275 - type SettingsParams struct { 303 303 + type UserKeysSettingsParams struct { 276 304 LoggedInUser *oauth.User 277 305 PubKeys []db.PublicKey 306 306 + Tabs []map[string]any 307 307 + Tab string 308 308 + } 309 309 + 310 310 + func (p *Pages) UserKeysSettings(w io.Writer, params UserKeysSettingsParams) error { 311 311 + return p.execute("user/settings/keys", w, params) 312 312 + } 313 313 + 314 314 + type UserEmailsSettingsParams struct { 315 315 + LoggedInUser *oauth.User 278 316 Emails []db.Email 317 317 + Tabs []map[string]any 318 318 + Tab string 279 319 } 280 320 281 281 - func (p *Pages) Settings(w io.Writer, params SettingsParams) error { 282 282 - return p.execute("settings", w, params) 321 321 + func (p *Pages) UserEmailsSettings(w io.Writer, params UserEmailsSettingsParams) error { 322 322 + return p.execute("user/settings/emails", w, params) 323 323 + } 324 324 + 325 325 + type UpgradeBannerParams struct { 326 326 + Registrations []db.Registration 327 327 + Spindles []db.Spindle 328 328 + } 329 329 + 330 330 + func (p *Pages) UpgradeBanner(w io.Writer, params UpgradeBannerParams) error { 331 331 + return p.executePlain("banner", w, params) 283 332 } 284 333 285 334 type KnotsParams struct { ··· 293 342 294 343 type KnotParams struct { 295 344 LoggedInUser *oauth.User 296 296 - DidHandleMap map[string]string 297 345 Registration *db.Registration 298 346 Members []string 299 347 Repos map[string][]db.Repo ··· 305 353 } 306 354 307 355 type KnotListingParams struct { 308 308 - db.Registration 356 356 + *db.Registration 309 357 } 310 358 311 359 func (p *Pages) KnotListing(w io.Writer, params KnotListingParams) error { 312 360 return p.executePlain("knots/fragments/knotListing", w, params) 313 361 } 314 362 315 315 - type KnotListingFullParams struct { 316 316 - Registrations []db.Registration 317 317 - } 318 318 - 319 319 - func (p *Pages) KnotListingFull(w io.Writer, params KnotListingFullParams) error { 320 320 - return p.executePlain("knots/fragments/knotListingFull", w, params) 321 321 - } 322 322 - 323 323 - type KnotSecretParams struct { 324 324 - Secret string 325 325 - } 326 326 - 327 327 - func (p *Pages) KnotSecret(w io.Writer, params KnotSecretParams) error { 328 328 - return p.executePlain("knots/fragments/secret", w, params) 329 329 - } 330 330 - 331 363 type SpindlesParams struct { 332 364 LoggedInUser *oauth.User 333 365 Spindles []db.Spindle ··· 350 382 Spindle db.Spindle 351 383 Members []string 352 384 Repos map[string][]db.Repo 353 353 - DidHandleMap map[string]string 354 385 } 355 386 356 387 func (p *Pages) SpindleDashboard(w io.Writer, params SpindleDashboardParams) error { ··· 376 407 return p.execute("repo/fork", w, params) 377 408 } 378 409 379 379 - type ProfilePageParams struct { 410 410 + type ProfileCard struct { 411 411 + UserDid string 412 412 + UserHandle string 413 413 + FollowStatus db.FollowStatus 414 414 + Punchcard *db.Punchcard 415 415 + Profile *db.Profile 416 416 + Stats ProfileStats 417 417 + Active string 418 418 + } 419 419 + 420 420 + type ProfileStats struct { 421 421 + RepoCount int64 422 422 + StarredCount int64 423 423 + StringCount int64 424 424 + FollowersCount int64 425 425 + FollowingCount int64 426 426 + } 427 427 + 428 428 + func (p *ProfileCard) GetTabs() [][]any { 429 429 + tabs := [][]any{ 430 430 + {"overview", "overview", "square-chart-gantt", nil}, 431 431 + {"repos", "repos", "book-marked", p.Stats.RepoCount}, 432 432 + {"starred", "starred", "star", p.Stats.StarredCount}, 433 433 + {"strings", "strings", "line-squiggle", p.Stats.StringCount}, 434 434 + } 435 435 + 436 436 + return tabs 437 437 + } 438 438 + 439 439 + type ProfileOverviewParams struct { 380 440 LoggedInUser *oauth.User 381 441 Repos []db.Repo 382 442 CollaboratingRepos []db.Repo 383 443 ProfileTimeline *db.ProfileTimeline 384 384 - Card ProfileCard 385 385 - Punchcard db.Punchcard 444 444 + Card *ProfileCard 445 445 + Active string 446 446 + } 386 447 387 387 - DidHandleMap map[string]string 448 448 + func (p *Pages) ProfileOverview(w io.Writer, params ProfileOverviewParams) error { 449 449 + params.Active = "overview" 450 450 + return p.executeProfile("user/overview", w, params) 451 451 + } 452 452 + 453 453 + type ProfileReposParams struct { 454 454 + LoggedInUser *oauth.User 455 455 + Repos []db.Repo 456 456 + Card *ProfileCard 457 457 + Active string 388 458 } 389 459 390 390 - type ProfileCard struct { 391 391 - UserDid string 392 392 - UserHandle string 393 393 - FollowStatus db.FollowStatus 394 394 - AvatarUri string 395 395 - Followers int 396 396 - Following int 460 460 + func (p *Pages) ProfileRepos(w io.Writer, params ProfileReposParams) error { 461 461 + params.Active = "repos" 462 462 + return p.executeProfile("user/repos", w, params) 463 463 + } 397 464 398 398 - Profile *db.Profile 465 465 + type ProfileStarredParams struct { 466 466 + LoggedInUser *oauth.User 467 467 + Repos []db.Repo 468 468 + Card *ProfileCard 469 469 + Active string 399 470 } 400 471 401 401 - func (p *Pages) ProfilePage(w io.Writer, params ProfilePageParams) error { 402 402 - return p.execute("user/profile", w, params) 472 472 + func (p *Pages) ProfileStarred(w io.Writer, params ProfileStarredParams) error { 473 473 + params.Active = "starred" 474 474 + return p.executeProfile("user/starred", w, params) 403 475 } 404 476 405 405 - type ReposPageParams struct { 477 477 + type ProfileStringsParams struct { 406 478 LoggedInUser *oauth.User 407 407 - Repos []db.Repo 408 408 - Card ProfileCard 479 479 + Strings []db.String 480 480 + Card *ProfileCard 481 481 + Active string 482 482 + } 483 483 + 484 484 + func (p *Pages) ProfileStrings(w io.Writer, params ProfileStringsParams) error { 485 485 + params.Active = "strings" 486 486 + return p.executeProfile("user/strings", w, params) 487 487 + } 409 488 410 410 - DidHandleMap map[string]string 489 489 + type FollowCard struct { 490 490 + UserDid string 491 491 + FollowStatus db.FollowStatus 492 492 + FollowersCount int64 493 493 + FollowingCount int64 494 494 + Profile *db.Profile 411 495 } 412 496 413 413 - func (p *Pages) ReposPage(w io.Writer, params ReposPageParams) error { 414 414 - return p.execute("user/repos", w, params) 497 497 + type ProfileFollowersParams struct { 498 498 + LoggedInUser *oauth.User 499 499 + Followers []FollowCard 500 500 + Card *ProfileCard 501 501 + Active string 502 502 + } 503 503 + 504 504 + func (p *Pages) ProfileFollowers(w io.Writer, params ProfileFollowersParams) error { 505 505 + params.Active = "overview" 506 506 + return p.executeProfile("user/followers", w, params) 507 507 + } 508 508 + 509 509 + type ProfileFollowingParams struct { 510 510 + LoggedInUser *oauth.User 511 511 + Following []FollowCard 512 512 + Card *ProfileCard 513 513 + Active string 514 514 + } 515 515 + 516 516 + func (p *Pages) ProfileFollowing(w io.Writer, params ProfileFollowingParams) error { 517 517 + params.Active = "overview" 518 518 + return p.executeProfile("user/following", w, params) 415 519 } 416 520 417 521 type FollowFragmentParams struct { ··· 436 540 LoggedInUser *oauth.User 437 541 Profile *db.Profile 438 542 AllRepos []PinnedRepo 439 439 - DidHandleMap map[string]string 440 543 } 441 544 442 545 type PinnedRepo struct { ··· 471 574 } 472 575 473 576 type RepoIndexParams struct { 474 474 - LoggedInUser *oauth.User 475 475 - RepoInfo repoinfo.RepoInfo 476 476 - Active string 477 477 - TagMap map[string][]string 478 478 - CommitsTrunc []*object.Commit 479 479 - TagsTrunc []*types.TagReference 480 480 - BranchesTrunc []types.Branch 481 481 - ForkInfo *types.ForkInfo 577 577 + LoggedInUser *oauth.User 578 578 + RepoInfo repoinfo.RepoInfo 579 579 + Active string 580 580 + TagMap map[string][]string 581 581 + CommitsTrunc []*object.Commit 582 582 + TagsTrunc []*types.TagReference 583 583 + BranchesTrunc []types.Branch 584 584 + // ForkInfo *types.ForkInfo 482 585 HTMLReadme template.HTML 483 586 Raw bool 484 587 EmailToDidOrHandle map[string]string 485 588 VerifiedCommits commitverify.VerifiedCommits 486 589 Languages []types.RepoLanguageDetails 487 590 Pipelines map[string]db.Pipeline 591 591 + NeedsKnotUpgrade bool 488 592 types.RepoIndexResponse 489 593 } 490 594 ··· 494 598 return p.executeRepo("repo/empty", w, params) 495 599 } 496 600 601 601 + if params.NeedsKnotUpgrade { 602 602 + return p.executeRepo("repo/needsUpgrade", w, params) 603 603 + } 604 604 + 497 605 p.rctx.RepoInfo = params.RepoInfo 606 606 + p.rctx.RepoInfo.Ref = params.Ref 498 607 p.rctx.RendererType = markup.RendererTypeRepoMarkdown 499 608 500 609 if params.ReadmeFileName != "" { 501 501 - var htmlString string 502 610 ext := filepath.Ext(params.ReadmeFileName) 503 611 switch ext { 504 612 case ".md", ".markdown", ".mdown", ".mkdn", ".mkd": 505 505 - htmlString = p.rctx.Sanitize(htmlString) 506 506 - htmlString = p.rctx.RenderMarkdown(params.Readme) 507 613 params.Raw = false 508 508 - params.HTMLReadme = template.HTML(htmlString) 614 614 + htmlString := p.rctx.RenderMarkdown(params.Readme) 615 615 + sanitized := p.rctx.SanitizeDefault(htmlString) 616 616 + params.HTMLReadme = template.HTML(sanitized) 509 617 default: 510 618 params.Raw = true 511 619 } ··· 581 689 582 690 func (p *Pages) RepoTree(w io.Writer, params RepoTreeParams) error { 583 691 params.Active = "overview" 584 584 - return p.execute("repo/tree", w, params) 692 692 + return p.executeRepo("repo/tree", w, params) 585 693 } 586 694 587 695 type RepoBranchesParams struct { ··· 632 740 ShowRendered bool 633 741 RenderToggle bool 634 742 RenderedContents template.HTML 635 635 - types.RepoBlobResponse 743 743 + *tangled.RepoBlob_Output 744 744 + // Computed fields for template compatibility 745 745 + Contents string 746 746 + Lines int 747 747 + SizeHint uint64 748 748 + IsBinary bool 636 749 } 637 750 638 751 func (p *Pages) RepoBlob(w io.Writer, params RepoBlobParams) error { ··· 644 757 p.rctx.RepoInfo = params.RepoInfo 645 758 p.rctx.RendererType = markup.RendererTypeRepoMarkdown 646 759 htmlString := p.rctx.RenderMarkdown(params.Contents) 647 647 - params.RenderedContents = template.HTML(p.rctx.Sanitize(htmlString)) 760 760 + sanitized := p.rctx.SanitizeDefault(htmlString) 761 761 + params.RenderedContents = template.HTML(sanitized) 648 762 } 649 763 } 650 764 651 651 - if params.Lines < 5000 { 652 652 - c := params.Contents 653 653 - formatter := chromahtml.New( 654 654 - chromahtml.InlineCode(false), 655 655 - chromahtml.WithLineNumbers(true), 656 656 - chromahtml.WithLinkableLineNumbers(true, "L"), 657 657 - chromahtml.Standalone(false), 658 658 - chromahtml.WithClasses(true), 659 659 - ) 660 660 - 661 661 - lexer := lexers.Get(filepath.Base(params.Path)) 662 662 - if lexer == nil { 663 663 - lexer = lexers.Fallback 664 664 - } 765 765 + c := params.Contents 766 766 + formatter := chromahtml.New( 767 767 + chromahtml.InlineCode(false), 768 768 + chromahtml.WithLineNumbers(true), 769 769 + chromahtml.WithLinkableLineNumbers(true, "L"), 770 770 + chromahtml.Standalone(false), 771 771 + chromahtml.WithClasses(true), 772 772 + ) 665 773 666 666 - iterator, err := lexer.Tokenise(nil, c) 667 667 - if err != nil { 668 668 - return fmt.Errorf("chroma tokenize: %w", err) 669 669 - } 774 774 + lexer := lexers.Get(filepath.Base(params.Path)) 775 775 + if lexer == nil { 776 776 + lexer = lexers.Fallback 777 777 + } 670 778 671 671 - var code bytes.Buffer 672 672 - err = formatter.Format(&code, style, iterator) 673 673 - if err != nil { 674 674 - return fmt.Errorf("chroma format: %w", err) 675 675 - } 779 779 + iterator, err := lexer.Tokenise(nil, c) 780 780 + if err != nil { 781 781 + return fmt.Errorf("chroma tokenize: %w", err) 782 782 + } 676 783 677 677 - params.Contents = code.String() 784 784 + var code bytes.Buffer 785 785 + err = formatter.Format(&code, style, iterator) 786 786 + if err != nil { 787 787 + return fmt.Errorf("chroma format: %w", err) 678 788 } 679 789 790 790 + params.Contents = code.String() 680 791 params.Active = "overview" 681 792 return p.executeRepo("repo/blob", w, params) 682 793 } ··· 755 866 RepoInfo repoinfo.RepoInfo 756 867 Active string 757 868 Issues []db.Issue 758 758 - DidHandleMap map[string]string 759 869 Page pagination.Page 760 870 FilteringByOpen bool 761 871 } ··· 769 879 LoggedInUser *oauth.User 770 880 RepoInfo repoinfo.RepoInfo 771 881 Active string 772 772 - Issue db.Issue 773 773 - Comments []db.Comment 882 882 + Issue *db.Issue 883 883 + CommentList []db.CommentListItem 774 884 IssueOwnerHandle string 775 775 - DidHandleMap map[string]string 776 885 777 886 OrderedReactionKinds []db.ReactionKind 778 887 Reactions map[db.ReactionKind]int 779 888 UserReacted map[db.ReactionKind]bool 889 889 + } 780 890 781 781 - State string 891 891 + func (p *Pages) RepoSingleIssue(w io.Writer, params RepoSingleIssueParams) error { 892 892 + params.Active = "issues" 893 893 + return p.executeRepo("repo/issues/issue", w, params) 894 894 + } 895 895 + 896 896 + type EditIssueParams struct { 897 897 + LoggedInUser *oauth.User 898 898 + RepoInfo repoinfo.RepoInfo 899 899 + Issue *db.Issue 900 900 + Action string 901 901 + } 902 902 + 903 903 + func (p *Pages) EditIssueFragment(w io.Writer, params EditIssueParams) error { 904 904 + params.Action = "edit" 905 905 + return p.executePlain("repo/issues/fragments/putIssue", w, params) 782 906 } 783 907 784 908 type ThreadReactionFragmentParams struct { ··· 792 916 return p.executePlain("repo/fragments/reaction", w, params) 793 917 } 794 918 795 795 - func (p *Pages) RepoSingleIssue(w io.Writer, params RepoSingleIssueParams) error { 796 796 - params.Active = "issues" 797 797 - if params.Issue.Open { 798 798 - params.State = "open" 799 799 - } else { 800 800 - params.State = "closed" 801 801 - } 802 802 - return p.execute("repo/issues/issue", w, params) 803 803 - } 804 804 - 805 919 type RepoNewIssueParams struct { 806 920 LoggedInUser *oauth.User 807 921 RepoInfo repoinfo.RepoInfo 922 922 + Issue *db.Issue // existing issue if any -- passed when editing 808 923 Active string 924 924 + Action string 809 925 } 810 926 811 927 func (p *Pages) RepoNewIssue(w io.Writer, params RepoNewIssueParams) error { 812 928 params.Active = "issues" 929 929 + params.Action = "create" 813 930 return p.executeRepo("repo/issues/new", w, params) 814 931 } 815 932 ··· 817 934 LoggedInUser *oauth.User 818 935 RepoInfo repoinfo.RepoInfo 819 936 Issue *db.Issue 820 820 - Comment *db.Comment 937 937 + Comment *db.IssueComment 821 938 } 822 939 823 940 func (p *Pages) EditIssueCommentFragment(w io.Writer, params EditIssueCommentParams) error { 824 941 return p.executePlain("repo/issues/fragments/editIssueComment", w, params) 825 942 } 826 943 827 827 - type SingleIssueCommentParams struct { 944 944 + type ReplyIssueCommentPlaceholderParams struct { 828 945 LoggedInUser *oauth.User 829 829 - DidHandleMap map[string]string 830 946 RepoInfo repoinfo.RepoInfo 831 947 Issue *db.Issue 832 832 - Comment *db.Comment 948 948 + Comment *db.IssueComment 949 949 + } 950 950 + 951 951 + func (p *Pages) ReplyIssueCommentPlaceholderFragment(w io.Writer, params ReplyIssueCommentPlaceholderParams) error { 952 952 + return p.executePlain("repo/issues/fragments/replyIssueCommentPlaceholder", w, params) 833 953 } 834 954 835 835 - func (p *Pages) SingleIssueCommentFragment(w io.Writer, params SingleIssueCommentParams) error { 836 836 - return p.executePlain("repo/issues/fragments/issueComment", w, params) 955 955 + type ReplyIssueCommentParams struct { 956 956 + LoggedInUser *oauth.User 957 957 + RepoInfo repoinfo.RepoInfo 958 958 + Issue *db.Issue 959 959 + Comment *db.IssueComment 960 960 + } 961 961 + 962 962 + func (p *Pages) ReplyIssueCommentFragment(w io.Writer, params ReplyIssueCommentParams) error { 963 963 + return p.executePlain("repo/issues/fragments/replyComment", w, params) 964 964 + } 965 965 + 966 966 + type IssueCommentBodyParams struct { 967 967 + LoggedInUser *oauth.User 968 968 + RepoInfo repoinfo.RepoInfo 969 969 + Issue *db.Issue 970 970 + Comment *db.IssueComment 971 971 + } 972 972 + 973 973 + func (p *Pages) IssueCommentBodyFragment(w io.Writer, params IssueCommentBodyParams) error { 974 974 + return p.executePlain("repo/issues/fragments/issueCommentBody", w, params) 837 975 } 838 976 839 977 type RepoNewPullParams struct { ··· 858 996 RepoInfo repoinfo.RepoInfo 859 997 Pulls []*db.Pull 860 998 Active string 861 861 - DidHandleMap map[string]string 862 999 FilteringBy db.PullState 863 1000 Stacks map[string]db.Stack 864 1001 Pipelines map[string]db.Pipeline ··· 891 1028 LoggedInUser *oauth.User 892 1029 RepoInfo repoinfo.RepoInfo 893 1030 Active string 894 894 - DidHandleMap map[string]string 895 1031 Pull *db.Pull 896 1032 Stack db.Stack 897 1033 AbandonedPulls []*db.Pull ··· 911 1047 912 1048 type RepoPullPatchParams struct { 913 1049 LoggedInUser *oauth.User 914 914 - DidHandleMap map[string]string 915 1050 RepoInfo repoinfo.RepoInfo 916 1051 Pull *db.Pull 917 1052 Stack db.Stack ··· 929 1064 930 1065 type RepoPullInterdiffParams struct { 931 1066 LoggedInUser *oauth.User 932 932 - DidHandleMap map[string]string 933 1067 RepoInfo repoinfo.RepoInfo 934 1068 Pull *db.Pull 935 1069 Round int ··· 1120 1254 return p.executeRepo("repo/pipelines/workflow", w, params) 1121 1255 } 1122 1256 1257 1257 + type PutStringParams struct { 1258 1258 + LoggedInUser *oauth.User 1259 1259 + Action string 1260 1260 + 1261 1261 + // this is supplied in the case of editing an existing string 1262 1262 + String db.String 1263 1263 + } 1264 1264 + 1265 1265 + func (p *Pages) PutString(w io.Writer, params PutStringParams) error { 1266 1266 + return p.execute("strings/put", w, params) 1267 1267 + } 1268 1268 + 1269 1269 + type StringsDashboardParams struct { 1270 1270 + LoggedInUser *oauth.User 1271 1271 + Card ProfileCard 1272 1272 + Strings []db.String 1273 1273 + } 1274 1274 + 1275 1275 + func (p *Pages) StringsDashboard(w io.Writer, params StringsDashboardParams) error { 1276 1276 + return p.execute("strings/dashboard", w, params) 1277 1277 + } 1278 1278 + 1279 1279 + type StringTimelineParams struct { 1280 1280 + LoggedInUser *oauth.User 1281 1281 + Strings []db.String 1282 1282 + } 1283 1283 + 1284 1284 + func (p *Pages) StringsTimeline(w io.Writer, params StringTimelineParams) error { 1285 1285 + return p.execute("strings/timeline", w, params) 1286 1286 + } 1287 1287 + 1288 1288 + type SingleStringParams struct { 1289 1289 + LoggedInUser *oauth.User 1290 1290 + ShowRendered bool 1291 1291 + RenderToggle bool 1292 1292 + RenderedContents template.HTML 1293 1293 + String db.String 1294 1294 + Stats db.StringStats 1295 1295 + Owner identity.Identity 1296 1296 + } 1297 1297 + 1298 1298 + func (p *Pages) SingleString(w io.Writer, params SingleStringParams) error { 1299 1299 + var style *chroma.Style = styles.Get("catpuccin-latte") 1300 1300 + 1301 1301 + if params.ShowRendered { 1302 1302 + switch markup.GetFormat(params.String.Filename) { 1303 1303 + case markup.FormatMarkdown: 1304 1304 + p.rctx.RendererType = markup.RendererTypeRepoMarkdown 1305 1305 + htmlString := p.rctx.RenderMarkdown(params.String.Contents) 1306 1306 + sanitized := p.rctx.SanitizeDefault(htmlString) 1307 1307 + params.RenderedContents = template.HTML(sanitized) 1308 1308 + } 1309 1309 + } 1310 1310 + 1311 1311 + c := params.String.Contents 1312 1312 + formatter := chromahtml.New( 1313 1313 + chromahtml.InlineCode(false), 1314 1314 + chromahtml.WithLineNumbers(true), 1315 1315 + chromahtml.WithLinkableLineNumbers(true, "L"), 1316 1316 + chromahtml.Standalone(false), 1317 1317 + chromahtml.WithClasses(true), 1318 1318 + ) 1319 1319 + 1320 1320 + lexer := lexers.Get(filepath.Base(params.String.Filename)) 1321 1321 + if lexer == nil { 1322 1322 + lexer = lexers.Fallback 1323 1323 + } 1324 1324 + 1325 1325 + iterator, err := lexer.Tokenise(nil, c) 1326 1326 + if err != nil { 1327 1327 + return fmt.Errorf("chroma tokenize: %w", err) 1328 1328 + } 1329 1329 + 1330 1330 + var code bytes.Buffer 1331 1331 + err = formatter.Format(&code, style, iterator) 1332 1332 + if err != nil { 1333 1333 + return fmt.Errorf("chroma format: %w", err) 1334 1334 + } 1335 1335 + 1336 1336 + params.String.Contents = code.String() 1337 1337 + return p.execute("strings/string", w, params) 1338 1338 + } 1339 1339 + 1340 1340 + func (p *Pages) Home(w io.Writer, params TimelineParams) error { 1341 1341 + return p.execute("timeline/home", w, params) 1342 1342 + } 1343 1343 + 1123 1344 func (p *Pages) Static() http.Handler { 1124 1345 if p.dev { 1125 1346 return http.StripPrefix("/static/", http.FileServer(http.Dir("appview/pages/static"))) ··· 1127 1348 1128 1349 sub, err := fs.Sub(Files, "static") 1129 1350 if err != nil { 1130 1130 - log.Fatalf("no static dir found? that's crazy: %v", err) 1351 1351 + p.logger.Error("no static dir found? that's crazy", "err", err) 1352 1352 + panic(err) 1131 1353 } 1132 1354 // Custom handler to apply Cache-Control headers for font files 1133 1355 return Cache(http.StripPrefix("/static/", http.FileServer(http.FS(sub)))) ··· 1150 1372 func CssContentHash() string { 1151 1373 cssFile, err := Files.Open("static/tw.css") 1152 1374 if err != nil { 1153 1153 - log.Printf("Error opening CSS file: %v", err) 1375 1375 + slog.Debug("Error opening CSS file", "err", err) 1154 1376 return "" 1155 1377 } 1156 1378 defer cssFile.Close() 1157 1379 1158 1380 hasher := sha256.New() 1159 1381 if _, err := io.Copy(hasher, cssFile); err != nil { 1160 1160 - log.Printf("Error hashing CSS file: %v", err) 1382 1382 + slog.Debug("Error hashing CSS file", "err", err) 1161 1383 return "" 1162 1384 } 1163 1385 ··· 1170 1392 1171 1393 func (p *Pages) Error404(w io.Writer) error { 1172 1394 return p.execute("errors/404", w, nil) 1395 1395 + } 1396 1396 + 1397 1397 + func (p *Pages) ErrorKnot404(w io.Writer) error { 1398 1398 + return p.execute("errors/knot404", w, nil) 1173 1399 } 1174 1400 1175 1401 func (p *Pages) Error503(w io.Writer) error {

+2 -7

appview/pages/repoinfo/repoinfo.go

··· 78 78 func (r RepoInfo) TabMetadata() map[string]any { 79 79 meta := make(map[string]any) 80 80 81 81 - if r.Stats.PullCount.Open > 0 { 82 82 - meta["pulls"] = r.Stats.PullCount.Open 83 83 - } 84 84 - 85 85 - if r.Stats.IssueCount.Open > 0 { 86 86 - meta["issues"] = r.Stats.IssueCount.Open 87 87 - } 81 81 + meta["pulls"] = r.Stats.PullCount.Open 82 82 + meta["issues"] = r.Stats.IssueCount.Open 88 83 89 84 // more stuff? 90 85

+38

appview/pages/templates/banner.html

··· 1 1 + {{ define "banner" }} 2 2 + <div class="flex items-center justify-center mx-auto w-full bg-red-100 dark:bg-red-900 border border-red-200 dark:border-red-800 rounded-b drop-shadow-sm text-red-800 dark:text-red-200"> 3 3 + <details class="group p-2"> 4 4 + <summary class="list-none cursor-pointer"> 5 5 + <div class="flex gap-4 items-center"> 6 6 + <span class="group-open:hidden inline">{{ i "triangle-alert" "w-4 h-4" }}</span> 7 7 + <span class="hidden group-open:inline">{{ i "x" "w-4 h-4" }}</span> 8 8 + 9 9 + <span class="group-open:hidden inline">Some services that you administer require an update. Click to show more.</span> 10 10 + <span class="hidden group-open:inline">Some services that you administer will have to be updated to be compatible with Tangled.</span> 11 11 + </div> 12 12 + </summary> 13 13 + 14 14 + {{ if .Registrations }} 15 15 + <ul class="list-disc mx-12 my-2"> 16 16 + {{range .Registrations}} 17 17 + <li>Knot: {{ .Domain }}</li> 18 18 + {{ end }} 19 19 + </ul> 20 20 + {{ end }} 21 21 + 22 22 + {{ if .Spindles }} 23 23 + <ul class="list-disc mx-12 my-2"> 24 24 + {{range .Spindles}} 25 25 + <li>Spindle: {{ .Instance }}</li> 26 26 + {{ end }} 27 27 + </ul> 28 28 + {{ end }} 29 29 + 30 30 + <div class="mx-6"> 31 31 + These services may not be fully accessible until upgraded. 32 32 + <a class="underline text-red-800 dark:text-red-200" 33 33 + href="https://tangled.sh/@tangled.sh/core/tree/master/docs/migrations.md"> 34 34 + Click to read the upgrade guide</a>. 35 35 + </div> 36 36 + </details> 37 37 + </div> 38 38 + {{ end }}

+24 -4

appview/pages/templates/errors/404.html

··· 1 1 {{ define "title" }}404 &middot; tangled{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <h1>404 &mdash; nothing like that here!</h1> 5 5 - <p> 6 6 - It seems we couldn't find what you were looking for. Sorry about that! 7 7 - </p> 4 4 + <div class="flex flex-col items-center justify-center min-h-[60vh] text-center"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg drop-shadow-sm p-8 max-w-lg mx-auto"> 6 6 + <div class="mb-6"> 7 7 + <div class="w-16 h-16 mx-auto mb-4 rounded-full bg-gray-100 dark:bg-gray-700 flex items-center justify-center"> 8 8 + {{ i "search-x" "w-8 h-8 text-gray-400 dark:text-gray-500" }} 9 9 + </div> 10 10 + </div> 11 11 + 12 12 + <div class="space-y-4"> 13 13 + <h1 class="text-2xl sm:text-3xl font-bold text-gray-900 dark:text-white"> 14 14 + 404 &mdash; page not found 15 15 + </h1> 16 16 + <p class="text-gray-600 dark:text-gray-300"> 17 17 + The page you're looking for doesn't exist. It may have been moved, deleted, or you have the wrong URL. 18 18 + </p> 19 19 + <div class="flex flex-col sm:flex-row gap-3 justify-center items-center mt-6"> 20 20 + <a href="javascript:history.back()" class="btn no-underline hover:no-underline gap-2"> 21 21 + {{ i "arrow-left" "w-4 h-4" }} 22 22 + go back 23 23 + </a> 24 24 + </div> 25 25 + </div> 26 26 + </div> 27 27 + </div> 8 28 {{ end }}

+35 -2

appview/pages/templates/errors/500.html

··· 1 1 {{ define "title" }}500 &middot; tangled{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <h1>500 &mdash; something broke!</h1> 5 5 - <p>We're working on getting service back up. Hang tight!</p> 4 4 + <div class="flex flex-col items-center justify-center min-h-[60vh] text-center"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg drop-shadow-sm p-8 max-w-lg mx-auto"> 6 6 + <div class="mb-6"> 7 7 + <div class="w-16 h-16 mx-auto mb-4 rounded-full bg-red-100 dark:bg-red-900/30 flex items-center justify-center"> 8 8 + {{ i "alert-triangle" "w-8 h-8 text-red-500 dark:text-red-400" }} 9 9 + </div> 10 10 + </div> 11 11 + 12 12 + <div class="space-y-4"> 13 13 + <h1 class="text-2xl sm:text-3xl font-bold text-gray-900 dark:text-white"> 14 14 + 500 &mdash; internal server error 15 15 + </h1> 16 16 + <p class="text-gray-600 dark:text-gray-300"> 17 17 + Something went wrong on our end. We've been notified and are working to fix the issue. 18 18 + </p> 19 19 + <div class="bg-yellow-50 dark:bg-yellow-900/20 border border-yellow-200 dark:border-yellow-800 rounded p-3 text-sm text-yellow-800 dark:text-yellow-200"> 20 20 + <div class="flex items-center gap-2"> 21 21 + {{ i "info" "w-4 h-4" }} 22 22 + <span class="font-medium">we're on it!</span> 23 23 + </div> 24 24 + <p class="mt-1">Our team has been automatically notified about this error.</p> 25 25 + </div> 26 26 + <div class="flex flex-col sm:flex-row gap-3 justify-center items-center mt-6"> 27 27 + <button onclick="location.reload()" class="btn-create gap-2"> 28 28 + {{ i "refresh-cw" "w-4 h-4" }} 29 29 + try again 30 30 + </button> 31 31 + <a href="/" class="btn no-underline hover:no-underline gap-2"> 32 32 + {{ i "home" "w-4 h-4" }} 33 33 + back to home 34 34 + </a> 35 35 + </div> 36 36 + </div> 37 37 + </div> 38 38 + </div> 6 39 {{ end }}

+28 -5

appview/pages/templates/errors/503.html

··· 1 1 {{ define "title" }}503 &middot; tangled{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <h1>503 &mdash; unable to reach knot</h1> 5 5 - <p> 6 6 - We were unable to reach the knot hosting this repository. Try again 7 7 - later. 8 8 - </p> 4 4 + <div class="flex flex-col items-center justify-center min-h-[60vh] text-center"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg drop-shadow-sm p-8 max-w-lg mx-auto"> 6 6 + <div class="mb-6"> 7 7 + <div class="w-16 h-16 mx-auto mb-4 rounded-full bg-blue-100 dark:bg-blue-900/30 flex items-center justify-center"> 8 8 + {{ i "server-off" "w-8 h-8 text-blue-500 dark:text-blue-400" }} 9 9 + </div> 10 10 + </div> 11 11 + 12 12 + <div class="space-y-4"> 13 13 + <h1 class="text-2xl sm:text-3xl font-bold text-gray-900 dark:text-white"> 14 14 + 503 &mdash; service unavailable 15 15 + </h1> 16 16 + <p class="text-gray-600 dark:text-gray-300"> 17 17 + We were unable to reach the knot hosting this repository. The service may be temporarily unavailable. 18 18 + </p> 19 19 + <div class="flex flex-col sm:flex-row gap-3 justify-center items-center mt-6"> 20 20 + <button onclick="location.reload()" class="btn-create gap-2"> 21 21 + {{ i "refresh-cw" "w-4 h-4" }} 22 22 + try again 23 23 + </button> 24 24 + <a href="/" class="btn gap-2 no-underline hover:no-underline"> 25 25 + {{ i "arrow-left" "w-4 h-4" }} 26 26 + back to timeline 27 27 + </a> 28 28 + </div> 29 29 + </div> 30 30 + </div> 31 31 + </div> 9 32 {{ end }}

+28

appview/pages/templates/errors/knot404.html

··· 1 1 + {{ define "title" }}404 &middot; tangled{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="flex flex-col items-center justify-center min-h-[60vh] text-center"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg drop-shadow-sm p-8 max-w-lg mx-auto"> 6 6 + <div class="mb-6"> 7 7 + <div class="w-16 h-16 mx-auto mb-4 rounded-full bg-orange-100 dark:bg-orange-900/30 flex items-center justify-center"> 8 8 + {{ i "book-x" "w-8 h-8 text-orange-500 dark:text-orange-400" }} 9 9 + </div> 10 10 + </div> 11 11 + 12 12 + <div class="space-y-4"> 13 13 + <h1 class="text-2xl sm:text-3xl font-bold text-gray-900 dark:text-white"> 14 14 + 404 &mdash; repository not found 15 15 + </h1> 16 16 + <p class="text-gray-600 dark:text-gray-300"> 17 17 + The repository you were looking for could not be found. The knot serving the repository may be unavailable. 18 18 + </p> 19 19 + <div class="flex flex-col sm:flex-row gap-3 justify-center items-center mt-6"> 20 20 + <a href="/" class="btn flex items-center gap-2 no-underline hover:no-underline"> 21 21 + {{ i "arrow-left" "w-4 h-4" }} 22 22 + back to timeline 23 23 + </a> 24 24 + </div> 25 25 + </div> 26 26 + </div> 27 27 + </div> 28 28 + {{ end }}

+26

appview/pages/templates/favicon.html

··· 1 1 + {{ define "favicon" }} 2 2 + <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32"> 3 3 + <style> 4 4 + .favicon-text { 5 5 + fill: #000000; 6 6 + stroke: none; 7 7 + } 8 8 + 9 9 + @media (prefers-color-scheme: dark) { 10 10 + .favicon-text { 11 11 + fill: #ffffff; 12 12 + stroke: none; 13 13 + } 14 14 + } 15 15 + </style> 16 16 + 17 17 + <g style="display:inline"> 18 18 + <path d="M0-2.117h62.177v25.135H0z" style="display:inline;fill:none;fill-opacity:1;stroke-width:.396875" transform="translate(11.01 6.9)"/> 19 19 + <path d="M3.64 22.787c-1.697 0-2.943-.45-3.74-1.35-.77-.9-1.156-2.094-1.156-3.585 0-.36.013-.72.038-1.08.052-.385.129-.873.232-1.464L.44 6.826h-5.089l.733-4.394h3.2c.822 0 1.439-.168 1.85-.502.437-.334.72-.938.848-1.812l.771-4.703h5.243L6.84 2.432h7.787l-.733 4.394H6.107L4.257 17.93l.77.27 6.015-4.742 2.775 3.161-2.313 2.005c-.822.694-1.568 1.31-2.236 1.85-.668.515-1.31.952-1.927 1.311a7.406 7.406 0 0 1-1.774.733c-.59.18-1.233.27-1.927.27z" 20 20 + aria-label="tangled.sh" 21 21 + class="favicon-text" 22 22 + style="font-size:16.2278px;font-family:'IBM Plex Mono';-inkscape-font-specification:'IBM Plex Mono, Normal';display:inline;fill-opacity:1" 23 23 + transform="translate(11.01 6.9)"/> 24 24 + </g> 25 25 + </svg> 26 26 + {{ end }}

+8

appview/pages/templates/fragments/logotype.html

··· 1 1 + {{ define "fragments/logotype" }} 2 2 + <span class="flex items-center gap-2"> 3 3 + <span class="font-bold italic">tangled</span> 4 4 + <span class="font-normal not-italic text-xs rounded bg-gray-100 dark:bg-gray-700 px-1"> 5 5 + alpha 6 6 + </span> 7 7 + <span> 8 8 + {{ end }}

+90

appview/pages/templates/fragments/multiline-select.html

··· 1 1 + {{ define "fragments/multiline-select" }} 2 2 + <script> 3 3 + function highlight(scroll = false) { 4 4 + document.querySelectorAll(".hl").forEach(el => { 5 5 + el.classList.remove("hl"); 6 6 + }); 7 7 + 8 8 + const hash = window.location.hash; 9 9 + if (!hash || !hash.startsWith("#L")) { 10 10 + return; 11 11 + } 12 12 + 13 13 + const rangeStr = hash.substring(2); 14 14 + const parts = rangeStr.split("-"); 15 15 + let startLine, endLine; 16 16 + 17 17 + if (parts.length === 2) { 18 18 + startLine = parseInt(parts[0], 10); 19 19 + endLine = parseInt(parts[1], 10); 20 20 + } else { 21 21 + startLine = parseInt(parts[0], 10); 22 22 + endLine = startLine; 23 23 + } 24 24 + 25 25 + if (isNaN(startLine) || isNaN(endLine)) { 26 26 + console.log("nan"); 27 27 + console.log(startLine); 28 28 + console.log(endLine); 29 29 + return; 30 30 + } 31 31 + 32 32 + let target = null; 33 33 + 34 34 + for (let i = startLine; i<= endLine; i++) { 35 35 + const idEl = document.getElementById(`L${i}`); 36 36 + if (idEl) { 37 37 + const el = idEl.closest(".line"); 38 38 + if (el) { 39 39 + el.classList.add("hl"); 40 40 + target = el; 41 41 + } 42 42 + } 43 43 + } 44 44 + 45 45 + if (scroll && target) { 46 46 + target.scrollIntoView({ 47 47 + behavior: "smooth", 48 48 + block: "center", 49 49 + }); 50 50 + } 51 51 + } 52 52 + 53 53 + document.addEventListener("DOMContentLoaded", () => { 54 54 + console.log("DOMContentLoaded"); 55 55 + highlight(true); 56 56 + }); 57 57 + window.addEventListener("hashchange", () => { 58 58 + console.log("hashchange"); 59 59 + highlight(); 60 60 + }); 61 61 + window.addEventListener("popstate", () => { 62 62 + console.log("popstate"); 63 63 + highlight(); 64 64 + }); 65 65 + 66 66 + const lineNumbers = document.querySelectorAll('a[href^="#L"'); 67 67 + let startLine = null; 68 68 + 69 69 + lineNumbers.forEach(el => { 70 70 + el.addEventListener("click", (event) => { 71 71 + event.preventDefault(); 72 72 + const currentLine = parseInt(el.href.split("#L")[1]); 73 73 + 74 74 + if (event.shiftKey && startLine !== null) { 75 75 + const endLine = currentLine; 76 76 + const min = Math.min(startLine, endLine); 77 77 + const max = Math.max(startLine, endLine); 78 78 + const newHash = `#L${min}-${max}`; 79 79 + history.pushState(null, '', newHash); 80 80 + } else { 81 81 + const newHash = `#L${currentLine}`; 82 82 + history.pushState(null, '', newHash); 83 83 + startLine = currentLine; 84 84 + } 85 85 + 86 86 + highlight(); 87 87 + }); 88 88 + }); 89 89 + </script> 90 90 + {{ end }}

+96 -32

appview/pages/templates/knots/dashboard.html

··· 1 1 - {{ define "title" }}{{ .Registration.Domain }}{{ end }} 1 1 + {{ define "title" }}{{ .Registration.Domain }} &middot; knots{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <div class="px-6 py-4"> 5 5 - <div class="flex justify-between items-center"> 6 6 - <div id="left-side" class="flex gap-2 items-center"> 7 7 - <h1 class="text-xl font-bold dark:text-white"> 8 8 - {{ .Registration.Domain }} 9 9 - </h1> 10 10 - <span class="text-gray-500 text-base"> 11 11 - {{ template "repo/fragments/shortTimeAgo" .Registration.Created }} 12 12 - </span> 13 13 - </div> 14 14 - <div id="right-side" class="flex gap-2"> 15 15 - {{ $style := "px-2 py-1 rounded flex items-center flex-shrink-0 gap-2" }} 16 16 - {{ if .Registration.Registered }} 17 17 - <span class="bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 {{$style}}">{{ i "shield-check" "w-4 h-4" }} verified</span> 4 4 + <div class="px-6 py-4"> 5 5 + <div class="flex justify-between items-center"> 6 6 + <h1 class="text-xl font-bold dark:text-white">{{ .Registration.Domain }}</h1> 7 7 + <div id="right-side" class="flex gap-2"> 8 8 + {{ $style := "px-2 py-1 rounded flex items-center flex-shrink-0 gap-2" }} 9 9 + {{ $isOwner := and .LoggedInUser (eq .LoggedInUser.Did .Registration.ByDid) }} 10 10 + {{ if .Registration.IsRegistered }} 11 11 + <span class="bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 {{$style}}">{{ i "shield-check" "w-4 h-4" }} verified</span> 12 12 + {{ if $isOwner }} 18 13 {{ template "knots/fragments/addMemberModal" .Registration }} 19 19 - {{ else }} 20 20 - <span class="bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200 {{$style}}">{{ i "shield-off" "w-4 h-4" }} pending</span> 21 14 {{ end }} 22 22 - </div> 15 15 + {{ else if .Registration.IsReadOnly }} 16 16 + <span class="bg-yellow-100 text-yellow-800 dark:bg-yellow-900 dark:text-yellow-200 {{$style}}"> 17 17 + {{ i "shield-alert" "w-4 h-4" }} read-only 18 18 + </span> 19 19 + {{ if $isOwner }} 20 20 + {{ block "retryButton" .Registration }} {{ end }} 21 21 + {{ end }} 22 22 + {{ else }} 23 23 + <span class="bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200 {{$style}}">{{ i "shield-off" "w-4 h-4" }} unverified</span> 24 24 + {{ if $isOwner }} 25 25 + {{ block "retryButton" .Registration }} {{ end }} 26 26 + {{ end }} 27 27 + {{ end }} 28 28 + 29 29 + {{ if $isOwner }} 30 30 + {{ block "deleteButton" .Registration }} {{ end }} 31 31 + {{ end }} 23 32 </div> 24 24 - <div id="operation-error" class="dark:text-red-400"></div> 25 33 </div> 34 34 + <div id="operation-error" class="dark:text-red-400"></div> 35 35 + </div> 26 36 27 27 - {{ if .Members }} 28 28 - <section class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 29 29 - <div class="flex flex-col gap-2"> 30 30 - {{ block "knotMember" . }} {{ end }} 31 31 - </div> 32 32 - </section> 33 33 - {{ end }} 37 37 + {{ if .Members }} 38 38 + <section class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 39 39 + <div class="flex flex-col gap-2"> 40 40 + {{ block "member" . }} {{ end }} 41 41 + </div> 42 42 + </section> 43 43 + {{ end }} 34 44 {{ end }} 35 45 36 36 - {{ define "knotMember" }} 46 46 + 47 47 + {{ define "member" }} 37 48 {{ range .Members }} 38 49 <div> 39 50 <div class="flex justify-between items-center"> 40 51 <div class="flex items-center gap-2"> 41 41 - {{ i "user" "size-4" }} 42 42 - {{ $user := index $.DidHandleMap . }} 43 43 - <a href="/{{ $user }}">{{ $user }} <span class="ml-2 font-mono text-gray-500">{{.}}</span></a> 52 52 + {{ template "user/fragments/picHandleLink" . }} 53 53 + <span class="ml-2 font-mono text-gray-500">{{.}}</span> 44 54 </div> 55 55 + {{ if ne $.LoggedInUser.Did . }} 56 56 + {{ block "removeMemberButton" (list $ . ) }} {{ end }} 57 57 + {{ end }} 45 58 </div> 46 59 <div class="ml-2 pl-2 pt-2 border-l border-gray-200 dark:border-gray-700"> 47 60 {{ $repos := index $.Repos . }} 48 61 {{ range $repos }} 49 62 <div class="flex gap-2 items-center"> 50 63 {{ i "book-marked" "size-4" }} 51 51 - <a href="/{{ .Did }}/{{ .Name }}"> 64 64 + <a href="/{{ resolve .Did }}/{{ .Name }}"> 52 65 {{ .Name }} 53 66 </a> 54 67 </div> 55 68 {{ else }} 56 69 <div class="text-gray-500 dark:text-gray-400"> 57 57 - No repositories created yet. 70 70 + No repositories configured yet. 58 71 </div> 59 72 {{ end }} 60 73 </div> 61 74 </div> 62 75 {{ end }} 63 76 {{ end }} 77 77 + 78 78 + {{ define "deleteButton" }} 79 79 + <button 80 80 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 81 81 + title="Delete knot" 82 82 + hx-delete="/knots/{{ .Domain }}" 83 83 + hx-swap="outerHTML" 84 84 + hx-confirm="Are you sure you want to delete the knot '{{ .Domain }}'?" 85 85 + hx-headers='{"shouldRedirect": "true"}' 86 86 + > 87 87 + {{ i "trash-2" "w-5 h-5" }} 88 88 + <span class="hidden md:inline">delete</span> 89 89 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 90 90 + </button> 91 91 + {{ end }} 92 92 + 93 93 + 94 94 + {{ define "retryButton" }} 95 95 + <button 96 96 + class="btn gap-2 group" 97 97 + title="Retry knot verification" 98 98 + hx-post="/knots/{{ .Domain }}/retry" 99 99 + hx-swap="none" 100 100 + hx-headers='{"shouldRefresh": "true"}' 101 101 + > 102 102 + {{ i "rotate-ccw" "w-5 h-5" }} 103 103 + <span class="hidden md:inline">retry</span> 104 104 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 105 105 + </button> 106 106 + {{ end }} 107 107 + 108 108 + 109 109 + {{ define "removeMemberButton" }} 110 110 + {{ $root := index . 0 }} 111 111 + {{ $member := index . 1 }} 112 112 + {{ $memberHandle := resolve $member }} 113 113 + <button 114 114 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 115 115 + title="Remove member" 116 116 + hx-post="/knots/{{ $root.Registration.Domain }}/remove" 117 117 + hx-swap="none" 118 118 + hx-vals='{"member": "{{$member}}" }' 119 119 + hx-confirm="Are you sure you want to remove {{ $memberHandle }} from this knot?" 120 120 + > 121 121 + {{ i "user-minus" "w-4 h-4" }} 122 122 + remove 123 123 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 124 124 + </button> 125 125 + {{ end }} 126 126 + 127 127 +

+6 -7

appview/pages/templates/knots/fragments/addMemberModal.html

··· 1 1 {{ define "knots/fragments/addMemberModal" }} 2 2 <button 3 3 class="btn gap-2 group" 4 4 - title="Add member to this spindle" 4 4 + title="Add member to this knot" 5 5 popovertarget="add-member-{{ .Id }}" 6 6 popovertargetaction="toggle" 7 7 > ··· 20 20 21 21 {{ define "addKnotMemberPopover" }} 22 22 <form 23 23 - hx-put="/knots/{{ .Domain }}/member" 23 23 + hx-post="/knots/{{ .Domain }}/add" 24 24 hx-indicator="#spinner" 25 25 hx-swap="none" 26 26 class="flex flex-col gap-2" ··· 28 28 <label for="member-did-{{ .Id }}" class="uppercase p-0"> 29 29 ADD MEMBER 30 30 </label> 31 31 - <p class="text-sm text-gray-500 dark:text-gray-400">Members can create repositories on this knot.</p> 31 31 + <p class="text-sm text-gray-500 dark:text-gray-400">Members can create repositories and run workflows on this knot.</p> 32 32 <input 33 33 type="text" 34 34 id="member-did-{{ .Id }}" 35 35 - name="subject" 35 35 + name="member" 36 36 required 37 37 placeholder="@foo.bsky.social" 38 38 /> 39 39 <div class="flex gap-2 pt-2"> 40 40 - <button 40 40 + <button 41 41 type="button" 42 42 popovertarget="add-member-{{ .Id }}" 43 43 popovertargetaction="hide" ··· 54 54 </div> 55 55 <div id="add-member-error-{{ .Id }}" class="text-red-500 dark:text-red-400"></div> 56 56 </form> 57 57 - {{ end }} 58 58 - 57 57 + {{ end }}

+57 -25

appview/pages/templates/knots/fragments/knotListing.html

··· 1 1 {{ define "knots/fragments/knotListing" }} 2 2 - <div 3 3 - id="knot-{{.Id}}" 4 4 - hx-swap-oob="true" 5 5 - class="flex items-center justify-between p-2 border-b border-gray-200 dark:border-gray-700"> 6 6 - {{ block "listLeftSide" . }} {{ end }} 7 7 - {{ block "listRightSide" . }} {{ end }} 2 2 + <div id="knot-{{.Id}}" class="flex items-center justify-between p-2 border-b border-gray-200 dark:border-gray-700"> 3 3 + {{ block "knotLeftSide" . }} {{ end }} 4 4 + {{ block "knotRightSide" . }} {{ end }} 8 5 </div> 9 6 {{ end }} 10 7 11 11 - {{ define "listLeftSide" }} 8 8 + {{ define "knotLeftSide" }} 9 9 + {{ if .Registered }} 10 10 + <a href="/knots/{{ .Domain }}" class="hover:no-underline flex items-center gap-2 min-w-0 max-w-[60%]"> 11 11 + {{ i "hard-drive" "w-4 h-4" }} 12 12 + <span class="hover:underline"> 13 13 + {{ .Domain }} 14 14 + </span> 15 15 + <span class="text-gray-500"> 16 16 + {{ template "repo/fragments/shortTimeAgo" .Created }} 17 17 + </span> 18 18 + </a> 19 19 + {{ else }} 12 20 <div class="hover:no-underline flex items-center gap-2 min-w-0 max-w-[60%]"> 13 21 {{ i "hard-drive" "w-4 h-4" }} 14 14 - {{ if .Registered }} 15 15 - <a href="/knots/{{ .Domain }}"> 16 16 - {{ .Domain }} 17 17 - </a> 18 18 - {{ else }} 19 19 - {{ .Domain }} 20 20 - {{ end }} 22 22 + {{ .Domain }} 21 23 <span class="text-gray-500"> 22 24 {{ template "repo/fragments/shortTimeAgo" .Created }} 23 25 </span> 24 26 </div> 27 27 + {{ end }} 25 28 {{ end }} 26 29 27 27 - {{ define "listRightSide" }} 30 30 + {{ define "knotRightSide" }} 28 31 <div id="right-side" class="flex gap-2"> 29 32 {{ $style := "px-2 py-1 rounded flex items-center flex-shrink-0 gap-2 text-sm" }} 30 30 - {{ if .Registered }} 31 31 - <span class="bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 {{$style}}">{{ i "shield-check" "w-4 h-4" }} verified</span> 33 33 + {{ if .IsRegistered }} 34 34 + <span class="bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 {{$style}}"> 35 35 + {{ i "shield-check" "w-4 h-4" }} verified 36 36 + </span> 32 37 {{ template "knots/fragments/addMemberModal" . }} 38 38 + {{ block "knotDeleteButton" . }} {{ end }} 39 39 + {{ else if .IsNeedsUpgrade }} 40 40 + <span class="bg-yellow-100 text-yellow-800 dark:bg-yellow-900 dark:text-yellow-200 {{$style}}"> 41 41 + {{ i "shield-alert" "w-4 h-4" }} needs upgrade 42 42 + </span> 43 43 + {{ block "knotRetryButton" . }} {{ end }} 44 44 + {{ block "knotDeleteButton" . }} {{ end }} 33 45 {{ else }} 34 34 - <span class="bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200 {{$style}}">{{ i "shield-off" "w-4 h-4" }} pending</span> 35 35 - {{ block "initializeButton" . }} {{ end }} 46 46 + <span class="bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200 {{$style}}"> 47 47 + {{ i "shield-off" "w-4 h-4" }} unverified 48 48 + </span> 49 49 + {{ block "knotRetryButton" . }} {{ end }} 50 50 + {{ block "knotDeleteButton" . }} {{ end }} 36 51 {{ end }} 37 52 </div> 38 53 {{ end }} 39 54 40 40 - {{ define "initializeButton" }} 55 55 + {{ define "knotDeleteButton" }} 56 56 + <button 57 57 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 58 58 + title="Delete knot" 59 59 + hx-delete="/knots/{{ .Domain }}" 60 60 + hx-swap="outerHTML" 61 61 + hx-target="#knot-{{.Id}}" 62 62 + hx-confirm="Are you sure you want to delete the knot '{{ .Domain }}'?" 63 63 + > 64 64 + {{ i "trash-2" "w-5 h-5" }} 65 65 + <span class="hidden md:inline">delete</span> 66 66 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 67 67 + </button> 68 68 + {{ end }} 69 69 + 70 70 + 71 71 + {{ define "knotRetryButton" }} 41 72 <button 42 42 - class="btn dark:bg-gray-700 dark:text-white dark:hover:bg-gray-600 flex gap-2 items-center group" 43 43 - hx-post="/knots/{{ .Domain }}/init" 73 73 + class="btn gap-2 group" 74 74 + title="Retry knot verification" 75 75 + hx-post="/knots/{{ .Domain }}/retry" 44 76 hx-swap="none" 77 77 + hx-target="#knot-{{.Id}}" 45 78 > 46 46 - {{ i "square-play" "w-5 h-5" }} 47 47 - <span class="hidden md:inline">initialize</span> 79 79 + {{ i "rotate-ccw" "w-5 h-5" }} 80 80 + <span class="hidden md:inline">retry</span> 48 81 {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 49 82 </button> 50 83 {{ end }} 51 51 -

-18

appview/pages/templates/knots/fragments/knotListingFull.html

··· 1 1 - {{ define "knots/fragments/knotListingFull" }} 2 2 - <section 3 3 - id="knot-listing-full" 4 4 - hx-swap-oob="true" 5 5 - class="rounded w-full flex flex-col gap-2"> 6 6 - <h2 class="text-sm font-bold py-2 uppercase dark:text-gray-300">your knots</h2> 7 7 - <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700 w-full"> 8 8 - {{ range $knot := .Registrations }} 9 9 - {{ template "knots/fragments/knotListing" . }} 10 10 - {{ else }} 11 11 - <div class="flex items-center justify-center p-2 border-b border-gray-200 dark:border-gray-700 text-gray-500"> 12 12 - no knots registered yet 13 13 - </div> 14 14 - {{ end }} 15 15 - </div> 16 16 - <div id="operation-error" class="text-red-500 dark:text-red-400"></div> 17 17 - </section> 18 18 - {{ end }}

-10

appview/pages/templates/knots/fragments/secret.html

··· 1 1 - {{ define "knots/fragments/secret" }} 2 2 - <div 3 3 - id="secret" 4 4 - hx-swap-oob="true" 5 5 - class="bg-gray-50 dark:bg-gray-700 border border-black dark:border-gray-500 rounded px-6 py-2 w-full lg:w-3xl"> 6 6 - <h2 class="text-sm font-bold py-2 uppercase dark:text-gray-300">generated secret</h2> 7 7 - <p class="pb-2">Configure your knot to use this secret, and then hit initialize.</p> 8 8 - <span class="font-mono overflow-x">{{ .Secret }}</span> 9 9 - </div> 10 10 - {{ end }}

+34 -17

appview/pages/templates/knots/index.html

··· 1 1 {{ define "title" }}knots{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <div class="px-6 py-4"> 4 4 + <div class="px-6 py-4 flex items-center justify-between gap-4 align-bottom"> 5 5 <h1 class="text-xl font-bold dark:text-white">Knots</h1> 6 6 + <span class="flex items-center gap-1"> 7 7 + {{ i "book" "w-3 h-3" }} 8 8 + <a href="https://tangled.sh/@tangled.sh/core/blob/master/docs/knot-hosting.md">docs</a> 9 9 + </span> 6 10 </div> 7 11 8 12 <section class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 9 13 <div class="flex flex-col gap-6"> 10 14 {{ block "about" . }} {{ end }} 11 11 - {{ template "knots/fragments/knotListingFull" . }} 15 15 + {{ block "list" . }} {{ end }} 12 16 {{ block "register" . }} {{ end }} 13 17 </div> 14 18 </section> 15 19 {{ end }} 16 20 17 21 {{ define "about" }} 18 18 - <section class="rounded flex flex-col gap-2"> 19 19 - <p class="dark:text-gray-300"> 20 20 - Knots are lightweight headless servers that enable users to host Git repositories with ease. 21 21 - Knots are designed for either single or multi-tenant use which is perfect for self-hosting on a Raspberry Pi at home, or larger “community” servers. 22 22 - When creating a repository, you can choose a knot to store it on. 23 23 - <a href="https://tangled.sh/@tangled.sh/core/blob/master/docs/knot-hosting.md"> 24 24 - Checkout the documentation if you're interested in self-hosting. 25 25 - </a> 22 22 + <section class="rounded"> 23 23 + <p class="text-gray-500 dark:text-gray-400"> 24 24 + Knots are lightweight headless servers that enable users to host Git repositories with ease. 25 25 + When creating a repository, you can choose a knot to store it on. 26 26 </p> 27 27 + 28 28 + 29 29 + </section> 30 30 + {{ end }} 31 31 + 32 32 + {{ define "list" }} 33 33 + <section class="rounded w-full flex flex-col gap-2"> 34 34 + <h2 class="text-sm font-bold py-2 uppercase dark:text-gray-300">your knots</h2> 35 35 + <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700 w-full"> 36 36 + {{ range $registration := .Registrations }} 37 37 + {{ template "knots/fragments/knotListing" . }} 38 38 + {{ else }} 39 39 + <div class="flex items-center justify-center p-2 border-b border-gray-200 dark:border-gray-700 text-gray-500"> 40 40 + no knots registered yet 41 41 + </div> 42 42 + {{ end }} 43 43 + </div> 44 44 + <div id="operation-error" class="text-red-500 dark:text-red-400"></div> 27 45 </section> 28 46 {{ end }} 29 47 30 48 {{ define "register" }} 31 31 - <section class="rounded max-w-2xl flex flex-col gap-2"> 49 49 + <section class="rounded w-full lg:w-fit flex flex-col gap-2"> 32 50 <h2 class="text-sm font-bold py-2 uppercase dark:text-gray-300">register a knot</h2> 33 33 - <p class="mb-2 dark:text-gray-300">Enter the hostname of your knot to generate a key.</p> 51 51 + <p class="mb-2 dark:text-gray-300">Enter the hostname of your knot to get started.</p> 34 52 <form 35 35 - hx-post="/knots/key" 36 36 - class="space-y-4" 53 53 + hx-post="/knots/register" 54 54 + class="max-w-2xl mb-2 space-y-4" 37 55 hx-indicator="#register-button" 38 56 hx-swap="none" 39 57 > ··· 53 71 > 54 72 <span class="inline-flex items-center gap-2"> 55 73 {{ i "plus" "w-4 h-4" }} 56 56 - generate 74 74 + register 57 75 </span> 58 76 <span class="pl-2 hidden group-[.htmx-request]:inline"> 59 77 {{ i "loader-circle" "w-4 h-4 animate-spin" }} ··· 61 79 </button> 62 80 </div> 63 81 64 64 - <div id="registration-error" class="error dark:text-red-400"></div> 82 82 + <div id="register-error" class="error dark:text-red-400"></div> 65 83 </form> 66 84 67 67 - <div id="secret"></div> 68 85 </section> 69 86 {{ end }}

+27 -24

appview/pages/templates/layouts/base.html

··· 3 3 <html lang="en" class="dark:bg-gray-900"> 4 4 <head> 5 5 <meta charset="UTF-8" /> 6 6 - <meta 7 7 - name="viewport" 8 8 - content="width=device-width, initial-scale=1.0" 9 9 - /> 6 6 + <meta name="viewport" content="width=device-width, initial-scale=1.0"/> 7 7 + <meta name="description" content="Social coding, but for real this time!"/> 10 8 <meta name="htmx-config" content='{"includeIndicatorStyles": false}'> 11 11 - <script src="/static/htmx.min.js"></script> 12 12 - <script src="/static/htmx-ext-ws.min.js"></script> 9 9 + 10 10 + <script defer src="/static/htmx.min.js"></script> 11 11 + <script defer src="/static/htmx-ext-ws.min.js"></script> 12 12 + 13 13 + <!-- preconnect to image cdn --> 14 14 + <link rel="preconnect" href="https://avatar.tangled.sh" /> 15 15 + <link rel="preconnect" href="https://camo.tangled.sh" /> 16 16 + 17 17 + <!-- preload main font --> 18 18 + <link rel="preload" href="/static/fonts/InterVariable.woff2" as="font" type="font/woff2" crossorigin /> 19 19 + 13 20 <link rel="stylesheet" href="/static/tw.css?{{ cssContentHash }}" type="text/css" /> 14 21 <title>{{ block "title" . }}{{ end }} · tangled</title> 15 22 {{ block "extrameta" . }}{{ end }} 16 23 </head> 17 17 - <body class="min-h-screen grid grid-cols-1 grid-rows-[min-content_auto_min-content] md:grid-cols-12 gap-4 bg-slate-100 dark:bg-gray-900 dark:text-white transition-colors duration-200"> 24 24 + <body class="min-h-screen grid grid-cols-1 grid-rows-[min-content_auto_min-content] md:grid-cols-10 lg:grid-cols-12 gap-4 bg-slate-100 dark:bg-gray-900 dark:text-white transition-colors duration-200"> 18 25 {{ block "topbarLayout" . }} 19 19 - <header class="px-1 col-span-1 md:col-start-3 md:col-span-8" style="z-index: 20;"> 20 20 - {{ template "layouts/topbar" . }} 26 26 + <header class="px-1 col-span-1 md:col-start-2 md:col-span-8 lg:col-start-3" style="z-index: 20;"> 27 27 + 28 28 + {{ if .LoggedInUser }} 29 29 + <div id="upgrade-banner" 30 30 + hx-get="/upgradeBanner" 31 31 + hx-trigger="load" 32 32 + hx-swap="innerHTML"> 33 33 + </div> 34 34 + {{ end }} 35 35 + {{ template "layouts/fragments/topbar" . }} 21 36 </header> 22 37 {{ end }} 23 38 24 39 {{ block "mainLayout" . }} 25 25 - <div class="px-1 col-span-1 md:col-start-3 md:col-span-8 flex flex-col gap-4"> 40 40 + <div class="px-1 col-span-1 md:col-start-2 md:col-span-8 lg:col-start-3 flex flex-col gap-4"> 26 41 {{ block "contentLayout" . }} 27 27 - <div class="col-span-1 md:col-span-2"> 28 28 - {{ block "contentLeft" . }} {{ end }} 29 29 - </div> 30 42 <main class="col-span-1 md:col-span-8"> 31 43 {{ block "content" . }}{{ end }} 32 44 </main> 33 33 - <div class="col-span-1 md:col-span-2"> 34 34 - {{ block "contentRight" . }} {{ end }} 35 35 - </div> 36 45 {{ end }} 37 46 38 47 {{ block "contentAfterLayout" . }} 39 39 - <div class="col-span-1 md:col-span-2"> 40 40 - {{ block "contentAfterLeft" . }} {{ end }} 41 41 - </div> 42 48 <main class="col-span-1 md:col-span-8"> 43 49 {{ block "contentAfter" . }}{{ end }} 44 50 </main> 45 45 - <div class="col-span-1 md:col-span-2"> 46 46 - {{ block "contentAfterRight" . }} {{ end }} 47 47 - </div> 48 51 {{ end }} 49 52 </div> 50 53 {{ end }} 51 54 52 55 {{ block "footerLayout" . }} 53 53 - <footer class="px-1 col-span-1 md:col-start-3 md:col-span-8 mt-12"> 54 54 - {{ template "layouts/footer" . }} 56 56 + <footer class="px-1 col-span-1 md:col-start-2 md:col-span-8 lg:col-start-3 mt-12"> 57 57 + {{ template "layouts/fragments/footer" . }} 55 58 </footer> 56 59 {{ end }} 57 60 </body>

-7

appview/pages/templates/layouts/footer.html

··· 1 1 - {{ define "layouts/footer" }} 2 2 - <div class="w-full p-4 bg-white dark:bg-gray-800 rounded-t drop-shadow-sm"> 3 3 - <div class="container mx-auto text-center text-gray-600 dark:text-gray-400 text-sm"> 4 4 - <span class="font-semibold italic">tangled</span> &mdash; made by <a href="/@oppi.li">@oppi.li</a> and <a href="/@icyphox.sh">@icyphox.sh</a> 5 5 - </div> 6 6 - </div> 7 7 - {{ end }}

+48

appview/pages/templates/layouts/fragments/footer.html

··· 1 1 + {{ define "layouts/fragments/footer" }} 2 2 + <div class="w-full p-4 md:p-8 bg-white dark:bg-gray-800 rounded-t drop-shadow-sm"> 3 3 + <div class="container mx-auto max-w-7xl px-4"> 4 4 + <div class="flex flex-col lg:flex-row justify-between items-start text-gray-600 dark:text-gray-400 text-sm gap-8"> 5 5 + <div class="mb-4 md:mb-0"> 6 6 + <a href="/" hx-boost="true" class="flex gap-2 font-semibold italic"> 7 7 + tangled_alpha 8 8 + </a> 9 9 + </div> 10 10 + 11 11 + {{ $headerStyle := "text-gray-900 dark:text-gray-200 font-bold text-xs uppercase tracking-wide mb-1" }} 12 12 + {{ $linkStyle := "text-gray-500 dark:text-gray-400 hover:text-gray-900 dark:hover:text-gray-200 hover:underline inline-flex gap-1 items-center" }} 13 13 + {{ $iconStyle := "w-4 h-4 flex-shrink-0" }} 14 14 + <div class="grid grid-cols-1 sm:grid-cols-1 md:grid-cols-4 sm:gap-6 md:gap-2 gap-6 flex-1"> 15 15 + <div class="flex flex-col gap-1"> 16 16 + <div class="{{ $headerStyle }}">legal</div> 17 17 + <a href="/terms" class="{{ $linkStyle }}">{{ i "file-text" $iconStyle }} terms of service</a> 18 18 + <a href="/privacy" class="{{ $linkStyle }}">{{ i "shield" $iconStyle }} privacy policy</a> 19 19 + </div> 20 20 + 21 21 + <div class="flex flex-col gap-1"> 22 22 + <div class="{{ $headerStyle }}">resources</div> 23 23 + <a href="https://blog.tangled.sh" class="{{ $linkStyle }}" target="_blank" rel="noopener noreferrer">{{ i "book-open" $iconStyle }} blog</a> 24 24 + <a href="https://tangled.sh/@tangled.sh/core/tree/master/docs" class="{{ $linkStyle }}">{{ i "book" $iconStyle }} docs</a> 25 25 + <a href="https://tangled.sh/@tangled.sh/core" class="{{ $linkStyle }}">{{ i "code" $iconStyle }} source</a> 26 26 + </div> 27 27 + 28 28 + <div class="flex flex-col gap-1"> 29 29 + <div class="{{ $headerStyle }}">social</div> 30 30 + <a href="https://chat.tangled.sh" class="{{ $linkStyle }}" target="_blank" rel="noopener noreferrer">{{ i "message-circle" $iconStyle }} discord</a> 31 31 + <a href="https://web.libera.chat/#tangled" class="{{ $linkStyle }}" target="_blank" rel="noopener noreferrer">{{ i "hash" $iconStyle }} irc</a> 32 32 + <a href="https://bsky.app/profile/tangled.sh" class="{{ $linkStyle }}" target="_blank" rel="noopener noreferrer">{{ template "user/fragments/bluesky" $iconStyle }} bluesky</a> 33 33 + </div> 34 34 + 35 35 + <div class="flex flex-col gap-1"> 36 36 + <div class="{{ $headerStyle }}">contact</div> 37 37 + <a href="mailto:team@tangled.sh" class="{{ $linkStyle }}">{{ i "mail" "w-4 h-4 flex-shrink-0" }} team@tangled.sh</a> 38 38 + <a href="mailto:security@tangled.sh" class="{{ $linkStyle }}">{{ i "shield-check" "w-4 h-4 flex-shrink-0" }} security@tangled.sh</a> 39 39 + </div> 40 40 + </div> 41 41 + 42 42 + <div class="text-center lg:text-right flex-shrink-0"> 43 43 + <div class="text-xs">&copy; 2025 Tangled Labs Oy. All rights reserved.</div> 44 44 + </div> 45 45 + </div> 46 46 + </div> 47 47 + </div> 48 48 + {{ end }}

+78

appview/pages/templates/layouts/fragments/topbar.html

··· 1 1 + {{ define "layouts/fragments/topbar" }} 2 2 + <nav class="space-x-4 px-6 py-2 rounded bg-white dark:bg-gray-800 dark:text-white drop-shadow-sm"> 3 3 + <div class="flex justify-between p-0 items-center"> 4 4 + <div id="left-items"> 5 5 + <a href="/" hx-boost="true" class="text-lg">{{ template "fragments/logotype" }}</a> 6 6 + </div> 7 7 + 8 8 + <div id="right-items" class="flex items-center gap-2"> 9 9 + {{ with .LoggedInUser }} 10 10 + {{ block "newButton" . }} {{ end }} 11 11 + {{ block "dropDown" . }} {{ end }} 12 12 + {{ else }} 13 13 + <a href="/login">login</a> 14 14 + <span class="text-gray-500 dark:text-gray-400">or</span> 15 15 + <a href="/signup" class="btn-create py-0 hover:no-underline hover:text-white flex items-center gap-2"> 16 16 + join now {{ i "arrow-right" "size-4" }} 17 17 + </a> 18 18 + {{ end }} 19 19 + </div> 20 20 + </div> 21 21 + </nav> 22 22 + {{ end }} 23 23 + 24 24 + {{ define "newButton" }} 25 25 + <details class="relative inline-block text-left nav-dropdown"> 26 26 + <summary class="btn-create py-0 cursor-pointer list-none flex items-center gap-2"> 27 27 + {{ i "plus" "w-4 h-4" }} new 28 28 + </summary> 29 29 + <div class="absolute flex flex-col right-0 mt-4 p-4 rounded w-48 bg-white dark:bg-gray-800 dark:text-white border border-gray-200 dark:border-gray-700"> 30 30 + <a href="/repo/new" class="flex items-center gap-2"> 31 31 + {{ i "book-plus" "w-4 h-4" }} 32 32 + new repository 33 33 + </a> 34 34 + <a href="/strings/new" class="flex items-center gap-2"> 35 35 + {{ i "line-squiggle" "w-4 h-4" }} 36 36 + new string 37 37 + </a> 38 38 + </div> 39 39 + </details> 40 40 + {{ end }} 41 41 + 42 42 + {{ define "dropDown" }} 43 43 + <details class="relative inline-block text-left nav-dropdown"> 44 44 + <summary 45 45 + class="cursor-pointer list-none flex items-center" 46 46 + > 47 47 + {{ $user := didOrHandle .Did .Handle }} 48 48 + {{ template "user/fragments/picHandle" $user }} 49 49 + </summary> 50 50 + <div 51 51 + class="absolute flex flex-col right-0 mt-4 p-4 rounded w-48 bg-white dark:bg-gray-800 dark:text-white border border-gray-200 dark:border-gray-700" 52 52 + > 53 53 + <a href="/{{ $user }}">profile</a> 54 54 + <a href="/{{ $user }}?tab=repos">repositories</a> 55 55 + <a href="/{{ $user }}?tab=strings">strings</a> 56 56 + <a href="/knots">knots</a> 57 57 + <a href="/spindles">spindles</a> 58 58 + <a href="/settings">settings</a> 59 59 + <a href="#" 60 60 + hx-post="/logout" 61 61 + hx-swap="none" 62 62 + class="text-red-400 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300"> 63 63 + logout 64 64 + </a> 65 65 + </div> 66 66 + </details> 67 67 + 68 68 + <script> 69 69 + document.addEventListener('click', function(event) { 70 70 + const dropdowns = document.querySelectorAll('.nav-dropdown'); 71 71 + dropdowns.forEach(function(dropdown) { 72 72 + if (!dropdown.contains(event.target)) { 73 73 + dropdown.removeAttribute('open'); 74 74 + } 75 75 + }); 76 76 + }); 77 77 + </script> 78 78 + {{ end }}

+109

appview/pages/templates/layouts/profilebase.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }}{{ end }} 2 2 + 3 3 + {{ define "extrameta" }} 4 4 + <meta property="og:title" content="{{ or .Card.UserHandle .Card.UserDid }}" /> 5 5 + <meta property="og:type" content="profile" /> 6 6 + <meta property="og:url" content="https://tangled.sh/{{ or .Card.UserHandle .Card.UserDid }}?tab={{ .Active }}" /> 7 7 + <meta property="og:description" content="{{ or .Card.Profile.Description .Card.UserHandle .Card.UserDid }}" /> 8 8 + {{ end }} 9 9 + 10 10 + {{ define "content" }} 11 11 + {{ template "profileTabs" . }} 12 12 + <section class="bg-white dark:bg-gray-800 px-2 py-6 md:p-6 rounded w-full dark:text-white drop-shadow-sm"> 13 13 + <div class="grid grid-cols-1 md:grid-cols-11 gap-4"> 14 14 + {{ $style := "hidden md:block md:col-span-3" }} 15 15 + {{ if eq $.Active "overview" }} 16 16 + {{ $style = "md:col-span-3" }} 17 17 + {{ end }} 18 18 + <div class="{{ $style }} order-1 order-1"> 19 19 + <div class="flex flex-col gap-4"> 20 20 + {{ template "user/fragments/profileCard" .Card }} 21 21 + {{ block "punchcard" .Card.Punchcard }} {{ end }} 22 22 + </div> 23 23 + </div> 24 24 + 25 25 + {{ block "profileContent" . }} {{ end }} 26 26 + </div> 27 27 + </section> 28 28 + {{ end }} 29 29 + 30 30 + {{ define "profileTabs" }} 31 31 + <nav class="w-full pl-4 overflow-x-auto overflow-y-hidden"> 32 32 + <div class="flex z-60"> 33 33 + {{ $activeTabStyles := "-mb-px bg-white dark:bg-gray-800" }} 34 34 + {{ $tabs := .Card.GetTabs }} 35 35 + {{ $tabmeta := dict "x" "y" }} 36 36 + {{ range $item := $tabs }} 37 37 + {{ $key := index $item 0 }} 38 38 + {{ $value := index $item 1 }} 39 39 + {{ $icon := index $item 2 }} 40 40 + {{ $meta := index $item 3 }} 41 41 + <a 42 42 + href="?tab={{ $value }}" 43 43 + class="relative -mr-px group no-underline hover:no-underline" 44 44 + hx-boost="true"> 45 45 + <div 46 46 + class="px-4 py-1 mr-1 text-black dark:text-white min-w-[80px] text-center relative rounded-t whitespace-nowrap 47 47 + {{ if eq $.Active $key }} 48 48 + {{ $activeTabStyles }} 49 49 + {{ else }} 50 50 + group-hover:bg-gray-100/25 group-hover:dark:bg-gray-700/25 51 51 + {{ end }} 52 52 + "> 53 53 + <span class="flex items-center justify-center"> 54 54 + {{ i $icon "w-4 h-4 mr-2" }} 55 55 + {{ $key }} 56 56 + {{ if $meta }} 57 57 + <span class="bg-gray-200 dark:bg-gray-700 rounded py-1/2 px-1 text-sm ml-1">{{ $meta }}</span> 58 58 + {{ end }} 59 59 + </span> 60 60 + </div> 61 61 + </a> 62 62 + {{ end }} 63 63 + </div> 64 64 + </nav> 65 65 + {{ end }} 66 66 + 67 67 + {{ define "punchcard" }} 68 68 + {{ $now := now }} 69 69 + <div> 70 70 + <p class="px-2 pb-4 flex gap-2 text-sm font-bold dark:text-white"> 71 71 + PUNCHCARD 72 72 + <span class="font-mono font-normal text-sm text-gray-500 dark:text-gray-400 "> 73 73 + {{ .Total | int64 | commaFmt }} commits 74 74 + </span> 75 75 + </p> 76 76 + <div class="grid grid-cols-28 md:grid-cols-14 gap-y-3 w-full h-full"> 77 77 + {{ range .Punches }} 78 78 + {{ $count := .Count }} 79 79 + {{ $theme := "bg-gray-200 dark:bg-gray-700 size-[4px]" }} 80 80 + {{ if lt $count 1 }} 81 81 + {{ $theme = "bg-gray-200 dark:bg-gray-700 size-[4px]" }} 82 82 + {{ else if lt $count 2 }} 83 83 + {{ $theme = "bg-green-200 dark:bg-green-900 size-[5px]" }} 84 84 + {{ else if lt $count 4 }} 85 85 + {{ $theme = "bg-green-300 dark:bg-green-800 size-[5px]" }} 86 86 + {{ else if lt $count 8 }} 87 87 + {{ $theme = "bg-green-400 dark:bg-green-700 size-[6px]" }} 88 88 + {{ else }} 89 89 + {{ $theme = "bg-green-500 dark:bg-green-600 size-[7px]" }} 90 90 + {{ end }} 91 91 + 92 92 + {{ if .Date.After $now }} 93 93 + {{ $theme = "border border-gray-200 dark:border-gray-700 size-[4px]" }} 94 94 + {{ end }} 95 95 + <div class="w-full h-full flex justify-center items-center"> 96 96 + <div 97 97 + class="aspect-square rounded-full transition-all duration-300 {{ $theme }} max-w-full max-h-full" 98 98 + title="{{ .Date.Format "2006-01-02" }}: {{ .Count }} commits"> 99 99 + </div> 100 100 + </div> 101 101 + {{ end }} 102 102 + </div> 103 103 + </div> 104 104 + {{ end }} 105 105 + 106 106 + {{ define "layouts/profilebase" }} 107 107 + {{ template "layouts/base" . }} 108 108 + {{ end }} 109 109 +

+20 -29

appview/pages/templates/layouts/repobase.html

··· 5 5 {{ if .RepoInfo.Source }} 6 6 <p class="text-sm"> 7 7 <div class="flex items-center"> 8 8 - {{ i "git-fork" "w-3 h-3 mr-1"}} 8 8 + {{ i "git-fork" "w-3 h-3 mr-1 shrink-0" }} 9 9 forked from 10 10 {{ $sourceOwner := didOrHandle .RepoInfo.Source.Did .RepoInfo.SourceHandle }} 11 11 <a class="ml-1 underline" href="/{{ $sourceOwner }}/{{ .RepoInfo.Source.Name }}">{{ $sourceOwner }}/{{ .RepoInfo.Source.Name }}</a> ··· 20 20 </div> 21 21 22 22 <div class="flex items-center gap-2 z-auto"> 23 23 + <a 24 24 + class="btn text-sm no-underline hover:no-underline flex items-center gap-2 group" 25 25 + href="/{{ .RepoInfo.FullName }}/feed.atom" 26 26 + > 27 27 + {{ i "rss" "size-4" }} 28 28 + </a> 23 29 {{ template "repo/fragments/repoStar" .RepoInfo }} 24 24 - {{ if .RepoInfo.DisableFork }} 25 25 - <button 26 26 - class="btn text-sm no-underline hover:no-underline flex items-center gap-2 disabled:opacity-50 disabled:cursor-not-allowed" 27 27 - disabled 28 28 - title="Empty repositories cannot be forked" 29 29 - > 30 30 - {{ i "git-fork" "w-4 h-4" }} 31 31 - fork 32 32 - </button> 33 33 - {{ else }} 34 34 - <a 35 35 - class="btn text-sm no-underline hover:no-underline flex items-center gap-2 group" 36 36 - hx-boost="true" 37 37 - href="/{{ .RepoInfo.FullName }}/fork" 38 38 - > 39 39 - {{ i "git-fork" "w-4 h-4" }} 40 40 - fork 41 41 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 42 42 - </a> 43 43 - {{ end }} 30 30 + <a 31 31 + class="btn text-sm no-underline hover:no-underline flex items-center gap-2 group" 32 32 + hx-boost="true" 33 33 + href="/{{ .RepoInfo.FullName }}/fork" 34 34 + > 35 35 + {{ i "git-fork" "w-4 h-4" }} 36 36 + fork 37 37 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 38 38 + </a> 44 39 </div> 45 40 </div> 46 41 {{ template "repo/fragments/repoDescription" . }} 47 42 </section> 48 43 49 44 <section 50 50 - class="w-full flex flex-col drop-shadow-sm" 45 45 + class="w-full flex flex-col" 51 46 > 52 47 <nav class="w-full pl-4 overflow-auto"> 53 48 <div class="flex z-60"> ··· 76 71 <span class="flex items-center justify-center"> 77 72 {{ i $icon "w-4 h-4 mr-2" }} 78 73 {{ $key }} 79 79 - {{ if not (isNil $meta) }} 80 80 - <span class="bg-gray-200 dark:bg-gray-700 rounded py-1/2 px-1 text-sm ml-1">{{ $meta }}</span> 74 74 + {{ if $meta }} 75 75 + <span class="bg-gray-200 dark:bg-gray-700 rounded py-1/2 px-1 text-sm ml-1">{{ $meta }}</span> 81 76 {{ end }} 82 77 </span> 83 78 </div> ··· 86 81 </div> 87 82 </nav> 88 83 <section 89 89 - class="bg-white dark:bg-gray-800 p-6 rounded relative w-full dark:text-white" 84 84 + class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto dark:text-white" 90 85 > 91 86 {{ block "repoContent" . }}{{ end }} 92 87 </section> 93 88 {{ block "repoAfter" . }}{{ end }} 94 89 </section> 95 90 {{ end }} 96 96 - 97 97 - {{ define "layouts/repobase" }} 98 98 - {{ template "layouts/base" . }} 99 99 - {{ end }}

-60

appview/pages/templates/layouts/topbar.html

··· 1 1 - {{ define "layouts/topbar" }} 2 2 - <nav class="space-x-4 px-6 py-2 rounded bg-white dark:bg-gray-800 dark:text-white drop-shadow-sm"> 3 3 - <div class="flex justify-between p-0 items-center"> 4 4 - <div id="left-items"> 5 5 - <a href="/" hx-boost="true" class="flex gap-2 font-semibold italic"> 6 6 - tangled_alpha 7 7 - </a> 8 8 - </div> 9 9 - <div class="hidden md:flex gap-4 items-center"> 10 10 - <a href="https://chat.tangled.sh" class="inline-flex gap-1 items-center"> 11 11 - {{ i "message-circle" "size-4" }} discord 12 12 - </a> 13 13 - 14 14 - <a href="https://web.libera.chat/#tangled" class="inline-flex gap-1 items-center"> 15 15 - {{ i "hash" "size-4" }} irc 16 16 - </a> 17 17 - 18 18 - <a href="https://tangled.sh/@tangled.sh/core" class="inline-flex gap-1 items-center"> 19 19 - {{ i "code" "size-4" }} source 20 20 - </a> 21 21 - </div> 22 22 - <div id="right-items" class="flex items-center gap-4"> 23 23 - {{ with .LoggedInUser }} 24 24 - <a href="/repo/new" hx-boost="true" class="btn-create hover:no-underline hover:text-white"> 25 25 - {{ i "plus" "w-4 h-4" }} 26 26 - </a> 27 27 - {{ block "dropDown" . }} {{ end }} 28 28 - {{ else }} 29 29 - <a href="/login">login</a> 30 30 - {{ end }} 31 31 - </div> 32 32 - </div> 33 33 - </nav> 34 34 - {{ end }} 35 35 - 36 36 - {{ define "dropDown" }} 37 37 - <details class="relative inline-block text-left"> 38 38 - <summary 39 39 - class="cursor-pointer list-none flex items-center" 40 40 - > 41 41 - {{ $user := didOrHandle .Did .Handle }} 42 42 - {{ template "user/fragments/picHandle" $user }} 43 43 - </summary> 44 44 - <div 45 45 - class="absolute flex flex-col right-0 mt-4 p-4 rounded w-48 bg-white dark:bg-gray-800 dark:text-white border border-gray-200 dark:border-gray-700" 46 46 - > 47 47 - <a href="/{{ $user }}">profile</a> 48 48 - <a href="/{{ $user }}?tab=repos">repositories</a> 49 49 - <a href="/knots">knots</a> 50 50 - <a href="/spindles">spindles</a> 51 51 - <a href="/settings">settings</a> 52 52 - <a href="#" 53 53 - hx-post="/logout" 54 54 - hx-swap="none" 55 55 - class="text-red-400 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300"> 56 56 - logout 57 57 - </a> 58 58 - </div> 59 59 - </details> 60 60 - {{ end }}

+11

appview/pages/templates/legal/privacy.html

··· 1 1 + {{ define "title" }}privacy policy{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="max-w-4xl mx-auto px-4 py-8"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg shadow-sm p-8"> 6 6 + <div class="prose prose-gray dark:prose-invert max-w-none"> 7 7 + {{ .Content }} 8 8 + </div> 9 9 + </div> 10 10 + </div> 11 11 + {{ end }}

+11

appview/pages/templates/legal/terms.html

··· 1 1 + {{ define "title" }}terms of service{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="max-w-4xl mx-auto px-4 py-8"> 5 5 + <div class="bg-white dark:bg-gray-800 rounded-lg shadow-sm p-8"> 6 6 + <div class="prose prose-gray dark:prose-invert max-w-none"> 7 7 + {{ .Content }} 8 8 + </div> 9 9 + </div> 10 10 + </div> 11 11 + {{ end }}

+1

appview/pages/templates/repo/blob.html

··· 78 78 {{ end }} 79 79 </div> 80 80 {{ end }} 81 81 + {{ template "fragments/multiline-select" }} 81 82 {{ end }}

+3 -3

appview/pages/templates/repo/commit.html

··· 81 81 82 82 {{ define "topbarLayout" }} 83 83 <header class="px-1 col-span-full" style="z-index: 20;"> 84 84 - {{ template "layouts/topbar" . }} 84 84 + {{ template "layouts/fragments/topbar" . }} 85 85 </header> 86 86 {{ end }} 87 87 ··· 106 106 107 107 {{ define "footerLayout" }} 108 108 <footer class="px-1 col-span-full mt-12"> 109 109 - {{ template "layouts/footer" . }} 109 109 + {{ template "layouts/fragments/footer" . }} 110 110 </footer> 111 111 {{ end }} 112 112 ··· 118 118 <div class="flex flex-col gap-4 col-span-1 md:col-span-2"> 119 119 {{ template "repo/fragments/diffOpts" .DiffOpts }} 120 120 </div> 121 121 - <div class="sticky top-0 flex-grow max-h-screen"> 121 121 + <div class="sticky top-0 flex-grow max-h-screen overflow-y-auto"> 122 122 {{ template "repo/fragments/diffChangedFiles" .Diff }} 123 123 </div> 124 124 {{end}}

+3 -3

appview/pages/templates/repo/compare/compare.html

··· 12 12 13 13 {{ define "topbarLayout" }} 14 14 <header class="px-1 col-span-full" style="z-index: 20;"> 15 15 - {{ template "layouts/topbar" . }} 15 15 + {{ template "layouts/fragments/topbar" . }} 16 16 </header> 17 17 {{ end }} 18 18 ··· 37 37 38 38 {{ define "footerLayout" }} 39 39 <footer class="px-1 col-span-full mt-12"> 40 40 - {{ template "layouts/footer" . }} 40 40 + {{ template "layouts/fragments/footer" . }} 41 41 </footer> 42 42 {{ end }} 43 43 ··· 49 49 <div class="flex flex-col gap-4 col-span-1 md:col-span-2"> 50 50 {{ template "repo/fragments/diffOpts" .DiffOpts }} 51 51 </div> 52 52 - <div class="sticky top-0 flex-grow max-h-screen"> 52 52 + <div class="sticky top-0 flex-grow max-h-screen overflow-y-auto"> 53 53 {{ template "repo/fragments/diffChangedFiles" .Diff }} 54 54 </div> 55 55 {{end}}

+5 -7

appview/pages/templates/repo/empty.html

··· 32 32 <div class="py-6 w-fit flex flex-col gap-4"> 33 33 <p>This is an empty repository. To get started:</p> 34 34 {{ $bullet := "mx-2 text-xs bg-gray-200 dark:bg-gray-600 rounded-full size-5 flex items-center justify-center font-mono inline-flex align-middle" }} 35 35 - <p><span class="{{$bullet}}">1</span>Add a public key to your account from the <a href="/settings" class="underline">settings</a> page</p> 36 36 - <p><span class="{{$bullet}}">2</span>Configure your remote to <span class="font-mono p-1 rounded bg-gray-100 dark:bg-gray-700 ">git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}<span></p> 37 37 - <p><span class="{{$bullet}}">3</span>Push!</p> 35 35 + 36 36 + <p><span class="{{$bullet}}">1</span>First, generate a new <a href="https://git-scm.com/book/en/v2/Git-on-the-Server-Generating-Your-SSH-Public-Key" class="underline">SSH key pair</a>.</p> 37 37 + <p><span class="{{$bullet}}">2</span>Then add the public key to your account from the <a href="/settings" class="underline">settings</a> page.</p> 38 38 + <p><span class="{{$bullet}}">3</span>Configure your remote to <code>git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}</code></p> 39 39 + <p><span class="{{$bullet}}">4</span>Push!</p> 38 40 </div> 39 41 </div> 40 42 {{ else }} ··· 42 44 {{ end }} 43 45 </main> 44 46 {{ end }} 45 45 - 46 46 - {{ define "repoAfter" }} 47 47 - {{ template "repo/fragments/cloneInstructions" . }} 48 48 - {{ end }}

+9 -3

appview/pages/templates/repo/fork.html

··· 5 5 <p class="text-xl font-bold dark:text-white">Fork {{ .RepoInfo.FullName }}</p> 6 6 </div> 7 7 <div class="p-6 bg-white dark:bg-gray-800 drop-shadow-sm rounded"> 8 8 - <form hx-post="/{{ .RepoInfo.FullName }}/fork" class="space-y-12" hx-swap="none"> 8 8 + <form hx-post="/{{ .RepoInfo.FullName }}/fork" class="space-y-12" hx-swap="none" hx-indicator="#spinner"> 9 9 <fieldset class="space-y-3"> 10 10 <legend class="dark:text-white">Select a knot to fork into</legend> 11 11 <div class="space-y-2"> ··· 19 19 class="mr-2" 20 20 id="domain-{{ . }}" 21 21 /> 22 22 - <span class="dark:text-white">{{ . }}</span> 22 22 + <label for="domain-{{ . }}" class="dark:text-white">{{ . }}</label> 23 23 </div> 24 24 {{ else }} 25 25 <p class="dark:text-white">No knots available.</p> ··· 30 30 </fieldset> 31 31 32 32 <div class="space-y-2"> 33 33 - <button type="submit" class="btn">fork repo</button> 33 33 + <button type="submit" class="btn-create flex items-center gap-2"> 34 34 + {{ i "git-fork" "w-4 h-4" }} 35 35 + fork repo 36 36 + <span id="spinner" class="group"> 37 37 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 38 38 + </span> 39 39 + </button> 34 40 <div id="repo" class="error"></div> 35 41 </div> 36 42 </form>

+104

appview/pages/templates/repo/fragments/cloneDropdown.html

··· 1 1 + {{ define "repo/fragments/cloneDropdown" }} 2 2 + {{ $knot := .RepoInfo.Knot }} 3 3 + {{ if eq $knot "knot1.tangled.sh" }} 4 4 + {{ $knot = "tangled.sh" }} 5 5 + {{ end }} 6 6 + 7 7 + <details id="clone-dropdown" class="relative inline-block text-left group"> 8 8 + <summary class="btn-create cursor-pointer list-none flex items-center gap-2"> 9 9 + {{ i "download" "w-4 h-4" }} 10 10 + <span class="hidden md:inline">code</span> 11 11 + <span class="group-open:hidden"> 12 12 + {{ i "chevron-down" "w-4 h-4" }} 13 13 + </span> 14 14 + <span class="hidden group-open:flex"> 15 15 + {{ i "chevron-up" "w-4 h-4" }} 16 16 + </span> 17 17 + </summary> 18 18 + 19 19 + <div class="absolute right-0 mt-2 w-96 bg-white dark:bg-gray-800 rounded border border-gray-200 dark:border-gray-700 drop-shadow-sm dark:text-white z-[9999]"> 20 20 + <div class="p-4"> 21 21 + <div class="mb-3"> 22 22 + <h3 class="text-sm font-semibold text-gray-900 dark:text-white mb-2">Clone this repository</h3> 23 23 + </div> 24 24 + 25 25 + <!-- HTTPS Clone --> 26 26 + <div class="mb-3"> 27 27 + <label class="block text-xs font-medium text-gray-700 dark:text-gray-300 mb-1">HTTPS</label> 28 28 + <div class="flex items-center border border-gray-300 dark:border-gray-600 rounded"> 29 29 + <code 30 30 + class="flex-1 px-3 py-2 text-sm bg-gray-50 dark:bg-gray-700 text-gray-900 dark:text-gray-100 rounded-l select-all cursor-pointer whitespace-nowrap overflow-x-auto" 31 31 + onclick="window.getSelection().selectAllChildren(this)" 32 32 + data-url="https://tangled.sh/{{ .RepoInfo.OwnerWithAt }}/{{ .RepoInfo.Name }}" 33 33 + >https://tangled.sh/{{ .RepoInfo.OwnerWithAt }}/{{ .RepoInfo.Name }}</code> 34 34 + <button 35 35 + onclick="copyToClipboard(this, this.previousElementSibling.getAttribute('data-url'))" 36 36 + class="px-3 py-2 text-gray-500 hover:text-gray-700 dark:text-gray-400 dark:hover:text-gray-200 border-l border-gray-300 dark:border-gray-600" 37 37 + title="Copy to clipboard" 38 38 + > 39 39 + {{ i "copy" "w-4 h-4" }} 40 40 + </button> 41 41 + </div> 42 42 + </div> 43 43 + 44 44 + <!-- SSH Clone --> 45 45 + <div class="mb-3"> 46 46 + <label class="block text-xs font-medium text-gray-700 dark:text-gray-300 mb-1">SSH</label> 47 47 + <div class="flex items-center border border-gray-300 dark:border-gray-600 rounded"> 48 48 + <code 49 49 + class="flex-1 px-3 py-2 text-sm bg-gray-50 dark:bg-gray-700 text-gray-900 dark:text-gray-100 rounded-l select-all cursor-pointer whitespace-nowrap overflow-x-auto" 50 50 + onclick="window.getSelection().selectAllChildren(this)" 51 51 + data-url="git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}" 52 52 + >git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}</code> 53 53 + <button 54 54 + onclick="copyToClipboard(this, this.previousElementSibling.getAttribute('data-url'))" 55 55 + class="px-3 py-2 text-gray-500 hover:text-gray-700 dark:text-gray-400 dark:hover:text-gray-200 border-l border-gray-300 dark:border-gray-600" 56 56 + title="Copy to clipboard" 57 57 + > 58 58 + {{ i "copy" "w-4 h-4" }} 59 59 + </button> 60 60 + </div> 61 61 + </div> 62 62 + 63 63 + <!-- Note for self-hosted --> 64 64 + <p class="text-xs text-gray-500 dark:text-gray-400"> 65 65 + For self-hosted knots, clone URLs may differ based on your setup. 66 66 + </p> 67 67 + 68 68 + <!-- Download Archive --> 69 69 + <div class="pt-2 mt-2 border-t border-gray-200 dark:border-gray-700"> 70 70 + <a 71 71 + href="/{{ .RepoInfo.FullName }}/archive/{{ .Ref | urlquery }}" 72 72 + class="flex items-center gap-2 px-3 py-2 text-sm" 73 73 + > 74 74 + {{ i "download" "w-4 h-4" }} 75 75 + Download tar.gz 76 76 + </a> 77 77 + </div> 78 78 + 79 79 + </div> 80 80 + </div> 81 81 + </details> 82 82 + 83 83 + <script> 84 84 + function copyToClipboard(button, text) { 85 85 + navigator.clipboard.writeText(text).then(() => { 86 86 + const originalContent = button.innerHTML; 87 87 + button.innerHTML = `{{ i "check" "w-4 h-4" }}`; 88 88 + setTimeout(() => { 89 89 + button.innerHTML = originalContent; 90 90 + }, 2000); 91 91 + }); 92 92 + } 93 93 + 94 94 + // Close clone dropdown when clicking outside 95 95 + document.addEventListener('click', function(event) { 96 96 + const cloneDropdown = document.getElementById('clone-dropdown'); 97 97 + if (cloneDropdown && cloneDropdown.hasAttribute('open')) { 98 98 + if (!cloneDropdown.contains(event.target)) { 99 99 + cloneDropdown.removeAttribute('open'); 100 100 + } 101 101 + } 102 102 + }); 103 103 + </script> 104 104 + {{ end }}

-55

appview/pages/templates/repo/fragments/cloneInstructions.html

··· 1 1 - {{ define "repo/fragments/cloneInstructions" }} 2 2 - {{ $knot := .RepoInfo.Knot }} 3 3 - {{ if eq $knot "knot1.tangled.sh" }} 4 4 - {{ $knot = "tangled.sh" }} 5 5 - {{ end }} 6 6 - <section 7 7 - class="mt-4 p-6 rounded drop-shadow-sm bg-white dark:bg-gray-800 dark:text-white w-full mx-auto overflow-auto flex flex-col gap-4" 8 8 - > 9 9 - <div class="flex flex-col gap-2"> 10 10 - <strong>push</strong> 11 11 - <div class="md:pl-4 overflow-x-auto whitespace-nowrap"> 12 12 - <code class="dark:text-gray-100" 13 13 - >git remote add origin 14 14 - git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}</code 15 15 - > 16 16 - </div> 17 17 - </div> 18 18 - 19 19 - <div class="flex flex-col gap-2"> 20 20 - <strong>clone</strong> 21 21 - <div class="md:pl-4 flex flex-col gap-2"> 22 22 - <div class="flex items-center gap-3"> 23 23 - <span 24 24 - class="bg-gray-100 dark:bg-gray-700 p-1 mr-1 font-mono text-sm rounded select-none dark:text-white" 25 25 - >HTTP</span 26 26 - > 27 27 - <div class="overflow-x-auto whitespace-nowrap flex-1"> 28 28 - <code class="dark:text-gray-100" 29 29 - >git clone 30 30 - https://tangled.sh/{{ .RepoInfo.OwnerWithAt }}/{{ .RepoInfo.Name }}</code 31 31 - > 32 32 - </div> 33 33 - </div> 34 34 - 35 35 - <div class="flex items-center gap-3"> 36 36 - <span 37 37 - class="bg-gray-100 dark:bg-gray-700 p-1 mr-1 font-mono text-sm rounded select-none dark:text-white" 38 38 - >SSH</span 39 39 - > 40 40 - <div class="overflow-x-auto whitespace-nowrap flex-1"> 41 41 - <code class="dark:text-gray-100" 42 42 - >git clone 43 43 - git@{{ $knot }}:{{ .RepoInfo.OwnerHandle }}/{{ .RepoInfo.Name }}</code 44 44 - > 45 45 - </div> 46 46 - </div> 47 47 - </div> 48 48 - </div> 49 49 - 50 50 - <p class="py-2 text-gray-500 dark:text-gray-400"> 51 51 - Note that for self-hosted knots, clone URLs may be different based 52 52 - on your setup. 53 53 - </p> 54 54 - </section> 55 55 - {{ end }}

+35 -83

appview/pages/templates/repo/fragments/diff.html

··· 11 11 {{ $last := sub (len $diff) 1 }} 12 12 13 13 <div class="flex flex-col gap-4"> 14 14 + {{ if eq (len $diff) 0 }} 15 15 + <div class="text-center text-gray-500 dark:text-gray-400 py-8"> 16 16 + <p>No differences found between the selected revisions.</p> 17 17 + </div> 18 18 + {{ else }} 14 19 {{ range $idx, $hunk := $diff }} 15 20 {{ with $hunk }} 16 16 - <section class="border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm"> 17 17 - <div id="file-{{ .Name.New }}"> 18 18 - <div id="diff-file"> 19 19 - <details open> 20 20 - <summary class="list-none cursor-pointer sticky top-0"> 21 21 - <div id="diff-file-header" class="rounded cursor-pointer bg-white dark:bg-gray-800 flex justify-between"> 22 22 - <div id="left-side-items" class="p-2 flex gap-2 items-center overflow-x-auto"> 23 23 - <div class="flex gap-1 items-center"> 24 24 - {{ $markerstyle := "diff-type p-1 mr-1 font-mono text-sm rounded select-none" }} 25 25 - {{ if .IsNew }} 26 26 - <span class="bg-green-100 text-green-700 dark:bg-green-800/50 dark:text-green-400 {{ $markerstyle }}">ADDED</span> 27 27 - {{ else if .IsDelete }} 28 28 - <span class="bg-red-100 text-red-700 dark:bg-red-800/50 dark:text-red-400 {{ $markerstyle }}">DELETED</span> 29 29 - {{ else if .IsCopy }} 30 30 - <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">COPIED</span> 31 31 - {{ else if .IsRename }} 32 32 - <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">RENAMED</span> 33 33 - {{ else }} 34 34 - <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">MODIFIED</span> 35 35 - {{ end }} 36 36 - 37 37 - {{ template "repo/fragments/diffStatPill" .Stats }} 38 38 - </div> 39 39 - 40 40 - <div class="flex gap-2 items-center overflow-x-auto"> 41 41 - {{ if .IsDelete }} 42 42 - <a class="dark:text-white whitespace-nowrap overflow-x-auto" {{if $this }}href="/{{ $repo }}/blob/{{ $this }}/{{ .Name.Old }}"{{end}}> 43 43 - {{ .Name.Old }} 44 44 - </a> 45 45 - {{ else if (or .IsCopy .IsRename) }} 46 46 - <a class="dark:text-white whitespace-nowrap overflow-x-auto" {{if $parent}}href="/{{ $repo }}/blob/{{ $parent }}/{{ .Name.Old }}"{{end}}> 47 47 - {{ .Name.Old }} 48 48 - </a> 49 49 - {{ i "arrow-right" "w-4 h-4" }} 50 50 - <a class="dark:text-white whitespace-nowrap overflow-x-auto" {{if $this}}href="/{{ $repo }}/blob/{{ $this }}/{{ .Name.New }}"{{end}}> 51 51 - {{ .Name.New }} 52 52 - </a> 53 53 - {{ else }} 54 54 - <a class="dark:text-white whitespace-nowrap overflow-x-auto" {{if $this}}href="/{{ $repo }}/blob/{{ $this }}/{{ .Name.New }}"{{end}}> 55 55 - {{ .Name.New }} 56 56 - </a> 57 57 - {{ end }} 58 58 - </div> 59 59 - </div> 60 60 - 61 61 - {{ $iconstyle := "p-1 mx-1 hover:bg-gray-100 dark:hover:bg-gray-700 rounded" }} 62 62 - <div id="right-side-items" class="p-2 flex items-center"> 63 63 - <a title="top of file" href="#file-{{ .Name.New }}" class="{{ $iconstyle }}">{{ i "arrow-up-to-line" "w-4 h-4" }}</a> 64 64 - {{ if gt $idx 0 }} 65 65 - {{ $prev := index $diff (sub $idx 1) }} 66 66 - <a title="previous file" href="#file-{{ $prev.Name.New }}" class="{{ $iconstyle }}">{{ i "arrow-up" "w-4 h-4" }}</a> 67 67 - {{ end }} 68 68 - 69 69 - {{ if lt $idx $last }} 70 70 - {{ $next := index $diff (add $idx 1) }} 71 71 - <a title="next file" href="#file-{{ $next.Name.New }}" class="{{ $iconstyle }}">{{ i "arrow-down" "w-4 h-4" }}</a> 72 72 - {{ end }} 73 73 - </div> 21 21 + <details open id="file-{{ .Name.New }}" class="group border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm" tabindex="{{ add $idx 1 }}"> 22 22 + <summary class="list-none cursor-pointer sticky top-0"> 23 23 + <div id="diff-file-header" class="rounded cursor-pointer bg-white dark:bg-gray-800 flex justify-between"> 24 24 + <div id="left-side-items" class="p-2 flex gap-2 items-center overflow-x-auto"> 25 25 + <span class="group-open:hidden inline">{{ i "chevron-right" "w-4 h-4" }}</span> 26 26 + <span class="hidden group-open:inline">{{ i "chevron-down" "w-4 h-4" }}</span> 27 27 + {{ template "repo/fragments/diffStatPill" .Stats }} 74 28 75 75 - </div> 76 76 - </summary> 77 77 - 78 78 - <div class="transition-all duration-700 ease-in-out"> 79 79 - {{ if .IsDelete }} 80 80 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 81 81 - This file has been deleted. 82 82 - </p> 83 83 - {{ else if .IsCopy }} 84 84 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 85 85 - This file has been copied. 86 86 - </p> 87 87 - {{ else if .IsBinary }} 88 88 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 89 89 - This is a binary file and will not be displayed. 90 90 - </p> 91 91 - {{ else }} 92 92 - {{ if $isSplit }} 93 93 - {{- template "repo/fragments/splitDiff" .Split -}} 29 29 + <div class="flex gap-2 items-center overflow-x-auto"> 30 30 + {{ if .IsDelete }} 31 31 + {{ .Name.Old }} 32 32 + {{ else if (or .IsCopy .IsRename) }} 33 33 + {{ .Name.Old }} {{ i "arrow-right" "w-4 h-4" }} {{ .Name.New }} 94 34 {{ else }} 95 95 - {{- template "repo/fragments/unifiedDiff" . -}} 35 35 + {{ .Name.New }} 96 36 {{ end }} 97 97 - {{- end -}} 37 37 + </div> 98 38 </div> 39 39 + </div> 40 40 + </summary> 99 41 100 100 - </details> 101 101 - 42 42 + <div class="transition-all duration-700 ease-in-out"> 43 43 + {{ if .IsBinary }} 44 44 + <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 45 45 + This is a binary file and will not be displayed. 46 46 + </p> 47 47 + {{ else }} 48 48 + {{ if $isSplit }} 49 49 + {{- template "repo/fragments/splitDiff" .Split -}} 50 50 + {{ else }} 51 51 + {{- template "repo/fragments/unifiedDiff" . -}} 52 52 + {{ end }} 53 53 + {{- end -}} 102 54 </div> 103 103 - </div> 104 104 - </section> 55 55 + </details> 105 56 {{ end }} 57 57 + {{ end }} 106 58 {{ end }} 107 59 </div> 108 60 {{ end }}

+4

appview/pages/templates/repo/fragments/duration.html

··· 1 1 + {{ define "repo/fragments/duration" }} 2 2 + <time datetime="{{ . | iso8601DurationFmt }}" title="{{ . | longDurationFmt }}">{{ . | durationFmt }}</time> 3 3 + {{ end }} 4 4 +

+4 -4

appview/pages/templates/repo/fragments/fileTree.html

··· 3 3 <details open> 4 4 <summary class="cursor-pointer list-none pt-1"> 5 5 <span class="tree-directory inline-flex items-center gap-2 "> 6 6 - {{ i "folder" "size-4 fill-current" }} 7 7 - <span class="filename text-black dark:text-white">{{ .Name }}</span> 6 6 + {{ i "folder" "flex-shrink-0 size-4 fill-current" }} 7 7 + <span class="filename truncate text-black dark:text-white">{{ .Name }}</span> 8 8 </span> 9 9 </summary> 10 10 <div class="ml-1 pl-2 border-l border-gray-200 dark:border-gray-700"> ··· 15 15 </details> 16 16 {{ else if .Name }} 17 17 <div class="tree-file flex items-center gap-2 pt-1"> 18 18 - {{ i "file" "size-4" }} 19 19 - <a href="#file-{{ .Path }}" class="filename text-black dark:text-white no-underline hover:underline">{{ .Name }}</a> 18 18 + {{ i "file" "flex-shrink-0 size-4" }} 19 19 + <a href="#file-{{ .Path }}" class="filename truncate text-black dark:text-white no-underline hover:underline">{{ .Name }}</a> 20 20 </div> 21 21 {{ else }} 22 22 {{ range $child := .Children }}

+44 -69

appview/pages/templates/repo/fragments/interdiff.html

··· 10 10 <div class="flex flex-col gap-4"> 11 11 {{ range $idx, $hunk := $diff }} 12 12 {{ with $hunk }} 13 13 - <section class="border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm"> 14 14 - <div id="file-{{ .Name }}"> 15 15 - <div id="diff-file"> 16 16 - <details {{ if not (.Status.IsOnlyInOne) }}open{{end}}> 17 17 - <summary class="list-none cursor-pointer sticky top-0"> 18 18 - <div id="diff-file-header" class="rounded cursor-pointer bg-white dark:bg-gray-800 flex justify-between"> 19 19 - <div id="left-side-items" class="p-2 flex gap-2 items-center overflow-x-auto"> 20 20 - <div class="flex gap-1 items-center" style="direction: ltr;"> 21 21 - {{ $markerstyle := "diff-type p-1 mr-1 font-mono text-sm rounded select-none" }} 22 22 - {{ if .Status.IsOk }} 23 23 - <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">CHANGED</span> 24 24 - {{ else if .Status.IsUnchanged }} 25 25 - <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">UNCHANGED</span> 26 26 - {{ else if .Status.IsOnlyInOne }} 27 27 - <span class="bg-red-100 text-red-700 dark:bg-red-800/50 dark:text-red-400 {{ $markerstyle }}">REVERTED</span> 28 28 - {{ else if .Status.IsOnlyInTwo }} 29 29 - <span class="bg-green-100 text-green-700 dark:bg-green-800/50 dark:text-green-400 {{ $markerstyle }}">NEW</span> 30 30 - {{ else if .Status.IsRebased }} 31 31 - <span class="bg-amber-100 text-amber-700 dark:bg-amber-800/50 dark:text-amber-400 {{ $markerstyle }}">REBASED</span> 32 32 - {{ else }} 33 33 - <span class="bg-red-100 text-red-700 dark:bg-red-800/50 dark:text-red-400 {{ $markerstyle }}">ERROR</span> 34 34 - {{ end }} 35 35 - </div> 36 36 - 37 37 - <div class="flex gap-2 items-center overflow-x-auto" style="direction: rtl;"> 38 38 - <a class="dark:text-white whitespace-nowrap overflow-x-auto" href=""> 39 39 - {{ .Name }} 40 40 - </a> 41 41 - </div> 42 42 - </div> 43 43 - 44 44 - {{ $iconstyle := "p-1 mx-1 hover:bg-gray-100 dark:hover:bg-gray-700 rounded" }} 45 45 - <div id="right-side-items" class="p-2 flex items-center"> 46 46 - <a title="top of file" href="#file-{{ .Name }}" class="{{ $iconstyle }}">{{ i "arrow-up-to-line" "w-4 h-4" }}</a> 47 47 - {{ if gt $idx 0 }} 48 48 - {{ $prev := index $diff (sub $idx 1) }} 49 49 - <a title="previous file" href="#file-{{ $prev.Name }}" class="{{ $iconstyle }}">{{ i "arrow-up" "w-4 h-4" }}</a> 50 50 - {{ end }} 51 51 - 52 52 - {{ if lt $idx $last }} 53 53 - {{ $next := index $diff (add $idx 1) }} 54 54 - <a title="next file" href="#file-{{ $next.Name }}" class="{{ $iconstyle }}">{{ i "arrow-down" "w-4 h-4" }}</a> 55 55 - {{ end }} 56 56 - </div> 57 57 - 13 13 + <details {{ if not (.Status.IsOnlyInOne) }}open{{end}} id="file-{{ .Name }}" class="border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm"> 14 14 + <summary class="list-none cursor-pointer sticky top-0"> 15 15 + <div id="diff-file-header" class="rounded cursor-pointer bg-white dark:bg-gray-800 flex justify-between"> 16 16 + <div id="left-side-items" class="p-2 flex gap-2 items-center overflow-x-auto"> 17 17 + <div class="flex gap-1 items-center" style="direction: ltr;"> 18 18 + {{ $markerstyle := "diff-type p-1 mr-1 font-mono text-sm rounded select-none" }} 19 19 + {{ if .Status.IsOk }} 20 20 + <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">CHANGED</span> 21 21 + {{ else if .Status.IsUnchanged }} 22 22 + <span class="bg-gray-100 text-gray-700 dark:bg-gray-700 dark:text-gray-300 {{ $markerstyle }}">UNCHANGED</span> 23 23 + {{ else if .Status.IsOnlyInOne }} 24 24 + <span class="bg-red-100 text-red-700 dark:bg-red-800/50 dark:text-red-400 {{ $markerstyle }}">REVERTED</span> 25 25 + {{ else if .Status.IsOnlyInTwo }} 26 26 + <span class="bg-green-100 text-green-700 dark:bg-green-800/50 dark:text-green-400 {{ $markerstyle }}">NEW</span> 27 27 + {{ else if .Status.IsRebased }} 28 28 + <span class="bg-amber-100 text-amber-700 dark:bg-amber-800/50 dark:text-amber-400 {{ $markerstyle }}">REBASED</span> 29 29 + {{ else }} 30 30 + <span class="bg-red-100 text-red-700 dark:bg-red-800/50 dark:text-red-400 {{ $markerstyle }}">ERROR</span> 31 31 + {{ end }} 58 32 </div> 59 59 - </summary> 60 33 61 61 - <div class="transition-all duration-700 ease-in-out"> 62 62 - {{ if .Status.IsUnchanged }} 63 63 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 64 64 - This file has not been changed. 65 65 - </p> 66 66 - {{ else if .Status.IsRebased }} 67 67 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 68 68 - This patch was likely rebased, as context lines do not match. 69 69 - </p> 70 70 - {{ else if .Status.IsError }} 71 71 - <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 72 72 - Failed to calculate interdiff for this file. 73 73 - </p> 74 74 - {{ else }} 75 75 - {{ if $isSplit }} 76 76 - {{- template "repo/fragments/splitDiff" .Split -}} 77 77 - {{ else }} 78 78 - {{- template "repo/fragments/unifiedDiff" . -}} 79 79 - {{ end }} 80 80 - {{- end -}} 34 34 + <div class="flex gap-2 items-center overflow-x-auto" style="direction: rtl;">{{ .Name }}</div> 81 35 </div> 82 36 83 83 - </details> 37 37 + </div> 38 38 + </summary> 84 39 40 40 + <div class="transition-all duration-700 ease-in-out"> 41 41 + {{ if .Status.IsUnchanged }} 42 42 + <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 43 43 + This file has not been changed. 44 44 + </p> 45 45 + {{ else if .Status.IsRebased }} 46 46 + <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 47 47 + This patch was likely rebased, as context lines do not match. 48 48 + </p> 49 49 + {{ else if .Status.IsError }} 50 50 + <p class="text-center text-gray-400 dark:text-gray-500 p-4"> 51 51 + Failed to calculate interdiff for this file. 52 52 + </p> 53 53 + {{ else }} 54 54 + {{ if $isSplit }} 55 55 + {{- template "repo/fragments/splitDiff" .Split -}} 56 56 + {{ else }} 57 57 + {{- template "repo/fragments/unifiedDiff" . -}} 58 58 + {{ end }} 59 59 + {{- end -}} 85 60 </div> 86 86 - </div> 87 87 - </section> 61 61 + 62 62 + </details> 88 63 {{ end }} 89 64 {{ end }} 90 65 </div>

+1 -1

appview/pages/templates/repo/fragments/interdiffFiles.html

··· 1 1 {{ define "repo/fragments/interdiffFiles" }} 2 2 {{ $fileTree := fileTree .AffectedFiles }} 3 3 - <section class="mt-4 px-6 py-2 border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm min-h-full text-sm"> 3 3 + <section class="px-6 py-2 border border-gray-200 dark:border-gray-700 w-full mx-auto rounded bg-white dark:bg-gray-800 drop-shadow-sm min-h-full text-sm"> 4 4 <div class="diff-stat"> 5 5 <div class="flex gap-2 items-center"> 6 6 <strong class="text-sm uppercase dark:text-gray-200">files</strong>

+6

appview/pages/templates/repo/fragments/languageBall.html

··· 1 1 + {{ define "repo/fragments/languageBall" }} 2 2 + <div 3 3 + class="size-2 rounded-full" 4 4 + style="background: radial-gradient(circle at 35% 35%, color-mix(in srgb, {{ langColor . }} 70%, white), {{ langColor . }} 30%, color-mix(in srgb, {{ langColor . }} 85%, black));" 5 5 + ></div> 6 6 + {{ end }}

+1 -1

appview/pages/templates/repo/fragments/repoDescription.html

··· 1 1 {{ define "repo/fragments/repoDescription" }} 2 2 <span id="repo-description" class="flex flex-wrap items-center gap-2 text-sm" hx-target="this" hx-swap="outerHTML"> 3 3 {{ if .RepoInfo.Description }} 4 4 - {{ .RepoInfo.Description }} 4 4 + {{ .RepoInfo.Description | description }} 5 5 {{ else }} 6 6 <span class="italic">this repo has no description</span> 7 7 {{ end }}

+4

appview/pages/templates/repo/fragments/shortTime.html

··· 1 1 + {{ define "repo/fragments/shortTime" }} 2 2 + {{ template "repo/fragments/timeWrapper" (dict "Time" . "Content" (. | shortRelTimeFmt)) }} 3 3 + {{ end }} 4 4 +

+9

appview/pages/templates/repo/fragments/shortTimeAgo.html

··· 1 1 + {{ define "repo/fragments/shortTimeAgo" }} 2 2 + {{ $formatted := shortRelTimeFmt . }} 3 3 + {{ $content := printf "%s ago" $formatted }} 4 4 + {{ if eq $formatted "now" }} 5 5 + {{ $content = "now" }} 6 6 + {{ end }} 7 7 + {{ template "repo/fragments/timeWrapper" (dict "Time" . "Content" $content) }} 8 8 + {{ end }} 9 9 +

-16

appview/pages/templates/repo/fragments/time.html

··· 1 1 - {{ define "repo/fragments/timeWrapper" }} 2 2 - <time datetime="{{ .Time | iso8601DateTimeFmt }}" title="{{ .Time | longTimeFmt }}">{{ .Content }}</time> 3 3 - {{ end }} 4 4 - 5 1 {{ define "repo/fragments/time" }} 6 2 {{ template "repo/fragments/timeWrapper" (dict "Time" . "Content" (. | relTimeFmt)) }} 7 3 {{ end }} 8 8 - 9 9 - {{ define "repo/fragments/shortTime" }} 10 10 - {{ template "repo/fragments/timeWrapper" (dict "Time" . "Content" (. | shortRelTimeFmt)) }} 11 11 - {{ end }} 12 12 - 13 13 - {{ define "repo/fragments/shortTimeAgo" }} 14 14 - {{ template "repo/fragments/timeWrapper" (dict "Time" . "Content" (print (. | shortRelTimeFmt) " ago")) }} 15 15 - {{ end }} 16 16 - 17 17 - {{ define "repo/fragments/duration" }} 18 18 - <time datetime="{{ . | iso8601DurationFmt }}" title="{{ . | longDurationFmt }}">{{ . | durationFmt }}</time> 19 19 - {{ end }}

+5

appview/pages/templates/repo/fragments/timeWrapper.html

··· 1 1 + {{ define "repo/fragments/timeWrapper" }} 2 2 + <time datetime="{{ .Time | iso8601DateTimeFmt }}" title="{{ .Time | longTimeFmt }}">{{ .Content }}</time> 3 3 + {{ end }} 4 4 + 5 5 +

+125 -138

appview/pages/templates/repo/index.html

··· 14 14 {{ end }} 15 15 <div class="flex items-center justify-between pb-5"> 16 16 {{ block "branchSelector" . }}{{ end }} 17 17 - <div class="flex md:hidden items-center gap-4"> 18 18 - <a href="/{{ .RepoInfo.FullName }}/commits/{{ .Ref | urlquery }}" class="inline-flex items-center text-sm gap-1"> 17 17 + <div class="flex md:hidden items-center gap-2"> 18 18 + <a href="/{{ .RepoInfo.FullName }}/commits/{{ .Ref | urlquery }}" class="inline-flex items-center text-sm gap-1 font-bold"> 19 19 {{ i "git-commit-horizontal" "w-4" "h-4" }} {{ .TotalCommits }} 20 20 </a> 21 21 - <a href="/{{ .RepoInfo.FullName }}/branches" class="inline-flex items-center text-sm gap-1"> 21 21 + <a href="/{{ .RepoInfo.FullName }}/branches" class="inline-flex items-center text-sm gap-1 font-bold"> 22 22 {{ i "git-branch" "w-4" "h-4" }} {{ len .Branches }} 23 23 </a> 24 24 - <a href="/{{ .RepoInfo.FullName }}/tags" class="inline-flex items-center text-sm gap-1"> 24 24 + <a href="/{{ .RepoInfo.FullName }}/tags" class="inline-flex items-center text-sm gap-1 font-bold"> 25 25 {{ i "tags" "w-4" "h-4" }} {{ len .Tags }} 26 26 </a> 27 27 + {{ template "repo/fragments/cloneDropdown" . }} 27 28 </div> 28 29 </div> 29 30 <div class="grid grid-cols-1 md:grid-cols-2 gap-2"> ··· 34 35 {{ end }} 35 36 36 37 {{ define "repoLanguages" }} 37 37 - <div class="flex gap-[1px] -m-6 mb-6 overflow-hidden rounded-t"> 38 38 + <details class="group -m-6 mb-4"> 39 39 + <summary class="flex gap-[1px] h-4 scale-y-50 hover:scale-y-100 origin-top group-open:scale-y-100 transition-all hover:cursor-pointer overflow-hidden rounded-t"> 38 40 {{ range $value := .Languages }} 39 39 - <div 40 40 - title='{{ or $value.Name "Other" }} {{ printf "%.1f" $value.Percentage }}%' 41 41 - class="h-[4px] rounded-full" 42 42 - style="background-color: {{ $value.Color }}; width: {{ $value.Percentage }}%" 43 43 - ></div> 41 41 + <div 42 42 + title='{{ or $value.Name "Other" }} {{ printf "%.1f" $value.Percentage }}%' 43 43 + style="background-color: {{ $value.Color }}; width: {{ $value.Percentage }}%" 44 44 + ></div> 44 45 {{ end }} 45 45 - </div> 46 46 + </summary> 47 47 + <div class="px-4 py-2 border-b border-gray-200 dark:border-gray-600 flex items-center gap-4 flex-wrap"> 48 48 + {{ range $value := .Languages }} 49 49 + <div 50 50 + class="flex flex-grow items-center gap-2 text-xs align-items-center justify-center" 51 51 + > 52 52 + {{ template "repo/fragments/languageBall" $value.Name }} 53 53 + <div>{{ or $value.Name "Other" }} 54 54 + <span class="text-gray-500 dark:text-gray-400"> 55 55 + {{ if lt $value.Percentage 0.05 }} 56 56 + 0.1% 57 57 + {{ else }} 58 58 + {{ printf "%.1f" $value.Percentage }}% 59 59 + {{ end }} 60 60 + </span></div> 61 61 + </div> 62 62 + {{ end }} 63 63 + </div> 64 64 + </details> 46 65 {{ end }} 47 47 - 48 66 49 67 {{ define "branchSelector" }} 50 50 - <div class="flex gap-2 items-center items-stretch justify-center"> 51 51 - <select 52 52 - onchange="window.location.href = '/{{ .RepoInfo.FullName }}/tree/' + encodeURIComponent(this.value)" 53 53 - class="p-1 border max-w-32 border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700" 54 54 - > 55 55 - <optgroup label="branches ({{len .Branches}})" class="bold text-sm"> 56 56 - {{ range .Branches }} 57 57 - <option 58 58 - value="{{ .Reference.Name }}" 59 59 - class="py-1" 60 60 - {{ if eq .Reference.Name $.Ref }} 61 61 - selected 62 62 - {{ end }} 63 63 - > 64 64 - {{ .Reference.Name }} 65 65 - </option> 66 66 - {{ end }} 67 67 - </optgroup> 68 68 - <optgroup label="tags ({{len .Tags}})" class="bold text-sm"> 69 69 - {{ range .Tags }} 70 70 - <option 71 71 - value="{{ .Reference.Name }}" 72 72 - class="py-1" 73 73 - {{ if eq .Reference.Name $.Ref }} 74 74 - selected 75 75 - {{ end }} 76 76 - > 77 77 - {{ .Reference.Name }} 78 78 - </option> 79 79 - {{ else }} 80 80 - <option class="py-1" disabled>no tags found</option> 81 81 - {{ end }} 82 82 - </optgroup> 83 83 - </select> 84 84 - <div class="flex items-center gap-2"> 85 85 - {{ $isOwner := and .LoggedInUser .RepoInfo.Roles.IsOwner }} 86 86 - {{ $isCollaborator := and .LoggedInUser .RepoInfo.Roles.IsCollaborator }} 87 87 - {{ if and (or $isOwner $isCollaborator) .ForkInfo .ForkInfo.IsFork }} 88 88 - {{ $disabled := "" }} 89 89 - {{ $title := "" }} 90 90 - {{ if eq .ForkInfo.Status 0 }} 91 91 - {{ $disabled = "disabled" }} 92 92 - {{ $title = "This branch is not behind the upstream" }} 93 93 - {{ else if eq .ForkInfo.Status 2 }} 94 94 - {{ $disabled = "disabled" }} 95 95 - {{ $title = "This branch has conflicts that must be resolved" }} 96 96 - {{ else if eq .ForkInfo.Status 3 }} 97 97 - {{ $disabled = "disabled" }} 98 98 - {{ $title = "This branch does not exist on the upstream" }} 99 99 - {{ end }} 68 68 + <div class="flex gap-2 items-center justify-between w-full"> 69 69 + <div class="flex gap-2 items-center"> 70 70 + <select 71 71 + onchange="window.location.href = '/{{ .RepoInfo.FullName }}/tree/' + encodeURIComponent(this.value)" 72 72 + class="p-1 border max-w-32 border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700" 73 73 + > 74 74 + <optgroup label="branches ({{len .Branches}})" class="bold text-sm"> 75 75 + {{ range .Branches }} 76 76 + <option 77 77 + value="{{ .Reference.Name }}" 78 78 + class="py-1" 79 79 + {{ if eq .Reference.Name $.Ref }} 80 80 + selected 81 81 + {{ end }} 82 82 + > 83 83 + {{ .Reference.Name }} 84 84 + </option> 85 85 + {{ end }} 86 86 + </optgroup> 87 87 + <optgroup label="tags ({{len .Tags}})" class="bold text-sm"> 88 88 + {{ range .Tags }} 89 89 + <option 90 90 + value="{{ .Reference.Name }}" 91 91 + class="py-1" 92 92 + {{ if eq .Reference.Name $.Ref }} 93 93 + selected 94 94 + {{ end }} 95 95 + > 96 96 + {{ .Reference.Name }} 97 97 + </option> 98 98 + {{ else }} 99 99 + <option class="py-1" disabled>no tags found</option> 100 100 + {{ end }} 101 101 + </optgroup> 102 102 + </select> 103 103 + <div class="flex items-center gap-2"> 104 104 + <a 105 105 + href="/{{ .RepoInfo.FullName }}/compare?base={{ $.Ref | urlquery }}" 106 106 + class="btn flex items-center gap-2 no-underline hover:no-underline" 107 107 + title="Compare branches or tags" 108 108 + > 109 109 + {{ i "git-compare" "w-4 h-4" }} 110 110 + </a> 111 111 + </div> 112 112 + </div> 100 113 101 101 - <button 102 102 - id="syncBtn" 103 103 - {{ $disabled }} 104 104 - {{ if $title }}title="{{ $title }}"{{ end }} 105 105 - class="btn flex gap-2 items-center disabled:opacity-50 disabled:cursor-not-allowed" 106 106 - hx-post="/{{ .RepoInfo.FullName }}/fork/sync" 107 107 - hx-trigger="click" 108 108 - hx-swap="none" 109 109 - > 110 110 - {{ if $disabled }} 111 111 - {{ i "refresh-cw-off" "w-4 h-4" }} 112 112 - {{ else }} 113 113 - {{ i "refresh-cw" "w-4 h-4" }} 114 114 - {{ end }} 115 115 - <span>sync</span> 116 116 - </button> 117 117 - {{ end }} 118 118 - <a 119 119 - href="/{{ .RepoInfo.FullName }}/compare?base={{ $.Ref | urlquery }}" 120 120 - class="btn flex items-center gap-2 no-underline hover:no-underline" 121 121 - title="Compare branches or tags" 122 122 - > 123 123 - {{ i "git-compare" "w-4 h-4" }} 124 124 - </a> 114 114 + <!-- Clone dropdown in top right --> 115 115 + <div class="hidden md:flex items-center "> 116 116 + {{ template "repo/fragments/cloneDropdown" . }} 125 117 </div> 126 126 - </div> 118 118 + </div> 127 119 {{ end }} 128 120 129 121 {{ define "fileTree" }} ··· 131 123 {{ $linkstyle := "no-underline hover:underline dark:text-white" }} 132 124 133 125 {{ range .Files }} 134 134 - <div class="grid grid-cols-2 gap-4 items-center py-1"> 135 135 - <div class="col-span-1"> 126 126 + <div class="grid grid-cols-3 gap-4 items-center py-1"> 127 127 + <div class="col-span-2"> 136 128 {{ $link := printf "/%s/%s/%s/%s" $.RepoInfo.FullName "tree" (urlquery $.Ref) .Name }} 137 129 {{ $icon := "folder" }} 138 130 {{ $iconStyle := "size-4 fill-current" }} ··· 144 136 {{ end }} 145 137 <a href="{{ $link }}" class="{{ $linkstyle }}"> 146 138 <div class="flex items-center gap-2"> 147 147 - {{ i $icon $iconStyle }}{{ .Name }} 139 139 + {{ i $icon $iconStyle "flex-shrink-0" }} 140 140 + <span class="truncate">{{ .Name }}</span> 148 141 </div> 149 142 </a> 150 143 </div> 151 144 152 152 - <div class="text-xs col-span-1 text-right"> 145 145 + <div class="text-sm col-span-1 text-right"> 153 146 {{ with .LastCommit }} 154 147 <a href="/{{ $.RepoInfo.FullName }}/commit/{{ .Hash }}" class="text-gray-500 dark:text-gray-400">{{ template "repo/fragments/time" .When }}</a> 155 148 {{ end }} ··· 170 163 {{ define "commitLog" }} 171 164 <div id="commit-log" class="md:col-span-1 px-2 pb-4"> 172 165 <div class="flex justify-between items-center"> 173 173 - <a href="/{{ .RepoInfo.FullName }}/commits/{{ .Ref | urlquery }}" class="flex text-black dark:text-white items-center gap-4 pb-2 no-underline hover:no-underline group"> 174 174 - <div class="flex gap-2 items-center font-bold"> 175 175 - {{ i "logs" "w-4 h-4" }} commits 176 176 - </div> 177 177 - <span class="hidden group-hover:flex gap-2 items-center text-sm text-gray-500 dark:text-gray-400 "> 178 178 - view {{ .TotalCommits }} commits {{ i "chevron-right" "w-4 h-4" }} 179 179 - </span> 166 166 + <a href="/{{ .RepoInfo.FullName }}/commits/{{ .Ref | urlquery }}" class="flex items-center gap-2 pb-2 cursor-pointer font-bold hover:text-gray-600 dark:hover:text-gray-300 hover:no-underline"> 167 167 + {{ i "logs" "w-4 h-4" }} commits 168 168 + <span class="bg-gray-100 dark:bg-gray-700 font-normal rounded py-1/2 px-1 text-sm">{{ .TotalCommits }}</span> 180 169 </a> 181 170 </div> 182 171 <div class="flex flex-col gap-6"> ··· 214 203 </div> 215 204 216 205 <!-- commit info bar --> 217 217 - <div class="text-xs mt-2 text-gray-500 dark:text-gray-400 flex items-center"> 206 206 + <div class="text-xs mt-2 text-gray-500 dark:text-gray-400 flex items-center flex-wrap"> 218 207 {{ $verified := $.VerifiedCommits.IsVerified .Hash.String }} 219 208 {{ $hashStyle := "text-gray-700 dark:text-gray-300 bg-gray-100 dark:bg-gray-900" }} 220 209 {{ if $verified }} ··· 278 267 {{ define "branchList" }} 279 268 {{ if gt (len .BranchesTrunc) 0 }} 280 269 <div id="branches" class="md:col-span-1 px-2 py-4 border-t border-gray-200 dark:border-gray-700"> 281 281 - <a href="/{{ .RepoInfo.FullName }}/branches" class="flex text-black dark:text-white items-center gap-4 pb-2 no-underline hover:no-underline group"> 282 282 - <div class="flex gap-2 items-center font-bold"> 283 283 - {{ i "git-branch" "w-4 h-4" }} branches 284 284 - </div> 285 285 - <span class="hidden group-hover:flex gap-2 items-center text-sm text-gray-500 dark:text-gray-400 "> 286 286 - view {{ len .Branches }} branches {{ i "chevron-right" "w-4 h-4" }} 287 287 - </span> 270 270 + <a href="/{{ .RepoInfo.FullName }}/branches" class="flex items-center gap-2 pb-2 cursor-pointer font-bold hover:text-gray-600 dark:hover:text-gray-300 hover:no-underline"> 271 271 + {{ i "git-branch" "w-4 h-4" }} branches 272 272 + <span class="bg-gray-100 dark:bg-gray-700 font-normal rounded py-1/2 px-1 text-sm">{{ len .Branches }}</span> 288 273 </a> 289 274 <div class="flex flex-col gap-1"> 290 275 {{ range .BranchesTrunc }} 291 291 - <div class="text-base flex items-center justify-between"> 292 292 - <div class="flex items-center gap-2"> 276 276 + <div class="text-base flex items-center justify-between overflow-hidden"> 277 277 + <div class="flex items-center gap-2 min-w-0 flex-1"> 293 278 <a href="/{{ $.RepoInfo.FullName }}/tree/{{ .Reference.Name | urlquery }}" 294 294 - class="inline no-underline hover:underline dark:text-white"> 279 279 + class="inline-block truncate no-underline hover:underline dark:text-white"> 295 280 {{ .Reference.Name }} 296 281 </a> 297 282 {{ if .Commit }} 298 298 - <span class="px-1 text-gray-500 dark:text-gray-400 select-none after:content-['·']"></span> 299 299 - <span class="text-xs text-gray-500 dark:text-gray-400">{{ template "repo/fragments/time" .Commit.Committer.When }}</span> 283 283 + <span class="px-1 text-gray-500 dark:text-gray-400 select-none after:content-['·'] shrink-0"></span> 284 284 + <span class="whitespace-nowrap text-xs text-gray-500 dark:text-gray-400 shrink-0">{{ template "repo/fragments/time" .Commit.Committer.When }}</span> 300 285 {{ end }} 301 286 {{ if .IsDefault }} 302 302 - <span class="px-1 text-gray-500 dark:text-gray-400 select-none after:content-['·']"></span> 303 303 - <span class="bg-gray-200 dark:bg-gray-700 rounded py-1/2 px-1 text-xs font-mono">default</span> 287 287 + <span class="px-1 text-gray-500 dark:text-gray-400 select-none after:content-['·'] shrink-0"></span> 288 288 + <span class="bg-gray-200 dark:bg-gray-700 rounded py-1/2 px-1 text-xs font-mono shrink-0">default</span> 304 289 {{ end }} 305 290 </div> 306 291 {{ if ne $.Ref .Reference.Name }} 307 292 <a href="/{{ $.RepoInfo.FullName }}/compare/{{ $.Ref | urlquery }}...{{ .Reference.Name | urlquery }}" 308 308 - class="text-xs flex gap-2 items-center" 293 293 + class="text-xs flex gap-2 items-center shrink-0 ml-2" 309 294 title="Compare branches or tags"> 310 295 {{ i "git-compare" "w-3 h-3" }} compare 311 296 </a> 312 312 - {{end}} 297 297 + {{ end }} 313 298 </div> 314 299 {{ end }} 315 300 </div> ··· 321 306 {{ if gt (len .TagsTrunc) 0 }} 322 307 <div id="tags" class="md:col-span-1 px-2 py-4 border-t border-gray-200 dark:border-gray-700"> 323 308 <div class="flex justify-between items-center"> 324 324 - <a href="/{{ .RepoInfo.FullName }}/tags" class="flex text-black dark:text-white items-center gap-4 pb-2 no-underline hover:no-underline group"> 325 325 - <div class="flex gap-2 items-center font-bold"> 326 326 - {{ i "tags" "w-4 h-4" }} tags 327 327 - </div> 328 328 - <span class="hidden group-hover:flex gap-2 items-center text-sm text-gray-500 dark:text-gray-400 "> 329 329 - view {{ len .Tags }} tags {{ i "chevron-right" "w-4 h-4" }} 330 330 - </span> 309 309 + <a href="/{{ .RepoInfo.FullName }}/tags" class="flex items-center gap-2 pb-2 cursor-pointer font-bold hover:text-gray-600 dark:hover:text-gray-300 hover:no-underline"> 310 310 + {{ i "tags" "w-4 h-4" }} tags 311 311 + <span class="bg-gray-100 dark:bg-gray-700 font-normal rounded py-1/2 px-1 text-sm">{{ len .Tags }}</span> 331 312 </a> 332 313 </div> 333 314 <div class="flex flex-col gap-1"> ··· 359 340 360 341 {{ define "repoAfter" }} 361 342 {{- if or .HTMLReadme .Readme -}} 362 362 - <section 363 363 - class="p-6 mt-4 rounded-br rounded-bl bg-white dark:bg-gray-800 dark:text-white drop-shadow-sm w-full mx-auto overflow-auto {{ if not .Raw }} 364 364 - prose dark:prose-invert dark:[&_pre]:bg-gray-900 365 365 - dark:[&_code]:text-gray-300 dark:[&_pre_code]:bg-gray-900 366 366 - dark:[&_pre]:border dark:[&_pre]:border-gray-700 367 367 - {{ end }}" 368 368 - > 369 369 - <article class="{{ if .Raw }}whitespace-pre{{ end }}">{{- if .Raw -}}<pre class="dark:bg-gray-800 dark:text-white overflow-x-auto"> 370 370 - {{- .Readme -}} 371 371 - </pre> 372 372 - {{- else -}} 373 373 - {{ .HTMLReadme }} 374 374 - {{- end -}}</article> 375 375 - </section> 343 343 + <div class="mt-4 rounded bg-white dark:bg-gray-800 drop-shadow-sm w-full mx-auto overflow-hidden"> 344 344 + {{- if .ReadmeFileName -}} 345 345 + <div class="px-4 py-2 bg-gray-50 dark:bg-gray-700 border-b border-gray-200 dark:border-gray-600 flex items-center gap-2"> 346 346 + {{ i "file-text" "w-4 h-4" "text-gray-600 dark:text-gray-400" }} 347 347 + <span class="font-mono text-sm text-gray-800 dark:text-gray-200">{{ .ReadmeFileName }}</span> 348 348 + </div> 349 349 + {{- end -}} 350 350 + <section 351 351 + class="p-6 overflow-auto {{ if not .Raw }} 352 352 + prose dark:prose-invert dark:[&_pre]:bg-gray-900 353 353 + dark:[&_code]:text-gray-300 dark:[&_pre_code]:bg-gray-900 354 354 + dark:[&_pre]:border dark:[&_pre]:border-gray-700 355 355 + {{ end }}" 356 356 + > 357 357 + <article class="{{ if .Raw }}whitespace-pre{{ end }}">{{- if .Raw -}}<pre class="dark:bg-gray-800 dark:text-white overflow-x-auto"> 358 358 + {{- .Readme -}} 359 359 + </pre> 360 360 + {{- else -}} 361 361 + {{ .HTMLReadme }} 362 362 + {{- end -}}</article> 363 363 + </section> 364 364 + </div> 376 365 {{- end -}} 377 377 - 378 378 - {{ template "repo/fragments/cloneInstructions" . }} 379 366 {{ end }}

+58

appview/pages/templates/repo/issues/fragments/commentList.html

··· 1 1 + {{ define "repo/issues/fragments/commentList" }} 2 2 + <div class="flex flex-col gap-8"> 3 3 + {{ range $item := .CommentList }} 4 4 + {{ template "commentListing" (list $ .) }} 5 5 + {{ end }} 6 6 + <div> 7 7 + {{ end }} 8 8 + 9 9 + {{ define "commentListing" }} 10 10 + {{ $root := index . 0 }} 11 11 + {{ $comment := index . 1 }} 12 12 + {{ $params := 13 13 + (dict 14 14 + "RepoInfo" $root.RepoInfo 15 15 + "LoggedInUser" $root.LoggedInUser 16 16 + "Issue" $root.Issue 17 17 + "Comment" $comment.Self) }} 18 18 + 19 19 + <div class="rounded border border-gray-300 dark:border-gray-700 w-full overflow-hidden shadow-sm"> 20 20 + {{ template "topLevelComment" $params }} 21 21 + 22 22 + <div class="relative ml-4 border-l border-gray-300 dark:border-gray-700"> 23 23 + {{ range $index, $reply := $comment.Replies }} 24 24 + <div class="relative "> 25 25 + <!-- Horizontal connector --> 26 26 + <div class="absolute left-0 top-6 w-4 h-px bg-gray-300 dark:bg-gray-700"></div> 27 27 + 28 28 + <div class="pl-2"> 29 29 + {{ 30 30 + template "replyComment" 31 31 + (dict 32 32 + "RepoInfo" $root.RepoInfo 33 33 + "LoggedInUser" $root.LoggedInUser 34 34 + "Issue" $root.Issue 35 35 + "Comment" $reply) 36 36 + }} 37 37 + </div> 38 38 + </div> 39 39 + {{ end }} 40 40 + </div> 41 41 + 42 42 + {{ template "repo/issues/fragments/replyIssueCommentPlaceholder" $params }} 43 43 + </div> 44 44 + {{ end }} 45 45 + 46 46 + {{ define "topLevelComment" }} 47 47 + <div class="rounded px-6 py-4 bg-white dark:bg-gray-800"> 48 48 + {{ template "repo/issues/fragments/issueCommentHeader" . }} 49 49 + {{ template "repo/issues/fragments/issueCommentBody" . }} 50 50 + </div> 51 51 + {{ end }} 52 52 + 53 53 + {{ define "replyComment" }} 54 54 + <div class="p-4 w-full mx-auto overflow-hidden"> 55 55 + {{ template "repo/issues/fragments/issueCommentHeader" . }} 56 56 + {{ template "repo/issues/fragments/issueCommentBody" . }} 57 57 + </div> 58 58 + {{ end }}

+37 -45

appview/pages/templates/repo/issues/fragments/editIssueComment.html

··· 1 1 {{ define "repo/issues/fragments/editIssueComment" }} 2 2 - {{ with .Comment }} 3 3 - <div id="comment-container-{{.CommentId}}"> 4 4 - <div class="flex items-center gap-2 mb-2 text-gray-500 dark:text-gray-400 text-sm flex-wrap"> 5 5 - {{ $owner := didOrHandle $.LoggedInUser.Did $.LoggedInUser.Handle }} 6 6 - <a href="/{{ $owner }}" class="no-underline hover:underline">{{ $owner }}</a> 2 2 + <div id="comment-body-{{.Comment.Id}}" class="pt-2"> 3 3 + <textarea 4 4 + id="edit-textarea-{{ .Comment.Id }}" 5 5 + name="body" 6 6 + class="w-full p-2 rounded border border-gray-200 dark:border-gray-700" 7 7 + rows="5" 8 8 + autofocus>{{ .Comment.Body }}</textarea> 7 9 8 8 - <!-- show user "hats" --> 9 9 - {{ $isIssueAuthor := eq .OwnerDid $.Issue.OwnerDid }} 10 10 - {{ if $isIssueAuthor }} 11 11 - <span class="before:content-['·']"></span> 12 12 - author 13 13 - {{ end }} 14 14 - 15 15 - <span class="before:content-['·']"></span> 16 16 - <a 17 17 - href="#{{ .CommentId }}" 18 18 - class="text-gray-500 dark:text-gray-400 hover:text-gray-500 dark:hover:text-gray-400 hover:underline no-underline" 19 19 - id="{{ .CommentId }}"> 20 20 - {{ template "repo/fragments/time" .Created }} 21 21 - </a> 22 22 - 23 23 - <button 24 24 - class="btn px-2 py-1 flex items-center gap-2 text-sm group" 25 25 - hx-post="/{{ $.RepoInfo.FullName }}/issues/{{ .Issue }}/comment/{{ .CommentId }}/edit" 26 26 - hx-include="#edit-textarea-{{ .CommentId }}" 27 27 - hx-target="#comment-container-{{ .CommentId }}" 28 28 - hx-swap="outerHTML"> 29 29 - {{ i "check" "w-4 h-4" }} 30 30 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 31 31 - </button> 32 32 - <button 33 33 - class="btn px-2 py-1 flex items-center gap-2 text-sm" 34 34 - hx-get="/{{ $.RepoInfo.FullName }}/issues/{{ .Issue }}/comment/{{ .CommentId }}/" 35 35 - hx-target="#comment-container-{{ .CommentId }}" 36 36 - hx-swap="outerHTML"> 37 37 - {{ i "x" "w-4 h-4" }} 38 38 - </button> 39 39 - <span id="comment-{{.CommentId}}-status"></span> 40 40 - </div> 10 10 + {{ template "editActions" $ }} 11 11 + </div> 12 12 + {{ end }} 41 13 42 42 - <div> 43 43 - <textarea 44 44 - id="edit-textarea-{{ .CommentId }}" 45 45 - name="body" 46 46 - class="w-full p-2 border rounded min-h-[100px]">{{ .Body }}</textarea> 47 47 - </div> 14 14 + {{ define "editActions" }} 15 15 + <div class="flex flex-wrap items-center justify-end gap-2 text-gray-500 dark:text-gray-400 text-sm pt-2"> 16 16 + {{ template "cancel" . }} 17 17 + {{ template "save" . }} 48 18 </div> 49 49 - {{ end }} 19 19 + {{ end }} 20 20 + 21 21 + {{ define "save" }} 22 22 + <button 23 23 + class="btn-create py-0 flex gap-1 items-center group text-sm" 24 24 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/edit" 25 25 + hx-include="#edit-textarea-{{ .Comment.Id }}" 26 26 + hx-target="#comment-body-{{ .Comment.Id }}" 27 27 + hx-swap="outerHTML"> 28 28 + {{ i "check" "size-4" }} 29 29 + save 30 30 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 31 31 + </button> 50 32 {{ end }} 51 33 34 34 + {{ define "cancel" }} 35 35 + <button 36 36 + class="btn py-0 text-red-500 dark:text-red-400 flex gap-1 items-center group" 37 37 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/" 38 38 + hx-target="#comment-body-{{ .Comment.Id }}" 39 39 + hx-swap="outerHTML"> 40 40 + {{ i "x" "size-4" }} 41 41 + cancel 42 42 + </button> 43 43 + {{ end }}

-59

appview/pages/templates/repo/issues/fragments/issueComment.html

··· 1 1 - {{ define "repo/issues/fragments/issueComment" }} 2 2 - {{ with .Comment }} 3 3 - <div id="comment-container-{{.CommentId}}"> 4 4 - <div class="flex items-center gap-2 mb-2 text-gray-500 dark:text-gray-400 text-sm flex-wrap"> 5 5 - {{ $owner := index $.DidHandleMap .OwnerDid }} 6 6 - {{ template "user/fragments/picHandleLink" $owner }} 7 7 - 8 8 - <!-- show user "hats" --> 9 9 - {{ $isIssueAuthor := eq .OwnerDid $.Issue.OwnerDid }} 10 10 - {{ if $isIssueAuthor }} 11 11 - <span class="before:content-['·']"></span> 12 12 - author 13 13 - {{ end }} 14 14 - 15 15 - <span class="before:content-['·']"></span> 16 16 - <a 17 17 - href="#{{ .CommentId }}" 18 18 - class="text-gray-500 dark:text-gray-400 hover:text-gray-500 dark:hover:text-gray-400 hover:underline no-underline" 19 19 - id="{{ .CommentId }}"> 20 20 - {{ if .Deleted }} 21 21 - deleted {{ template "repo/fragments/time" .Deleted }} 22 22 - {{ else if .Edited }} 23 23 - edited {{ template "repo/fragments/time" .Edited }} 24 24 - {{ else }} 25 25 - {{ template "repo/fragments/time" .Created }} 26 26 - {{ end }} 27 27 - </a> 28 28 - 29 29 - {{ $isCommentOwner := and $.LoggedInUser (eq $.LoggedInUser.Did .OwnerDid) }} 30 30 - {{ if and $isCommentOwner (not .Deleted) }} 31 31 - <button 32 32 - class="btn px-2 py-1 text-sm" 33 33 - hx-get="/{{ $.RepoInfo.FullName }}/issues/{{ .Issue }}/comment/{{ .CommentId }}/edit" 34 34 - hx-swap="outerHTML" 35 35 - hx-target="#comment-container-{{.CommentId}}" 36 36 - > 37 37 - {{ i "pencil" "w-4 h-4" }} 38 38 - </button> 39 39 - <button 40 40 - class="btn px-2 py-1 text-sm text-red-500 flex gap-2 items-center group" 41 41 - hx-delete="/{{ $.RepoInfo.FullName }}/issues/{{ .Issue }}/comment/{{ .CommentId }}/" 42 42 - hx-confirm="Are you sure you want to delete your comment?" 43 43 - hx-swap="outerHTML" 44 44 - hx-target="#comment-container-{{.CommentId}}" 45 45 - > 46 46 - {{ i "trash-2" "w-4 h-4" }} 47 47 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 48 48 - </button> 49 49 - {{ end }} 50 50 - 51 51 - </div> 52 52 - {{ if not .Deleted }} 53 53 - <div class="prose dark:prose-invert"> 54 54 - {{ .Body | markdown }} 55 55 - </div> 56 56 - {{ end }} 57 57 - </div> 58 58 - {{ end }} 59 59 - {{ end }}

+34

appview/pages/templates/repo/issues/fragments/issueCommentActions.html

··· 1 1 + {{ define "repo/issues/fragments/issueCommentActions" }} 2 2 + {{ $isCommentOwner := and .LoggedInUser (eq .LoggedInUser.Did .Comment.Did) }} 3 3 + {{ if and $isCommentOwner (not .Comment.Deleted) }} 4 4 + <div class="flex flex-wrap items-center gap-4 text-gray-500 dark:text-gray-400 text-sm pt-2"> 5 5 + {{ template "edit" . }} 6 6 + {{ template "delete" . }} 7 7 + </div> 8 8 + {{ end }} 9 9 + {{ end }} 10 10 + 11 11 + {{ define "edit" }} 12 12 + <a 13 13 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 14 14 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/edit" 15 15 + hx-swap="outerHTML" 16 16 + hx-target="#comment-body-{{.Comment.Id}}"> 17 17 + {{ i "pencil" "size-3" }} 18 18 + edit 19 19 + </a> 20 20 + {{ end }} 21 21 + 22 22 + {{ define "delete" }} 23 23 + <a 24 24 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 25 25 + hx-delete="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/" 26 26 + hx-confirm="Are you sure you want to delete your comment?" 27 27 + hx-swap="outerHTML" 28 28 + hx-target="#comment-body-{{.Comment.Id}}" 29 29 + > 30 30 + {{ i "trash-2" "size-3" }} 31 31 + delete 32 32 + {{ i "loader-circle" "size-3 animate-spin hidden group-[.htmx-request]:inline" }} 33 33 + </a> 34 34 + {{ end }}

+9

appview/pages/templates/repo/issues/fragments/issueCommentBody.html

··· 1 1 + {{ define "repo/issues/fragments/issueCommentBody" }} 2 2 + <div id="comment-body-{{.Comment.Id}}"> 3 3 + {{ if not .Comment.Deleted }} 4 4 + <div class="prose dark:prose-invert">{{ .Comment.Body | markdown }}</div> 5 5 + {{ else }} 6 6 + <div class="prose dark:prose-invert italic text-gray-500 dark:text-gray-400">[deleted by author]</div> 7 7 + {{ end }} 8 8 + </div> 9 9 + {{ end }}

+56

appview/pages/templates/repo/issues/fragments/issueCommentHeader.html

··· 1 1 + {{ define "repo/issues/fragments/issueCommentHeader" }} 2 2 + <div class="flex flex-wrap items-center gap-2 text-sm text-gray-500 dark:text-gray-400 "> 3 3 + {{ template "user/fragments/picHandleLink" .Comment.Did }} 4 4 + {{ template "hats" $ }} 5 5 + {{ template "timestamp" . }} 6 6 + {{ $isCommentOwner := and .LoggedInUser (eq .LoggedInUser.Did .Comment.Did) }} 7 7 + {{ if and $isCommentOwner (not .Comment.Deleted) }} 8 8 + {{ template "editIssueComment" . }} 9 9 + {{ template "deleteIssueComment" . }} 10 10 + {{ end }} 11 11 + </div> 12 12 + {{ end }} 13 13 + 14 14 + {{ define "hats" }} 15 15 + {{ $isIssueAuthor := eq .Comment.Did .Issue.Did }} 16 16 + {{ if $isIssueAuthor }} 17 17 + (author) 18 18 + {{ end }} 19 19 + {{ end }} 20 20 + 21 21 + {{ define "timestamp" }} 22 22 + <a href="#{{ .Comment.Id }}" 23 23 + class="text-gray-500 dark:text-gray-400 hover:text-gray-500 dark:hover:text-gray-400 hover:underline no-underline" 24 24 + id="{{ .Comment.Id }}"> 25 25 + {{ if .Comment.Deleted }} 26 26 + {{ template "repo/fragments/shortTimeAgo" .Comment.Deleted }} 27 27 + {{ else if .Comment.Edited }} 28 28 + edited {{ template "repo/fragments/shortTimeAgo" .Comment.Edited }} 29 29 + {{ else }} 30 30 + {{ template "repo/fragments/shortTimeAgo" .Comment.Created }} 31 31 + {{ end }} 32 32 + </a> 33 33 + {{ end }} 34 34 + 35 35 + {{ define "editIssueComment" }} 36 36 + <a 37 37 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 38 38 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/edit" 39 39 + hx-swap="outerHTML" 40 40 + hx-target="#comment-body-{{.Comment.Id}}"> 41 41 + {{ i "pencil" "size-3" }} 42 42 + </a> 43 43 + {{ end }} 44 44 + 45 45 + {{ define "deleteIssueComment" }} 46 46 + <a 47 47 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 48 48 + hx-delete="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/" 49 49 + hx-confirm="Are you sure you want to delete your comment?" 50 50 + hx-swap="outerHTML" 51 51 + hx-target="#comment-body-{{.Comment.Id}}" 52 52 + > 53 53 + {{ i "trash-2" "size-3" }} 54 54 + {{ i "loader-circle" "size-3 animate-spin hidden group-[.htmx-request]:inline" }} 55 55 + </a> 56 56 + {{ end }}

+145

appview/pages/templates/repo/issues/fragments/newComment.html

··· 1 1 + {{ define "repo/issues/fragments/newComment" }} 2 2 + {{ if .LoggedInUser }} 3 3 + <form 4 4 + id="comment-form" 5 5 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 6 6 + hx-on::after-request="if(event.detail.successful) this.reset()" 7 7 + > 8 8 + <div class="bg-white dark:bg-gray-800 rounded drop-shadow-sm py-4 px-4 relative w-full"> 9 9 + <div class="text-sm pb-2 text-gray-500 dark:text-gray-400"> 10 10 + {{ template "user/fragments/picHandleLink" .LoggedInUser.Did }} 11 11 + </div> 12 12 + <textarea 13 13 + id="comment-textarea" 14 14 + name="body" 15 15 + class="w-full p-2 rounded border border-gray-200 dark:border-gray-700" 16 16 + placeholder="Add to the discussion. Markdown is supported." 17 17 + onkeyup="updateCommentForm()" 18 18 + rows="5" 19 19 + ></textarea> 20 20 + <div id="issue-comment"></div> 21 21 + <div id="issue-action" class="error"></div> 22 22 + </div> 23 23 + 24 24 + <div class="flex gap-2 mt-2"> 25 25 + <button 26 26 + id="comment-button" 27 27 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 28 28 + type="submit" 29 29 + hx-disabled-elt="#comment-button" 30 30 + class="btn-create p-2 flex items-center gap-2 no-underline hover:no-underline group" 31 31 + disabled 32 32 + > 33 33 + {{ i "message-square-plus" "w-4 h-4" }} 34 34 + comment 35 35 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 36 36 + </button> 37 37 + 38 38 + {{ $isIssueAuthor := and .LoggedInUser (eq .LoggedInUser.Did .Issue.Did) }} 39 39 + {{ $isRepoCollaborator := .RepoInfo.Roles.IsCollaborator }} 40 40 + {{ $isRepoOwner := .RepoInfo.Roles.IsOwner }} 41 41 + {{ if and (or $isIssueAuthor $isRepoCollaborator $isRepoOwner) .Issue.Open }} 42 42 + <button 43 43 + id="close-button" 44 44 + type="button" 45 45 + class="btn flex items-center gap-2" 46 46 + hx-indicator="#close-spinner" 47 47 + hx-trigger="click" 48 48 + > 49 49 + {{ i "ban" "w-4 h-4" }} 50 50 + close 51 51 + <span id="close-spinner" class="group"> 52 52 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 53 53 + </span> 54 54 + </button> 55 55 + <div 56 56 + id="close-with-comment" 57 57 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 58 58 + hx-trigger="click from:#close-button" 59 59 + hx-disabled-elt="#close-with-comment" 60 60 + hx-target="#issue-comment" 61 61 + hx-indicator="#close-spinner" 62 62 + hx-vals="js:{body: document.getElementById('comment-textarea').value.trim() !== '' ? document.getElementById('comment-textarea').value : ''}" 63 63 + hx-swap="none" 64 64 + > 65 65 + </div> 66 66 + <div 67 67 + id="close-issue" 68 68 + hx-disabled-elt="#close-issue" 69 69 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/close" 70 70 + hx-trigger="click from:#close-button" 71 71 + hx-target="#issue-action" 72 72 + hx-indicator="#close-spinner" 73 73 + hx-swap="none" 74 74 + > 75 75 + </div> 76 76 + <script> 77 77 + document.addEventListener('htmx:configRequest', function(evt) { 78 78 + if (evt.target.id === 'close-with-comment') { 79 79 + const commentText = document.getElementById('comment-textarea').value.trim(); 80 80 + if (commentText === '') { 81 81 + evt.detail.parameters = {}; 82 82 + evt.preventDefault(); 83 83 + } 84 84 + } 85 85 + }); 86 86 + </script> 87 87 + {{ else if and (or $isIssueAuthor $isRepoCollaborator $isRepoOwner) (not .Issue.Open) }} 88 88 + <button 89 89 + type="button" 90 90 + class="btn flex items-center gap-2" 91 91 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/reopen" 92 92 + hx-indicator="#reopen-spinner" 93 93 + hx-swap="none" 94 94 + > 95 95 + {{ i "refresh-ccw-dot" "w-4 h-4" }} 96 96 + reopen 97 97 + <span id="reopen-spinner" class="group"> 98 98 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 99 99 + </span> 100 100 + </button> 101 101 + {{ end }} 102 102 + 103 103 + <script> 104 104 + function updateCommentForm() { 105 105 + const textarea = document.getElementById('comment-textarea'); 106 106 + const commentButton = document.getElementById('comment-button'); 107 107 + const closeButton = document.getElementById('close-button'); 108 108 + 109 109 + if (textarea.value.trim() !== '') { 110 110 + commentButton.removeAttribute('disabled'); 111 111 + } else { 112 112 + commentButton.setAttribute('disabled', ''); 113 113 + } 114 114 + 115 115 + if (closeButton) { 116 116 + if (textarea.value.trim() !== '') { 117 117 + closeButton.innerHTML = ` 118 118 + {{ i "ban" "w-4 h-4" }} 119 119 + <span>close with comment</span> 120 120 + <span id="close-spinner" class="group"> 121 121 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 122 122 + </span>`; 123 123 + } else { 124 124 + closeButton.innerHTML = ` 125 125 + {{ i "ban" "w-4 h-4" }} 126 126 + <span>close</span> 127 127 + <span id="close-spinner" class="group"> 128 128 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 129 129 + </span>`; 130 130 + } 131 131 + } 132 132 + } 133 133 + 134 134 + document.addEventListener('DOMContentLoaded', function() { 135 135 + updateCommentForm(); 136 136 + }); 137 137 + </script> 138 138 + </div> 139 139 + </form> 140 140 + {{ else }} 141 141 + <div class="bg-white dark:bg-gray-800 rounded drop-shadow-sm py-4 px-4 relative w-fit"> 142 142 + <a href="/login" class="underline">login</a> to join the discussion 143 143 + </div> 144 144 + {{ end }} 145 145 + {{ end }}

+57

appview/pages/templates/repo/issues/fragments/putIssue.html

··· 1 1 + {{ define "repo/issues/fragments/putIssue" }} 2 2 + <!-- this form is used for new and edit, .Issue is passed when editing --> 3 3 + <form 4 4 + {{ if eq .Action "edit" }} 5 5 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/edit" 6 6 + {{ else }} 7 7 + hx-post="/{{ .RepoInfo.FullName }}/issues/new" 8 8 + {{ end }} 9 9 + hx-swap="none" 10 10 + hx-indicator="#spinner"> 11 11 + <div class="flex flex-col gap-2"> 12 12 + <div> 13 13 + <label for="title">title</label> 14 14 + <input type="text" name="title" id="title" class="w-full" value="{{ if .Issue }}{{ .Issue.Title }}{{ end }}" /> 15 15 + </div> 16 16 + <div> 17 17 + <label for="body">body</label> 18 18 + <textarea 19 19 + name="body" 20 20 + id="body" 21 21 + rows="6" 22 22 + class="w-full resize-y" 23 23 + placeholder="Describe your issue. Markdown is supported." 24 24 + >{{ if .Issue }}{{ .Issue.Body }}{{ end }}</textarea> 25 25 + </div> 26 26 + <div class="flex justify-between"> 27 27 + <div id="issues" class="error"></div> 28 28 + <div class="flex gap-2 items-center"> 29 29 + <a 30 30 + class="btn flex items-center gap-2 no-underline hover:no-underline" 31 31 + type="button" 32 32 + {{ if .Issue }} 33 33 + href="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}" 34 34 + {{ else }} 35 35 + href="/{{ .RepoInfo.FullName }}/issues" 36 36 + {{ end }} 37 37 + > 38 38 + {{ i "x" "w-4 h-4" }} 39 39 + cancel 40 40 + </a> 41 41 + <button type="submit" class="btn-create flex items-center gap-2"> 42 42 + {{ if eq .Action "edit" }} 43 43 + {{ i "pencil" "w-4 h-4" }} 44 44 + {{ .Action }} issue 45 45 + {{ else }} 46 46 + {{ i "circle-plus" "w-4 h-4" }} 47 47 + {{ .Action }} issue 48 48 + {{ end }} 49 49 + <span id="spinner" class="group"> 50 50 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 51 51 + </span> 52 52 + </button> 53 53 + </div> 54 54 + </div> 55 55 + </div> 56 56 + </form> 57 57 + {{ end }}

+61

appview/pages/templates/repo/issues/fragments/replyComment.html

··· 1 1 + {{ define "repo/issues/fragments/replyComment" }} 2 2 + <form 3 3 + class="p-2 group w-full border-t border-gray-200 dark:border-gray-700 flex flex-col gap-2" 4 4 + id="reply-form-{{ .Comment.Id }}" 5 5 + hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 6 6 + hx-on::after-request="if(event.detail.successful) this.reset()" 7 7 + hx-disabled-elt="#reply-{{ .Comment.Id }}" 8 8 + > 9 9 + {{ template "user/fragments/picHandleLink" .LoggedInUser.Did }} 10 10 + <textarea 11 11 + id="reply-{{.Comment.Id}}-textarea" 12 12 + name="body" 13 13 + class="w-full p-2" 14 14 + placeholder="Leave a reply..." 15 15 + autofocus 16 16 + rows="3" 17 17 + hx-trigger="keydown[ctrlKey&&key=='Enter']" 18 18 + hx-target="#reply-form-{{ .Comment.Id }}" 19 19 + hx-get="#" 20 20 + hx-on:htmx:before-request="event.preventDefault(); document.getElementById('reply-form-{{ .Comment.Id }}').requestSubmit()"></textarea> 21 21 + 22 22 + <input 23 23 + type="text" 24 24 + id="reply-to" 25 25 + name="reply-to" 26 26 + required 27 27 + value="{{ .Comment.AtUri }}" 28 28 + class="hidden" 29 29 + /> 30 30 + {{ template "replyActions" . }} 31 31 + </form> 32 32 + {{ end }} 33 33 + 34 34 + {{ define "replyActions" }} 35 35 + <div class="flex flex-wrap items-stretch justify-end gap-2 text-gray-500 dark:text-gray-400 text-sm"> 36 36 + {{ template "cancel" . }} 37 37 + {{ template "reply" . }} 38 38 + </div> 39 39 + {{ end }} 40 40 + 41 41 + {{ define "cancel" }} 42 42 + <button 43 43 + class="btn text-red-500 dark:text-red-400 flex gap-2 items-center group" 44 44 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/replyPlaceholder" 45 45 + hx-target="#reply-form-{{ .Comment.Id }}" 46 46 + hx-swap="outerHTML"> 47 47 + {{ i "x" "size-4" }} 48 48 + cancel 49 49 + </button> 50 50 + {{ end }} 51 51 + 52 52 + {{ define "reply" }} 53 53 + <button 54 54 + id="reply-{{ .Comment.Id }}" 55 55 + type="submit" 56 56 + class="btn-create flex items-center gap-2 no-underline hover:no-underline"> 57 57 + {{ i "reply" "w-4 h-4 inline group-[.htmx-request]:hidden" }} 58 58 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 59 59 + reply 60 60 + </button> 61 61 + {{ end }}

+20

appview/pages/templates/repo/issues/fragments/replyIssueCommentPlaceholder.html

··· 1 1 + {{ define "repo/issues/fragments/replyIssueCommentPlaceholder" }} 2 2 + <div class="p-2 border-t flex gap-2 items-center border-gray-300 dark:border-gray-700"> 3 3 + {{ if .LoggedInUser }} 4 4 + <img 5 5 + src="{{ tinyAvatar .LoggedInUser.Did }}" 6 6 + alt="" 7 7 + class="rounded-full h-6 w-6 mr-1 border border-gray-300 dark:border-gray-700" 8 8 + /> 9 9 + {{ end }} 10 10 + <input 11 11 + class="w-full py-2 border-none focus:outline-none" 12 12 + placeholder="Leave a reply..." 13 13 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment/{{ .Comment.Id }}/reply" 14 14 + hx-trigger="focus" 15 15 + hx-target="closest div" 16 16 + hx-swap="outerHTML" 17 17 + > 18 18 + </input> 19 19 + </div> 20 20 + {{ end }}

+95 -202

appview/pages/templates/repo/issues/issue.html

··· 9 9 {{ end }} 10 10 11 11 {{ define "repoContent" }} 12 12 - <header class="pb-4"> 13 13 - <h1 class="text-2xl"> 14 14 - {{ .Issue.Title }} 15 15 - <span class="text-gray-500 dark:text-gray-400">#{{ .Issue.IssueId }}</span> 16 16 - </h1> 17 17 - </header> 12 12 + <section id="issue-{{ .Issue.IssueId }}"> 13 13 + {{ template "issueHeader" .Issue }} 14 14 + {{ template "issueInfo" . }} 15 15 + {{ if .Issue.Body }} 16 16 + <article id="body" class="mt-4 prose dark:prose-invert">{{ .Issue.Body | markdown }}</article> 17 17 + {{ end }} 18 18 + {{ template "issueReactions" . }} 19 19 + </section> 20 20 + {{ end }} 18 21 19 19 - {{ $bgColor := "bg-gray-800 dark:bg-gray-700" }} 20 20 - {{ $icon := "ban" }} 21 21 - {{ if eq .State "open" }} 22 22 - {{ $bgColor = "bg-green-600 dark:bg-green-700" }} 23 23 - {{ $icon = "circle-dot" }} 24 24 - {{ end }} 22 22 + {{ define "issueHeader" }} 23 23 + <header class="pb-2"> 24 24 + <h1 class="text-2xl"> 25 25 + {{ .Title | description }} 26 26 + <span class="text-gray-500 dark:text-gray-400">#{{ .IssueId }}</span> 27 27 + </h1> 28 28 + </header> 29 29 + {{ end }} 25 30 26 26 - <section class="mt-2"> 27 27 - <div class="inline-flex items-center gap-2"> 28 28 - <div id="state" 29 29 - class="inline-flex items-center rounded px-3 py-1 {{ $bgColor }}"> 30 30 - {{ i $icon "w-4 h-4 mr-1.5 text-white" }} 31 31 - <span class="text-white">{{ .State }}</span> 32 32 - </div> 33 33 - <span class="text-gray-500 dark:text-gray-400 text-sm flex flex-wrap items-center gap-1"> 34 34 - opened by 35 35 - {{ $owner := didOrHandle .Issue.OwnerDid .IssueOwnerHandle }} 36 36 - {{ template "user/fragments/picHandleLink" $owner }} 37 37 - <span class="select-none before:content-['\00B7']"></span> 38 38 - {{ template "repo/fragments/time" .Issue.Created }} 39 39 - </span> 40 40 - </div> 31 31 + {{ define "issueInfo" }} 32 32 + {{ $bgColor := "bg-gray-800 dark:bg-gray-700" }} 33 33 + {{ $icon := "ban" }} 34 34 + {{ if eq .Issue.State "open" }} 35 35 + {{ $bgColor = "bg-green-600 dark:bg-green-700" }} 36 36 + {{ $icon = "circle-dot" }} 37 37 + {{ end }} 38 38 + <div class="inline-flex items-center gap-2"> 39 39 + <div id="state" 40 40 + class="inline-flex items-center rounded px-3 py-1 {{ $bgColor }}"> 41 41 + {{ i $icon "w-4 h-4 mr-1.5 text-white" }} 42 42 + <span class="text-white">{{ .Issue.State }}</span> 43 43 + </div> 44 44 + <span class="text-gray-500 dark:text-gray-400 text-sm flex flex-wrap items-center gap-1"> 45 45 + opened by 46 46 + {{ template "user/fragments/picHandleLink" .Issue.Did }} 47 47 + <span class="select-none before:content-['\00B7']"></span> 48 48 + {{ if .Issue.Edited }} 49 49 + edited {{ template "repo/fragments/time" .Issue.Edited }} 50 50 + {{ else }} 51 51 + {{ template "repo/fragments/time" .Issue.Created }} 52 52 + {{ end }} 53 53 + </span> 41 54 42 42 - {{ if .Issue.Body }} 43 43 - <article id="body" class="mt-8 prose dark:prose-invert"> 44 44 - {{ .Issue.Body | markdown }} 45 45 - </article> 46 46 - {{ end }} 55 55 + {{ if and .LoggedInUser (eq .LoggedInUser.Did .Issue.Did) }} 56 56 + {{ template "issueActions" . }} 57 57 + {{ end }} 58 58 + </div> 59 59 + <div id="issue-actions-error" class="error"></div> 60 60 + {{ end }} 47 61 48 48 - <div class="flex items-center gap-2 mt-2"> 49 49 - {{ template "repo/fragments/reactionsPopUp" .OrderedReactionKinds }} 50 50 - {{ range $kind := .OrderedReactionKinds }} 51 51 - {{ 52 52 - template "repo/fragments/reaction" 53 53 - (dict 54 54 - "Kind" $kind 55 55 - "Count" (index $.Reactions $kind) 56 56 - "IsReacted" (index $.UserReacted $kind) 57 57 - "ThreadAt" $.Issue.IssueAt) 58 58 - }} 59 59 - {{ end }} 60 60 - </div> 61 61 - </section> 62 62 + {{ define "issueActions" }} 63 63 + {{ template "editIssue" . }} 64 64 + {{ template "deleteIssue" . }} 62 65 {{ end }} 63 66 64 64 - {{ define "repoAfter" }} 65 65 - <section id="comments" class="my-2 mt-2 space-y-2 relative"> 66 66 - {{ range $index, $comment := .Comments }} 67 67 - <div 68 68 - id="comment-{{ .CommentId }}" 69 69 - class="bg-white dark:bg-gray-800 rounded drop-shadow-sm py-2 px-4 relative w-full md:max-w-3/5 md:w-fit"> 70 70 - {{ if gt $index 0 }} 71 71 - <div class="absolute left-8 -top-2 w-px h-2 bg-gray-300 dark:bg-gray-600"></div> 72 72 - {{ end }} 73 73 - {{ template "repo/issues/fragments/issueComment" (dict "RepoInfo" $.RepoInfo "LoggedInUser" $.LoggedInUser "DidHandleMap" $.DidHandleMap "Issue" $.Issue "Comment" .)}} 74 74 - </div> 75 75 - {{ end }} 76 76 - </section> 67 67 + {{ define "editIssue" }} 68 68 + <a 69 69 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 70 70 + hx-get="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/edit" 71 71 + hx-swap="innerHTML" 72 72 + hx-target="#issue-{{.Issue.IssueId}}"> 73 73 + {{ i "pencil" "size-3" }} 74 74 + </a> 75 75 + {{ end }} 77 76 78 78 - {{ block "newComment" . }} {{ end }} 77 77 + {{ define "deleteIssue" }} 78 78 + <a 79 79 + class="text-gray-500 dark:text-gray-400 flex gap-1 items-center group" 80 80 + hx-delete="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/" 81 81 + hx-confirm="Are you sure you want to delete your issue?" 82 82 + hx-swap="none"> 83 83 + {{ i "trash-2" "size-3" }} 84 84 + {{ i "loader-circle" "size-3 animate-spin hidden group-[.htmx-request]:inline" }} 85 85 + </a> 86 86 + {{ end }} 79 87 88 88 + {{ define "issueReactions" }} 89 89 + <div class="flex items-center gap-2 mt-2"> 90 90 + {{ template "repo/fragments/reactionsPopUp" .OrderedReactionKinds }} 91 91 + {{ range $kind := .OrderedReactionKinds }} 92 92 + {{ 93 93 + template "repo/fragments/reaction" 94 94 + (dict 95 95 + "Kind" $kind 96 96 + "Count" (index $.Reactions $kind) 97 97 + "IsReacted" (index $.UserReacted $kind) 98 98 + "ThreadAt" $.Issue.AtUri) 99 99 + }} 100 100 + {{ end }} 101 101 + </div> 80 102 {{ end }} 81 103 82 82 - {{ define "newComment" }} 83 83 - {{ if .LoggedInUser }} 84 84 - <form 85 85 - id="comment-form" 86 86 - hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 87 87 - hx-on::after-request="if(event.detail.successful) this.reset()" 88 88 - > 89 89 - <div class="bg-white dark:bg-gray-800 rounded drop-shadow-sm py-4 px-4 relative w-full md:w-3/5"> 90 90 - <div class="text-sm pb-2 text-gray-500 dark:text-gray-400"> 91 91 - {{ template "user/fragments/picHandleLink" (didOrHandle .LoggedInUser.Did .LoggedInUser.Handle) }} 92 92 - </div> 93 93 - <textarea 94 94 - id="comment-textarea" 95 95 - name="body" 96 96 - class="w-full p-2 rounded border border-gray-200 dark:border-gray-700" 97 97 - placeholder="Add to the discussion. Markdown is supported." 98 98 - onkeyup="updateCommentForm()" 99 99 - ></textarea> 100 100 - <div id="issue-comment"></div> 101 101 - <div id="issue-action" class="error"></div> 102 102 - </div> 103 103 - 104 104 - <div class="flex gap-2 mt-2"> 105 105 - <button 106 106 - id="comment-button" 107 107 - hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 108 108 - type="submit" 109 109 - hx-disabled-elt="#comment-button" 110 110 - class="btn p-2 flex items-center gap-2 no-underline hover:no-underline group" 111 111 - disabled 112 112 - > 113 113 - {{ i "message-square-plus" "w-4 h-4" }} 114 114 - comment 115 115 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 116 116 - </button> 117 117 - 118 118 - {{ $isIssueAuthor := and .LoggedInUser (eq .LoggedInUser.Did .Issue.OwnerDid) }} 119 119 - {{ $isRepoCollaborator := .RepoInfo.Roles.IsCollaborator }} 120 120 - {{ $isRepoOwner := .RepoInfo.Roles.IsOwner }} 121 121 - {{ if and (or $isIssueAuthor $isRepoCollaborator $isRepoOwner) (eq .State "open") }} 122 122 - <button 123 123 - id="close-button" 124 124 - type="button" 125 125 - class="btn flex items-center gap-2" 126 126 - hx-indicator="#close-spinner" 127 127 - hx-trigger="click" 128 128 - > 129 129 - {{ i "ban" "w-4 h-4" }} 130 130 - close 131 131 - <span id="close-spinner" class="group"> 132 132 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 133 133 - </span> 134 134 - </button> 135 135 - <div 136 136 - id="close-with-comment" 137 137 - hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/comment" 138 138 - hx-trigger="click from:#close-button" 139 139 - hx-disabled-elt="#close-with-comment" 140 140 - hx-target="#issue-comment" 141 141 - hx-indicator="#close-spinner" 142 142 - hx-vals="js:{body: document.getElementById('comment-textarea').value.trim() !== '' ? document.getElementById('comment-textarea').value : ''}" 143 143 - hx-swap="none" 144 144 - > 145 145 - </div> 146 146 - <div 147 147 - id="close-issue" 148 148 - hx-disabled-elt="#close-issue" 149 149 - hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/close" 150 150 - hx-trigger="click from:#close-button" 151 151 - hx-target="#issue-action" 152 152 - hx-indicator="#close-spinner" 153 153 - hx-swap="none" 154 154 - > 155 155 - </div> 156 156 - <script> 157 157 - document.addEventListener('htmx:configRequest', function(evt) { 158 158 - if (evt.target.id === 'close-with-comment') { 159 159 - const commentText = document.getElementById('comment-textarea').value.trim(); 160 160 - if (commentText === '') { 161 161 - evt.detail.parameters = {}; 162 162 - evt.preventDefault(); 163 163 - } 164 164 - } 165 165 - }); 166 166 - </script> 167 167 - {{ else if and (or $isIssueAuthor $isRepoCollaborator $isRepoOwner) (eq .State "closed") }} 168 168 - <button 169 169 - type="button" 170 170 - class="btn flex items-center gap-2" 171 171 - hx-post="/{{ .RepoInfo.FullName }}/issues/{{ .Issue.IssueId }}/reopen" 172 172 - hx-indicator="#reopen-spinner" 173 173 - hx-swap="none" 174 174 - > 175 175 - {{ i "refresh-ccw-dot" "w-4 h-4" }} 176 176 - reopen 177 177 - <span id="reopen-spinner" class="group"> 178 178 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 179 179 - </span> 180 180 - </button> 181 181 - {{ end }} 182 182 - 183 183 - <script> 184 184 - function updateCommentForm() { 185 185 - const textarea = document.getElementById('comment-textarea'); 186 186 - const commentButton = document.getElementById('comment-button'); 187 187 - const closeButton = document.getElementById('close-button'); 188 188 - 189 189 - if (textarea.value.trim() !== '') { 190 190 - commentButton.removeAttribute('disabled'); 191 191 - } else { 192 192 - commentButton.setAttribute('disabled', ''); 193 193 - } 104 104 + {{ define "repoAfter" }} 105 105 + <div class="flex flex-col gap-4 mt-4"> 106 106 + {{ 107 107 + template "repo/issues/fragments/commentList" 108 108 + (dict 109 109 + "RepoInfo" $.RepoInfo 110 110 + "LoggedInUser" $.LoggedInUser 111 111 + "Issue" $.Issue 112 112 + "CommentList" $.Issue.CommentList) 113 113 + }} 194 114 195 195 - if (closeButton) { 196 196 - if (textarea.value.trim() !== '') { 197 197 - closeButton.innerHTML = ` 198 198 - {{ i "ban" "w-4 h-4" }} 199 199 - <span>close with comment</span> 200 200 - <span id="close-spinner" class="group"> 201 201 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 202 202 - </span>`; 203 203 - } else { 204 204 - closeButton.innerHTML = ` 205 205 - {{ i "ban" "w-4 h-4" }} 206 206 - <span>close</span> 207 207 - <span id="close-spinner" class="group"> 208 208 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 209 209 - </span>`; 210 210 - } 211 211 - } 212 212 - } 115 115 + {{ template "repo/issues/fragments/newComment" . }} 116 116 + <div> 117 117 + {{ end }} 213 118 214 214 - document.addEventListener('DOMContentLoaded', function() { 215 215 - updateCommentForm(); 216 216 - }); 217 217 - </script> 218 218 - </div> 219 219 - </form> 220 220 - {{ else }} 221 221 - <div class="bg-white dark:bg-gray-800 rounded drop-shadow-sm py-4 px-4 relative w-fit"> 222 222 - <a href="/login" class="underline">login</a> to join the discussion 223 223 - </div> 224 224 - {{ end }} 225 225 - {{ end }}

+42 -45

appview/pages/templates/repo/issues/issues.html

··· 37 37 {{ end }} 38 38 39 39 {{ define "repoAfter" }} 40 40 - <div class="flex flex-col gap-2 mt-2"> 41 41 - {{ range .Issues }} 42 42 - <div class="rounded drop-shadow-sm bg-white px-6 py-4 dark:bg-gray-800 dark:border-gray-700"> 43 43 - <div class="pb-2"> 44 44 - <a 45 45 - href="/{{ $.RepoInfo.FullName }}/issues/{{ .IssueId }}" 46 46 - class="no-underline hover:underline" 47 47 - > 48 48 - {{ .Title }} 49 49 - <span class="text-gray-500">#{{ .IssueId }}</span> 50 50 - </a> 51 51 - </div> 52 52 - <p class="text-sm text-gray-500 dark:text-gray-400 flex flex-wrap items-center gap-1"> 53 53 - {{ $bgColor := "bg-gray-800 dark:bg-gray-700" }} 54 54 - {{ $icon := "ban" }} 55 55 - {{ $state := "closed" }} 56 56 - {{ if .Open }} 57 57 - {{ $bgColor = "bg-green-600 dark:bg-green-700" }} 58 58 - {{ $icon = "circle-dot" }} 59 59 - {{ $state = "open" }} 60 60 - {{ end }} 40 40 + <div class="flex flex-col gap-2 mt-2"> 41 41 + {{ range .Issues }} 42 42 + <div class="rounded drop-shadow-sm bg-white px-6 py-4 dark:bg-gray-800 dark:border-gray-700"> 43 43 + <div class="pb-2"> 44 44 + <a 45 45 + href="/{{ $.RepoInfo.FullName }}/issues/{{ .IssueId }}" 46 46 + class="no-underline hover:underline" 47 47 + > 48 48 + {{ .Title | description }} 49 49 + <span class="text-gray-500">#{{ .IssueId }}</span> 50 50 + </a> 51 51 + </div> 52 52 + <p class="text-sm text-gray-500 dark:text-gray-400 flex flex-wrap items-center gap-1"> 53 53 + {{ $bgColor := "bg-gray-800 dark:bg-gray-700" }} 54 54 + {{ $icon := "ban" }} 55 55 + {{ $state := "closed" }} 56 56 + {{ if .Open }} 57 57 + {{ $bgColor = "bg-green-600 dark:bg-green-700" }} 58 58 + {{ $icon = "circle-dot" }} 59 59 + {{ $state = "open" }} 60 60 + {{ end }} 61 61 62 62 - <span class="inline-flex items-center rounded px-2 py-[5px] {{ $bgColor }} text-sm"> 63 63 - {{ i $icon "w-3 h-3 mr-1.5 text-white dark:text-white" }} 64 64 - <span class="text-white dark:text-white">{{ $state }}</span> 65 65 - </span> 62 62 + <span class="inline-flex items-center rounded px-2 py-[5px] {{ $bgColor }} text-sm"> 63 63 + {{ i $icon "w-3 h-3 mr-1.5 text-white dark:text-white" }} 64 64 + <span class="text-white dark:text-white">{{ $state }}</span> 65 65 + </span> 66 66 67 67 - <span class="ml-1"> 68 68 - {{ $owner := index $.DidHandleMap .OwnerDid }} 69 69 - {{ template "user/fragments/picHandleLink" $owner }} 70 70 - </span> 67 67 + <span class="ml-1"> 68 68 + {{ template "user/fragments/picHandleLink" .Did }} 69 69 + </span> 71 70 72 72 - <span class="before:content-['·']"> 73 73 - {{ template "repo/fragments/time" .Created }} 74 74 - </span> 71 71 + <span class="before:content-['·']"> 72 72 + {{ template "repo/fragments/time" .Created }} 73 73 + </span> 75 74 76 76 - <span class="before:content-['·']"> 77 77 - {{ $s := "s" }} 78 78 - {{ if eq .Metadata.CommentCount 1 }} 79 79 - {{ $s = "" }} 80 80 - {{ end }} 81 81 - <a href="/{{ $.RepoInfo.FullName }}/issues/{{ .IssueId }}" class="text-gray-500 dark:text-gray-400">{{ .Metadata.CommentCount }} comment{{$s}}</a> 82 82 - </span> 83 83 - </p> 75 75 + <span class="before:content-['·']"> 76 76 + {{ $s := "s" }} 77 77 + {{ if eq (len .Comments) 1 }} 78 78 + {{ $s = "" }} 79 79 + {{ end }} 80 80 + <a href="/{{ $.RepoInfo.FullName }}/issues/{{ .IssueId }}" class="text-gray-500 dark:text-gray-400">{{ len .Comments }} comment{{$s}}</a> 81 81 + </span> 82 82 + </p> 83 83 + </div> 84 84 + {{ end }} 84 85 </div> 85 85 - {{ end }} 86 86 - </div> 87 87 - 88 88 - {{ block "pagination" . }} {{ end }} 89 89 - 86 86 + {{ block "pagination" . }} {{ end }} 90 87 {{ end }} 91 88 92 89 {{ define "pagination" }}

+1 -33

appview/pages/templates/repo/issues/new.html

··· 1 1 {{ define "title" }}new issue &middot; {{ .RepoInfo.FullName }}{{ end }} 2 2 3 3 {{ define "repoContent" }} 4 4 - <form 5 5 - hx-post="/{{ .RepoInfo.FullName }}/issues/new" 6 6 - class="mt-6 space-y-6" 7 7 - hx-swap="none" 8 8 - hx-indicator="#spinner" 9 9 - > 10 10 - <div class="flex flex-col gap-4"> 11 11 - <div> 12 12 - <label for="title">title</label> 13 13 - <input type="text" name="title" id="title" class="w-full" /> 14 14 - </div> 15 15 - <div> 16 16 - <label for="body">body</label> 17 17 - <textarea 18 18 - name="body" 19 19 - id="body" 20 20 - rows="6" 21 21 - class="w-full resize-y" 22 22 - placeholder="Describe your issue. Markdown is supported." 23 23 - ></textarea> 24 24 - </div> 25 25 - <div> 26 26 - <button type="submit" class="btn-create flex items-center gap-2"> 27 27 - {{ i "circle-plus" "w-4 h-4" }} 28 28 - create issue 29 29 - <span id="create-pull-spinner" class="group"> 30 30 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 31 31 - </span> 32 32 - </button> 33 33 - </div> 34 34 - </div> 35 35 - <div id="issues" class="error"></div> 36 36 - </form> 4 4 + {{ template "repo/issues/fragments/putIssue" . }} 37 5 {{ end }}

+2 -2

appview/pages/templates/repo/log.html

··· 21 21 <div class="py-2 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold col-span-3">Commit</div> 22 22 <div class="py-2 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold col-span-6">Message</div> 23 23 <div class="py-2 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold col-span-1"></div> 24 24 - <div class="py-2 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold col-span-2">Date</div> 24 24 + <div class="py-2 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold col-span-2 justify-self-end">Date</div> 25 25 </div> 26 26 {{ range $index, $commit := .Commits }} 27 27 {{ $messageParts := splitN $commit.Message "\n\n" 2 }} ··· 85 85 {{ template "repo/pipelines/fragments/pipelineSymbolLong" (dict "Pipeline" $pipeline "RepoInfo" $.RepoInfo) }} 86 86 {{ end }} 87 87 </div> 88 88 - <div class="align-top text-gray-500 dark:text-gray-400 col-span-2">{{ template "repo/fragments/shortTimeAgo" $commit.Committer.When }}</div> 88 88 + <div class="align-top justify-self-end text-gray-500 dark:text-gray-400 col-span-2">{{ template "repo/fragments/shortTimeAgo" $commit.Committer.When }}</div> 89 89 </div> 90 90 {{ end }} 91 91 </div>

+60

appview/pages/templates/repo/needsUpgrade.html

··· 1 1 + {{ define "title" }}{{ .RepoInfo.FullName }}{{ end }} 2 2 + {{ define "extrameta" }} 3 3 + {{ template "repo/fragments/meta" . }} 4 4 + {{ template "repo/fragments/og" (dict "RepoInfo" .RepoInfo) }} 5 5 + {{ end }} 6 6 + {{ define "repoContent" }} 7 7 + <main> 8 8 + <div class="relative w-full h-96 flex items-center justify-center"> 9 9 + <div class="w-full h-full grid grid-cols-1 md:grid-cols-2 gap-4 md:divide-x divide-gray-300 dark:divide-gray-600 text-gray-300 dark:text-gray-600"> 10 10 + <!-- mimic the repo view here, placeholders are LLM generated --> 11 11 + <div id="file-list" class="flex flex-col gap-2 col-span-1 w-full h-full p-4 items-start justify-start text-left"> 12 12 + {{ $files := 13 13 + (list 14 14 + "src" 15 15 + "docs" 16 16 + "config" 17 17 + "lib" 18 18 + "index.html" 19 19 + "log.html" 20 20 + "needsUpgrade.html" 21 21 + "new.html" 22 22 + "tags.html" 23 23 + "tree.html") 24 24 + }} 25 25 + {{ range $files }} 26 26 + <span> 27 27 + {{ if (contains . ".") }} 28 28 + {{ i "file" "size-4 inline-flex" }} 29 29 + {{ else }} 30 30 + {{ i "folder" "size-4 inline-flex fill-current" }} 31 31 + {{ end }} 32 32 + 33 33 + {{ . }} 34 34 + </span> 35 35 + {{ end }} 36 36 + </div> 37 37 + <div id="commit-list" class="hidden md:flex md:flex-col gap-4 col-span-1 w-full h-full p-4 items-start justify-start text-left"> 38 38 + {{ $commits := 39 39 + (list 40 40 + "Fix authentication bug in login flow" 41 41 + "Add new dashboard widgets for metrics" 42 42 + "Implement real-time notifications system") 43 43 + }} 44 44 + {{ range $commits }} 45 45 + <div class="flex flex-col"> 46 46 + <span>{{ . }}</span> 47 47 + <span class="text-xs">{{ . }}</span> 48 48 + </div> 49 49 + {{ end }} 50 50 + </div> 51 51 + </div> 52 52 + <div class="absolute inset-0 flex items-center justify-center py-12 text-red-500 dark:text-red-400 backdrop-blur"> 53 53 + <div class="text-center"> 54 54 + {{ i "triangle-alert" "size-5 inline-flex items-center align-middle" }} 55 55 + The knot hosting this repository needs an upgrade. This repository is currently unavailable. 56 56 + </div> 57 57 + </div> 58 58 + </div> 59 59 + </main> 60 60 + {{ end }}

+2 -2

appview/pages/templates/repo/new.html

··· 49 49 class="mr-2" 50 50 id="domain-{{ . }}" 51 51 /> 52 52 - <span class="dark:text-white">{{ . }}</span> 52 52 + <label for="domain-{{ . }}" class="dark:text-white">{{ . }}</label> 53 53 </div> 54 54 {{ else }} 55 55 <p class="dark:text-white">No knots available.</p> ··· 63 63 <button type="submit" class="btn-create flex items-center gap-2"> 64 64 {{ i "book-plus" "w-4 h-4" }} 65 65 create repo 66 66 - <span id="create-pull-spinner" class="group"> 66 66 + <span id="spinner" class="group"> 67 67 {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 68 68 </span> 69 69 </button>

+2 -2

appview/pages/templates/repo/pipelines/fragments/pipelineSymbol.html

··· 23 23 </div> 24 24 {{ else if $allFail }} 25 25 <div class="flex gap-1 items-center"> 26 26 - {{ i "x" "size-4 text-red-600" }} 26 26 + {{ i "x" "size-4 text-red-500" }} 27 27 <span>0/{{ $total }}</span> 28 28 </div> 29 29 {{ else if $allTimeout }} 30 30 <div class="flex gap-1 items-center"> 31 31 - {{ i "clock-alert" "size-4 text-orange-400" }} 31 31 + {{ i "clock-alert" "size-4 text-orange-500" }} 32 32 <span>0/{{ $total }}</span> 33 33 </div> 34 34 {{ else }}

+1 -1

appview/pages/templates/repo/pipelines/fragments/workflowSymbol.html

··· 19 19 {{ $color = "text-gray-600 dark:text-gray-500" }} 20 20 {{ else if eq $kind "timeout" }} 21 21 {{ $icon = "clock-alert" }} 22 22 - {{ $color = "text-orange-400 dark:text-orange-300" }} 22 22 + {{ $color = "text-orange-400 dark:text-orange-500" }} 23 23 {{ else }} 24 24 {{ $icon = "x" }} 25 25 {{ $color = "text-red-600 dark:text-red-500" }}

+5 -1

appview/pages/templates/repo/pipelines/workflow.html

··· 19 19 20 20 {{ define "sidebar" }} 21 21 {{ $active := .Workflow }} 22 22 + 23 23 + {{ $activeTab := "bg-white dark:bg-gray-700 drop-shadow-sm" }} 24 24 + {{ $inactiveTab := "bg-gray-100 dark:bg-gray-800" }} 25 25 + 22 26 {{ with .Pipeline }} 23 27 {{ $id := .Id }} 24 28 <div class="sticky top-2 grid grid-cols-1 rounded border border-gray-200 dark:border-gray-700 divide-y divide-gray-200 dark:divide-gray-700"> 25 29 {{ range $name, $all := .Statuses }} 26 30 <a href="/{{ $.RepoInfo.FullName }}/pipelines/{{ $id }}/workflow/{{ $name }}" class="no-underline hover:no-underline hover:bg-gray-100/25 hover:dark:bg-gray-700/25"> 27 31 <div 28 28 - class="flex gap-2 items-center justify-between p-2 {{ if eq $name $active }}bg-gray-100/50 dark:bg-gray-700/50{{ end }}"> 32 32 + class="flex gap-2 items-center justify-between p-2 {{ if eq $name $active }} {{ $activeTab }} {{ else }} {{ $inactiveTab }} {{ end }}"> 29 33 {{ $lastStatus := $all.Latest }} 30 34 {{ $kind := $lastStatus.Status.String }} 31 35

+2 -2

appview/pages/templates/repo/pulls/fragments/pullCompareForks.html

··· 19 19 > 20 20 <option disabled selected>select a fork</option> 21 21 {{ range .Forks }} 22 22 - <option value="{{ .Name }}" {{ if eq .Name $.Selected }}selected{{ end }} class="py-1"> 23 23 - {{ .Name }} 22 22 + <option value="{{ .Did }}/{{ .Name }}" {{ if eq .Name $.Selected }}selected{{ end }} class="py-1"> 23 23 + {{ .Did | resolve }}/{{ .Name }} 24 24 </option> 25 25 {{ end }} 26 26 </select>

+3 -3

appview/pages/templates/repo/pulls/fragments/pullHeader.html

··· 1 1 {{ define "repo/pulls/fragments/pullHeader" }} 2 2 <header class="pb-4"> 3 3 <h1 class="text-2xl dark:text-white"> 4 4 - {{ .Pull.Title }} 4 4 + {{ .Pull.Title | description }} 5 5 <span class="text-gray-500 dark:text-gray-400">#{{ .Pull.PullId }}</span> 6 6 </h1> 7 7 </header> ··· 28 28 </div> 29 29 <span class="text-gray-500 dark:text-gray-400 text-sm flex flex-wrap items-center gap-1"> 30 30 opened by 31 31 - {{ $owner := index $.DidHandleMap .Pull.OwnerDid }} 32 32 - {{ template "user/fragments/picHandleLink" $owner }} 31 31 + {{ template "user/fragments/picHandleLink" .Pull.OwnerDid }} 33 32 <span class="select-none before:content-['\00B7']"></span> 34 33 {{ template "repo/fragments/time" .Pull.Created }} 35 34 ··· 45 44 <span class="text-xs rounded bg-gray-100 dark:bg-gray-700 text-black dark:text-white font-mono px-2 mx-1/2 inline-flex items-center"> 46 45 {{ if .Pull.IsForkBased }} 47 46 {{ if .Pull.PullSource.Repo }} 47 47 + {{ $owner := resolve .Pull.PullSource.Repo.Did }} 48 48 <a href="/{{ $owner }}/{{ .Pull.PullSource.Repo.Name }}" class="no-underline hover:underline">{{ $owner }}/{{ .Pull.PullSource.Repo.Name }}</a>: 49 49 {{- else -}} 50 50 <span class="italic">[deleted fork]</span>

+1 -1

appview/pages/templates/repo/pulls/fragments/pullStack.html

··· 52 52 </div> 53 53 {{ end }} 54 54 <div class="{{ if not $isCurrent }} pl-6 {{ end }} flex-grow min-w-0 w-full py-2"> 55 55 - {{ template "repo/pulls/fragments/summarizedHeader" (list $pull $pipeline) }} 55 55 + {{ template "repo/pulls/fragments/summarizedPullHeader" (list $pull $pipeline) }} 56 56 </div> 57 57 </div> 58 58 </a>

+2 -2

appview/pages/templates/repo/pulls/fragments/summarizedPullHeader.html

··· 1 1 - {{ define "repo/pulls/fragments/summarizedHeader" }} 1 1 + {{ define "repo/pulls/fragments/summarizedPullHeader" }} 2 2 {{ $pull := index . 0 }} 3 3 {{ $pipeline := index . 1 }} 4 4 {{ with $pull }} ··· 9 9 </div> 10 10 <span class="truncate text-sm text-gray-800 dark:text-gray-200"> 11 11 <span class="text-gray-500 dark:text-gray-400">#{{ .PullId }}</span> 12 12 - {{ .Title }} 12 12 + {{ .Title | description }} 13 13 </span> 14 14 </div> 15 15

+3 -3

appview/pages/templates/repo/pulls/interdiff.html

··· 30 30 31 31 {{ define "topbarLayout" }} 32 32 <header class="px-1 col-span-full" style="z-index: 20;"> 33 33 - {{ template "layouts/topbar" . }} 33 33 + {{ template "layouts/fragments/topbar" . }} 34 34 </header> 35 35 {{ end }} 36 36 ··· 55 55 56 56 {{ define "footerLayout" }} 57 57 <footer class="px-1 col-span-full mt-12"> 58 58 - {{ template "layouts/footer" . }} 58 58 + {{ template "layouts/fragments/footer" . }} 59 59 </footer> 60 60 {{ end }} 61 61 ··· 68 68 <div class="flex flex-col gap-4 col-span-1 md:col-span-2"> 69 69 {{ template "repo/fragments/diffOpts" .DiffOpts }} 70 70 </div> 71 71 - <div class="sticky top-0 flex-grow max-h-screen"> 71 71 + <div class="sticky top-0 flex-grow max-h-screen overflow-y-auto"> 72 72 {{ template "repo/fragments/interdiffFiles" .Interdiff }} 73 73 </div> 74 74 {{end}}

+3 -3

appview/pages/templates/repo/pulls/patch.html

··· 36 36 37 37 {{ define "topbarLayout" }} 38 38 <header class="px-1 col-span-full" style="z-index: 20;"> 39 39 - {{ template "layouts/topbar" . }} 39 39 + {{ template "layouts/fragments/topbar" . }} 40 40 </header> 41 41 {{ end }} 42 42 ··· 61 61 62 62 {{ define "footerLayout" }} 63 63 <footer class="px-1 col-span-full mt-12"> 64 64 - {{ template "layouts/footer" . }} 64 64 + {{ template "layouts/fragments/footer" . }} 65 65 </footer> 66 66 {{ end }} 67 67 ··· 73 73 <div class="flex flex-col gap-4 col-span-1 md:col-span-2"> 74 74 {{ template "repo/fragments/diffOpts" .DiffOpts }} 75 75 </div> 76 76 - <div class="sticky top-0 flex-grow max-h-screen"> 76 76 + <div class="sticky top-0 flex-grow max-h-screen overflow-y-auto"> 77 77 {{ template "repo/fragments/diffChangedFiles" .Diff }} 78 78 </div> 79 79 {{end}}

+4 -5

appview/pages/templates/repo/pulls/pull.html

··· 47 47 <!-- round summary --> 48 48 <div class="rounded drop-shadow-sm bg-white dark:bg-gray-800 p-2 text-gray-500 dark:text-gray-400"> 49 49 <span class="gap-1 flex items-center"> 50 50 - {{ $owner := index $.DidHandleMap $.Pull.OwnerDid }} 50 50 + {{ $owner := resolve $.Pull.OwnerDid }} 51 51 {{ $re := "re" }} 52 52 {{ if eq .RoundNumber 0 }} 53 53 {{ $re = "" }} 54 54 {{ end }} 55 55 <span class="hidden md:inline">{{$re}}submitted</span> 56 56 - by {{ template "user/fragments/picHandleLink" $owner }} 56 56 + by {{ template "user/fragments/picHandleLink" $.Pull.OwnerDid }} 57 57 <span class="select-none before:content-['\00B7']"></span> 58 58 <a class="text-gray-500 dark:text-gray-400 hover:text-gray-500" href="#round-#{{ .RoundNumber }}">{{ template "repo/fragments/shortTime" .Created }}</a> 59 59 <span class="select-none before:content-['·']"></span> ··· 122 122 {{ end }} 123 123 </div> 124 124 <div class="flex items-center"> 125 125 - <span>{{ .Title }}</span> 125 125 + <span>{{ .Title | description }}</span> 126 126 {{ if gt (len .Body) 0 }} 127 127 <button 128 128 class="py-1/2 px-1 mx-2 bg-gray-200 hover:bg-gray-400 rounded dark:bg-gray-700 dark:hover:bg-gray-600" ··· 151 151 <div class="absolute left-8 -top-2 w-px h-2 bg-gray-300 dark:bg-gray-600"></div> 152 152 {{ end }} 153 153 <div class="text-sm text-gray-500 dark:text-gray-400 flex items-center gap-1"> 154 154 - {{ $owner := index $.DidHandleMap $c.OwnerDid }} 155 155 - {{ template "user/fragments/picHandleLink" $owner }} 154 154 + {{ template "user/fragments/picHandleLink" $c.OwnerDid }} 156 155 <span class="before:content-['·']"></span> 157 156 <a class="text-gray-500 dark:text-gray-400 hover:text-gray-500 dark:hover:text-gray-300" href="#comment-{{.ID}}">{{ template "repo/fragments/time" $c.Created }}</a> 158 157 </div>

+3 -4

appview/pages/templates/repo/pulls/pulls.html

··· 50 50 <div class="px-6 py-4 z-5"> 51 51 <div class="pb-2"> 52 52 <a href="/{{ $.RepoInfo.FullName }}/pulls/{{ .PullId }}" class="dark:text-white"> 53 53 - {{ .Title }} 53 53 + {{ .Title | description }} 54 54 <span class="text-gray-500 dark:text-gray-400">#{{ .PullId }}</span> 55 55 </a> 56 56 </div> 57 57 <div class="text-sm text-gray-500 dark:text-gray-400 flex flex-wrap items-center gap-1"> 58 58 - {{ $owner := index $.DidHandleMap .OwnerDid }} 59 58 {{ $bgColor := "bg-gray-800 dark:bg-gray-700" }} 60 59 {{ $icon := "ban" }} 61 60 ··· 76 75 </span> 77 76 78 77 <span class="ml-1"> 79 79 - {{ template "user/fragments/picHandleLink" $owner }} 78 78 + {{ template "user/fragments/picHandleLink" .OwnerDid }} 80 79 </span> 81 80 82 81 <span class="before:content-['·']"> ··· 145 144 <a href="/{{ $root.RepoInfo.FullName }}/pulls/{{ $pull.PullId }}" class="no-underline hover:no-underline hover:bg-gray-100/25 hover:dark:bg-gray-700/25"> 146 145 <div class="flex gap-2 items-center px-6"> 147 146 <div class="flex-grow min-w-0 w-full py-2"> 148 148 - {{ template "repo/pulls/fragments/summarizedHeader" (list $pull $pipeline) }} 147 147 + {{ template "repo/pulls/fragments/summarizedPullHeader" (list $pull $pipeline) }} 149 148 </div> 150 149 </div> 151 150 </a>

+3 -1

appview/pages/templates/repo/settings/general.html

··· 8 8 <div class="col-span-1 md:col-span-3 flex flex-col gap-6 p-2"> 9 9 {{ template "branchSettings" . }} 10 10 {{ template "deleteRepo" . }} 11 11 + <div id="operation-error" class="text-red-500 dark:text-red-400"></div> 11 12 </div> 12 13 </section> 13 14 {{ end }} ··· 22 23 unless you specify a different branch. 23 24 </p> 24 25 </div> 25 25 - <form hx-put="/{{ $.RepoInfo.FullName }}/settings/branches/default" class="col-span-1 md:col-span-1 md:justify-self-end group flex gap-2 items-stretch"> 26 26 + <form hx-put="/{{ $.RepoInfo.FullName }}/settings/branches/default" hx-swap="none" class="col-span-1 md:col-span-1 md:justify-self-end group flex gap-2 items-stretch"> 26 27 <select id="branch" name="branch" required class="p-1 max-w-64 border border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700"> 27 28 <option value="" disabled selected > 28 29 Choose a default branch ··· 54 55 <button 55 56 class="btn group text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 flex gap-2 items-center" 56 57 type="button" 58 58 + hx-swap="none" 57 59 hx-delete="/{{ $.RepoInfo.FullName }}/settings/delete" 58 60 hx-confirm="Are you sure you want to delete {{ $.RepoInfo.FullName }}?"> 59 61 {{ i "trash-2" "size-4" }}

+33 -23

appview/pages/templates/repo/settings/pipelines.html

··· 20 20 <div class="col-span-1 md:col-span-2"> 21 21 <h2 class="text-sm pb-2 uppercase font-bold">Spindle</h2> 22 22 <p class="text-gray-500 dark:text-gray-400"> 23 23 - Choose a spindle to execute your workflows on. Spindles can be 24 24 - selfhosted, 23 23 + Choose a spindle to execute your workflows on. Only repository owners 24 24 + can configure spindles. Spindles can be selfhosted, 25 25 <a class="text-gray-500 dark:text-gray-400 underline" href="https://tangled.sh/@tangled.sh/core/blob/master/docs/spindle/hosting.md"> 26 26 click to learn more. 27 27 </a> 28 28 </p> 29 29 </div> 30 30 - <form hx-post="/{{ $.RepoInfo.FullName }}/settings/spindle" class="col-span-1 md:col-span-1 md:justify-self-end group flex gap-2 items-stretch"> 31 31 - <select 32 32 - id="spindle" 33 33 - name="spindle" 34 34 - required 35 35 - class="p-1 max-w-64 border border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700" 36 36 - {{ if not $.RepoInfo.Roles.IsOwner }}disabled{{ end }}> 37 37 - <option value="" disabled selected > 38 38 - Choose a spindle 39 39 - </option> 40 40 - {{ range $.Spindles }} 41 41 - <option value="{{ . }}" class="py-1" {{ if eq . $.CurrentSpindle }}selected{{ end }}> 42 42 - {{ . }} 30 30 + {{ if not $.RepoInfo.Roles.IsOwner }} 31 31 + <div class="col-span-1 md:col-span-1 md:justify-self-end group flex gap-2 items-stretch"> 32 32 + {{ or $.CurrentSpindle "No spindle configured" }} 33 33 + </div> 34 34 + {{ else }} 35 35 + <form hx-post="/{{ $.RepoInfo.FullName }}/settings/spindle" class="col-span-1 md:col-span-1 md:justify-self-end group flex gap-2 items-stretch"> 36 36 + <select 37 37 + id="spindle" 38 38 + name="spindle" 39 39 + required 40 40 + class="p-1 max-w-64 border border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700"> 41 41 + {{/* For some reason, we can't use an empty string in a <select> in all scenarios unless it is preceded by a disabled select?? No idea, could just be a Firefox thing? */}} 42 42 + <option value="[[none]]" class="py-1" {{ if not $.CurrentSpindle }}selected{{ end }}> 43 43 + {{ if not $.CurrentSpindle }} 44 44 + Choose a spindle 45 45 + {{ else }} 46 46 + Disable pipelines 47 47 + {{ end }} 43 48 </option> 44 44 - {{ end }} 45 45 - </select> 46 46 - <button class="btn flex gap-2 items-center" type="submit" {{ if not $.RepoInfo.Roles.IsOwner }}disabled{{ end }}> 47 47 - {{ i "check" "size-4" }} 48 48 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 49 49 - </button> 50 50 - </form> 49 49 + {{ range $.Spindles }} 50 50 + <option value="{{ . }}" class="py-1" {{ if eq . $.CurrentSpindle }}selected{{ end }}> 51 51 + {{ . }} 52 52 + </option> 53 53 + {{ end }} 54 54 + </select> 55 55 + <button class="btn flex gap-2 items-center" type="submit" {{ if not $.RepoInfo.Roles.IsOwner }}disabled{{ end }}> 56 56 + {{ i "check" "size-4" }} 57 57 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 58 58 + </button> 59 59 + </form> 60 60 + {{ end }} 51 61 </div> 52 62 {{ end }} 53 63 ··· 77 87 {{ end }} 78 88 79 89 {{ define "addSecretButton" }} 80 80 - <button 90 90 + <button 81 91 class="btn flex items-center gap-2" 82 92 popovertarget="add-secret-modal" 83 93 popovertargetaction="toggle">

-168

appview/pages/templates/repo/settings.html

··· 1 1 - {{ define "title" }}settings &middot; {{ .RepoInfo.FullName }}{{ end }} 2 2 - 3 3 - {{ define "repoContent" }} 4 4 - {{ template "collaboratorSettings" . }} 5 5 - {{ template "branchSettings" . }} 6 6 - {{ template "dangerZone" . }} 7 7 - {{ template "spindleSelector" . }} 8 8 - {{ template "spindleSecrets" . }} 9 9 - {{ end }} 10 10 - 11 11 - {{ define "collaboratorSettings" }} 12 12 - <header class="font-bold text-sm mb-4 uppercase dark:text-white"> 13 13 - Collaborators 14 14 - </header> 15 15 - 16 16 - <div id="collaborator-list" class="flex flex-col gap-2 mb-2"> 17 17 - {{ range .Collaborators }} 18 18 - <div id="collaborator" class="mb-2"> 19 19 - <a 20 20 - href="/{{ didOrHandle .Did .Handle }}" 21 21 - class="no-underline hover:underline text-black dark:text-white" 22 22 - > 23 23 - {{ didOrHandle .Did .Handle }} 24 24 - </a> 25 25 - <div> 26 26 - <span class="text-sm text-gray-500 dark:text-gray-400"> 27 27 - {{ .Role }} 28 28 - </span> 29 29 - </div> 30 30 - </div> 31 31 - {{ end }} 32 32 - </div> 33 33 - 34 34 - {{ if .RepoInfo.Roles.CollaboratorInviteAllowed }} 35 35 - <form 36 36 - hx-put="/{{ $.RepoInfo.FullName }}/settings/collaborator" 37 37 - class="group" 38 38 - > 39 39 - <label for="collaborator" class="dark:text-white"> 40 40 - add collaborator 41 41 - </label> 42 42 - <input 43 43 - type="text" 44 44 - id="collaborator" 45 45 - name="collaborator" 46 46 - required 47 47 - class="dark:bg-gray-700 dark:text-white" 48 48 - placeholder="enter did or handle"> 49 49 - <button class="btn my-2 flex gap-2 items-center dark:text-white dark:hover:bg-gray-700" type="text"> 50 50 - <span>add</span> 51 51 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 52 52 - </button> 53 53 - </form> 54 54 - {{ end }} 55 55 - {{ end }} 56 56 - 57 57 - {{ define "dangerZone" }} 58 58 - {{ if .RepoInfo.Roles.RepoDeleteAllowed }} 59 59 - <form 60 60 - hx-confirm="Are you sure you want to delete this repository?" 61 61 - hx-delete="/{{ $.RepoInfo.FullName }}/settings/delete" 62 62 - class="mt-6" 63 63 - hx-indicator="#delete-repo-spinner"> 64 64 - <label for="branch">delete repository</label> 65 65 - <button class="btn my-2 flex items-center" type="text"> 66 66 - <span>delete</span> 67 67 - <span id="delete-repo-spinner" class="group"> 68 68 - {{ i "loader-circle" "ml-2 w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 69 69 - </span> 70 70 - </button> 71 71 - <span> 72 72 - Deleting a repository is irreversible and permanent. 73 73 - </span> 74 74 - </form> 75 75 - {{ end }} 76 76 - {{ end }} 77 77 - 78 78 - {{ define "branchSettings" }} 79 79 - <form hx-put="/{{ $.RepoInfo.FullName }}/settings/branches/default" class="mt-6 group"> 80 80 - <label for="branch">default branch</label> 81 81 - <div class="flex gap-2 items-center"> 82 82 - <select id="branch" name="branch" required class="p-1 border border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700"> 83 83 - <option value="" disabled selected > 84 84 - Choose a default branch 85 85 - </option> 86 86 - {{ range .Branches }} 87 87 - <option value="{{ .Name }}" class="py-1" {{ if .IsDefault }}selected{{ end }} > 88 88 - {{ .Name }} 89 89 - </option> 90 90 - {{ end }} 91 91 - </select> 92 92 - <button class="btn my-2 flex gap-2 items-center" type="submit"> 93 93 - <span>save</span> 94 94 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 95 95 - </button> 96 96 - </div> 97 97 - </form> 98 98 - {{ end }} 99 99 - 100 100 - {{ define "spindleSelector" }} 101 101 - {{ if .RepoInfo.Roles.IsOwner }} 102 102 - <form hx-post="/{{ $.RepoInfo.FullName }}/settings/spindle" class="mt-6 group" > 103 103 - <label for="spindle">spindle</label> 104 104 - <div class="flex gap-2 items-center"> 105 105 - <select id="spindle" name="spindle" required class="p-1 border border-gray-200 bg-white dark:bg-gray-800 dark:text-white dark:border-gray-700"> 106 106 - <option value="" selected > 107 107 - None 108 108 - </option> 109 109 - {{ range .Spindles }} 110 110 - <option value="{{ . }}" class="py-1" {{ if eq . $.CurrentSpindle }}selected{{ end }}> 111 111 - {{ . }} 112 112 - </option> 113 113 - {{ end }} 114 114 - </select> 115 115 - <button class="btn my-2 flex gap-2 items-center" type="submit"> 116 116 - <span>save</span> 117 117 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 118 118 - </button> 119 119 - </div> 120 120 - </form> 121 121 - {{ end }} 122 122 - {{ end }} 123 123 - 124 124 - {{ define "spindleSecrets" }} 125 125 - {{ if $.CurrentSpindle }} 126 126 - <header class="font-bold text-sm mb-4 uppercase dark:text-white"> 127 127 - Secrets 128 128 - </header> 129 129 - 130 130 - <div id="secret-list" class="flex flex-col gap-2 mb-2"> 131 131 - {{ range $idx, $secret := .Secrets }} 132 132 - {{ with $secret }} 133 133 - <div id="secret-{{$idx}}" class="mb-2"> 134 134 - {{ .Key }} created on {{ .CreatedAt }} by {{ .CreatedBy }} 135 135 - </div> 136 136 - {{ end }} 137 137 - {{ end }} 138 138 - </div> 139 139 - <form 140 140 - hx-put="/{{ $.RepoInfo.FullName }}/settings/secrets" 141 141 - class="mt-6" 142 142 - hx-indicator="#add-secret-spinner"> 143 143 - <label for="key">secret key</label> 144 144 - <input 145 145 - type="text" 146 146 - id="key" 147 147 - name="key" 148 148 - required 149 149 - class="dark:bg-gray-700 dark:text-white" 150 150 - placeholder="SECRET_KEY" /> 151 151 - <label for="value">secret value</label> 152 152 - <input 153 153 - type="text" 154 154 - id="value" 155 155 - name="value" 156 156 - required 157 157 - class="dark:bg-gray-700 dark:text-white" 158 158 - placeholder="SECRET VALUE" /> 159 159 - 160 160 - <button class="btn my-2 flex items-center" type="text"> 161 161 - <span>add</span> 162 162 - <span id="add-secret-spinner" class="group"> 163 163 - {{ i "loader-circle" "ml-2 w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 164 164 - </span> 165 165 - </button> 166 166 - </form> 167 167 - {{ end }} 168 168 - {{ end }}

+8 -2

appview/pages/templates/repo/tags.html

··· 97 97 {{ $isPushAllowed := $root.RepoInfo.Roles.IsPushAllowed }} 98 98 {{ $artifacts := index $root.ArtifactMap $tag.Tag.Hash }} 99 99 100 100 - {{ if or (gt (len $artifacts) 0) $isPushAllowed }} 101 100 <h2 class="my-4 text-sm text-left text-gray-700 dark:text-gray-300 uppercase font-bold">artifacts</h2> 102 101 <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700"> 103 102 {{ range $artifact := $artifacts }} 104 103 {{ $args := dict "LoggedInUser" $root.LoggedInUser "RepoInfo" $root.RepoInfo "Artifact" $artifact }} 105 104 {{ template "repo/fragments/artifact" $args }} 106 105 {{ end }} 106 106 + <div id="artifact-git-source" class="flex items-center justify-between p-2 border-b border-gray-200 dark:border-gray-700"> 107 107 + <div id="left-side" class="flex items-center gap-2 min-w-0 max-w-[60%]"> 108 108 + {{ i "archive" "w-4 h-4" }} 109 109 + <a href="/{{ $root.RepoInfo.FullName }}/archive/{{ pathEscape (print "refs/tags/" $tag.Name) }}" class="no-underline hover:no-underline"> 110 110 + Source code (.tar.gz) 111 111 + </a> 112 112 + </div> 113 113 + </div> 107 114 {{ if $isPushAllowed }} 108 115 {{ block "uploadArtifact" (list $root $tag) }} {{ end }} 109 116 {{ end }} 110 117 </div> 111 111 - {{ end }} 112 118 {{ end }} 113 119 114 120 {{ define "uploadArtifact" }}

+8 -7

appview/pages/templates/repo/tree.html

··· 25 25 <div class="flex flex-col md:flex-row md:justify-between gap-2"> 26 26 <div id="breadcrumbs" class="overflow-x-auto whitespace-nowrap text-gray-400 dark:text-gray-500"> 27 27 {{ range .BreadCrumbs }} 28 28 - <a href="{{ index . 1}}" class="text-bold text-gray-500 dark:text-gray-400 {{ $linkstyle }}">{{ pathUnescape (index . 0) }}</a> / 28 28 + <a href="{{ index . 1 }}" class="text-bold text-gray-500 dark:text-gray-400 {{ $linkstyle }}">{{ pathUnescape (index . 0) }}</a> / 29 29 {{ end }} 30 30 </div> 31 31 <div id="dir-info" class="text-gray-500 dark:text-gray-400 text-xs md:text-sm flex flex-wrap items-center gap-1 md:gap-0"> 32 32 {{ $stats := .TreeStats }} 33 33 34 34 - <span>at <a href="/{{ $.RepoInfo.FullName }}/tree/{{ $.Ref }}">{{ $.Ref }}</a></span> 34 34 + <span>at <a href="/{{ $.RepoInfo.FullName }}/tree/{{ pathEscape $.Ref }}">{{ $.Ref }}</a></span> 35 35 {{ if eq $stats.NumFolders 1 }} 36 36 <span class="select-none px-1 md:px-2 [&:before]:content-['·']"></span> 37 37 <span>{{ $stats.NumFolders }} folder</span> ··· 54 54 55 55 {{ range .Files }} 56 56 <div class="grid grid-cols-12 gap-4 items-center py-1"> 57 57 - <div class="col-span-6 md:col-span-3"> 58 58 - {{ $link := printf "/%s/%s/%s/%s/%s" $.RepoInfo.FullName "tree" (urlquery $.Ref) $.TreePath .Name }} 57 57 + <div class="col-span-8 md:col-span-4"> 58 58 + {{ $link := printf "/%s/%s/%s/%s/%s" $.RepoInfo.FullName "tree" (pathEscape $.Ref) $.TreePath .Name }} 59 59 {{ $icon := "folder" }} 60 60 {{ $iconStyle := "size-4 fill-current" }} 61 61 ··· 65 65 {{ end }} 66 66 <a href="{{ $link }}" class="{{ $linkstyle }}"> 67 67 <div class="flex items-center gap-2"> 68 68 - {{ i $icon $iconStyle }}{{ .Name }} 68 68 + {{ i $icon $iconStyle "flex-shrink-0" }} 69 69 + <span class="truncate">{{ .Name }}</span> 69 70 </div> 70 71 </a> 71 72 </div> 72 73 73 73 - <div class="col-span-0 md:col-span-7 hidden md:block overflow-hidden"> 74 74 + <div class="col-span-0 md:col-span-6 hidden md:block overflow-hidden"> 74 75 {{ with .LastCommit }} 75 76 <a href="/{{ $.RepoInfo.FullName }}/commit/{{ .Hash }}" class="text-gray-500 dark:text-gray-400 block truncate">{{ .Message }}</a> 76 77 {{ end }} 77 78 </div> 78 79 79 79 - <div class="col-span-6 md:col-span-2 text-right"> 80 80 + <div class="col-span-4 md:col-span-2 text-sm text-right"> 80 81 {{ with .LastCommit }} 81 82 <a href="/{{ $.RepoInfo.FullName }}/commit/{{ .Hash }}" class="text-gray-500 dark:text-gray-400">{{ template "repo/fragments/time" .When }}</a> 82 83 {{ end }}

-192

appview/pages/templates/settings.html

··· 1 1 - {{ define "title" }}settings{{ end }} 2 2 - 3 3 - {{ define "content" }} 4 4 - <div class="p-6"> 5 5 - <p class="text-xl font-bold dark:text-white">Settings</p> 6 6 - </div> 7 7 - <div class="flex flex-col"> 8 8 - {{ block "profile" . }} {{ end }} 9 9 - {{ block "keys" . }} {{ end }} 10 10 - {{ block "emails" . }} {{ end }} 11 11 - </div> 12 12 - {{ end }} 13 13 - 14 14 - {{ define "profile" }} 15 15 - <h2 class="text-sm font-bold py-2 px-6 uppercase dark:text-gray-300">profile</h2> 16 16 - <section class="rounded bg-white dark:bg-gray-800 drop-shadow-sm px-6 py-4 mb-6 w-full lg:w-fit"> 17 17 - <dl class="grid grid-cols-[auto_1fr] gap-x-4 dark:text-gray-200"> 18 18 - {{ if .LoggedInUser.Handle }} 19 19 - <dt class="font-bold">handle</dt> 20 20 - <dd>@{{ .LoggedInUser.Handle }}</dd> 21 21 - {{ end }} 22 22 - <dt class="font-bold">did</dt> 23 23 - <dd>{{ .LoggedInUser.Did }}</dd> 24 24 - <dt class="font-bold">pds</dt> 25 25 - <dd>{{ .LoggedInUser.Pds }}</dd> 26 26 - </dl> 27 27 - </section> 28 28 - {{ end }} 29 29 - 30 30 - {{ define "keys" }} 31 31 - <h2 class="text-sm font-bold py-2 px-6 uppercase dark:text-gray-300">ssh keys</h2> 32 32 - <section class="rounded bg-white dark:bg-gray-800 drop-shadow-sm px-6 py-4 mb-6 w-full lg:w-fit"> 33 33 - <p class="mb-8 dark:text-gray-300">SSH public keys added here will be broadcasted to knots that you are a member of, <br> allowing you to push to repositories there.</p> 34 34 - <div id="key-list" class="flex flex-col gap-6 mb-8"> 35 35 - {{ range $index, $key := .PubKeys }} 36 36 - <div class="grid grid-cols-[minmax(0,1fr)_auto] items-center gap-4"> 37 37 - <div class="flex flex-col gap-1"> 38 38 - <div class="inline-flex items-center gap-4"> 39 39 - {{ i "key" "w-3 h-3 dark:text-gray-300" }} 40 40 - <p class="font-bold dark:text-white">{{ .Name }}</p> 41 41 - </div> 42 42 - <p class="text-sm text-gray-500 dark:text-gray-400">added {{ template "repo/fragments/time" .Created }}</p> 43 43 - <div class="overflow-x-auto whitespace-nowrap flex-1 max-w-full"> 44 44 - <code class="text-sm text-gray-500 dark:text-gray-400">{{ .Key }}</code> 45 45 - </div> 46 46 - </div> 47 47 - <button 48 48 - class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 49 49 - title="Delete key" 50 50 - hx-delete="/settings/keys?name={{urlquery .Name}}&rkey={{urlquery .Rkey}}&key={{urlquery .Key}}" 51 51 - hx-confirm="Are you sure you want to delete the key '{{ .Name }}'?" 52 52 - > 53 53 - {{ i "trash-2" "w-5 h-5" }} 54 54 - <span class="hidden md:inline">delete</span> 55 55 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 56 56 - </button> 57 57 - </div> 58 58 - {{ end }} 59 59 - </div> 60 60 - <form 61 61 - hx-put="/settings/keys" 62 62 - hx-indicator="#add-sshkey-spinner" 63 63 - hx-swap="none" 64 64 - class="max-w-2xl mb-8 space-y-4" 65 65 - > 66 66 - <input 67 67 - type="text" 68 68 - id="name" 69 69 - name="name" 70 70 - placeholder="key name" 71 71 - required 72 72 - class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400"/> 73 73 - 74 74 - <input 75 75 - id="key" 76 76 - name="key" 77 77 - placeholder="ssh-rsa AAAAAA..." 78 78 - required 79 79 - class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400"/> 80 80 - 81 81 - <button class="btn dark:bg-gray-700 dark:text-white dark:hover:bg-gray-600 flex gap-2 items-center" type="submit"> 82 82 - <span>add key</span> 83 83 - <span id="add-sshkey-spinner" class="group"> 84 84 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 85 85 - </span> 86 86 - </button> 87 87 - 88 88 - <div id="settings-keys" class="error dark:text-red-400"></div> 89 89 - </form> 90 90 - </section> 91 91 - {{ end }} 92 92 - 93 93 - {{ define "emails" }} 94 94 - <h2 class="text-sm font-bold py-2 px-6 uppercase dark:text-gray-300">email addresses</h2> 95 95 - <section class="rounded bg-white dark:bg-gray-800 drop-shadow-sm px-6 py-4 mb-6 w-full lg:w-fit"> 96 96 - <p class="mb-8 dark:text-gray-300">Commits authored using emails listed here will be associated with your Tangled profile.</p> 97 97 - <div id="email-list" class="flex flex-col gap-6 mb-8"> 98 98 - {{ range $index, $email := .Emails }} 99 99 - <div class="grid grid-cols-[minmax(0,1fr)_auto] items-center gap-4"> 100 100 - <div class="flex flex-col gap-2"> 101 101 - <div class="inline-flex items-center gap-4"> 102 102 - {{ i "mail" "w-3 h-3 dark:text-gray-300" }} 103 103 - <p class="font-bold dark:text-white">{{ .Address }}</p> 104 104 - <div class="inline-flex items-center gap-1"> 105 105 - {{ if .Verified }} 106 106 - <span class="text-xs bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 px-2 py-1 rounded">verified</span> 107 107 - {{ else }} 108 108 - <span class="text-xs bg-yellow-100 text-yellow-800 dark:bg-yellow-900 dark:text-yellow-200 px-2 py-1 rounded">unverified</span> 109 109 - {{ end }} 110 110 - {{ if .Primary }} 111 111 - <span class="text-xs bg-blue-100 text-blue-800 dark:bg-blue-900 dark:text-blue-200 px-2 py-1 rounded">primary</span> 112 112 - {{ end }} 113 113 - </div> 114 114 - </div> 115 115 - <p class="text-sm text-gray-500 dark:text-gray-400">added {{ template "repo/fragments/time" .CreatedAt }}</p> 116 116 - </div> 117 117 - <div class="flex gap-2 items-center"> 118 118 - {{ if not .Verified }} 119 119 - <button 120 120 - class="btn flex gap-2 dark:bg-gray-700 dark:text-white dark:hover:bg-gray-600" 121 121 - hx-post="/settings/emails/verify/resend" 122 122 - hx-swap="none" 123 123 - href="#" 124 124 - hx-vals='{"email": "{{ .Address }}"}'> 125 125 - {{ i "rotate-cw" "w-5 h-5" }} 126 126 - <span class="hidden md:inline">resend</span> 127 127 - </button> 128 128 - {{ end }} 129 129 - {{ if and (not .Primary) .Verified }} 130 130 - <a 131 131 - class="text-sm dark:text-blue-400 dark:hover:text-blue-300" 132 132 - hx-post="/settings/emails/primary" 133 133 - hx-swap="none" 134 134 - href="#" 135 135 - hx-vals='{"email": "{{ .Address }}"}'> 136 136 - set as primary 137 137 - </a> 138 138 - {{ end }} 139 139 - {{ if not .Primary }} 140 140 - <form 141 141 - hx-delete="/settings/emails" 142 142 - hx-confirm="Are you sure you wish to delete the email '{{ .Address }}'?" 143 143 - hx-indicator="#delete-email-{{ $index }}-spinner" 144 144 - > 145 145 - <input type="hidden" name="email" value="{{ .Address }}"> 146 146 - <button 147 147 - class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 flex gap-2 items-center" 148 148 - title="Delete email" 149 149 - type="submit" 150 150 - > 151 151 - {{ i "trash-2" "w-5 h-5" }} 152 152 - <span class="hidden md:inline">delete</span> 153 153 - <span id="delete-email-{{ $index }}-spinner" class="group"> 154 154 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 155 155 - </span> 156 156 - </button> 157 157 - </form> 158 158 - {{ end }} 159 159 - </div> 160 160 - </div> 161 161 - {{ end }} 162 162 - </div> 163 163 - <form 164 164 - hx-put="/settings/emails" 165 165 - hx-swap="none" 166 166 - class="max-w-2xl mb-8 space-y-4" 167 167 - hx-indicator="#add-email-spinner" 168 168 - > 169 169 - <input 170 170 - type="email" 171 171 - id="email" 172 172 - name="email" 173 173 - placeholder="your@email.com" 174 174 - required 175 175 - class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400" 176 176 - > 177 177 - 178 178 - <button 179 179 - class="btn dark:bg-gray-700 dark:text-white dark:hover:bg-gray-600 flex gap-2 items-center" 180 180 - type="submit" 181 181 - > 182 182 - <span>add email</span> 183 183 - <span id="add-email-spinner" class="group"> 184 184 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 185 185 - </span> 186 186 - </button> 187 187 - 188 188 - <div id="settings-emails-error" class="error dark:text-red-400"></div> 189 189 - <div id="settings-emails-success" class="success dark:text-green-400"></div> 190 190 - </form> 191 191 - </section> 192 192 - {{ end }}

+2 -4

appview/pages/templates/spindles/dashboard.html

··· 42 42 <div> 43 43 <div class="flex justify-between items-center"> 44 44 <div class="flex items-center gap-2"> 45 45 - {{ i "user" "size-4" }} 46 46 - {{ $user := index $.DidHandleMap . }} 47 47 - <a href="/{{ $user }}">{{ $user }}</a> 45 45 + {{ template "user/fragments/picHandleLink" . }} 48 46 </div> 49 47 {{ if ne $.LoggedInUser.Did . }} 50 48 {{ block "removeMemberButton" (list $ . ) }} {{ end }} ··· 109 107 hx-post="/spindles/{{ $root.Spindle.Instance }}/remove" 110 108 hx-swap="none" 111 109 hx-vals='{"member": "{{$member}}" }' 112 112 - hx-confirm="Are you sure you want to remove {{ index $root.DidHandleMap $member }} from this instance?" 110 110 + hx-confirm="Are you sure you want to remove {{ resolve $member }} from this instance?" 113 111 > 114 112 {{ i "user-minus" "w-4 h-4" }} 115 113 remove

+2 -2

appview/pages/templates/spindles/fragments/addMemberModal.html

··· 14 14 id="add-member-{{ .Instance }}" 15 15 popover 16 16 class="bg-white w-full md:w-96 dark:bg-gray-800 p-4 rounded border border-gray-200 dark:border-gray-700 drop-shadow dark:text-white backdrop:bg-gray-400/50 dark:backdrop:bg-gray-800/50"> 17 17 - {{ block "addMemberPopover" . }} {{ end }} 17 17 + {{ block "addSpindleMemberPopover" . }} {{ end }} 18 18 </div> 19 19 {{ end }} 20 20 21 21 - {{ define "addMemberPopover" }} 21 21 + {{ define "addSpindleMemberPopover" }} 22 22 <form 23 23 hx-post="/spindles/{{ .Instance }}/add" 24 24 hx-indicator="#spinner"

+17 -10

appview/pages/templates/spindles/fragments/spindleListing.html

··· 1 1 {{ define "spindles/fragments/spindleListing" }} 2 2 <div id="spindle-{{.Id}}" class="flex items-center justify-between p-2 border-b border-gray-200 dark:border-gray-700"> 3 3 - {{ block "leftSide" . }} {{ end }} 4 4 - {{ block "rightSide" . }} {{ end }} 3 3 + {{ block "spindleLeftSide" . }} {{ end }} 4 4 + {{ block "spindleRightSide" . }} {{ end }} 5 5 </div> 6 6 {{ end }} 7 7 8 8 - {{ define "leftSide" }} 8 8 + {{ define "spindleLeftSide" }} 9 9 {{ if .Verified }} 10 10 <a href="/spindles/{{ .Instance }}" class="hover:no-underline flex items-center gap-2 min-w-0 max-w-[60%]"> 11 11 {{ i "hard-drive" "w-4 h-4" }} 12 12 - {{ .Instance }} 12 12 + <span class="hover:underline"> 13 13 + {{ .Instance }} 14 14 + </span> 13 15 <span class="text-gray-500"> 14 16 {{ template "repo/fragments/shortTimeAgo" .Created }} 15 17 </span> ··· 25 27 {{ end }} 26 28 {{ end }} 27 29 28 28 - {{ define "rightSide" }} 30 30 + {{ define "spindleRightSide" }} 29 31 <div id="right-side" class="flex gap-2"> 30 32 {{ $style := "px-2 py-1 rounded flex items-center flex-shrink-0 gap-2 text-sm" }} 31 31 - {{ if .Verified }} 33 33 + 34 34 + {{ if .NeedsUpgrade }} 35 35 + <span class="bg-yellow-100 text-yellow-800 dark:bg-yellow-900 dark:text-yellow-200 {{$style}}"> {{ i "shield-alert" "w-4 h-4" }} needs upgrade </span> 36 36 + {{ block "spindleRetryButton" . }} {{ end }} 37 37 + {{ else if .Verified }} 32 38 <span class="bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 {{$style}}">{{ i "shield-check" "w-4 h-4" }} verified</span> 33 39 {{ template "spindles/fragments/addMemberModal" . }} 34 40 {{ else }} 35 41 <span class="bg-red-100 text-red-800 dark:bg-red-900 dark:text-red-200 {{$style}}">{{ i "shield-off" "w-4 h-4" }} unverified</span> 36 36 - {{ block "retryButton" . }} {{ end }} 42 42 + {{ block "spindleRetryButton" . }} {{ end }} 37 43 {{ end }} 38 38 - {{ block "deleteButton" . }} {{ end }} 44 44 + 45 45 + {{ block "spindleDeleteButton" . }} {{ end }} 39 46 </div> 40 47 {{ end }} 41 48 42 42 - {{ define "deleteButton" }} 49 49 + {{ define "spindleDeleteButton" }} 43 50 <button 44 51 class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 45 52 title="Delete spindle" ··· 55 62 {{ end }} 56 63 57 64 58 58 - {{ define "retryButton" }} 65 65 + {{ define "spindleRetryButton" }} 59 66 <button 60 67 class="btn gap-2 group" 61 68 title="Retry spindle verification"

+10 -9

appview/pages/templates/spindles/index.html

··· 1 1 {{ define "title" }}spindles{{ end }} 2 2 3 3 {{ define "content" }} 4 4 - <div class="px-6 py-4"> 5 5 - <h1 class="text-xl font-bold dark:text-white">Spindles</h1> 4 4 + <div class="px-6 py-4 flex items-center justify-between gap-4 align-bottom"> 5 5 + <h1 class="text-xl font-bold dark:text-white">Spindles</h1> 6 6 + <span class="flex items-center gap-1"> 7 7 + {{ i "book" "w-3 h-3" }} 8 8 + <a href="https://tangled.sh/@tangled.sh/core/blob/master/docs/spindle/hosting.md">docs</a> 9 9 + </span> 6 10 </div> 7 11 8 12 <section class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> ··· 15 19 {{ end }} 16 20 17 21 {{ define "about" }} 18 18 - <section class="rounded flex flex-col gap-2"> 19 19 - <p class="dark:text-gray-300"> 20 20 - Spindles are small CI runners. 21 21 - <a href="https://tangled.sh/@tangled.sh/core/blob/master/docs/spindle/hosting.md"> 22 22 - Checkout the documentation if you're interested in self-hosting. 23 23 - </a> 22 22 + <section class="rounded flex items-center gap-2"> 23 23 + <p class="text-gray-500 dark:text-gray-400"> 24 24 + Spindles are small CI runners. 24 25 </p> 25 25 - </section> 26 26 + </section> 26 27 {{ end }} 27 28 28 29 {{ define "list" }}

+57

appview/pages/templates/strings/dashboard.html

··· 1 1 + {{ define "title" }}strings by {{ or .Card.UserHandle .Card.UserDid }}{{ end }} 2 2 + 3 3 + {{ define "extrameta" }} 4 4 + <meta property="og:title" content="{{ or .Card.UserHandle .Card.UserDid }}" /> 5 5 + <meta property="og:type" content="profile" /> 6 6 + <meta property="og:url" content="https://tangled.sh/{{ or .Card.UserHandle .Card.UserDid }}" /> 7 7 + <meta property="og:description" content="{{ or .Card.Profile.Description .Card.UserHandle .Card.UserDid }}" /> 8 8 + {{ end }} 9 9 + 10 10 + 11 11 + {{ define "content" }} 12 12 + <div class="grid grid-cols-1 md:grid-cols-11 gap-4"> 13 13 + <div class="md:col-span-3 order-1 md:order-1"> 14 14 + {{ template "user/fragments/profileCard" .Card }} 15 15 + </div> 16 16 + <div id="all-strings" class="md:col-span-8 order-2 md:order-2"> 17 17 + {{ block "allStrings" . }}{{ end }} 18 18 + </div> 19 19 + </div> 20 20 + {{ end }} 21 21 + 22 22 + {{ define "allStrings" }} 23 23 + <p class="text-sm font-bold p-2 dark:text-white">ALL STRINGS</p> 24 24 + <div id="strings" class="grid grid-cols-1 gap-4 mb-6"> 25 25 + {{ range .Strings }} 26 26 + {{ template "singleString" (list $ .) }} 27 27 + {{ else }} 28 28 + <p class="px-6 dark:text-white">This user does not have any strings yet.</p> 29 29 + {{ end }} 30 30 + </div> 31 31 + {{ end }} 32 32 + 33 33 + {{ define "singleString" }} 34 34 + {{ $root := index . 0 }} 35 35 + {{ $s := index . 1 }} 36 36 + <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800"> 37 37 + <div class="font-medium dark:text-white flex gap-2 items-center"> 38 38 + <a href="/strings/{{ or $root.Card.UserHandle $root.Card.UserDid }}/{{ $s.Rkey }}">{{ $s.Filename }}</a> 39 39 + </div> 40 40 + {{ with $s.Description }} 41 41 + <div class="text-gray-600 dark:text-gray-300 text-sm"> 42 42 + {{ . }} 43 43 + </div> 44 44 + {{ end }} 45 45 + 46 46 + {{ $stat := $s.Stats }} 47 47 + <div class="text-gray-400 pt-4 text-sm font-mono inline-flex gap-2 mt-auto"> 48 48 + <span>{{ $stat.LineCount }} line{{if ne $stat.LineCount 1}}s{{end}}</span> 49 49 + <span class="select-none [&:before]:content-['·']"></span> 50 50 + {{ with $s.Edited }} 51 51 + <span>edited {{ template "repo/fragments/shortTimeAgo" . }}</span> 52 52 + {{ else }} 53 53 + {{ template "repo/fragments/shortTimeAgo" $s.Created }} 54 54 + {{ end }} 55 55 + </div> 56 56 + </div> 57 57 + {{ end }}

+90

appview/pages/templates/strings/fragments/form.html

··· 1 1 + {{ define "strings/fragments/form" }} 2 2 + <form 3 3 + {{ if eq .Action "new" }} 4 4 + hx-post="/strings/new" 5 5 + {{ else }} 6 6 + hx-post="/strings/{{.String.Did}}/{{.String.Rkey}}/edit" 7 7 + {{ end }} 8 8 + hx-indicator="#new-button" 9 9 + class="p-6 pb-4 dark:text-white flex flex-col gap-2 bg-white dark:bg-gray-800 drop-shadow-sm rounded" 10 10 + hx-swap="none"> 11 11 + <div class="flex flex-col md:flex-row md:items-center gap-2"> 12 12 + <input 13 13 + type="text" 14 14 + id="filename" 15 15 + name="filename" 16 16 + placeholder="Filename" 17 17 + required 18 18 + value="{{ .String.Filename }}" 19 19 + class="md:max-w-64 dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400 px-3 py-2 border rounded" 20 20 + > 21 21 + <input 22 22 + type="text" 23 23 + id="description" 24 24 + name="description" 25 25 + value="{{ .String.Description }}" 26 26 + placeholder="Description ..." 27 27 + class="flex-1 dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400 px-3 py-2 border rounded" 28 28 + > 29 29 + </div> 30 30 + <textarea 31 31 + name="content" 32 32 + id="content-textarea" 33 33 + wrap="off" 34 34 + class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400 font-mono" 35 35 + rows="20" 36 36 + spellcheck="false" 37 37 + placeholder="Paste your string here!" 38 38 + required>{{ .String.Contents }}</textarea> 39 39 + <div class="flex justify-between items-center"> 40 40 + <div id="content-stats" class="text-sm text-gray-500 dark:text-gray-400"> 41 41 + <span id="line-count">0 lines</span> 42 42 + <span class="select-none px-1 [&:before]:content-['·']"></span> 43 43 + <span id="byte-count">0 bytes</span> 44 44 + </div> 45 45 + <div id="actions" class="flex gap-2 items-center"> 46 46 + {{ if eq .Action "edit" }} 47 47 + <a class="btn flex items-center gap-2 no-underline hover:no-underline p-2 group text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 " 48 48 + href="/strings/{{ .String.Did }}/{{ .String.Rkey }}"> 49 49 + {{ i "x" "size-4" }} 50 50 + <span class="hidden md:inline">cancel</span> 51 51 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 52 52 + </a> 53 53 + {{ end }} 54 54 + <button 55 55 + type="submit" 56 56 + id="new-button" 57 57 + class="w-fit btn-create rounded flex items-center py-0 dark:bg-gray-700 dark:text-white dark:hover:bg-gray-600 group" 58 58 + > 59 59 + <span class="inline-flex items-center gap-2"> 60 60 + {{ i "arrow-up" "w-4 h-4" }} 61 61 + publish 62 62 + </span> 63 63 + <span class="pl-2 hidden group-[.htmx-request]:inline"> 64 64 + {{ i "loader-circle" "w-4 h-4 animate-spin" }} 65 65 + </span> 66 66 + </button> 67 67 + </div> 68 68 + </div> 69 69 + <script> 70 70 + (function() { 71 71 + const textarea = document.getElementById('content-textarea'); 72 72 + const lineCount = document.getElementById('line-count'); 73 73 + const byteCount = document.getElementById('byte-count'); 74 74 + function updateStats() { 75 75 + const content = textarea.value; 76 76 + const lines = content === '' ? 0 : content.split('\n').length; 77 77 + const bytes = new TextEncoder().encode(content).length; 78 78 + lineCount.textContent = `${lines} line${lines !== 1 ? 's' : ''}`; 79 79 + byteCount.textContent = `${bytes} byte${bytes !== 1 ? 's' : ''}`; 80 80 + } 81 81 + textarea.addEventListener('input', updateStats); 82 82 + textarea.addEventListener('paste', () => { 83 83 + setTimeout(updateStats, 0); 84 84 + }); 85 85 + updateStats(); 86 86 + })(); 87 87 + </script> 88 88 + <div id="error" class="error dark:text-red-400"></div> 89 89 + </form> 90 90 + {{ end }}

+13

appview/pages/templates/strings/put.html

··· 1 1 + {{ define "title" }}publish a new string{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="px-6 py-2 mb-4"> 5 5 + {{ if eq .Action "new" }} 6 6 + <p class="text-xl font-bold dark:text-white">Create a new string</p> 7 7 + <p class="">Store and share code snippets with ease.</p> 8 8 + {{ else }} 9 9 + <p class="text-xl font-bold dark:text-white">Edit string</p> 10 10 + {{ end }} 11 11 + </div> 12 12 + {{ template "strings/fragments/form" . }} 13 13 + {{ end }}

+85

appview/pages/templates/strings/string.html

··· 1 1 + {{ define "title" }}{{ .String.Filename }} · by {{ didOrHandle .Owner.DID.String .Owner.Handle.String }}{{ end }} 2 2 + 3 3 + {{ define "extrameta" }} 4 4 + {{ $ownerId := didOrHandle .Owner.DID.String .Owner.Handle.String }} 5 5 + <meta property="og:title" content="{{ .String.Filename }} · by {{ $ownerId }}" /> 6 6 + <meta property="og:type" content="object" /> 7 7 + <meta property="og:url" content="https://tangled.sh/strings/{{ $ownerId }}/{{ .String.Rkey }}" /> 8 8 + <meta property="og:description" content="{{ .String.Description }}" /> 9 9 + {{ end }} 10 10 + 11 11 + {{ define "content" }} 12 12 + {{ $ownerId := didOrHandle .Owner.DID.String .Owner.Handle.String }} 13 13 + <section id="string-header" class="mb-4 py-2 px-6 dark:text-white"> 14 14 + <div class="text-lg flex items-center justify-between"> 15 15 + <div> 16 16 + <a href="/strings/{{ $ownerId }}">{{ $ownerId }}</a> 17 17 + <span class="select-none">/</span> 18 18 + <a href="/strings/{{ $ownerId }}/{{ .String.Rkey }}" class="font-bold">{{ .String.Filename }}</a> 19 19 + </div> 20 20 + {{ if and .LoggedInUser (eq .LoggedInUser.Did .String.Did) }} 21 21 + <div class="flex gap-2 text-base"> 22 22 + <a class="btn flex items-center gap-2 no-underline hover:no-underline p-2 group" 23 23 + hx-boost="true" 24 24 + href="/strings/{{ .String.Did }}/{{ .String.Rkey }}/edit"> 25 25 + {{ i "pencil" "size-4" }} 26 26 + <span class="hidden md:inline">edit</span> 27 27 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 28 28 + </a> 29 29 + <button 30 30 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group p-2" 31 31 + title="Delete string" 32 32 + hx-delete="/strings/{{ .String.Did }}/{{ .String.Rkey }}/" 33 33 + hx-swap="none" 34 34 + hx-confirm="Are you sure you want to delete the string `{{ .String.Filename }}`?" 35 35 + > 36 36 + {{ i "trash-2" "size-4" }} 37 37 + <span class="hidden md:inline">delete</span> 38 38 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 39 39 + </button> 40 40 + </div> 41 41 + {{ end }} 42 42 + </div> 43 43 + <span> 44 44 + {{ with .String.Description }} 45 45 + {{ . }} 46 46 + {{ end }} 47 47 + </span> 48 48 + </section> 49 49 + <section class="bg-white dark:bg-gray-800 px-6 py-4 rounded relative w-full dark:text-white"> 50 50 + <div class="flex justify-between items-center text-gray-500 dark:text-gray-400 text-sm md:text-base pb-2 mb-3 text-base border-b border-gray-200 dark:border-gray-700"> 51 51 + <span> 52 52 + {{ .String.Filename }} 53 53 + <span class="select-none px-1 md:px-2 [&:before]:content-['·']"></span> 54 54 + <span> 55 55 + {{ with .String.Edited }} 56 56 + edited {{ template "repo/fragments/shortTimeAgo" . }} 57 57 + {{ else }} 58 58 + {{ template "repo/fragments/shortTimeAgo" .String.Created }} 59 59 + {{ end }} 60 60 + </span> 61 61 + </span> 62 62 + <div> 63 63 + <span>{{ .Stats.LineCount }} lines</span> 64 64 + <span class="select-none px-1 md:px-2 [&:before]:content-['·']"></span> 65 65 + <span>{{ byteFmt .Stats.ByteCount }}</span> 66 66 + <span class="select-none px-1 md:px-2 [&:before]:content-['·']"></span> 67 67 + <a href="/strings/{{ $ownerId }}/{{ .String.Rkey }}/raw">view raw</a> 68 68 + {{ if .RenderToggle }} 69 69 + <span class="select-none px-1 md:px-2 [&:before]:content-['·']"></span> 70 70 + <a href="?code={{ .ShowRendered }}" hx-boost="true"> 71 71 + view {{ if .ShowRendered }}code{{ else }}rendered{{ end }} 72 72 + </a> 73 73 + {{ end }} 74 74 + </div> 75 75 + </div> 76 76 + <div class="overflow-x-auto overflow-y-hidden relative"> 77 77 + {{ if .ShowRendered }} 78 78 + <div id="blob-contents" class="prose dark:prose-invert">{{ .RenderedContents }}</div> 79 79 + {{ else }} 80 80 + <div id="blob-contents" class="whitespace-pre peer-target:bg-yellow-200 dark:peer-target:bg-yellow-900">{{ .String.Contents | escapeHtml }}</div> 81 81 + {{ end }} 82 82 + </div> 83 83 + {{ template "fragments/multiline-select" }} 84 84 + </section> 85 85 + {{ end }}

+61

appview/pages/templates/strings/timeline.html

··· 1 1 + {{ define "title" }} all strings {{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + {{ block "timeline" $ }}{{ end }} 5 5 + {{ end }} 6 6 + 7 7 + {{ define "timeline" }} 8 8 + <div> 9 9 + <div class="p-6"> 10 10 + <p class="text-xl font-bold dark:text-white">All strings</p> 11 11 + </div> 12 12 + 13 13 + <div class="flex flex-col gap-4"> 14 14 + {{ range $i, $s := .Strings }} 15 15 + <div class="relative"> 16 16 + {{ if ne $i 0 }} 17 17 + <div class="absolute left-8 -top-4 w-px h-4 bg-gray-300 dark:bg-gray-600"></div> 18 18 + {{ end }} 19 19 + <div class="flex flex-col divide-y divide-gray-200 dark:divide-gray-700 border border-gray-200 dark:border-gray-700 rounded-sm"> 20 20 + {{ template "stringCard" $s }} 21 21 + </div> 22 22 + </div> 23 23 + {{ end }} 24 24 + </div> 25 25 + </div> 26 26 + {{ end }} 27 27 + 28 28 + {{ define "stringCard" }} 29 29 + <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800"> 30 30 + <div class="font-medium dark:text-white flex gap-2 items-center"> 31 31 + <a href="/strings/{{ resolve .Did.String }}/{{ .Rkey }}">{{ .Filename }}</a> 32 32 + </div> 33 33 + {{ with .Description }} 34 34 + <div class="text-gray-600 dark:text-gray-300 text-sm"> 35 35 + {{ . }} 36 36 + </div> 37 37 + {{ end }} 38 38 + 39 39 + {{ template "stringCardInfo" . }} 40 40 + </div> 41 41 + {{ end }} 42 42 + 43 43 + {{ define "stringCardInfo" }} 44 44 + {{ $stat := .Stats }} 45 45 + {{ $resolved := resolve .Did.String }} 46 46 + <div class="text-gray-400 pt-4 text-sm font-mono inline-flex items-center gap-2 mt-auto"> 47 47 + <a href="/strings/{{ $resolved }}" class="flex items-center"> 48 48 + {{ template "user/fragments/picHandle" $resolved }} 49 49 + </a> 50 50 + <span class="select-none [&:before]:content-['·']"></span> 51 51 + <span>{{ $stat.LineCount }} line{{if ne $stat.LineCount 1}}s{{end}}</span> 52 52 + <span class="select-none [&:before]:content-['·']"></span> 53 53 + {{ with .Edited }} 54 54 + <span>edited {{ template "repo/fragments/shortTimeAgo" . }}</span> 55 55 + {{ else }} 56 56 + {{ template "repo/fragments/shortTimeAgo" .Created }} 57 57 + {{ end }} 58 58 + </div> 59 59 + {{ end }} 60 60 + 61 61 +

+34

appview/pages/templates/timeline/fragments/hero.html

··· 1 1 + {{ define "timeline/fragments/hero" }} 2 2 + <div class="mx-auto max-w-[100rem] flex flex-col text-black dark:text-white px-6 py-4 gap-6 items-center md:flex-row"> 3 3 + <div class="flex flex-col gap-6"> 4 4 + <h1 class="font-bold text-4xl">tightly-knit<br>social coding.</h1> 5 5 + 6 6 + <p class="text-lg"> 7 7 + tangled is new social-enabled git collaboration platform built on <a class="underline" href="https://atproto.com/">atproto</a>. 8 8 + </p> 9 9 + <p class="text-lg"> 10 10 + we envision a place where developers have complete ownership of their 11 11 + code, open source communities can freely self-govern and most 12 12 + importantly, coding can be social and fun again. 13 13 + </p> 14 14 + 15 15 + <div class="flex gap-6 items-center"> 16 16 + <a href="/signup" class="no-underline hover:no-underline "> 17 17 + <button class="btn-create flex gap-2 px-4 items-center"> 18 18 + join now {{ i "arrow-right" "size-4" }} 19 19 + </button> 20 20 + </a> 21 21 + </div> 22 22 + </div> 23 23 + 24 24 + <figure class="w-full hidden md:block md:w-auto"> 25 25 + <a href="https://tangled.sh/@tangled.sh/core" class="block"> 26 26 + <img src="https://assets.tangled.network/hero-repo.png" alt="Screenshot of the Tangled monorepo." class="max-w-md mx-auto md:max-w-none w-full md:w-[30vw] h-auto shadow-sm rounded" /> 27 27 + </a> 28 28 + <figcaption class="text-sm text-gray-600 dark:text-gray-400 mt-2 text-center"> 29 29 + Monorepo for Tangled, built in the open with the community. 30 30 + </figcaption> 31 31 + </figure> 32 32 + </div> 33 33 + {{ end }} 34 34 +

+116

appview/pages/templates/timeline/fragments/timeline.html

··· 1 1 + {{ define "timeline/fragments/timeline" }} 2 2 + <div class="py-4"> 3 3 + <div class="px-6 pb-4"> 4 4 + <p class="text-xl font-bold dark:text-white">Timeline</p> 5 5 + </div> 6 6 + 7 7 + <div class="flex flex-col gap-4"> 8 8 + {{ range $i, $e := .Timeline }} 9 9 + <div class="relative"> 10 10 + {{ if ne $i 0 }} 11 11 + <div class="absolute left-8 -top-4 w-px h-4 bg-gray-300 dark:bg-gray-600"></div> 12 12 + {{ end }} 13 13 + {{ with $e }} 14 14 + <div class="flex flex-col divide-y divide-gray-200 dark:divide-gray-700 border border-gray-200 dark:border-gray-700 rounded-sm"> 15 15 + {{ if .Repo }} 16 16 + {{ template "timeline/fragments/repoEvent" (list $ .Repo .Source) }} 17 17 + {{ else if .Star }} 18 18 + {{ template "timeline/fragments/starEvent" (list $ .Star) }} 19 19 + {{ else if .Follow }} 20 20 + {{ template "timeline/fragments/followEvent" (list $ .Follow .Profile .FollowStats) }} 21 21 + {{ end }} 22 22 + </div> 23 23 + {{ end }} 24 24 + </div> 25 25 + {{ end }} 26 26 + </div> 27 27 + </div> 28 28 + {{ end }} 29 29 + 30 30 + {{ define "timeline/fragments/repoEvent" }} 31 31 + {{ $root := index . 0 }} 32 32 + {{ $repo := index . 1 }} 33 33 + {{ $source := index . 2 }} 34 34 + {{ $userHandle := resolve $repo.Did }} 35 35 + <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 36 36 + {{ template "user/fragments/picHandleLink" $repo.Did }} 37 37 + {{ with $source }} 38 38 + {{ $sourceDid := resolve .Did }} 39 39 + forked 40 40 + <a href="/{{ $sourceDid }}/{{ .Name }}"class="no-underline hover:underline"> 41 41 + {{ $sourceDid }}/{{ .Name }} 42 42 + </a> 43 43 + to 44 44 + <a href="/{{ $userHandle }}/{{ $repo.Name }}" class="no-underline hover:underline">{{ $repo.Name }}</a> 45 45 + {{ else }} 46 46 + created 47 47 + <a href="/{{ $userHandle }}/{{ $repo.Name }}" class="no-underline hover:underline"> 48 48 + {{ $repo.Name }} 49 49 + </a> 50 50 + {{ end }} 51 51 + <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" $repo.Created }}</span> 52 52 + </div> 53 53 + {{ with $repo }} 54 54 + {{ template "user/fragments/repoCard" (list $root . true) }} 55 55 + {{ end }} 56 56 + {{ end }} 57 57 + 58 58 + {{ define "timeline/fragments/starEvent" }} 59 59 + {{ $root := index . 0 }} 60 60 + {{ $star := index . 1 }} 61 61 + {{ with $star }} 62 62 + {{ $starrerHandle := resolve .StarredByDid }} 63 63 + {{ $repoOwnerHandle := resolve .Repo.Did }} 64 64 + <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 65 65 + {{ template "user/fragments/picHandleLink" $starrerHandle }} 66 66 + starred 67 67 + <a href="/{{ $repoOwnerHandle }}/{{ .Repo.Name }}" class="no-underline hover:underline"> 68 68 + {{ $repoOwnerHandle | truncateAt30 }}/{{ .Repo.Name }} 69 69 + </a> 70 70 + <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" .Created }}</span> 71 71 + </div> 72 72 + {{ with .Repo }} 73 73 + {{ template "user/fragments/repoCard" (list $root . true) }} 74 74 + {{ end }} 75 75 + {{ end }} 76 76 + {{ end }} 77 77 + 78 78 + {{ define "timeline/fragments/followEvent" }} 79 79 + {{ $root := index . 0 }} 80 80 + {{ $follow := index . 1 }} 81 81 + {{ $profile := index . 2 }} 82 82 + {{ $stat := index . 3 }} 83 83 + 84 84 + {{ $userHandle := resolve $follow.UserDid }} 85 85 + {{ $subjectHandle := resolve $follow.SubjectDid }} 86 86 + <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 87 87 + {{ template "user/fragments/picHandleLink" $userHandle }} 88 88 + followed 89 89 + {{ template "user/fragments/picHandleLink" $subjectHandle }} 90 90 + <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" $follow.FollowedAt }}</span> 91 91 + </div> 92 92 + <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800 flex items-center gap-4"> 93 93 + <div class="flex-shrink-0 max-h-full w-24 h-24"> 94 94 + <img alt="" class="object-cover rounded-full p-2" src="{{ fullAvatar $subjectHandle }}" /> 95 95 + </div> 96 96 + 97 97 + <div class="flex-1 min-h-0 justify-around flex flex-col"> 98 98 + <a href="/{{ $subjectHandle }}"> 99 99 + <span class="font-bold dark:text-white overflow-hidden text-ellipsis whitespace-nowrap max-w-full">{{ $subjectHandle | truncateAt30 }}</span> 100 100 + </a> 101 101 + {{ with $profile }} 102 102 + {{ with .Description }} 103 103 + <p class="text-sm pb-2 md:pb-2">{{.}}</p> 104 104 + {{ end }} 105 105 + {{ end }} 106 106 + {{ with $stat }} 107 107 + <div class="text-sm flex items-center gap-2 my-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full"> 108 108 + <span class="flex-shrink-0">{{ i "users" "size-4" }}</span> 109 109 + <span id="followers"><a href="/{{ $subjectHandle }}?tab=followers">{{ .Followers }} followers</a></span> 110 110 + <span class="select-none after:content-['·']"></span> 111 111 + <span id="following"><a href="/{{ $subjectHandle }}?tab=following">{{ .Following }} following</a></span> 112 112 + </div> 113 113 + {{ end }} 114 114 + </div> 115 115 + </div> 116 116 + {{ end }}

+25

appview/pages/templates/timeline/fragments/trending.html

··· 1 1 + {{ define "timeline/fragments/trending" }} 2 2 + <div class="w-full md:mx-0 py-4"> 3 3 + <div class="px-6 pb-4"> 4 4 + <h3 class="text-xl font-bold dark:text-white flex items-center gap-2"> 5 5 + Trending 6 6 + {{ i "trending-up" "size-4 flex-shrink-0" }} 7 7 + </h3> 8 8 + </div> 9 9 + <div class="flex gap-4 overflow-x-auto scrollbar-hide items-stretch"> 10 10 + {{ range $index, $repo := .Repos }} 11 11 + <div class="flex-none h-full border border-gray-200 dark:border-gray-700 rounded-sm w-96"> 12 12 + {{ template "user/fragments/repoCard" (list $ $repo true) }} 13 13 + </div> 14 14 + {{ else }} 15 15 + <div class="py-8 px-6 bg-white dark:bg-gray-800 border border-gray-200 dark:border-gray-700 rounded-sm"> 16 16 + <div class="text-sm text-gray-500 dark:text-gray-400 text-center"> 17 17 + No trending repositories this week 18 18 + </div> 19 19 + </div> 20 20 + {{ end }} 21 21 + </div> 22 22 + </div> 23 23 + {{ end }} 24 24 + 25 25 +

+90

appview/pages/templates/timeline/home.html

··· 1 1 + {{ define "title" }}tangled &middot; tightly-knit social coding{{ end }} 2 2 + 3 3 + {{ define "extrameta" }} 4 4 + <meta property="og:title" content="timeline · tangled" /> 5 5 + <meta property="og:type" content="object" /> 6 6 + <meta property="og:url" content="https://tangled.sh" /> 7 7 + <meta property="og:description" content="tightly-knit social coding" /> 8 8 + {{ end }} 9 9 + 10 10 + 11 11 + {{ define "content" }} 12 12 + <div class="flex flex-col gap-4"> 13 13 + {{ template "timeline/fragments/hero" . }} 14 14 + {{ template "features" . }} 15 15 + {{ template "timeline/fragments/trending" . }} 16 16 + {{ template "timeline/fragments/timeline" . }} 17 17 + <div class="flex justify-end"> 18 18 + <a href="/timeline" class="inline-flex items-center gap-2 text-gray-500 dark:text-gray-400"> 19 19 + view more 20 20 + {{ i "arrow-right" "size-4" }} 21 21 + </a> 22 22 + </div> 23 23 + </div> 24 24 + {{ end }} 25 25 + 26 26 + 27 27 + {{ define "feature" }} 28 28 + {{ $info := index . 0 }} 29 29 + {{ $bullets := index . 1 }} 30 30 + <div class="flex flex-col items-center gap-6 md:flex-row md:items-top"> 31 31 + <div class="flex-1"> 32 32 + <h2 class="text-2xl font-bold text-black dark:text-white mb-6">{{ $info.title }}</h2> 33 33 + <ul class="leading-normal"> 34 34 + {{ range $bullets }} 35 35 + <li><p>{{ escapeHtml . }}</p></li> 36 36 + {{ end }} 37 37 + </ul> 38 38 + </div> 39 39 + <div class="flex-shrink-0 w-96 md:w-1/3"> 40 40 + <a href="{{ $info.image }}"> 41 41 + <img src="{{ $info.image }}" alt="{{ $info.alt }}" class="w-full h-auto rounded shadow-sm" /> 42 42 + </a> 43 43 + </div> 44 44 + </div> 45 45 + {{ end }} 46 46 + 47 47 + {{ define "features" }} 48 48 + <div class="prose dark:text-gray-200 space-y-12 px-6 py-4 bg-white dark:bg-gray-800 rounded drop-shadow-sm"> 49 49 + {{ template "feature" (list 50 50 + (dict 51 51 + "title" "lightweight git repo hosting" 52 52 + "image" "https://assets.tangled.network/what-is-tangled-repo.png" 53 53 + "alt" "A repository hosted on Tangled" 54 54 + ) 55 55 + (list 56 56 + "Host your repositories on your own infrastructure using <em>knots</em>&mdash;tiny, headless servers that facilitate git operations." 57 57 + "Add friends to your knot or invite collaborators to your repository." 58 58 + "Guarded by fine-grained role-based access control." 59 59 + "Use SSH to push and pull." 60 60 + ) 61 61 + ) }} 62 62 + 63 63 + {{ template "feature" (list 64 64 + (dict 65 65 + "title" "improved pull request model" 66 66 + "image" "https://assets.tangled.network/pulls.png" 67 67 + "alt" "Round-based pull requests." 68 68 + ) 69 69 + (list 70 70 + "An intuitive and effective round-based pull request flow, with inter-diffing between rounds." 71 71 + "Stacked pull requests using Jujutsu's change IDs." 72 72 + "Paste a <code>git diff</code> or <code>git format-patch</code> for quick drive-by changes." 73 73 + ) 74 74 + ) }} 75 75 + 76 76 + {{ template "feature" (list 77 77 + (dict 78 78 + "title" "run pipelines using spindles" 79 79 + "image" "https://assets.tangled.network/pipelines.png" 80 80 + "alt" "CI pipeline running on spindle" 81 81 + ) 82 82 + (list 83 83 + "Run pipelines on your own infrastructure using <em>spindles</em>&mdash;lightweight CI runners." 84 84 + "Natively supports Nix for package management." 85 85 + "Easily extended to support different execution backends." 86 86 + ) 87 87 + ) }} 88 88 + </div> 89 89 + {{ end }} 90 90 +

+18

appview/pages/templates/timeline/timeline.html

··· 1 1 + {{ define "title" }}timeline{{ end }} 2 2 + 3 3 + {{ define "extrameta" }} 4 4 + <meta property="og:title" content="timeline · tangled" /> 5 5 + <meta property="og:type" content="object" /> 6 6 + <meta property="og:url" content="https://tangled.sh" /> 7 7 + <meta property="og:description" content="tightly-knit social coding" /> 8 8 + {{ end }} 9 9 + 10 10 + {{ define "content" }} 11 11 + {{ if .LoggedInUser }} 12 12 + {{ else }} 13 13 + {{ template "timeline/fragments/hero" . }} 14 14 + {{ end }} 15 15 + 16 16 + {{ template "timeline/fragments/trending" . }} 17 17 + {{ template "timeline/fragments/timeline" . }} 18 18 + {{ end }}

-161

appview/pages/templates/timeline.html

··· 1 1 - {{ define "title" }}timeline{{ end }} 2 2 - 3 3 - {{ define "extrameta" }} 4 4 - <meta property="og:title" content="timeline · tangled" /> 5 5 - <meta property="og:type" content="object" /> 6 6 - <meta property="og:url" content="https://tangled.sh" /> 7 7 - <meta property="og:description" content="see what's tangling" /> 8 8 - {{ end }} 9 9 - 10 10 - {{ define "topbar" }} 11 11 - {{ template "layouts/topbar" $ }} 12 12 - {{ end }} 13 13 - 14 14 - {{ define "content" }} 15 15 - {{ with .LoggedInUser }} 16 16 - {{ block "timeline" $ }}{{ end }} 17 17 - {{ else }} 18 18 - {{ block "hero" $ }}{{ end }} 19 19 - {{ block "timeline" $ }}{{ end }} 20 20 - {{ end }} 21 21 - {{ end }} 22 22 - 23 23 - {{ define "hero" }} 24 24 - <div class="flex flex-col text-black dark:text-white p-6 gap-6 max-w-xl"> 25 25 - <div class="font-bold text-4xl">tightly-knit<br>social coding.</div> 26 26 - 27 27 - <p class="text-lg"> 28 28 - tangled is new social-enabled git collaboration platform built on <a class="underline" href="https://atproto.com/">atproto</a>. 29 29 - </p> 30 30 - <p class="text-lg"> 31 31 - we envision a place where developers have complete ownership of their 32 32 - code, open source communities can freely self-govern and most 33 33 - importantly, coding can be social and fun again. 34 34 - </p> 35 35 - 36 36 - <div class="flex gap-6 items-center"> 37 37 - <a href="/login" class="no-underline hover:no-underline "> 38 38 - <button class="btn flex gap-2 px-4 items-center"> 39 39 - join now {{ i "arrow-right" "size-4" }} 40 40 - </button> 41 41 - </a> 42 42 - </div> 43 43 - </div> 44 44 - {{ end }} 45 45 - 46 46 - {{ define "timeline" }} 47 47 - <div> 48 48 - <div class="p-6"> 49 49 - <p class="text-xl font-bold dark:text-white">Timeline</p> 50 50 - </div> 51 51 - 52 52 - <div class="flex flex-col gap-4"> 53 53 - {{ range $i, $e := .Timeline }} 54 54 - <div class="relative"> 55 55 - {{ if ne $i 0 }} 56 56 - <div class="absolute left-8 -top-4 w-px h-4 bg-gray-300 dark:bg-gray-600"></div> 57 57 - {{ end }} 58 58 - {{ with $e }} 59 59 - <div class="flex flex-col divide-y divide-gray-200 dark:divide-gray-700 border border-gray-200 dark:border-gray-700 rounded-sm"> 60 60 - {{ if .Repo }} 61 61 - {{ block "repoEvent" (list $ .Repo .Source) }} {{ end }} 62 62 - {{ else if .Star }} 63 63 - {{ block "starEvent" (list $ .Star) }} {{ end }} 64 64 - {{ else if .Follow }} 65 65 - {{ block "followEvent" (list $ .Follow .Profile .FollowStats) }} {{ end }} 66 66 - {{ end }} 67 67 - </div> 68 68 - {{ end }} 69 69 - </div> 70 70 - {{ end }} 71 71 - </div> 72 72 - </div> 73 73 - {{ end }} 74 74 - 75 75 - {{ define "repoEvent" }} 76 76 - {{ $root := index . 0 }} 77 77 - {{ $repo := index . 1 }} 78 78 - {{ $source := index . 2 }} 79 79 - {{ $userHandle := index $root.DidHandleMap $repo.Did }} 80 80 - <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 81 81 - {{ template "user/fragments/picHandleLink" $userHandle }} 82 82 - {{ with $source }} 83 83 - forked 84 84 - <a href="/{{ index $root.DidHandleMap .Did }}/{{ .Name }}"class="no-underline hover:underline"> 85 85 - {{ index $root.DidHandleMap .Did }}/{{ .Name }} 86 86 - </a> 87 87 - to 88 88 - <a href="/{{ $userHandle }}/{{ $repo.Name }}" class="no-underline hover:underline">{{ $repo.Name }}</a> 89 89 - {{ else }} 90 90 - created 91 91 - <a href="/{{ $userHandle }}/{{ $repo.Name }}" class="no-underline hover:underline"> 92 92 - {{ $repo.Name }} 93 93 - </a> 94 94 - {{ end }} 95 95 - <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" $repo.Created }}</span> 96 96 - </div> 97 97 - {{ with $repo }} 98 98 - {{ template "user/fragments/repoCard" (list $root . true) }} 99 99 - {{ end }} 100 100 - {{ end }} 101 101 - 102 102 - {{ define "starEvent" }} 103 103 - {{ $root := index . 0 }} 104 104 - {{ $star := index . 1 }} 105 105 - {{ with $star }} 106 106 - {{ $starrerHandle := index $root.DidHandleMap .StarredByDid }} 107 107 - {{ $repoOwnerHandle := index $root.DidHandleMap .Repo.Did }} 108 108 - <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 109 109 - {{ template "user/fragments/picHandleLink" $starrerHandle }} 110 110 - starred 111 111 - <a href="/{{ $repoOwnerHandle }}/{{ .Repo.Name }}" class="no-underline hover:underline"> 112 112 - {{ $repoOwnerHandle | truncateAt30 }}/{{ .Repo.Name }} 113 113 - </a> 114 114 - <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" .Created }}</span> 115 115 - </div> 116 116 - {{ with .Repo }} 117 117 - {{ template "user/fragments/repoCard" (list $root . true) }} 118 118 - {{ end }} 119 119 - {{ end }} 120 120 - {{ end }} 121 121 - 122 122 - 123 123 - {{ define "followEvent" }} 124 124 - {{ $root := index . 0 }} 125 125 - {{ $follow := index . 1 }} 126 126 - {{ $profile := index . 2 }} 127 127 - {{ $stat := index . 3 }} 128 128 - 129 129 - {{ $userHandle := index $root.DidHandleMap $follow.UserDid }} 130 130 - {{ $subjectHandle := index $root.DidHandleMap $follow.SubjectDid }} 131 131 - <div class="pl-6 py-2 bg-white dark:bg-gray-800 text-gray-600 dark:text-gray-300 flex flex-wrap items-center gap-2 text-sm"> 132 132 - {{ template "user/fragments/picHandleLink" $userHandle }} 133 133 - followed 134 134 - {{ template "user/fragments/picHandleLink" $subjectHandle }} 135 135 - <span class="text-gray-700 dark:text-gray-400 text-xs">{{ template "repo/fragments/time" $follow.FollowedAt }}</span> 136 136 - </div> 137 137 - <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800 flex items-center gap-4"> 138 138 - <div class="flex-shrink-0 max-h-full w-24 h-24"> 139 139 - <img class="object-cover rounded-full p-2" src="{{ fullAvatar $subjectHandle }}" /> 140 140 - </div> 141 141 - 142 142 - <div class="flex-1 min-h-0 justify-around flex flex-col"> 143 143 - <a href="/{{ $subjectHandle }}"> 144 144 - <span class="font-bold dark:text-white overflow-hidden text-ellipsis whitespace-nowrap max-w-full">{{ $subjectHandle | truncateAt30 }}</span> 145 145 - </a> 146 146 - {{ with $profile }} 147 147 - {{ with .Description }} 148 148 - <p class="text-sm pb-2 md:pb-2">{{.}}</p> 149 149 - {{ end }} 150 150 - {{ end }} 151 151 - {{ with $stat }} 152 152 - <div class="text-sm flex items-center gap-2 my-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full text-sm"> 153 153 - <span class="flex-shrink-0">{{ i "users" "size-4" }}</span> 154 154 - <span id="followers">{{ .Followers }} followers</span> 155 155 - <span class="select-none after:content-['·']"></span> 156 156 - <span id="following">{{ .Following }} following</span> 157 157 - </div> 158 158 - {{ end }} 159 159 - </div> 160 160 - </div> 161 161 - {{ end }}

+102

appview/pages/templates/user/completeSignup.html

··· 1 1 + {{ define "user/completeSignup" }} 2 2 + <!doctype html> 3 3 + <html lang="en" class="dark:bg-gray-900"> 4 4 + <head> 5 5 + <meta charset="UTF-8" /> 6 6 + <meta 7 7 + name="viewport" 8 8 + content="width=device-width, initial-scale=1.0" 9 9 + /> 10 10 + <meta 11 11 + property="og:title" 12 12 + content="complete signup · tangled" 13 13 + /> 14 14 + <meta 15 15 + property="og:url" 16 16 + content="https://tangled.sh/complete-signup" 17 17 + /> 18 18 + <meta 19 19 + property="og:description" 20 20 + content="complete your signup for tangled" 21 21 + /> 22 22 + <script src="/static/htmx.min.js"></script> 23 23 + <link 24 24 + rel="stylesheet" 25 25 + href="/static/tw.css?{{ cssContentHash }}" 26 26 + type="text/css" 27 27 + /> 28 28 + <title>complete signup &middot; tangled</title> 29 29 + </head> 30 30 + <body class="flex items-center justify-center min-h-screen"> 31 31 + <main class="max-w-md px-6 -mt-4"> 32 32 + <h1 class="flex place-content-center text-2xl font-semibold italic dark:text-white" > 33 33 + {{ template "fragments/logotype" }} 34 34 + </h1> 35 35 + <h2 class="text-center text-xl italic dark:text-white"> 36 36 + tightly-knit social coding. 37 37 + </h2> 38 38 + <form 39 39 + class="mt-4 max-w-sm mx-auto flex flex-col gap-4" 40 40 + hx-post="/signup/complete" 41 41 + hx-swap="none" 42 42 + hx-disabled-elt="#complete-signup-button" 43 43 + > 44 44 + <div class="flex flex-col"> 45 45 + <label for="code">verification code</label> 46 46 + <input 47 47 + type="text" 48 48 + id="code" 49 49 + name="code" 50 50 + tabindex="1" 51 51 + required 52 52 + placeholder="tngl-sh-foo-bar" 53 53 + /> 54 54 + <span class="text-sm text-gray-500 mt-1"> 55 55 + Enter the code sent to your email. 56 56 + </span> 57 57 + </div> 58 58 + 59 59 + <div class="flex flex-col"> 60 60 + <label for="username">username</label> 61 61 + <input 62 62 + type="text" 63 63 + id="username" 64 64 + name="username" 65 65 + tabindex="2" 66 66 + required 67 67 + placeholder="jason" 68 68 + /> 69 69 + <span class="text-sm text-gray-500 mt-1"> 70 70 + Your complete handle will be of the form <code>user.tngl.sh</code>. 71 71 + </span> 72 72 + </div> 73 73 + 74 74 + <div class="flex flex-col"> 75 75 + <label for="password">password</label> 76 76 + <input 77 77 + type="password" 78 78 + id="password" 79 79 + name="password" 80 80 + tabindex="3" 81 81 + required 82 82 + /> 83 83 + <span class="text-sm text-gray-500 mt-1"> 84 84 + Choose a strong password for your account. 85 85 + </span> 86 86 + </div> 87 87 + 88 88 + <button 89 89 + class="btn-create w-full my-2 mt-6 text-base" 90 90 + type="submit" 91 91 + id="complete-signup-button" 92 92 + tabindex="4" 93 93 + > 94 94 + <span>complete signup</span> 95 95 + </button> 96 96 + </form> 97 97 + <p id="signup-error" class="error w-full"></p> 98 98 + <p id="signup-msg" class="dark:text-white w-full"></p> 99 99 + </main> 100 100 + </body> 101 101 + </html> 102 102 + {{ end }}

+18

appview/pages/templates/user/followers.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }} · followers {{ end }} 2 2 + 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-followers" class="md:col-span-8 order-2 md:order-2"> 5 5 + {{ block "followers" . }}{{ end }} 6 6 + </div> 7 7 + {{ end }} 8 8 + 9 9 + {{ define "followers" }} 10 10 + <p class="text-sm font-bold p-2 dark:text-white">ALL FOLLOWERS</p> 11 11 + <div id="followers" class="grid grid-cols-1 gap-4 mb-6"> 12 12 + {{ range .Followers }} 13 13 + {{ template "user/fragments/followCard" . }} 14 14 + {{ else }} 15 15 + <p class="px-6 dark:text-white">This user does not have any followers yet.</p> 16 16 + {{ end }} 17 17 + </div> 18 18 + {{ end }}

+18

appview/pages/templates/user/following.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }} · following {{ end }} 2 2 + 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-following" class="md:col-span-8 order-2 md:order-2"> 5 5 + {{ block "following" . }}{{ end }} 6 6 + </div> 7 7 + {{ end }} 8 8 + 9 9 + {{ define "following" }} 10 10 + <p class="text-sm font-bold p-2 dark:text-white">ALL FOLLOWING</p> 11 11 + <div id="following" class="grid grid-cols-1 gap-4 mb-6"> 12 12 + {{ range .Following }} 13 13 + {{ template "user/fragments/followCard" . }} 14 14 + {{ else }} 15 15 + <p class="px-6 dark:text-white">This user does not follow anyone yet.</p> 16 16 + {{ end }} 17 17 + </div> 18 18 + {{ end }}

+1 -1

appview/pages/templates/user/fragments/editBio.html

··· 13 13 <label class="m-0 p-0" for="description">bio</label> 14 14 <textarea 15 15 type="text" 16 16 - class="py-1 px-1 w-full" 16 16 + class="p-2 w-full" 17 17 name="description" 18 18 rows="3" 19 19 placeholder="write a bio">{{ $description }}</textarea>

+1 -1

appview/pages/templates/user/fragments/editPins.html

··· 27 27 <input type="checkbox" id="repo-{{$idx}}" name="pinnedRepo{{$idx}}" value="{{.RepoAt}}" {{if .IsPinned}}checked{{end}}> 28 28 <label for="repo-{{$idx}}" class="my-0 py-0 normal-case font-normal w-full"> 29 29 <div class="flex justify-between items-center w-full"> 30 30 - <span class="flex-shrink-0 overflow-hidden text-ellipsis ">{{ index $.DidHandleMap .Did }}/{{.Name}}</span> 30 30 + <span class="flex-shrink-0 overflow-hidden text-ellipsis ">{{ resolve .Did }}/{{.Name}}</span> 31 31 <div class="flex gap-1 items-center"> 32 32 {{ i "star" "size-4 fill-current" }} 33 33 <span>{{ .RepoStats.StarCount }}</span>

+2 -2

appview/pages/templates/user/fragments/follow.html

··· 1 1 {{ define "user/fragments/follow" }} 2 2 - <button id="followBtn" 2 2 + <button id="{{ normalizeForHtmlId .UserDid }}" 3 3 class="btn mt-2 w-full flex gap-2 items-center group" 4 4 5 5 {{ if eq .FollowStatus.String "IsNotFollowing" }} ··· 9 9 {{ end }} 10 10 11 11 hx-trigger="click" 12 12 - hx-target="#followBtn" 12 12 + hx-target="#{{ normalizeForHtmlId .UserDid }}" 13 13 hx-swap="outerHTML" 14 14 > 15 15 {{ if eq .FollowStatus.String "IsNotFollowing" }}Follow{{ else }}Unfollow{{ end }}

+29

appview/pages/templates/user/fragments/followCard.html

··· 1 1 + {{ define "user/fragments/followCard" }} 2 2 + {{ $userIdent := resolve .UserDid }} 3 3 + <div class="flex flex-col divide-y divide-gray-200 dark:divide-gray-700 border border-gray-200 dark:border-gray-700 rounded-sm"> 4 4 + <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800 flex items-center gap-4"> 5 5 + <div class="flex-shrink-0 max-h-full w-24 h-24"> 6 6 + <img class="object-cover rounded-full p-2" src="{{ fullAvatar $userIdent }}" /> 7 7 + </div> 8 8 + 9 9 + <div class="flex-1 min-h-0 justify-around flex flex-col"> 10 10 + <a href="/{{ $userIdent }}"> 11 11 + <span class="font-bold dark:text-white overflow-hidden text-ellipsis whitespace-nowrap max-w-full">{{ $userIdent | truncateAt30 }}</span> 12 12 + </a> 13 13 + <p class="text-sm pb-2 md:pb-2">{{.Profile.Description}}</p> 14 14 + <div class="text-sm flex items-center gap-2 my-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full"> 15 15 + <span class="flex-shrink-0">{{ i "users" "size-4" }}</span> 16 16 + <span id="followers"><a href="/{{ $userIdent }}?tab=followers">{{ .FollowersCount }} followers</a></span> 17 17 + <span class="select-none after:content-['·']"></span> 18 18 + <span id="following"><a href="/{{ $userIdent }}?tab=following">{{ .FollowingCount }} following</a></span> 19 19 + </div> 20 20 + </div> 21 21 + 22 22 + {{ if ne .FollowStatus.String "IsSelf" }} 23 23 + <div class="max-w-24"> 24 24 + {{ template "user/fragments/follow" . }} 25 25 + </div> 26 26 + {{ end }} 27 27 + </div> 28 28 + </div> 29 29 + {{ end }}

+1 -1

appview/pages/templates/user/fragments/picHandle.html

··· 1 1 {{ define "user/fragments/picHandle" }} 2 2 <img 3 3 src="{{ tinyAvatar . }}" 4 4 - alt="{{ . }}" 4 4 + alt="" 5 5 class="rounded-full h-6 w-6 mr-1 border border-gray-300 dark:border-gray-700" 6 6 /> 7 7 {{ . | truncateAt30 }}

+3 -2

appview/pages/templates/user/fragments/picHandleLink.html

··· 1 1 {{ define "user/fragments/picHandleLink" }} 2 2 - <a href="/{{ . }}" class="flex items-center"> 3 3 - {{ template "user/fragments/picHandle" . }} 2 2 + {{ $resolved := resolve . }} 3 3 + <a href="/{{ $resolved }}" class="flex items-center"> 4 4 + {{ template "user/fragments/picHandle" $resolved }} 4 5 </a> 5 6 {{ end }}

+22 -20

appview/pages/templates/user/fragments/profileCard.html

··· 1 1 {{ define "user/fragments/profileCard" }} 2 2 - <div class="bg-white dark:bg-gray-800 px-6 py-4 rounded drop-shadow-sm max-h-fit"> 2 2 + {{ $userIdent := didOrHandle .UserDid .UserHandle }} 3 3 <div class="grid grid-cols-3 md:grid-cols-1 gap-1 items-center"> 4 4 <div id="avatar" class="col-span-1 flex justify-center items-center"> 5 5 - {{ if .AvatarUri }} 6 5 <div class="w-3/4 aspect-square relative"> 7 7 - <img class="absolute inset-0 w-full h-full object-cover rounded-full p-2" src="{{ .AvatarUri }}" /> 6 6 + <img class="absolute inset-0 w-full h-full object-cover rounded-full p-2" src="{{ fullAvatar .UserDid }}" /> 8 7 </div> 9 9 - {{ end }} 10 8 </div> 11 9 <div class="col-span-2"> 12 12 - <p title="{{ didOrHandle .UserDid .UserHandle }}" 13 13 - class="text-lg font-bold dark:text-white overflow-hidden text-ellipsis whitespace-nowrap max-w-full"> 14 14 - {{ didOrHandle .UserDid .UserHandle }} 15 15 - </p> 10 10 + <div class="flex items-center flex-row flex-nowrap gap-2"> 11 11 + <p title="{{ $userIdent }}" 12 12 + class="text-lg font-bold dark:text-white overflow-hidden text-ellipsis whitespace-nowrap"> 13 13 + {{ $userIdent }} 14 14 + </p> 15 15 + <a href="/{{ $userIdent }}/feed.atom">{{ i "rss" "size-4" }}</a> 16 16 + </div> 16 17 17 18 <div class="md:hidden"> 18 18 - {{ block "followerFollowing" (list .Followers .Following) }} {{ end }} 19 19 + {{ block "followerFollowing" (list . $userIdent) }} {{ end }} 19 20 </div> 20 21 </div> 21 22 <div class="col-span-3 md:col-span-full"> ··· 28 29 {{ end }} 29 30 30 31 <div class="hidden md:block"> 31 31 - {{ block "followerFollowing" (list $.Followers $.Following) }} {{ end }} 32 32 + {{ block "followerFollowing" (list $ $userIdent) }} {{ end }} 32 33 </div> 33 34 34 35 <div class="flex flex-col gap-2 mb-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full"> ··· 41 42 {{ if .IncludeBluesky }} 42 43 <div class="flex items-center gap-2"> 43 44 <span class="flex-shrink-0">{{ template "user/fragments/bluesky" "w-4 h-4 text-black dark:text-white" }}</span> 44 44 - <a id="bluesky-link" href="https://bsky.app/profile/{{ $.UserDid }}">{{ didOrHandle $.UserDid $.UserHandle }}</a> 45 45 + <a id="bluesky-link" href="https://bsky.app/profile/{{ $.UserDid }}">{{ $userIdent }}</a> 45 46 </div> 46 47 {{ end }} 47 48 {{ range $link := .Links }} ··· 83 84 <div id="update-profile" class="text-red-400 dark:text-red-500"></div> 84 85 </div> 85 86 </div> 86 86 - </div> 87 87 {{ end }} 88 88 89 89 {{ define "followerFollowing" }} 90 90 - {{ $followers := index . 0 }} 91 91 - {{ $following := index . 1 }} 92 92 - <div class="flex items-center gap-2 my-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full text-sm"> 93 93 - <span class="flex-shrink-0">{{ i "users" "size-4" }}</span> 94 94 - <span id="followers">{{ $followers }} followers</span> 95 95 - <span class="select-none after:content-['·']"></span> 96 96 - <span id="following">{{ $following }} following</span> 97 97 - </div> 90 90 + {{ $root := index . 0 }} 91 91 + {{ $userIdent := index . 1 }} 92 92 + {{ with $root }} 93 93 + <div class="flex items-center gap-2 my-2 overflow-hidden text-ellipsis whitespace-nowrap max-w-full text-sm"> 94 94 + <span class="flex-shrink-0">{{ i "users" "size-4" }}</span> 95 95 + <span id="followers"><a href="/{{ $userIdent }}?tab=followers">{{ .Stats.FollowersCount }} followers</a></span> 96 96 + <span class="select-none after:content-['·']"></span> 97 97 + <span id="following"><a href="/{{ $userIdent }}?tab=following">{{ .Stats.FollowingCount }} following</a></span> 98 98 + </div> 99 99 + {{ end }} 98 100 {{ end }} 99 101

+39 -34

appview/pages/templates/user/fragments/repoCard.html

··· 4 4 {{ $fullName := index . 2 }} 5 5 6 6 {{ with $repo }} 7 7 - <div class="py-4 px-6 drop-shadow-sm rounded bg-white dark:bg-gray-800"> 8 8 - <div class="font-medium dark:text-white flex gap-2 items-center"> 9 9 - {{- if $fullName -}} 10 10 - <a href="/{{ index $root.DidHandleMap .Did }}/{{ .Name }}">{{ index $root.DidHandleMap .Did }}/{{ .Name }}</a> 11 11 - {{- else -}} 12 12 - <a href="/{{ index $root.DidHandleMap .Did }}/{{ .Name }}">{{ .Name }}</a> 13 13 - {{- end -}} 7 7 + <div class="py-4 px-6 gap-1 flex flex-col drop-shadow-sm rounded bg-white dark:bg-gray-800 min-h-32"> 8 8 + <div class="font-medium dark:text-white flex items-center"> 9 9 + {{ if .Source }} 10 10 + {{ i "git-fork" "w-4 h-4 mr-1.5 shrink-0" }} 11 11 + {{ else }} 12 12 + {{ i "book-marked" "w-4 h-4 mr-1.5 shrink-0" }} 13 13 + {{ end }} 14 14 + 15 15 + {{ $repoOwner := resolve .Did }} 16 16 + {{- if $fullName -}} 17 17 + <a href="/{{ $repoOwner }}/{{ .Name }}" class="truncate">{{ $repoOwner }}/{{ .Name }}</a> 18 18 + {{- else -}} 19 19 + <a href="/{{ $repoOwner }}/{{ .Name }}" class="truncate">{{ .Name }}</a> 20 20 + {{- end -}} 21 21 + </div> 22 22 + {{ with .Description }} 23 23 + <div class="text-gray-600 dark:text-gray-300 text-sm line-clamp-2"> 24 24 + {{ . | description }} 14 25 </div> 15 15 - {{ with .Description }} 16 16 - <div class="text-gray-600 dark:text-gray-300 text-sm"> 17 17 - {{ . }} 18 18 - </div> 19 19 - {{ end }} 26 26 + {{ end }} 20 27 21 21 - {{ if .RepoStats }} 22 22 - {{ block "repoStats" .RepoStats }} {{ end }} 23 23 - {{ end }} 28 28 + {{ if .RepoStats }} 29 29 + {{ block "repoStats" .RepoStats }}{{ end }} 30 30 + {{ end }} 24 31 </div> 25 32 {{ end }} 26 33 {{ end }} 27 34 28 35 {{ define "repoStats" }} 29 29 - <div class="text-gray-400 pt-4 text-sm font-mono inline-flex gap-4 mt-auto"> 36 36 + <div class="text-gray-400 text-sm font-mono inline-flex gap-4 mt-auto"> 30 37 {{ with .Language }} 31 31 - <div class="flex gap-2 items-center text-sm"> 32 32 - <div class="size-2 rounded-full" style="background-color: {{ langColor . }};"></div> 33 33 - <span>{{ . }}</span> 34 34 - </div> 38 38 + <div class="flex gap-2 items-center text-sm"> 39 39 + {{ template "repo/fragments/languageBall" . }} 40 40 + <span>{{ . }}</span> 41 41 + </div> 35 42 {{ end }} 36 43 {{ with .StarCount }} 37 37 - <div class="flex gap-1 items-center text-sm"> 38 38 - {{ i "star" "w-3 h-3 fill-current" }} 39 39 - <span>{{ . }}</span> 40 40 - </div> 44 44 + <div class="flex gap-1 items-center text-sm"> 45 45 + {{ i "star" "w-3 h-3 fill-current" }} 46 46 + <span>{{ . }}</span> 47 47 + </div> 41 48 {{ end }} 42 49 {{ with .IssueCount.Open }} 43 43 - <div class="flex gap-1 items-center text-sm"> 44 44 - {{ i "circle-dot" "w-3 h-3" }} 45 45 - <span>{{ . }}</span> 46 46 - </div> 50 50 + <div class="flex gap-1 items-center text-sm"> 51 51 + {{ i "circle-dot" "w-3 h-3" }} 52 52 + <span>{{ . }}</span> 53 53 + </div> 47 54 {{ end }} 48 55 {{ with .PullCount.Open }} 49 49 - <div class="flex gap-1 items-center text-sm"> 50 50 - {{ i "git-pull-request" "w-3 h-3" }} 51 51 - <span>{{ . }}</span> 52 52 - </div> 56 56 + <div class="flex gap-1 items-center text-sm"> 57 57 + {{ i "git-pull-request" "w-3 h-3" }} 58 58 + <span>{{ . }}</span> 59 59 + </div> 53 60 {{ end }} 54 61 </div> 55 62 {{ end }} 56 56 - 57 57 -

+15 -35

appview/pages/templates/user/login.html

··· 3 3 <html lang="en" class="dark:bg-gray-900"> 4 4 <head> 5 5 <meta charset="UTF-8" /> 6 6 - <meta 7 7 - name="viewport" 8 8 - content="width=device-width, initial-scale=1.0" 9 9 - /> 10 10 - <meta 11 11 - property="og:title" 12 12 - content="login · tangled" 13 13 - /> 14 14 - <meta 15 15 - property="og:url" 16 16 - content="https://tangled.sh/login" 17 17 - /> 18 18 - <meta 19 19 - property="og:description" 20 20 - content="login to tangled" 21 21 - /> 6 6 + <meta name="viewport" content="width=device-width, initial-scale=1.0" /> 7 7 + <meta property="og:title" content="login · tangled" /> 8 8 + <meta property="og:url" content="https://tangled.sh/login" /> 9 9 + <meta property="og:description" content="login to for tangled" /> 22 10 <script src="/static/htmx.min.js"></script> 23 23 - <link 24 24 - rel="stylesheet" 25 25 - href="/static/tw.css?{{ cssContentHash }}" 26 26 - type="text/css" 27 27 - /> 11 11 + <link rel="stylesheet" href="/static/tw.css?{{ cssContentHash }}" type="text/css" /> 28 12 <title>login &middot; tangled</title> 29 13 </head> 30 14 <body class="flex items-center justify-center min-h-screen"> 31 15 <main class="max-w-md px-6 -mt-4"> 32 32 - <h1 33 33 - class="text-center text-2xl font-semibold italic dark:text-white" 34 34 - > 35 35 - tangled 16 16 + <h1 class="flex place-content-center text-2xl font-semibold italic dark:text-white" > 17 17 + {{ template "fragments/logotype" }} 36 18 </h1> 37 19 <h2 class="text-center text-xl italic dark:text-white"> 38 20 tightly-knit social coding. ··· 51 33 name="handle" 52 34 tabindex="1" 53 35 required 36 36 + placeholder="akshay.tngl.sh" 54 37 /> 55 38 <span class="text-sm text-gray-500 mt-1"> 56 56 - Use your 57 57 - <a href="https://bsky.app">Bluesky</a> handle to log 58 58 - in. You will then be redirected to your PDS to 59 59 - complete authentication. 39 39 + Use your <a href="https://atproto.com">ATProto</a> 40 40 + handle to log in. If you're unsure, this is likely 41 41 + your Tangled (<code>.tngl.sh</code>) or <a href="https://bsky.app">Bluesky</a> (<code>.bsky.social</code>) account. 60 42 </span> 61 43 </div> 44 44 + <input type="hidden" name="return_url" value="{{ .ReturnUrl }}"> 62 45 63 46 <button 64 64 - class="btn w-full my-2 mt-6" 47 47 + class="btn w-full my-2 mt-6 text-base " 65 48 type="submit" 66 49 id="login-button" 67 50 tabindex="3" ··· 70 53 </button> 71 54 </form> 72 55 <p class="text-sm text-gray-500"> 73 73 - Join our <a href="https://chat.tangled.sh">Discord</a> or 74 74 - IRC channel: 75 75 - <a href="https://web.libera.chat/#tangled" 76 76 - ><code>#tangled</code> on Libera Chat</a 77 77 - >. 56 56 + Don't have an account? <a href="/signup" class="underline">Create an account</a> on Tangled now! 78 57 </p> 58 58 + 79 59 <p id="login-msg" class="error w-full"></p> 80 60 </main> 81 61 </body>

+269

appview/pages/templates/user/overview.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }}{{ end }} 2 2 + 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-repos" class="md:col-span-4 order-2 md:order-2"> 5 5 + <div class="grid grid-cols-1 gap-4"> 6 6 + {{ block "ownRepos" . }}{{ end }} 7 7 + {{ block "collaboratingRepos" . }}{{ end }} 8 8 + </div> 9 9 + </div> 10 10 + <div class="md:col-span-4 order-3 md:order-3"> 11 11 + {{ block "profileTimeline" . }}{{ end }} 12 12 + </div> 13 13 + {{ end }} 14 14 + 15 15 + {{ define "profileTimeline" }} 16 16 + <p class="text-sm font-bold px-2 pb-4 dark:text-white">ACTIVITY</p> 17 17 + <div class="flex flex-col gap-4 relative"> 18 18 + {{ if .ProfileTimeline.IsEmpty }} 19 19 + <p class="dark:text-white">This user does not have any activity yet.</p> 20 20 + {{ end }} 21 21 + 22 22 + {{ with .ProfileTimeline }} 23 23 + {{ range $idx, $byMonth := .ByMonth }} 24 24 + {{ with $byMonth }} 25 25 + {{ if not .IsEmpty }} 26 26 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm py-4 px-6"> 27 27 + <p class="text-sm font-mono mb-2 text-gray-500 dark:text-gray-400"> 28 28 + {{ if eq $idx 0 }} 29 29 + this month 30 30 + {{ else }} 31 31 + {{$idx}} month{{if ne $idx 1}}s{{end}} ago 32 32 + {{ end }} 33 33 + </p> 34 34 + 35 35 + <div class="flex flex-col gap-1"> 36 36 + {{ block "repoEvents" .RepoEvents }} {{ end }} 37 37 + {{ block "issueEvents" .IssueEvents }} {{ end }} 38 38 + {{ block "pullEvents" .PullEvents }} {{ end }} 39 39 + </div> 40 40 + </div> 41 41 + {{ end }} 42 42 + {{ end }} 43 43 + {{ end }} 44 44 + {{ end }} 45 45 + </div> 46 46 + {{ end }} 47 47 + 48 48 + {{ define "repoEvents" }} 49 49 + {{ if gt (len .) 0 }} 50 50 + <details> 51 51 + <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 52 52 + <div class="flex flex-wrap items-center gap-2"> 53 53 + {{ i "book-plus" "w-4 h-4" }} 54 54 + created {{ len . }} {{if eq (len .) 1 }}repository{{else}}repositories{{end}} 55 55 + </div> 56 56 + </summary> 57 57 + <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 58 58 + {{ range . }} 59 59 + <div class="flex flex-wrap items-center justify-between gap-2"> 60 60 + <span class="flex items-center gap-2"> 61 61 + <span class="text-gray-500 dark:text-gray-400"> 62 62 + {{ if .Source }} 63 63 + {{ i "git-fork" "w-4 h-4" }} 64 64 + {{ else }} 65 65 + {{ i "book-plus" "w-4 h-4" }} 66 66 + {{ end }} 67 67 + </span> 68 68 + <a href="/{{ resolve .Repo.Did }}/{{ .Repo.Name }}" class="no-underline hover:underline"> 69 69 + {{- .Repo.Name -}} 70 70 + </a> 71 71 + </span> 72 72 + 73 73 + {{ with .Repo.RepoStats }} 74 74 + {{ with .Language }} 75 75 + <div class="flex gap-2 items-center text-xs font-mono text-gray-400 "> 76 76 + {{ template "repo/fragments/languageBall" . }} 77 77 + <span>{{ . }}</span> 78 78 + </div> 79 79 + {{end }} 80 80 + {{end }} 81 81 + </div> 82 82 + {{ end }} 83 83 + </div> 84 84 + </details> 85 85 + {{ end }} 86 86 + {{ end }} 87 87 + 88 88 + {{ define "issueEvents" }} 89 89 + {{ $items := .Items }} 90 90 + {{ $stats := .Stats }} 91 91 + 92 92 + {{ if gt (len $items) 0 }} 93 93 + <details> 94 94 + <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 95 95 + <div class="flex flex-wrap items-center gap-2"> 96 96 + {{ i "circle-dot" "w-4 h-4" }} 97 97 + 98 98 + <div> 99 99 + created {{ len $items }} {{if eq (len $items) 1 }}issue{{else}}issues{{end}} 100 100 + </div> 101 101 + 102 102 + {{ if gt $stats.Open 0 }} 103 103 + <span class="px-2 py-1/2 text-sm rounded text-white bg-green-600 dark:bg-green-700"> 104 104 + {{$stats.Open}} open 105 105 + </span> 106 106 + {{ end }} 107 107 + 108 108 + {{ if gt $stats.Closed 0 }} 109 109 + <span class="px-2 py-1/2 text-sm rounded text-white bg-gray-800 dark:bg-gray-700"> 110 110 + {{$stats.Closed}} closed 111 111 + </span> 112 112 + {{ end }} 113 113 + 114 114 + </div> 115 115 + </summary> 116 116 + <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 117 117 + {{ range $items }} 118 118 + {{ $repoOwner := resolve .Repo.Did }} 119 119 + {{ $repoName := .Repo.Name }} 120 120 + {{ $repoUrl := printf "%s/%s" $repoOwner $repoName }} 121 121 + 122 122 + <div class="flex gap-2 text-gray-600 dark:text-gray-300"> 123 123 + {{ if .Open }} 124 124 + <span class="text-green-600 dark:text-green-500"> 125 125 + {{ i "circle-dot" "w-4 h-4" }} 126 126 + </span> 127 127 + {{ else }} 128 128 + <span class="text-gray-500 dark:text-gray-400"> 129 129 + {{ i "ban" "w-4 h-4" }} 130 130 + </span> 131 131 + {{ end }} 132 132 + <div class="flex-none min-w-8 text-right"> 133 133 + <span class="text-gray-500 dark:text-gray-400">#{{ .IssueId }}</span> 134 134 + </div> 135 135 + <div class="break-words max-w-full"> 136 136 + <a href="/{{$repoUrl}}/issues/{{ .IssueId }}" class="no-underline hover:underline"> 137 137 + {{ .Title -}} 138 138 + </a> 139 139 + on 140 140 + <a href="/{{$repoUrl}}" class="no-underline hover:underline whitespace-nowrap"> 141 141 + {{$repoUrl}} 142 142 + </a> 143 143 + </div> 144 144 + </div> 145 145 + {{ end }} 146 146 + </div> 147 147 + </details> 148 148 + {{ end }} 149 149 + {{ end }} 150 150 + 151 151 + {{ define "pullEvents" }} 152 152 + {{ $items := .Items }} 153 153 + {{ $stats := .Stats }} 154 154 + {{ if gt (len $items) 0 }} 155 155 + <details> 156 156 + <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 157 157 + <div class="flex flex-wrap items-center gap-2"> 158 158 + {{ i "git-pull-request" "w-4 h-4" }} 159 159 + 160 160 + <div> 161 161 + created {{ len $items }} {{if eq (len $items) 1 }}pull request{{else}}pull requests{{end}} 162 162 + </div> 163 163 + 164 164 + {{ if gt $stats.Open 0 }} 165 165 + <span class="px-2 py-1/2 text-sm rounded text-white bg-green-600 dark:bg-green-700"> 166 166 + {{$stats.Open}} open 167 167 + </span> 168 168 + {{ end }} 169 169 + 170 170 + {{ if gt $stats.Merged 0 }} 171 171 + <span class="px-2 py-1/2 text-sm rounded text-white bg-purple-600 dark:bg-purple-700"> 172 172 + {{$stats.Merged}} merged 173 173 + </span> 174 174 + {{ end }} 175 175 + 176 176 + 177 177 + {{ if gt $stats.Closed 0 }} 178 178 + <span class="px-2 py-1/2 text-sm rounded text-white bg-gray-800 dark:bg-gray-700"> 179 179 + {{$stats.Closed}} closed 180 180 + </span> 181 181 + {{ end }} 182 182 + 183 183 + </div> 184 184 + </summary> 185 185 + <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 186 186 + {{ range $items }} 187 187 + {{ $repoOwner := resolve .Repo.Did }} 188 188 + {{ $repoName := .Repo.Name }} 189 189 + {{ $repoUrl := printf "%s/%s" $repoOwner $repoName }} 190 190 + 191 191 + <div class="flex gap-2 text-gray-600 dark:text-gray-300"> 192 192 + {{ if .State.IsOpen }} 193 193 + <span class="text-green-600 dark:text-green-500"> 194 194 + {{ i "git-pull-request" "w-4 h-4" }} 195 195 + </span> 196 196 + {{ else if .State.IsMerged }} 197 197 + <span class="text-purple-600 dark:text-purple-500"> 198 198 + {{ i "git-merge" "w-4 h-4" }} 199 199 + </span> 200 200 + {{ else }} 201 201 + <span class="text-gray-600 dark:text-gray-300"> 202 202 + {{ i "git-pull-request-closed" "w-4 h-4" }} 203 203 + </span> 204 204 + {{ end }} 205 205 + <div class="flex-none min-w-8 text-right"> 206 206 + <span class="text-gray-500 dark:text-gray-400">#{{ .PullId }}</span> 207 207 + </div> 208 208 + <div class="break-words max-w-full"> 209 209 + <a href="/{{$repoUrl}}/pulls/{{ .PullId }}" class="no-underline hover:underline"> 210 210 + {{ .Title -}} 211 211 + </a> 212 212 + on 213 213 + <a href="/{{$repoUrl}}" class="no-underline hover:underline whitespace-nowrap"> 214 214 + {{$repoUrl}} 215 215 + </a> 216 216 + </div> 217 217 + </div> 218 218 + {{ end }} 219 219 + </div> 220 220 + </details> 221 221 + {{ end }} 222 222 + {{ end }} 223 223 + 224 224 + {{ define "ownRepos" }} 225 225 + <div> 226 226 + <div class="text-sm font-bold px-2 pb-4 dark:text-white flex items-center gap-2"> 227 227 + <a href="/@{{ or $.Card.UserHandle $.Card.UserDid }}?tab=repos" 228 228 + class="flex text-black dark:text-white items-center gap-2 no-underline hover:no-underline group"> 229 229 + <span>PINNED REPOS</span> 230 230 + </a> 231 231 + {{ if and .LoggedInUser (eq .LoggedInUser.Did .Card.UserDid) }} 232 232 + <button 233 233 + hx-get="profile/edit-pins" 234 234 + hx-target="#all-repos" 235 235 + class="py-0 font-normal text-sm flex gap-2 items-center group"> 236 236 + {{ i "pencil" "w-3 h-3" }} 237 237 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 238 238 + </button> 239 239 + {{ end }} 240 240 + </div> 241 241 + <div id="repos" class="grid grid-cols-1 gap-4 items-stretch"> 242 242 + {{ range .Repos }} 243 243 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm"> 244 244 + {{ template "user/fragments/repoCard" (list $ . false) }} 245 245 + </div> 246 246 + {{ else }} 247 247 + <p class="dark:text-white">This user does not have any pinned repos.</p> 248 248 + {{ end }} 249 249 + </div> 250 250 + </div> 251 251 + {{ end }} 252 252 + 253 253 + {{ define "collaboratingRepos" }} 254 254 + {{ if gt (len .CollaboratingRepos) 0 }} 255 255 + <div> 256 256 + <p class="text-sm font-bold px-2 pb-4 dark:text-white">COLLABORATING ON</p> 257 257 + <div id="collaborating" class="grid grid-cols-1 gap-4"> 258 258 + {{ range .CollaboratingRepos }} 259 259 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm"> 260 260 + {{ template "user/fragments/repoCard" (list $ . true) }} 261 261 + </div> 262 262 + {{ else }} 263 263 + <p class="px-6 dark:text-white">This user is not collaborating.</p> 264 264 + {{ end }} 265 265 + </div> 266 266 + </div> 267 267 + {{ end }} 268 268 + {{ end }} 269 269 +

-325

appview/pages/templates/user/profile.html

··· 1 1 - {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }}{{ end }} 2 2 - 3 3 - {{ define "extrameta" }} 4 4 - <meta property="og:title" content="{{ or .Card.UserHandle .Card.UserDid }}" /> 5 5 - <meta property="og:type" content="profile" /> 6 6 - <meta property="og:url" content="https://tangled.sh/{{ or .Card.UserHandle .Card.UserDid }}" /> 7 7 - <meta property="og:description" content="{{ or .Card.Profile.Description .Card.UserHandle .Card.UserDid }}" /> 8 8 - {{ end }} 9 9 - 10 10 - {{ define "content" }} 11 11 - <div class="grid grid-cols-1 md:grid-cols-11 gap-4"> 12 12 - <div class="md:col-span-3 order-1 md:order-1"> 13 13 - <div class="grid grid-cols-1 gap-4"> 14 14 - {{ template "user/fragments/profileCard" .Card }} 15 15 - {{ block "punchcard" .Punchcard }} {{ end }} 16 16 - </div> 17 17 - </div> 18 18 - <div id="all-repos" class="md:col-span-4 order-2 md:order-2"> 19 19 - <div class="grid grid-cols-1 gap-4"> 20 20 - {{ block "ownRepos" . }}{{ end }} 21 21 - {{ block "collaboratingRepos" . }}{{ end }} 22 22 - </div> 23 23 - </div> 24 24 - <div class="md:col-span-4 order-3 md:order-3"> 25 25 - {{ block "profileTimeline" . }}{{ end }} 26 26 - </div> 27 27 - </div> 28 28 - {{ end }} 29 29 - 30 30 - {{ define "profileTimeline" }} 31 31 - <p class="text-sm font-bold p-2 dark:text-white">ACTIVITY</p> 32 32 - <div class="flex flex-col gap-4 relative"> 33 33 - {{ with .ProfileTimeline }} 34 34 - {{ range $idx, $byMonth := .ByMonth }} 35 35 - {{ with $byMonth }} 36 36 - <div class="bg-white dark:bg-gray-800 px-6 py-4 rounded drop-shadow-sm"> 37 37 - {{ if eq $idx 0 }} 38 38 - 39 39 - {{ else }} 40 40 - {{ $s := "s" }} 41 41 - {{ if eq $idx 1 }} 42 42 - {{ $s = "" }} 43 43 - {{ end }} 44 44 - <p class="text-sm font-bold dark:text-white mb-2">{{$idx}} month{{$s}} ago</p> 45 45 - {{ end }} 46 46 - 47 47 - {{ if .IsEmpty }} 48 48 - <div class="text-gray-500 dark:text-gray-400"> 49 49 - No activity for this month 50 50 - </div> 51 51 - {{ else }} 52 52 - <div class="flex flex-col gap-1"> 53 53 - {{ block "repoEvents" (list .RepoEvents $.DidHandleMap) }} {{ end }} 54 54 - {{ block "issueEvents" (list .IssueEvents $.DidHandleMap) }} {{ end }} 55 55 - {{ block "pullEvents" (list .PullEvents $.DidHandleMap) }} {{ end }} 56 56 - </div> 57 57 - {{ end }} 58 58 - </div> 59 59 - 60 60 - {{ end }} 61 61 - {{ else }} 62 62 - <p class="dark:text-white">This user does not have any activity yet.</p> 63 63 - {{ end }} 64 64 - {{ end }} 65 65 - </div> 66 66 - {{ end }} 67 67 - 68 68 - {{ define "repoEvents" }} 69 69 - {{ $items := index . 0 }} 70 70 - {{ $handleMap := index . 1 }} 71 71 - 72 72 - {{ if gt (len $items) 0 }} 73 73 - <details> 74 74 - <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 75 75 - <div class="flex flex-wrap items-center gap-2"> 76 76 - {{ i "book-plus" "w-4 h-4" }} 77 77 - created {{ len $items }} {{if eq (len $items) 1 }}repository{{else}}repositories{{end}} 78 78 - </div> 79 79 - </summary> 80 80 - <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 81 81 - {{ range $items }} 82 82 - <div class="flex flex-wrap items-center gap-2"> 83 83 - <span class="text-gray-500 dark:text-gray-400"> 84 84 - {{ if .Source }} 85 85 - {{ i "git-fork" "w-4 h-4" }} 86 86 - {{ else }} 87 87 - {{ i "book-plus" "w-4 h-4" }} 88 88 - {{ end }} 89 89 - </span> 90 90 - <a href="/{{ index $handleMap .Repo.Did }}/{{ .Repo.Name }}" class="no-underline hover:underline"> 91 91 - {{- .Repo.Name -}} 92 92 - </a> 93 93 - </div> 94 94 - {{ end }} 95 95 - </div> 96 96 - </details> 97 97 - {{ end }} 98 98 - {{ end }} 99 99 - 100 100 - {{ define "issueEvents" }} 101 101 - {{ $i := index . 0 }} 102 102 - {{ $items := $i.Items }} 103 103 - {{ $stats := $i.Stats }} 104 104 - {{ $handleMap := index . 1 }} 105 105 - 106 106 - {{ if gt (len $items) 0 }} 107 107 - <details> 108 108 - <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 109 109 - <div class="flex flex-wrap items-center gap-2"> 110 110 - {{ i "circle-dot" "w-4 h-4" }} 111 111 - 112 112 - <div> 113 113 - created {{ len $items }} {{if eq (len $items) 1 }}issue{{else}}issues{{end}} 114 114 - </div> 115 115 - 116 116 - {{ if gt $stats.Open 0 }} 117 117 - <span class="px-2 py-1/2 text-sm rounded text-white bg-green-600 dark:bg-green-700"> 118 118 - {{$stats.Open}} open 119 119 - </span> 120 120 - {{ end }} 121 121 - 122 122 - {{ if gt $stats.Closed 0 }} 123 123 - <span class="px-2 py-1/2 text-sm rounded text-white bg-gray-800 dark:bg-gray-700"> 124 124 - {{$stats.Closed}} closed 125 125 - </span> 126 126 - {{ end }} 127 127 - 128 128 - </div> 129 129 - </summary> 130 130 - <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 131 131 - {{ range $items }} 132 132 - {{ $repoOwner := index $handleMap .Metadata.Repo.Did }} 133 133 - {{ $repoName := .Metadata.Repo.Name }} 134 134 - {{ $repoUrl := printf "%s/%s" $repoOwner $repoName }} 135 135 - 136 136 - <div class="flex gap-2 text-gray-600 dark:text-gray-300"> 137 137 - {{ if .Open }} 138 138 - <span class="text-green-600 dark:text-green-500"> 139 139 - {{ i "circle-dot" "w-4 h-4" }} 140 140 - </span> 141 141 - {{ else }} 142 142 - <span class="text-gray-500 dark:text-gray-400"> 143 143 - {{ i "ban" "w-4 h-4" }} 144 144 - </span> 145 145 - {{ end }} 146 146 - <div class="flex-none min-w-8 text-right"> 147 147 - <span class="text-gray-500 dark:text-gray-400">#{{ .IssueId }}</span> 148 148 - </div> 149 149 - <div class="break-words max-w-full"> 150 150 - <a href="/{{$repoUrl}}/issues/{{ .IssueId }}" class="no-underline hover:underline"> 151 151 - {{ .Title -}} 152 152 - </a> 153 153 - on 154 154 - <a href="/{{$repoUrl}}" class="no-underline hover:underline whitespace-nowrap"> 155 155 - {{$repoUrl}} 156 156 - </a> 157 157 - </div> 158 158 - </div> 159 159 - {{ end }} 160 160 - </div> 161 161 - </details> 162 162 - {{ end }} 163 163 - {{ end }} 164 164 - 165 165 - {{ define "pullEvents" }} 166 166 - {{ $i := index . 0 }} 167 167 - {{ $items := $i.Items }} 168 168 - {{ $stats := $i.Stats }} 169 169 - {{ $handleMap := index . 1 }} 170 170 - {{ if gt (len $items) 0 }} 171 171 - <details> 172 172 - <summary class="list-none cursor-pointer hover:text-gray-500 hover:dark:text-gray-400"> 173 173 - <div class="flex flex-wrap items-center gap-2"> 174 174 - {{ i "git-pull-request" "w-4 h-4" }} 175 175 - 176 176 - <div> 177 177 - created {{ len $items }} {{if eq (len $items) 1 }}pull request{{else}}pull requests{{end}} 178 178 - </div> 179 179 - 180 180 - {{ if gt $stats.Open 0 }} 181 181 - <span class="px-2 py-1/2 text-sm rounded text-white bg-green-600 dark:bg-green-700"> 182 182 - {{$stats.Open}} open 183 183 - </span> 184 184 - {{ end }} 185 185 - 186 186 - {{ if gt $stats.Merged 0 }} 187 187 - <span class="px-2 py-1/2 text-sm rounded text-white bg-purple-600 dark:bg-purple-700"> 188 188 - {{$stats.Merged}} merged 189 189 - </span> 190 190 - {{ end }} 191 191 - 192 192 - 193 193 - {{ if gt $stats.Closed 0 }} 194 194 - <span class="px-2 py-1/2 text-sm rounded text-white bg-gray-800 dark:bg-gray-700"> 195 195 - {{$stats.Closed}} closed 196 196 - </span> 197 197 - {{ end }} 198 198 - 199 199 - </div> 200 200 - </summary> 201 201 - <div class="py-2 text-sm flex flex-col gap-3 mb-2"> 202 202 - {{ range $items }} 203 203 - {{ $repoOwner := index $handleMap .Repo.Did }} 204 204 - {{ $repoName := .Repo.Name }} 205 205 - {{ $repoUrl := printf "%s/%s" $repoOwner $repoName }} 206 206 - 207 207 - <div class="flex gap-2 text-gray-600 dark:text-gray-300"> 208 208 - {{ if .State.IsOpen }} 209 209 - <span class="text-green-600 dark:text-green-500"> 210 210 - {{ i "git-pull-request" "w-4 h-4" }} 211 211 - </span> 212 212 - {{ else if .State.IsMerged }} 213 213 - <span class="text-purple-600 dark:text-purple-500"> 214 214 - {{ i "git-merge" "w-4 h-4" }} 215 215 - </span> 216 216 - {{ else }} 217 217 - <span class="text-gray-600 dark:text-gray-300"> 218 218 - {{ i "git-pull-request-closed" "w-4 h-4" }} 219 219 - </span> 220 220 - {{ end }} 221 221 - <div class="flex-none min-w-8 text-right"> 222 222 - <span class="text-gray-500 dark:text-gray-400">#{{ .PullId }}</span> 223 223 - </div> 224 224 - <div class="break-words max-w-full"> 225 225 - <a href="/{{$repoUrl}}/pulls/{{ .PullId }}" class="no-underline hover:underline"> 226 226 - {{ .Title -}} 227 227 - </a> 228 228 - on 229 229 - <a href="/{{$repoUrl}}" class="no-underline hover:underline whitespace-nowrap"> 230 230 - {{$repoUrl}} 231 231 - </a> 232 232 - </div> 233 233 - </div> 234 234 - {{ end }} 235 235 - </div> 236 236 - </details> 237 237 - {{ end }} 238 238 - {{ end }} 239 239 - 240 240 - {{ define "ownRepos" }} 241 241 - <div> 242 242 - <div class="text-sm font-bold p-2 pr-0 dark:text-white flex items-center justify-between gap-2"> 243 243 - <a href="/@{{ or $.Card.UserHandle $.Card.UserDid }}?tab=repos" 244 244 - class="flex text-black dark:text-white items-center gap-2 no-underline hover:no-underline group"> 245 245 - <span>PINNED REPOS</span> 246 246 - <span class="flex gap-1 items-center font-normal text-sm text-gray-500 dark:text-gray-400 "> 247 247 - view all {{ i "chevron-right" "w-4 h-4" }} 248 248 - </span> 249 249 - </a> 250 250 - {{ if and .LoggedInUser (eq .LoggedInUser.Did .Card.UserDid) }} 251 251 - <button 252 252 - hx-get="profile/edit-pins" 253 253 - hx-target="#all-repos" 254 254 - class="btn py-0 font-normal text-sm flex gap-2 items-center group"> 255 255 - {{ i "pencil" "w-3 h-3" }} 256 256 - edit 257 257 - {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 258 258 - </button> 259 259 - {{ end }} 260 260 - </div> 261 261 - <div id="repos" class="grid grid-cols-1 gap-4 items-stretch"> 262 262 - {{ range .Repos }} 263 263 - {{ template "user/fragments/repoCard" (list $ . false) }} 264 264 - {{ else }} 265 265 - <p class="px-6 dark:text-white">This user does not have any repos yet.</p> 266 266 - {{ end }} 267 267 - </div> 268 268 - </div> 269 269 - {{ end }} 270 270 - 271 271 - {{ define "collaboratingRepos" }} 272 272 - {{ if gt (len .CollaboratingRepos) 0 }} 273 273 - <div> 274 274 - <p class="text-sm font-bold p-2 dark:text-white">COLLABORATING ON</p> 275 275 - <div id="collaborating" class="grid grid-cols-1 gap-4"> 276 276 - {{ range .CollaboratingRepos }} 277 277 - {{ template "user/fragments/repoCard" (list $ . true) }} 278 278 - {{ else }} 279 279 - <p class="px-6 dark:text-white">This user is not collaborating.</p> 280 280 - {{ end }} 281 281 - </div> 282 282 - </div> 283 283 - {{ end }} 284 284 - {{ end }} 285 285 - 286 286 - {{ define "punchcard" }} 287 287 - {{ $now := now }} 288 288 - <div> 289 289 - <p class="p-2 flex gap-2 text-sm font-bold dark:text-white"> 290 290 - PUNCHCARD 291 291 - <span class="font-normal text-sm text-gray-500 dark:text-gray-400 "> 292 292 - {{ .Total | int64 | commaFmt }} commits 293 293 - </span> 294 294 - </p> 295 295 - <div class="bg-white dark:bg-gray-800 px-6 py-4 rounded drop-shadow-sm"> 296 296 - <div class="grid grid-cols-28 md:grid-cols-14 gap-y-2 w-full h-full"> 297 297 - {{ range .Punches }} 298 298 - {{ $count := .Count }} 299 299 - {{ $theme := "bg-gray-200 dark:bg-gray-700 size-[4px]" }} 300 300 - {{ if lt $count 1 }} 301 301 - {{ $theme = "bg-gray-200 dark:bg-gray-700 size-[4px]" }} 302 302 - {{ else if lt $count 2 }} 303 303 - {{ $theme = "bg-green-200 dark:bg-green-900 size-[5px]" }} 304 304 - {{ else if lt $count 4 }} 305 305 - {{ $theme = "bg-green-300 dark:bg-green-800 size-[5px]" }} 306 306 - {{ else if lt $count 8 }} 307 307 - {{ $theme = "bg-green-400 dark:bg-green-700 size-[6px]" }} 308 308 - {{ else }} 309 309 - {{ $theme = "bg-green-500 dark:bg-green-600 size-[7px]" }} 310 310 - {{ end }} 311 311 - 312 312 - {{ if .Date.After $now }} 313 313 - {{ $theme = "border border-gray-200 dark:border-gray-700 size-[4px]" }} 314 314 - {{ end }} 315 315 - <div class="w-full h-full flex justify-center items-center"> 316 316 - <div 317 317 - class="aspect-square rounded-full transition-all duration-300 {{ $theme }} max-w-full max-h-full" 318 318 - title="{{ .Date.Format "2006-01-02" }}: {{ .Count }} commits"> 319 319 - </div> 320 320 - </div> 321 321 - {{ end }} 322 322 - </div> 323 323 - </div> 324 324 - </div> 325 325 - {{ end }}

+7 -18

appview/pages/templates/user/repos.html

··· 1 1 {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }} · repos {{ end }} 2 2 3 3 - {{ define "extrameta" }} 4 4 - <meta property="og:title" content="{{ or .Card.UserHandle .Card.UserDid }}'s repos" /> 5 5 - <meta property="og:type" content="object" /> 6 6 - <meta property="og:url" content="https://tangled.sh/{{ or .Card.UserHandle .Card.UserDid }}/repos" /> 7 7 - <meta property="og:description" content="{{ or .Card.Profile.Description .Card.UserHandle .Card.UserDid }}" /> 8 8 - {{ end }} 9 9 - 10 10 - {{ define "content" }} 11 11 - <div class="grid grid-cols-1 md:grid-cols-11 gap-4"> 12 12 - <div class="md:col-span-3 order-1 md:order-1"> 13 13 - {{ template "user/fragments/profileCard" .Card }} 14 14 - </div> 15 15 - <div id="all-repos" class="md:col-span-8 order-2 md:order-2"> 16 16 - {{ block "ownRepos" . }}{{ end }} 17 17 - </div> 18 18 - </div> 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-repos" class="md:col-span-8 order-2 md:order-2"> 5 5 + {{ block "ownRepos" . }}{{ end }} 6 6 + </div> 19 7 {{ end }} 20 8 21 9 {{ define "ownRepos" }} 22 22 - <p class="text-sm font-bold p-2 dark:text-white">ALL REPOSITORIES</p> 23 10 <div id="repos" class="grid grid-cols-1 gap-4 mb-6"> 24 11 {{ range .Repos }} 25 25 - {{ template "user/fragments/repoCard" (list $ . false) }} 12 12 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm"> 13 13 + {{ template "user/fragments/repoCard" (list $ . false) }} 14 14 + </div> 26 15 {{ else }} 27 16 <p class="px-6 dark:text-white">This user does not have any repos yet.</p> 28 17 {{ end }}

+94

appview/pages/templates/user/settings/emails.html

··· 1 1 + {{ define "title" }}{{ .Tab }} settings{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="p-6"> 5 5 + <p class="text-xl font-bold dark:text-white">Settings</p> 6 6 + </div> 7 7 + <div class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 8 8 + <section class="w-full grid grid-cols-1 md:grid-cols-4 gap-6"> 9 9 + <div class="col-span-1"> 10 10 + {{ template "user/settings/fragments/sidebar" . }} 11 11 + </div> 12 12 + <div class="col-span-1 md:col-span-3 flex flex-col gap-6"> 13 13 + {{ template "emailSettings" . }} 14 14 + </div> 15 15 + </section> 16 16 + </div> 17 17 + {{ end }} 18 18 + 19 19 + {{ define "emailSettings" }} 20 20 + <div class="grid grid-cols-1 md:grid-cols-3 gap-4 items-center"> 21 21 + <div class="col-span-1 md:col-span-2"> 22 22 + <h2 class="text-sm pb-2 uppercase font-bold">Email Addresses</h2> 23 23 + <p class="text-gray-500 dark:text-gray-400"> 24 24 + Commits authored using emails listed here will be associated with your Tangled profile. 25 25 + </p> 26 26 + </div> 27 27 + <div class="col-span-1 md:col-span-1 md:justify-self-end"> 28 28 + {{ template "addEmailButton" . }} 29 29 + </div> 30 30 + </div> 31 31 + <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700 divide-y divide-gray-200 dark:divide-gray-700 w-full"> 32 32 + {{ range .Emails }} 33 33 + {{ template "user/settings/fragments/emailListing" (list $ .) }} 34 34 + {{ else }} 35 35 + <div class="flex items-center justify-center p-2 text-gray-500"> 36 36 + no emails added yet 37 37 + </div> 38 38 + {{ end }} 39 39 + </div> 40 40 + {{ end }} 41 41 + 42 42 + {{ define "addEmailButton" }} 43 43 + <button 44 44 + class="btn flex items-center gap-2" 45 45 + popovertarget="add-email-modal" 46 46 + popovertargetaction="toggle"> 47 47 + {{ i "plus" "size-4" }} 48 48 + add email 49 49 + </button> 50 50 + <div 51 51 + id="add-email-modal" 52 52 + popover 53 53 + class="bg-white w-full md:w-96 dark:bg-gray-800 p-4 rounded border border-gray-200 dark:border-gray-700 drop-shadow dark:text-white backdrop:bg-gray-400/50 dark:backdrop:bg-gray-800/50"> 54 54 + {{ template "addEmailModal" . }} 55 55 + </div> 56 56 + {{ end}} 57 57 + 58 58 + {{ define "addEmailModal" }} 59 59 + <form 60 60 + hx-put="/settings/emails" 61 61 + hx-indicator="#spinner" 62 62 + hx-swap="none" 63 63 + class="flex flex-col gap-2" 64 64 + > 65 65 + <p class="uppercase p-0">ADD EMAIL</p> 66 66 + <p class="text-sm text-gray-500 dark:text-gray-400">Commits using this email will be associated with your profile.</p> 67 67 + <input 68 68 + type="email" 69 69 + id="email-address" 70 70 + name="email" 71 71 + required 72 72 + placeholder="your@email.com" 73 73 + class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400" 74 74 + /> 75 75 + <div class="flex gap-2 pt-2"> 76 76 + <button 77 77 + type="button" 78 78 + popovertarget="add-email-modal" 79 79 + popovertargetaction="hide" 80 80 + class="btn w-1/2 flex items-center gap-2 text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300" 81 81 + > 82 82 + {{ i "x" "size-4" }} cancel 83 83 + </button> 84 84 + <button type="submit" class="btn w-1/2 flex items-center"> 85 85 + <span class="inline-flex gap-2 items-center">{{ i "plus" "size-4" }} add</span> 86 86 + <span id="spinner" class="group"> 87 87 + {{ i "loader-circle" "ml-2 w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 88 88 + </span> 89 89 + </button> 90 90 + </div> 91 91 + <div id="settings-emails-error" class="text-red-500 dark:text-red-400"></div> 92 92 + <div id="settings-emails-success" class="text-green-500 dark:text-green-400"></div> 93 93 + </form> 94 94 + {{ end }}

+62

appview/pages/templates/user/settings/fragments/emailListing.html

··· 1 1 + {{ define "user/settings/fragments/emailListing" }} 2 2 + {{ $root := index . 0 }} 3 3 + {{ $email := index . 1 }} 4 4 + <div id="email-{{$email.Address}}" class="flex items-center justify-between p-2"> 5 5 + <div class="hover:no-underline flex flex-col gap-1 min-w-0 max-w-[80%]"> 6 6 + <div class="flex items-center gap-2"> 7 7 + {{ i "mail" "w-4 h-4 text-gray-500 dark:text-gray-400" }} 8 8 + <span class="font-bold"> 9 9 + {{ $email.Address }} 10 10 + </span> 11 11 + <div class="inline-flex items-center gap-1"> 12 12 + {{ if $email.Verified }} 13 13 + <span class="text-xs bg-green-100 text-green-800 dark:bg-green-900 dark:text-green-200 px-2 py-1 rounded">verified</span> 14 14 + {{ else }} 15 15 + <span class="text-xs bg-yellow-100 text-yellow-800 dark:bg-yellow-900 dark:text-yellow-200 px-2 py-1 rounded">unverified</span> 16 16 + {{ end }} 17 17 + {{ if $email.Primary }} 18 18 + <span class="text-xs bg-blue-100 text-blue-800 dark:bg-blue-900 dark:text-blue-200 px-2 py-1 rounded">primary</span> 19 19 + {{ end }} 20 20 + </div> 21 21 + </div> 22 22 + <div class="flex text-sm flex-wrap text items-center gap-1 text-gray-500 dark:text-gray-400"> 23 23 + <span>added {{ template "repo/fragments/time" $email.CreatedAt }}</span> 24 24 + </div> 25 25 + </div> 26 26 + <div class="flex gap-2 items-center"> 27 27 + {{ if not $email.Verified }} 28 28 + <button 29 29 + class="btn flex gap-2 text-sm px-2 py-1" 30 30 + hx-post="/settings/emails/verify/resend" 31 31 + hx-swap="none" 32 32 + hx-vals='{"email": "{{ $email.Address }}"}'> 33 33 + {{ i "rotate-cw" "w-4 h-4" }} 34 34 + <span class="hidden md:inline">resend</span> 35 35 + </button> 36 36 + {{ end }} 37 37 + {{ if and (not $email.Primary) $email.Verified }} 38 38 + <button 39 39 + class="btn text-sm px-2 py-1 text-blue-500 hover:text-blue-700 dark:text-blue-400 dark:hover:text-blue-300" 40 40 + hx-post="/settings/emails/primary" 41 41 + hx-swap="none" 42 42 + hx-vals='{"email": "{{ $email.Address }}"}'> 43 43 + set as primary 44 44 + </button> 45 45 + {{ end }} 46 46 + {{ if not $email.Primary }} 47 47 + <button 48 48 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 49 49 + title="Delete email" 50 50 + hx-delete="/settings/emails" 51 51 + hx-swap="none" 52 52 + hx-vals='{"email": "{{ $email.Address }}"}' 53 53 + hx-confirm="Are you sure you want to delete the email {{ $email.Address }}?" 54 54 + > 55 55 + {{ i "trash-2" "w-5 h-5" }} 56 56 + <span class="hidden md:inline">delete</span> 57 57 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 58 58 + </button> 59 59 + {{ end }} 60 60 + </div> 61 61 + </div> 62 62 + {{ end }}

+31

appview/pages/templates/user/settings/fragments/keyListing.html

··· 1 1 + {{ define "user/settings/fragments/keyListing" }} 2 2 + {{ $root := index . 0 }} 3 3 + {{ $key := index . 1 }} 4 4 + <div id="key-{{$key.Name}}" class="flex items-center justify-between p-2"> 5 5 + <div class="hover:no-underline flex flex-col gap-1 text min-w-0 max-w-[80%]"> 6 6 + <div class="flex items-center gap-2"> 7 7 + <span>{{ i "key" "w-4" "h-4" }}</span> 8 8 + <span class="font-bold"> 9 9 + {{ $key.Name }} 10 10 + </span> 11 11 + </div> 12 12 + <span class="font-mono text-sm text-gray-500 dark:text-gray-400"> 13 13 + {{ sshFingerprint $key.Key }} 14 14 + </span> 15 15 + <div class="flex flex-wrap text-sm items-center gap-1 text-gray-500 dark:text-gray-400"> 16 16 + <span>added {{ template "repo/fragments/time" $key.Created }}</span> 17 17 + </div> 18 18 + </div> 19 19 + <button 20 20 + class="btn text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300 gap-2 group" 21 21 + title="Delete key" 22 22 + hx-delete="/settings/keys?name={{urlquery $key.Name}}&rkey={{urlquery $key.Rkey}}&key={{urlquery $key.Key}}" 23 23 + hx-swap="none" 24 24 + hx-confirm="Are you sure you want to delete the key {{ $key.Name }}?" 25 25 + > 26 26 + {{ i "trash-2" "w-5 h-5" }} 27 27 + <span class="hidden md:inline">delete</span> 28 28 + {{ i "loader-circle" "w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 29 29 + </button> 30 30 + </div> 31 31 + {{ end }}

+16

appview/pages/templates/user/settings/fragments/sidebar.html

··· 1 1 + {{ define "user/settings/fragments/sidebar" }} 2 2 + {{ $active := .Tab }} 3 3 + {{ $tabs := .Tabs }} 4 4 + <div class="sticky top-2 grid grid-cols-1 rounded border border-gray-200 dark:border-gray-700 divide-y divide-gray-200 dark:divide-gray-700 shadow-inner"> 5 5 + {{ $activeTab := "bg-white dark:bg-gray-700 drop-shadow-sm" }} 6 6 + {{ $inactiveTab := "bg-gray-100 dark:bg-gray-800" }} 7 7 + {{ range $tabs }} 8 8 + <a href="/settings/{{.Name}}" class="no-underline hover:no-underline hover:bg-gray-100/25 hover:dark:bg-gray-700/25"> 9 9 + <div class="flex gap-3 items-center p-2 {{ if eq .Name $active }} {{ $activeTab }} {{ else }} {{ $inactiveTab }} {{ end }}"> 10 10 + {{ i .Icon "size-4" }} 11 11 + {{ .Name }} 12 12 + </div> 13 13 + </a> 14 14 + {{ end }} 15 15 + </div> 16 16 + {{ end }}

+101

appview/pages/templates/user/settings/keys.html

··· 1 1 + {{ define "title" }}{{ .Tab }} settings{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="p-6"> 5 5 + <p class="text-xl font-bold dark:text-white">Settings</p> 6 6 + </div> 7 7 + <div class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 8 8 + <section class="w-full grid grid-cols-1 md:grid-cols-4 gap-6"> 9 9 + <div class="col-span-1"> 10 10 + {{ template "user/settings/fragments/sidebar" . }} 11 11 + </div> 12 12 + <div class="col-span-1 md:col-span-3 flex flex-col gap-6"> 13 13 + {{ template "sshKeysSettings" . }} 14 14 + </div> 15 15 + </section> 16 16 + </div> 17 17 + {{ end }} 18 18 + 19 19 + {{ define "sshKeysSettings" }} 20 20 + <div class="grid grid-cols-1 md:grid-cols-3 gap-4 items-center"> 21 21 + <div class="col-span-1 md:col-span-2"> 22 22 + <h2 class="text-sm pb-2 uppercase font-bold">SSH Keys</h2> 23 23 + <p class="text-gray-500 dark:text-gray-400"> 24 24 + SSH public keys added here will be broadcasted to knots that you are a member of, 25 25 + allowing you to push to repositories there. 26 26 + </p> 27 27 + </div> 28 28 + <div class="col-span-1 md:col-span-1 md:justify-self-end"> 29 29 + {{ template "addKeyButton" . }} 30 30 + </div> 31 31 + </div> 32 32 + <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700 divide-y divide-gray-200 dark:divide-gray-700 w-full"> 33 33 + {{ range .PubKeys }} 34 34 + {{ template "user/settings/fragments/keyListing" (list $ .) }} 35 35 + {{ else }} 36 36 + <div class="flex items-center justify-center p-2 text-gray-500"> 37 37 + no keys added yet 38 38 + </div> 39 39 + {{ end }} 40 40 + </div> 41 41 + {{ end }} 42 42 + 43 43 + {{ define "addKeyButton" }} 44 44 + <button 45 45 + class="btn flex items-center gap-2" 46 46 + popovertarget="add-key-modal" 47 47 + popovertargetaction="toggle"> 48 48 + {{ i "plus" "size-4" }} 49 49 + add key 50 50 + </button> 51 51 + <div 52 52 + id="add-key-modal" 53 53 + popover 54 54 + class="bg-white w-full md:w-96 dark:bg-gray-800 p-4 rounded border border-gray-200 dark:border-gray-700 drop-shadow dark:text-white backdrop:bg-gray-400/50 dark:backdrop:bg-gray-800/50"> 55 55 + {{ template "addKeyModal" . }} 56 56 + </div> 57 57 + {{ end}} 58 58 + 59 59 + {{ define "addKeyModal" }} 60 60 + <form 61 61 + hx-put="/settings/keys" 62 62 + hx-indicator="#spinner" 63 63 + hx-swap="none" 64 64 + class="flex flex-col gap-2" 65 65 + > 66 66 + <p class="uppercase p-0">ADD SSH KEY</p> 67 67 + <p class="text-sm text-gray-500 dark:text-gray-400">SSH keys allow you to push to repositories in knots you're a member of.</p> 68 68 + <input 69 69 + type="text" 70 70 + id="key-name" 71 71 + name="name" 72 72 + required 73 73 + placeholder="key name" 74 74 + class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400" 75 75 + /> 76 76 + <textarea 77 77 + type="text" 78 78 + id="key-value" 79 79 + name="key" 80 80 + required 81 81 + placeholder="ssh-rsa AAAAB3NzaC1yc2E..." 82 82 + class="w-full dark:bg-gray-700 dark:text-white dark:border-gray-600 dark:placeholder-gray-400"></textarea> 83 83 + <div class="flex gap-2 pt-2"> 84 84 + <button 85 85 + type="button" 86 86 + popovertarget="add-key-modal" 87 87 + popovertargetaction="hide" 88 88 + class="btn w-1/2 flex items-center gap-2 text-red-500 hover:text-red-700 dark:text-red-400 dark:hover:text-red-300" 89 89 + > 90 90 + {{ i "x" "size-4" }} cancel 91 91 + </button> 92 92 + <button type="submit" class="btn w-1/2 flex items-center"> 93 93 + <span class="inline-flex gap-2 items-center">{{ i "plus" "size-4" }} add</span> 94 94 + <span id="spinner" class="group"> 95 95 + {{ i "loader-circle" "ml-2 w-4 h-4 animate-spin hidden group-[.htmx-request]:inline" }} 96 96 + </span> 97 97 + </button> 98 98 + </div> 99 99 + <div id="settings-keys" class="text-red-500 dark:text-red-400"></div> 100 100 + </form> 101 101 + {{ end }}

+64

appview/pages/templates/user/settings/profile.html

··· 1 1 + {{ define "title" }}{{ .Tab }} settings{{ end }} 2 2 + 3 3 + {{ define "content" }} 4 4 + <div class="p-6"> 5 5 + <p class="text-xl font-bold dark:text-white">Settings</p> 6 6 + </div> 7 7 + <div class="bg-white dark:bg-gray-800 p-6 rounded relative w-full mx-auto drop-shadow-sm dark:text-white"> 8 8 + <section class="w-full grid grid-cols-1 md:grid-cols-4 gap-6"> 9 9 + <div class="col-span-1"> 10 10 + {{ template "user/settings/fragments/sidebar" . }} 11 11 + </div> 12 12 + <div class="col-span-1 md:col-span-3 flex flex-col gap-6"> 13 13 + {{ template "profileInfo" . }} 14 14 + </div> 15 15 + </section> 16 16 + </div> 17 17 + {{ end }} 18 18 + 19 19 + {{ define "profileInfo" }} 20 20 + <div class="grid grid-cols-1 md:grid-cols-3 gap-4 items-center"> 21 21 + <div class="col-span-1 md:col-span-2"> 22 22 + <h2 class="text-sm pb-2 uppercase font-bold">Profile</h2> 23 23 + <p class="text-gray-500 dark:text-gray-400"> 24 24 + Your account information from your AT Protocol identity. 25 25 + </p> 26 26 + </div> 27 27 + <div class="col-span-1 md:col-span-1 md:justify-self-end"> 28 28 + </div> 29 29 + </div> 30 30 + <div class="flex flex-col rounded border border-gray-200 dark:border-gray-700 divide-y divide-gray-200 dark:divide-gray-700 w-full"> 31 31 + <div class="flex items-center justify-between p-4"> 32 32 + <div class="hover:no-underline flex flex-col gap-1 min-w-0 max-w-[80%]"> 33 33 + <div class="flex flex-wrap text-sm items-center gap-1 text-gray-500 dark:text-gray-400"> 34 34 + <span>Handle</span> 35 35 + </div> 36 36 + {{ if .LoggedInUser.Handle }} 37 37 + <span class="font-bold"> 38 38 + @{{ .LoggedInUser.Handle }} 39 39 + </span> 40 40 + {{ end }} 41 41 + </div> 42 42 + </div> 43 43 + <div class="flex items-center justify-between p-4"> 44 44 + <div class="hover:no-underline flex flex-col gap-1 min-w-0 max-w-[80%]"> 45 45 + <div class="flex flex-wrap text-sm items-center gap-1 text-gray-500 dark:text-gray-400"> 46 46 + <span>Decentralized Identifier (DID)</span> 47 47 + </div> 48 48 + <span class="font-mono font-bold"> 49 49 + {{ .LoggedInUser.Did }} 50 50 + </span> 51 51 + </div> 52 52 + </div> 53 53 + <div class="flex items-center justify-between p-4"> 54 54 + <div class="hover:no-underline flex flex-col gap-1 min-w-0 max-w-[80%]"> 55 55 + <div class="flex flex-wrap text-sm items-center gap-1 text-gray-500 dark:text-gray-400"> 56 56 + <span>Personal Data Server (PDS)</span> 57 57 + </div> 58 58 + <span class="font-bold"> 59 59 + {{ .LoggedInUser.Pds }} 60 60 + </span> 61 61 + </div> 62 62 + </div> 63 63 + </div> 64 64 + {{ end }}

+55

appview/pages/templates/user/signup.html

··· 1 1 + {{ define "user/signup" }} 2 2 + <!doctype html> 3 3 + <html lang="en" class="dark:bg-gray-900"> 4 4 + <head> 5 5 + <meta charset="UTF-8" /> 6 6 + <meta name="viewport" content="width=device-width, initial-scale=1.0" /> 7 7 + <meta property="og:title" content="signup · tangled" /> 8 8 + <meta property="og:url" content="https://tangled.sh/signup" /> 9 9 + <meta property="og:description" content="sign up for tangled" /> 10 10 + <script src="/static/htmx.min.js"></script> 11 11 + <link rel="stylesheet" href="/static/tw.css?{{ cssContentHash }}" type="text/css" /> 12 12 + <title>sign up &middot; tangled</title> 13 13 + </head> 14 14 + <body class="flex items-center justify-center min-h-screen"> 15 15 + <main class="max-w-md px-6 -mt-4"> 16 16 + <h1 class="flex place-content-center text-2xl font-semibold italic dark:text-white" > 17 17 + {{ template "fragments/logotype" }} 18 18 + </h1> 19 19 + <h2 class="text-center text-xl italic dark:text-white">tightly-knit social coding.</h2> 20 20 + <form 21 21 + class="mt-4 max-w-sm mx-auto" 22 22 + hx-post="/signup" 23 23 + hx-swap="none" 24 24 + hx-disabled-elt="#signup-button" 25 25 + > 26 26 + <div class="flex flex-col mt-2"> 27 27 + <label for="email">email</label> 28 28 + <input 29 29 + type="email" 30 30 + id="email" 31 31 + name="email" 32 32 + tabindex="4" 33 33 + required 34 34 + placeholder="jason@bourne.co" 35 35 + /> 36 36 + </div> 37 37 + <span class="text-sm text-gray-500 mt-1"> 38 38 + You will receive an email with an invite code. Enter your 39 39 + invite code, desired username, and password in the next 40 40 + page to complete your registration. 41 41 + </span> 42 42 + <button class="btn text-base w-full my-2 mt-6" type="submit" id="signup-button" tabindex="7" > 43 43 + <span>join now</span> 44 44 + </button> 45 45 + </form> 46 46 + <p class="text-sm text-gray-500"> 47 47 + Already have an ATProto account? <a href="/login" class="underline">Login to Tangled</a>. 48 48 + </p> 49 49 + 50 50 + <p id="signup-msg" class="error w-full"></p> 51 51 + </main> 52 52 + </body> 53 53 + </html> 54 54 + {{ end }} 55 55 +

+19

appview/pages/templates/user/starred.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }} · repos {{ end }} 2 2 + 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-repos" class="md:col-span-8 order-2 md:order-2"> 5 5 + {{ block "starredRepos" . }}{{ end }} 6 6 + </div> 7 7 + {{ end }} 8 8 + 9 9 + {{ define "starredRepos" }} 10 10 + <div id="repos" class="grid grid-cols-1 gap-4 mb-6"> 11 11 + {{ range .Repos }} 12 12 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm"> 13 13 + {{ template "user/fragments/repoCard" (list $ . true) }} 14 14 + </div> 15 15 + {{ else }} 16 16 + <p class="px-6 dark:text-white">This user does not have any starred repos yet.</p> 17 17 + {{ end }} 18 18 + </div> 19 19 + {{ end }}

+45

appview/pages/templates/user/strings.html

··· 1 1 + {{ define "title" }}{{ or .Card.UserHandle .Card.UserDid }} · strings {{ end }} 2 2 + 3 3 + {{ define "profileContent" }} 4 4 + <div id="all-strings" class="md:col-span-8 order-2 md:order-2"> 5 5 + {{ block "allStrings" . }}{{ end }} 6 6 + </div> 7 7 + {{ end }} 8 8 + 9 9 + {{ define "allStrings" }} 10 10 + <div id="strings" class="grid grid-cols-1 gap-4 mb-6"> 11 11 + {{ range .Strings }} 12 12 + <div class="border border-gray-200 dark:border-gray-700 rounded-sm"> 13 13 + {{ template "singleString" (list $ .) }} 14 14 + </div> 15 15 + {{ else }} 16 16 + <p class="px-6 dark:text-white">This user does not have any strings yet.</p> 17 17 + {{ end }} 18 18 + </div> 19 19 + {{ end }} 20 20 + 21 21 + {{ define "singleString" }} 22 22 + {{ $root := index . 0 }} 23 23 + {{ $s := index . 1 }} 24 24 + <div class="py-4 px-6 rounded bg-white dark:bg-gray-800"> 25 25 + <div class="font-medium dark:text-white flex gap-2 items-center"> 26 26 + <a href="/strings/{{ or $root.Card.UserHandle $root.Card.UserDid }}/{{ $s.Rkey }}">{{ $s.Filename }}</a> 27 27 + </div> 28 28 + {{ with $s.Description }} 29 29 + <div class="text-gray-600 dark:text-gray-300 text-sm"> 30 30 + {{ . }} 31 31 + </div> 32 32 + {{ end }} 33 33 + 34 34 + {{ $stat := $s.Stats }} 35 35 + <div class="text-gray-400 pt-4 text-sm font-mono inline-flex gap-2 mt-auto"> 36 36 + <span>{{ $stat.LineCount }} line{{if ne $stat.LineCount 1}}s{{end}}</span> 37 37 + <span class="select-none [&:before]:content-['·']"></span> 38 38 + {{ with $s.Edited }} 39 39 + <span>edited {{ template "repo/fragments/shortTimeAgo" . }}</span> 40 40 + {{ else }} 41 41 + {{ template "repo/fragments/shortTimeAgo" $s.Created }} 42 42 + {{ end }} 43 43 + </div> 44 44 + </div> 45 45 + {{ end }}

+34 -1

appview/posthog/notifier.go

··· 58 58 59 59 func (n *posthogNotifier) NewIssue(ctx context.Context, issue *db.Issue) { 60 60 err := n.client.Enqueue(posthog.Capture{ 61 61 - DistinctId: issue.OwnerDid, 61 61 + DistinctId: issue.Did, 62 62 Event: "new_issue", 63 63 Properties: posthog.Properties{ 64 64 "repo_at": issue.RepoAt.String(), ··· 129 129 log.Println("failed to enqueue posthog event:", err) 130 130 } 131 131 } 132 132 + 133 133 + func (n *posthogNotifier) DeleteString(ctx context.Context, did, rkey string) { 134 134 + err := n.client.Enqueue(posthog.Capture{ 135 135 + DistinctId: did, 136 136 + Event: "delete_string", 137 137 + Properties: posthog.Properties{"rkey": rkey}, 138 138 + }) 139 139 + if err != nil { 140 140 + log.Println("failed to enqueue posthog event:", err) 141 141 + } 142 142 + } 143 143 + 144 144 + func (n *posthogNotifier) EditString(ctx context.Context, string *db.String) { 145 145 + err := n.client.Enqueue(posthog.Capture{ 146 146 + DistinctId: string.Did.String(), 147 147 + Event: "edit_string", 148 148 + Properties: posthog.Properties{"rkey": string.Rkey}, 149 149 + }) 150 150 + if err != nil { 151 151 + log.Println("failed to enqueue posthog event:", err) 152 152 + } 153 153 + } 154 154 + 155 155 + func (n *posthogNotifier) CreateString(ctx context.Context, string *db.String) { 156 156 + err := n.client.Enqueue(posthog.Capture{ 157 157 + DistinctId: string.Did.String(), 158 158 + Event: "create_string", 159 159 + Properties: posthog.Properties{"rkey": string.Rkey}, 160 160 + }) 161 161 + if err != nil { 162 162 + log.Println("failed to enqueue posthog event:", err) 163 163 + } 164 164 + }

+389 -270

appview/pulls/pulls.go

··· 5 5 "encoding/json" 6 6 "errors" 7 7 "fmt" 8 8 - "io" 9 8 "log" 10 9 "net/http" 11 10 "sort" ··· 19 18 "tangled.sh/tangled.sh/core/appview/notify" 20 19 "tangled.sh/tangled.sh/core/appview/oauth" 21 20 "tangled.sh/tangled.sh/core/appview/pages" 21 21 + "tangled.sh/tangled.sh/core/appview/pages/markup" 22 22 "tangled.sh/tangled.sh/core/appview/reporesolver" 23 23 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 23 24 "tangled.sh/tangled.sh/core/idresolver" 24 24 - "tangled.sh/tangled.sh/core/knotclient" 25 25 "tangled.sh/tangled.sh/core/patchutil" 26 26 "tangled.sh/tangled.sh/core/tid" 27 27 "tangled.sh/tangled.sh/core/types" 28 28 29 29 "github.com/bluekeyes/go-gitdiff/gitdiff" 30 30 comatproto "github.com/bluesky-social/indigo/api/atproto" 31 31 - "github.com/bluesky-social/indigo/atproto/syntax" 32 31 lexutil "github.com/bluesky-social/indigo/lex/util" 32 32 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 33 33 "github.com/go-chi/chi/v5" 34 34 "github.com/google/uuid" 35 35 ) ··· 96 96 return 97 97 } 98 98 99 99 - mergeCheckResponse := s.mergeCheck(f, pull, stack) 99 99 + mergeCheckResponse := s.mergeCheck(r, f, pull, stack) 100 100 resubmitResult := pages.Unknown 101 101 if user.Did == pull.OwnerDid { 102 102 - resubmitResult = s.resubmitCheck(f, pull, stack) 102 102 + resubmitResult = s.resubmitCheck(r, f, pull, stack) 103 103 } 104 104 105 105 s.pages.PullActionsFragment(w, pages.PullActionsParams{ ··· 151 151 } 152 152 } 153 153 154 154 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), identsToResolve) 155 155 - didHandleMap := make(map[string]string) 156 156 - for _, identity := range resolvedIds { 157 157 - if !identity.Handle.IsInvalidHandle() { 158 158 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 159 159 - } else { 160 160 - didHandleMap[identity.DID.String()] = identity.DID.String() 161 161 - } 162 162 - } 163 163 - 164 164 - mergeCheckResponse := s.mergeCheck(f, pull, stack) 154 154 + mergeCheckResponse := s.mergeCheck(r, f, pull, stack) 165 155 resubmitResult := pages.Unknown 166 156 if user != nil && user.Did == pull.OwnerDid { 167 167 - resubmitResult = s.resubmitCheck(f, pull, stack) 157 157 + resubmitResult = s.resubmitCheck(r, f, pull, stack) 168 158 } 169 159 170 160 repoInfo := f.RepoInfo(user) ··· 212 202 s.pages.RepoSinglePull(w, pages.RepoSinglePullParams{ 213 203 LoggedInUser: user, 214 204 RepoInfo: repoInfo, 215 215 - DidHandleMap: didHandleMap, 216 205 Pull: pull, 217 206 Stack: stack, 218 207 AbandonedPulls: abandonedPulls, ··· 226 215 }) 227 216 } 228 217 229 229 - func (s *Pulls) mergeCheck(f *reporesolver.ResolvedRepo, pull *db.Pull, stack db.Stack) types.MergeCheckResponse { 218 218 + func (s *Pulls) mergeCheck(r *http.Request, f *reporesolver.ResolvedRepo, pull *db.Pull, stack db.Stack) types.MergeCheckResponse { 230 219 if pull.State == db.PullMerged { 231 220 return types.MergeCheckResponse{} 232 221 } 233 222 234 234 - secret, err := db.GetRegistrationKey(s.db, f.Knot) 235 235 - if err != nil { 236 236 - log.Printf("failed to get registration key: %v", err) 237 237 - return types.MergeCheckResponse{ 238 238 - Error: "failed to check merge status: this knot is unregistered", 239 239 - } 223 223 + scheme := "https" 224 224 + if s.config.Core.Dev { 225 225 + scheme = "http" 240 226 } 227 227 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 241 228 242 242 - ksClient, err := knotclient.NewSignedClient(f.Knot, secret, s.config.Core.Dev) 243 243 - if err != nil { 244 244 - log.Printf("failed to setup signed client for %s; ignoring: %v", f.Knot, err) 245 245 - return types.MergeCheckResponse{ 246 246 - Error: "failed to check merge status", 247 247 - } 229 229 + xrpcc := indigoxrpc.Client{ 230 230 + Host: host, 248 231 } 249 232 250 233 patch := pull.LatestPatch() ··· 257 240 patch = mergeable.CombinedPatch() 258 241 } 259 242 260 260 - resp, err := ksClient.MergeCheck([]byte(patch), f.OwnerDid(), f.RepoName, pull.TargetBranch) 261 261 - if err != nil { 262 262 - log.Println("failed to check for mergeability:", err) 243 243 + resp, xe := tangled.RepoMergeCheck( 244 244 + r.Context(), 245 245 + &xrpcc, 246 246 + &tangled.RepoMergeCheck_Input{ 247 247 + Did: f.OwnerDid(), 248 248 + Name: f.Name, 249 249 + Branch: pull.TargetBranch, 250 250 + Patch: patch, 251 251 + }, 252 252 + ) 253 253 + if err := xrpcclient.HandleXrpcErr(xe); err != nil { 254 254 + log.Println("failed to check for mergeability", "err", err) 263 255 return types.MergeCheckResponse{ 264 264 - Error: "failed to check merge status", 256 256 + Error: fmt.Sprintf("failed to check merge status: %s", err.Error()), 265 257 } 266 258 } 267 267 - switch resp.StatusCode { 268 268 - case 404: 269 269 - return types.MergeCheckResponse{ 270 270 - Error: "failed to check merge status: this knot does not support PRs", 271 271 - } 272 272 - case 400: 273 273 - return types.MergeCheckResponse{ 274 274 - Error: "failed to check merge status: does this knot support PRs?", 259 259 + 260 260 + // convert xrpc response to internal types 261 261 + conflicts := make([]types.ConflictInfo, len(resp.Conflicts)) 262 262 + for i, conflict := range resp.Conflicts { 263 263 + conflicts[i] = types.ConflictInfo{ 264 264 + Filename: conflict.Filename, 265 265 + Reason: conflict.Reason, 275 266 } 276 267 } 277 268 278 278 - respBody, err := io.ReadAll(resp.Body) 279 279 - if err != nil { 280 280 - log.Println("failed to read merge check response body") 281 281 - return types.MergeCheckResponse{ 282 282 - Error: "failed to check merge status: knot is not speaking the right language", 283 283 - } 269 269 + result := types.MergeCheckResponse{ 270 270 + IsConflicted: resp.Is_conflicted, 271 271 + Conflicts: conflicts, 272 272 + } 273 273 + 274 274 + if resp.Message != nil { 275 275 + result.Message = *resp.Message 284 276 } 285 285 - defer resp.Body.Close() 286 277 287 287 - var mergeCheckResponse types.MergeCheckResponse 288 288 - err = json.Unmarshal(respBody, &mergeCheckResponse) 289 289 - if err != nil { 290 290 - log.Println("failed to unmarshal merge check response", err) 291 291 - return types.MergeCheckResponse{ 292 292 - Error: "failed to check merge status: knot is not speaking the right language", 293 293 - } 278 278 + if resp.Error != nil { 279 279 + result.Error = *resp.Error 294 280 } 295 281 296 296 - return mergeCheckResponse 282 282 + return result 297 283 } 298 284 299 299 - func (s *Pulls) resubmitCheck(f *reporesolver.ResolvedRepo, pull *db.Pull, stack db.Stack) pages.ResubmitResult { 285 285 + func (s *Pulls) resubmitCheck(r *http.Request, f *reporesolver.ResolvedRepo, pull *db.Pull, stack db.Stack) pages.ResubmitResult { 300 286 if pull.State == db.PullMerged || pull.State == db.PullDeleted || pull.PullSource == nil { 301 287 return pages.Unknown 302 288 } ··· 318 304 // pulls within the same repo 319 305 knot = f.Knot 320 306 ownerDid = f.OwnerDid() 321 321 - repoName = f.RepoName 307 307 + repoName = f.Name 322 308 } 323 309 324 324 - us, err := knotclient.NewUnsignedClient(knot, s.config.Core.Dev) 325 325 - if err != nil { 326 326 - log.Printf("failed to setup client for %s; ignoring: %v", knot, err) 327 327 - return pages.Unknown 310 310 + scheme := "http" 311 311 + if !s.config.Core.Dev { 312 312 + scheme = "https" 313 313 + } 314 314 + host := fmt.Sprintf("%s://%s", scheme, knot) 315 315 + xrpcc := &indigoxrpc.Client{ 316 316 + Host: host, 328 317 } 329 318 330 330 - result, err := us.Branch(ownerDid, repoName, pull.PullSource.Branch) 319 319 + repo := fmt.Sprintf("%s/%s", ownerDid, repoName) 320 320 + branchResp, err := tangled.RepoBranch(r.Context(), xrpcc, pull.PullSource.Branch, repo) 331 321 if err != nil { 322 322 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 323 323 + log.Println("failed to call XRPC repo.branches", xrpcerr) 324 324 + return pages.Unknown 325 325 + } 332 326 log.Println("failed to reach knotserver", err) 333 327 return pages.Unknown 334 328 } 335 329 330 330 + targetBranch := branchResp 331 331 + 336 332 latestSourceRev := pull.Submissions[pull.LastRoundNumber()].SourceRev 337 333 338 334 if pull.IsStacked() && stack != nil { ··· 340 336 latestSourceRev = top.Submissions[top.LastRoundNumber()].SourceRev 341 337 } 342 338 343 343 - if latestSourceRev != result.Branch.Hash { 339 339 + if latestSourceRev != targetBranch.Hash { 344 340 return pages.ShouldResubmit 345 341 } 346 342 ··· 377 373 return 378 374 } 379 375 380 380 - identsToResolve := []string{pull.OwnerDid} 381 381 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), identsToResolve) 382 382 - didHandleMap := make(map[string]string) 383 383 - for _, identity := range resolvedIds { 384 384 - if !identity.Handle.IsInvalidHandle() { 385 385 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 386 386 - } else { 387 387 - didHandleMap[identity.DID.String()] = identity.DID.String() 388 388 - } 389 389 - } 390 390 - 391 376 patch := pull.Submissions[roundIdInt].Patch 392 377 diff := patchutil.AsNiceDiff(patch, pull.TargetBranch) 393 378 394 379 s.pages.RepoPullPatchPage(w, pages.RepoPullPatchParams{ 395 380 LoggedInUser: user, 396 396 - DidHandleMap: didHandleMap, 397 381 RepoInfo: f.RepoInfo(user), 398 382 Pull: pull, 399 383 Stack: stack, ··· 440 424 return 441 425 } 442 426 443 443 - identsToResolve := []string{pull.OwnerDid} 444 444 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), identsToResolve) 445 445 - didHandleMap := make(map[string]string) 446 446 - for _, identity := range resolvedIds { 447 447 - if !identity.Handle.IsInvalidHandle() { 448 448 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 449 449 - } else { 450 450 - didHandleMap[identity.DID.String()] = identity.DID.String() 451 451 - } 452 452 - } 453 453 - 454 427 currentPatch, err := patchutil.AsDiff(pull.Submissions[roundIdInt].Patch) 455 428 if err != nil { 456 429 log.Println("failed to interdiff; current patch malformed") ··· 472 445 RepoInfo: f.RepoInfo(user), 473 446 Pull: pull, 474 447 Round: roundIdInt, 475 475 - DidHandleMap: didHandleMap, 476 448 Interdiff: interdiff, 477 449 DiffOpts: diffOpts, 478 450 }) ··· 494 466 return 495 467 } 496 468 497 497 - identsToResolve := []string{pull.OwnerDid} 498 498 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), identsToResolve) 499 499 - didHandleMap := make(map[string]string) 500 500 - for _, identity := range resolvedIds { 501 501 - if !identity.Handle.IsInvalidHandle() { 502 502 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 503 503 - } else { 504 504 - didHandleMap[identity.DID.String()] = identity.DID.String() 505 505 - } 506 506 - } 507 507 - 508 469 w.Header().Set("Content-Type", "text/plain; charset=utf-8") 509 470 w.Write([]byte(pull.Submissions[roundIdInt].Patch)) 510 471 } ··· 529 490 530 491 pulls, err := db.GetPulls( 531 492 s.db, 532 532 - db.FilterEq("repo_at", f.RepoAt), 493 493 + db.FilterEq("repo_at", f.RepoAt()), 533 494 db.FilterEq("state", state), 534 495 ) 535 496 if err != nil { ··· 595 556 m[p.Sha] = p 596 557 } 597 558 598 598 - identsToResolve := make([]string, len(pulls)) 599 599 - for i, pull := range pulls { 600 600 - identsToResolve[i] = pull.OwnerDid 601 601 - } 602 602 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), identsToResolve) 603 603 - didHandleMap := make(map[string]string) 604 604 - for _, identity := range resolvedIds { 605 605 - if !identity.Handle.IsInvalidHandle() { 606 606 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 607 607 - } else { 608 608 - didHandleMap[identity.DID.String()] = identity.DID.String() 609 609 - } 610 610 - } 611 611 - 612 559 s.pages.RepoPulls(w, pages.RepoPullsParams{ 613 560 LoggedInUser: s.oauth.GetUser(r), 614 561 RepoInfo: f.RepoInfo(user), 615 562 Pulls: pulls, 616 616 - DidHandleMap: didHandleMap, 617 563 FilteringBy: state, 618 564 Stacks: stacks, 619 565 Pipelines: m, ··· 669 615 defer tx.Rollback() 670 616 671 617 createdAt := time.Now().Format(time.RFC3339) 672 672 - ownerDid := user.Did 673 618 674 674 - pullAt, err := db.GetPullAt(s.db, f.RepoAt, pull.PullId) 619 619 + pullAt, err := db.GetPullAt(s.db, f.RepoAt(), pull.PullId) 675 620 if err != nil { 676 621 log.Println("failed to get pull at", err) 677 622 s.pages.Notice(w, "pull-comment", "Failed to create comment.") 678 623 return 679 624 } 680 625 681 681 - atUri := f.RepoAt.String() 682 626 client, err := s.oauth.AuthorizedClient(r) 683 627 if err != nil { 684 628 log.Println("failed to get authorized client", err) ··· 691 635 Rkey: tid.TID(), 692 636 Record: &lexutil.LexiconTypeDecoder{ 693 637 Val: &tangled.RepoPullComment{ 694 694 - Repo: &atUri, 695 638 Pull: string(pullAt), 696 696 - Owner: &ownerDid, 697 639 Body: body, 698 640 CreatedAt: createdAt, 699 641 }, ··· 707 649 708 650 comment := &db.PullComment{ 709 651 OwnerDid: user.Did, 710 710 - RepoAt: f.RepoAt.String(), 652 652 + RepoAt: f.RepoAt().String(), 711 653 PullId: pull.PullId, 712 654 Body: body, 713 655 CommentAt: atResp.Uri, ··· 746 688 747 689 switch r.Method { 748 690 case http.MethodGet: 749 749 - us, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 691 691 + scheme := "http" 692 692 + if !s.config.Core.Dev { 693 693 + scheme = "https" 694 694 + } 695 695 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 696 696 + xrpcc := &indigoxrpc.Client{ 697 697 + Host: host, 698 698 + } 699 699 + 700 700 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 701 701 + xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 750 702 if err != nil { 751 751 - log.Printf("failed to create unsigned client for %s", f.Knot) 752 752 - s.pages.Error503(w) 703 703 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 704 704 + log.Println("failed to call XRPC repo.branches", xrpcerr) 705 705 + s.pages.Error503(w) 706 706 + return 707 707 + } 708 708 + log.Println("failed to fetch branches", err) 753 709 return 754 710 } 755 711 756 756 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 757 757 - if err != nil { 758 758 - log.Println("failed to fetch branches", err) 712 712 + var result types.RepoBranchesResponse 713 713 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 714 714 + log.Println("failed to decode XRPC response", err) 715 715 + s.pages.Error503(w) 759 716 return 760 717 } 761 718 ··· 801 758 s.pages.Notice(w, "pull", "Title is required for git-diff patches.") 802 759 return 803 760 } 761 761 + sanitizer := markup.NewSanitizer() 762 762 + if st := strings.TrimSpace(sanitizer.SanitizeDescription(title)); (st) == "" { 763 763 + s.pages.Notice(w, "pull", "Title is empty after HTML sanitization") 764 764 + return 765 765 + } 804 766 } 805 767 806 768 // Validate we have at least one valid PR creation method ··· 815 777 return 816 778 } 817 779 818 818 - us, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 819 819 - if err != nil { 820 820 - log.Printf("failed to create unsigned client to %s: %v", f.Knot, err) 821 821 - s.pages.Notice(w, "pull", "Failed to create a pull request. Try again later.") 822 822 - return 780 780 + // us, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 781 781 + // if err != nil { 782 782 + // log.Printf("failed to create unsigned client to %s: %v", f.Knot, err) 783 783 + // s.pages.Notice(w, "pull", "Failed to create a pull request. Try again later.") 784 784 + // return 785 785 + // } 786 786 + 787 787 + // TODO: make capabilities an xrpc call 788 788 + caps := struct { 789 789 + PullRequests struct { 790 790 + FormatPatch bool 791 791 + BranchSubmissions bool 792 792 + ForkSubmissions bool 793 793 + PatchSubmissions bool 794 794 + } 795 795 + }{ 796 796 + PullRequests: struct { 797 797 + FormatPatch bool 798 798 + BranchSubmissions bool 799 799 + ForkSubmissions bool 800 800 + PatchSubmissions bool 801 801 + }{ 802 802 + FormatPatch: true, 803 803 + BranchSubmissions: true, 804 804 + ForkSubmissions: true, 805 805 + PatchSubmissions: true, 806 806 + }, 823 807 } 824 808 825 825 - caps, err := us.Capabilities() 826 826 - if err != nil { 827 827 - log.Println("error fetching knot caps", f.Knot, err) 828 828 - s.pages.Notice(w, "pull", "Failed to create a pull request. Try again later.") 829 829 - return 830 830 - } 809 809 + // caps, err := us.Capabilities() 810 810 + // if err != nil { 811 811 + // log.Println("error fetching knot caps", f.Knot, err) 812 812 + // s.pages.Notice(w, "pull", "Failed to create a pull request. Try again later.") 813 813 + // return 814 814 + // } 831 815 832 816 if !caps.PullRequests.FormatPatch { 833 817 s.pages.Notice(w, "pull", "This knot doesn't support format-patch. Unfortunately, there is no fallback for now.") ··· 869 853 sourceBranch string, 870 854 isStacked bool, 871 855 ) { 872 872 - // Generate a patch using /compare 873 873 - ksClient, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 874 874 - if err != nil { 875 875 - log.Printf("failed to create signed client for %s: %s", f.Knot, err) 876 876 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 877 877 - return 856 856 + scheme := "http" 857 857 + if !s.config.Core.Dev { 858 858 + scheme = "https" 859 859 + } 860 860 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 861 861 + xrpcc := &indigoxrpc.Client{ 862 862 + Host: host, 878 863 } 879 864 880 880 - comparison, err := ksClient.Compare(f.OwnerDid(), f.RepoName, targetBranch, sourceBranch) 865 865 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 866 866 + xrpcBytes, err := tangled.RepoCompare(r.Context(), xrpcc, repo, targetBranch, sourceBranch) 881 867 if err != nil { 868 868 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 869 869 + log.Println("failed to call XRPC repo.compare", xrpcerr) 870 870 + s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 871 871 + return 872 872 + } 882 873 log.Println("failed to compare", err) 883 874 s.pages.Notice(w, "pull", err.Error()) 884 875 return 885 876 } 886 877 878 878 + var comparison types.RepoFormatPatchResponse 879 879 + if err := json.Unmarshal(xrpcBytes, &comparison); err != nil { 880 880 + log.Println("failed to decode XRPC compare response", err) 881 881 + s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 882 882 + return 883 883 + } 884 884 + 887 885 sourceRev := comparison.Rev2 888 886 patch := comparison.Patch 889 887 ··· 913 911 } 914 912 915 913 func (s *Pulls) handleForkBasedPull(w http.ResponseWriter, r *http.Request, f *reporesolver.ResolvedRepo, user *oauth.User, forkRepo string, title, body, targetBranch, sourceBranch string, isStacked bool) { 916 916 - fork, err := db.GetForkByDid(s.db, user.Did, forkRepo) 914 914 + repoString := strings.SplitN(forkRepo, "/", 2) 915 915 + forkOwnerDid := repoString[0] 916 916 + repoName := repoString[1] 917 917 + fork, err := db.GetForkByDid(s.db, forkOwnerDid, repoName) 917 918 if errors.Is(err, sql.ErrNoRows) { 918 919 s.pages.Notice(w, "pull", "No such fork.") 919 920 return ··· 923 924 return 924 925 } 925 926 926 926 - secret, err := db.GetRegistrationKey(s.db, fork.Knot) 927 927 - if err != nil { 928 928 - log.Println("failed to fetch registration key:", err) 929 929 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 930 930 - return 931 931 - } 927 927 + client, err := s.oauth.ServiceClient( 928 928 + r, 929 929 + oauth.WithService(fork.Knot), 930 930 + oauth.WithLxm(tangled.RepoHiddenRefNSID), 931 931 + oauth.WithDev(s.config.Core.Dev), 932 932 + ) 932 933 933 933 - sc, err := knotclient.NewSignedClient(fork.Knot, secret, s.config.Core.Dev) 934 934 - if err != nil { 935 935 - log.Println("failed to create signed client:", err) 936 936 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 934 934 + resp, err := tangled.RepoHiddenRef( 935 935 + r.Context(), 936 936 + client, 937 937 + &tangled.RepoHiddenRef_Input{ 938 938 + ForkRef: sourceBranch, 939 939 + RemoteRef: targetBranch, 940 940 + Repo: fork.RepoAt().String(), 941 941 + }, 942 942 + ) 943 943 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 944 944 + s.pages.Notice(w, "pull", err.Error()) 937 945 return 938 946 } 939 947 940 940 - us, err := knotclient.NewUnsignedClient(fork.Knot, s.config.Core.Dev) 941 941 - if err != nil { 942 942 - log.Println("failed to create unsigned client:", err) 943 943 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 944 944 - return 945 945 - } 946 946 - 947 947 - resp, err := sc.NewHiddenRef(user.Did, fork.Name, sourceBranch, targetBranch) 948 948 - if err != nil { 949 949 - log.Println("failed to create hidden ref:", err, resp.StatusCode) 950 950 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 951 951 - return 952 952 - } 953 953 - 954 954 - switch resp.StatusCode { 955 955 - case 404: 956 956 - case 400: 957 957 - s.pages.Notice(w, "pull", "Branch based pull requests are not supported on this knot.") 948 948 + if !resp.Success { 949 949 + errorMsg := "Failed to create pull request" 950 950 + if resp.Error != nil { 951 951 + errorMsg = fmt.Sprintf("Failed to create pull request: %s", *resp.Error) 952 952 + } 953 953 + s.pages.Notice(w, "pull", errorMsg) 958 954 return 959 955 } 960 956 ··· 964 960 // hiddenRef: hidden/feature-1/main (on repo-fork) 965 961 // targetBranch: main (on repo-1) 966 962 // sourceBranch: feature-1 (on repo-fork) 967 967 - comparison, err := us.Compare(user.Did, fork.Name, hiddenRef, sourceBranch) 963 963 + forkScheme := "http" 964 964 + if !s.config.Core.Dev { 965 965 + forkScheme = "https" 966 966 + } 967 967 + forkHost := fmt.Sprintf("%s://%s", forkScheme, fork.Knot) 968 968 + forkXrpcc := &indigoxrpc.Client{ 969 969 + Host: forkHost, 970 970 + } 971 971 + 972 972 + forkRepoId := fmt.Sprintf("%s/%s", fork.Did, fork.Name) 973 973 + forkXrpcBytes, err := tangled.RepoCompare(r.Context(), forkXrpcc, forkRepoId, hiddenRef, sourceBranch) 968 974 if err != nil { 975 975 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 976 976 + log.Println("failed to call XRPC repo.compare for fork", xrpcerr) 977 977 + s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 978 978 + return 979 979 + } 969 980 log.Println("failed to compare across branches", err) 970 981 s.pages.Notice(w, "pull", err.Error()) 982 982 + return 983 983 + } 984 984 + 985 985 + var comparison types.RepoFormatPatchResponse 986 986 + if err := json.Unmarshal(forkXrpcBytes, &comparison); err != nil { 987 987 + log.Println("failed to decode XRPC compare response for fork", err) 988 988 + s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 971 989 return 972 990 } 973 991 ··· 979 997 return 980 998 } 981 999 982 982 - forkAtUri, err := syntax.ParseATURI(fork.AtUri) 983 983 - if err != nil { 984 984 - log.Println("failed to parse fork AT URI", err) 985 985 - s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 986 986 - return 987 987 - } 1000 1000 + forkAtUri := fork.RepoAt() 1001 1001 + forkAtUriStr := forkAtUri.String() 988 1002 989 1003 pullSource := &db.PullSource{ 990 1004 Branch: sourceBranch, ··· 992 1006 } 993 1007 recordPullSource := &tangled.RepoPull_Source{ 994 1008 Branch: sourceBranch, 995 995 - Repo: &fork.AtUri, 1009 1009 + Repo: &forkAtUriStr, 996 1010 Sha: sourceRev, 997 1011 } 998 1012 ··· 1068 1082 Body: body, 1069 1083 TargetBranch: targetBranch, 1070 1084 OwnerDid: user.Did, 1071 1071 - RepoAt: f.RepoAt, 1085 1085 + RepoAt: f.RepoAt(), 1072 1086 Rkey: rkey, 1073 1087 Submissions: []*db.PullSubmission{ 1074 1088 &initialSubmission, ··· 1081 1095 s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") 1082 1096 return 1083 1097 } 1084 1084 - pullId, err := db.NextPullId(tx, f.RepoAt) 1098 1098 + pullId, err := db.NextPullId(tx, f.RepoAt()) 1085 1099 if err != nil { 1086 1100 log.Println("failed to get pull id", err) 1087 1101 s.pages.Notice(w, "pull", "Failed to create pull request. Try again later.") ··· 1094 1108 Rkey: rkey, 1095 1109 Record: &lexutil.LexiconTypeDecoder{ 1096 1110 Val: &tangled.RepoPull{ 1097 1097 - Title: title, 1098 1098 - PullId: int64(pullId), 1099 1099 - TargetRepo: string(f.RepoAt), 1100 1100 - TargetBranch: targetBranch, 1101 1101 - Patch: patch, 1102 1102 - Source: recordPullSource, 1111 1111 + Title: title, 1112 1112 + Target: &tangled.RepoPull_Target{ 1113 1113 + Repo: string(f.RepoAt()), 1114 1114 + Branch: targetBranch, 1115 1115 + }, 1116 1116 + Patch: patch, 1117 1117 + Source: recordPullSource, 1103 1118 }, 1104 1119 }, 1105 1120 }) ··· 1267 1282 return 1268 1283 } 1269 1284 1270 1270 - us, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 1285 1285 + scheme := "http" 1286 1286 + if !s.config.Core.Dev { 1287 1287 + scheme = "https" 1288 1288 + } 1289 1289 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1290 1290 + xrpcc := &indigoxrpc.Client{ 1291 1291 + Host: host, 1292 1292 + } 1293 1293 + 1294 1294 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1295 1295 + xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 1271 1296 if err != nil { 1272 1272 - log.Printf("failed to create unsigned client for %s", f.Knot) 1273 1273 - s.pages.Error503(w) 1297 1297 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1298 1298 + log.Println("failed to call XRPC repo.branches", xrpcerr) 1299 1299 + s.pages.Error503(w) 1300 1300 + return 1301 1301 + } 1302 1302 + log.Println("failed to fetch branches", err) 1274 1303 return 1275 1304 } 1276 1305 1277 1277 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 1278 1278 - if err != nil { 1279 1279 - log.Println("failed to reach knotserver", err) 1306 1306 + var result types.RepoBranchesResponse 1307 1307 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 1308 1308 + log.Println("failed to decode XRPC response", err) 1309 1309 + s.pages.Error503(w) 1280 1310 return 1281 1311 } 1282 1312 ··· 1330 1360 } 1331 1361 1332 1362 forkVal := r.URL.Query().Get("fork") 1333 1333 - 1363 1363 + repoString := strings.SplitN(forkVal, "/", 2) 1364 1364 + forkOwnerDid := repoString[0] 1365 1365 + forkName := repoString[1] 1334 1366 // fork repo 1335 1335 - repo, err := db.GetRepo(s.db, user.Did, forkVal) 1367 1367 + repo, err := db.GetRepo(s.db, forkOwnerDid, forkName) 1336 1368 if err != nil { 1337 1369 log.Println("failed to get repo", user.Did, forkVal) 1338 1370 return 1339 1371 } 1340 1372 1341 1341 - sourceBranchesClient, err := knotclient.NewUnsignedClient(repo.Knot, s.config.Core.Dev) 1342 1342 - if err != nil { 1343 1343 - log.Printf("failed to create unsigned client for %s", repo.Knot) 1344 1344 - s.pages.Error503(w) 1345 1345 - return 1373 1373 + sourceScheme := "http" 1374 1374 + if !s.config.Core.Dev { 1375 1375 + sourceScheme = "https" 1376 1376 + } 1377 1377 + sourceHost := fmt.Sprintf("%s://%s", sourceScheme, repo.Knot) 1378 1378 + sourceXrpcc := &indigoxrpc.Client{ 1379 1379 + Host: sourceHost, 1346 1380 } 1347 1381 1348 1348 - sourceResult, err := sourceBranchesClient.Branches(user.Did, repo.Name) 1382 1382 + sourceRepo := fmt.Sprintf("%s/%s", forkOwnerDid, repo.Name) 1383 1383 + sourceXrpcBytes, err := tangled.RepoBranches(r.Context(), sourceXrpcc, "", 0, sourceRepo) 1349 1384 if err != nil { 1350 1350 - log.Println("failed to reach knotserver for source branches", err) 1385 1385 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1386 1386 + log.Println("failed to call XRPC repo.branches for source", xrpcerr) 1387 1387 + s.pages.Error503(w) 1388 1388 + return 1389 1389 + } 1390 1390 + log.Println("failed to fetch source branches", err) 1351 1391 return 1352 1392 } 1353 1393 1354 1354 - targetBranchesClient, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 1355 1355 - if err != nil { 1356 1356 - log.Printf("failed to create unsigned client for target knot %s", f.Knot) 1394 1394 + // Decode source branches 1395 1395 + var sourceBranches types.RepoBranchesResponse 1396 1396 + if err := json.Unmarshal(sourceXrpcBytes, &sourceBranches); err != nil { 1397 1397 + log.Println("failed to decode source branches XRPC response", err) 1357 1398 s.pages.Error503(w) 1358 1399 return 1359 1400 } 1360 1401 1361 1361 - targetResult, err := targetBranchesClient.Branches(f.OwnerDid(), f.RepoName) 1402 1402 + targetScheme := "http" 1403 1403 + if !s.config.Core.Dev { 1404 1404 + targetScheme = "https" 1405 1405 + } 1406 1406 + targetHost := fmt.Sprintf("%s://%s", targetScheme, f.Knot) 1407 1407 + targetXrpcc := &indigoxrpc.Client{ 1408 1408 + Host: targetHost, 1409 1409 + } 1410 1410 + 1411 1411 + targetRepo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1412 1412 + targetXrpcBytes, err := tangled.RepoBranches(r.Context(), targetXrpcc, "", 0, targetRepo) 1362 1413 if err != nil { 1363 1363 - log.Println("failed to reach knotserver for target branches", err) 1414 1414 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1415 1415 + log.Println("failed to call XRPC repo.branches for target", xrpcerr) 1416 1416 + s.pages.Error503(w) 1417 1417 + return 1418 1418 + } 1419 1419 + log.Println("failed to fetch target branches", err) 1364 1420 return 1365 1421 } 1366 1422 1367 1367 - sourceBranches := sourceResult.Branches 1368 1368 - sort.Slice(sourceBranches, func(i int, j int) bool { 1369 1369 - return sourceBranches[i].Commit.Committer.When.After(sourceBranches[j].Commit.Committer.When) 1423 1423 + // Decode target branches 1424 1424 + var targetBranches types.RepoBranchesResponse 1425 1425 + if err := json.Unmarshal(targetXrpcBytes, &targetBranches); err != nil { 1426 1426 + log.Println("failed to decode target branches XRPC response", err) 1427 1427 + s.pages.Error503(w) 1428 1428 + return 1429 1429 + } 1430 1430 + 1431 1431 + sort.Slice(sourceBranches.Branches, func(i int, j int) bool { 1432 1432 + return sourceBranches.Branches[i].Commit.Committer.When.After(sourceBranches.Branches[j].Commit.Committer.When) 1370 1433 }) 1371 1434 1372 1435 s.pages.PullCompareForkBranchesFragment(w, pages.PullCompareForkBranchesParams{ 1373 1436 RepoInfo: f.RepoInfo(user), 1374 1374 - SourceBranches: sourceBranches, 1375 1375 - TargetBranches: targetResult.Branches, 1437 1437 + SourceBranches: sourceBranches.Branches, 1438 1438 + TargetBranches: targetBranches.Branches, 1376 1439 }) 1377 1440 } 1378 1441 ··· 1467 1530 return 1468 1531 } 1469 1532 1470 1470 - ksClient, err := knotclient.NewUnsignedClient(f.Knot, s.config.Core.Dev) 1471 1471 - if err != nil { 1472 1472 - log.Printf("failed to create client for %s: %s", f.Knot, err) 1473 1473 - s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1474 1474 - return 1533 1533 + scheme := "http" 1534 1534 + if !s.config.Core.Dev { 1535 1535 + scheme = "https" 1536 1536 + } 1537 1537 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1538 1538 + xrpcc := &indigoxrpc.Client{ 1539 1539 + Host: host, 1475 1540 } 1476 1541 1477 1477 - comparison, err := ksClient.Compare(f.OwnerDid(), f.RepoName, pull.TargetBranch, pull.PullSource.Branch) 1542 1542 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1543 1543 + xrpcBytes, err := tangled.RepoCompare(r.Context(), xrpcc, repo, pull.TargetBranch, pull.PullSource.Branch) 1478 1544 if err != nil { 1545 1545 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1546 1546 + log.Println("failed to call XRPC repo.compare", xrpcerr) 1547 1547 + s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1548 1548 + return 1549 1549 + } 1479 1550 log.Printf("compare request failed: %s", err) 1480 1551 s.pages.Notice(w, "resubmit-error", err.Error()) 1552 1552 + return 1553 1553 + } 1554 1554 + 1555 1555 + var comparison types.RepoFormatPatchResponse 1556 1556 + if err := json.Unmarshal(xrpcBytes, &comparison); err != nil { 1557 1557 + log.Println("failed to decode XRPC compare response", err) 1558 1558 + s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1481 1559 return 1482 1560 } 1483 1561 ··· 1517 1595 } 1518 1596 1519 1597 // extract patch by performing compare 1520 1520 - ksClient, err := knotclient.NewUnsignedClient(forkRepo.Knot, s.config.Core.Dev) 1598 1598 + forkScheme := "http" 1599 1599 + if !s.config.Core.Dev { 1600 1600 + forkScheme = "https" 1601 1601 + } 1602 1602 + forkHost := fmt.Sprintf("%s://%s", forkScheme, forkRepo.Knot) 1603 1603 + forkRepoId := fmt.Sprintf("%s/%s", forkRepo.Did, forkRepo.Name) 1604 1604 + forkXrpcBytes, err := tangled.RepoCompare(r.Context(), &indigoxrpc.Client{Host: forkHost}, forkRepoId, pull.TargetBranch, pull.PullSource.Branch) 1521 1605 if err != nil { 1522 1522 - log.Printf("failed to create client for %s: %s", forkRepo.Knot, err) 1606 1606 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1607 1607 + log.Println("failed to call XRPC repo.compare for fork", xrpcerr) 1608 1608 + s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1609 1609 + return 1610 1610 + } 1611 1611 + log.Printf("failed to compare branches: %s", err) 1523 1612 s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1524 1613 return 1525 1614 } 1526 1615 1527 1527 - secret, err := db.GetRegistrationKey(s.db, forkRepo.Knot) 1528 1528 - if err != nil { 1529 1529 - log.Printf("failed to get registration key for %s: %s", forkRepo.Knot, err) 1616 1616 + var forkComparison types.RepoFormatPatchResponse 1617 1617 + if err := json.Unmarshal(forkXrpcBytes, &forkComparison); err != nil { 1618 1618 + log.Println("failed to decode XRPC compare response for fork", err) 1530 1619 s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1531 1620 return 1532 1621 } 1533 1622 1534 1623 // update the hidden tracking branch to latest 1535 1535 - signedClient, err := knotclient.NewSignedClient(forkRepo.Knot, secret, s.config.Core.Dev) 1624 1624 + client, err := s.oauth.ServiceClient( 1625 1625 + r, 1626 1626 + oauth.WithService(forkRepo.Knot), 1627 1627 + oauth.WithLxm(tangled.RepoHiddenRefNSID), 1628 1628 + oauth.WithDev(s.config.Core.Dev), 1629 1629 + ) 1536 1630 if err != nil { 1537 1537 - log.Printf("failed to create signed client for %s: %s", forkRepo.Knot, err) 1538 1538 - s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1631 1631 + log.Printf("failed to connect to knot server: %v", err) 1539 1632 return 1540 1633 } 1541 1634 1542 1542 - resp, err := signedClient.NewHiddenRef(forkRepo.Did, forkRepo.Name, pull.PullSource.Branch, pull.TargetBranch) 1543 1543 - if err != nil || resp.StatusCode != http.StatusNoContent { 1544 1544 - log.Printf("failed to update tracking branch: %s", err) 1545 1545 - s.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 1635 1635 + resp, err := tangled.RepoHiddenRef( 1636 1636 + r.Context(), 1637 1637 + client, 1638 1638 + &tangled.RepoHiddenRef_Input{ 1639 1639 + ForkRef: pull.PullSource.Branch, 1640 1640 + RemoteRef: pull.TargetBranch, 1641 1641 + Repo: forkRepo.RepoAt().String(), 1642 1642 + }, 1643 1643 + ) 1644 1644 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 1645 1645 + s.pages.Notice(w, "resubmit-error", err.Error()) 1546 1646 return 1547 1647 } 1548 1548 - 1549 1549 - hiddenRef := fmt.Sprintf("hidden/%s/%s", pull.PullSource.Branch, pull.TargetBranch) 1550 1550 - comparison, err := ksClient.Compare(forkRepo.Did, forkRepo.Name, hiddenRef, pull.PullSource.Branch) 1551 1551 - if err != nil { 1552 1552 - log.Printf("failed to compare branches: %s", err) 1553 1553 - s.pages.Notice(w, "resubmit-error", err.Error()) 1648 1648 + if !resp.Success { 1649 1649 + log.Println("Failed to update tracking ref.", "err", resp.Error) 1650 1650 + s.pages.Notice(w, "resubmit-error", "Failed to update tracking ref.") 1554 1651 return 1555 1652 } 1653 1653 + 1654 1654 + // Use the fork comparison we already made 1655 1655 + comparison := forkComparison 1556 1656 1557 1657 sourceRev := comparison.Rev2 1558 1658 patch := comparison.Patch ··· 1656 1756 SwapRecord: ex.Cid, 1657 1757 Record: &lexutil.LexiconTypeDecoder{ 1658 1758 Val: &tangled.RepoPull{ 1659 1659 - Title: pull.Title, 1660 1660 - PullId: int64(pull.PullId), 1661 1661 - TargetRepo: string(f.RepoAt), 1662 1662 - TargetBranch: pull.TargetBranch, 1663 1663 - Patch: patch, // new patch 1664 1664 - Source: recordPullSource, 1759 1759 + Title: pull.Title, 1760 1760 + Target: &tangled.RepoPull_Target{ 1761 1761 + Repo: string(f.RepoAt()), 1762 1762 + Branch: pull.TargetBranch, 1763 1763 + }, 1764 1764 + Patch: patch, // new patch 1765 1765 + Source: recordPullSource, 1665 1766 }, 1666 1767 }, 1667 1768 }) ··· 1774 1875 1775 1876 // deleted pulls are marked as deleted in the DB 1776 1877 for _, p := range deletions { 1878 1878 + // do not do delete already merged PRs 1879 1879 + if p.State == db.PullMerged { 1880 1880 + continue 1881 1881 + } 1882 1882 + 1777 1883 err := db.DeletePull(tx, p.RepoAt, p.PullId) 1778 1884 if err != nil { 1779 1885 log.Println("failed to delete pull", err, p.PullId) ··· 1813 1919 for id := range updated { 1814 1920 op, _ := origById[id] 1815 1921 np, _ := newById[id] 1922 1922 + 1923 1923 + // do not update already merged PRs 1924 1924 + if op.State == db.PullMerged { 1925 1925 + continue 1926 1926 + } 1816 1927 1817 1928 submission := np.Submissions[np.LastRoundNumber()] 1818 1929 ··· 1958 2069 1959 2070 patch := pullsToMerge.CombinedPatch() 1960 2071 1961 1961 - secret, err := db.GetRegistrationKey(s.db, f.Knot) 1962 1962 - if err != nil { 1963 1963 - log.Printf("no registration key found for domain %s: %s\n", f.Knot, err) 1964 1964 - s.pages.Notice(w, "pull-merge-error", "Failed to merge pull request. Try again later.") 1965 1965 - return 1966 1966 - } 1967 1967 - 1968 2072 ident, err := s.idResolver.ResolveIdent(r.Context(), pull.OwnerDid) 1969 2073 if err != nil { 1970 2074 log.Printf("resolving identity: %s", err) ··· 1977 2081 log.Printf("failed to get primary email: %s", err) 1978 2082 } 1979 2083 1980 1980 - ksClient, err := knotclient.NewSignedClient(f.Knot, secret, s.config.Core.Dev) 1981 1981 - if err != nil { 1982 1982 - log.Printf("failed to create signed client for %s: %s", f.Knot, err) 1983 1983 - s.pages.Notice(w, "pull-merge-error", "Failed to merge pull request. Try again later.") 1984 1984 - return 2084 2084 + authorName := ident.Handle.String() 2085 2085 + mergeInput := &tangled.RepoMerge_Input{ 2086 2086 + Did: f.OwnerDid(), 2087 2087 + Name: f.Name, 2088 2088 + Branch: pull.TargetBranch, 2089 2089 + Patch: patch, 2090 2090 + CommitMessage: &pull.Title, 2091 2091 + AuthorName: &authorName, 1985 2092 } 1986 2093 1987 1987 - // Merge the pull request 1988 1988 - resp, err := ksClient.Merge([]byte(patch), f.OwnerDid(), f.RepoName, pull.TargetBranch, pull.Title, pull.Body, ident.Handle.String(), email.Address) 2094 2094 + if pull.Body != "" { 2095 2095 + mergeInput.CommitBody = &pull.Body 2096 2096 + } 2097 2097 + 2098 2098 + if email.Address != "" { 2099 2099 + mergeInput.AuthorEmail = &email.Address 2100 2100 + } 2101 2101 + 2102 2102 + client, err := s.oauth.ServiceClient( 2103 2103 + r, 2104 2104 + oauth.WithService(f.Knot), 2105 2105 + oauth.WithLxm(tangled.RepoMergeNSID), 2106 2106 + oauth.WithDev(s.config.Core.Dev), 2107 2107 + ) 1989 2108 if err != nil { 1990 1990 - log.Printf("failed to merge pull request: %s", err) 2109 2109 + log.Printf("failed to connect to knot server: %v", err) 1991 2110 s.pages.Notice(w, "pull-merge-error", "Failed to merge pull request. Try again later.") 1992 2111 return 1993 2112 } 1994 2113 1995 1995 - if resp.StatusCode != http.StatusOK { 1996 1996 - log.Printf("knotserver returned non-OK status code for merge: %d", resp.StatusCode) 1997 1997 - s.pages.Notice(w, "pull-merge-error", "Failed to merge pull request. Try again later.") 2114 2114 + err = tangled.RepoMerge(r.Context(), client, mergeInput) 2115 2115 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 2116 2116 + s.pages.Notice(w, "pull-merge-error", err.Error()) 1998 2117 return 1999 2118 } 2000 2119 ··· 2007 2126 defer tx.Rollback() 2008 2127 2009 2128 for _, p := range pullsToMerge { 2010 2010 - err := db.MergePull(tx, f.RepoAt, p.PullId) 2129 2129 + err := db.MergePull(tx, f.RepoAt(), p.PullId) 2011 2130 if err != nil { 2012 2131 log.Printf("failed to update pull request status in database: %s", err) 2013 2132 s.pages.Notice(w, "pull-merge-error", "Failed to merge pull request. Try again later.") ··· 2023 2142 return 2024 2143 } 2025 2144 2026 2026 - s.pages.HxLocation(w, fmt.Sprintf("/@%s/%s/pulls/%d", f.OwnerHandle(), f.RepoName, pull.PullId)) 2145 2145 + s.pages.HxLocation(w, fmt.Sprintf("/@%s/%s/pulls/%d", f.OwnerHandle(), f.Name, pull.PullId)) 2027 2146 } 2028 2147 2029 2148 func (s *Pulls) ClosePull(w http.ResponseWriter, r *http.Request) { ··· 2075 2194 2076 2195 for _, p := range pullsToClose { 2077 2196 // Close the pull in the database 2078 2078 - err = db.ClosePull(tx, f.RepoAt, p.PullId) 2197 2197 + err = db.ClosePull(tx, f.RepoAt(), p.PullId) 2079 2198 if err != nil { 2080 2199 log.Println("failed to close pull", err) 2081 2200 s.pages.Notice(w, "pull-close", "Failed to close pull.") ··· 2143 2262 2144 2263 for _, p := range pullsToReopen { 2145 2264 // Close the pull in the database 2146 2146 - err = db.ReopenPull(tx, f.RepoAt, p.PullId) 2265 2265 + err = db.ReopenPull(tx, f.RepoAt(), p.PullId) 2147 2266 if err != nil { 2148 2267 log.Println("failed to close pull", err) 2149 2268 s.pages.Notice(w, "pull-close", "Failed to close pull.") ··· 2195 2314 Body: body, 2196 2315 TargetBranch: targetBranch, 2197 2316 OwnerDid: user.Did, 2198 2198 - RepoAt: f.RepoAt, 2317 2317 + RepoAt: f.RepoAt(), 2199 2318 Rkey: rkey, 2200 2319 Submissions: []*db.PullSubmission{ 2201 2320 &initialSubmission,

+31 -13

appview/repo/artifact.go

··· 1 1 package repo 2 2 3 3 import ( 4 4 + "context" 5 5 + "encoding/json" 4 6 "fmt" 5 7 "log" 6 8 "net/http" ··· 9 11 10 12 comatproto "github.com/bluesky-social/indigo/api/atproto" 11 13 lexutil "github.com/bluesky-social/indigo/lex/util" 14 14 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 12 15 "github.com/dustin/go-humanize" 13 16 "github.com/go-chi/chi/v5" 14 17 "github.com/go-git/go-git/v5/plumbing" ··· 17 20 "tangled.sh/tangled.sh/core/appview/db" 18 21 "tangled.sh/tangled.sh/core/appview/pages" 19 22 "tangled.sh/tangled.sh/core/appview/reporesolver" 20 20 - "tangled.sh/tangled.sh/core/knotclient" 23 23 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 21 24 "tangled.sh/tangled.sh/core/tid" 22 25 "tangled.sh/tangled.sh/core/types" 23 26 ) ··· 33 36 return 34 37 } 35 38 36 36 - tag, err := rp.resolveTag(f, tagParam) 39 39 + tag, err := rp.resolveTag(r.Context(), f, tagParam) 37 40 if err != nil { 38 41 log.Println("failed to resolve tag", err) 39 42 rp.pages.Notice(w, "upload", "failed to upload artifact, error in tag resolution") ··· 76 79 Artifact: uploadBlobResp.Blob, 77 80 CreatedAt: createdAt.Format(time.RFC3339), 78 81 Name: handler.Filename, 79 79 - Repo: f.RepoAt.String(), 82 82 + Repo: f.RepoAt().String(), 80 83 Tag: tag.Tag.Hash[:], 81 84 }, 82 85 }, ··· 100 103 artifact := db.Artifact{ 101 104 Did: user.Did, 102 105 Rkey: rkey, 103 103 - RepoAt: f.RepoAt, 106 106 + RepoAt: f.RepoAt(), 104 107 Tag: tag.Tag.Hash, 105 108 CreatedAt: createdAt, 106 109 BlobCid: cid.Cid(uploadBlobResp.Blob.Ref), ··· 140 143 return 141 144 } 142 145 143 143 - tag, err := rp.resolveTag(f, tagParam) 146 146 + tag, err := rp.resolveTag(r.Context(), f, tagParam) 144 147 if err != nil { 145 148 log.Println("failed to resolve tag", err) 146 149 rp.pages.Notice(w, "upload", "failed to upload artifact, error in tag resolution") ··· 155 158 156 159 artifacts, err := db.GetArtifact( 157 160 rp.db, 158 158 - db.FilterEq("repo_at", f.RepoAt), 161 161 + db.FilterEq("repo_at", f.RepoAt()), 159 162 db.FilterEq("tag", tag.Tag.Hash[:]), 160 163 db.FilterEq("name", filename), 161 164 ) ··· 197 200 198 201 artifacts, err := db.GetArtifact( 199 202 rp.db, 200 200 - db.FilterEq("repo_at", f.RepoAt), 203 203 + db.FilterEq("repo_at", f.RepoAt()), 201 204 db.FilterEq("tag", tag[:]), 202 205 db.FilterEq("name", filename), 203 206 ) ··· 239 242 defer tx.Rollback() 240 243 241 244 err = db.DeleteArtifact(tx, 242 242 - db.FilterEq("repo_at", f.RepoAt), 245 245 + db.FilterEq("repo_at", f.RepoAt()), 243 246 db.FilterEq("tag", artifact.Tag[:]), 244 247 db.FilterEq("name", filename), 245 248 ) ··· 259 262 w.Write([]byte{}) 260 263 } 261 264 262 262 - func (rp *Repo) resolveTag(f *reporesolver.ResolvedRepo, tagParam string) (*types.TagReference, error) { 265 265 + func (rp *Repo) resolveTag(ctx context.Context, f *reporesolver.ResolvedRepo, tagParam string) (*types.TagReference, error) { 263 266 tagParam, err := url.QueryUnescape(tagParam) 264 267 if err != nil { 265 268 return nil, err 266 269 } 267 270 268 268 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 269 269 - if err != nil { 270 270 - return nil, err 271 271 + scheme := "http" 272 272 + if !rp.config.Core.Dev { 273 273 + scheme = "https" 274 274 + } 275 275 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 276 276 + xrpcc := &indigoxrpc.Client{ 277 277 + Host: host, 271 278 } 272 279 273 273 - result, err := us.Tags(f.OwnerDid(), f.RepoName) 280 280 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 281 281 + xrpcBytes, err := tangled.RepoTags(ctx, xrpcc, "", 0, repo) 274 282 if err != nil { 283 283 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 284 284 + log.Println("failed to call XRPC repo.tags", xrpcerr) 285 285 + return nil, xrpcerr 286 286 + } 275 287 log.Println("failed to reach knotserver", err) 288 288 + return nil, err 289 289 + } 290 290 + 291 291 + var result types.RepoTagsResponse 292 292 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 293 293 + log.Println("failed to decode XRPC tags response", err) 276 294 return nil, err 277 295 } 278 296

+170

appview/repo/feed.go

··· 1 1 + package repo 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "fmt" 6 6 + "log" 7 7 + "net/http" 8 8 + "slices" 9 9 + "time" 10 10 + 11 11 + "tangled.sh/tangled.sh/core/appview/db" 12 12 + "tangled.sh/tangled.sh/core/appview/pagination" 13 13 + "tangled.sh/tangled.sh/core/appview/reporesolver" 14 14 + 15 15 + "github.com/bluesky-social/indigo/atproto/syntax" 16 16 + "github.com/gorilla/feeds" 17 17 + ) 18 18 + 19 19 + func (rp *Repo) getRepoFeed(ctx context.Context, f *reporesolver.ResolvedRepo) (*feeds.Feed, error) { 20 20 + const feedLimitPerType = 100 21 21 + 22 22 + pulls, err := db.GetPullsWithLimit(rp.db, feedLimitPerType, db.FilterEq("repo_at", f.RepoAt())) 23 23 + if err != nil { 24 24 + return nil, err 25 25 + } 26 26 + 27 27 + issues, err := db.GetIssuesPaginated( 28 28 + rp.db, 29 29 + pagination.Page{Limit: feedLimitPerType}, 30 30 + db.FilterEq("repo_at", f.RepoAt()), 31 31 + ) 32 32 + if err != nil { 33 33 + return nil, err 34 34 + } 35 35 + 36 36 + feed := &feeds.Feed{ 37 37 + Title: fmt.Sprintf("activity feed for %s", f.OwnerSlashRepo()), 38 38 + Link: &feeds.Link{Href: fmt.Sprintf("%s/%s", rp.config.Core.AppviewHost, f.OwnerSlashRepo()), Type: "text/html", Rel: "alternate"}, 39 39 + Items: make([]*feeds.Item, 0), 40 40 + Updated: time.UnixMilli(0), 41 41 + } 42 42 + 43 43 + for _, pull := range pulls { 44 44 + items, err := rp.createPullItems(ctx, pull, f) 45 45 + if err != nil { 46 46 + return nil, err 47 47 + } 48 48 + feed.Items = append(feed.Items, items...) 49 49 + } 50 50 + 51 51 + for _, issue := range issues { 52 52 + item, err := rp.createIssueItem(ctx, issue, f) 53 53 + if err != nil { 54 54 + return nil, err 55 55 + } 56 56 + feed.Items = append(feed.Items, item) 57 57 + } 58 58 + 59 59 + slices.SortFunc(feed.Items, func(a, b *feeds.Item) int { 60 60 + if a.Created.After(b.Created) { 61 61 + return -1 62 62 + } 63 63 + return 1 64 64 + }) 65 65 + 66 66 + if len(feed.Items) > 0 { 67 67 + feed.Updated = feed.Items[0].Created 68 68 + } 69 69 + 70 70 + return feed, nil 71 71 + } 72 72 + 73 73 + func (rp *Repo) createPullItems(ctx context.Context, pull *db.Pull, f *reporesolver.ResolvedRepo) ([]*feeds.Item, error) { 74 74 + owner, err := rp.idResolver.ResolveIdent(ctx, pull.OwnerDid) 75 75 + if err != nil { 76 76 + return nil, err 77 77 + } 78 78 + 79 79 + var items []*feeds.Item 80 80 + 81 81 + state := rp.getPullState(pull) 82 82 + description := rp.buildPullDescription(owner.Handle, state, pull, f.OwnerSlashRepo()) 83 83 + 84 84 + mainItem := &feeds.Item{ 85 85 + Title: fmt.Sprintf("[PR #%d] %s", pull.PullId, pull.Title), 86 86 + Description: description, 87 87 + Link: &feeds.Link{Href: fmt.Sprintf("%s/%s/pulls/%d", rp.config.Core.AppviewHost, f.OwnerSlashRepo(), pull.PullId)}, 88 88 + Created: pull.Created, 89 89 + Author: &feeds.Author{Name: fmt.Sprintf("@%s", owner.Handle)}, 90 90 + } 91 91 + items = append(items, mainItem) 92 92 + 93 93 + for _, round := range pull.Submissions { 94 94 + if round == nil || round.RoundNumber == 0 { 95 95 + continue 96 96 + } 97 97 + 98 98 + roundItem := &feeds.Item{ 99 99 + Title: fmt.Sprintf("[PR #%d] %s (round #%d)", pull.PullId, pull.Title, round.RoundNumber), 100 100 + Description: fmt.Sprintf("@%s submitted changes (at round #%d) on PR #%d in %s", owner.Handle, round.RoundNumber, pull.PullId, f.OwnerSlashRepo()), 101 101 + Link: &feeds.Link{Href: fmt.Sprintf("%s/%s/pulls/%d/round/%d/", rp.config.Core.AppviewHost, f.OwnerSlashRepo(), pull.PullId, round.RoundNumber)}, 102 102 + Created: round.Created, 103 103 + Author: &feeds.Author{Name: fmt.Sprintf("@%s", owner.Handle)}, 104 104 + } 105 105 + items = append(items, roundItem) 106 106 + } 107 107 + 108 108 + return items, nil 109 109 + } 110 110 + 111 111 + func (rp *Repo) createIssueItem(ctx context.Context, issue db.Issue, f *reporesolver.ResolvedRepo) (*feeds.Item, error) { 112 112 + owner, err := rp.idResolver.ResolveIdent(ctx, issue.Did) 113 113 + if err != nil { 114 114 + return nil, err 115 115 + } 116 116 + 117 117 + state := "closed" 118 118 + if issue.Open { 119 119 + state = "opened" 120 120 + } 121 121 + 122 122 + return &feeds.Item{ 123 123 + Title: fmt.Sprintf("[Issue #%d] %s", issue.IssueId, issue.Title), 124 124 + Description: fmt.Sprintf("@%s %s issue #%d in %s", owner.Handle, state, issue.IssueId, f.OwnerSlashRepo()), 125 125 + Link: &feeds.Link{Href: fmt.Sprintf("%s/%s/issues/%d", rp.config.Core.AppviewHost, f.OwnerSlashRepo(), issue.IssueId)}, 126 126 + Created: issue.Created, 127 127 + Author: &feeds.Author{Name: fmt.Sprintf("@%s", owner.Handle)}, 128 128 + }, nil 129 129 + } 130 130 + 131 131 + func (rp *Repo) getPullState(pull *db.Pull) string { 132 132 + if pull.State == db.PullOpen { 133 133 + return "opened" 134 134 + } 135 135 + return pull.State.String() 136 136 + } 137 137 + 138 138 + func (rp *Repo) buildPullDescription(handle syntax.Handle, state string, pull *db.Pull, repoName string) string { 139 139 + base := fmt.Sprintf("@%s %s pull request #%d", handle, state, pull.PullId) 140 140 + 141 141 + if pull.State == db.PullMerged { 142 142 + return fmt.Sprintf("%s (on round #%d) in %s", base, pull.LastRoundNumber(), repoName) 143 143 + } 144 144 + 145 145 + return fmt.Sprintf("%s in %s", base, repoName) 146 146 + } 147 147 + 148 148 + func (rp *Repo) RepoAtomFeed(w http.ResponseWriter, r *http.Request) { 149 149 + f, err := rp.repoResolver.Resolve(r) 150 150 + if err != nil { 151 151 + log.Println("failed to fully resolve repo:", err) 152 152 + return 153 153 + } 154 154 + 155 155 + feed, err := rp.getRepoFeed(r.Context(), f) 156 156 + if err != nil { 157 157 + log.Println("failed to get repo feed:", err) 158 158 + rp.pages.Error500(w) 159 159 + return 160 160 + } 161 161 + 162 162 + atom, err := feed.ToAtom() 163 163 + if err != nil { 164 164 + rp.pages.Error500(w) 165 165 + return 166 166 + } 167 167 + 168 168 + w.Header().Set("content-type", "application/atom+xml") 169 169 + w.Write([]byte(atom)) 170 170 + }

+198 -101

appview/repo/index.go

··· 1 1 package repo 2 2 3 3 import ( 4 4 - "encoding/json" 4 4 + "errors" 5 5 "fmt" 6 6 "log" 7 7 "net/http" 8 8 + "net/url" 8 9 "slices" 9 10 "sort" 10 11 "strings" 12 12 + "sync" 13 13 + "time" 11 14 15 15 + "context" 16 16 + "encoding/json" 17 17 + 18 18 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 19 19 + "github.com/go-git/go-git/v5/plumbing" 20 20 + "tangled.sh/tangled.sh/core/api/tangled" 12 21 "tangled.sh/tangled.sh/core/appview/commitverify" 13 22 "tangled.sh/tangled.sh/core/appview/db" 14 14 - "tangled.sh/tangled.sh/core/appview/oauth" 15 23 "tangled.sh/tangled.sh/core/appview/pages" 16 16 - "tangled.sh/tangled.sh/core/appview/pages/repoinfo" 24 24 + "tangled.sh/tangled.sh/core/appview/pages/markup" 17 25 "tangled.sh/tangled.sh/core/appview/reporesolver" 18 18 - "tangled.sh/tangled.sh/core/knotclient" 26 26 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 19 27 "tangled.sh/tangled.sh/core/types" 20 28 21 29 "github.com/go-chi/chi/v5" ··· 24 32 25 33 func (rp *Repo) RepoIndex(w http.ResponseWriter, r *http.Request) { 26 34 ref := chi.URLParam(r, "ref") 35 35 + ref, _ = url.PathUnescape(ref) 36 36 + 27 37 f, err := rp.repoResolver.Resolve(r) 28 38 if err != nil { 29 39 log.Println("failed to fully resolve repo", err) 30 40 return 31 41 } 32 42 33 33 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 34 34 - if err != nil { 35 35 - log.Printf("failed to create unsigned client for %s", f.Knot) 36 36 - rp.pages.Error503(w) 37 37 - return 43 43 + scheme := "http" 44 44 + if !rp.config.Core.Dev { 45 45 + scheme = "https" 46 46 + } 47 47 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 48 48 + xrpcc := &indigoxrpc.Client{ 49 49 + Host: host, 38 50 } 39 51 40 40 - result, err := us.Index(f.OwnerDid(), f.RepoName, ref) 41 41 - if err != nil { 52 52 + user := rp.oauth.GetUser(r) 53 53 + repoInfo := f.RepoInfo(user) 54 54 + 55 55 + // Build index response from multiple XRPC calls 56 56 + result, err := rp.buildIndexResponse(r.Context(), xrpcc, f, ref) 57 57 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 58 58 + if errors.Is(xrpcerr, xrpcclient.ErrXrpcUnsupported) { 59 59 + log.Println("failed to call XRPC repo.index", err) 60 60 + rp.pages.RepoIndexPage(w, pages.RepoIndexParams{ 61 61 + LoggedInUser: user, 62 62 + NeedsKnotUpgrade: true, 63 63 + RepoInfo: repoInfo, 64 64 + }) 65 65 + return 66 66 + } 67 67 + 42 68 rp.pages.Error503(w) 43 43 - log.Println("failed to reach knotserver", err) 69 69 + log.Println("failed to build index response", err) 44 70 return 45 71 } 46 72 ··· 101 127 log.Println(err) 102 128 } 103 129 104 104 - user := rp.oauth.GetUser(r) 105 105 - repoInfo := f.RepoInfo(user) 106 106 - 107 107 - secret, err := db.GetRegistrationKey(rp.db, f.Knot) 108 108 - if err != nil { 109 109 - log.Printf("failed to get registration key for %s: %s", f.Knot, err) 110 110 - rp.pages.Notice(w, "resubmit-error", "Failed to create pull request. Try again later.") 111 111 - } 112 112 - 113 113 - signedClient, err := knotclient.NewSignedClient(f.Knot, secret, rp.config.Core.Dev) 114 114 - if err != nil { 115 115 - log.Printf("failed to create signed client for %s: %s", f.Knot, err) 116 116 - return 117 117 - } 118 118 - 119 119 - var forkInfo *types.ForkInfo 120 120 - if user != nil && (repoInfo.Roles.IsOwner() || repoInfo.Roles.IsCollaborator()) { 121 121 - forkInfo, err = getForkInfo(repoInfo, rp, f, user, signedClient) 122 122 - if err != nil { 123 123 - log.Printf("Failed to fetch fork information: %v", err) 124 124 - return 125 125 - } 126 126 - } 127 127 - 128 130 // TODO: a bit dirty 129 129 - languageInfo, err := rp.getLanguageInfo(f, signedClient, chi.URLParam(r, "ref") == "") 131 131 + languageInfo, err := rp.getLanguageInfo(r.Context(), f, xrpcc, result.Ref, ref == "") 130 132 if err != nil { 131 133 log.Printf("failed to compute language percentages: %s", err) 132 134 // non-fatal ··· 143 145 } 144 146 145 147 rp.pages.RepoIndexPage(w, pages.RepoIndexParams{ 146 146 - LoggedInUser: user, 147 147 - RepoInfo: repoInfo, 148 148 - TagMap: tagMap, 149 149 - RepoIndexResponse: *result, 150 150 - CommitsTrunc: commitsTrunc, 151 151 - TagsTrunc: tagsTrunc, 152 152 - ForkInfo: forkInfo, 148 148 + LoggedInUser: user, 149 149 + RepoInfo: repoInfo, 150 150 + TagMap: tagMap, 151 151 + RepoIndexResponse: *result, 152 152 + CommitsTrunc: commitsTrunc, 153 153 + TagsTrunc: tagsTrunc, 154 154 + // ForkInfo: forkInfo, // TODO: reinstate this after xrpc properly lands 153 155 BranchesTrunc: branchesTrunc, 154 156 EmailToDidOrHandle: emailToDidOrHandle(rp, emailToDidMap), 155 157 VerifiedCommits: vc, ··· 159 161 } 160 162 161 163 func (rp *Repo) getLanguageInfo( 164 164 + ctx context.Context, 162 165 f *reporesolver.ResolvedRepo, 163 163 - signedClient *knotclient.SignedClient, 166 166 + xrpcc *indigoxrpc.Client, 167 167 + currentRef string, 164 168 isDefaultRef bool, 165 169 ) ([]types.RepoLanguageDetails, error) { 166 170 // first attempt to fetch from db 167 171 langs, err := db.GetRepoLanguages( 168 172 rp.db, 169 169 - db.FilterEq("repo_at", f.RepoAt), 170 170 - db.FilterEq("ref", f.Ref), 173 173 + db.FilterEq("repo_at", f.RepoAt()), 174 174 + db.FilterEq("ref", currentRef), 171 175 ) 172 176 173 177 if err != nil || langs == nil { 174 174 - // non-fatal, fetch langs from ks 175 175 - ls, err := signedClient.RepoLanguages(f.OwnerDid(), f.RepoName, f.Ref) 178 178 + // non-fatal, fetch langs from ks via XRPC 179 179 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 180 180 + ls, err := tangled.RepoLanguages(ctx, xrpcc, currentRef, repo) 176 181 if err != nil { 182 182 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 183 183 + log.Println("failed to call XRPC repo.languages", xrpcerr) 184 184 + return nil, xrpcerr 185 185 + } 177 186 return nil, err 178 187 } 179 179 - if ls == nil { 188 188 + 189 189 + if ls == nil || ls.Languages == nil { 180 190 return nil, nil 181 191 } 182 192 183 183 - for l, s := range ls.Languages { 193 193 + for _, lang := range ls.Languages { 184 194 langs = append(langs, db.RepoLanguage{ 185 185 - RepoAt: f.RepoAt, 186 186 - Ref: f.Ref, 195 195 + RepoAt: f.RepoAt(), 196 196 + Ref: currentRef, 187 197 IsDefaultRef: isDefaultRef, 188 188 - Language: l, 189 189 - Bytes: s, 198 198 + Language: lang.Name, 199 199 + Bytes: lang.Size, 190 200 }) 191 201 } 192 202 ··· 230 240 return languageStats, nil 231 241 } 232 242 233 233 - func getForkInfo( 234 234 - repoInfo repoinfo.RepoInfo, 235 235 - rp *Repo, 236 236 - f *reporesolver.ResolvedRepo, 237 237 - user *oauth.User, 238 238 - signedClient *knotclient.SignedClient, 239 239 - ) (*types.ForkInfo, error) { 240 240 - if user == nil { 241 241 - return nil, nil 243 243 + // buildIndexResponse creates a RepoIndexResponse by combining multiple xrpc calls in parallel 244 244 + func (rp *Repo) buildIndexResponse(ctx context.Context, xrpcc *indigoxrpc.Client, f *reporesolver.ResolvedRepo, ref string) (*types.RepoIndexResponse, error) { 245 245 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 246 246 + 247 247 + // first get branches to determine the ref if not specified 248 248 + branchesBytes, err := tangled.RepoBranches(ctx, xrpcc, "", 0, repo) 249 249 + if err != nil { 250 250 + return nil, fmt.Errorf("failed to call repoBranches: %w", err) 242 251 } 243 252 244 244 - forkInfo := types.ForkInfo{ 245 245 - IsFork: repoInfo.Source != nil, 246 246 - Status: types.UpToDate, 253 253 + var branchesResp types.RepoBranchesResponse 254 254 + if err := json.Unmarshal(branchesBytes, &branchesResp); err != nil { 255 255 + return nil, fmt.Errorf("failed to unmarshal branches response: %w", err) 247 256 } 248 257 249 249 - if !forkInfo.IsFork { 250 250 - forkInfo.IsFork = false 251 251 - return &forkInfo, nil 258 258 + // if no ref specified, use default branch or first available 259 259 + if ref == "" { 260 260 + for _, branch := range branchesResp.Branches { 261 261 + if branch.IsDefault { 262 262 + ref = branch.Name 263 263 + break 264 264 + } 265 265 + } 252 266 } 253 267 254 254 - us, err := knotclient.NewUnsignedClient(repoInfo.Source.Knot, rp.config.Core.Dev) 255 255 - if err != nil { 256 256 - log.Printf("failed to create unsigned client for %s", repoInfo.Source.Knot) 257 257 - return nil, err 268 268 + // if ref is still empty, this means the default branch is not set 269 269 + if ref == "" { 270 270 + return &types.RepoIndexResponse{ 271 271 + IsEmpty: true, 272 272 + Branches: branchesResp.Branches, 273 273 + }, nil 258 274 } 259 275 260 260 - result, err := us.Branches(repoInfo.Source.Did, repoInfo.Source.Name) 261 261 - if err != nil { 262 262 - log.Println("failed to reach knotserver", err) 263 263 - return nil, err 264 264 - } 276 276 + // now run the remaining queries in parallel 277 277 + var wg sync.WaitGroup 278 278 + var errs error 279 279 + 280 280 + var ( 281 281 + tagsResp types.RepoTagsResponse 282 282 + treeResp *tangled.RepoTree_Output 283 283 + logResp types.RepoLogResponse 284 284 + readmeContent string 285 285 + readmeFileName string 286 286 + ) 287 287 + 288 288 + // tags 289 289 + wg.Add(1) 290 290 + go func() { 291 291 + defer wg.Done() 292 292 + tagsBytes, err := tangled.RepoTags(ctx, xrpcc, "", 0, repo) 293 293 + if err != nil { 294 294 + errs = errors.Join(errs, fmt.Errorf("failed to call repoTags: %w", err)) 295 295 + return 296 296 + } 297 297 + 298 298 + if err := json.Unmarshal(tagsBytes, &tagsResp); err != nil { 299 299 + errs = errors.Join(errs, fmt.Errorf("failed to unmarshal repoTags: %w", err)) 300 300 + } 301 301 + }() 302 302 + 303 303 + // tree/files 304 304 + wg.Add(1) 305 305 + go func() { 306 306 + defer wg.Done() 307 307 + resp, err := tangled.RepoTree(ctx, xrpcc, "", ref, repo) 308 308 + if err != nil { 309 309 + errs = errors.Join(errs, fmt.Errorf("failed to call repoTree: %w", err)) 310 310 + return 311 311 + } 312 312 + treeResp = resp 313 313 + }() 314 314 + 315 315 + // commits 316 316 + wg.Add(1) 317 317 + go func() { 318 318 + defer wg.Done() 319 319 + logBytes, err := tangled.RepoLog(ctx, xrpcc, "", 50, "", ref, repo) 320 320 + if err != nil { 321 321 + errs = errors.Join(errs, fmt.Errorf("failed to call repoLog: %w", err)) 322 322 + return 323 323 + } 324 324 + 325 325 + if err := json.Unmarshal(logBytes, &logResp); err != nil { 326 326 + errs = errors.Join(errs, fmt.Errorf("failed to unmarshal repoLog: %w", err)) 327 327 + } 328 328 + }() 329 329 + 330 330 + // readme content 331 331 + wg.Add(1) 332 332 + go func() { 333 333 + defer wg.Done() 334 334 + for _, filename := range markup.ReadmeFilenames { 335 335 + blobResp, err := tangled.RepoBlob(ctx, xrpcc, filename, false, ref, repo) 336 336 + if err != nil { 337 337 + continue 338 338 + } 265 339 266 266 - if !slices.ContainsFunc(result.Branches, func(branch types.Branch) bool { 267 267 - return branch.Name == f.Ref 268 268 - }) { 269 269 - forkInfo.Status = types.MissingBranch 270 270 - return &forkInfo, nil 271 271 - } 340 340 + if blobResp == nil { 341 341 + continue 342 342 + } 272 343 273 273 - newHiddenRefResp, err := signedClient.NewHiddenRef(user.Did, repoInfo.Name, f.Ref, f.Ref) 274 274 - if err != nil || newHiddenRefResp.StatusCode != http.StatusNoContent { 275 275 - log.Printf("failed to update tracking branch: %s", err) 276 276 - return nil, err 277 277 - } 344 344 + readmeContent = blobResp.Content 345 345 + readmeFileName = filename 346 346 + break 347 347 + } 348 348 + }() 278 349 279 279 - hiddenRef := fmt.Sprintf("hidden/%s/%s", f.Ref, f.Ref) 350 350 + wg.Wait() 280 351 281 281 - var status types.AncestorCheckResponse 282 282 - forkSyncableResp, err := signedClient.RepoForkAheadBehind(user.Did, string(f.RepoAt), repoInfo.Name, f.Ref, hiddenRef) 283 283 - if err != nil { 284 284 - log.Printf("failed to check if fork is ahead/behind: %s", err) 285 285 - return nil, err 352 352 + if errs != nil { 353 353 + return nil, errs 286 354 } 287 355 288 288 - if err := json.NewDecoder(forkSyncableResp.Body).Decode(&status); err != nil { 289 289 - log.Printf("failed to decode fork status: %s", err) 290 290 - return nil, err 356 356 + var files []types.NiceTree 357 357 + if treeResp != nil && treeResp.Files != nil { 358 358 + for _, file := range treeResp.Files { 359 359 + niceFile := types.NiceTree{ 360 360 + IsFile: file.Is_file, 361 361 + IsSubtree: file.Is_subtree, 362 362 + Name: file.Name, 363 363 + Mode: file.Mode, 364 364 + Size: file.Size, 365 365 + } 366 366 + if file.Last_commit != nil { 367 367 + when, _ := time.Parse(time.RFC3339, file.Last_commit.When) 368 368 + niceFile.LastCommit = &types.LastCommitInfo{ 369 369 + Hash: plumbing.NewHash(file.Last_commit.Hash), 370 370 + Message: file.Last_commit.Message, 371 371 + When: when, 372 372 + } 373 373 + } 374 374 + files = append(files, niceFile) 375 375 + } 291 376 } 292 377 293 293 - forkInfo.Status = status.Status 294 294 - return &forkInfo, nil 378 378 + result := &types.RepoIndexResponse{ 379 379 + IsEmpty: false, 380 380 + Ref: ref, 381 381 + Readme: readmeContent, 382 382 + ReadmeFileName: readmeFileName, 383 383 + Commits: logResp.Commits, 384 384 + Description: logResp.Description, 385 385 + Files: files, 386 386 + Branches: branchesResp.Branches, 387 387 + Tags: tagsResp.Tags, 388 388 + TotalCommits: logResp.Total, 389 389 + } 390 390 + 391 391 + return result, nil 295 392 }

+686 -369

appview/repo/repo.go

··· 17 17 "strings" 18 18 "time" 19 19 20 20 + comatproto "github.com/bluesky-social/indigo/api/atproto" 21 21 + lexutil "github.com/bluesky-social/indigo/lex/util" 22 22 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 20 23 "tangled.sh/tangled.sh/core/api/tangled" 21 24 "tangled.sh/tangled.sh/core/appview/commitverify" 22 25 "tangled.sh/tangled.sh/core/appview/config" ··· 26 29 "tangled.sh/tangled.sh/core/appview/pages" 27 30 "tangled.sh/tangled.sh/core/appview/pages/markup" 28 31 "tangled.sh/tangled.sh/core/appview/reporesolver" 32 32 + xrpcclient "tangled.sh/tangled.sh/core/appview/xrpcclient" 29 33 "tangled.sh/tangled.sh/core/eventconsumer" 30 34 "tangled.sh/tangled.sh/core/idresolver" 31 31 - "tangled.sh/tangled.sh/core/knotclient" 32 35 "tangled.sh/tangled.sh/core/patchutil" 33 36 "tangled.sh/tangled.sh/core/rbac" 34 37 "tangled.sh/tangled.sh/core/tid" 35 38 "tangled.sh/tangled.sh/core/types" 39 39 + "tangled.sh/tangled.sh/core/xrpc/serviceauth" 36 40 37 41 securejoin "github.com/cyphar/filepath-securejoin" 38 42 "github.com/go-chi/chi/v5" 39 43 "github.com/go-git/go-git/v5/plumbing" 40 44 41 41 - comatproto "github.com/bluesky-social/indigo/api/atproto" 42 42 - lexutil "github.com/bluesky-social/indigo/lex/util" 45 45 + "github.com/bluesky-social/indigo/atproto/syntax" 43 46 ) 44 47 45 48 type Repo struct { ··· 53 56 enforcer *rbac.Enforcer 54 57 notifier notify.Notifier 55 58 logger *slog.Logger 59 59 + serviceAuth *serviceauth.ServiceAuth 56 60 } 57 61 58 62 func New( ··· 80 84 } 81 85 } 82 86 87 87 + func (rp *Repo) DownloadArchive(w http.ResponseWriter, r *http.Request) { 88 88 + ref := chi.URLParam(r, "ref") 89 89 + ref, _ = url.PathUnescape(ref) 90 90 + 91 91 + f, err := rp.repoResolver.Resolve(r) 92 92 + if err != nil { 93 93 + log.Println("failed to get repo and knot", err) 94 94 + return 95 95 + } 96 96 + 97 97 + scheme := "http" 98 98 + if !rp.config.Core.Dev { 99 99 + scheme = "https" 100 100 + } 101 101 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 102 102 + xrpcc := &indigoxrpc.Client{ 103 103 + Host: host, 104 104 + } 105 105 + 106 106 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 107 107 + archiveBytes, err := tangled.RepoArchive(r.Context(), xrpcc, "tar.gz", "", ref, repo) 108 108 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 109 109 + log.Println("failed to call XRPC repo.archive", xrpcerr) 110 110 + rp.pages.Error503(w) 111 111 + return 112 112 + } 113 113 + 114 114 + // Set headers for file download, just pass along whatever the knot specifies 115 115 + safeRefFilename := strings.ReplaceAll(plumbing.ReferenceName(ref).Short(), "/", "-") 116 116 + filename := fmt.Sprintf("%s-%s.tar.gz", f.Name, safeRefFilename) 117 117 + w.Header().Set("Content-Disposition", fmt.Sprintf("attachment; filename=\"%s\"", filename)) 118 118 + w.Header().Set("Content-Type", "application/gzip") 119 119 + w.Header().Set("Content-Length", fmt.Sprintf("%d", len(archiveBytes))) 120 120 + 121 121 + // Write the archive data directly 122 122 + w.Write(archiveBytes) 123 123 + } 124 124 + 83 125 func (rp *Repo) RepoLog(w http.ResponseWriter, r *http.Request) { 84 126 f, err := rp.repoResolver.Resolve(r) 85 127 if err != nil { ··· 96 138 } 97 139 98 140 ref := chi.URLParam(r, "ref") 141 141 + ref, _ = url.PathUnescape(ref) 99 142 100 100 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 101 101 - if err != nil { 102 102 - log.Println("failed to create unsigned client", err) 143 143 + scheme := "http" 144 144 + if !rp.config.Core.Dev { 145 145 + scheme = "https" 146 146 + } 147 147 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 148 148 + xrpcc := &indigoxrpc.Client{ 149 149 + Host: host, 150 150 + } 151 151 + 152 152 + limit := int64(60) 153 153 + cursor := "" 154 154 + if page > 1 { 155 155 + // Convert page number to cursor (offset) 156 156 + offset := (page - 1) * int(limit) 157 157 + cursor = strconv.Itoa(offset) 158 158 + } 159 159 + 160 160 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 161 161 + xrpcBytes, err := tangled.RepoLog(r.Context(), xrpcc, cursor, limit, "", ref, repo) 162 162 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 163 163 + log.Println("failed to call XRPC repo.log", xrpcerr) 164 164 + rp.pages.Error503(w) 103 165 return 104 166 } 105 167 106 106 - repolog, err := us.Log(f.OwnerDid(), f.RepoName, ref, page) 107 107 - if err != nil { 108 108 - log.Println("failed to reach knotserver", err) 168 168 + var xrpcResp types.RepoLogResponse 169 169 + if err := json.Unmarshal(xrpcBytes, &xrpcResp); err != nil { 170 170 + log.Println("failed to decode XRPC response", err) 171 171 + rp.pages.Error503(w) 109 172 return 110 173 } 111 174 112 112 - tagResult, err := us.Tags(f.OwnerDid(), f.RepoName) 113 113 - if err != nil { 114 114 - log.Println("failed to reach knotserver", err) 175 175 + tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 176 176 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 177 177 + log.Println("failed to call XRPC repo.tags", xrpcerr) 178 178 + rp.pages.Error503(w) 115 179 return 116 180 } 117 181 118 182 tagMap := make(map[string][]string) 119 119 - for _, tag := range tagResult.Tags { 120 120 - hash := tag.Hash 121 121 - if tag.Tag != nil { 122 122 - hash = tag.Tag.Target.String() 183 183 + if tagBytes != nil { 184 184 + var tagResp types.RepoTagsResponse 185 185 + if err := json.Unmarshal(tagBytes, &tagResp); err == nil { 186 186 + for _, tag := range tagResp.Tags { 187 187 + tagMap[tag.Hash] = append(tagMap[tag.Hash], tag.Name) 188 188 + } 123 189 } 124 124 - tagMap[hash] = append(tagMap[hash], tag.Name) 125 190 } 126 191 127 127 - branchResult, err := us.Branches(f.OwnerDid(), f.RepoName) 128 128 - if err != nil { 129 129 - log.Println("failed to reach knotserver", err) 192 192 + branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 193 193 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 194 194 + log.Println("failed to call XRPC repo.branches", xrpcerr) 195 195 + rp.pages.Error503(w) 130 196 return 131 197 } 132 198 133 133 - for _, branch := range branchResult.Branches { 134 134 - hash := branch.Hash 135 135 - tagMap[hash] = append(tagMap[hash], branch.Name) 199 199 + if branchBytes != nil { 200 200 + var branchResp types.RepoBranchesResponse 201 201 + if err := json.Unmarshal(branchBytes, &branchResp); err == nil { 202 202 + for _, branch := range branchResp.Branches { 203 203 + tagMap[branch.Hash] = append(tagMap[branch.Hash], branch.Name) 204 204 + } 205 205 + } 136 206 } 137 207 138 208 user := rp.oauth.GetUser(r) 139 209 140 140 - emailToDidMap, err := db.GetEmailToDid(rp.db, uniqueEmails(repolog.Commits), true) 210 210 + emailToDidMap, err := db.GetEmailToDid(rp.db, uniqueEmails(xrpcResp.Commits), true) 141 211 if err != nil { 142 212 log.Println("failed to fetch email to did mapping", err) 143 213 } 144 214 145 145 - vc, err := commitverify.GetVerifiedObjectCommits(rp.db, emailToDidMap, repolog.Commits) 215 215 + vc, err := commitverify.GetVerifiedObjectCommits(rp.db, emailToDidMap, xrpcResp.Commits) 146 216 if err != nil { 147 217 log.Println(err) 148 218 } ··· 150 220 repoInfo := f.RepoInfo(user) 151 221 152 222 var shas []string 153 153 - for _, c := range repolog.Commits { 223 223 + for _, c := range xrpcResp.Commits { 154 224 shas = append(shas, c.Hash.String()) 155 225 } 156 226 pipelines, err := getPipelineStatuses(rp.db, repoInfo, shas) ··· 163 233 LoggedInUser: user, 164 234 TagMap: tagMap, 165 235 RepoInfo: repoInfo, 166 166 - RepoLogResponse: *repolog, 236 236 + RepoLogResponse: xrpcResp, 167 237 EmailToDidOrHandle: emailToDidOrHandle(rp, emailToDidMap), 168 238 VerifiedCommits: vc, 169 239 Pipelines: pipelines, ··· 192 262 return 193 263 } 194 264 195 195 - repoAt := f.RepoAt 265 265 + repoAt := f.RepoAt() 196 266 rkey := repoAt.RecordKey().String() 197 267 if rkey == "" { 198 268 log.Println("invalid aturi for repo", err) ··· 242 312 Record: &lexutil.LexiconTypeDecoder{ 243 313 Val: &tangled.Repo{ 244 314 Knot: f.Knot, 245 245 - Name: f.RepoName, 315 315 + Name: f.Name, 246 316 Owner: user.Did, 247 247 - CreatedAt: f.CreatedAt, 317 317 + CreatedAt: f.Created.Format(time.RFC3339), 248 318 Description: &newDescription, 249 319 Spindle: &f.Spindle, 250 320 }, ··· 275 345 return 276 346 } 277 347 ref := chi.URLParam(r, "ref") 278 278 - protocol := "http" 279 279 - if !rp.config.Core.Dev { 280 280 - protocol = "https" 281 281 - } 348 348 + ref, _ = url.PathUnescape(ref) 282 349 283 350 var diffOpts types.DiffOpts 284 351 if d := r.URL.Query().Get("diff"); d == "split" { ··· 290 357 return 291 358 } 292 359 293 293 - resp, err := http.Get(fmt.Sprintf("%s://%s/%s/%s/commit/%s", protocol, f.Knot, f.OwnerDid(), f.RepoName, ref)) 294 294 - if err != nil { 295 295 - log.Println("failed to reach knotserver", err) 296 296 - return 360 360 + scheme := "http" 361 361 + if !rp.config.Core.Dev { 362 362 + scheme = "https" 363 363 + } 364 364 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 365 365 + xrpcc := &indigoxrpc.Client{ 366 366 + Host: host, 297 367 } 298 368 299 299 - body, err := io.ReadAll(resp.Body) 300 300 - if err != nil { 301 301 - log.Printf("Error reading response body: %v", err) 369 369 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 370 370 + xrpcBytes, err := tangled.RepoDiff(r.Context(), xrpcc, ref, repo) 371 371 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 372 372 + log.Println("failed to call XRPC repo.diff", xrpcerr) 373 373 + rp.pages.Error503(w) 302 374 return 303 375 } 304 376 305 377 var result types.RepoCommitResponse 306 306 - err = json.Unmarshal(body, &result) 307 307 - if err != nil { 308 308 - log.Println("failed to parse response:", err) 378 378 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 379 379 + log.Println("failed to decode XRPC response", err) 380 380 + rp.pages.Error503(w) 309 381 return 310 382 } 311 383 ··· 350 422 } 351 423 352 424 ref := chi.URLParam(r, "ref") 425 425 + ref, _ = url.PathUnescape(ref) 426 426 + 427 427 + // if the tree path has a trailing slash, let's strip it 428 428 + // so we don't 404 353 429 treePath := chi.URLParam(r, "*") 354 354 - protocol := "http" 430 430 + treePath, _ = url.PathUnescape(treePath) 431 431 + treePath = strings.TrimSuffix(treePath, "/") 432 432 + 433 433 + scheme := "http" 355 434 if !rp.config.Core.Dev { 356 356 - protocol = "https" 435 435 + scheme = "https" 357 436 } 358 358 - resp, err := http.Get(fmt.Sprintf("%s://%s/%s/%s/tree/%s/%s", protocol, f.Knot, f.OwnerDid(), f.RepoName, ref, treePath)) 359 359 - if err != nil { 360 360 - log.Println("failed to reach knotserver", err) 361 361 - return 437 437 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 438 438 + xrpcc := &indigoxrpc.Client{ 439 439 + Host: host, 362 440 } 363 441 364 364 - body, err := io.ReadAll(resp.Body) 365 365 - if err != nil { 366 366 - log.Printf("Error reading response body: %v", err) 442 442 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 443 443 + xrpcResp, err := tangled.RepoTree(r.Context(), xrpcc, treePath, ref, repo) 444 444 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 445 445 + log.Println("failed to call XRPC repo.tree", xrpcerr) 446 446 + rp.pages.Error503(w) 367 447 return 368 448 } 369 449 370 370 - var result types.RepoTreeResponse 371 371 - err = json.Unmarshal(body, &result) 372 372 - if err != nil { 373 373 - log.Println("failed to parse response:", err) 374 374 - return 450 450 + // Convert XRPC response to internal types.RepoTreeResponse 451 451 + files := make([]types.NiceTree, len(xrpcResp.Files)) 452 452 + for i, xrpcFile := range xrpcResp.Files { 453 453 + file := types.NiceTree{ 454 454 + Name: xrpcFile.Name, 455 455 + Mode: xrpcFile.Mode, 456 456 + Size: int64(xrpcFile.Size), 457 457 + IsFile: xrpcFile.Is_file, 458 458 + IsSubtree: xrpcFile.Is_subtree, 459 459 + } 460 460 + 461 461 + // Convert last commit info if present 462 462 + if xrpcFile.Last_commit != nil { 463 463 + commitWhen, _ := time.Parse(time.RFC3339, xrpcFile.Last_commit.When) 464 464 + file.LastCommit = &types.LastCommitInfo{ 465 465 + Hash: plumbing.NewHash(xrpcFile.Last_commit.Hash), 466 466 + Message: xrpcFile.Last_commit.Message, 467 467 + When: commitWhen, 468 468 + } 469 469 + } 470 470 + 471 471 + files[i] = file 472 472 + } 473 473 + 474 474 + result := types.RepoTreeResponse{ 475 475 + Ref: xrpcResp.Ref, 476 476 + Files: files, 477 477 + } 478 478 + 479 479 + if xrpcResp.Parent != nil { 480 480 + result.Parent = *xrpcResp.Parent 481 481 + } 482 482 + if xrpcResp.Dotdot != nil { 483 483 + result.DotDot = *xrpcResp.Dotdot 375 484 } 376 485 377 486 // redirects tree paths trying to access a blob; in this case the result.Files is unpopulated, 378 487 // so we can safely redirect to the "parent" (which is the same file). 379 379 - unescapedTreePath, _ := url.PathUnescape(treePath) 380 380 - if len(result.Files) == 0 && result.Parent == unescapedTreePath { 381 381 - http.Redirect(w, r, fmt.Sprintf("/%s/blob/%s/%s", f.OwnerSlashRepo(), ref, result.Parent), http.StatusFound) 488 488 + if len(result.Files) == 0 && result.Parent == treePath { 489 489 + redirectTo := fmt.Sprintf("/%s/blob/%s/%s", f.OwnerSlashRepo(), url.PathEscape(ref), result.Parent) 490 490 + http.Redirect(w, r, redirectTo, http.StatusFound) 382 491 return 383 492 } 384 493 385 494 user := rp.oauth.GetUser(r) 386 495 387 496 var breadcrumbs [][]string 388 388 - breadcrumbs = append(breadcrumbs, []string{f.RepoName, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), ref)}) 497 497 + breadcrumbs = append(breadcrumbs, []string{f.Name, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), url.PathEscape(ref))}) 389 498 if treePath != "" { 390 499 for idx, elem := range strings.Split(treePath, "/") { 391 391 - breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], elem)}) 500 500 + breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], url.PathEscape(elem))}) 392 501 } 393 502 } 394 503 ··· 410 519 return 411 520 } 412 521 413 413 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 414 414 - if err != nil { 415 415 - log.Println("failed to create unsigned client", err) 522 522 + scheme := "http" 523 523 + if !rp.config.Core.Dev { 524 524 + scheme = "https" 525 525 + } 526 526 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 527 527 + xrpcc := &indigoxrpc.Client{ 528 528 + Host: host, 529 529 + } 530 530 + 531 531 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 532 532 + xrpcBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 533 533 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 534 534 + log.Println("failed to call XRPC repo.tags", xrpcerr) 535 535 + rp.pages.Error503(w) 416 536 return 417 537 } 418 538 419 419 - result, err := us.Tags(f.OwnerDid(), f.RepoName) 420 420 - if err != nil { 421 421 - log.Println("failed to reach knotserver", err) 539 539 + var result types.RepoTagsResponse 540 540 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 541 541 + log.Println("failed to decode XRPC response", err) 542 542 + rp.pages.Error503(w) 422 543 return 423 544 } 424 545 425 425 - artifacts, err := db.GetArtifact(rp.db, db.FilterEq("repo_at", f.RepoAt)) 546 546 + artifacts, err := db.GetArtifact(rp.db, db.FilterEq("repo_at", f.RepoAt())) 426 547 if err != nil { 427 548 log.Println("failed grab artifacts", err) 428 549 return ··· 454 575 rp.pages.RepoTags(w, pages.RepoTagsParams{ 455 576 LoggedInUser: user, 456 577 RepoInfo: f.RepoInfo(user), 457 457 - RepoTagsResponse: *result, 578 578 + RepoTagsResponse: result, 458 579 ArtifactMap: artifactMap, 459 580 DanglingArtifacts: danglingArtifacts, 460 581 }) ··· 467 588 return 468 589 } 469 590 470 470 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 471 471 - if err != nil { 472 472 - log.Println("failed to create unsigned client", err) 591 591 + scheme := "http" 592 592 + if !rp.config.Core.Dev { 593 593 + scheme = "https" 594 594 + } 595 595 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 596 596 + xrpcc := &indigoxrpc.Client{ 597 597 + Host: host, 598 598 + } 599 599 + 600 600 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 601 601 + xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 602 602 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 603 603 + log.Println("failed to call XRPC repo.branches", xrpcerr) 604 604 + rp.pages.Error503(w) 473 605 return 474 606 } 475 607 476 476 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 477 477 - if err != nil { 478 478 - log.Println("failed to reach knotserver", err) 608 608 + var result types.RepoBranchesResponse 609 609 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 610 610 + log.Println("failed to decode XRPC response", err) 611 611 + rp.pages.Error503(w) 479 612 return 480 613 } 481 614 ··· 485 618 rp.pages.RepoBranches(w, pages.RepoBranchesParams{ 486 619 LoggedInUser: user, 487 620 RepoInfo: f.RepoInfo(user), 488 488 - RepoBranchesResponse: *result, 621 621 + RepoBranchesResponse: result, 489 622 }) 490 623 } 491 624 ··· 497 630 } 498 631 499 632 ref := chi.URLParam(r, "ref") 633 633 + ref, _ = url.PathUnescape(ref) 634 634 + 500 635 filePath := chi.URLParam(r, "*") 501 501 - protocol := "http" 636 636 + filePath, _ = url.PathUnescape(filePath) 637 637 + 638 638 + scheme := "http" 502 639 if !rp.config.Core.Dev { 503 503 - protocol = "https" 640 640 + scheme = "https" 504 641 } 505 505 - resp, err := http.Get(fmt.Sprintf("%s://%s/%s/%s/blob/%s/%s", protocol, f.Knot, f.OwnerDid(), f.RepoName, ref, filePath)) 506 506 - if err != nil { 507 507 - log.Println("failed to reach knotserver", err) 508 508 - return 642 642 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 643 643 + xrpcc := &indigoxrpc.Client{ 644 644 + Host: host, 509 645 } 510 646 511 511 - body, err := io.ReadAll(resp.Body) 512 512 - if err != nil { 513 513 - log.Printf("Error reading response body: %v", err) 647 647 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Repo.Name) 648 648 + resp, err := tangled.RepoBlob(r.Context(), xrpcc, filePath, false, ref, repo) 649 649 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 650 650 + log.Println("failed to call XRPC repo.blob", xrpcerr) 651 651 + rp.pages.Error503(w) 514 652 return 515 653 } 516 654 517 517 - var result types.RepoBlobResponse 518 518 - err = json.Unmarshal(body, &result) 519 519 - if err != nil { 520 520 - log.Println("failed to parse response:", err) 521 521 - return 522 522 - } 655 655 + // Use XRPC response directly instead of converting to internal types 523 656 524 657 var breadcrumbs [][]string 525 525 - breadcrumbs = append(breadcrumbs, []string{f.RepoName, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), ref)}) 658 658 + breadcrumbs = append(breadcrumbs, []string{f.Name, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), url.PathEscape(ref))}) 526 659 if filePath != "" { 527 660 for idx, elem := range strings.Split(filePath, "/") { 528 528 - breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], elem)}) 661 661 + breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], url.PathEscape(elem))}) 529 662 } 530 663 } 531 664 532 665 showRendered := false 533 666 renderToggle := false 534 667 535 535 - if markup.GetFormat(result.Path) == markup.FormatMarkdown { 668 668 + if markup.GetFormat(resp.Path) == markup.FormatMarkdown { 536 669 renderToggle = true 537 670 showRendered = r.URL.Query().Get("code") != "true" 538 671 } ··· 542 675 var isVideo bool 543 676 var contentSrc string 544 677 545 545 - if result.IsBinary { 546 546 - ext := strings.ToLower(filepath.Ext(result.Path)) 678 678 + if resp.IsBinary != nil && *resp.IsBinary { 679 679 + ext := strings.ToLower(filepath.Ext(resp.Path)) 547 680 switch ext { 548 681 case ".jpg", ".jpeg", ".png", ".gif", ".svg", ".webp": 549 682 isImage = true ··· 553 686 unsupported = true 554 687 } 555 688 556 556 - // fetch the actual binary content like in RepoBlobRaw 689 689 + // fetch the raw binary content using sh.tangled.repo.blob xrpc 690 690 + repoName := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 557 691 558 558 - blobURL := fmt.Sprintf("%s://%s/%s/%s/raw/%s/%s", protocol, f.Knot, f.OwnerDid(), f.RepoName, ref, filePath) 692 692 + baseURL := &url.URL{ 693 693 + Scheme: scheme, 694 694 + Host: f.Knot, 695 695 + Path: "/xrpc/sh.tangled.repo.blob", 696 696 + } 697 697 + query := baseURL.Query() 698 698 + query.Set("repo", repoName) 699 699 + query.Set("ref", ref) 700 700 + query.Set("path", filePath) 701 701 + query.Set("raw", "true") 702 702 + baseURL.RawQuery = query.Encode() 703 703 + blobURL := baseURL.String() 704 704 + 559 705 contentSrc = blobURL 560 706 if !rp.config.Core.Dev { 561 707 contentSrc = markup.GenerateCamoURL(rp.config.Camo.Host, rp.config.Camo.SharedSecret, blobURL) 562 708 } 563 709 } 564 710 711 711 + lines := 0 712 712 + if resp.IsBinary == nil || !*resp.IsBinary { 713 713 + lines = strings.Count(resp.Content, "\n") + 1 714 714 + } 715 715 + 716 716 + var sizeHint uint64 717 717 + if resp.Size != nil { 718 718 + sizeHint = uint64(*resp.Size) 719 719 + } else { 720 720 + sizeHint = uint64(len(resp.Content)) 721 721 + } 722 722 + 565 723 user := rp.oauth.GetUser(r) 724 724 + 725 725 + // Determine if content is binary (dereference pointer) 726 726 + isBinary := false 727 727 + if resp.IsBinary != nil { 728 728 + isBinary = *resp.IsBinary 729 729 + } 730 730 + 566 731 rp.pages.RepoBlob(w, pages.RepoBlobParams{ 567 567 - LoggedInUser: user, 568 568 - RepoInfo: f.RepoInfo(user), 569 569 - RepoBlobResponse: result, 570 570 - BreadCrumbs: breadcrumbs, 571 571 - ShowRendered: showRendered, 572 572 - RenderToggle: renderToggle, 573 573 - Unsupported: unsupported, 574 574 - IsImage: isImage, 575 575 - IsVideo: isVideo, 576 576 - ContentSrc: contentSrc, 732 732 + LoggedInUser: user, 733 733 + RepoInfo: f.RepoInfo(user), 734 734 + BreadCrumbs: breadcrumbs, 735 735 + ShowRendered: showRendered, 736 736 + RenderToggle: renderToggle, 737 737 + Unsupported: unsupported, 738 738 + IsImage: isImage, 739 739 + IsVideo: isVideo, 740 740 + ContentSrc: contentSrc, 741 741 + RepoBlob_Output: resp, 742 742 + Contents: resp.Content, 743 743 + Lines: lines, 744 744 + SizeHint: sizeHint, 745 745 + IsBinary: isBinary, 577 746 }) 578 747 } 579 748 ··· 586 755 } 587 756 588 757 ref := chi.URLParam(r, "ref") 758 758 + ref, _ = url.PathUnescape(ref) 759 759 + 589 760 filePath := chi.URLParam(r, "*") 761 761 + filePath, _ = url.PathUnescape(filePath) 590 762 591 591 - protocol := "http" 763 763 + scheme := "http" 592 764 if !rp.config.Core.Dev { 593 593 - protocol = "https" 765 765 + scheme = "https" 594 766 } 595 595 - blobURL := fmt.Sprintf("%s://%s/%s/%s/raw/%s/%s", protocol, f.Knot, f.OwnerDid(), f.RepoName, ref, filePath) 596 596 - resp, err := http.Get(blobURL) 767 767 + 768 768 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Repo.Name) 769 769 + baseURL := &url.URL{ 770 770 + Scheme: scheme, 771 771 + Host: f.Knot, 772 772 + Path: "/xrpc/sh.tangled.repo.blob", 773 773 + } 774 774 + query := baseURL.Query() 775 775 + query.Set("repo", repo) 776 776 + query.Set("ref", ref) 777 777 + query.Set("path", filePath) 778 778 + query.Set("raw", "true") 779 779 + baseURL.RawQuery = query.Encode() 780 780 + blobURL := baseURL.String() 781 781 + 782 782 + req, err := http.NewRequest("GET", blobURL, nil) 783 783 + if err != nil { 784 784 + log.Println("failed to create request", err) 785 785 + return 786 786 + } 787 787 + 788 788 + // forward the If-None-Match header 789 789 + if clientETag := r.Header.Get("If-None-Match"); clientETag != "" { 790 790 + req.Header.Set("If-None-Match", clientETag) 791 791 + } 792 792 + 793 793 + client := &http.Client{} 794 794 + resp, err := client.Do(req) 597 795 if err != nil { 598 598 - log.Println("failed to reach knotserver:", err) 796 796 + log.Println("failed to reach knotserver", err) 599 797 rp.pages.Error503(w) 600 798 return 601 799 } 602 800 defer resp.Body.Close() 603 801 802 802 + // forward 304 not modified 803 803 + if resp.StatusCode == http.StatusNotModified { 804 804 + w.WriteHeader(http.StatusNotModified) 805 805 + return 806 806 + } 807 807 + 604 808 if resp.StatusCode != http.StatusOK { 605 809 log.Printf("knotserver returned non-OK status for raw blob %s: %d", blobURL, resp.StatusCode) 606 810 w.WriteHeader(resp.StatusCode) ··· 616 820 return 617 821 } 618 822 619 619 - if strings.Contains(contentType, "text/plain") { 823 823 + if strings.HasPrefix(contentType, "text/") || isTextualMimeType(contentType) { 824 824 + // serve all textual content as text/plain 620 825 w.Header().Set("Content-Type", "text/plain; charset=utf-8") 621 826 w.Write(body) 622 827 } else if strings.HasPrefix(contentType, "image/") || strings.HasPrefix(contentType, "video/") { 828 828 + // serve images and videos with their original content type 623 829 w.Header().Set("Content-Type", contentType) 624 830 w.Write(body) 625 831 } else { ··· 629 835 } 630 836 } 631 837 838 838 + // isTextualMimeType returns true if the MIME type represents textual content 839 839 + // that should be served as text/plain 840 840 + func isTextualMimeType(mimeType string) bool { 841 841 + textualTypes := []string{ 842 842 + "application/json", 843 843 + "application/xml", 844 844 + "application/yaml", 845 845 + "application/x-yaml", 846 846 + "application/toml", 847 847 + "application/javascript", 848 848 + "application/ecmascript", 849 849 + "message/", 850 850 + } 851 851 + 852 852 + return slices.Contains(textualTypes, mimeType) 853 853 + } 854 854 + 632 855 // modify the spindle configured for this repo 633 856 func (rp *Repo) EditSpindle(w http.ResponseWriter, r *http.Request) { 634 857 user := rp.oauth.GetUser(r) ··· 648 871 return 649 872 } 650 873 651 651 - repoAt := f.RepoAt 874 874 + repoAt := f.RepoAt() 652 875 rkey := repoAt.RecordKey().String() 653 876 if rkey == "" { 654 877 fail("Failed to resolve repo. Try again later", err) ··· 656 879 } 657 880 658 881 newSpindle := r.FormValue("spindle") 882 882 + removingSpindle := newSpindle == "[[none]]" // see pages/templates/repo/settings/pipelines.html for more info on why we use this value 659 883 client, err := rp.oauth.AuthorizedClient(r) 660 884 if err != nil { 661 885 fail("Failed to authorize. Try again later.", err) 662 886 return 663 887 } 664 888 665 665 - // ensure that this is a valid spindle for this user 666 666 - validSpindles, err := rp.enforcer.GetSpindlesForUser(user.Did) 667 667 - if err != nil { 668 668 - fail("Failed to find spindles. Try again later.", err) 669 669 - return 889 889 + if !removingSpindle { 890 890 + // ensure that this is a valid spindle for this user 891 891 + validSpindles, err := rp.enforcer.GetSpindlesForUser(user.Did) 892 892 + if err != nil { 893 893 + fail("Failed to find spindles. Try again later.", err) 894 894 + return 895 895 + } 896 896 + 897 897 + if !slices.Contains(validSpindles, newSpindle) { 898 898 + fail("Failed to configure spindle.", fmt.Errorf("%s is not a valid spindle: %q", newSpindle, validSpindles)) 899 899 + return 900 900 + } 670 901 } 671 902 672 672 - if !slices.Contains(validSpindles, newSpindle) { 673 673 - fail("Failed to configure spindle.", fmt.Errorf("%s is not a valid spindle: %q", newSpindle, validSpindles)) 674 674 - return 903 903 + spindlePtr := &newSpindle 904 904 + if removingSpindle { 905 905 + spindlePtr = nil 675 906 } 676 907 677 908 // optimistic update 678 678 - err = db.UpdateSpindle(rp.db, string(repoAt), newSpindle) 909 909 + err = db.UpdateSpindle(rp.db, string(repoAt), spindlePtr) 679 910 if err != nil { 680 911 fail("Failed to update spindle. Try again later.", err) 681 912 return ··· 694 925 Record: &lexutil.LexiconTypeDecoder{ 695 926 Val: &tangled.Repo{ 696 927 Knot: f.Knot, 697 697 - Name: f.RepoName, 928 928 + Name: f.Name, 698 929 Owner: user.Did, 699 699 - CreatedAt: f.CreatedAt, 930 930 + CreatedAt: f.Created.Format(time.RFC3339), 700 931 Description: &f.Description, 701 701 - Spindle: &newSpindle, 932 932 + Spindle: spindlePtr, 702 933 }, 703 934 }, 704 935 }) ··· 708 939 return 709 940 } 710 941 711 711 - // add this spindle to spindle stream 712 712 - rp.spindlestream.AddSource( 713 713 - context.Background(), 714 714 - eventconsumer.NewSpindleSource(newSpindle), 715 715 - ) 942 942 + if !removingSpindle { 943 943 + // add this spindle to spindle stream 944 944 + rp.spindlestream.AddSource( 945 945 + context.Background(), 946 946 + eventconsumer.NewSpindleSource(newSpindle), 947 947 + ) 948 948 + } 716 949 717 950 rp.pages.HxRefresh(w) 718 951 } ··· 740 973 fail("Invalid form.", nil) 741 974 return 742 975 } 976 976 + 977 977 + // remove a single leading `@`, to make @handle work with ResolveIdent 978 978 + collaborator = strings.TrimPrefix(collaborator, "@") 743 979 744 980 collaboratorIdent, err := rp.idResolver.ResolveIdent(r.Context(), collaborator) 745 981 if err != nil { ··· 751 987 fail("You seem to be adding yourself as a collaborator.", nil) 752 988 return 753 989 } 754 754 - 755 990 l = l.With("collaborator", collaboratorIdent.Handle) 756 991 l = l.With("knot", f.Knot) 757 757 - l.Info("adding to knot") 758 992 759 759 - secret, err := db.GetRegistrationKey(rp.db, f.Knot) 993 993 + // announce this relation into the firehose, store into owners' pds 994 994 + client, err := rp.oauth.AuthorizedClient(r) 760 995 if err != nil { 761 761 - fail("Failed to add to knot.", err) 996 996 + fail("Failed to write to PDS.", err) 762 997 return 763 998 } 764 999 765 765 - ksClient, err := knotclient.NewSignedClient(f.Knot, secret, rp.config.Core.Dev) 1000 1000 + // emit a record 1001 1001 + currentUser := rp.oauth.GetUser(r) 1002 1002 + rkey := tid.TID() 1003 1003 + createdAt := time.Now() 1004 1004 + resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1005 1005 + Collection: tangled.RepoCollaboratorNSID, 1006 1006 + Repo: currentUser.Did, 1007 1007 + Rkey: rkey, 1008 1008 + Record: &lexutil.LexiconTypeDecoder{ 1009 1009 + Val: &tangled.RepoCollaborator{ 1010 1010 + Subject: collaboratorIdent.DID.String(), 1011 1011 + Repo: string(f.RepoAt()), 1012 1012 + CreatedAt: createdAt.Format(time.RFC3339), 1013 1013 + }}, 1014 1014 + }) 1015 1015 + // invalid record 766 1016 if err != nil { 767 767 - fail("Failed to add to knot.", err) 1017 1017 + fail("Failed to write record to PDS.", err) 768 1018 return 769 1019 } 770 1020 771 771 - ksResp, err := ksClient.AddCollaborator(f.OwnerDid(), f.RepoName, collaboratorIdent.DID.String()) 772 772 - if err != nil { 773 773 - fail("Knot was unreachable.", err) 774 774 - return 775 775 - } 776 776 - 777 777 - if ksResp.StatusCode != http.StatusNoContent { 778 778 - fail(fmt.Sprintf("Knot returned unexpected status code: %d.", ksResp.StatusCode), nil) 779 779 - return 780 780 - } 1021 1021 + aturi := resp.Uri 1022 1022 + l = l.With("at-uri", aturi) 1023 1023 + l.Info("wrote record to PDS") 781 1024 782 1025 tx, err := rp.db.BeginTx(r.Context(), nil) 783 1026 if err != nil { 784 1027 fail("Failed to add collaborator.", err) 785 1028 return 786 1029 } 787 787 - defer func() { 788 788 - tx.Rollback() 789 789 - err = rp.enforcer.E.LoadPolicy() 790 790 - if err != nil { 791 791 - fail("Failed to add collaborator.", err) 1030 1030 + 1031 1031 + rollback := func() { 1032 1032 + err1 := tx.Rollback() 1033 1033 + err2 := rp.enforcer.E.LoadPolicy() 1034 1034 + err3 := rollbackRecord(context.Background(), aturi, client) 1035 1035 + 1036 1036 + // ignore txn complete errors, this is okay 1037 1037 + if errors.Is(err1, sql.ErrTxDone) { 1038 1038 + err1 = nil 792 1039 } 793 793 - }() 1040 1040 + 1041 1041 + if errs := errors.Join(err1, err2, err3); errs != nil { 1042 1042 + l.Error("failed to rollback changes", "errs", errs) 1043 1043 + return 1044 1044 + } 1045 1045 + } 1046 1046 + defer rollback() 794 1047 795 1048 err = rp.enforcer.AddCollaborator(collaboratorIdent.DID.String(), f.Knot, f.DidSlashRepo()) 796 1049 if err != nil { ··· 798 1051 return 799 1052 } 800 1053 801 801 - err = db.AddCollaborator(rp.db, collaboratorIdent.DID.String(), f.OwnerDid(), f.RepoName, f.Knot) 1054 1054 + err = db.AddCollaborator(rp.db, db.Collaborator{ 1055 1055 + Did: syntax.DID(currentUser.Did), 1056 1056 + Rkey: rkey, 1057 1057 + SubjectDid: collaboratorIdent.DID, 1058 1058 + RepoAt: f.RepoAt(), 1059 1059 + Created: createdAt, 1060 1060 + }) 802 1061 if err != nil { 803 1062 fail("Failed to add collaborator.", err) 804 1063 return ··· 816 1075 return 817 1076 } 818 1077 1078 1078 + // clear aturi to when everything is successful 1079 1079 + aturi = "" 1080 1080 + 819 1081 rp.pages.HxRefresh(w) 820 1082 } 821 1083 822 1084 func (rp *Repo) DeleteRepo(w http.ResponseWriter, r *http.Request) { 823 1085 user := rp.oauth.GetUser(r) 824 1086 1087 1087 + noticeId := "operation-error" 825 1088 f, err := rp.repoResolver.Resolve(r) 826 1089 if err != nil { 827 1090 log.Println("failed to get repo and knot", err) ··· 834 1097 log.Println("failed to get authorized client", err) 835 1098 return 836 1099 } 837 837 - repoRkey := f.RepoAt.RecordKey().String() 838 1100 _, err = xrpcClient.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 839 1101 Collection: tangled.RepoNSID, 840 1102 Repo: user.Did, 841 841 - Rkey: repoRkey, 1103 1103 + Rkey: f.Rkey, 842 1104 }) 843 1105 if err != nil { 844 1106 log.Printf("failed to delete record: %s", err) 845 845 - rp.pages.Notice(w, "settings-delete", "Failed to delete repository from PDS.") 846 846 - return 847 847 - } 848 848 - log.Println("removed repo record ", f.RepoAt.String()) 849 849 - 850 850 - secret, err := db.GetRegistrationKey(rp.db, f.Knot) 851 851 - if err != nil { 852 852 - log.Printf("no key found for domain %s: %s\n", f.Knot, err) 1107 1107 + rp.pages.Notice(w, noticeId, "Failed to delete repository from PDS.") 853 1108 return 854 1109 } 1110 1110 + log.Println("removed repo record ", f.RepoAt().String()) 855 1111 856 856 - ksClient, err := knotclient.NewSignedClient(f.Knot, secret, rp.config.Core.Dev) 1112 1112 + client, err := rp.oauth.ServiceClient( 1113 1113 + r, 1114 1114 + oauth.WithService(f.Knot), 1115 1115 + oauth.WithLxm(tangled.RepoDeleteNSID), 1116 1116 + oauth.WithDev(rp.config.Core.Dev), 1117 1117 + ) 857 1118 if err != nil { 858 858 - log.Println("failed to create client to ", f.Knot) 1119 1119 + log.Println("failed to connect to knot server:", err) 859 1120 return 860 1121 } 861 1122 862 862 - ksResp, err := ksClient.RemoveRepo(f.OwnerDid(), f.RepoName) 863 863 - if err != nil { 864 864 - log.Printf("failed to make request to %s: %s", f.Knot, err) 1123 1123 + err = tangled.RepoDelete( 1124 1124 + r.Context(), 1125 1125 + client, 1126 1126 + &tangled.RepoDelete_Input{ 1127 1127 + Did: f.OwnerDid(), 1128 1128 + Name: f.Name, 1129 1129 + Rkey: f.Rkey, 1130 1130 + }, 1131 1131 + ) 1132 1132 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 1133 1133 + rp.pages.Notice(w, noticeId, err.Error()) 865 1134 return 866 1135 } 867 867 - 868 868 - if ksResp.StatusCode != http.StatusNoContent { 869 869 - log.Println("failed to remove repo from knot, continuing anyway ", f.Knot) 870 870 - } else { 871 871 - log.Println("removed repo from knot ", f.Knot) 872 872 - } 1136 1136 + log.Println("deleted repo from knot") 873 1137 874 1138 tx, err := rp.db.BeginTx(r.Context(), nil) 875 1139 if err != nil { ··· 888 1152 // remove collaborator RBAC 889 1153 repoCollaborators, err := rp.enforcer.E.GetImplicitUsersForResourceByDomain(f.DidSlashRepo(), f.Knot) 890 1154 if err != nil { 891 891 - rp.pages.Notice(w, "settings-delete", "Failed to remove collaborators") 1155 1155 + rp.pages.Notice(w, noticeId, "Failed to remove collaborators") 892 1156 return 893 1157 } 894 1158 for _, c := range repoCollaborators { ··· 900 1164 // remove repo RBAC 901 1165 err = rp.enforcer.RemoveRepo(f.OwnerDid(), f.Knot, f.DidSlashRepo()) 902 1166 if err != nil { 903 903 - rp.pages.Notice(w, "settings-delete", "Failed to update RBAC rules") 1167 1167 + rp.pages.Notice(w, noticeId, "Failed to update RBAC rules") 904 1168 return 905 1169 } 906 1170 907 1171 // remove repo from db 908 908 - err = db.RemoveRepo(tx, f.OwnerDid(), f.RepoName) 1172 1172 + err = db.RemoveRepo(tx, f.OwnerDid(), f.Name) 909 1173 if err != nil { 910 910 - rp.pages.Notice(w, "settings-delete", "Failed to update appview") 1174 1174 + rp.pages.Notice(w, noticeId, "Failed to update appview") 911 1175 return 912 1176 } 913 1177 log.Println("removed repo from db") ··· 936 1200 return 937 1201 } 938 1202 1203 1203 + noticeId := "operation-error" 939 1204 branch := r.FormValue("branch") 940 1205 if branch == "" { 941 1206 http.Error(w, "malformed form", http.StatusBadRequest) 942 1207 return 943 1208 } 944 1209 945 945 - secret, err := db.GetRegistrationKey(rp.db, f.Knot) 946 946 - if err != nil { 947 947 - log.Printf("no key found for domain %s: %s\n", f.Knot, err) 948 948 - return 949 949 - } 950 950 - 951 951 - ksClient, err := knotclient.NewSignedClient(f.Knot, secret, rp.config.Core.Dev) 952 952 - if err != nil { 953 953 - log.Println("failed to create client to ", f.Knot) 954 954 - return 955 955 - } 956 956 - 957 957 - ksResp, err := ksClient.SetDefaultBranch(f.OwnerDid(), f.RepoName, branch) 1210 1210 + client, err := rp.oauth.ServiceClient( 1211 1211 + r, 1212 1212 + oauth.WithService(f.Knot), 1213 1213 + oauth.WithLxm(tangled.RepoSetDefaultBranchNSID), 1214 1214 + oauth.WithDev(rp.config.Core.Dev), 1215 1215 + ) 958 1216 if err != nil { 959 959 - log.Printf("failed to make request to %s: %s", f.Knot, err) 1217 1217 + log.Println("failed to connect to knot server:", err) 1218 1218 + rp.pages.Notice(w, noticeId, "Failed to connect to knot server.") 960 1219 return 961 1220 } 962 1221 963 963 - if ksResp.StatusCode != http.StatusNoContent { 964 964 - rp.pages.Notice(w, "repo-settings", "Failed to set default branch. Try again later.") 1222 1222 + xe := tangled.RepoSetDefaultBranch( 1223 1223 + r.Context(), 1224 1224 + client, 1225 1225 + &tangled.RepoSetDefaultBranch_Input{ 1226 1226 + Repo: f.RepoAt().String(), 1227 1227 + DefaultBranch: branch, 1228 1228 + }, 1229 1229 + ) 1230 1230 + if err := xrpcclient.HandleXrpcErr(xe); err != nil { 1231 1231 + log.Println("xrpc failed", "err", xe) 1232 1232 + rp.pages.Notice(w, noticeId, err.Error()) 965 1233 return 966 1234 } 967 1235 968 968 - w.Write(fmt.Append(nil, "default branch set to: ", branch)) 1236 1236 + rp.pages.HxRefresh(w) 969 1237 } 970 1238 971 1239 func (rp *Repo) Secrets(w http.ResponseWriter, r *http.Request) { ··· 994 1262 r, 995 1263 oauth.WithService(f.Spindle), 996 1264 oauth.WithLxm(lxm), 1265 1265 + oauth.WithExp(60), 997 1266 oauth.WithDev(rp.config.Core.Dev), 998 1267 ) 999 1268 if err != nil { ··· 1021 1290 r.Context(), 1022 1291 spindleClient, 1023 1292 &tangled.RepoAddSecret_Input{ 1024 1024 - Repo: f.RepoAt.String(), 1293 1293 + Repo: f.RepoAt().String(), 1025 1294 Key: key, 1026 1295 Value: value, 1027 1296 }, ··· 1039 1308 r.Context(), 1040 1309 spindleClient, 1041 1310 &tangled.RepoRemoveSecret_Input{ 1042 1042 - Repo: f.RepoAt.String(), 1311 1311 + Repo: f.RepoAt().String(), 1043 1312 Key: key, 1044 1313 }, 1045 1314 ) ··· 1080 1349 case "pipelines": 1081 1350 rp.pipelineSettings(w, r) 1082 1351 } 1083 1083 - 1084 1084 - // user := rp.oauth.GetUser(r) 1085 1085 - // repoCollaborators, err := f.Collaborators(r.Context()) 1086 1086 - // if err != nil { 1087 1087 - // log.Println("failed to get collaborators", err) 1088 1088 - // } 1089 1089 - 1090 1090 - // isCollaboratorInviteAllowed := false 1091 1091 - // if user != nil { 1092 1092 - // ok, err := rp.enforcer.IsCollaboratorInviteAllowed(user.Did, f.Knot, f.DidSlashRepo()) 1093 1093 - // if err == nil && ok { 1094 1094 - // isCollaboratorInviteAllowed = true 1095 1095 - // } 1096 1096 - // } 1097 1097 - 1098 1098 - // us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 1099 1099 - // if err != nil { 1100 1100 - // log.Println("failed to create unsigned client", err) 1101 1101 - // return 1102 1102 - // } 1103 1103 - 1104 1104 - // result, err := us.Branches(f.OwnerDid(), f.RepoName) 1105 1105 - // if err != nil { 1106 1106 - // log.Println("failed to reach knotserver", err) 1107 1107 - // return 1108 1108 - // } 1109 1109 - 1110 1110 - // // all spindles that this user is a member of 1111 1111 - // spindles, err := rp.enforcer.GetSpindlesForUser(user.Did) 1112 1112 - // if err != nil { 1113 1113 - // log.Println("failed to fetch spindles", err) 1114 1114 - // return 1115 1115 - // } 1116 1116 - 1117 1117 - // var secrets []*tangled.RepoListSecrets_Secret 1118 1118 - // if f.Spindle != "" { 1119 1119 - // if spindleClient, err := rp.oauth.ServiceClient( 1120 1120 - // r, 1121 1121 - // oauth.WithService(f.Spindle), 1122 1122 - // oauth.WithLxm(tangled.RepoListSecretsNSID), 1123 1123 - // oauth.WithDev(rp.config.Core.Dev), 1124 1124 - // ); err != nil { 1125 1125 - // log.Println("failed to create spindle client", err) 1126 1126 - // } else if resp, err := tangled.RepoListSecrets(r.Context(), spindleClient, f.RepoAt.String()); err != nil { 1127 1127 - // log.Println("failed to fetch secrets", err) 1128 1128 - // } else { 1129 1129 - // secrets = resp.Secrets 1130 1130 - // } 1131 1131 - // } 1132 1132 - 1133 1133 - // rp.pages.RepoSettings(w, pages.RepoSettingsParams{ 1134 1134 - // LoggedInUser: user, 1135 1135 - // RepoInfo: f.RepoInfo(user), 1136 1136 - // Collaborators: repoCollaborators, 1137 1137 - // IsCollaboratorInviteAllowed: isCollaboratorInviteAllowed, 1138 1138 - // Branches: result.Branches, 1139 1139 - // Spindles: spindles, 1140 1140 - // CurrentSpindle: f.Spindle, 1141 1141 - // Secrets: secrets, 1142 1142 - // }) 1143 1352 } 1144 1353 1145 1354 func (rp *Repo) generalSettings(w http.ResponseWriter, r *http.Request) { 1146 1355 f, err := rp.repoResolver.Resolve(r) 1147 1356 user := rp.oauth.GetUser(r) 1148 1357 1149 1149 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 1150 1150 - if err != nil { 1151 1151 - log.Println("failed to create unsigned client", err) 1358 1358 + scheme := "http" 1359 1359 + if !rp.config.Core.Dev { 1360 1360 + scheme = "https" 1361 1361 + } 1362 1362 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1363 1363 + xrpcc := &indigoxrpc.Client{ 1364 1364 + Host: host, 1365 1365 + } 1366 1366 + 1367 1367 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1368 1368 + xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 1369 1369 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1370 1370 + log.Println("failed to call XRPC repo.branches", xrpcerr) 1371 1371 + rp.pages.Error503(w) 1152 1372 return 1153 1373 } 1154 1374 1155 1155 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 1156 1156 - if err != nil { 1157 1157 - log.Println("failed to reach knotserver", err) 1375 1375 + var result types.RepoBranchesResponse 1376 1376 + if err := json.Unmarshal(xrpcBytes, &result); err != nil { 1377 1377 + log.Println("failed to decode XRPC response", err) 1378 1378 + rp.pages.Error503(w) 1158 1379 return 1159 1380 } 1160 1381 ··· 1189 1410 f, err := rp.repoResolver.Resolve(r) 1190 1411 user := rp.oauth.GetUser(r) 1191 1412 1192 1192 - // all spindles that this user is a member of 1193 1193 - spindles, err := rp.enforcer.GetSpindlesForUser(user.Did) 1413 1413 + // all spindles that the repo owner is a member of 1414 1414 + spindles, err := rp.enforcer.GetSpindlesForUser(f.OwnerDid()) 1194 1415 if err != nil { 1195 1416 log.Println("failed to fetch spindles", err) 1196 1417 return ··· 1202 1423 r, 1203 1424 oauth.WithService(f.Spindle), 1204 1425 oauth.WithLxm(tangled.RepoListSecretsNSID), 1426 1426 + oauth.WithExp(60), 1205 1427 oauth.WithDev(rp.config.Core.Dev), 1206 1428 ); err != nil { 1207 1429 log.Println("failed to create spindle client", err) 1208 1208 - } else if resp, err := tangled.RepoListSecrets(r.Context(), spindleClient, f.RepoAt.String()); err != nil { 1430 1430 + } else if resp, err := tangled.RepoListSecrets(r.Context(), spindleClient, f.RepoAt().String()); err != nil { 1209 1431 log.Println("failed to fetch secrets", err) 1210 1432 } else { 1211 1433 secrets = resp.Secrets ··· 1246 1468 } 1247 1469 1248 1470 func (rp *Repo) SyncRepoFork(w http.ResponseWriter, r *http.Request) { 1471 1471 + ref := chi.URLParam(r, "ref") 1472 1472 + ref, _ = url.PathUnescape(ref) 1473 1473 + 1249 1474 user := rp.oauth.GetUser(r) 1250 1475 f, err := rp.repoResolver.Resolve(r) 1251 1476 if err != nil { ··· 1255 1480 1256 1481 switch r.Method { 1257 1482 case http.MethodPost: 1258 1258 - secret, err := db.GetRegistrationKey(rp.db, f.Knot) 1483 1483 + client, err := rp.oauth.ServiceClient( 1484 1484 + r, 1485 1485 + oauth.WithService(f.Knot), 1486 1486 + oauth.WithLxm(tangled.RepoForkSyncNSID), 1487 1487 + oauth.WithDev(rp.config.Core.Dev), 1488 1488 + ) 1259 1489 if err != nil { 1260 1260 - rp.pages.Notice(w, "repo", fmt.Sprintf("No registration key found for knot %s.", f.Knot)) 1490 1490 + rp.pages.Notice(w, "repo", "Failed to connect to knot server.") 1261 1491 return 1262 1492 } 1263 1493 1264 1264 - client, err := knotclient.NewSignedClient(f.Knot, secret, rp.config.Core.Dev) 1265 1265 - if err != nil { 1266 1266 - rp.pages.Notice(w, "repo", "Failed to reach knot server.") 1494 1494 + repoInfo := f.RepoInfo(user) 1495 1495 + if repoInfo.Source == nil { 1496 1496 + rp.pages.Notice(w, "repo", "This repository is not a fork.") 1267 1497 return 1268 1498 } 1269 1499 1270 1270 - var uri string 1271 1271 - if rp.config.Core.Dev { 1272 1272 - uri = "http" 1273 1273 - } else { 1274 1274 - uri = "https" 1275 1275 - } 1276 1276 - forkName := fmt.Sprintf("%s", f.RepoName) 1277 1277 - forkSourceUrl := fmt.Sprintf("%s://%s/%s/%s", uri, f.Knot, f.OwnerDid(), f.RepoName) 1278 1278 - 1279 1279 - _, err = client.SyncRepoFork(user.Did, forkSourceUrl, forkName, f.Ref) 1280 1280 - if err != nil { 1281 1281 - rp.pages.Notice(w, "repo", "Failed to sync repository fork.") 1500 1500 + err = tangled.RepoForkSync( 1501 1501 + r.Context(), 1502 1502 + client, 1503 1503 + &tangled.RepoForkSync_Input{ 1504 1504 + Did: user.Did, 1505 1505 + Name: f.Name, 1506 1506 + Source: repoInfo.Source.RepoAt().String(), 1507 1507 + Branch: ref, 1508 1508 + }, 1509 1509 + ) 1510 1510 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 1511 1511 + rp.pages.Notice(w, "repo", err.Error()) 1282 1512 return 1283 1513 } 1284 1514 ··· 1311 1541 }) 1312 1542 1313 1543 case http.MethodPost: 1544 1544 + l := rp.logger.With("handler", "ForkRepo") 1314 1545 1315 1315 - knot := r.FormValue("knot") 1316 1316 - if knot == "" { 1546 1546 + targetKnot := r.FormValue("knot") 1547 1547 + if targetKnot == "" { 1317 1548 rp.pages.Notice(w, "repo", "Invalid form submission&mdash;missing knot domain.") 1318 1549 return 1319 1550 } 1551 1551 + l = l.With("targetKnot", targetKnot) 1320 1552 1321 1321 - ok, err := rp.enforcer.E.Enforce(user.Did, knot, knot, "repo:create") 1553 1553 + ok, err := rp.enforcer.E.Enforce(user.Did, targetKnot, targetKnot, "repo:create") 1322 1554 if err != nil || !ok { 1323 1555 rp.pages.Notice(w, "repo", "You do not have permission to create a repo in this knot.") 1324 1556 return 1325 1557 } 1326 1558 1327 1327 - forkName := fmt.Sprintf("%s", f.RepoName) 1328 1328 - 1559 1559 + // choose a name for a fork 1560 1560 + forkName := f.Name 1329 1561 // this check is *only* to see if the forked repo name already exists 1330 1562 // in the user's account. 1331 1331 - existingRepo, err := db.GetRepo(rp.db, user.Did, f.RepoName) 1563 1563 + existingRepo, err := db.GetRepo(rp.db, user.Did, f.Name) 1332 1564 if err != nil { 1333 1565 if errors.Is(err, sql.ErrNoRows) { 1334 1566 // no existing repo with this name found, we can use the name as is ··· 1341 1573 // repo with this name already exists, append random string 1342 1574 forkName = fmt.Sprintf("%s-%s", forkName, randomString(3)) 1343 1575 } 1344 1344 - secret, err := db.GetRegistrationKey(rp.db, knot) 1345 1345 - if err != nil { 1346 1346 - rp.pages.Notice(w, "repo", fmt.Sprintf("No registration key found for knot %s.", knot)) 1347 1347 - return 1348 1348 - } 1349 1349 - 1350 1350 - client, err := knotclient.NewSignedClient(knot, secret, rp.config.Core.Dev) 1351 1351 - if err != nil { 1352 1352 - rp.pages.Notice(w, "repo", "Failed to reach knot server.") 1353 1353 - return 1354 1354 - } 1576 1576 + l = l.With("forkName", forkName) 1355 1577 1356 1356 - var uri string 1578 1578 + uri := "https" 1357 1579 if rp.config.Core.Dev { 1358 1580 uri = "http" 1359 1359 - } else { 1360 1360 - uri = "https" 1361 1581 } 1362 1362 - forkSourceUrl := fmt.Sprintf("%s://%s/%s/%s", uri, f.Knot, f.OwnerDid(), f.RepoName) 1363 1363 - sourceAt := f.RepoAt.String() 1364 1582 1583 1583 + forkSourceUrl := fmt.Sprintf("%s://%s/%s/%s", uri, f.Knot, f.OwnerDid(), f.Repo.Name) 1584 1584 + l = l.With("cloneUrl", forkSourceUrl) 1585 1585 + 1586 1586 + sourceAt := f.RepoAt().String() 1587 1587 + 1588 1588 + // create an atproto record for this fork 1365 1589 rkey := tid.TID() 1366 1590 repo := &db.Repo{ 1367 1591 Did: user.Did, 1368 1592 Name: forkName, 1369 1369 - Knot: knot, 1593 1593 + Knot: targetKnot, 1370 1594 Rkey: rkey, 1371 1595 Source: sourceAt, 1372 1596 } 1373 1597 1374 1374 - tx, err := rp.db.BeginTx(r.Context(), nil) 1375 1375 - if err != nil { 1376 1376 - log.Println(err) 1377 1377 - rp.pages.Notice(w, "repo", "Failed to save repository information.") 1378 1378 - return 1379 1379 - } 1380 1380 - defer func() { 1381 1381 - tx.Rollback() 1382 1382 - err = rp.enforcer.E.LoadPolicy() 1383 1383 - if err != nil { 1384 1384 - log.Println("failed to rollback policies") 1385 1385 - } 1386 1386 - }() 1387 1387 - 1388 1388 - resp, err := client.ForkRepo(user.Did, forkSourceUrl, forkName) 1389 1389 - if err != nil { 1390 1390 - rp.pages.Notice(w, "repo", "Failed to create repository on knot server.") 1391 1391 - return 1392 1392 - } 1393 1393 - 1394 1394 - switch resp.StatusCode { 1395 1395 - case http.StatusConflict: 1396 1396 - rp.pages.Notice(w, "repo", "A repository with that name already exists.") 1397 1397 - return 1398 1398 - case http.StatusInternalServerError: 1399 1399 - rp.pages.Notice(w, "repo", "Failed to create repository on knot. Try again later.") 1400 1400 - case http.StatusNoContent: 1401 1401 - // continue 1402 1402 - } 1403 1403 - 1404 1598 xrpcClient, err := rp.oauth.AuthorizedClient(r) 1405 1599 if err != nil { 1406 1406 - log.Println("failed to get authorized client", err) 1407 1407 - rp.pages.Notice(w, "repo", "Failed to create repository.") 1600 1600 + l.Error("failed to create xrpcclient", "err", err) 1601 1601 + rp.pages.Notice(w, "repo", "Failed to fork repository.") 1408 1602 return 1409 1603 } 1410 1604 ··· 1423 1617 }}, 1424 1618 }) 1425 1619 if err != nil { 1426 1426 - log.Printf("failed to create record: %s", err) 1620 1620 + l.Error("failed to write to PDS", "err", err) 1427 1621 rp.pages.Notice(w, "repo", "Failed to announce repository creation.") 1428 1622 return 1429 1623 } 1430 1430 - log.Println("created repo record: ", atresp.Uri) 1624 1624 + 1625 1625 + aturi := atresp.Uri 1626 1626 + l = l.With("aturi", aturi) 1627 1627 + l.Info("wrote to PDS") 1628 1628 + 1629 1629 + tx, err := rp.db.BeginTx(r.Context(), nil) 1630 1630 + if err != nil { 1631 1631 + l.Info("txn failed", "err", err) 1632 1632 + rp.pages.Notice(w, "repo", "Failed to save repository information.") 1633 1633 + return 1634 1634 + } 1635 1635 + 1636 1636 + // The rollback function reverts a few things on failure: 1637 1637 + // - the pending txn 1638 1638 + // - the ACLs 1639 1639 + // - the atproto record created 1640 1640 + rollback := func() { 1641 1641 + err1 := tx.Rollback() 1642 1642 + err2 := rp.enforcer.E.LoadPolicy() 1643 1643 + err3 := rollbackRecord(context.Background(), aturi, xrpcClient) 1644 1644 + 1645 1645 + // ignore txn complete errors, this is okay 1646 1646 + if errors.Is(err1, sql.ErrTxDone) { 1647 1647 + err1 = nil 1648 1648 + } 1649 1649 + 1650 1650 + if errs := errors.Join(err1, err2, err3); errs != nil { 1651 1651 + l.Error("failed to rollback changes", "errs", errs) 1652 1652 + return 1653 1653 + } 1654 1654 + } 1655 1655 + defer rollback() 1656 1656 + 1657 1657 + client, err := rp.oauth.ServiceClient( 1658 1658 + r, 1659 1659 + oauth.WithService(targetKnot), 1660 1660 + oauth.WithLxm(tangled.RepoCreateNSID), 1661 1661 + oauth.WithDev(rp.config.Core.Dev), 1662 1662 + ) 1663 1663 + if err != nil { 1664 1664 + l.Error("could not create service client", "err", err) 1665 1665 + rp.pages.Notice(w, "repo", "Failed to connect to knot server.") 1666 1666 + return 1667 1667 + } 1668 1668 + 1669 1669 + err = tangled.RepoCreate( 1670 1670 + r.Context(), 1671 1671 + client, 1672 1672 + &tangled.RepoCreate_Input{ 1673 1673 + Rkey: rkey, 1674 1674 + Source: &forkSourceUrl, 1675 1675 + }, 1676 1676 + ) 1677 1677 + if err := xrpcclient.HandleXrpcErr(err); err != nil { 1678 1678 + rp.pages.Notice(w, "repo", err.Error()) 1679 1679 + return 1680 1680 + } 1431 1681 1432 1432 - repo.AtUri = atresp.Uri 1433 1682 err = db.AddRepo(tx, repo) 1434 1683 if err != nil { 1435 1684 log.Println(err) ··· 1439 1688 1440 1689 // acls 1441 1690 p, _ := securejoin.SecureJoin(user.Did, forkName) 1442 1442 - err = rp.enforcer.AddRepo(user.Did, knot, p) 1691 1691 + err = rp.enforcer.AddRepo(user.Did, targetKnot, p) 1443 1692 if err != nil { 1444 1693 log.Println(err) 1445 1694 rp.pages.Notice(w, "repo", "Failed to set up repository permissions.") ··· 1460 1709 return 1461 1710 } 1462 1711 1712 1712 + // reset the ATURI because the transaction completed successfully 1713 1713 + aturi = "" 1714 1714 + 1715 1715 + rp.notifier.NewRepo(r.Context(), repo) 1463 1716 rp.pages.HxLocation(w, fmt.Sprintf("/@%s/%s", user.Handle, forkName)) 1464 1464 - return 1465 1717 } 1466 1718 } 1467 1719 1720 1720 + // this is used to rollback changes made to the PDS 1721 1721 + // 1722 1722 + // it is a no-op if the provided ATURI is empty 1723 1723 + func rollbackRecord(ctx context.Context, aturi string, xrpcc *xrpcclient.Client) error { 1724 1724 + if aturi == "" { 1725 1725 + return nil 1726 1726 + } 1727 1727 + 1728 1728 + parsed := syntax.ATURI(aturi) 1729 1729 + 1730 1730 + collection := parsed.Collection().String() 1731 1731 + repo := parsed.Authority().String() 1732 1732 + rkey := parsed.RecordKey().String() 1733 1733 + 1734 1734 + _, err := xrpcc.RepoDeleteRecord(ctx, &comatproto.RepoDeleteRecord_Input{ 1735 1735 + Collection: collection, 1736 1736 + Repo: repo, 1737 1737 + Rkey: rkey, 1738 1738 + }) 1739 1739 + return err 1740 1740 + } 1741 1741 + 1468 1742 func (rp *Repo) RepoCompareNew(w http.ResponseWriter, r *http.Request) { 1469 1743 user := rp.oauth.GetUser(r) 1470 1744 f, err := rp.repoResolver.Resolve(r) ··· 1473 1747 return 1474 1748 } 1475 1749 1476 1476 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 1477 1477 - if err != nil { 1478 1478 - log.Printf("failed to create unsigned client for %s", f.Knot) 1750 1750 + scheme := "http" 1751 1751 + if !rp.config.Core.Dev { 1752 1752 + scheme = "https" 1753 1753 + } 1754 1754 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1755 1755 + xrpcc := &indigoxrpc.Client{ 1756 1756 + Host: host, 1757 1757 + } 1758 1758 + 1759 1759 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1760 1760 + branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 1761 1761 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1762 1762 + log.Println("failed to call XRPC repo.branches", xrpcerr) 1479 1763 rp.pages.Error503(w) 1480 1764 return 1481 1765 } 1482 1766 1483 1483 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 1484 1484 - if err != nil { 1767 1767 + var branchResult types.RepoBranchesResponse 1768 1768 + if err := json.Unmarshal(branchBytes, &branchResult); err != nil { 1769 1769 + log.Println("failed to decode XRPC branches response", err) 1485 1770 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 1486 1486 - log.Println("failed to reach knotserver", err) 1487 1771 return 1488 1772 } 1489 1489 - branches := result.Branches 1773 1773 + branches := branchResult.Branches 1490 1774 1491 1775 sortBranches(branches) 1492 1776 ··· 1510 1794 head = queryHead 1511 1795 } 1512 1796 1513 1513 - tags, err := us.Tags(f.OwnerDid(), f.RepoName) 1514 1514 - if err != nil { 1797 1797 + tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 1798 1798 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1799 1799 + log.Println("failed to call XRPC repo.tags", xrpcerr) 1800 1800 + rp.pages.Error503(w) 1801 1801 + return 1802 1802 + } 1803 1803 + 1804 1804 + var tags types.RepoTagsResponse 1805 1805 + if err := json.Unmarshal(tagBytes, &tags); err != nil { 1806 1806 + log.Println("failed to decode XRPC tags response", err) 1515 1807 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 1516 1516 - log.Println("failed to reach knotserver", err) 1517 1808 return 1518 1809 } 1519 1810 ··· 1565 1856 return 1566 1857 } 1567 1858 1568 1568 - us, err := knotclient.NewUnsignedClient(f.Knot, rp.config.Core.Dev) 1569 1569 - if err != nil { 1570 1570 - log.Printf("failed to create unsigned client for %s", f.Knot) 1859 1859 + scheme := "http" 1860 1860 + if !rp.config.Core.Dev { 1861 1861 + scheme = "https" 1862 1862 + } 1863 1863 + host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1864 1864 + xrpcc := &indigoxrpc.Client{ 1865 1865 + Host: host, 1866 1866 + } 1867 1867 + 1868 1868 + repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1869 1869 + 1870 1870 + branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 1871 1871 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1872 1872 + log.Println("failed to call XRPC repo.branches", xrpcerr) 1571 1873 rp.pages.Error503(w) 1572 1874 return 1573 1875 } 1574 1876 1575 1575 - branches, err := us.Branches(f.OwnerDid(), f.RepoName) 1576 1576 - if err != nil { 1877 1877 + var branches types.RepoBranchesResponse 1878 1878 + if err := json.Unmarshal(branchBytes, &branches); err != nil { 1879 1879 + log.Println("failed to decode XRPC branches response", err) 1577 1880 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 1578 1578 - log.Println("failed to reach knotserver", err) 1579 1881 return 1580 1882 } 1581 1883 1582 1582 - tags, err := us.Tags(f.OwnerDid(), f.RepoName) 1583 1583 - if err != nil { 1884 1884 + tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 1885 1885 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1886 1886 + log.Println("failed to call XRPC repo.tags", xrpcerr) 1887 1887 + rp.pages.Error503(w) 1888 1888 + return 1889 1889 + } 1890 1890 + 1891 1891 + var tags types.RepoTagsResponse 1892 1892 + if err := json.Unmarshal(tagBytes, &tags); err != nil { 1893 1893 + log.Println("failed to decode XRPC tags response", err) 1584 1894 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 1585 1585 - log.Println("failed to reach knotserver", err) 1586 1895 return 1587 1896 } 1588 1897 1589 1589 - formatPatch, err := us.Compare(f.OwnerDid(), f.RepoName, base, head) 1590 1590 - if err != nil { 1898 1898 + compareBytes, err := tangled.RepoCompare(r.Context(), xrpcc, repo, base, head) 1899 1899 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1900 1900 + log.Println("failed to call XRPC repo.compare", xrpcerr) 1901 1901 + rp.pages.Error503(w) 1902 1902 + return 1903 1903 + } 1904 1904 + 1905 1905 + var formatPatch types.RepoFormatPatchResponse 1906 1906 + if err := json.Unmarshal(compareBytes, &formatPatch); err != nil { 1907 1907 + log.Println("failed to decode XRPC compare response", err) 1591 1908 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 1592 1592 - log.Println("failed to compare", err) 1593 1909 return 1594 1910 } 1911 1911 + 1595 1912 diff := patchutil.AsNiceDiff(formatPatch.Patch, base) 1596 1913 1597 1914 repoinfo := f.RepoInfo(user)

+5

appview/repo/router.go

··· 10 10 func (rp *Repo) Router(mw *middleware.Middleware) http.Handler { 11 11 r := chi.NewRouter() 12 12 r.Get("/", rp.RepoIndex) 13 13 + r.Get("/feed.atom", rp.RepoAtomFeed) 13 14 r.Get("/commits/{ref}", rp.RepoLog) 14 15 r.Route("/tree/{ref}", func(r chi.Router) { 15 16 r.Get("/", rp.RepoIndex) ··· 37 38 }) 38 39 r.Get("/blob/{ref}/*", rp.RepoBlob) 39 40 r.Get("/raw/{ref}/*", rp.RepoBlobRaw) 41 41 + 42 42 + // intentionally doesn't use /* as this isn't 43 43 + // a file path 44 44 + r.Get("/archive/{ref}", rp.DownloadArchive) 40 45 41 46 r.Route("/fork", func(r chi.Router) { 42 47 r.Use(middleware.AuthMiddleware(rp.oauth))

+37 -104

appview/reporesolver/resolver.go

··· 7 7 "fmt" 8 8 "log" 9 9 "net/http" 10 10 - "net/url" 11 10 "path" 11 11 + "regexp" 12 12 "strings" 13 13 14 14 "github.com/bluesky-social/indigo/atproto/identity" 15 15 - "github.com/bluesky-social/indigo/atproto/syntax" 16 15 securejoin "github.com/cyphar/filepath-securejoin" 17 16 "github.com/go-chi/chi/v5" 18 17 "tangled.sh/tangled.sh/core/appview/config" ··· 21 20 "tangled.sh/tangled.sh/core/appview/pages" 22 21 "tangled.sh/tangled.sh/core/appview/pages/repoinfo" 23 22 "tangled.sh/tangled.sh/core/idresolver" 24 24 - "tangled.sh/tangled.sh/core/knotclient" 25 23 "tangled.sh/tangled.sh/core/rbac" 26 24 ) 27 25 28 26 type ResolvedRepo struct { 29 29 - Knot string 30 30 - OwnerId identity.Identity 31 31 - RepoName string 32 32 - RepoAt syntax.ATURI 33 33 - Description string 34 34 - Spindle string 35 35 - CreatedAt string 36 36 - Ref string 37 37 - CurrentDir string 27 27 + db.Repo 28 28 + OwnerId identity.Identity 29 29 + CurrentDir string 30 30 + Ref string 38 31 39 32 rr *RepoResolver 40 33 } ··· 51 44 } 52 45 53 46 func (rr *RepoResolver) Resolve(r *http.Request) (*ResolvedRepo, error) { 54 54 - repoName := chi.URLParam(r, "repo") 55 55 - knot, ok := r.Context().Value("knot").(string) 47 47 + repo, ok := r.Context().Value("repo").(*db.Repo) 56 48 if !ok { 57 57 - log.Println("malformed middleware") 49 49 + log.Println("malformed middleware: `repo` not exist in context") 58 50 return nil, fmt.Errorf("malformed middleware") 59 51 } 60 52 id, ok := r.Context().Value("resolvedId").(identity.Identity) ··· 63 55 return nil, fmt.Errorf("malformed middleware") 64 56 } 65 57 66 66 - repoAt, ok := r.Context().Value("repoAt").(string) 67 67 - if !ok { 68 68 - log.Println("malformed middleware") 69 69 - return nil, fmt.Errorf("malformed middleware") 70 70 - } 71 71 - 72 72 - parsedRepoAt, err := syntax.ParseATURI(repoAt) 73 73 - if err != nil { 74 74 - log.Println("malformed repo at-uri") 75 75 - return nil, fmt.Errorf("malformed middleware") 76 76 - } 77 77 - 58 58 + currentDir := path.Dir(extractPathAfterRef(r.URL.EscapedPath())) 78 59 ref := chi.URLParam(r, "ref") 79 60 80 80 - if ref == "" { 81 81 - us, err := knotclient.NewUnsignedClient(knot, rr.config.Core.Dev) 82 82 - if err != nil { 83 83 - return nil, err 84 84 - } 85 85 - 86 86 - defaultBranch, err := us.DefaultBranch(id.DID.String(), repoName) 87 87 - if err != nil { 88 88 - return nil, err 89 89 - } 90 90 - 91 91 - ref = defaultBranch.Branch 92 92 - } 93 93 - 94 94 - currentDir := path.Dir(extractPathAfterRef(r.URL.EscapedPath(), ref)) 95 95 - 96 96 - // pass through values from the middleware 97 97 - description, ok := r.Context().Value("repoDescription").(string) 98 98 - addedAt, ok := r.Context().Value("repoAddedAt").(string) 99 99 - spindle, ok := r.Context().Value("repoSpindle").(string) 100 100 - 101 61 return &ResolvedRepo{ 102 102 - Knot: knot, 103 103 - OwnerId: id, 104 104 - RepoName: repoName, 105 105 - RepoAt: parsedRepoAt, 106 106 - Description: description, 107 107 - CreatedAt: addedAt, 108 108 - Ref: ref, 109 109 - CurrentDir: currentDir, 110 110 - Spindle: spindle, 62 62 + Repo: *repo, 63 63 + OwnerId: id, 64 64 + CurrentDir: currentDir, 65 65 + Ref: ref, 111 66 112 67 rr: rr, 113 68 }, nil ··· 126 81 127 82 var p string 128 83 if handle != "" && !handle.IsInvalidHandle() { 129 129 - p, _ = securejoin.SecureJoin(fmt.Sprintf("@%s", handle), f.RepoName) 84 84 + p, _ = securejoin.SecureJoin(fmt.Sprintf("@%s", handle), f.Name) 130 85 } else { 131 131 - p, _ = securejoin.SecureJoin(f.OwnerDid(), f.RepoName) 86 86 + p, _ = securejoin.SecureJoin(f.OwnerDid(), f.Name) 132 87 } 133 88 134 134 - return p 135 135 - } 136 136 - 137 137 - func (f *ResolvedRepo) DidSlashRepo() string { 138 138 - p, _ := securejoin.SecureJoin(f.OwnerDid(), f.RepoName) 139 89 return p 140 90 } 141 91 ··· 187 137 // this function is a bit weird since it now returns RepoInfo from an entirely different 188 138 // package. we should refactor this or get rid of RepoInfo entirely. 189 139 func (f *ResolvedRepo) RepoInfo(user *oauth.User) repoinfo.RepoInfo { 140 140 + repoAt := f.RepoAt() 190 141 isStarred := false 191 142 if user != nil { 192 192 - isStarred = db.GetStarStatus(f.rr.execer, user.Did, syntax.ATURI(f.RepoAt)) 143 143 + isStarred = db.GetStarStatus(f.rr.execer, user.Did, repoAt) 193 144 } 194 145 195 195 - starCount, err := db.GetStarCount(f.rr.execer, f.RepoAt) 146 146 + starCount, err := db.GetStarCount(f.rr.execer, repoAt) 196 147 if err != nil { 197 197 - log.Println("failed to get star count for ", f.RepoAt) 148 148 + log.Println("failed to get star count for ", repoAt) 198 149 } 199 199 - issueCount, err := db.GetIssueCount(f.rr.execer, f.RepoAt) 150 150 + issueCount, err := db.GetIssueCount(f.rr.execer, repoAt) 200 151 if err != nil { 201 201 - log.Println("failed to get issue count for ", f.RepoAt) 152 152 + log.Println("failed to get issue count for ", repoAt) 202 153 } 203 203 - pullCount, err := db.GetPullCount(f.rr.execer, f.RepoAt) 154 154 + pullCount, err := db.GetPullCount(f.rr.execer, repoAt) 204 155 if err != nil { 205 205 - log.Println("failed to get issue count for ", f.RepoAt) 156 156 + log.Println("failed to get issue count for ", repoAt) 206 157 } 207 207 - source, err := db.GetRepoSource(f.rr.execer, f.RepoAt) 158 158 + source, err := db.GetRepoSource(f.rr.execer, repoAt) 208 159 if errors.Is(err, sql.ErrNoRows) { 209 160 source = "" 210 161 } else if err != nil { 211 211 - log.Println("failed to get repo source for ", f.RepoAt, err) 162 162 + log.Println("failed to get repo source for ", repoAt, err) 212 163 } 213 164 214 165 var sourceRepo *db.Repo ··· 228 179 } 229 180 230 181 knot := f.Knot 231 231 - var disableFork bool 232 232 - us, err := knotclient.NewUnsignedClient(knot, f.rr.config.Core.Dev) 233 233 - if err != nil { 234 234 - log.Printf("failed to create unsigned client for %s: %v", knot, err) 235 235 - } else { 236 236 - result, err := us.Branches(f.OwnerDid(), f.RepoName) 237 237 - if err != nil { 238 238 - log.Printf("failed to get branches for %s/%s: %v", f.OwnerDid(), f.RepoName, err) 239 239 - } 240 240 - 241 241 - if len(result.Branches) == 0 { 242 242 - disableFork = true 243 243 - } 244 244 - } 245 182 246 183 repoInfo := repoinfo.RepoInfo{ 247 184 OwnerDid: f.OwnerDid(), 248 185 OwnerHandle: f.OwnerHandle(), 249 249 - Name: f.RepoName, 250 250 - RepoAt: f.RepoAt, 186 186 + Name: f.Name, 187 187 + RepoAt: repoAt, 251 188 Description: f.Description, 252 252 - Ref: f.Ref, 253 189 IsStarred: isStarred, 254 190 Knot: knot, 255 191 Spindle: f.Spindle, ··· 259 195 IssueCount: issueCount, 260 196 PullCount: pullCount, 261 197 }, 262 262 - DisableFork: disableFork, 263 263 - CurrentDir: f.CurrentDir, 198 198 + CurrentDir: f.CurrentDir, 199 199 + Ref: f.Ref, 264 200 } 265 201 266 202 if sourceRepo != nil { ··· 284 220 // after the ref. for example: 285 221 // 286 222 // /@icyphox.sh/foorepo/blob/main/abc/xyz/ => abc/xyz/ 287 287 - func extractPathAfterRef(fullPath, ref string) string { 223 223 + func extractPathAfterRef(fullPath string) string { 288 224 fullPath = strings.TrimPrefix(fullPath, "/") 289 225 290 290 - ref = url.PathEscape(ref) 226 226 + // match blob/, tree/, or raw/ followed by any ref and then a slash 227 227 + // 228 228 + // captures everything after the final slash 229 229 + pattern := `(?:blob|tree|raw)/[^/]+/(.*)$` 291 230 292 292 - prefixes := []string{ 293 293 - fmt.Sprintf("blob/%s/", ref), 294 294 - fmt.Sprintf("tree/%s/", ref), 295 295 - fmt.Sprintf("raw/%s/", ref), 296 296 - } 231 231 + re := regexp.MustCompile(pattern) 232 232 + matches := re.FindStringSubmatch(fullPath) 297 233 298 298 - for _, prefix := range prefixes { 299 299 - idx := strings.Index(fullPath, prefix) 300 300 - if idx != -1 { 301 301 - return fullPath[idx+len(prefix):] 302 302 - } 234 234 + if len(matches) > 1 { 235 235 + return matches[1] 303 236 } 304 237 305 238 return ""

+148

appview/serververify/verify.go

··· 1 1 + package serververify 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "errors" 6 6 + "fmt" 7 7 + 8 8 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 9 9 + "tangled.sh/tangled.sh/core/api/tangled" 10 10 + "tangled.sh/tangled.sh/core/appview/db" 11 11 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 12 12 + "tangled.sh/tangled.sh/core/rbac" 13 13 + ) 14 14 + 15 15 + var ( 16 16 + FetchError = errors.New("failed to fetch owner") 17 17 + ) 18 18 + 19 19 + // fetchOwner fetches the owner DID from a server's /owner endpoint 20 20 + func fetchOwner(ctx context.Context, domain string, dev bool) (string, error) { 21 21 + scheme := "https" 22 22 + if dev { 23 23 + scheme = "http" 24 24 + } 25 25 + 26 26 + host := fmt.Sprintf("%s://%s", scheme, domain) 27 27 + xrpcc := &indigoxrpc.Client{ 28 28 + Host: host, 29 29 + } 30 30 + 31 31 + res, err := tangled.Owner(ctx, xrpcc) 32 32 + if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 33 33 + return "", xrpcerr 34 34 + } 35 35 + 36 36 + return res.Owner, nil 37 37 + } 38 38 + 39 39 + type OwnerMismatch struct { 40 40 + expected string 41 41 + observed string 42 42 + } 43 43 + 44 44 + func (e *OwnerMismatch) Error() string { 45 45 + return fmt.Sprintf("owner mismatch: %q != %q", e.expected, e.observed) 46 46 + } 47 47 + 48 48 + // RunVerification verifies that the server at the given domain has the expected owner 49 49 + func RunVerification(ctx context.Context, domain, expectedOwner string, dev bool) error { 50 50 + observedOwner, err := fetchOwner(ctx, domain, dev) 51 51 + if err != nil { 52 52 + return err 53 53 + } 54 54 + 55 55 + if observedOwner != expectedOwner { 56 56 + return &OwnerMismatch{ 57 57 + expected: expectedOwner, 58 58 + observed: observedOwner, 59 59 + } 60 60 + } 61 61 + 62 62 + return nil 63 63 + } 64 64 + 65 65 + // MarkSpindleVerified marks a spindle as verified in the DB and adds the user as its owner 66 66 + func MarkSpindleVerified(d *db.DB, e *rbac.Enforcer, instance, owner string) (int64, error) { 67 67 + tx, err := d.Begin() 68 68 + if err != nil { 69 69 + return 0, fmt.Errorf("failed to create txn: %w", err) 70 70 + } 71 71 + defer func() { 72 72 + tx.Rollback() 73 73 + e.E.LoadPolicy() 74 74 + }() 75 75 + 76 76 + // mark this spindle as verified in the db 77 77 + rowId, err := db.VerifySpindle( 78 78 + tx, 79 79 + db.FilterEq("owner", owner), 80 80 + db.FilterEq("instance", instance), 81 81 + ) 82 82 + if err != nil { 83 83 + return 0, fmt.Errorf("failed to write to DB: %w", err) 84 84 + } 85 85 + 86 86 + err = e.AddSpindleOwner(instance, owner) 87 87 + if err != nil { 88 88 + return 0, fmt.Errorf("failed to update ACL: %w", err) 89 89 + } 90 90 + 91 91 + err = tx.Commit() 92 92 + if err != nil { 93 93 + return 0, fmt.Errorf("failed to commit txn: %w", err) 94 94 + } 95 95 + 96 96 + err = e.E.SavePolicy() 97 97 + if err != nil { 98 98 + return 0, fmt.Errorf("failed to update ACL: %w", err) 99 99 + } 100 100 + 101 101 + return rowId, nil 102 102 + } 103 103 + 104 104 + // MarkKnotVerified marks a knot as verified and sets up ownership/permissions 105 105 + func MarkKnotVerified(d *db.DB, e *rbac.Enforcer, domain, owner string) error { 106 106 + tx, err := d.BeginTx(context.Background(), nil) 107 107 + if err != nil { 108 108 + return fmt.Errorf("failed to start tx: %w", err) 109 109 + } 110 110 + defer func() { 111 111 + tx.Rollback() 112 112 + e.E.LoadPolicy() 113 113 + }() 114 114 + 115 115 + // mark as registered 116 116 + err = db.MarkRegistered( 117 117 + tx, 118 118 + db.FilterEq("did", owner), 119 119 + db.FilterEq("domain", domain), 120 120 + ) 121 121 + if err != nil { 122 122 + return fmt.Errorf("failed to register domain: %w", err) 123 123 + } 124 124 + 125 125 + // add basic acls for this domain 126 126 + err = e.AddKnot(domain) 127 127 + if err != nil { 128 128 + return fmt.Errorf("failed to add knot to enforcer: %w", err) 129 129 + } 130 130 + 131 131 + // add this did as owner of this domain 132 132 + err = e.AddKnotOwner(domain, owner) 133 133 + if err != nil { 134 134 + return fmt.Errorf("failed to add knot owner to enforcer: %w", err) 135 135 + } 136 136 + 137 137 + err = tx.Commit() 138 138 + if err != nil { 139 139 + return fmt.Errorf("failed to commit changes: %w", err) 140 140 + } 141 141 + 142 142 + err = e.E.SavePolicy() 143 143 + if err != nil { 144 144 + return fmt.Errorf("failed to update ACLs: %w", err) 145 145 + } 146 146 + 147 147 + return nil 148 148 + }

+44 -9

appview/settings/settings.go

··· 33 33 Config *config.Config 34 34 } 35 35 36 36 + type tab = map[string]any 37 37 + 38 38 + var ( 39 39 + settingsTabs []tab = []tab{ 40 40 + {"Name": "profile", "Icon": "user"}, 41 41 + {"Name": "keys", "Icon": "key"}, 42 42 + {"Name": "emails", "Icon": "mail"}, 43 43 + } 44 44 + ) 45 45 + 36 46 func (s *Settings) Router() http.Handler { 37 47 r := chi.NewRouter() 38 48 39 49 r.Use(middleware.AuthMiddleware(s.OAuth)) 40 50 41 41 - r.Get("/", s.settings) 51 51 + // settings pages 52 52 + r.Get("/", s.profileSettings) 53 53 + r.Get("/profile", s.profileSettings) 42 54 43 55 r.Route("/keys", func(r chi.Router) { 56 56 + r.Get("/", s.keysSettings) 44 57 r.Put("/", s.keys) 45 58 r.Delete("/", s.keys) 46 59 }) 47 60 48 61 r.Route("/emails", func(r chi.Router) { 62 62 + r.Get("/", s.emailsSettings) 49 63 r.Put("/", s.emails) 50 64 r.Delete("/", s.emails) 51 65 r.Get("/verify", s.emailsVerify) ··· 56 70 return r 57 71 } 58 72 59 59 - func (s *Settings) settings(w http.ResponseWriter, r *http.Request) { 73 73 + func (s *Settings) profileSettings(w http.ResponseWriter, r *http.Request) { 74 74 + user := s.OAuth.GetUser(r) 75 75 + 76 76 + s.Pages.UserProfileSettings(w, pages.UserProfileSettingsParams{ 77 77 + LoggedInUser: user, 78 78 + Tabs: settingsTabs, 79 79 + Tab: "profile", 80 80 + }) 81 81 + } 82 82 + 83 83 + func (s *Settings) keysSettings(w http.ResponseWriter, r *http.Request) { 60 84 user := s.OAuth.GetUser(r) 61 85 pubKeys, err := db.GetPublicKeysForDid(s.Db, user.Did) 62 86 if err != nil { 63 87 log.Println(err) 64 88 } 65 89 90 90 + s.Pages.UserKeysSettings(w, pages.UserKeysSettingsParams{ 91 91 + LoggedInUser: user, 92 92 + PubKeys: pubKeys, 93 93 + Tabs: settingsTabs, 94 94 + Tab: "keys", 95 95 + }) 96 96 + } 97 97 + 98 98 + func (s *Settings) emailsSettings(w http.ResponseWriter, r *http.Request) { 99 99 + user := s.OAuth.GetUser(r) 66 100 emails, err := db.GetAllEmails(s.Db, user.Did) 67 101 if err != nil { 68 102 log.Println(err) 69 103 } 70 104 71 71 - s.Pages.Settings(w, pages.SettingsParams{ 105 105 + s.Pages.UserEmailsSettings(w, pages.UserEmailsSettingsParams{ 72 106 LoggedInUser: user, 73 73 - PubKeys: pubKeys, 74 107 Emails: emails, 108 108 + Tabs: settingsTabs, 109 109 + Tab: "emails", 75 110 }) 76 111 } 77 112 ··· 201 236 return 202 237 } 203 238 204 204 - s.Pages.HxLocation(w, "/settings") 239 239 + s.Pages.HxLocation(w, "/settings/emails") 205 240 return 206 241 } 207 242 } ··· 244 279 return 245 280 } 246 281 247 247 - http.Redirect(w, r, "/settings", http.StatusSeeOther) 282 282 + http.Redirect(w, r, "/settings/emails", http.StatusSeeOther) 248 283 } 249 284 250 285 func (s *Settings) emailsVerifyResend(w http.ResponseWriter, r *http.Request) { ··· 339 374 return 340 375 } 341 376 342 342 - s.Pages.HxLocation(w, "/settings") 377 377 + s.Pages.HxLocation(w, "/settings/emails") 343 378 } 344 379 345 380 func (s *Settings) keys(w http.ResponseWriter, r *http.Request) { ··· 410 445 return 411 446 } 412 447 413 413 - s.Pages.HxLocation(w, "/settings") 448 448 + s.Pages.HxLocation(w, "/settings/keys") 414 449 return 415 450 416 451 case http.MethodDelete: ··· 455 490 } 456 491 log.Println("deleted successfully") 457 492 458 458 - s.Pages.HxLocation(w, "/settings") 493 493 + s.Pages.HxLocation(w, "/settings/keys") 459 494 return 460 495 } 461 496 }

+104

appview/signup/requests.go

··· 1 1 + package signup 2 2 + 3 3 + // We have this extra code here for now since the xrpcclient package 4 4 + // only supports OAuth'd requests; these are unauthenticated or use PDS admin auth. 5 5 + 6 6 + import ( 7 7 + "bytes" 8 8 + "encoding/json" 9 9 + "fmt" 10 10 + "io" 11 11 + "net/http" 12 12 + "net/url" 13 13 + ) 14 14 + 15 15 + // makePdsRequest is a helper method to make requests to the PDS service 16 16 + func (s *Signup) makePdsRequest(method, endpoint string, body interface{}, useAuth bool) (*http.Response, error) { 17 17 + jsonData, err := json.Marshal(body) 18 18 + if err != nil { 19 19 + return nil, err 20 20 + } 21 21 + 22 22 + url := fmt.Sprintf("%s/xrpc/%s", s.config.Pds.Host, endpoint) 23 23 + req, err := http.NewRequest(method, url, bytes.NewBuffer(jsonData)) 24 24 + if err != nil { 25 25 + return nil, err 26 26 + } 27 27 + 28 28 + req.Header.Set("Content-Type", "application/json") 29 29 + 30 30 + if useAuth { 31 31 + req.SetBasicAuth("admin", s.config.Pds.AdminSecret) 32 32 + } 33 33 + 34 34 + return http.DefaultClient.Do(req) 35 35 + } 36 36 + 37 37 + // handlePdsError processes error responses from the PDS service 38 38 + func (s *Signup) handlePdsError(resp *http.Response, action string) error { 39 39 + var errorResp struct { 40 40 + Error string `json:"error"` 41 41 + Message string `json:"message"` 42 42 + } 43 43 + 44 44 + respBody, _ := io.ReadAll(resp.Body) 45 45 + if err := json.Unmarshal(respBody, &errorResp); err == nil && errorResp.Message != "" { 46 46 + return fmt.Errorf("Failed to %s: %s - %s.", action, errorResp.Error, errorResp.Message) 47 47 + } 48 48 + 49 49 + // Fallback if we couldn't parse the error 50 50 + return fmt.Errorf("failed to %s, status code: %d", action, resp.StatusCode) 51 51 + } 52 52 + 53 53 + func (s *Signup) inviteCodeRequest() (string, error) { 54 54 + body := map[string]any{"useCount": 1} 55 55 + 56 56 + resp, err := s.makePdsRequest("POST", "com.atproto.server.createInviteCode", body, true) 57 57 + if err != nil { 58 58 + return "", err 59 59 + } 60 60 + defer resp.Body.Close() 61 61 + 62 62 + if resp.StatusCode != http.StatusOK { 63 63 + return "", s.handlePdsError(resp, "create invite code") 64 64 + } 65 65 + 66 66 + var result map[string]string 67 67 + json.NewDecoder(resp.Body).Decode(&result) 68 68 + return result["code"], nil 69 69 + } 70 70 + 71 71 + func (s *Signup) createAccountRequest(username, password, email, code string) (string, error) { 72 72 + parsedURL, err := url.Parse(s.config.Pds.Host) 73 73 + if err != nil { 74 74 + return "", fmt.Errorf("invalid PDS host URL: %w", err) 75 75 + } 76 76 + 77 77 + pdsDomain := parsedURL.Hostname() 78 78 + 79 79 + body := map[string]string{ 80 80 + "email": email, 81 81 + "handle": fmt.Sprintf("%s.%s", username, pdsDomain), 82 82 + "password": password, 83 83 + "inviteCode": code, 84 84 + } 85 85 + 86 86 + resp, err := s.makePdsRequest("POST", "com.atproto.server.createAccount", body, false) 87 87 + if err != nil { 88 88 + return "", err 89 89 + } 90 90 + defer resp.Body.Close() 91 91 + 92 92 + if resp.StatusCode != http.StatusOK { 93 93 + return "", s.handlePdsError(resp, "create account") 94 94 + } 95 95 + 96 96 + var result struct { 97 97 + DID string `json:"did"` 98 98 + } 99 99 + if err := json.NewDecoder(resp.Body).Decode(&result); err != nil { 100 100 + return "", fmt.Errorf("failed to decode create account response: %w", err) 101 101 + } 102 102 + 103 103 + return result.DID, nil 104 104 + }

+256

appview/signup/signup.go

··· 1 1 + package signup 2 2 + 3 3 + import ( 4 4 + "bufio" 5 5 + "fmt" 6 6 + "log/slog" 7 7 + "net/http" 8 8 + "os" 9 9 + "strings" 10 10 + 11 11 + "github.com/go-chi/chi/v5" 12 12 + "github.com/posthog/posthog-go" 13 13 + "tangled.sh/tangled.sh/core/appview/config" 14 14 + "tangled.sh/tangled.sh/core/appview/db" 15 15 + "tangled.sh/tangled.sh/core/appview/dns" 16 16 + "tangled.sh/tangled.sh/core/appview/email" 17 17 + "tangled.sh/tangled.sh/core/appview/pages" 18 18 + "tangled.sh/tangled.sh/core/appview/state/userutil" 19 19 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 20 20 + "tangled.sh/tangled.sh/core/idresolver" 21 21 + ) 22 22 + 23 23 + type Signup struct { 24 24 + config *config.Config 25 25 + db *db.DB 26 26 + cf *dns.Cloudflare 27 27 + posthog posthog.Client 28 28 + xrpc *xrpcclient.Client 29 29 + idResolver *idresolver.Resolver 30 30 + pages *pages.Pages 31 31 + l *slog.Logger 32 32 + disallowedNicknames map[string]bool 33 33 + } 34 34 + 35 35 + func New(cfg *config.Config, database *db.DB, pc posthog.Client, idResolver *idresolver.Resolver, pages *pages.Pages, l *slog.Logger) *Signup { 36 36 + var cf *dns.Cloudflare 37 37 + if cfg.Cloudflare.ApiToken != "" && cfg.Cloudflare.ZoneId != "" { 38 38 + var err error 39 39 + cf, err = dns.NewCloudflare(cfg) 40 40 + if err != nil { 41 41 + l.Warn("failed to create cloudflare client, signup will be disabled", "error", err) 42 42 + } 43 43 + } 44 44 + 45 45 + disallowedNicknames := loadDisallowedNicknames(cfg.Core.DisallowedNicknamesFile, l) 46 46 + 47 47 + return &Signup{ 48 48 + config: cfg, 49 49 + db: database, 50 50 + posthog: pc, 51 51 + idResolver: idResolver, 52 52 + cf: cf, 53 53 + pages: pages, 54 54 + l: l, 55 55 + disallowedNicknames: disallowedNicknames, 56 56 + } 57 57 + } 58 58 + 59 59 + func loadDisallowedNicknames(filepath string, logger *slog.Logger) map[string]bool { 60 60 + disallowed := make(map[string]bool) 61 61 + 62 62 + if filepath == "" { 63 63 + logger.Debug("no disallowed nicknames file configured") 64 64 + return disallowed 65 65 + } 66 66 + 67 67 + file, err := os.Open(filepath) 68 68 + if err != nil { 69 69 + logger.Warn("failed to open disallowed nicknames file", "file", filepath, "error", err) 70 70 + return disallowed 71 71 + } 72 72 + defer file.Close() 73 73 + 74 74 + scanner := bufio.NewScanner(file) 75 75 + lineNum := 0 76 76 + for scanner.Scan() { 77 77 + lineNum++ 78 78 + line := strings.TrimSpace(scanner.Text()) 79 79 + if line == "" || strings.HasPrefix(line, "#") { 80 80 + continue // skip empty lines and comments 81 81 + } 82 82 + 83 83 + nickname := strings.ToLower(line) 84 84 + if userutil.IsValidSubdomain(nickname) { 85 85 + disallowed[nickname] = true 86 86 + } else { 87 87 + logger.Warn("invalid nickname format in disallowed nicknames file", 88 88 + "file", filepath, "line", lineNum, "nickname", nickname) 89 89 + } 90 90 + } 91 91 + 92 92 + if err := scanner.Err(); err != nil { 93 93 + logger.Error("error reading disallowed nicknames file", "file", filepath, "error", err) 94 94 + } 95 95 + 96 96 + logger.Info("loaded disallowed nicknames", "count", len(disallowed), "file", filepath) 97 97 + return disallowed 98 98 + } 99 99 + 100 100 + // isNicknameAllowed checks if a nickname is allowed (not in the disallowed list) 101 101 + func (s *Signup) isNicknameAllowed(nickname string) bool { 102 102 + return !s.disallowedNicknames[strings.ToLower(nickname)] 103 103 + } 104 104 + 105 105 + func (s *Signup) Router() http.Handler { 106 106 + r := chi.NewRouter() 107 107 + r.Get("/", s.signup) 108 108 + r.Post("/", s.signup) 109 109 + r.Get("/complete", s.complete) 110 110 + r.Post("/complete", s.complete) 111 111 + 112 112 + return r 113 113 + } 114 114 + 115 115 + func (s *Signup) signup(w http.ResponseWriter, r *http.Request) { 116 116 + switch r.Method { 117 117 + case http.MethodGet: 118 118 + s.pages.Signup(w) 119 119 + case http.MethodPost: 120 120 + if s.cf == nil { 121 121 + http.Error(w, "signup is disabled", http.StatusFailedDependency) 122 122 + } 123 123 + emailId := r.FormValue("email") 124 124 + 125 125 + noticeId := "signup-msg" 126 126 + if !email.IsValidEmail(emailId) { 127 127 + s.pages.Notice(w, noticeId, "Invalid email address.") 128 128 + return 129 129 + } 130 130 + 131 131 + exists, err := db.CheckEmailExistsAtAll(s.db, emailId) 132 132 + if err != nil { 133 133 + s.l.Error("failed to check email existence", "error", err) 134 134 + s.pages.Notice(w, noticeId, "Failed to complete signup. Try again later.") 135 135 + return 136 136 + } 137 137 + if exists { 138 138 + s.pages.Notice(w, noticeId, "Email already exists.") 139 139 + return 140 140 + } 141 141 + 142 142 + code, err := s.inviteCodeRequest() 143 143 + if err != nil { 144 144 + s.l.Error("failed to create invite code", "error", err) 145 145 + s.pages.Notice(w, noticeId, "Failed to create invite code.") 146 146 + return 147 147 + } 148 148 + 149 149 + em := email.Email{ 150 150 + APIKey: s.config.Resend.ApiKey, 151 151 + From: s.config.Resend.SentFrom, 152 152 + To: emailId, 153 153 + Subject: "Verify your Tangled account", 154 154 + Text: `Copy and paste this code below to verify your account on Tangled. 155 155 + ` + code, 156 156 + Html: `<p>Copy and paste this code below to verify your account on Tangled.</p> 157 157 + <p><code>` + code + `</code></p>`, 158 158 + } 159 159 + 160 160 + err = email.SendEmail(em) 161 161 + if err != nil { 162 162 + s.l.Error("failed to send email", "error", err) 163 163 + s.pages.Notice(w, noticeId, "Failed to send email.") 164 164 + return 165 165 + } 166 166 + err = db.AddInflightSignup(s.db, db.InflightSignup{ 167 167 + Email: emailId, 168 168 + InviteCode: code, 169 169 + }) 170 170 + if err != nil { 171 171 + s.l.Error("failed to add inflight signup", "error", err) 172 172 + s.pages.Notice(w, noticeId, "Failed to complete sign up. Try again later.") 173 173 + return 174 174 + } 175 175 + 176 176 + s.pages.HxRedirect(w, "/signup/complete") 177 177 + } 178 178 + } 179 179 + 180 180 + func (s *Signup) complete(w http.ResponseWriter, r *http.Request) { 181 181 + switch r.Method { 182 182 + case http.MethodGet: 183 183 + s.pages.CompleteSignup(w) 184 184 + case http.MethodPost: 185 185 + username := r.FormValue("username") 186 186 + password := r.FormValue("password") 187 187 + code := r.FormValue("code") 188 188 + 189 189 + if !userutil.IsValidSubdomain(username) { 190 190 + s.pages.Notice(w, "signup-error", "Invalid username. Username must be 4–63 characters, lowercase letters, digits, or hyphens, and can't start or end with a hyphen.") 191 191 + return 192 192 + } 193 193 + 194 194 + if !s.isNicknameAllowed(username) { 195 195 + s.pages.Notice(w, "signup-error", "This username is not available. Please choose a different one.") 196 196 + return 197 197 + } 198 198 + 199 199 + email, err := db.GetEmailForCode(s.db, code) 200 200 + if err != nil { 201 201 + s.l.Error("failed to get email for code", "error", err) 202 202 + s.pages.Notice(w, "signup-error", "Failed to complete sign up. Try again later.") 203 203 + return 204 204 + } 205 205 + 206 206 + did, err := s.createAccountRequest(username, password, email, code) 207 207 + if err != nil { 208 208 + s.l.Error("failed to create account", "error", err) 209 209 + s.pages.Notice(w, "signup-error", err.Error()) 210 210 + return 211 211 + } 212 212 + 213 213 + if s.cf == nil { 214 214 + s.l.Error("cloudflare client is nil", "error", "Cloudflare integration is not enabled in configuration") 215 215 + s.pages.Notice(w, "signup-error", "Account signup is currently disabled. DNS record creation is not available. Please contact support.") 216 216 + return 217 217 + } 218 218 + 219 219 + err = s.cf.CreateDNSRecord(r.Context(), dns.Record{ 220 220 + Type: "TXT", 221 221 + Name: "_atproto." + username, 222 222 + Content: fmt.Sprintf(`"did=%s"`, did), 223 223 + TTL: 6400, 224 224 + Proxied: false, 225 225 + }) 226 226 + if err != nil { 227 227 + s.l.Error("failed to create DNS record", "error", err) 228 228 + s.pages.Notice(w, "signup-error", "Failed to create DNS record for your handle. Please contact support.") 229 229 + return 230 230 + } 231 231 + 232 232 + err = db.AddEmail(s.db, db.Email{ 233 233 + Did: did, 234 234 + Address: email, 235 235 + Verified: true, 236 236 + Primary: true, 237 237 + }) 238 238 + if err != nil { 239 239 + s.l.Error("failed to add email", "error", err) 240 240 + s.pages.Notice(w, "signup-error", "Failed to complete sign up. Try again later.") 241 241 + return 242 242 + } 243 243 + 244 244 + s.pages.Notice(w, "signup-msg", fmt.Sprintf(`Account created successfully. You can now 245 245 + <a class="underline text-black dark:text-white" href="/login">login</a> 246 246 + with <code>%s.tngl.sh</code>.`, username)) 247 247 + 248 248 + go func() { 249 249 + err := db.DeleteInflightSignup(s.db, email) 250 250 + if err != nil { 251 251 + s.l.Error("failed to delete inflight signup", "error", err) 252 252 + } 253 253 + }() 254 254 + return 255 255 + } 256 256 + }

+14 -26

appview/spindles/spindles.go

··· 15 15 "tangled.sh/tangled.sh/core/appview/middleware" 16 16 "tangled.sh/tangled.sh/core/appview/oauth" 17 17 "tangled.sh/tangled.sh/core/appview/pages" 18 18 - verify "tangled.sh/tangled.sh/core/appview/spindleverify" 18 18 + "tangled.sh/tangled.sh/core/appview/serververify" 19 19 + "tangled.sh/tangled.sh/core/appview/xrpcclient" 19 20 "tangled.sh/tangled.sh/core/idresolver" 20 21 "tangled.sh/tangled.sh/core/rbac" 21 22 "tangled.sh/tangled.sh/core/tid" ··· 113 114 return 114 115 } 115 116 116 116 - identsToResolve := make([]string, len(members)) 117 117 - copy(identsToResolve, members) 118 118 - resolvedIds := s.IdResolver.ResolveIdents(r.Context(), identsToResolve) 119 119 - didHandleMap := make(map[string]string) 120 120 - for _, identity := range resolvedIds { 121 121 - if !identity.Handle.IsInvalidHandle() { 122 122 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 123 123 - } else { 124 124 - didHandleMap[identity.DID.String()] = identity.DID.String() 125 125 - } 126 126 - } 127 127 - 128 117 // organize repos by did 129 118 repoMap := make(map[string][]db.Repo) 130 119 for _, r := range repos { ··· 136 125 Spindle: spindle, 137 126 Members: members, 138 127 Repos: repoMap, 139 139 - DidHandleMap: didHandleMap, 140 128 }) 141 129 } 142 130 ··· 240 228 } 241 229 242 230 // begin verification 243 243 - err = verify.RunVerification(r.Context(), instance, user.Did, s.Config.Core.Dev) 231 231 + err = serververify.RunVerification(r.Context(), instance, user.Did, s.Config.Core.Dev) 244 232 if err != nil { 245 233 l.Error("verification failed", "err", err) 246 234 s.Pages.HxRefresh(w) 247 235 return 248 236 } 249 237 250 250 - _, err = verify.MarkVerified(s.Db, s.Enforcer, instance, user.Did) 238 238 + _, err = serververify.MarkSpindleVerified(s.Db, s.Enforcer, instance, user.Did) 251 239 if err != nil { 252 240 l.Error("failed to mark verified", "err", err) 253 241 s.Pages.HxRefresh(w) ··· 413 401 } 414 402 415 403 // begin verification 416 416 - err = verify.RunVerification(r.Context(), instance, user.Did, s.Config.Core.Dev) 404 404 + err = serververify.RunVerification(r.Context(), instance, user.Did, s.Config.Core.Dev) 417 405 if err != nil { 418 406 l.Error("verification failed", "err", err) 419 407 420 420 - if errors.Is(err, verify.FetchError) { 421 421 - s.Pages.Notice(w, noticeId, err.Error()) 408 408 + if errors.Is(err, xrpcclient.ErrXrpcUnsupported) { 409 409 + s.Pages.Notice(w, noticeId, "Failed to verify spindle, XRPC queries are unsupported on this spindle, consider upgrading!") 422 410 return 423 411 } 424 412 425 425 - if e, ok := err.(*verify.OwnerMismatch); ok { 413 413 + if e, ok := err.(*serververify.OwnerMismatch); ok { 426 414 s.Pages.Notice(w, noticeId, e.Error()) 427 415 return 428 416 } ··· 431 419 return 432 420 } 433 421 434 434 - rowId, err := verify.MarkVerified(s.Db, s.Enforcer, instance, user.Did) 422 422 + rowId, err := serververify.MarkSpindleVerified(s.Db, s.Enforcer, instance, user.Did) 435 423 if err != nil { 436 424 l.Error("failed to mark verified", "err", err) 437 425 s.Pages.Notice(w, noticeId, err.Error()) ··· 455 443 } 456 444 457 445 w.Header().Set("HX-Reswap", "outerHTML") 458 458 - s.Pages.SpindleListing(w, pages.SpindleListingParams{verifiedSpindle[0]}) 446 446 + s.Pages.SpindleListing(w, pages.SpindleListingParams{Spindle: verifiedSpindle[0]}) 459 447 } 460 448 461 449 func (s *Spindles) addMember(w http.ResponseWriter, r *http.Request) { ··· 619 607 620 608 if string(spindles[0].Owner) != user.Did { 621 609 l.Error("unauthorized", "user", user.Did, "owner", spindles[0].Owner) 622 622 - s.Pages.Notice(w, noticeId, "Failed to add member, unauthorized attempt.") 610 610 + s.Pages.Notice(w, noticeId, "Failed to remove member, unauthorized attempt.") 623 611 return 624 612 } 625 613 626 614 member := r.FormValue("member") 627 615 if member == "" { 628 616 l.Error("empty member") 629 629 - s.Pages.Notice(w, noticeId, "Failed to add member, empty form.") 617 617 + s.Pages.Notice(w, noticeId, "Failed to remove member, empty form.") 630 618 return 631 619 } 632 620 l = l.With("member", member) ··· 634 622 memberId, err := s.IdResolver.ResolveIdent(r.Context(), member) 635 623 if err != nil { 636 624 l.Error("failed to resolve member identity to handle", "err", err) 637 637 - s.Pages.Notice(w, noticeId, "Failed to add member, identity resolution failed.") 625 625 + s.Pages.Notice(w, noticeId, "Failed to remove member, identity resolution failed.") 638 626 return 639 627 } 640 628 if memberId.Handle.IsInvalidHandle() { 641 629 l.Error("failed to resolve member identity to handle") 642 642 - s.Pages.Notice(w, noticeId, "Failed to add member, identity resolution failed.") 630 630 + s.Pages.Notice(w, noticeId, "Failed to remove member, identity resolution failed.") 643 631 return 644 632 } 645 633

-118

appview/spindleverify/verify.go

··· 1 1 - package spindleverify 2 2 - 3 3 - import ( 4 4 - "context" 5 5 - "errors" 6 6 - "fmt" 7 7 - "io" 8 8 - "net/http" 9 9 - "strings" 10 10 - "time" 11 11 - 12 12 - "tangled.sh/tangled.sh/core/appview/db" 13 13 - "tangled.sh/tangled.sh/core/rbac" 14 14 - ) 15 15 - 16 16 - var ( 17 17 - FetchError = errors.New("failed to fetch owner") 18 18 - ) 19 19 - 20 20 - // TODO: move this to "spindleclient" or similar 21 21 - func fetchOwner(ctx context.Context, domain string, dev bool) (string, error) { 22 22 - scheme := "https" 23 23 - if dev { 24 24 - scheme = "http" 25 25 - } 26 26 - 27 27 - url := fmt.Sprintf("%s://%s/owner", scheme, domain) 28 28 - req, err := http.NewRequest("GET", url, nil) 29 29 - if err != nil { 30 30 - return "", err 31 31 - } 32 32 - 33 33 - client := &http.Client{ 34 34 - Timeout: 1 * time.Second, 35 35 - } 36 36 - 37 37 - resp, err := client.Do(req.WithContext(ctx)) 38 38 - if err != nil || resp.StatusCode != 200 { 39 39 - return "", fmt.Errorf("failed to fetch /owner") 40 40 - } 41 41 - 42 42 - body, err := io.ReadAll(io.LimitReader(resp.Body, 1024)) // read atmost 1kb of data 43 43 - if err != nil { 44 44 - return "", fmt.Errorf("failed to read /owner response: %w", err) 45 45 - } 46 46 - 47 47 - did := strings.TrimSpace(string(body)) 48 48 - if did == "" { 49 49 - return "", fmt.Errorf("empty DID in /owner response") 50 50 - } 51 51 - 52 52 - return did, nil 53 53 - } 54 54 - 55 55 - type OwnerMismatch struct { 56 56 - expected string 57 57 - observed string 58 58 - } 59 59 - 60 60 - func (e *OwnerMismatch) Error() string { 61 61 - return fmt.Sprintf("owner mismatch: %q != %q", e.expected, e.observed) 62 62 - } 63 63 - 64 64 - func RunVerification(ctx context.Context, instance, expectedOwner string, dev bool) error { 65 65 - // begin verification 66 66 - observedOwner, err := fetchOwner(ctx, instance, dev) 67 67 - if err != nil { 68 68 - return fmt.Errorf("%w: %w", FetchError, err) 69 69 - } 70 70 - 71 71 - if observedOwner != expectedOwner { 72 72 - return &OwnerMismatch{ 73 73 - expected: expectedOwner, 74 74 - observed: observedOwner, 75 75 - } 76 76 - } 77 77 - 78 78 - return nil 79 79 - } 80 80 - 81 81 - // mark this spindle as verified in the DB and add this user as its owner 82 82 - func MarkVerified(d *db.DB, e *rbac.Enforcer, instance, owner string) (int64, error) { 83 83 - tx, err := d.Begin() 84 84 - if err != nil { 85 85 - return 0, fmt.Errorf("failed to create txn: %w", err) 86 86 - } 87 87 - defer func() { 88 88 - tx.Rollback() 89 89 - e.E.LoadPolicy() 90 90 - }() 91 91 - 92 92 - // mark this spindle as verified in the db 93 93 - rowId, err := db.VerifySpindle( 94 94 - tx, 95 95 - db.FilterEq("owner", owner), 96 96 - db.FilterEq("instance", instance), 97 97 - ) 98 98 - if err != nil { 99 99 - return 0, fmt.Errorf("failed to write to DB: %w", err) 100 100 - } 101 101 - 102 102 - err = e.AddSpindleOwner(instance, owner) 103 103 - if err != nil { 104 104 - return 0, fmt.Errorf("failed to update ACL: %w", err) 105 105 - } 106 106 - 107 107 - err = tx.Commit() 108 108 - if err != nil { 109 109 - return 0, fmt.Errorf("failed to commit txn: %w", err) 110 110 - } 111 111 - 112 112 - err = e.E.SavePolicy() 113 113 - if err != nil { 114 114 - return 0, fmt.Errorf("failed to update ACL: %w", err) 115 115 - } 116 116 - 117 117 - return rowId, nil 118 118 - }

+9 -12

appview/state/git_http.go

··· 3 3 import ( 4 4 "fmt" 5 5 "io" 6 6 + "maps" 6 7 "net/http" 7 8 8 9 "github.com/bluesky-social/indigo/atproto/identity" 9 10 "github.com/go-chi/chi/v5" 11 11 + "tangled.sh/tangled.sh/core/appview/db" 10 12 ) 11 13 12 14 func (s *State) InfoRefs(w http.ResponseWriter, r *http.Request) { 13 15 user := r.Context().Value("resolvedId").(identity.Identity) 14 14 - knot := r.Context().Value("knot").(string) 15 15 - repo := chi.URLParam(r, "repo") 16 16 + repo := r.Context().Value("repo").(*db.Repo) 16 17 17 18 scheme := "https" 18 19 if s.config.Core.Dev { 19 20 scheme = "http" 20 21 } 21 22 22 22 - targetURL := fmt.Sprintf("%s://%s/%s/%s/info/refs?%s", scheme, knot, user.DID, repo, r.URL.RawQuery) 23 23 + targetURL := fmt.Sprintf("%s://%s/%s/%s/info/refs?%s", scheme, repo.Knot, user.DID, repo.Name, r.URL.RawQuery) 23 24 s.proxyRequest(w, r, targetURL) 24 25 25 26 } ··· 30 31 http.Error(w, "failed to resolve user", http.StatusInternalServerError) 31 32 return 32 33 } 33 33 - knot := r.Context().Value("knot").(string) 34 34 - repo := chi.URLParam(r, "repo") 34 34 + repo := r.Context().Value("repo").(*db.Repo) 35 35 36 36 scheme := "https" 37 37 if s.config.Core.Dev { 38 38 scheme = "http" 39 39 } 40 40 41 41 - targetURL := fmt.Sprintf("%s://%s/%s/%s/git-upload-pack?%s", scheme, knot, user.DID, repo, r.URL.RawQuery) 41 41 + targetURL := fmt.Sprintf("%s://%s/%s/%s/git-upload-pack?%s", scheme, repo.Knot, user.DID, repo.Name, r.URL.RawQuery) 42 42 s.proxyRequest(w, r, targetURL) 43 43 } 44 44 ··· 48 48 http.Error(w, "failed to resolve user", http.StatusInternalServerError) 49 49 return 50 50 } 51 51 - knot := r.Context().Value("knot").(string) 52 52 - repo := chi.URLParam(r, "repo") 51 51 + repo := r.Context().Value("repo").(*db.Repo) 53 52 54 53 scheme := "https" 55 54 if s.config.Core.Dev { 56 55 scheme = "http" 57 56 } 58 57 59 59 - targetURL := fmt.Sprintf("%s://%s/%s/%s/git-receive-pack?%s", scheme, knot, user.DID, repo, r.URL.RawQuery) 58 58 + targetURL := fmt.Sprintf("%s://%s/%s/%s/git-receive-pack?%s", scheme, repo.Knot, user.DID, repo.Name, r.URL.RawQuery) 60 59 s.proxyRequest(w, r, targetURL) 61 60 } 62 61 ··· 85 84 defer resp.Body.Close() 86 85 87 86 // Copy response headers 88 88 - for k, v := range resp.Header { 89 89 - w.Header()[k] = v 90 90 - } 87 87 + maps.Copy(w.Header(), resp.Header) 91 88 92 89 // Set response status code 93 90 w.WriteHeader(resp.StatusCode)

+5 -2

appview/state/knotstream.go

··· 24 24 ) 25 25 26 26 func Knotstream(ctx context.Context, c *config.Config, d *db.DB, enforcer *rbac.Enforcer, posthog posthog.Client) (*ec.Consumer, error) { 27 27 - knots, err := db.GetCompletedRegistrations(d) 27 27 + knots, err := db.GetRegistrations( 28 28 + d, 29 29 + db.FilterIsNot("registered", "null"), 30 30 + ) 28 31 if err != nil { 29 32 return nil, err 30 33 } 31 34 32 35 srcs := make(map[ec.Source]struct{}) 33 36 for _, k := range knots { 34 34 - s := ec.NewKnotSource(k) 37 37 + s := ec.NewKnotSource(k.Domain) 35 38 srcs[s] = struct{}{} 36 39 } 37 40

+418 -126

appview/state/profile.go

··· 1 1 package state 2 2 3 3 import ( 4 4 - "crypto/hmac" 5 5 - "crypto/sha256" 6 6 - "encoding/hex" 4 4 + "context" 7 5 "fmt" 8 6 "log" 9 7 "net/http" ··· 16 14 "github.com/bluesky-social/indigo/atproto/syntax" 17 15 lexutil "github.com/bluesky-social/indigo/lex/util" 18 16 "github.com/go-chi/chi/v5" 17 17 + "github.com/gorilla/feeds" 19 18 "tangled.sh/tangled.sh/core/api/tangled" 20 19 "tangled.sh/tangled.sh/core/appview/db" 21 20 "tangled.sh/tangled.sh/core/appview/pages" ··· 24 23 func (s *State) Profile(w http.ResponseWriter, r *http.Request) { 25 24 tabVal := r.URL.Query().Get("tab") 26 25 switch tabVal { 27 27 - case "": 28 28 - s.profilePage(w, r) 29 26 case "repos": 30 27 s.reposPage(w, r) 28 28 + case "followers": 29 29 + s.followersPage(w, r) 30 30 + case "following": 31 31 + s.followingPage(w, r) 32 32 + case "starred": 33 33 + s.starredPage(w, r) 34 34 + case "strings": 35 35 + s.stringsPage(w, r) 36 36 + default: 37 37 + s.profileOverview(w, r) 31 38 } 32 39 } 33 40 34 34 - func (s *State) profilePage(w http.ResponseWriter, r *http.Request) { 41 41 + func (s *State) profile(r *http.Request) (*pages.ProfileCard, error) { 35 42 didOrHandle := chi.URLParam(r, "user") 36 43 if didOrHandle == "" { 37 37 - http.Error(w, "Bad request", http.StatusBadRequest) 38 38 - return 44 44 + return nil, fmt.Errorf("empty DID or handle") 39 45 } 40 46 41 47 ident, ok := r.Context().Value("resolvedId").(identity.Identity) 42 48 if !ok { 43 43 - s.pages.Error404(w) 44 44 - return 49 49 + return nil, fmt.Errorf("failed to resolve ID") 50 50 + } 51 51 + did := ident.DID.String() 52 52 + 53 53 + profile, err := db.GetProfile(s.db, did) 54 54 + if err != nil { 55 55 + return nil, fmt.Errorf("failed to get profile: %w", err) 45 56 } 46 57 47 47 - profile, err := db.GetProfile(s.db, ident.DID.String()) 58 58 + repoCount, err := db.CountRepos(s.db, db.FilterEq("did", did)) 48 59 if err != nil { 49 49 - log.Printf("getting profile data for %s: %s", ident.DID.String(), err) 60 60 + return nil, fmt.Errorf("failed to get repo count: %w", err) 61 61 + } 62 62 + 63 63 + stringCount, err := db.CountStrings(s.db, db.FilterEq("did", did)) 64 64 + if err != nil { 65 65 + return nil, fmt.Errorf("failed to get string count: %w", err) 66 66 + } 67 67 + 68 68 + starredCount, err := db.CountStars(s.db, db.FilterEq("starred_by_did", did)) 69 69 + if err != nil { 70 70 + return nil, fmt.Errorf("failed to get starred repo count: %w", err) 71 71 + } 72 72 + 73 73 + followStats, err := db.GetFollowerFollowingCount(s.db, did) 74 74 + if err != nil { 75 75 + return nil, fmt.Errorf("failed to get follower stats: %w", err) 76 76 + } 77 77 + 78 78 + loggedInUser := s.oauth.GetUser(r) 79 79 + followStatus := db.IsNotFollowing 80 80 + if loggedInUser != nil { 81 81 + followStatus = db.GetFollowStatus(s.db, loggedInUser.Did, did) 82 82 + } 83 83 + 84 84 + now := time.Now() 85 85 + startOfYear := time.Date(now.Year(), 1, 1, 0, 0, 0, 0, time.UTC) 86 86 + punchcard, err := db.MakePunchcard( 87 87 + s.db, 88 88 + db.FilterEq("did", did), 89 89 + db.FilterGte("date", startOfYear.Format(time.DateOnly)), 90 90 + db.FilterLte("date", now.Format(time.DateOnly)), 91 91 + ) 92 92 + if err != nil { 93 93 + return nil, fmt.Errorf("failed to get punchcard for %s: %w", did, err) 50 94 } 51 95 96 96 + return &pages.ProfileCard{ 97 97 + UserDid: did, 98 98 + UserHandle: ident.Handle.String(), 99 99 + Profile: profile, 100 100 + FollowStatus: followStatus, 101 101 + Stats: pages.ProfileStats{ 102 102 + RepoCount: repoCount, 103 103 + StringCount: stringCount, 104 104 + StarredCount: starredCount, 105 105 + FollowersCount: followStats.Followers, 106 106 + FollowingCount: followStats.Following, 107 107 + }, 108 108 + Punchcard: punchcard, 109 109 + }, nil 110 110 + } 111 111 + 112 112 + func (s *State) profileOverview(w http.ResponseWriter, r *http.Request) { 113 113 + l := s.logger.With("handler", "profileHomePage") 114 114 + 115 115 + profile, err := s.profile(r) 116 116 + if err != nil { 117 117 + l.Error("failed to build profile card", "err", err) 118 118 + s.pages.Error500(w) 119 119 + return 120 120 + } 121 121 + l = l.With("profileDid", profile.UserDid, "profileHandle", profile.UserHandle) 122 122 + 52 123 repos, err := db.GetRepos( 53 124 s.db, 54 125 0, 55 55 - db.FilterEq("did", ident.DID.String()), 126 126 + db.FilterEq("did", profile.UserDid), 56 127 ) 57 128 if err != nil { 58 58 - log.Printf("getting repos for %s: %s", ident.DID.String(), err) 129 129 + l.Error("failed to fetch repos", "err", err) 59 130 } 60 131 61 132 // filter out ones that are pinned 62 133 pinnedRepos := []db.Repo{} 63 134 for i, r := range repos { 64 135 // if this is a pinned repo, add it 65 65 - if slices.Contains(profile.PinnedRepos[:], r.RepoAt()) { 136 136 + if slices.Contains(profile.Profile.PinnedRepos[:], r.RepoAt()) { 66 137 pinnedRepos = append(pinnedRepos, r) 67 138 } 68 139 69 140 // if there are no saved pins, add the first 4 repos 70 70 - if profile.IsPinnedReposEmpty() && i < 4 { 141 141 + if profile.Profile.IsPinnedReposEmpty() && i < 4 { 71 142 pinnedRepos = append(pinnedRepos, r) 72 143 } 73 144 } 74 145 75 75 - collaboratingRepos, err := db.CollaboratingIn(s.db, ident.DID.String()) 146 146 + collaboratingRepos, err := db.CollaboratingIn(s.db, profile.UserDid) 76 147 if err != nil { 77 77 - log.Printf("getting collaborating repos for %s: %s", ident.DID.String(), err) 148 148 + l.Error("failed to fetch collaborating repos", "err", err) 78 149 } 79 150 80 151 pinnedCollaboratingRepos := []db.Repo{} 81 152 for _, r := range collaboratingRepos { 82 153 // if this is a pinned repo, add it 83 83 - if slices.Contains(profile.PinnedRepos[:], r.RepoAt()) { 154 154 + if slices.Contains(profile.Profile.PinnedRepos[:], r.RepoAt()) { 84 155 pinnedCollaboratingRepos = append(pinnedCollaboratingRepos, r) 85 156 } 86 157 } 87 158 88 88 - timeline, err := db.MakeProfileTimeline(s.db, ident.DID.String()) 159 159 + timeline, err := db.MakeProfileTimeline(s.db, profile.UserDid) 89 160 if err != nil { 90 90 - log.Printf("failed to create profile timeline for %s: %s", ident.DID.String(), err) 161 161 + l.Error("failed to create timeline", "err", err) 91 162 } 92 163 93 93 - var didsToResolve []string 94 94 - for _, r := range collaboratingRepos { 95 95 - didsToResolve = append(didsToResolve, r.Did) 164 164 + s.pages.ProfileOverview(w, pages.ProfileOverviewParams{ 165 165 + LoggedInUser: s.oauth.GetUser(r), 166 166 + Card: profile, 167 167 + Repos: pinnedRepos, 168 168 + CollaboratingRepos: pinnedCollaboratingRepos, 169 169 + ProfileTimeline: timeline, 170 170 + }) 171 171 + } 172 172 + 173 173 + func (s *State) reposPage(w http.ResponseWriter, r *http.Request) { 174 174 + l := s.logger.With("handler", "reposPage") 175 175 + 176 176 + profile, err := s.profile(r) 177 177 + if err != nil { 178 178 + l.Error("failed to build profile card", "err", err) 179 179 + s.pages.Error500(w) 180 180 + return 96 181 } 97 97 - for _, byMonth := range timeline.ByMonth { 98 98 - for _, pe := range byMonth.PullEvents.Items { 99 99 - didsToResolve = append(didsToResolve, pe.Repo.Did) 100 100 - } 101 101 - for _, ie := range byMonth.IssueEvents.Items { 102 102 - didsToResolve = append(didsToResolve, ie.Metadata.Repo.Did) 182 182 + l = l.With("profileDid", profile.UserDid, "profileHandle", profile.UserHandle) 183 183 + 184 184 + repos, err := db.GetRepos( 185 185 + s.db, 186 186 + 0, 187 187 + db.FilterEq("did", profile.UserDid), 188 188 + ) 189 189 + if err != nil { 190 190 + l.Error("failed to get repos", "err", err) 191 191 + s.pages.Error500(w) 192 192 + return 193 193 + } 194 194 + 195 195 + err = s.pages.ProfileRepos(w, pages.ProfileReposParams{ 196 196 + LoggedInUser: s.oauth.GetUser(r), 197 197 + Repos: repos, 198 198 + Card: profile, 199 199 + }) 200 200 + } 201 201 + 202 202 + func (s *State) starredPage(w http.ResponseWriter, r *http.Request) { 203 203 + l := s.logger.With("handler", "starredPage") 204 204 + 205 205 + profile, err := s.profile(r) 206 206 + if err != nil { 207 207 + l.Error("failed to build profile card", "err", err) 208 208 + s.pages.Error500(w) 209 209 + return 210 210 + } 211 211 + l = l.With("profileDid", profile.UserDid, "profileHandle", profile.UserHandle) 212 212 + 213 213 + stars, err := db.GetStars(s.db, 0, db.FilterEq("starred_by_did", profile.UserDid)) 214 214 + if err != nil { 215 215 + l.Error("failed to get stars", "err", err) 216 216 + s.pages.Error500(w) 217 217 + return 218 218 + } 219 219 + var repoAts []string 220 220 + for _, s := range stars { 221 221 + repoAts = append(repoAts, string(s.RepoAt)) 222 222 + } 223 223 + 224 224 + repos, err := db.GetRepos( 225 225 + s.db, 226 226 + 0, 227 227 + db.FilterIn("at_uri", repoAts), 228 228 + ) 229 229 + if err != nil { 230 230 + l.Error("failed to get repos", "err", err) 231 231 + s.pages.Error500(w) 232 232 + return 233 233 + } 234 234 + 235 235 + err = s.pages.ProfileStarred(w, pages.ProfileStarredParams{ 236 236 + LoggedInUser: s.oauth.GetUser(r), 237 237 + Repos: repos, 238 238 + Card: profile, 239 239 + }) 240 240 + } 241 241 + 242 242 + func (s *State) stringsPage(w http.ResponseWriter, r *http.Request) { 243 243 + l := s.logger.With("handler", "stringsPage") 244 244 + 245 245 + profile, err := s.profile(r) 246 246 + if err != nil { 247 247 + l.Error("failed to build profile card", "err", err) 248 248 + s.pages.Error500(w) 249 249 + return 250 250 + } 251 251 + l = l.With("profileDid", profile.UserDid, "profileHandle", profile.UserHandle) 252 252 + 253 253 + strings, err := db.GetStrings(s.db, 0, db.FilterEq("did", profile.UserDid)) 254 254 + if err != nil { 255 255 + l.Error("failed to get strings", "err", err) 256 256 + s.pages.Error500(w) 257 257 + return 258 258 + } 259 259 + 260 260 + err = s.pages.ProfileStrings(w, pages.ProfileStringsParams{ 261 261 + LoggedInUser: s.oauth.GetUser(r), 262 262 + Strings: strings, 263 263 + Card: profile, 264 264 + }) 265 265 + } 266 266 + 267 267 + type FollowsPageParams struct { 268 268 + Follows []pages.FollowCard 269 269 + Card *pages.ProfileCard 270 270 + } 271 271 + 272 272 + func (s *State) followPage( 273 273 + r *http.Request, 274 274 + fetchFollows func(db.Execer, string) ([]db.Follow, error), 275 275 + extractDid func(db.Follow) string, 276 276 + ) (*FollowsPageParams, error) { 277 277 + l := s.logger.With("handler", "reposPage") 278 278 + 279 279 + profile, err := s.profile(r) 280 280 + if err != nil { 281 281 + return nil, err 282 282 + } 283 283 + l = l.With("profileDid", profile.UserDid, "profileHandle", profile.UserHandle) 284 284 + 285 285 + loggedInUser := s.oauth.GetUser(r) 286 286 + params := FollowsPageParams{ 287 287 + Card: profile, 288 288 + } 289 289 + 290 290 + follows, err := fetchFollows(s.db, profile.UserDid) 291 291 + if err != nil { 292 292 + l.Error("failed to fetch follows", "err", err) 293 293 + return &params, err 294 294 + } 295 295 + 296 296 + if len(follows) == 0 { 297 297 + return &params, nil 298 298 + } 299 299 + 300 300 + followDids := make([]string, 0, len(follows)) 301 301 + for _, follow := range follows { 302 302 + followDids = append(followDids, extractDid(follow)) 303 303 + } 304 304 + 305 305 + profiles, err := db.GetProfiles(s.db, db.FilterIn("did", followDids)) 306 306 + if err != nil { 307 307 + l.Error("failed to get profiles", "followDids", followDids, "err", err) 308 308 + return &params, err 309 309 + } 310 310 + 311 311 + followStatsMap, err := db.GetFollowerFollowingCounts(s.db, followDids) 312 312 + if err != nil { 313 313 + log.Printf("getting follow counts for %s: %s", followDids, err) 314 314 + } 315 315 + 316 316 + loggedInUserFollowing := make(map[string]struct{}) 317 317 + if loggedInUser != nil { 318 318 + following, err := db.GetFollowing(s.db, loggedInUser.Did) 319 319 + if err != nil { 320 320 + l.Error("failed to get follow list", "err", err, "loggedInUser", loggedInUser.Did) 321 321 + return &params, err 103 322 } 104 104 - for _, re := range byMonth.RepoEvents { 105 105 - didsToResolve = append(didsToResolve, re.Repo.Did) 106 106 - if re.Source != nil { 107 107 - didsToResolve = append(didsToResolve, re.Source.Did) 108 108 - } 323 323 + loggedInUserFollowing = make(map[string]struct{}, len(following)) 324 324 + for _, follow := range following { 325 325 + loggedInUserFollowing[follow.SubjectDid] = struct{}{} 109 326 } 110 327 } 111 328 112 112 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), didsToResolve) 113 113 - didHandleMap := make(map[string]string) 114 114 - for _, identity := range resolvedIds { 115 115 - if !identity.Handle.IsInvalidHandle() { 116 116 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 329 329 + followCards := make([]pages.FollowCard, len(follows)) 330 330 + for i, did := range followDids { 331 331 + followStats := followStatsMap[did] 332 332 + followStatus := db.IsNotFollowing 333 333 + if _, exists := loggedInUserFollowing[did]; exists { 334 334 + followStatus = db.IsFollowing 335 335 + } else if loggedInUser != nil && loggedInUser.Did == did { 336 336 + followStatus = db.IsSelf 337 337 + } 338 338 + 339 339 + var profile *db.Profile 340 340 + if p, exists := profiles[did]; exists { 341 341 + profile = p 117 342 } else { 118 118 - didHandleMap[identity.DID.String()] = identity.DID.String() 343 343 + profile = &db.Profile{} 344 344 + profile.Did = did 345 345 + } 346 346 + followCards[i] = pages.FollowCard{ 347 347 + UserDid: did, 348 348 + FollowStatus: followStatus, 349 349 + FollowersCount: followStats.Followers, 350 350 + FollowingCount: followStats.Following, 351 351 + Profile: profile, 119 352 } 120 353 } 121 354 122 122 - followers, following, err := db.GetFollowerFollowing(s.db, ident.DID.String()) 355 355 + params.Follows = followCards 356 356 + 357 357 + return &params, nil 358 358 + } 359 359 + 360 360 + func (s *State) followersPage(w http.ResponseWriter, r *http.Request) { 361 361 + followPage, err := s.followPage(r, db.GetFollowers, func(f db.Follow) string { return f.UserDid }) 123 362 if err != nil { 124 124 - log.Printf("getting follow stats repos for %s: %s", ident.DID.String(), err) 363 363 + s.pages.Notice(w, "all-followers", "Failed to load followers") 364 364 + return 125 365 } 126 366 127 127 - loggedInUser := s.oauth.GetUser(r) 128 128 - followStatus := db.IsNotFollowing 129 129 - if loggedInUser != nil { 130 130 - followStatus = db.GetFollowStatus(s.db, loggedInUser.Did, ident.DID.String()) 131 131 - } 367 367 + s.pages.ProfileFollowers(w, pages.ProfileFollowersParams{ 368 368 + LoggedInUser: s.oauth.GetUser(r), 369 369 + Followers: followPage.Follows, 370 370 + Card: followPage.Card, 371 371 + }) 372 372 + } 132 373 133 133 - now := time.Now() 134 134 - startOfYear := time.Date(now.Year(), 1, 1, 0, 0, 0, 0, time.UTC) 135 135 - punchcard, err := db.MakePunchcard( 136 136 - s.db, 137 137 - db.FilterEq("did", ident.DID.String()), 138 138 - db.FilterGte("date", startOfYear.Format(time.DateOnly)), 139 139 - db.FilterLte("date", now.Format(time.DateOnly)), 140 140 - ) 374 374 + func (s *State) followingPage(w http.ResponseWriter, r *http.Request) { 375 375 + followPage, err := s.followPage(r, db.GetFollowing, func(f db.Follow) string { return f.SubjectDid }) 141 376 if err != nil { 142 142 - log.Println("failed to get punchcard for did", "did", ident.DID.String(), "err", err) 377 377 + s.pages.Notice(w, "all-following", "Failed to load following") 378 378 + return 143 379 } 144 380 145 145 - profileAvatarUri := s.GetAvatarUri(ident.Handle.String()) 146 146 - s.pages.ProfilePage(w, pages.ProfilePageParams{ 147 147 - LoggedInUser: loggedInUser, 148 148 - Repos: pinnedRepos, 149 149 - CollaboratingRepos: pinnedCollaboratingRepos, 150 150 - DidHandleMap: didHandleMap, 151 151 - Card: pages.ProfileCard{ 152 152 - UserDid: ident.DID.String(), 153 153 - UserHandle: ident.Handle.String(), 154 154 - AvatarUri: profileAvatarUri, 155 155 - Profile: profile, 156 156 - FollowStatus: followStatus, 157 157 - Followers: followers, 158 158 - Following: following, 159 159 - }, 160 160 - Punchcard: punchcard, 161 161 - ProfileTimeline: timeline, 381 381 + s.pages.ProfileFollowing(w, pages.ProfileFollowingParams{ 382 382 + LoggedInUser: s.oauth.GetUser(r), 383 383 + Following: followPage.Follows, 384 384 + Card: followPage.Card, 162 385 }) 163 386 } 164 387 165 165 - func (s *State) reposPage(w http.ResponseWriter, r *http.Request) { 388 388 + func (s *State) AtomFeedPage(w http.ResponseWriter, r *http.Request) { 166 389 ident, ok := r.Context().Value("resolvedId").(identity.Identity) 167 390 if !ok { 168 391 s.pages.Error404(w) 169 392 return 170 393 } 171 394 172 172 - profile, err := db.GetProfile(s.db, ident.DID.String()) 395 395 + feed, err := s.getProfileFeed(r.Context(), &ident) 173 396 if err != nil { 174 174 - log.Printf("getting profile data for %s: %s", ident.DID.String(), err) 397 397 + s.pages.Error500(w) 398 398 + return 175 399 } 176 400 177 177 - repos, err := db.GetRepos( 178 178 - s.db, 179 179 - 0, 180 180 - db.FilterEq("did", ident.DID.String()), 181 181 - ) 182 182 - if err != nil { 183 183 - log.Printf("getting repos for %s: %s", ident.DID.String(), err) 401 401 + if feed == nil { 402 402 + return 184 403 } 185 404 186 186 - loggedInUser := s.oauth.GetUser(r) 187 187 - followStatus := db.IsNotFollowing 188 188 - if loggedInUser != nil { 189 189 - followStatus = db.GetFollowStatus(s.db, loggedInUser.Did, ident.DID.String()) 405 405 + atom, err := feed.ToAtom() 406 406 + if err != nil { 407 407 + s.pages.Error500(w) 408 408 + return 190 409 } 191 410 192 192 - followers, following, err := db.GetFollowerFollowing(s.db, ident.DID.String()) 411 411 + w.Header().Set("content-type", "application/atom+xml") 412 412 + w.Write([]byte(atom)) 413 413 + } 414 414 + 415 415 + func (s *State) getProfileFeed(ctx context.Context, id *identity.Identity) (*feeds.Feed, error) { 416 416 + timeline, err := db.MakeProfileTimeline(s.db, id.DID.String()) 193 417 if err != nil { 194 194 - log.Printf("getting follow stats repos for %s: %s", ident.DID.String(), err) 418 418 + return nil, err 195 419 } 196 420 197 197 - profileAvatarUri := s.GetAvatarUri(ident.Handle.String()) 421 421 + author := &feeds.Author{ 422 422 + Name: fmt.Sprintf("@%s", id.Handle), 423 423 + } 198 424 199 199 - s.pages.ReposPage(w, pages.ReposPageParams{ 200 200 - LoggedInUser: loggedInUser, 201 201 - Repos: repos, 202 202 - DidHandleMap: map[string]string{ident.DID.String(): ident.Handle.String()}, 203 203 - Card: pages.ProfileCard{ 204 204 - UserDid: ident.DID.String(), 205 205 - UserHandle: ident.Handle.String(), 206 206 - AvatarUri: profileAvatarUri, 207 207 - Profile: profile, 208 208 - FollowStatus: followStatus, 209 209 - Followers: followers, 210 210 - Following: following, 211 211 - }, 425 425 + feed := feeds.Feed{ 426 426 + Title: fmt.Sprintf("%s's timeline", author.Name), 427 427 + Link: &feeds.Link{Href: fmt.Sprintf("%s/@%s", s.config.Core.AppviewHost, id.Handle), Type: "text/html", Rel: "alternate"}, 428 428 + Items: make([]*feeds.Item, 0), 429 429 + Updated: time.UnixMilli(0), 430 430 + Author: author, 431 431 + } 432 432 + 433 433 + for _, byMonth := range timeline.ByMonth { 434 434 + if err := s.addPullRequestItems(ctx, &feed, byMonth.PullEvents.Items, author); err != nil { 435 435 + return nil, err 436 436 + } 437 437 + if err := s.addIssueItems(ctx, &feed, byMonth.IssueEvents.Items, author); err != nil { 438 438 + return nil, err 439 439 + } 440 440 + if err := s.addRepoItems(ctx, &feed, byMonth.RepoEvents, author); err != nil { 441 441 + return nil, err 442 442 + } 443 443 + } 444 444 + 445 445 + slices.SortFunc(feed.Items, func(a *feeds.Item, b *feeds.Item) int { 446 446 + return int(b.Created.UnixMilli()) - int(a.Created.UnixMilli()) 212 447 }) 448 448 + 449 449 + if len(feed.Items) > 0 { 450 450 + feed.Updated = feed.Items[0].Created 451 451 + } 452 452 + 453 453 + return &feed, nil 213 454 } 214 455 215 215 - func (s *State) GetAvatarUri(handle string) string { 216 216 - secret := s.config.Avatar.SharedSecret 217 217 - h := hmac.New(sha256.New, []byte(secret)) 218 218 - h.Write([]byte(handle)) 219 219 - signature := hex.EncodeToString(h.Sum(nil)) 220 220 - return fmt.Sprintf("%s/%s/%s", s.config.Avatar.Host, signature, handle) 456 456 + func (s *State) addPullRequestItems(ctx context.Context, feed *feeds.Feed, pulls []*db.Pull, author *feeds.Author) error { 457 457 + for _, pull := range pulls { 458 458 + owner, err := s.idResolver.ResolveIdent(ctx, pull.Repo.Did) 459 459 + if err != nil { 460 460 + return err 461 461 + } 462 462 + 463 463 + // Add pull request creation item 464 464 + feed.Items = append(feed.Items, s.createPullRequestItem(pull, owner, author)) 465 465 + } 466 466 + return nil 467 467 + } 468 468 + 469 469 + func (s *State) addIssueItems(ctx context.Context, feed *feeds.Feed, issues []*db.Issue, author *feeds.Author) error { 470 470 + for _, issue := range issues { 471 471 + owner, err := s.idResolver.ResolveIdent(ctx, issue.Repo.Did) 472 472 + if err != nil { 473 473 + return err 474 474 + } 475 475 + 476 476 + feed.Items = append(feed.Items, s.createIssueItem(issue, owner, author)) 477 477 + } 478 478 + return nil 479 479 + } 480 480 + 481 481 + func (s *State) addRepoItems(ctx context.Context, feed *feeds.Feed, repos []db.RepoEvent, author *feeds.Author) error { 482 482 + for _, repo := range repos { 483 483 + item, err := s.createRepoItem(ctx, repo, author) 484 484 + if err != nil { 485 485 + return err 486 486 + } 487 487 + feed.Items = append(feed.Items, item) 488 488 + } 489 489 + return nil 490 490 + } 491 491 + 492 492 + func (s *State) createPullRequestItem(pull *db.Pull, owner *identity.Identity, author *feeds.Author) *feeds.Item { 493 493 + return &feeds.Item{ 494 494 + Title: fmt.Sprintf("%s created pull request '%s' in @%s/%s", author.Name, pull.Title, owner.Handle, pull.Repo.Name), 495 495 + Link: &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s/pulls/%d", s.config.Core.AppviewHost, owner.Handle, pull.Repo.Name, pull.PullId), Type: "text/html", Rel: "alternate"}, 496 496 + Created: pull.Created, 497 497 + Author: author, 498 498 + } 499 499 + } 500 500 + 501 501 + func (s *State) createIssueItem(issue *db.Issue, owner *identity.Identity, author *feeds.Author) *feeds.Item { 502 502 + return &feeds.Item{ 503 503 + Title: fmt.Sprintf("%s created issue '%s' in @%s/%s", author.Name, issue.Title, owner.Handle, issue.Repo.Name), 504 504 + Link: &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s/issues/%d", s.config.Core.AppviewHost, owner.Handle, issue.Repo.Name, issue.IssueId), Type: "text/html", Rel: "alternate"}, 505 505 + Created: issue.Created, 506 506 + Author: author, 507 507 + } 508 508 + } 509 509 + 510 510 + func (s *State) createRepoItem(ctx context.Context, repo db.RepoEvent, author *feeds.Author) (*feeds.Item, error) { 511 511 + var title string 512 512 + if repo.Source != nil { 513 513 + sourceOwner, err := s.idResolver.ResolveIdent(ctx, repo.Source.Did) 514 514 + if err != nil { 515 515 + return nil, err 516 516 + } 517 517 + title = fmt.Sprintf("%s forked repository @%s/%s to '%s'", author.Name, sourceOwner.Handle, repo.Source.Name, repo.Repo.Name) 518 518 + } else { 519 519 + title = fmt.Sprintf("%s created repository '%s'", author.Name, repo.Repo.Name) 520 520 + } 521 521 + 522 522 + return &feeds.Item{ 523 523 + Title: title, 524 524 + Link: &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s", s.config.Core.AppviewHost, author.Name[1:], repo.Repo.Name), Type: "text/html", Rel: "alternate"}, // Remove @ prefix 525 525 + Created: repo.Repo.Created, 526 526 + Author: author, 527 527 + }, nil 221 528 } 222 529 223 530 func (s *State) UpdateProfileBio(w http.ResponseWriter, r *http.Request) { ··· 395 702 log.Printf("getting profile data for %s: %s", user.Did, err) 396 703 } 397 704 398 398 - repos, err := db.GetAllReposByDid(s.db, user.Did) 705 705 + repos, err := db.GetRepos(s.db, 0, db.FilterEq("did", user.Did)) 399 706 if err != nil { 400 707 log.Printf("getting repos for %s: %s", user.Did, err) 401 708 } ··· 422 729 }) 423 730 } 424 731 425 425 - var didsToResolve []string 426 426 - for _, r := range allRepos { 427 427 - didsToResolve = append(didsToResolve, r.Did) 428 428 - } 429 429 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), didsToResolve) 430 430 - didHandleMap := make(map[string]string) 431 431 - for _, identity := range resolvedIds { 432 432 - if !identity.Handle.IsInvalidHandle() { 433 433 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 434 434 - } else { 435 435 - didHandleMap[identity.DID.String()] = identity.DID.String() 436 436 - } 437 437 - } 438 438 - 439 732 s.pages.EditPinsFragment(w, pages.EditPinsParams{ 440 733 LoggedInUser: user, 441 734 Profile: profile, 442 735 AllRepos: allRepos, 443 443 - DidHandleMap: didHandleMap, 444 736 }) 445 737 }

+52 -11

appview/state/router.go

··· 14 14 "tangled.sh/tangled.sh/core/appview/pulls" 15 15 "tangled.sh/tangled.sh/core/appview/repo" 16 16 "tangled.sh/tangled.sh/core/appview/settings" 17 17 + "tangled.sh/tangled.sh/core/appview/signup" 17 18 "tangled.sh/tangled.sh/core/appview/spindles" 18 19 "tangled.sh/tangled.sh/core/appview/state/userutil" 20 20 + avstrings "tangled.sh/tangled.sh/core/appview/strings" 19 21 "tangled.sh/tangled.sh/core/log" 20 22 ) 21 23 ··· 29 31 s.idResolver, 30 32 s.pages, 31 33 ) 34 34 + 35 35 + router.Get("/favicon.svg", s.Favicon) 36 36 + router.Get("/favicon.ico", s.Favicon) 37 37 + 38 38 + userRouter := s.UserRouter(&middleware) 39 39 + standardRouter := s.StandardRouter(&middleware) 32 40 33 41 router.HandleFunc("/*", func(w http.ResponseWriter, r *http.Request) { 34 42 pat := chi.URLParam(r, "*") 35 43 if strings.HasPrefix(pat, "did:") || strings.HasPrefix(pat, "@") { 36 36 - s.UserRouter(&middleware).ServeHTTP(w, r) 44 44 + userRouter.ServeHTTP(w, r) 37 45 } else { 38 46 // Check if the first path element is a valid handle without '@' or a flattened DID 39 47 pathParts := strings.SplitN(pat, "/", 2) ··· 56 64 return 57 65 } 58 66 } 59 59 - s.StandardRouter(&middleware).ServeHTTP(w, r) 67 67 + standardRouter.ServeHTTP(w, r) 60 68 } 61 69 }) 62 70 ··· 66 74 func (s *State) UserRouter(mw *middleware.Middleware) http.Handler { 67 75 r := chi.NewRouter() 68 76 69 69 - // strip @ from user 70 70 - r.Use(middleware.StripLeadingAt) 71 71 - 72 77 r.With(mw.ResolveIdent()).Route("/{user}", func(r chi.Router) { 73 78 r.Get("/", s.Profile) 79 79 + r.Get("/feed.atom", s.AtomFeedPage) 80 80 + 81 81 + // redirect /@handle/repo.git -> /@handle/repo 82 82 + r.Get("/{repo}.git", func(w http.ResponseWriter, r *http.Request) { 83 83 + nonDotGitPath := strings.TrimSuffix(r.URL.Path, ".git") 84 84 + http.Redirect(w, r, nonDotGitPath, http.StatusMovedPermanently) 85 85 + }) 74 86 75 87 r.With(mw.ResolveRepo()).Route("/{repo}", func(r chi.Router) { 76 88 r.Use(mw.GoImport()) 77 77 - 78 89 r.Mount("/", s.RepoRouter(mw)) 79 90 r.Mount("/issues", s.IssuesRouter(mw)) 80 91 r.Mount("/pulls", s.PullsRouter(mw)) ··· 100 111 101 112 r.Handle("/static/*", s.pages.Static()) 102 113 103 103 - r.Get("/", s.Timeline) 114 114 + r.Get("/", s.HomeOrTimeline) 115 115 + r.Get("/timeline", s.Timeline) 116 116 + r.With(middleware.AuthMiddleware(s.oauth)).Get("/upgradeBanner", s.UpgradeBanner) 104 117 105 118 r.Route("/repo", func(r chi.Router) { 106 119 r.Route("/new", func(r chi.Router) { ··· 135 148 }) 136 149 137 150 r.Mount("/settings", s.SettingsRouter()) 138 138 - r.Mount("/knots", s.KnotsRouter(mw)) 151 151 + r.Mount("/strings", s.StringsRouter(mw)) 152 152 + r.Mount("/knots", s.KnotsRouter()) 139 153 r.Mount("/spindles", s.SpindlesRouter()) 154 154 + r.Mount("/signup", s.SignupRouter()) 140 155 r.Mount("/", s.OAuthRouter()) 141 156 142 157 r.Get("/keys/{user}", s.Keys) 158 158 + r.Get("/terms", s.TermsOfService) 159 159 + r.Get("/privacy", s.PrivacyPolicy) 143 160 144 161 r.NotFound(func(w http.ResponseWriter, r *http.Request) { 145 162 s.pages.Error404(w) ··· 180 197 return spindles.Router() 181 198 } 182 199 183 183 - func (s *State) KnotsRouter(mw *middleware.Middleware) http.Handler { 200 200 + func (s *State) KnotsRouter() http.Handler { 184 201 logger := log.New("knots") 185 202 186 203 knots := &knots.Knots{ ··· 194 211 Logger: logger, 195 212 } 196 213 197 197 - return knots.Router(mw) 214 214 + return knots.Router() 215 215 + } 216 216 + 217 217 + func (s *State) StringsRouter(mw *middleware.Middleware) http.Handler { 218 218 + logger := log.New("strings") 219 219 + 220 220 + strs := &avstrings.Strings{ 221 221 + Db: s.db, 222 222 + OAuth: s.oauth, 223 223 + Pages: s.pages, 224 224 + Config: s.config, 225 225 + Enforcer: s.enforcer, 226 226 + IdResolver: s.idResolver, 227 227 + Knotstream: s.knotstream, 228 228 + Logger: logger, 229 229 + } 230 230 + 231 231 + return strs.Router(mw) 198 232 } 199 233 200 234 func (s *State) IssuesRouter(mw *middleware.Middleware) http.Handler { 201 201 - issues := issues.New(s.oauth, s.repoResolver, s.pages, s.idResolver, s.db, s.config, s.notifier) 235 235 + issues := issues.New(s.oauth, s.repoResolver, s.pages, s.idResolver, s.db, s.config, s.notifier, s.validator) 202 236 return issues.Router(mw) 203 237 } 204 238 ··· 217 251 pipes := pipelines.New(s.oauth, s.repoResolver, s.pages, s.spindlestream, s.idResolver, s.db, s.config, s.enforcer) 218 252 return pipes.Router(mw) 219 253 } 254 254 + 255 255 + func (s *State) SignupRouter() http.Handler { 256 256 + logger := log.New("signup") 257 257 + 258 258 + sig := signup.New(s.config, s.db, s.posthog, s.idResolver, s.pages, logger) 259 259 + return sig.Router() 260 260 + }

+214 -72

appview/state/state.go

··· 2 2 3 3 import ( 4 4 "context" 5 5 + "database/sql" 6 6 + "errors" 5 7 "fmt" 6 8 "log" 7 9 "log/slog" ··· 10 12 "time" 11 13 12 14 comatproto "github.com/bluesky-social/indigo/api/atproto" 15 15 + "github.com/bluesky-social/indigo/atproto/syntax" 13 16 lexutil "github.com/bluesky-social/indigo/lex/util" 14 17 securejoin "github.com/cyphar/filepath-securejoin" 15 18 "github.com/go-chi/chi/v5" ··· 23 26 "tangled.sh/tangled.sh/core/appview/notify" 24 27 "tangled.sh/tangled.sh/core/appview/oauth" 25 28 "tangled.sh/tangled.sh/core/appview/pages" 26 26 - posthog_service "tangled.sh/tangled.sh/core/appview/posthog" 29 29 + posthogService "tangled.sh/tangled.sh/core/appview/posthog" 27 30 "tangled.sh/tangled.sh/core/appview/reporesolver" 31 31 + "tangled.sh/tangled.sh/core/appview/validator" 32 32 + xrpcclient "tangled.sh/tangled.sh/core/appview/xrpcclient" 28 33 "tangled.sh/tangled.sh/core/eventconsumer" 29 34 "tangled.sh/tangled.sh/core/idresolver" 30 35 "tangled.sh/tangled.sh/core/jetstream" 31 31 - "tangled.sh/tangled.sh/core/knotclient" 32 36 tlog "tangled.sh/tangled.sh/core/log" 33 37 "tangled.sh/tangled.sh/core/rbac" 34 38 "tangled.sh/tangled.sh/core/tid" 39 39 + // xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 35 40 ) 36 41 37 42 type State struct { ··· 48 53 repoResolver *reporesolver.RepoResolver 49 54 knotstream *eventconsumer.Consumer 50 55 spindlestream *eventconsumer.Consumer 56 56 + logger *slog.Logger 57 57 + validator *validator.Validator 51 58 } 52 59 53 60 func Make(ctx context.Context, config *config.Config) (*State, error) { ··· 61 68 return nil, fmt.Errorf("failed to create enforcer: %w", err) 62 69 } 63 70 64 64 - pgs := pages.NewPages(config) 65 65 - 66 71 res, err := idresolver.RedisResolver(config.Redis.ToURL()) 67 72 if err != nil { 68 73 log.Printf("failed to create redis resolver: %v", err) 69 74 res = idresolver.DefaultResolver() 70 75 } 71 76 77 77 + pgs := pages.NewPages(config, res) 72 78 cache := cache.New(config.Redis.Addr) 73 79 sess := session.New(cache) 74 74 - 75 80 oauth := oauth.NewOAuth(config, sess) 81 81 + validator := validator.New(d) 76 82 77 83 posthog, err := posthog.NewWithConfig(config.Posthog.ApiKey, posthog.Config{Endpoint: config.Posthog.Endpoint}) 78 84 if err != nil { ··· 93 99 tangled.ActorProfileNSID, 94 100 tangled.SpindleMemberNSID, 95 101 tangled.SpindleNSID, 102 102 + tangled.StringNSID, 103 103 + tangled.RepoIssueNSID, 104 104 + tangled.RepoIssueCommentNSID, 96 105 }, 97 106 nil, 98 107 slog.Default(), ··· 113 122 IdResolver: res, 114 123 Config: config, 115 124 Logger: tlog.New("ingester"), 125 125 + Validator: validator, 116 126 } 117 127 err = jc.StartJetstream(ctx, ingester.Ingest()) 118 128 if err != nil { ··· 133 143 134 144 var notifiers []notify.Notifier 135 145 if !config.Core.Dev { 136 136 - notifiers = append(notifiers, posthog_service.NewPosthogNotifier(posthog)) 146 146 + notifiers = append(notifiers, posthogService.NewPosthogNotifier(posthog)) 137 147 } 138 148 notifier := notify.NewMergedNotifier(notifiers...) 139 149 ··· 151 161 repoResolver, 152 162 knotstream, 153 163 spindlestream, 164 164 + slog.Default(), 165 165 + validator, 154 166 } 155 167 156 168 return state, nil 157 169 } 158 170 171 171 + func (s *State) Close() error { 172 172 + // other close up logic goes here 173 173 + return s.db.Close() 174 174 + } 175 175 + 176 176 + func (s *State) Favicon(w http.ResponseWriter, r *http.Request) { 177 177 + w.Header().Set("Content-Type", "image/svg+xml") 178 178 + w.Header().Set("Cache-Control", "public, max-age=31536000") // one year 179 179 + w.Header().Set("ETag", `"favicon-svg-v1"`) 180 180 + 181 181 + if match := r.Header.Get("If-None-Match"); match == `"favicon-svg-v1"` { 182 182 + w.WriteHeader(http.StatusNotModified) 183 183 + return 184 184 + } 185 185 + 186 186 + s.pages.Favicon(w) 187 187 + } 188 188 + 189 189 + func (s *State) TermsOfService(w http.ResponseWriter, r *http.Request) { 190 190 + user := s.oauth.GetUser(r) 191 191 + s.pages.TermsOfService(w, pages.TermsOfServiceParams{ 192 192 + LoggedInUser: user, 193 193 + }) 194 194 + } 195 195 + 196 196 + func (s *State) PrivacyPolicy(w http.ResponseWriter, r *http.Request) { 197 197 + user := s.oauth.GetUser(r) 198 198 + s.pages.PrivacyPolicy(w, pages.PrivacyPolicyParams{ 199 199 + LoggedInUser: user, 200 200 + }) 201 201 + } 202 202 + 203 203 + func (s *State) HomeOrTimeline(w http.ResponseWriter, r *http.Request) { 204 204 + if s.oauth.GetUser(r) != nil { 205 205 + s.Timeline(w, r) 206 206 + return 207 207 + } 208 208 + s.Home(w, r) 209 209 + } 210 210 + 159 211 func (s *State) Timeline(w http.ResponseWriter, r *http.Request) { 160 212 user := s.oauth.GetUser(r) 161 213 162 162 - timeline, err := db.MakeTimeline(s.db) 214 214 + timeline, err := db.MakeTimeline(s.db, 50) 163 215 if err != nil { 164 216 log.Println(err) 165 217 s.pages.Notice(w, "timeline", "Uh oh! Failed to load timeline.") 166 218 } 167 219 168 168 - var didsToResolve []string 169 169 - for _, ev := range timeline { 170 170 - if ev.Repo != nil { 171 171 - didsToResolve = append(didsToResolve, ev.Repo.Did) 172 172 - if ev.Source != nil { 173 173 - didsToResolve = append(didsToResolve, ev.Source.Did) 174 174 - } 175 175 - } 176 176 - if ev.Follow != nil { 177 177 - didsToResolve = append(didsToResolve, ev.Follow.UserDid, ev.Follow.SubjectDid) 178 178 - } 179 179 - if ev.Star != nil { 180 180 - didsToResolve = append(didsToResolve, ev.Star.StarredByDid, ev.Star.Repo.Did) 181 181 - } 182 182 - } 183 183 - 184 184 - resolvedIds := s.idResolver.ResolveIdents(r.Context(), didsToResolve) 185 185 - didHandleMap := make(map[string]string) 186 186 - for _, identity := range resolvedIds { 187 187 - if !identity.Handle.IsInvalidHandle() { 188 188 - didHandleMap[identity.DID.String()] = fmt.Sprintf("@%s", identity.Handle.String()) 189 189 - } else { 190 190 - didHandleMap[identity.DID.String()] = identity.DID.String() 191 191 - } 220 220 + repos, err := db.GetTopStarredReposLastWeek(s.db) 221 221 + if err != nil { 222 222 + log.Println(err) 223 223 + s.pages.Notice(w, "topstarredrepos", "Unable to load.") 224 224 + return 192 225 } 193 226 194 227 s.pages.Timeline(w, pages.TimelineParams{ 195 228 LoggedInUser: user, 196 229 Timeline: timeline, 197 197 - DidHandleMap: didHandleMap, 230 230 + Repos: repos, 198 231 }) 232 232 + } 199 233 200 200 - return 234 234 + func (s *State) UpgradeBanner(w http.ResponseWriter, r *http.Request) { 235 235 + user := s.oauth.GetUser(r) 236 236 + l := s.logger.With("handler", "UpgradeBanner") 237 237 + l = l.With("did", user.Did) 238 238 + l = l.With("handle", user.Handle) 239 239 + 240 240 + regs, err := db.GetRegistrations( 241 241 + s.db, 242 242 + db.FilterEq("did", user.Did), 243 243 + db.FilterEq("needs_upgrade", 1), 244 244 + ) 245 245 + if err != nil { 246 246 + l.Error("non-fatal: failed to get registrations", "err", err) 247 247 + } 248 248 + 249 249 + spindles, err := db.GetSpindles( 250 250 + s.db, 251 251 + db.FilterEq("owner", user.Did), 252 252 + db.FilterEq("needs_upgrade", 1), 253 253 + ) 254 254 + if err != nil { 255 255 + l.Error("non-fatal: failed to get spindles", "err", err) 256 256 + } 257 257 + 258 258 + if regs == nil && spindles == nil { 259 259 + return 260 260 + } 261 261 + 262 262 + s.pages.UpgradeBanner(w, pages.UpgradeBannerParams{ 263 263 + Registrations: regs, 264 264 + Spindles: spindles, 265 265 + }) 266 266 + } 267 267 + 268 268 + func (s *State) Home(w http.ResponseWriter, r *http.Request) { 269 269 + timeline, err := db.MakeTimeline(s.db, 5) 270 270 + if err != nil { 271 271 + log.Println(err) 272 272 + s.pages.Notice(w, "timeline", "Uh oh! Failed to load timeline.") 273 273 + return 274 274 + } 275 275 + 276 276 + repos, err := db.GetTopStarredReposLastWeek(s.db) 277 277 + if err != nil { 278 278 + log.Println(err) 279 279 + s.pages.Notice(w, "topstarredrepos", "Unable to load.") 280 280 + return 281 281 + } 282 282 + 283 283 + s.pages.Home(w, pages.TimelineParams{ 284 284 + LoggedInUser: nil, 285 285 + Timeline: timeline, 286 286 + Repos: repos, 287 287 + }) 201 288 } 202 289 203 290 func (s *State) Keys(w http.ResponseWriter, r *http.Request) { ··· 228 315 229 316 for _, k := range pubKeys { 230 317 key := strings.TrimRight(k.Key, "\n") 231 231 - w.Write([]byte(fmt.Sprintln(key))) 318 318 + fmt.Fprintln(w, key) 232 319 } 233 320 } 234 321 ··· 264 351 return nil 265 352 } 266 353 354 354 + func stripGitExt(name string) string { 355 355 + return strings.TrimSuffix(name, ".git") 356 356 + } 357 357 + 267 358 func (s *State) NewRepo(w http.ResponseWriter, r *http.Request) { 268 359 switch r.Method { 269 360 case http.MethodGet: ··· 280 371 }) 281 372 282 373 case http.MethodPost: 374 374 + l := s.logger.With("handler", "NewRepo") 375 375 + 283 376 user := s.oauth.GetUser(r) 377 377 + l = l.With("did", user.Did) 378 378 + l = l.With("handle", user.Handle) 284 379 380 380 + // form validation 285 381 domain := r.FormValue("domain") 286 382 if domain == "" { 287 383 s.pages.Notice(w, "repo", "Invalid form submission&mdash;missing knot domain.") 288 384 return 289 385 } 386 386 + l = l.With("knot", domain) 290 387 291 388 repoName := r.FormValue("name") 292 389 if repoName == "" { ··· 298 395 s.pages.Notice(w, "repo", err.Error()) 299 396 return 300 397 } 398 398 + repoName = stripGitExt(repoName) 399 399 + l = l.With("repoName", repoName) 301 400 302 401 defaultBranch := r.FormValue("branch") 303 402 if defaultBranch == "" { 304 403 defaultBranch = "main" 305 404 } 405 405 + l = l.With("defaultBranch", defaultBranch) 306 406 307 407 description := r.FormValue("description") 308 408 409 409 + // ACL validation 309 410 ok, err := s.enforcer.E.Enforce(user.Did, domain, domain, "repo:create") 310 411 if err != nil || !ok { 412 412 + l.Info("unauthorized") 311 413 s.pages.Notice(w, "repo", "You do not have permission to create a repo in this knot.") 312 414 return 313 415 } 314 416 417 417 + // Check for existing repos 315 418 existingRepo, err := db.GetRepo(s.db, user.Did, repoName) 316 419 if err == nil && existingRepo != nil { 317 317 - s.pages.Notice(w, "repo", fmt.Sprintf("A repo by this name already exists on %s", existingRepo.Knot)) 318 318 - return 319 319 - } 320 320 - 321 321 - secret, err := db.GetRegistrationKey(s.db, domain) 322 322 - if err != nil { 323 323 - s.pages.Notice(w, "repo", fmt.Sprintf("No registration key found for knot %s.", domain)) 324 324 - return 325 325 - } 326 326 - 327 327 - client, err := knotclient.NewSignedClient(domain, secret, s.config.Core.Dev) 328 328 - if err != nil { 329 329 - s.pages.Notice(w, "repo", "Failed to connect to knot server.") 420 420 + l.Info("repo exists") 421 421 + s.pages.Notice(w, "repo", fmt.Sprintf("You already have a repository by this name on %s", existingRepo.Knot)) 330 422 return 331 423 } 332 424 425 425 + // create atproto record for this repo 333 426 rkey := tid.TID() 334 427 repo := &db.Repo{ 335 428 Did: user.Did, ··· 341 434 342 435 xrpcClient, err := s.oauth.AuthorizedClient(r) 343 436 if err != nil { 437 437 + l.Info("PDS write failed", "err", err) 344 438 s.pages.Notice(w, "repo", "Failed to write record to PDS.") 345 439 return 346 440 } ··· 359 453 }}, 360 454 }) 361 455 if err != nil { 362 362 - log.Printf("failed to create record: %s", err) 456 456 + l.Info("PDS write failed", "err", err) 363 457 s.pages.Notice(w, "repo", "Failed to announce repository creation.") 364 458 return 365 459 } 366 366 - log.Println("created repo record: ", atresp.Uri) 460 460 + 461 461 + aturi := atresp.Uri 462 462 + l = l.With("aturi", aturi) 463 463 + l.Info("wrote to PDS") 367 464 368 465 tx, err := s.db.BeginTx(r.Context(), nil) 369 466 if err != nil { 370 370 - log.Println(err) 467 467 + l.Info("txn failed", "err", err) 371 468 s.pages.Notice(w, "repo", "Failed to save repository information.") 372 469 return 373 470 } 374 374 - defer func() { 375 375 - tx.Rollback() 376 376 - err = s.enforcer.E.LoadPolicy() 377 377 - if err != nil { 378 378 - log.Println("failed to rollback policies") 471 471 + 472 472 + // The rollback function reverts a few things on failure: 473 473 + // - the pending txn 474 474 + // - the ACLs 475 475 + // - the atproto record created 476 476 + rollback := func() { 477 477 + err1 := tx.Rollback() 478 478 + err2 := s.enforcer.E.LoadPolicy() 479 479 + err3 := rollbackRecord(context.Background(), aturi, xrpcClient) 480 480 + 481 481 + // ignore txn complete errors, this is okay 482 482 + if errors.Is(err1, sql.ErrTxDone) { 483 483 + err1 = nil 484 484 + } 485 485 + 486 486 + if errs := errors.Join(err1, err2, err3); errs != nil { 487 487 + l.Error("failed to rollback changes", "errs", errs) 488 488 + return 379 489 } 380 380 - }() 490 490 + } 491 491 + defer rollback() 381 492 382 382 - resp, err := client.NewRepo(user.Did, repoName, defaultBranch) 493 493 + client, err := s.oauth.ServiceClient( 494 494 + r, 495 495 + oauth.WithService(domain), 496 496 + oauth.WithLxm(tangled.RepoCreateNSID), 497 497 + oauth.WithDev(s.config.Core.Dev), 498 498 + ) 383 499 if err != nil { 384 384 - s.pages.Notice(w, "repo", "Failed to create repository on knot server.") 500 500 + l.Error("service auth failed", "err", err) 501 501 + s.pages.Notice(w, "repo", "Failed to reach PDS.") 385 502 return 386 503 } 387 504 388 388 - switch resp.StatusCode { 389 389 - case http.StatusConflict: 390 390 - s.pages.Notice(w, "repo", "A repository with that name already exists.") 505 505 + xe := tangled.RepoCreate( 506 506 + r.Context(), 507 507 + client, 508 508 + &tangled.RepoCreate_Input{ 509 509 + Rkey: rkey, 510 510 + }, 511 511 + ) 512 512 + if err := xrpcclient.HandleXrpcErr(xe); err != nil { 513 513 + l.Error("xrpc error", "xe", xe) 514 514 + s.pages.Notice(w, "repo", err.Error()) 391 515 return 392 392 - case http.StatusInternalServerError: 393 393 - s.pages.Notice(w, "repo", "Failed to create repository on knot. Try again later.") 394 394 - case http.StatusNoContent: 395 395 - // continue 396 516 } 397 517 398 398 - repo.AtUri = atresp.Uri 399 518 err = db.AddRepo(tx, repo) 400 519 if err != nil { 401 401 - log.Println(err) 520 520 + l.Error("db write failed", "err", err) 402 521 s.pages.Notice(w, "repo", "Failed to save repository information.") 403 522 return 404 523 } ··· 407 526 p, _ := securejoin.SecureJoin(user.Did, repoName) 408 527 err = s.enforcer.AddRepo(user.Did, domain, p) 409 528 if err != nil { 410 410 - log.Println(err) 529 529 + l.Error("acl setup failed", "err", err) 411 530 s.pages.Notice(w, "repo", "Failed to set up repository permissions.") 412 531 return 413 532 } 414 533 415 534 err = tx.Commit() 416 535 if err != nil { 417 417 - log.Println("failed to commit changes", err) 536 536 + l.Error("txn commit failed", "err", err) 418 537 http.Error(w, err.Error(), http.StatusInternalServerError) 419 538 return 420 539 } 421 540 422 541 err = s.enforcer.E.SavePolicy() 423 542 if err != nil { 424 424 - log.Println("failed to update ACLs", err) 543 543 + l.Error("acl save failed", "err", err) 425 544 http.Error(w, err.Error(), http.StatusInternalServerError) 426 545 return 427 546 } 428 547 548 548 + // reset the ATURI because the transaction completed successfully 549 549 + aturi = "" 550 550 + 429 551 s.notifier.NewRepo(r.Context(), repo) 552 552 + s.pages.HxLocation(w, fmt.Sprintf("/@%s/%s", user.Handle, repoName)) 553 553 + } 554 554 + } 430 555 431 431 - s.pages.HxLocation(w, fmt.Sprintf("/@%s/%s", user.Handle, repoName)) 432 432 - return 556 556 + // this is used to rollback changes made to the PDS 557 557 + // 558 558 + // it is a no-op if the provided ATURI is empty 559 559 + func rollbackRecord(ctx context.Context, aturi string, xrpcc *xrpcclient.Client) error { 560 560 + if aturi == "" { 561 561 + return nil 433 562 } 563 563 + 564 564 + parsed := syntax.ATURI(aturi) 565 565 + 566 566 + collection := parsed.Collection().String() 567 567 + repo := parsed.Authority().String() 568 568 + rkey := parsed.RecordKey().String() 569 569 + 570 570 + _, err := xrpcc.RepoDeleteRecord(ctx, &comatproto.RepoDeleteRecord_Input{ 571 571 + Collection: collection, 572 572 + Repo: repo, 573 573 + Rkey: rkey, 574 574 + }) 575 575 + return err 434 576 }

+6

appview/state/userutil/userutil.go

··· 51 51 func IsDid(s string) bool { 52 52 return didRegex.MatchString(s) 53 53 } 54 54 + 55 55 + var subdomainRegex = regexp.MustCompile(`^[a-z0-9]([a-z0-9-]{2,61}[a-z0-9])?$`) 56 56 + 57 57 + func IsValidSubdomain(name string) bool { 58 58 + return len(name) >= 4 && len(name) <= 63 && subdomainRegex.MatchString(name) 59 59 + }

+415

appview/strings/strings.go

··· 1 1 + package strings 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "log/slog" 6 6 + "net/http" 7 7 + "path" 8 8 + "strconv" 9 9 + "time" 10 10 + 11 11 + "tangled.sh/tangled.sh/core/api/tangled" 12 12 + "tangled.sh/tangled.sh/core/appview/config" 13 13 + "tangled.sh/tangled.sh/core/appview/db" 14 14 + "tangled.sh/tangled.sh/core/appview/middleware" 15 15 + "tangled.sh/tangled.sh/core/appview/notify" 16 16 + "tangled.sh/tangled.sh/core/appview/oauth" 17 17 + "tangled.sh/tangled.sh/core/appview/pages" 18 18 + "tangled.sh/tangled.sh/core/appview/pages/markup" 19 19 + "tangled.sh/tangled.sh/core/eventconsumer" 20 20 + "tangled.sh/tangled.sh/core/idresolver" 21 21 + "tangled.sh/tangled.sh/core/rbac" 22 22 + "tangled.sh/tangled.sh/core/tid" 23 23 + 24 24 + "github.com/bluesky-social/indigo/api/atproto" 25 25 + "github.com/bluesky-social/indigo/atproto/identity" 26 26 + "github.com/bluesky-social/indigo/atproto/syntax" 27 27 + lexutil "github.com/bluesky-social/indigo/lex/util" 28 28 + "github.com/go-chi/chi/v5" 29 29 + ) 30 30 + 31 31 + type Strings struct { 32 32 + Db *db.DB 33 33 + OAuth *oauth.OAuth 34 34 + Pages *pages.Pages 35 35 + Config *config.Config 36 36 + Enforcer *rbac.Enforcer 37 37 + IdResolver *idresolver.Resolver 38 38 + Logger *slog.Logger 39 39 + Knotstream *eventconsumer.Consumer 40 40 + Notifier notify.Notifier 41 41 + } 42 42 + 43 43 + func (s *Strings) Router(mw *middleware.Middleware) http.Handler { 44 44 + r := chi.NewRouter() 45 45 + 46 46 + r. 47 47 + Get("/", s.timeline) 48 48 + 49 49 + r. 50 50 + With(mw.ResolveIdent()). 51 51 + Route("/{user}", func(r chi.Router) { 52 52 + r.Get("/", s.dashboard) 53 53 + 54 54 + r.Route("/{rkey}", func(r chi.Router) { 55 55 + r.Get("/", s.contents) 56 56 + r.Delete("/", s.delete) 57 57 + r.Get("/raw", s.contents) 58 58 + r.Get("/edit", s.edit) 59 59 + r.Post("/edit", s.edit) 60 60 + r. 61 61 + With(middleware.AuthMiddleware(s.OAuth)). 62 62 + Post("/comment", s.comment) 63 63 + }) 64 64 + }) 65 65 + 66 66 + r. 67 67 + With(middleware.AuthMiddleware(s.OAuth)). 68 68 + Route("/new", func(r chi.Router) { 69 69 + r.Get("/", s.create) 70 70 + r.Post("/", s.create) 71 71 + }) 72 72 + 73 73 + return r 74 74 + } 75 75 + 76 76 + func (s *Strings) timeline(w http.ResponseWriter, r *http.Request) { 77 77 + l := s.Logger.With("handler", "timeline") 78 78 + 79 79 + strings, err := db.GetStrings(s.Db, 50) 80 80 + if err != nil { 81 81 + l.Error("failed to fetch string", "err", err) 82 82 + w.WriteHeader(http.StatusInternalServerError) 83 83 + return 84 84 + } 85 85 + 86 86 + s.Pages.StringsTimeline(w, pages.StringTimelineParams{ 87 87 + LoggedInUser: s.OAuth.GetUser(r), 88 88 + Strings: strings, 89 89 + }) 90 90 + } 91 91 + 92 92 + func (s *Strings) contents(w http.ResponseWriter, r *http.Request) { 93 93 + l := s.Logger.With("handler", "contents") 94 94 + 95 95 + id, ok := r.Context().Value("resolvedId").(identity.Identity) 96 96 + if !ok { 97 97 + l.Error("malformed middleware") 98 98 + w.WriteHeader(http.StatusInternalServerError) 99 99 + return 100 100 + } 101 101 + l = l.With("did", id.DID, "handle", id.Handle) 102 102 + 103 103 + rkey := chi.URLParam(r, "rkey") 104 104 + if rkey == "" { 105 105 + l.Error("malformed url, empty rkey") 106 106 + w.WriteHeader(http.StatusBadRequest) 107 107 + return 108 108 + } 109 109 + l = l.With("rkey", rkey) 110 110 + 111 111 + strings, err := db.GetStrings( 112 112 + s.Db, 113 113 + 0, 114 114 + db.FilterEq("did", id.DID), 115 115 + db.FilterEq("rkey", rkey), 116 116 + ) 117 117 + if err != nil { 118 118 + l.Error("failed to fetch string", "err", err) 119 119 + w.WriteHeader(http.StatusInternalServerError) 120 120 + return 121 121 + } 122 122 + if len(strings) < 1 { 123 123 + l.Error("string not found") 124 124 + s.Pages.Error404(w) 125 125 + return 126 126 + } 127 127 + if len(strings) != 1 { 128 128 + l.Error("incorrect number of records returned", "len(strings)", len(strings)) 129 129 + w.WriteHeader(http.StatusInternalServerError) 130 130 + return 131 131 + } 132 132 + string := strings[0] 133 133 + 134 134 + if path.Base(r.URL.Path) == "raw" { 135 135 + w.Header().Set("Content-Type", "text/plain; charset=utf-8") 136 136 + if string.Filename != "" { 137 137 + w.Header().Set("Content-Disposition", fmt.Sprintf("inline; filename=%q", string.Filename)) 138 138 + } 139 139 + w.Header().Set("Content-Length", strconv.Itoa(len(string.Contents))) 140 140 + 141 141 + _, err = w.Write([]byte(string.Contents)) 142 142 + if err != nil { 143 143 + l.Error("failed to write raw response", "err", err) 144 144 + } 145 145 + return 146 146 + } 147 147 + 148 148 + var showRendered, renderToggle bool 149 149 + if markup.GetFormat(string.Filename) == markup.FormatMarkdown { 150 150 + renderToggle = true 151 151 + showRendered = r.URL.Query().Get("code") != "true" 152 152 + } 153 153 + 154 154 + s.Pages.SingleString(w, pages.SingleStringParams{ 155 155 + LoggedInUser: s.OAuth.GetUser(r), 156 156 + RenderToggle: renderToggle, 157 157 + ShowRendered: showRendered, 158 158 + String: string, 159 159 + Stats: string.Stats(), 160 160 + Owner: id, 161 161 + }) 162 162 + } 163 163 + 164 164 + func (s *Strings) dashboard(w http.ResponseWriter, r *http.Request) { 165 165 + http.Redirect(w, r, fmt.Sprintf("/%s?tab=strings", chi.URLParam(r, "user")), http.StatusFound) 166 166 + } 167 167 + 168 168 + func (s *Strings) edit(w http.ResponseWriter, r *http.Request) { 169 169 + l := s.Logger.With("handler", "edit") 170 170 + 171 171 + user := s.OAuth.GetUser(r) 172 172 + 173 173 + id, ok := r.Context().Value("resolvedId").(identity.Identity) 174 174 + if !ok { 175 175 + l.Error("malformed middleware") 176 176 + w.WriteHeader(http.StatusInternalServerError) 177 177 + return 178 178 + } 179 179 + l = l.With("did", id.DID, "handle", id.Handle) 180 180 + 181 181 + rkey := chi.URLParam(r, "rkey") 182 182 + if rkey == "" { 183 183 + l.Error("malformed url, empty rkey") 184 184 + w.WriteHeader(http.StatusBadRequest) 185 185 + return 186 186 + } 187 187 + l = l.With("rkey", rkey) 188 188 + 189 189 + // get the string currently being edited 190 190 + all, err := db.GetStrings( 191 191 + s.Db, 192 192 + 0, 193 193 + db.FilterEq("did", id.DID), 194 194 + db.FilterEq("rkey", rkey), 195 195 + ) 196 196 + if err != nil { 197 197 + l.Error("failed to fetch string", "err", err) 198 198 + w.WriteHeader(http.StatusInternalServerError) 199 199 + return 200 200 + } 201 201 + if len(all) != 1 { 202 202 + l.Error("incorrect number of records returned", "len(strings)", len(all)) 203 203 + w.WriteHeader(http.StatusInternalServerError) 204 204 + return 205 205 + } 206 206 + first := all[0] 207 207 + 208 208 + // verify that the logged in user owns this string 209 209 + if user.Did != id.DID.String() { 210 210 + l.Error("unauthorized request", "expected", id.DID, "got", user.Did) 211 211 + w.WriteHeader(http.StatusUnauthorized) 212 212 + return 213 213 + } 214 214 + 215 215 + switch r.Method { 216 216 + case http.MethodGet: 217 217 + // return the form with prefilled fields 218 218 + s.Pages.PutString(w, pages.PutStringParams{ 219 219 + LoggedInUser: s.OAuth.GetUser(r), 220 220 + Action: "edit", 221 221 + String: first, 222 222 + }) 223 223 + case http.MethodPost: 224 224 + fail := func(msg string, err error) { 225 225 + l.Error(msg, "err", err) 226 226 + s.Pages.Notice(w, "error", msg) 227 227 + } 228 228 + 229 229 + filename := r.FormValue("filename") 230 230 + if filename == "" { 231 231 + fail("Empty filename.", nil) 232 232 + return 233 233 + } 234 234 + 235 235 + content := r.FormValue("content") 236 236 + if content == "" { 237 237 + fail("Empty contents.", nil) 238 238 + return 239 239 + } 240 240 + 241 241 + description := r.FormValue("description") 242 242 + 243 243 + // construct new string from form values 244 244 + entry := db.String{ 245 245 + Did: first.Did, 246 246 + Rkey: first.Rkey, 247 247 + Filename: filename, 248 248 + Description: description, 249 249 + Contents: content, 250 250 + Created: first.Created, 251 251 + } 252 252 + 253 253 + record := entry.AsRecord() 254 254 + 255 255 + client, err := s.OAuth.AuthorizedClient(r) 256 256 + if err != nil { 257 257 + fail("Failed to create record.", err) 258 258 + return 259 259 + } 260 260 + 261 261 + // first replace the existing record in the PDS 262 262 + ex, err := client.RepoGetRecord(r.Context(), "", tangled.StringNSID, entry.Did.String(), entry.Rkey) 263 263 + if err != nil { 264 264 + fail("Failed to updated existing record.", err) 265 265 + return 266 266 + } 267 267 + resp, err := client.RepoPutRecord(r.Context(), &atproto.RepoPutRecord_Input{ 268 268 + Collection: tangled.StringNSID, 269 269 + Repo: entry.Did.String(), 270 270 + Rkey: entry.Rkey, 271 271 + SwapRecord: ex.Cid, 272 272 + Record: &lexutil.LexiconTypeDecoder{ 273 273 + Val: &record, 274 274 + }, 275 275 + }) 276 276 + if err != nil { 277 277 + fail("Failed to updated existing record.", err) 278 278 + return 279 279 + } 280 280 + l := l.With("aturi", resp.Uri) 281 281 + l.Info("edited string") 282 282 + 283 283 + // if that went okay, updated the db 284 284 + if err = db.AddString(s.Db, entry); err != nil { 285 285 + fail("Failed to update string.", err) 286 286 + return 287 287 + } 288 288 + 289 289 + s.Notifier.EditString(r.Context(), &entry) 290 290 + 291 291 + // if that went okay, redir to the string 292 292 + s.Pages.HxRedirect(w, "/strings/"+user.Handle+"/"+entry.Rkey) 293 293 + } 294 294 + 295 295 + } 296 296 + 297 297 + func (s *Strings) create(w http.ResponseWriter, r *http.Request) { 298 298 + l := s.Logger.With("handler", "create") 299 299 + user := s.OAuth.GetUser(r) 300 300 + 301 301 + switch r.Method { 302 302 + case http.MethodGet: 303 303 + s.Pages.PutString(w, pages.PutStringParams{ 304 304 + LoggedInUser: s.OAuth.GetUser(r), 305 305 + Action: "new", 306 306 + }) 307 307 + case http.MethodPost: 308 308 + fail := func(msg string, err error) { 309 309 + l.Error(msg, "err", err) 310 310 + s.Pages.Notice(w, "error", msg) 311 311 + } 312 312 + 313 313 + filename := r.FormValue("filename") 314 314 + if filename == "" { 315 315 + fail("Empty filename.", nil) 316 316 + return 317 317 + } 318 318 + 319 319 + content := r.FormValue("content") 320 320 + if content == "" { 321 321 + fail("Empty contents.", nil) 322 322 + return 323 323 + } 324 324 + 325 325 + description := r.FormValue("description") 326 326 + 327 327 + string := db.String{ 328 328 + Did: syntax.DID(user.Did), 329 329 + Rkey: tid.TID(), 330 330 + Filename: filename, 331 331 + Description: description, 332 332 + Contents: content, 333 333 + Created: time.Now(), 334 334 + } 335 335 + 336 336 + record := string.AsRecord() 337 337 + 338 338 + client, err := s.OAuth.AuthorizedClient(r) 339 339 + if err != nil { 340 340 + fail("Failed to create record.", err) 341 341 + return 342 342 + } 343 343 + 344 344 + resp, err := client.RepoPutRecord(r.Context(), &atproto.RepoPutRecord_Input{ 345 345 + Collection: tangled.StringNSID, 346 346 + Repo: user.Did, 347 347 + Rkey: string.Rkey, 348 348 + Record: &lexutil.LexiconTypeDecoder{ 349 349 + Val: &record, 350 350 + }, 351 351 + }) 352 352 + if err != nil { 353 353 + fail("Failed to create record.", err) 354 354 + return 355 355 + } 356 356 + l := l.With("aturi", resp.Uri) 357 357 + l.Info("created record") 358 358 + 359 359 + // insert into DB 360 360 + if err = db.AddString(s.Db, string); err != nil { 361 361 + fail("Failed to create string.", err) 362 362 + return 363 363 + } 364 364 + 365 365 + s.Notifier.NewString(r.Context(), &string) 366 366 + 367 367 + // successful 368 368 + s.Pages.HxRedirect(w, "/strings/"+user.Handle+"/"+string.Rkey) 369 369 + } 370 370 + } 371 371 + 372 372 + func (s *Strings) delete(w http.ResponseWriter, r *http.Request) { 373 373 + l := s.Logger.With("handler", "create") 374 374 + user := s.OAuth.GetUser(r) 375 375 + fail := func(msg string, err error) { 376 376 + l.Error(msg, "err", err) 377 377 + s.Pages.Notice(w, "error", msg) 378 378 + } 379 379 + 380 380 + id, ok := r.Context().Value("resolvedId").(identity.Identity) 381 381 + if !ok { 382 382 + l.Error("malformed middleware") 383 383 + w.WriteHeader(http.StatusInternalServerError) 384 384 + return 385 385 + } 386 386 + l = l.With("did", id.DID, "handle", id.Handle) 387 387 + 388 388 + rkey := chi.URLParam(r, "rkey") 389 389 + if rkey == "" { 390 390 + l.Error("malformed url, empty rkey") 391 391 + w.WriteHeader(http.StatusBadRequest) 392 392 + return 393 393 + } 394 394 + 395 395 + if user.Did != id.DID.String() { 396 396 + fail("You cannot delete this string", fmt.Errorf("unauthorized deletion, %s != %s", user.Did, id.DID.String())) 397 397 + return 398 398 + } 399 399 + 400 400 + if err := db.DeleteString( 401 401 + s.Db, 402 402 + db.FilterEq("did", user.Did), 403 403 + db.FilterEq("rkey", rkey), 404 404 + ); err != nil { 405 405 + fail("Failed to delete string.", err) 406 406 + return 407 407 + } 408 408 + 409 409 + s.Notifier.DeleteString(r.Context(), user.Did, rkey) 410 410 + 411 411 + s.Pages.HxRedirect(w, "/strings/"+user.Handle) 412 412 + } 413 413 + 414 414 + func (s *Strings) comment(w http.ResponseWriter, r *http.Request) { 415 415 + }

+53

appview/validator/issue.go

··· 1 1 + package validator 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "strings" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/appview/db" 8 8 + ) 9 9 + 10 10 + func (v *Validator) ValidateIssueComment(comment *db.IssueComment) error { 11 11 + // if comments have parents, only ingest ones that are 1 level deep 12 12 + if comment.ReplyTo != nil { 13 13 + parents, err := db.GetIssueComments(v.db, db.FilterEq("at_uri", *comment.ReplyTo)) 14 14 + if err != nil { 15 15 + return fmt.Errorf("failed to fetch parent comment: %w", err) 16 16 + } 17 17 + if len(parents) != 1 { 18 18 + return fmt.Errorf("incorrect number of parent comments returned: %d", len(parents)) 19 19 + } 20 20 + 21 21 + // depth check 22 22 + parent := parents[0] 23 23 + if parent.ReplyTo != nil { 24 24 + return fmt.Errorf("incorrect depth, this comment is replying at depth >1") 25 25 + } 26 26 + } 27 27 + 28 28 + if sb := strings.TrimSpace(v.sanitizer.SanitizeDefault(comment.Body)); sb == "" { 29 29 + return fmt.Errorf("body is empty after HTML sanitization") 30 30 + } 31 31 + 32 32 + return nil 33 33 + } 34 34 + 35 35 + func (v *Validator) ValidateIssue(issue *db.Issue) error { 36 36 + if issue.Title == "" { 37 37 + return fmt.Errorf("issue title is empty") 38 38 + } 39 39 + 40 40 + if issue.Body == "" { 41 41 + return fmt.Errorf("issue body is empty") 42 42 + } 43 43 + 44 44 + if st := strings.TrimSpace(v.sanitizer.SanitizeDescription(issue.Title)); st == "" { 45 45 + return fmt.Errorf("title is empty after HTML sanitization") 46 46 + } 47 47 + 48 48 + if sb := strings.TrimSpace(v.sanitizer.SanitizeDefault(issue.Body)); sb == "" { 49 49 + return fmt.Errorf("body is empty after HTML sanitization") 50 50 + } 51 51 + 52 52 + return nil 53 53 + }

+18

appview/validator/validator.go

··· 1 1 + package validator 2 2 + 3 3 + import ( 4 4 + "tangled.sh/tangled.sh/core/appview/db" 5 5 + "tangled.sh/tangled.sh/core/appview/pages/markup" 6 6 + ) 7 7 + 8 8 + type Validator struct { 9 9 + db *db.DB 10 10 + sanitizer markup.Sanitizer 11 11 + } 12 12 + 13 13 + func New(db *db.DB) *Validator { 14 14 + return &Validator{ 15 15 + db: db, 16 16 + sanitizer: markup.NewSanitizer(), 17 17 + } 18 18 + }

+31

appview/xrpcclient/xrpc.go

··· 3 3 import ( 4 4 "bytes" 5 5 "context" 6 6 + "errors" 6 7 "io" 8 8 + "net/http" 7 9 8 10 "github.com/bluesky-social/indigo/api/atproto" 9 11 "github.com/bluesky-social/indigo/xrpc" 12 12 + indigoxrpc "github.com/bluesky-social/indigo/xrpc" 10 13 oauth "tangled.sh/icyphox.sh/atproto-oauth" 14 14 + ) 15 15 + 16 16 + var ( 17 17 + ErrXrpcUnsupported = errors.New("xrpc not supported on this knot") 18 18 + ErrXrpcUnauthorized = errors.New("unauthorized xrpc request") 19 19 + ErrXrpcFailed = errors.New("xrpc request failed") 20 20 + ErrXrpcInvalid = errors.New("invalid xrpc request") 11 21 ) 12 22 13 23 type Client struct { ··· 102 112 103 113 return &out, nil 104 114 } 115 115 + 116 116 + // produces a more manageable error 117 117 + func HandleXrpcErr(err error) error { 118 118 + if err == nil { 119 119 + return nil 120 120 + } 121 121 + 122 122 + var xrpcerr *indigoxrpc.Error 123 123 + if ok := errors.As(err, &xrpcerr); !ok { 124 124 + return ErrXrpcInvalid 125 125 + } 126 126 + 127 127 + switch xrpcerr.StatusCode { 128 128 + case http.StatusNotFound: 129 129 + return ErrXrpcUnsupported 130 130 + case http.StatusUnauthorized: 131 131 + return ErrXrpcUnauthorized 132 132 + default: 133 133 + return ErrXrpcFailed 134 134 + } 135 135 + }

+3

cmd/appview/main.go

··· 23 23 } 24 24 25 25 state, err := state.Make(ctx, c) 26 26 + defer func() { 27 27 + log.Println(state.Close()) 28 28 + }() 26 29 27 30 if err != nil { 28 31 log.Fatal(err)

+8 -6

cmd/gen.go

··· 18 18 tangled.FeedReaction{}, 19 19 tangled.FeedStar{}, 20 20 tangled.GitRefUpdate{}, 21 21 + tangled.GitRefUpdate_CommitCountBreakdown{}, 22 22 + tangled.GitRefUpdate_IndividualEmailCommitCount{}, 23 23 + tangled.GitRefUpdate_LangBreakdown{}, 24 24 + tangled.GitRefUpdate_IndividualLanguageSize{}, 21 25 tangled.GitRefUpdate_Meta{}, 22 22 - tangled.GitRefUpdate_Meta_CommitCount{}, 23 23 - tangled.GitRefUpdate_Meta_CommitCount_ByEmail_Elem{}, 24 24 - tangled.GitRefUpdate_Meta_LangBreakdown{}, 25 25 - tangled.GitRefUpdate_Pair{}, 26 26 tangled.GraphFollow{}, 27 27 + tangled.Knot{}, 27 28 tangled.KnotMember{}, 28 29 tangled.Pipeline{}, 29 30 tangled.Pipeline_CloneOpts{}, 30 30 - tangled.Pipeline_Dependency{}, 31 31 tangled.Pipeline_ManualTriggerData{}, 32 32 tangled.Pipeline_Pair{}, 33 33 tangled.Pipeline_PullRequestTriggerData{}, 34 34 tangled.Pipeline_PushTriggerData{}, 35 35 tangled.PipelineStatus{}, 36 36 - tangled.Pipeline_Step{}, 37 36 tangled.Pipeline_TriggerMetadata{}, 38 37 tangled.Pipeline_TriggerRepo{}, 39 38 tangled.Pipeline_Workflow{}, 40 39 tangled.PublicKey{}, 41 40 tangled.Repo{}, 42 41 tangled.RepoArtifact{}, 42 42 + tangled.RepoCollaborator{}, 43 43 tangled.RepoIssue{}, 44 44 tangled.RepoIssueComment{}, 45 45 tangled.RepoIssueState{}, ··· 47 47 tangled.RepoPullComment{}, 48 48 tangled.RepoPull_Source{}, 49 49 tangled.RepoPullStatus{}, 50 50 + tangled.RepoPull_Target{}, 50 51 tangled.Spindle{}, 51 52 tangled.SpindleMember{}, 53 53 + tangled.String{}, 52 54 ); err != nil { 53 55 panic(err) 54 56 }

+4

cmd/genjwks/main.go

··· 30 30 panic(err) 31 31 } 32 32 33 33 + if err := key.Set("use", "sig"); err != nil { 34 34 + panic(err) 35 35 + } 36 36 + 33 37 b, err := json.Marshal(key) 34 38 if err != nil { 35 39 panic(err)

+1 -1

cmd/punchcardPopulate/main.go

··· 11 11 ) 12 12 13 13 func main() { 14 14 - db, err := sql.Open("sqlite3", "./appview.db") 14 14 + db, err := sql.Open("sqlite3", "./appview.db?_foreign_keys=1") 15 15 if err != nil { 16 16 log.Fatal("Failed to open database:", err) 17 17 }

+44

contrib/Tiltfile

··· 1 1 + common_env = { 2 2 + "TANGLED_VM_SPINDLE_OWNER": os.getenv("TANGLED_VM_SPINDLE_OWNER", default=""), 3 3 + "TANGLED_VM_KNOT_OWNER": os.getenv("TANGLED_VM_KNOT_OWNER", default=""), 4 4 + "TANGLED_DB_PATH": os.getenv("TANGLED_DB_PATH", default="dev.db"), 5 5 + "TANGLED_DEV": os.getenv("TANGLED_DEV", default="true"), 6 6 + } 7 7 + 8 8 + nix_globs = ["nix/**", "flake.nix", "flake.lock"] 9 9 + 10 10 + local_resource( 11 11 + name="appview", 12 12 + serve_cmd="nix run .#watch-appview", 13 13 + serve_dir="..", 14 14 + deps=nix_globs, 15 15 + env=common_env, 16 16 + allow_parallel=True, 17 17 + ) 18 18 + 19 19 + local_resource( 20 20 + name="tailwind", 21 21 + serve_cmd="nix run .#watch-tailwind", 22 22 + serve_dir="..", 23 23 + deps=nix_globs, 24 24 + env=common_env, 25 25 + allow_parallel=True, 26 26 + ) 27 27 + 28 28 + local_resource( 29 29 + name="redis", 30 30 + serve_cmd="redis-server", 31 31 + serve_dir="..", 32 32 + deps=nix_globs, 33 33 + env=common_env, 34 34 + allow_parallel=True, 35 35 + ) 36 36 + 37 37 + local_resource( 38 38 + name="vm", 39 39 + serve_cmd="nix run --impure .#vm", 40 40 + serve_dir="..", 41 41 + deps=nix_globs, 42 42 + env=common_env, 43 43 + allow_parallel=True, 44 44 + )

+16

default.nix

··· 1 1 + # Default setup from https://git.lix.systems/lix-project/flake-compat 2 2 + let 3 3 + lockFile = builtins.fromJSON (builtins.readFile ./flake.lock); 4 4 + flake-compat-node = lockFile.nodes.${lockFile.nodes.root.inputs.flake-compat}; 5 5 + flake-compat = builtins.fetchTarball { 6 6 + inherit (flake-compat-node.locked) url; 7 7 + sha256 = flake-compat-node.locked.narHash; 8 8 + }; 9 9 + 10 10 + flake = ( 11 11 + import flake-compat { 12 12 + src = ./.; 13 13 + } 14 14 + ); 15 15 + in 16 16 + flake.defaultNix

+17 -18

docs/contributing.md

··· 11 11 ### message format 12 12 13 13 ``` 14 14 - <service/top-level directory>: <affected package/directory>: <short summary of change> 14 14 + <service/top-level directory>/<affected package/directory>: <short summary of change> 15 15 16 16 17 17 Optional longer description can go here, if necessary. Explain what the ··· 23 23 Here are some examples: 24 24 25 25 ``` 26 26 - appview: state: fix token expiry check in middleware 26 26 + appview/state: fix token expiry check in middleware 27 27 28 28 The previous check did not account for clock drift, leading to premature 29 29 token invalidation. 30 30 ``` 31 31 32 32 ``` 33 33 - knotserver: git/service: improve error checking in upload-pack 33 33 + knotserver/git/service: improve error checking in upload-pack 34 34 ``` 35 35 36 36 ··· 54 54 - Don't include unrelated changes in the same commit. 55 55 - Avoid noisy commit messages like "wip" or "final fix"—rewrite history 56 56 before submitting if necessary. 57 57 + 58 58 + ## code formatting 59 59 + 60 60 + We use a variety of tools to format our code, and multiplex them with 61 61 + [`treefmt`](https://treefmt.com): all you need to do to format your changes 62 62 + is run `nix run .#fmt` (or just `treefmt` if you're in the devshell). 57 63 58 64 ## proposals for bigger changes 59 65 ··· 115 121 If you're submitting a PR with multiple commits, make sure each one is 116 122 signed. 117 123 118 118 - For [jj](https://jj-vcs.github.io/jj/latest/) users, you can add this to 119 119 - your jj config: 124 124 + For [jj](https://jj-vcs.github.io/jj/latest/) users, you can run the following command 125 125 + to make it sign off commits in the tangled repo: 120 126 121 121 - ``` 122 122 - ui.should-sign-off = true 123 123 - ``` 124 124 - 125 125 - and to your `templates.draft_commit_description`, add the following `if` 126 126 - block: 127 127 - 128 128 - ``` 129 129 - if( 130 130 - config("ui.should-sign-off").as_boolean() && !description.contains("Signed-off-by: " ++ author.name()), 131 131 - "\nSigned-off-by: " ++ author.name() ++ " <" ++ author.email() ++ ">", 132 132 - ), 127 127 + ```shell 128 128 + # Safety check, should say "No matching config key..." 129 129 + jj config list templates.commit_trailers 130 130 + # The command below may need to be adjusted if the command above returned something. 131 131 + jj config set --repo templates.commit_trailers "format_signed_off_by_trailer(self)" 133 132 ``` 134 133 135 134 Refer to the [jj 136 136 - documentation](https://jj-vcs.github.io/jj/latest/config/#default-description) 135 135 + documentation](https://jj-vcs.github.io/jj/latest/config/#commit-trailers) 137 136 for more information.

+66 -20

docs/hacking.md

··· 48 48 redis-server 49 49 ``` 50 50 51 51 - ## running a knot 51 51 + ## running knots and spindles 52 52 53 53 An end-to-end knot setup requires setting up a machine with 54 54 `sshd`, `AuthorizedKeysCommand`, and git user, which is 55 55 quite cumbersome. So the nix flake provides a 56 56 `nixosConfiguration` to do so. 57 57 58 58 - To begin, head to `http://localhost:3000/knots` in the browser 59 59 - and generate a knot secret. Replace the existing secret in 60 60 - `nix/vm.nix` (`KNOT_SERVER_SECRET`) with the newly generated 61 61 - secret. 58 58 + <details> 59 59 + <summary><strong>MacOS users will have to setup a Nix Builder first</strong></summary> 60 60 + 61 61 + In order to build Tangled's dev VM on macOS, you will 62 62 + first need to set up a Linux Nix builder. The recommended 63 63 + way to do so is to run a [`darwin.linux-builder` 64 64 + VM](https://nixos.org/manual/nixpkgs/unstable/#sec-darwin-builder) 65 65 + and to register it in `nix.conf` as a builder for Linux 66 66 + with the same architecture as your Mac (`linux-aarch64` if 67 67 + you are using Apple Silicon). 68 68 + 69 69 + > IMPORTANT: You must build `darwin.linux-builder` somewhere other than inside 70 70 + > the tangled repo so that it doesn't conflict with the other VM. For example, 71 71 + > you can do 72 72 + > 73 73 + > ```shell 74 74 + > cd $(mktemp -d buildervm.XXXXX) && nix run nixpkgs#darwin.linux-builder 75 75 + > ``` 76 76 + > 77 77 + > to store the builder VM in a temporary dir. 78 78 + > 79 79 + > You should read and follow [all the other intructions][darwin builder vm] to 80 80 + > avoid subtle problems. 62 81 63 63 - You can now start a lightweight NixOS VM using 64 64 - `nixos-shell` like so: 82 82 + Alternatively, you can use any other method to set up a 83 83 + Linux machine with `nix` installed that you can `sudo ssh` 84 84 + into (in other words, root user on your Mac has to be able 85 85 + to ssh into the Linux machine without entering a password) 86 86 + and that has the same architecture as your Mac. See 87 87 + [remote builder 88 88 + instructions](https://nix.dev/manual/nix/2.28/advanced-topics/distributed-builds.html#requirements) 89 89 + for how to register such a builder in `nix.conf`. 90 90 + 91 91 + > WARNING: If you'd like to use 92 92 + > [`nixos-lima`](https://github.com/nixos-lima/nixos-lima) or 93 93 + > [Orbstack](https://orbstack.dev/), note that setting them up so that `sudo 94 94 + > ssh` works can be tricky. It seems to be [possible with 95 95 + > Orbstack](https://github.com/orgs/orbstack/discussions/1669). 96 96 + 97 97 + </details> 98 98 + 99 99 + To begin, grab your DID from http://localhost:3000/settings. 100 100 + Then, set `TANGLED_VM_KNOT_OWNER` and 101 101 + `TANGLED_VM_SPINDLE_OWNER` to your DID. You can now start a 102 102 + lightweight NixOS VM like so: 65 103 66 104 ```bash 67 67 - nix run .#vm 68 68 - # or nixos-shell --flake .#vm 105 105 + nix run --impure .#vm 69 106 70 70 - # hit Ctrl-a + c + q to exit the VM 107 107 + # type `poweroff` at the shell to exit the VM 71 108 ``` 72 109 73 110 This starts a knot on port 6000, a spindle on port 6555 74 74 - with `ssh` exposed on port 2222. You can push repositories 75 75 - to this VM with this ssh config block on your main machine: 111 111 + with `ssh` exposed on port 2222. 112 112 + 113 113 + Once the services are running, head to 114 114 + http://localhost:3000/knots and hit verify. It should 115 115 + verify the ownership of the services instantly if everything 116 116 + went smoothly. 117 117 + 118 118 + You can push repositories to this VM with this ssh config 119 119 + block on your main machine: 76 120 77 121 ```bash 78 122 Host nixos-shell ··· 89 133 git push local-dev main 90 134 ``` 91 135 92 92 - ## running a spindle 136 136 + ### running a spindle 93 137 94 94 - Be sure to change the `owner` field for the spindle in 95 95 - `nix/vm.nix` to your own DID. The above VM should already 96 96 - be running a spindle on `localhost:6555`. You can head to 97 97 - the spindle dashboard on `http://localhost:3000/spindles`, 98 98 - and register a spindle with hostname `localhost:6555`. It 99 99 - should instantly be verified. You can then configure each 100 100 - repository to use this spindle and run CI jobs. 138 138 + The above VM should already be running a spindle on 139 139 + `localhost:6555`. Head to http://localhost:3000/spindles and 140 140 + hit verify. You can then configure each repository to use 141 141 + this spindle and run CI jobs. 101 142 102 143 Of interest when debugging spindles: 103 144 ··· 114 155 # litecli has a nicer REPL interface: 115 156 litecli /var/lib/spindle/spindle.db 116 157 ``` 158 158 + 159 159 + If for any reason you wish to disable either one of the 160 160 + services in the VM, modify [nix/vm.nix](/nix/vm.nix) and set 161 161 + `services.tangled-spindle.enable` (or 162 162 + `services.tangled-knot.enable`) to `false`.

+27 -7

docs/knot-hosting.md

··· 2 2 3 3 So you want to run your own knot server? Great! Here are a few prerequisites: 4 4 5 5 - 1. A server of some kind (a VPS, a Raspberry Pi, etc.). Preferably running a Linux of some kind. 5 5 + 1. A server of some kind (a VPS, a Raspberry Pi, etc.). Preferably running a Linux distribution of some kind. 6 6 2. A (sub)domain name. People generally use `knot.example.com`. 7 7 3. A valid SSL certificate for your domain. 8 8 ··· 59 59 EOF 60 60 ``` 61 61 62 62 + Then, reload `sshd`: 63 63 + 64 64 + ``` 65 65 + sudo systemctl reload ssh 66 66 + ``` 67 67 + 62 68 Next, create the `git` user. We'll use the `git` user's home directory 63 69 to store repositories: 64 70 ··· 67 73 ``` 68 74 69 75 Create `/home/git/.knot.env` with the following, updating the values as 70 70 - necessary. The `KNOT_SERVER_SECRET` can be obtaind from the 71 71 - [/knots](/knots) page on Tangled. 76 76 + necessary. The `KNOT_SERVER_OWNER` should be set to your 77 77 + DID, you can find your DID in the [Settings](https://tangled.sh/settings) page. 72 78 73 79 ``` 74 80 KNOT_REPO_SCAN_PATH=/home/git 75 81 KNOT_SERVER_HOSTNAME=knot.example.com 76 82 APPVIEW_ENDPOINT=https://tangled.sh 77 77 - KNOT_SERVER_SECRET=secret 83 83 + KNOT_SERVER_OWNER=did:plc:foobar 78 84 KNOT_SERVER_INTERNAL_LISTEN_ADDR=127.0.0.1:5444 79 85 KNOT_SERVER_LISTEN_ADDR=127.0.0.1:5555 80 86 ``` ··· 89 95 systemctl start knotserver 90 96 ``` 91 97 92 92 - The last step is to configure a reverse proxy like Nginx or Caddy to front yourself 98 98 + The last step is to configure a reverse proxy like Nginx or Caddy to front your 93 99 knot. Here's an example configuration for Nginx: 94 100 95 101 ``` ··· 122 128 Remember to use Let's Encrypt or similar to procure a certificate for your 123 129 knot domain. 124 130 125 125 - You should now have a running knot server! You can finalize your registration by hitting the 126 126 - `initialize` button on the [/knots](/knots) page. 131 131 + You should now have a running knot server! You can finalize 132 132 + your registration by hitting the `verify` button on the 133 133 + [/knots](https://tangled.sh/knots) page. This simply creates 134 134 + a record on your PDS to announce the existence of the knot. 127 135 128 136 ### custom paths 129 137 ··· 191 199 ``` 192 200 193 201 Make sure to restart your SSH server! 202 202 + 203 203 + #### MOTD (message of the day) 204 204 + 205 205 + To configure the MOTD used ("Welcome to this knot!" by default), edit the 206 206 + `/home/git/motd` file: 207 207 + 208 208 + ``` 209 209 + printf "Hi from this knot!\n" > /home/git/motd 210 210 + ``` 211 211 + 212 212 + Note that you should add a newline at the end if setting a non-empty message 213 213 + since the knot won't do this for you.

+60

docs/migrations.md

··· 1 1 + # Migrations 2 2 + 3 3 + This document is laid out in reverse-chronological order. 4 4 + Newer migration guides are listed first, and older guides 5 5 + are further down the page. 6 6 + 7 7 + ## Upgrading from v1.8.x 8 8 + 9 9 + After v1.8.2, the HTTP API for knot and spindles have been 10 10 + deprecated and replaced with XRPC. Repositories on outdated 11 11 + knots will not be viewable from the appview. Upgrading is 12 12 + straightforward however. 13 13 + 14 14 + For knots: 15 15 + 16 16 + - Upgrade to latest tag (v1.9.0 or above) 17 17 + - Head to the [knot dashboard](https://tangled.sh/knots) and 18 18 + hit the "retry" button to verify your knot 19 19 + 20 20 + For spindles: 21 21 + 22 22 + - Upgrade to latest tag (v1.9.0 or above) 23 23 + - Head to the [spindle 24 24 + dashboard](https://tangled.sh/spindles) and hit the 25 25 + "retry" button to verify your spindle 26 26 + 27 27 + ## Upgrading from v1.7.x 28 28 + 29 29 + After v1.7.0, knot secrets have been deprecated. You no 30 30 + longer need a secret from the appview to run a knot. All 31 31 + authorized commands to knots are managed via [Inter-Service 32 32 + Authentication](https://atproto.com/specs/xrpc#inter-service-authentication-jwt). 33 33 + Knots will be read-only until upgraded. 34 34 + 35 35 + Upgrading is quite easy, in essence: 36 36 + 37 37 + - `KNOT_SERVER_SECRET` is no more, you can remove this 38 38 + environment variable entirely 39 39 + - `KNOT_SERVER_OWNER` is now required on boot, set this to 40 40 + your DID. You can find your DID in the 41 41 + [settings](https://tangled.sh/settings) page. 42 42 + - Restart your knot once you have replaced the environment 43 43 + variable 44 44 + - Head to the [knot dashboard](https://tangled.sh/knots) and 45 45 + hit the "retry" button to verify your knot. This simply 46 46 + writes a `sh.tangled.knot` record to your PDS. 47 47 + 48 48 + If you use the nix module, simply bump the flake to the 49 49 + latest revision, and change your config block like so: 50 50 + 51 51 + ```diff 52 52 + services.tangled-knot = { 53 53 + enable = true; 54 54 + server = { 55 55 + - secretFile = /path/to/secret; 56 56 + + owner = "did:plc:foo"; 57 57 + }; 58 58 + }; 59 59 + ``` 60 60 +

+193 -38

docs/spindle/openbao.md

··· 1 1 # spindle secrets with openbao 2 2 3 3 This document covers setting up Spindle to use OpenBao for secrets 4 4 - management instead of the default SQLite backend. 4 4 + management via OpenBao Proxy instead of the default SQLite backend. 5 5 + 6 6 + ## overview 7 7 + 8 8 + Spindle now uses OpenBao Proxy for secrets management. The proxy handles 9 9 + authentication automatically using AppRole credentials, while Spindle 10 10 + connects to the local proxy instead of directly to the OpenBao server. 11 11 + 12 12 + This approach provides better security, automatic token renewal, and 13 13 + simplified application code. 5 14 6 15 ## installation 7 16 8 17 Install OpenBao from nixpkgs: 9 18 10 19 ```bash 11 11 - nix-env -iA nixpkgs.openbao 20 20 + nix shell nixpkgs#openbao # for a local server 12 21 ``` 13 22 14 14 - ## local development setup 23 23 + ## setup 24 24 + 25 25 + The setup process can is documented for both local development and production. 26 26 + 27 27 + ### local development 15 28 16 29 Start OpenBao in dev mode: 17 30 18 31 ```bash 19 19 - bao server -dev 32 32 + bao server -dev -dev-root-token-id="root" -dev-listen-address=127.0.0.1:8201 20 33 ``` 21 34 22 22 - This starts OpenBao on `http://localhost:8200` with a root token. Save 23 23 - the root token from the output -- you'll need it. 35 35 + This starts OpenBao on `http://localhost:8201` with a root token. 24 36 25 37 Set up environment for bao CLI: 26 38 27 39 ```bash 28 40 export BAO_ADDR=http://localhost:8200 29 29 - export BAO_TOKEN=hvs.your-root-token-here 41 41 + export BAO_TOKEN=root 30 42 ``` 31 43 44 44 + ### production 45 45 + 46 46 + You would typically use a systemd service with a configuration file. Refer to 47 47 + [@tangled.sh/infra](https://tangled.sh/@tangled.sh/infra) for how this can be 48 48 + achieved using Nix. 49 49 + 50 50 + Then, initialize the bao server: 51 51 + ```bash 52 52 + bao operator init -key-shares=1 -key-threshold=1 53 53 + ``` 54 54 + 55 55 + This will print out an unseal key and a root key. Save them somewhere (like a password manager). Then unseal the vault to begin setting it up: 56 56 + ```bash 57 57 + bao operator unseal <unseal_key> 58 58 + ``` 59 59 + 60 60 + All steps below remain the same across both dev and production setups. 61 61 + 62 62 + ### configure openbao server 63 63 + 32 64 Create the spindle KV mount: 33 65 34 66 ```bash 35 67 bao secrets enable -path=spindle -version=2 kv 36 68 ``` 37 69 38 38 - Set up AppRole authentication: 70 70 + Set up AppRole authentication and policy: 39 71 40 72 Create a policy file `spindle-policy.hcl`: 41 73 42 74 ```hcl 75 75 + # Full access to spindle KV v2 data 43 76 path "spindle/data/*" { 44 44 - capabilities = ["create", "read", "update", "delete", "list"] 77 77 + capabilities = ["create", "read", "update", "delete"] 45 78 } 46 79 80 80 + # Access to metadata for listing and management 47 81 path "spindle/metadata/*" { 48 48 - capabilities = ["list", "read", "delete"] 82 82 + capabilities = ["list", "read", "delete", "update"] 49 83 } 50 84 51 51 - path "spindle/*" { 85 85 + # Allow listing at root level 86 86 + path "spindle/" { 52 87 capabilities = ["list"] 53 88 } 89 89 + 90 90 + # Required for connection testing and health checks 91 91 + path "auth/token/lookup-self" { 92 92 + capabilities = ["read"] 93 93 + } 54 94 ``` 55 95 56 96 Apply the policy and create an AppRole: ··· 61 101 bao write auth/approle/role/spindle \ 62 102 token_policies="spindle-policy" \ 63 103 token_ttl=1h \ 64 64 - token_max_ttl=4h 104 104 + token_max_ttl=4h \ 105 105 + bind_secret_id=true \ 106 106 + secret_id_ttl=0 \ 107 107 + secret_id_num_uses=0 65 108 ``` 66 109 67 110 Get the credentials: 68 111 69 112 ```bash 70 70 - bao read auth/approle/role/spindle/role-id 71 71 - bao write -f auth/approle/role/spindle/secret-id 113 113 + # Get role ID (static) 114 114 + ROLE_ID=$(bao read -field=role_id auth/approle/role/spindle/role-id) 115 115 + 116 116 + # Generate secret ID 117 117 + SECRET_ID=$(bao write -f -field=secret_id auth/approle/role/spindle/secret-id) 118 118 + 119 119 + echo "Role ID: $ROLE_ID" 120 120 + echo "Secret ID: $SECRET_ID" 121 121 + ``` 122 122 + 123 123 + ### create proxy configuration 124 124 + 125 125 + Create the credential files: 126 126 + 127 127 + ```bash 128 128 + # Create directory for OpenBao files 129 129 + mkdir -p /tmp/openbao 130 130 + 131 131 + # Save credentials 132 132 + echo "$ROLE_ID" > /tmp/openbao/role-id 133 133 + echo "$SECRET_ID" > /tmp/openbao/secret-id 134 134 + chmod 600 /tmp/openbao/role-id /tmp/openbao/secret-id 135 135 + ``` 136 136 + 137 137 + Create a proxy configuration file `/tmp/openbao/proxy.hcl`: 138 138 + 139 139 + ```hcl 140 140 + # OpenBao server connection 141 141 + vault { 142 142 + address = "http://localhost:8200" 143 143 + } 144 144 + 145 145 + # Auto-Auth using AppRole 146 146 + auto_auth { 147 147 + method "approle" { 148 148 + mount_path = "auth/approle" 149 149 + config = { 150 150 + role_id_file_path = "/tmp/openbao/role-id" 151 151 + secret_id_file_path = "/tmp/openbao/secret-id" 152 152 + } 153 153 + } 154 154 + 155 155 + # Optional: write token to file for debugging 156 156 + sink "file" { 157 157 + config = { 158 158 + path = "/tmp/openbao/token" 159 159 + mode = 0640 160 160 + } 161 161 + } 162 162 + } 163 163 + 164 164 + # Proxy listener for Spindle 165 165 + listener "tcp" { 166 166 + address = "127.0.0.1:8201" 167 167 + tls_disable = true 168 168 + } 169 169 + 170 170 + # Enable API proxy with auto-auth token 171 171 + api_proxy { 172 172 + use_auto_auth_token = true 173 173 + } 174 174 + 175 175 + # Enable response caching 176 176 + cache { 177 177 + use_auto_auth_token = true 178 178 + } 179 179 + 180 180 + # Logging 181 181 + log_level = "info" 72 182 ``` 73 183 74 74 - Configure Spindle: 184 184 + ### start the proxy 185 185 + 186 186 + Start OpenBao Proxy: 187 187 + 188 188 + ```bash 189 189 + bao proxy -config=/tmp/openbao/proxy.hcl 190 190 + ``` 191 191 + 192 192 + The proxy will authenticate with OpenBao and start listening on 193 193 + `127.0.0.1:8201`. 194 194 + 195 195 + ### configure spindle 75 196 76 197 Set these environment variables for Spindle: 77 198 78 199 ```bash 79 200 export SPINDLE_SERVER_SECRETS_PROVIDER=openbao 80 80 - export SPINDLE_SERVER_SECRETS_OPENBAO_ADDR=http://localhost:8200 81 81 - export SPINDLE_SERVER_SECRETS_OPENBAO_ROLE_ID=your-role-id-from-above 82 82 - export SPINDLE_SERVER_SECRETS_OPENBAO_SECRET_ID=your-secret-id-from-above 201 201 + export SPINDLE_SERVER_SECRETS_OPENBAO_PROXY_ADDR=http://127.0.0.1:8201 83 202 export SPINDLE_SERVER_SECRETS_OPENBAO_MOUNT=spindle 84 203 ``` 85 204 86 205 Start Spindle: 87 206 88 88 - Spindle will now use OpenBao for secrets storage with automatic token 89 89 - renewal. 207 207 + Spindle will now connect to the local proxy, which handles all 208 208 + authentication automatically. 209 209 + 210 210 + ## production setup for proxy 211 211 + 212 212 + For production, you'll want to run the proxy as a service: 213 213 + 214 214 + Place your production configuration in `/etc/openbao/proxy.hcl` with 215 215 + proper TLS settings for the vault connection. 90 216 91 217 ## verifying setup 92 218 93 93 - List all secrets: 219 219 + Test the proxy directly: 94 220 95 221 ```bash 96 96 - bao kv list spindle/ 222 222 + # Check proxy health 223 223 + curl -H "X-Vault-Request: true" http://127.0.0.1:8201/v1/sys/health 224 224 + 225 225 + # Test token lookup through proxy 226 226 + curl -H "X-Vault-Request: true" http://127.0.0.1:8201/v1/auth/token/lookup-self 97 227 ``` 98 228 99 99 - Add a test secret via Spindle API, then check it exists: 229 229 + Test OpenBao operations through the server: 100 230 101 231 ```bash 232 232 + # List all secrets 233 233 + bao kv list spindle/ 234 234 + 235 235 + # Add a test secret via Spindle API, then check it exists 102 236 bao kv list spindle/repos/ 103 103 - ``` 104 237 105 105 - Get a specific secret: 106 106 - 107 107 - ```bash 238 238 + # Get a specific secret 108 239 bao kv get spindle/repos/your_repo_path/SECRET_NAME 109 240 ``` 110 241 111 242 ## how it works 112 243 244 244 + - Spindle connects to OpenBao Proxy on localhost (typically port 8200 or 8201) 245 245 + - The proxy authenticates with OpenBao using AppRole credentials 246 246 + - All Spindle requests go through the proxy, which injects authentication tokens 113 247 - Secrets are stored at `spindle/repos/{sanitized_repo_path}/{secret_key}` 114 114 - - Each repository gets its own namespace 115 115 - - Repository paths like `at://did:plc:alice/myrepo` become 116 116 - `at_did_plc_alice_myrepo` 117 117 - - The system automatically handles token renewal using AppRole 118 118 - authentication 119 119 - - On shutdown, Spindle cleanly stops the token renewal process 248 248 + - Repository paths like `did:plc:alice/myrepo` become `did_plc_alice_myrepo` 249 249 + - The proxy handles all token renewal automatically 250 250 + - Spindle no longer manages tokens or authentication directly 120 251 121 252 ## troubleshooting 122 253 123 123 - **403 errors**: Check that your BAO_TOKEN is set and the spindle mount 124 124 - exists 254 254 + **Connection refused**: Check that the OpenBao Proxy is running and 255 255 + listening on the configured address. 256 256 + 257 257 + **403 errors**: Verify the AppRole credentials are correct and the policy 258 258 + has the necessary permissions. 125 259 126 260 **404 route errors**: The spindle KV mount probably doesn't exist - run 127 127 - the mount creation step again 261 261 + the mount creation step again. 128 262 129 129 - **Token expired**: The AppRole system should handle this automatically, 130 130 - but you can check token status with `bao token lookup` 263 263 + **Proxy authentication failures**: Check the proxy logs and verify the 264 264 + role-id and secret-id files are readable and contain valid credentials. 265 265 + 266 266 + **Secret not found after writing**: This can indicate policy permission 267 267 + issues. Verify the policy includes both `spindle/data/*` and 268 268 + `spindle/metadata/*` paths with appropriate capabilities. 269 269 + 270 270 + Check proxy logs: 271 271 + 272 272 + ```bash 273 273 + # If running as systemd service 274 274 + journalctl -u openbao-proxy -f 275 275 + 276 276 + # If running directly, check the console output 277 277 + ``` 278 278 + 279 279 + Test AppRole authentication manually: 280 280 + 281 281 + ```bash 282 282 + bao write auth/approle/login \ 283 283 + role_id="$(cat /tmp/openbao/role-id)" \ 284 284 + secret_id="$(cat /tmp/openbao/secret-id)" 285 285 + ```

+140 -41

docs/spindle/pipeline.md

··· 1 1 - # spindle pipeline manifest 1 1 + # spindle pipelines 2 2 + 3 3 + Spindle workflows allow you to write CI/CD pipelines in a simple format. They're located in the `.tangled/workflows` directory at the root of your repository, and are defined using YAML. 4 4 + 5 5 + The fields are: 2 6 3 3 - Spindle pipelines are defined under the `.tangled/workflows` directory in a 4 4 - repo. Generally: 7 7 + - [Trigger](#trigger): A **required** field that defines when a workflow should be triggered. 8 8 + - [Engine](#engine): A **required** field that defines which engine a workflow should run on. 9 9 + - [Clone options](#clone-options): An **optional** field that defines how the repository should be cloned. 10 10 + - [Dependencies](#dependencies): An **optional** field that allows you to list dependencies you may need. 11 11 + - [Environment](#environment): An **optional** field that allows you to define environment variables. 12 12 + - [Steps](#steps): An **optional** field that allows you to define what steps should run in the workflow. 5 13 6 6 - * Pipelines are defined in YAML. 7 7 - * Dependencies can be specified from 8 8 - [Nixpkgs](https://search.nixos.org) or custom registries. 9 9 - * Environment variables can be set globally or per-step. 14 14 + ## Trigger 10 15 11 11 - Here's an example that uses all fields: 16 16 + The first thing to add to a workflow is the trigger, which defines when a workflow runs. This is defined using a `when` field, which takes in a list of conditions. Each condition has the following fields: 17 17 + 18 18 + - `event`: This is a **required** field that defines when your workflow should run. It's a list that can take one or more of the following values: 19 19 + - `push`: The workflow should run every time a commit is pushed to the repository. 20 20 + - `pull_request`: The workflow should run every time a pull request is made or updated. 21 21 + - `manual`: The workflow can be triggered manually. 22 22 + - `branch`: This is a **required** field that defines which branches the workflow should run for. If used with the `push` event, commits to the branch(es) listed here will trigger the workflow. If used with the `pull_request` event, updates to pull requests targeting the branch(es) listed here will trigger the workflow. This field has no effect with the `manual` event. 23 23 + 24 24 + For example, if you'd like define a workflow that runs when commits are pushed to the `main` and `develop` branches, or when pull requests that target the `main` branch are updated, or manually, you can do so with: 12 25 13 26 ```yaml 14 14 - # build_and_test.yaml 15 27 when: 16 16 - - event: ["push", "pull_request"] 28 28 + - event: ["push", "manual"] 17 29 branch: ["main", "develop"] 18 18 - - event: ["manual"] 30 30 + - event: ["pull_request"] 31 31 + branch: ["main"] 32 32 + ``` 33 33 + 34 34 + ## Engine 35 35 + 36 36 + Next is the engine on which the workflow should run, defined using the **required** `engine` field. The currently supported engines are: 37 37 + 38 38 + - `nixery`: This uses an instance of [Nixery](https://nixery.dev) to run steps, which allows you to add [dependencies](#dependencies) from [Nixpkgs](https://github.com/NixOS/nixpkgs). You can search for packages on https://search.nixos.org, and there's a pretty good chance the package(s) you're looking for will be there. 39 39 + 40 40 + Example: 41 41 + 42 42 + ```yaml 43 43 + engine: "nixery" 44 44 + ``` 45 45 + 46 46 + ## Clone options 47 47 + 48 48 + When a workflow starts, the first step is to clone the repository. You can customize this behavior using the **optional** `clone` field. It has the following fields: 49 49 + 50 50 + - `skip`: Setting this to `true` will skip cloning the repository. This can be useful if your workflow is doing something that doesn't require anything from the repository itself. This is `false` by default. 51 51 + - `depth`: This sets the number of commits, or the "clone depth", to fetch from the repository. For example, if you set this to 2, the last 2 commits will be fetched. By default, the depth is set to 1, meaning only the most recent commit will be fetched, which is the commit that triggered the workflow. 52 52 + - `submodules`: If you use [git submodules](https://git-scm.com/book/en/v2/Git-Tools-Submodules) in your repository, setting this field to `true` will recursively fetch all submodules. This is `false` by default. 53 53 + 54 54 + The default settings are: 55 55 + 56 56 + ```yaml 57 57 + clone: 58 58 + skip: false 59 59 + depth: 1 60 60 + submodules: false 61 61 + ``` 62 62 + 63 63 + ## Dependencies 64 64 + 65 65 + Usually when you're running a workflow, you'll need additional dependencies. The `dependencies` field lets you define which dependencies to get, and from where. It's a key-value map, with the key being the registry to fetch dependencies from, and the value being the list of dependencies to fetch. 66 66 + 67 67 + Say you want to fetch Node.js and Go from `nixpkgs`, and a package called `my_pkg` you've made from your own registry at your repository at `https://tangled.sh/@example.com/my_pkg`. You can define those dependencies like so: 19 68 69 69 + ```yaml 20 70 dependencies: 21 21 - ## from nixpkgs 71 71 + # nixpkgs 22 72 nixpkgs: 23 73 - nodejs 24 24 - ## custom registry 25 25 - git+https://tangled.sh/@oppi.li/statix: 26 26 - - statix 74 74 + - go 75 75 + # custom registry 76 76 + git+https://tangled.sh/@example.com/my_pkg: 77 77 + - my_pkg 78 78 + ``` 79 79 + 80 80 + Now these dependencies are available to use in your workflow! 81 81 + 82 82 + ## Environment 83 83 + 84 84 + The `environment` field allows you define environment variables that will be available throughout the entire workflow. **Do not put secrets here, these environment variables are visible to anyone viewing the repository. You can add secrets for pipelines in your repository's settings.** 85 85 + 86 86 + Example: 87 87 + 88 88 + ```yaml 89 89 + environment: 90 90 + GOOS: "linux" 91 91 + GOARCH: "arm64" 92 92 + NODE_ENV: "production" 93 93 + MY_ENV_VAR: "MY_ENV_VALUE" 94 94 + ``` 27 95 28 28 - steps: 29 29 - - name: "Install dependencies" 30 30 - command: "npm install" 31 31 - environment: 32 32 - NODE_ENV: "development" 33 33 - CI: "true" 96 96 + ## Steps 97 97 + 98 98 + The `steps` field allows you to define what steps should run in the workflow. It's a list of step objects, each with the following fields: 99 99 + 100 100 + - `name`: This field allows you to give your step a name. This name is visible in your workflow runs, and is used to describe what the step is doing. 101 101 + - `command`: This field allows you to define a command to run in that step. The step is run in a Bash shell, and the logs from the command will be visible in the pipelines page on the Tangled website. The [dependencies](#dependencies) you added will be available to use here. 102 102 + - `environment`: Similar to the global [environment](#environment) config, this **optional** field is a key-value map that allows you to set environment variables for the step. **Do not put secrets here, these environment variables are visible to anyone viewing the repository. You can add secrets for pipelines in your repository's settings.** 34 103 35 35 - - name: "Run linter" 36 36 - command: "npm run lint" 104 104 + Example: 37 105 38 38 - - name: "Run tests" 39 39 - command: "npm test" 106 106 + ```yaml 107 107 + steps: 108 108 + - name: "Build backend" 109 109 + command: "go build" 40 110 environment: 41 41 - NODE_ENV: "test" 42 42 - JEST_WORKERS: "2" 43 43 - 44 44 - - name: "Build application" 111 111 + GOOS: "darwin" 112 112 + GOARCH: "arm64" 113 113 + - name: "Build frontend" 45 114 command: "npm run build" 46 115 environment: 47 116 NODE_ENV: "production" 117 117 + ``` 48 118 49 49 - environment: 50 50 - BUILD_NUMBER: "123" 51 51 - GIT_BRANCH: "main" 119 119 + ## Complete workflow 52 120 53 53 - ## current repository is cloned and checked out at the target ref 54 54 - ## by default. 121 121 + ```yaml 122 122 + # .tangled/workflows/build.yml 123 123 + 124 124 + when: 125 125 + - event: ["push", "manual"] 126 126 + branch: ["main", "develop"] 127 127 + - event: ["pull_request"] 128 128 + branch: ["main"] 129 129 + 130 130 + engine: "nixery" 131 131 + 132 132 + # using the default values 55 133 clone: 56 134 skip: false 57 57 - depth: 50 58 58 - submodules: true 59 59 - ``` 135 135 + depth: 1 136 136 + submodules: false 137 137 + 138 138 + dependencies: 139 139 + # nixpkgs 140 140 + nixpkgs: 141 141 + - nodejs 142 142 + - go 143 143 + # custom registry 144 144 + git+https://tangled.sh/@example.com/my_pkg: 145 145 + - my_pkg 60 146 61 61 - ## git push options 147 147 + environment: 148 148 + GOOS: "linux" 149 149 + GOARCH: "arm64" 150 150 + NODE_ENV: "production" 151 151 + MY_ENV_VAR: "MY_ENV_VALUE" 62 152 63 63 - These are push options that can be used with the `--push-option (-o)` flag of git push: 153 153 + steps: 154 154 + - name: "Build backend" 155 155 + command: "go build" 156 156 + environment: 157 157 + GOOS: "darwin" 158 158 + GOARCH: "arm64" 159 159 + - name: "Build frontend" 160 160 + command: "npm run build" 161 161 + environment: 162 162 + NODE_ENV: "production" 163 163 + ``` 64 164 65 65 - - `verbose-ci`, `ci-verbose`: enables diagnostics reporting for the CI pipeline, allowing you to see any issues when you push. 66 66 - - `skip-ci`, `ci-skip`: skips triggering the CI pipeline. 165 165 + If you want another example of a workflow, you can look at the one [Tangled uses to build the project](https://tangled.sh/@tangled.sh/core/blob/master/.tangled/workflows/build.yml).

+1 -1

eventconsumer/cursor/sqlite.go

··· 21 21 } 22 22 23 23 func NewSQLiteStore(dbPath string, opts ...SqliteStoreOpt) (*SqliteStore, error) { 24 24 - db, err := sql.Open("sqlite3", dbPath) 24 24 + db, err := sql.Open("sqlite3", dbPath+"?_foreign_keys=1") 25 25 if err != nil { 26 26 return nil, fmt.Errorf("failed to open sqlite database: %w", err) 27 27 }

+20 -26

flake.lock

··· 1 1 { 2 2 "nodes": { 3 3 - "gitignore": { 4 4 - "inputs": { 5 5 - "nixpkgs": [ 6 6 - "nixpkgs" 7 7 - ] 8 8 - }, 3 3 + "flake-compat": { 4 4 + "flake": false, 9 5 "locked": { 10 10 - "lastModified": 1709087332, 11 11 - "narHash": "sha256-HG2cCnktfHsKV0s4XW83gU3F57gaTljL9KNSuG6bnQs=", 12 12 - "owner": "hercules-ci", 13 13 - "repo": "gitignore.nix", 14 14 - "rev": "637db329424fd7e46cf4185293b9cc8c88c95394", 15 15 - "type": "github" 6 6 + "lastModified": 1751685974, 7 7 + "narHash": "sha256-NKw96t+BgHIYzHUjkTK95FqYRVKB8DHpVhefWSz/kTw=", 8 8 + "rev": "549f2762aebeff29a2e5ece7a7dc0f955281a1d1", 9 9 + "type": "tarball", 10 10 + "url": "https://git.lix.systems/api/v1/repos/lix-project/flake-compat/archive/549f2762aebeff29a2e5ece7a7dc0f955281a1d1.tar.gz?rev=549f2762aebeff29a2e5ece7a7dc0f955281a1d1" 16 11 }, 17 12 "original": { 18 18 - "owner": "hercules-ci", 19 19 - "repo": "gitignore.nix", 20 20 - "type": "github" 13 13 + "type": "tarball", 14 14 + "url": "https://git.lix.systems/lix-project/flake-compat/archive/main.tar.gz" 21 15 } 22 16 }, 23 17 "flake-utils": { ··· 46 40 ] 47 41 }, 48 42 "locked": { 49 49 - "lastModified": 1751702058, 50 50 - "narHash": "sha256-/GTdqFzFw/Y9DSNAfzvzyCMlKjUyRKMPO+apIuaTU4A=", 43 43 + "lastModified": 1754078208, 44 44 + "narHash": "sha256-YVoIFDCDpYuU3riaDEJ3xiGdPOtsx4sR5eTzHTytPV8=", 51 45 "owner": "nix-community", 52 46 "repo": "gomod2nix", 53 53 - "rev": "664ad7a2df4623037e315e4094346bff5c44e9ee", 47 47 + "rev": "7f963246a71626c7fc70b431a315c4388a0c95cf", 54 48 "type": "github" 55 49 }, 56 50 "original": { ··· 99 93 "indigo": { 100 94 "flake": false, 101 95 "locked": { 102 102 - "lastModified": 1745333930, 103 103 - "narHash": "sha256-83fIHqDE+dfnZ88HaNuwfKFO+R0RKAM1WxMfNh/Matk=", 96 96 + "lastModified": 1753693716, 97 97 + "narHash": "sha256-DMIKnCJRODQXEHUxA+7mLzRALmnZhkkbHlFT2rCQYrE=", 104 98 "owner": "oppiliappan", 105 99 "repo": "indigo", 106 106 - "rev": "e4e59280737b8676611fc077a228d47b3e8e9491", 100 100 + "rev": "5f170569da9360f57add450a278d73538092d8ca", 107 101 "type": "github" 108 102 }, 109 103 "original": { ··· 128 122 "lucide-src": { 129 123 "flake": false, 130 124 "locked": { 131 131 - "lastModified": 1742302029, 132 132 - "narHash": "sha256-OyPVtpnC4/AAmPq84Wt1r1Gcs48d9KG+UBCtZK87e9k=", 125 125 + "lastModified": 1754044466, 126 126 + "narHash": "sha256-+exBR2OToB1iv7ZQI2S4B0lXA/QRvC9n6U99UxGpJGs=", 133 127 "type": "tarball", 134 134 - "url": "https://github.com/lucide-icons/lucide/releases/download/0.483.0/lucide-icons-0.483.0.zip" 128 128 + "url": "https://github.com/lucide-icons/lucide/releases/download/0.536.0/lucide-icons-0.536.0.zip" 135 129 }, 136 130 "original": { 137 131 "type": "tarball", 138 138 - "url": "https://github.com/lucide-icons/lucide/releases/download/0.483.0/lucide-icons-0.483.0.zip" 132 132 + "url": "https://github.com/lucide-icons/lucide/releases/download/0.536.0/lucide-icons-0.536.0.zip" 139 133 } 140 134 }, 141 135 "nixpkgs": { ··· 156 150 }, 157 151 "root": { 158 152 "inputs": { 159 159 - "gitignore": "gitignore", 153 153 + "flake-compat": "flake-compat", 160 154 "gomod2nix": "gomod2nix", 161 155 "htmx-src": "htmx-src", 162 156 "htmx-ws-src": "htmx-ws-src",

+110 -30

flake.nix

··· 7 7 url = "github:nix-community/gomod2nix"; 8 8 inputs.nixpkgs.follows = "nixpkgs"; 9 9 }; 10 10 + flake-compat = { 11 11 + url = "https://git.lix.systems/lix-project/flake-compat/archive/main.tar.gz"; 12 12 + flake = false; 13 13 + }; 10 14 indigo = { 11 15 url = "github:oppiliappan/indigo"; 12 16 flake = false; ··· 22 26 flake = false; 23 27 }; 24 28 lucide-src = { 25 25 - url = "https://github.com/lucide-icons/lucide/releases/download/0.483.0/lucide-icons-0.483.0.zip"; 29 29 + url = "https://github.com/lucide-icons/lucide/releases/download/0.536.0/lucide-icons-0.536.0.zip"; 26 30 flake = false; 27 31 }; 28 32 inter-fonts-src = { ··· 37 41 url = "https://sqlite.org/2024/sqlite-amalgamation-3450100.zip"; 38 42 flake = false; 39 43 }; 40 40 - gitignore = { 41 41 - url = "github:hercules-ci/gitignore.nix"; 42 42 - inputs.nixpkgs.follows = "nixpkgs"; 43 43 - }; 44 44 }; 45 45 46 46 outputs = { ··· 51 51 htmx-src, 52 52 htmx-ws-src, 53 53 lucide-src, 54 54 - gitignore, 55 54 inter-fonts-src, 56 55 sqlite-lib-src, 57 56 ibm-plex-mono-src, 57 57 + ... 58 58 }: let 59 59 supportedSystems = ["x86_64-linux" "x86_64-darwin" "aarch64-linux" "aarch64-darwin"]; 60 60 forAllSystems = nixpkgs.lib.genAttrs supportedSystems; ··· 62 62 63 63 mkPackageSet = pkgs: 64 64 pkgs.lib.makeScope pkgs.newScope (self: { 65 65 - inherit (gitignore.lib) gitignoreSource; 65 65 + src = let 66 66 + fs = pkgs.lib.fileset; 67 67 + in 68 68 + fs.toSource { 69 69 + root = ./.; 70 70 + fileset = fs.difference (fs.intersection (fs.gitTracked ./.) (fs.fileFilter (file: !(file.hasExt "nix")) ./.)) (fs.maybeMissing ./.jj); 71 71 + }; 66 72 buildGoApplication = 67 73 (self.callPackage "${gomod2nix}/builder" { 68 74 gomod2nix = gomod2nix.legacyPackages.${pkgs.system}.gomod2nix; ··· 74 80 }; 75 81 genjwks = self.callPackage ./nix/pkgs/genjwks.nix {}; 76 82 lexgen = self.callPackage ./nix/pkgs/lexgen.nix {inherit indigo;}; 77 77 - appview = self.callPackage ./nix/pkgs/appview.nix { 83 83 + appview-static-files = self.callPackage ./nix/pkgs/appview-static-files.nix { 78 84 inherit htmx-src htmx-ws-src lucide-src inter-fonts-src ibm-plex-mono-src; 79 85 }; 86 86 + appview = self.callPackage ./nix/pkgs/appview.nix {}; 80 87 spindle = self.callPackage ./nix/pkgs/spindle.nix {}; 81 88 knot-unwrapped = self.callPackage ./nix/pkgs/knot-unwrapped.nix {}; 82 89 knot = self.callPackage ./nix/pkgs/knot.nix {}; ··· 92 99 staticPackages = mkPackageSet pkgs.pkgsStatic; 93 100 crossPackages = mkPackageSet pkgs.pkgsCross.gnu64.pkgsStatic; 94 101 in { 95 95 - appview = packages.appview; 96 96 - lexgen = packages.lexgen; 97 97 - knot = packages.knot; 98 98 - knot-unwrapped = packages.knot-unwrapped; 99 99 - spindle = packages.spindle; 100 100 - genjwks = packages.genjwks; 101 101 - sqlite-lib = packages.sqlite-lib; 102 102 + inherit (packages) appview appview-static-files lexgen genjwks spindle knot knot-unwrapped sqlite-lib; 102 103 103 104 pkgsStatic-appview = staticPackages.appview; 104 105 pkgsStatic-knot = staticPackages.knot; ··· 110 111 pkgsCross-gnu64-pkgsStatic-knot = crossPackages.knot; 111 112 pkgsCross-gnu64-pkgsStatic-knot-unwrapped = crossPackages.knot-unwrapped; 112 113 pkgsCross-gnu64-pkgsStatic-spindle = crossPackages.spindle; 114 114 + 115 115 + treefmt-wrapper = pkgs.treefmt.withConfig { 116 116 + settings.formatter = { 117 117 + alejandra = { 118 118 + command = pkgs.lib.getExe pkgs.alejandra; 119 119 + includes = ["*.nix"]; 120 120 + }; 121 121 + 122 122 + gofmt = { 123 123 + command = pkgs.lib.getExe' pkgs.go "gofmt"; 124 124 + options = ["-w"]; 125 125 + includes = ["*.go"]; 126 126 + }; 127 127 + 128 128 + # prettier = let 129 129 + # wrapper = pkgs.runCommandLocal "prettier-wrapper" {nativeBuildInputs = [pkgs.makeWrapper];} '' 130 130 + # makeWrapper ${pkgs.prettier}/bin/prettier "$out" --add-flags "--plugin=${pkgs.prettier-plugin-go-template}/lib/node_modules/prettier-plugin-go-template/lib/index.js" 131 131 + # ''; 132 132 + # in { 133 133 + # command = wrapper; 134 134 + # options = ["-w"]; 135 135 + # includes = ["*.html"]; 136 136 + # # causes Go template plugin errors: https://github.com/NiklasPor/prettier-plugin-go-template/issues/120 137 137 + # excludes = ["appview/pages/templates/layouts/repobase.html" "appview/pages/templates/repo/tags.html"]; 138 138 + # }; 139 139 + }; 140 140 + }; 113 141 }); 114 142 defaultPackage = forAllSystems (system: self.packages.${system}.appview); 115 115 - formatter = forAllSystems (system: nixpkgsFor.${system}.alejandra); 116 143 devShells = forAllSystems (system: let 117 144 pkgs = nixpkgsFor.${system}; 118 145 packages' = self.packages.${system}; ··· 124 151 nativeBuildInputs = [ 125 152 pkgs.go 126 153 pkgs.air 154 154 + pkgs.tilt 127 155 pkgs.gopls 128 156 pkgs.httpie 129 157 pkgs.litecli ··· 131 159 pkgs.tailwindcss 132 160 pkgs.nixos-shell 133 161 pkgs.redis 162 162 + pkgs.coreutils # for those of us who are on systems that use busybox (alpine) 134 163 packages'.lexgen 164 164 + packages'.treefmt-wrapper 135 165 ]; 136 166 shellHook = '' 137 137 - mkdir -p appview/pages/static/{fonts,icons} 138 138 - cp -f ${htmx-src} appview/pages/static/htmx.min.js 139 139 - cp -f ${htmx-ws-src} appview/pages/static/htmx-ext-ws.min.js 140 140 - cp -rf ${lucide-src}/*.svg appview/pages/static/icons/ 141 141 - cp -f ${inter-fonts-src}/web/InterVariable*.woff2 appview/pages/static/fonts/ 142 142 - cp -f ${inter-fonts-src}/web/InterDisplay*.woff2 appview/pages/static/fonts/ 143 143 - cp -f ${ibm-plex-mono-src}/fonts/complete/woff2/IBMPlexMono-Regular.woff2 appview/pages/static/fonts/ 167 167 + mkdir -p appview/pages/static 168 168 + # no preserve is needed because watch-tailwind will want to be able to overwrite 169 169 + cp -fr --no-preserve=ownership ${packages'.appview-static-files}/* appview/pages/static 144 170 export TANGLED_OAUTH_JWKS="$(${packages'.genjwks}/bin/genjwks)" 145 171 ''; 146 172 env.CGO_ENABLED = 1; ··· 148 174 }); 149 175 apps = forAllSystems (system: let 150 176 pkgs = nixpkgsFor."${system}"; 177 177 + packages' = self.packages.${system}; 151 178 air-watcher = name: arg: 152 179 pkgs.writeShellScriptBin "run" 153 180 '' ··· 161 188 tailwind-watcher = 162 189 pkgs.writeShellScriptBin "run" 163 190 '' 164 164 - ${pkgs.tailwindcss}/bin/tailwindcss -w -i input.css -o ./appview/pages/static/tw.css 191 191 + ${pkgs.tailwindcss}/bin/tailwindcss --watch=always -i input.css -o ./appview/pages/static/tw.css 165 192 ''; 166 193 in { 194 194 + fmt = { 195 195 + type = "app"; 196 196 + program = pkgs.lib.getExe packages'.treefmt-wrapper; 197 197 + }; 167 198 watch-appview = { 168 199 type = "app"; 169 169 - program = ''${air-watcher "appview" ""}/bin/run''; 200 200 + program = toString (pkgs.writeShellScript "watch-appview" '' 201 201 + echo "copying static files to appview/pages/static..." 202 202 + ${pkgs.coreutils}/bin/cp -fr --no-preserve=ownership ${packages'.appview-static-files}/* appview/pages/static 203 203 + ${air-watcher "appview" ""}/bin/run 204 204 + ''); 170 205 }; 171 206 watch-knot = { 172 207 type = "app"; ··· 176 211 type = "app"; 177 212 program = ''${tailwind-watcher}/bin/run''; 178 213 }; 179 179 - vm = { 214 214 + vm = let 215 215 + guestSystem = 216 216 + if pkgs.stdenv.hostPlatform.isAarch64 217 217 + then "aarch64-linux" 218 218 + else "x86_64-linux"; 219 219 + in { 180 220 type = "app"; 181 181 - program = toString (pkgs.writeShellScript "vm" '' 182 182 - ${pkgs.nixos-shell}/bin/nixos-shell --flake .#vm 183 183 - ''); 221 221 + program = 222 222 + (pkgs.writeShellApplication { 223 223 + name = "launch-vm"; 224 224 + text = '' 225 225 + rootDir=$(jj --ignore-working-copy root || git rev-parse --show-toplevel) || (echo "error: can't find repo root?"; exit 1) 226 226 + cd "$rootDir" 227 227 + 228 228 + mkdir -p nix/vm-data/{knot,repos,spindle,spindle-logs} 229 229 + 230 230 + export TANGLED_VM_DATA_DIR="$rootDir/nix/vm-data" 231 231 + exec ${pkgs.lib.getExe 232 232 + (import ./nix/vm.nix { 233 233 + inherit nixpkgs self; 234 234 + system = guestSystem; 235 235 + hostSystem = system; 236 236 + }).config.system.build.vm} 237 237 + ''; 238 238 + }) 239 239 + + /bin/launch-vm; 184 240 }; 185 241 gomod2nix = { 186 242 type = "app"; ··· 188 244 ${gomod2nix.legacyPackages.${system}.gomod2nix}/bin/gomod2nix generate --outdir ./nix 189 245 ''); 190 246 }; 247 247 + lexgen = { 248 248 + type = "app"; 249 249 + program = 250 250 + (pkgs.writeShellApplication { 251 251 + name = "lexgen"; 252 252 + text = '' 253 253 + if ! command -v lexgen > /dev/null; then 254 254 + echo "error: must be executed from devshell" 255 255 + exit 1 256 256 + fi 257 257 + 258 258 + rootDir=$(jj --ignore-working-copy root || git rev-parse --show-toplevel) || (echo "error: can't find repo root?"; exit 1) 259 259 + cd "$rootDir" 260 260 + 261 261 + rm -f api/tangled/* 262 262 + lexgen --build-file lexicon-build-config.json lexicons 263 263 + sed -i.bak 's/\tutil/\/\/\tutil/' api/tangled/* 264 264 + ${pkgs.gotools}/bin/goimports -w api/tangled/* 265 265 + go run cmd/gen.go 266 266 + lexgen --build-file lexicon-build-config.json lexicons 267 267 + rm api/tangled/*.bak 268 268 + ''; 269 269 + }) 270 270 + + /bin/lexgen; 271 271 + }; 191 272 }); 192 273 193 274 nixosModules.appview = { ··· 217 298 218 299 services.tangled-spindle.package = lib.mkDefault self.packages.${pkgs.system}.spindle; 219 300 }; 220 220 - nixosConfigurations.vm = import ./nix/vm.nix {inherit self nixpkgs;}; 221 301 }; 222 302 }

+7 -1

go.mod

··· 12 12 github.com/bluesky-social/jetstream v0.0.0-20241210005130-ea96859b93d1 13 13 github.com/carlmjohnson/versioninfo v0.22.5 14 14 github.com/casbin/casbin/v2 v2.103.0 15 15 + github.com/cloudflare/cloudflare-go v0.115.0 15 16 github.com/cyphar/filepath-securejoin v0.4.1 16 17 github.com/dgraph-io/ristretto v0.2.0 17 18 github.com/docker/docker v28.2.2+incompatible ··· 21 22 github.com/go-enry/go-enry/v2 v2.9.2 22 23 github.com/go-git/go-git/v5 v5.14.0 23 24 github.com/google/uuid v1.6.0 25 25 + github.com/gorilla/feeds v1.2.0 24 26 github.com/gorilla/sessions v1.4.0 25 27 github.com/gorilla/websocket v1.5.4-0.20250319132907-e064f32e3674 26 28 github.com/hiddeco/sshsig v0.2.0 ··· 37 39 github.com/stretchr/testify v1.10.0 38 40 github.com/urfave/cli/v3 v3.3.3 39 41 github.com/whyrusleeping/cbor-gen v0.3.1 40 40 - github.com/yuin/goldmark v1.4.13 42 42 + github.com/wyatt915/goldmark-treeblood v0.0.0-20250825231212-5dcbdb2f4b57 43 43 + github.com/yuin/goldmark v1.7.12 44 44 + github.com/yuin/goldmark-highlighting/v2 v2.0.0-20230729083705-37449abec8cc 41 45 golang.org/x/crypto v0.40.0 42 46 golang.org/x/net v0.42.0 43 47 golang.org/x/sync v0.16.0 ··· 85 89 github.com/golang-jwt/jwt/v5 v5.2.3 // indirect 86 90 github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 // indirect 87 91 github.com/golang/mock v1.6.0 // indirect 92 92 + github.com/google/go-querystring v1.1.0 // indirect 88 93 github.com/gorilla/css v1.0.1 // indirect 89 94 github.com/gorilla/securecookie v1.1.2 // indirect 90 95 github.com/hashicorp/errwrap v1.1.0 // indirect ··· 150 155 github.com/vmihailenco/go-tinylfu v0.2.2 // indirect 151 156 github.com/vmihailenco/msgpack/v5 v5.4.1 // indirect 152 157 github.com/vmihailenco/tagparser/v2 v2.0.0 // indirect 158 158 + github.com/wyatt915/treeblood v0.1.15 // indirect 153 159 gitlab.com/yawning/secp256k1-voi v0.0.0-20230925100816-f2616030848b // indirect 154 160 gitlab.com/yawning/tuplehash v0.0.0-20230713102510-df83abbf9a02 // indirect 155 161 go.opentelemetry.io/auto/sdk v1.1.0 // indirect

+17 -1

go.sum

··· 53 53 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU= 54 54 github.com/cloudflare/circl v1.6.2-0.20250618153321-aa837fd1539d h1:IiIprFGH6SqstblP0Y9NIo3eaUJGkI/YDOFVSL64Uq4= 55 55 github.com/cloudflare/circl v1.6.2-0.20250618153321-aa837fd1539d/go.mod h1:uddAzsPgqdMAYatqJ0lsjX1oECcQLIlRpzZh3pJrofs= 56 56 + github.com/cloudflare/cloudflare-go v0.115.0 h1:84/dxeeXweCc0PN5Cto44iTA8AkG1fyT11yPO5ZB7sM= 57 57 + github.com/cloudflare/cloudflare-go v0.115.0/go.mod h1:Ds6urDwn/TF2uIU24mu7H91xkKP8gSAHxQ44DSZgVmU= 56 58 github.com/containerd/errdefs v1.0.0 h1:tg5yIfIlQIrxYtu9ajqY42W3lpS19XqdxRQeEwYG8PI= 57 59 github.com/containerd/errdefs v1.0.0/go.mod h1:+YBYIdtsnF4Iw6nWZhJcqGSg/dwvV7tyJ/kCkyJ2k+M= 58 60 github.com/containerd/errdefs/pkg v0.3.0 h1:9IKJ06FvyNlexW690DXuQNx2KA2cUJXx151Xdx3ZPPE= ··· 77 79 github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f/go.mod h1:cuUVRXasLTGF7a8hSLbxyZXjz+1KgoB3wDUb6vlszIc= 78 80 github.com/distribution/reference v0.6.0 h1:0IXCQ5g4/QMHHkarYzh5l+u8T3t73zM5QvfrDyIgxBk= 79 81 github.com/distribution/reference v0.6.0/go.mod h1:BbU0aIcezP1/5jX/8MP0YiH4SdvB5Y4f/wlDRiLyi3E= 82 82 + github.com/dlclark/regexp2 v1.7.0/go.mod h1:DHkYz0B9wPfa6wondMfaivmHpzrQ3v9q8cnmRbL6yW8= 80 83 github.com/dlclark/regexp2 v1.11.5 h1:Q/sSnsKerHeCkc/jSTNq1oCm7KiVgUMZRDUoRu0JQZQ= 81 84 github.com/dlclark/regexp2 v1.11.5/go.mod h1:DHkYz0B9wPfa6wondMfaivmHpzrQ3v9q8cnmRbL6yW8= 82 85 github.com/docker/docker v28.2.2+incompatible h1:CjwRSksz8Yo4+RmQ339Dp/D2tGO5JxwYeqtMOEe0LDw= ··· 152 155 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= 153 156 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= 154 157 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= 158 158 + github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= 155 159 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= 156 160 github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY= 157 161 github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY= 158 162 github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= 159 163 github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU= 164 164 + github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8= 165 165 + github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU= 160 166 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0= 161 167 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg= 162 168 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE= ··· 168 174 github.com/gopherjs/gopherjs v0.0.0-20190430165422-3e4dfb77656c/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY= 169 175 github.com/gorilla/css v1.0.1 h1:ntNaBIghp6JmvWnxbZKANoLyuXTPZ4cAMlo6RyhlbO8= 170 176 github.com/gorilla/css v1.0.1/go.mod h1:BvnYkspnSzMmwRK+b8/xgNPLiIuNZr6vbZBTPQ2A3b0= 177 177 + github.com/gorilla/feeds v1.2.0 h1:O6pBiXJ5JHhPvqy53NsjKOThq+dNFm8+DFrxBEdzSCc= 178 178 + github.com/gorilla/feeds v1.2.0/go.mod h1:WMib8uJP3BbY+X8Szd1rA5Pzhdfh+HCCAYT2z7Fza6Y= 171 179 github.com/gorilla/securecookie v1.1.2 h1:YCIWL56dvtr73r6715mJs5ZvhtnY73hBvEF8kXD8ePA= 172 180 github.com/gorilla/securecookie v1.1.2/go.mod h1:NfCASbcHqRSY+3a8tlWJwsQap2VX5pwzwo4h3eOamfo= 173 181 github.com/gorilla/sessions v1.4.0 h1:kpIYOp/oi6MG/p5PgxApU8srsSw9tuFbt46Lt7auzqQ= ··· 418 426 github.com/warpfork/go-wish v0.0.0-20220906213052-39a1cc7a02d0/go.mod h1:x6AKhvSSexNrVSrViXSHUEbICjmGXhtgABaHIySUSGw= 419 427 github.com/whyrusleeping/cbor-gen v0.3.1 h1:82ioxmhEYut7LBVGhGq8xoRkXPLElVuh5mV67AFfdv0= 420 428 github.com/whyrusleeping/cbor-gen v0.3.1/go.mod h1:pM99HXyEbSQHcosHc0iW7YFmwnscr+t9Te4ibko05so= 429 429 + github.com/wyatt915/goldmark-treeblood v0.0.0-20250825231212-5dcbdb2f4b57 h1:UqtQdzLXnvdBdqn/go53qGyncw1wJ7Mq5SQdieM1/Ew= 430 430 + github.com/wyatt915/goldmark-treeblood v0.0.0-20250825231212-5dcbdb2f4b57/go.mod h1:BxSCWByWSRSuembL3cDG1IBUbkBoO/oW/6tF19aA4hs= 431 431 + github.com/wyatt915/treeblood v0.1.15 h1:3KZ3o2LpcKZAzOLqMoW9qeUzKEaKArKpbcPpTkNfQC8= 432 432 + github.com/wyatt915/treeblood v0.1.15/go.mod h1:i7+yhhmzdDP17/97pIsOSffw74EK/xk+qJ0029cSXUY= 421 433 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= 422 434 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= 423 435 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k= 424 436 github.com/yuin/goldmark v1.4.1/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k= 425 425 - github.com/yuin/goldmark v1.4.13 h1:fVcFKWvrslecOb/tg+Cc05dkeYx540o0FuFt3nUVDoE= 426 437 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= 438 438 + github.com/yuin/goldmark v1.4.15/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= 439 439 + github.com/yuin/goldmark v1.7.12 h1:YwGP/rrea2/CnCtUHgjuolG/PnMxdQtPMO5PvaE2/nY= 440 440 + github.com/yuin/goldmark v1.7.12/go.mod h1:ip/1k0VRfGynBgxOz0yCqHrbZXhcjxyuS66Brc7iBKg= 441 441 + github.com/yuin/goldmark-highlighting/v2 v2.0.0-20230729083705-37449abec8cc h1:+IAOyRda+RLrxa1WC7umKOZRsGq4QrFFMYApOeHzQwQ= 442 442 + github.com/yuin/goldmark-highlighting/v2 v2.0.0-20230729083705-37449abec8cc/go.mod h1:ovIvrum6DQJA4QsJSovrkC4saKHQVs7TvcaeO8AIl5I= 427 443 gitlab.com/yawning/secp256k1-voi v0.0.0-20230925100816-f2616030848b h1:CzigHMRySiX3drau9C6Q5CAbNIApmLdat5jPMqChvDA= 428 444 gitlab.com/yawning/secp256k1-voi v0.0.0-20230925100816-f2616030848b/go.mod h1:/y/V339mxv2sZmYYR64O07VuCpdNZqCTwO8ZcouTMI8= 429 445 gitlab.com/yawning/tuplehash v0.0.0-20230713102510-df83abbf9a02 h1:qwDnMxjkyLmAFgcfgTnfJrmYKWhHnci3GjDqcZp1M3Q=

+19 -3

guard/guard.go

··· 2 2 3 3 import ( 4 4 "context" 5 5 + "errors" 5 6 "fmt" 7 7 + "io" 6 8 "log/slog" 7 9 "net/http" 8 10 "net/url" ··· 43 45 Usage: "internal API endpoint", 44 46 Value: "http://localhost:5444", 45 47 }, 48 48 + &cli.StringFlag{ 49 49 + Name: "motd-file", 50 50 + Usage: "path to message of the day file", 51 51 + Value: "/home/git/motd", 52 52 + }, 46 53 }, 47 54 } 48 55 } ··· 54 61 gitDir := cmd.String("git-dir") 55 62 logPath := cmd.String("log-path") 56 63 endpoint := cmd.String("internal-api") 64 64 + motdFile := cmd.String("motd-file") 57 65 58 66 logFile, err := os.OpenFile(logPath, os.O_APPEND|os.O_CREATE|os.O_WRONLY, 0644) 59 67 if err != nil { ··· 149 157 "fullPath", fullPath, 150 158 "client", clientIP) 151 159 152 152 - if gitCommand == "git-upload-pack" { 153 153 - fmt.Fprintf(os.Stderr, "\x02%s\n", "Welcome to this knot!") 160 160 + var motdReader io.Reader 161 161 + if reader, err := os.Open(motdFile); err != nil { 162 162 + if !errors.Is(err, os.ErrNotExist) { 163 163 + l.Error("failed to read motd file", "error", err) 164 164 + } 165 165 + motdReader = strings.NewReader("Welcome to this knot!\n") 154 166 } else { 155 155 - fmt.Fprintf(os.Stderr, "%s\n", "Welcome to this knot!") 167 167 + motdReader = reader 168 168 + } 169 169 + if gitCommand == "git-upload-pack" { 170 170 + io.WriteString(os.Stderr, "\x02") 156 171 } 172 172 + io.Copy(os.Stderr, motdReader) 157 173 158 174 gitCmd := exec.Command(gitCommand, fullPath) 159 175 gitCmd.Stdout = os.Stdout

+86 -12

input.css

··· 13 13 @font-face { 14 14 font-family: "InterVariable"; 15 15 src: url("/static/fonts/InterVariable-Italic.woff2") format("woff2"); 16 16 - font-weight: 400; 16 16 + font-weight: normal; 17 17 font-style: italic; 18 18 font-display: swap; 19 19 } 20 20 21 21 @font-face { 22 22 font-family: "InterVariable"; 23 23 - src: url("/static/fonts/InterVariable.woff2") format("woff2"); 24 24 - font-weight: 600; 23 23 + src: url("/static/fonts/InterDisplay-Bold.woff2") format("woff2"); 24 24 + font-weight: bold; 25 25 font-style: normal; 26 26 font-display: swap; 27 27 } 28 28 29 29 @font-face { 30 30 + font-family: "InterVariable"; 31 31 + src: url("/static/fonts/InterDisplay-BoldItalic.woff2") format("woff2"); 32 32 + font-weight: bold; 33 33 + font-style: italic; 34 34 + font-display: swap; 35 35 + } 36 36 + 37 37 + @font-face { 30 38 font-family: "IBMPlexMono"; 31 39 src: url("/static/fonts/IBMPlexMono-Regular.woff2") format("woff2"); 32 40 font-weight: normal; 41 41 + font-style: normal; 42 42 + font-display: swap; 43 43 + } 44 44 + 45 45 + @font-face { 46 46 + font-family: "IBMPlexMono"; 47 47 + src: url("/static/fonts/IBMPlexMono-Italic.woff2") format("woff2"); 48 48 + font-weight: normal; 49 49 + font-style: italic; 50 50 + font-display: swap; 51 51 + } 52 52 + 53 53 + @font-face { 54 54 + font-family: "IBMPlexMono"; 55 55 + src: url("/static/fonts/IBMPlexMono-Bold.woff2") format("woff2"); 56 56 + font-weight: bold; 57 57 + font-style: normal; 58 58 + font-display: swap; 59 59 + } 60 60 + 61 61 + @font-face { 62 62 + font-family: "IBMPlexMono"; 63 63 + src: url("/static/fonts/IBMPlexMono-BoldItalic.woff2") format("woff2"); 64 64 + font-weight: bold; 33 65 font-style: italic; 34 66 font-display: swap; 35 67 } ··· 46 78 @supports (font-variation-settings: normal) { 47 79 html { 48 80 font-feature-settings: 49 49 - "ss01" 1, 50 81 "kern" 1, 51 82 "liga" 1, 52 83 "cv05" 1, ··· 59 90 } 60 91 61 92 label { 62 62 - @apply block mb-2 text-gray-900 text-sm font-bold py-2 uppercase dark:text-gray-100; 93 93 + @apply block text-gray-900 text-sm font-bold py-2 uppercase dark:text-gray-100; 63 94 } 64 95 input { 65 96 @apply border border-gray-400 block rounded bg-gray-50 focus:ring-black p-3 dark:bg-gray-800 dark:border-gray-600 dark:text-white dark:focus:ring-gray-400; ··· 70 101 details summary::-webkit-details-marker { 71 102 display: none; 72 103 } 104 104 + 105 105 + code { 106 106 + @apply font-mono rounded bg-gray-100 dark:bg-gray-700 text-black dark:text-white; 107 107 + } 73 108 } 74 109 75 110 @layer components { ··· 98 133 disabled:before:bg-green-400 dark:disabled:before:bg-green-600; 99 134 } 100 135 136 136 + .prose hr { 137 137 + @apply my-2; 138 138 + } 139 139 + 140 140 + .prose li:has(input) { 141 141 + @apply list-none; 142 142 + } 143 143 + 144 144 + .prose ul:has(input) { 145 145 + @apply pl-2; 146 146 + } 147 147 + 148 148 + .prose .heading .anchor { 149 149 + @apply no-underline mx-2 opacity-0; 150 150 + } 151 151 + 152 152 + .prose .heading:hover .anchor { 153 153 + @apply opacity-70; 154 154 + } 155 155 + 156 156 + .prose .heading .anchor:hover { 157 157 + @apply opacity-70; 158 158 + } 159 159 + 160 160 + .prose a.footnote-backref { 161 161 + @apply no-underline; 162 162 + } 163 163 + 164 164 + .prose li { 165 165 + @apply my-0 py-0; 166 166 + } 167 167 + 168 168 + .prose ul, .prose ol { 169 169 + @apply my-1 py-0; 170 170 + } 171 171 + 101 172 .prose img { 102 173 display: inline; 103 174 margin: 0; 104 175 vertical-align: middle; 105 176 } 177 177 + 178 178 + .prose input { 179 179 + @apply inline-block my-0 mb-1 mx-1; 180 180 + } 181 181 + 182 182 + .prose input[type="checkbox"] { 183 183 + @apply disabled:accent-blue-500 checked:accent-blue-500 disabled:checked:accent-blue-500; 184 184 + } 106 185 } 107 186 @layer utilities { 108 187 .error { ··· 122 201 /* PreWrapper */ 123 202 .chroma { 124 203 color: #4c4f69; 125 125 - background-color: #eff1f5; 126 204 } 127 205 /* Error */ 128 206 .chroma .err { ··· 150 228 } 151 229 /* LineHighlight */ 152 230 .chroma .hl { 153 153 - background-color: #bcc0cc; 231 231 + @apply bg-amber-400/30 dark:bg-amber-500/20; 154 232 } 233 233 + 155 234 /* LineNumbersTable */ 156 235 .chroma .lnt { 157 236 white-space: pre; ··· 459 538 /* PreWrapper */ 460 539 .chroma { 461 540 color: #cad3f5; 462 462 - background-color: #24273a; 463 541 } 464 542 /* Error */ 465 543 .chroma .err { ··· 787 865 text-decoration: underline; 788 866 } 789 867 } 790 790 - 791 791 - .chroma .line:has(.ln:target) { 792 792 - @apply bg-amber-400/30 dark:bg-amber-500/20; 793 793 - }

+19 -4

jetstream/jetstream.go

··· 52 52 j.mu.Unlock() 53 53 } 54 54 55 55 + func (j *JetstreamClient) RemoveDid(did string) { 56 56 + if did == "" { 57 57 + return 58 58 + } 59 59 + 60 60 + if j.logDids { 61 61 + j.l.Info("removing did from in-memory filter", "did", did) 62 62 + } 63 63 + j.mu.Lock() 64 64 + delete(j.wantedDids, did) 65 65 + j.mu.Unlock() 66 66 + } 67 67 + 55 68 type processor func(context.Context, *models.Event) error 56 69 57 70 func (j *JetstreamClient) withDidFilter(processFunc processor) processor { 58 58 - // empty filter => all dids allowed 59 59 - if len(j.wantedDids) == 0 { 60 60 - return processFunc 61 61 - } 62 71 // since this closure references j.WantedDids; it should auto-update 63 72 // existing instances of the closure when j.WantedDids is mutated 64 73 return func(ctx context.Context, evt *models.Event) error { 74 74 + 75 75 + // empty filter => all dids allowed 76 76 + if len(j.wantedDids) == 0 { 77 77 + return processFunc(ctx, evt) 78 78 + } 79 79 + 65 80 if _, ok := j.wantedDids[evt.Did]; ok { 66 81 return processFunc(ctx, evt) 67 82 } else {

-336

knotclient/signer.go

··· 1 1 - package knotclient 2 2 - 3 3 - import ( 4 4 - "bytes" 5 5 - "crypto/hmac" 6 6 - "crypto/sha256" 7 7 - "encoding/hex" 8 8 - "encoding/json" 9 9 - "fmt" 10 10 - "io" 11 11 - "log" 12 12 - "net/http" 13 13 - "net/url" 14 14 - "time" 15 15 - 16 16 - "tangled.sh/tangled.sh/core/types" 17 17 - ) 18 18 - 19 19 - type SignerTransport struct { 20 20 - Secret string 21 21 - } 22 22 - 23 23 - func (s SignerTransport) RoundTrip(req *http.Request) (*http.Response, error) { 24 24 - timestamp := time.Now().Format(time.RFC3339) 25 25 - mac := hmac.New(sha256.New, []byte(s.Secret)) 26 26 - message := req.Method + req.URL.Path + timestamp 27 27 - mac.Write([]byte(message)) 28 28 - signature := hex.EncodeToString(mac.Sum(nil)) 29 29 - req.Header.Set("X-Signature", signature) 30 30 - req.Header.Set("X-Timestamp", timestamp) 31 31 - return http.DefaultTransport.RoundTrip(req) 32 32 - } 33 33 - 34 34 - type SignedClient struct { 35 35 - Secret string 36 36 - Url *url.URL 37 37 - client *http.Client 38 38 - } 39 39 - 40 40 - func NewSignedClient(domain, secret string, dev bool) (*SignedClient, error) { 41 41 - client := &http.Client{ 42 42 - Timeout: 5 * time.Second, 43 43 - Transport: SignerTransport{ 44 44 - Secret: secret, 45 45 - }, 46 46 - } 47 47 - 48 48 - scheme := "https" 49 49 - if dev { 50 50 - scheme = "http" 51 51 - } 52 52 - url, err := url.Parse(fmt.Sprintf("%s://%s", scheme, domain)) 53 53 - if err != nil { 54 54 - return nil, err 55 55 - } 56 56 - 57 57 - signedClient := &SignedClient{ 58 58 - Secret: secret, 59 59 - client: client, 60 60 - Url: url, 61 61 - } 62 62 - 63 63 - return signedClient, nil 64 64 - } 65 65 - 66 66 - func (s *SignedClient) newRequest(method, endpoint string, body []byte) (*http.Request, error) { 67 67 - return http.NewRequest(method, s.Url.JoinPath(endpoint).String(), bytes.NewReader(body)) 68 68 - } 69 69 - 70 70 - func (s *SignedClient) Init(did string) (*http.Response, error) { 71 71 - const ( 72 72 - Method = "POST" 73 73 - Endpoint = "/init" 74 74 - ) 75 75 - 76 76 - body, _ := json.Marshal(map[string]any{ 77 77 - "did": did, 78 78 - }) 79 79 - 80 80 - req, err := s.newRequest(Method, Endpoint, body) 81 81 - if err != nil { 82 82 - return nil, err 83 83 - } 84 84 - 85 85 - return s.client.Do(req) 86 86 - } 87 87 - 88 88 - func (s *SignedClient) NewRepo(did, repoName, defaultBranch string) (*http.Response, error) { 89 89 - const ( 90 90 - Method = "PUT" 91 91 - Endpoint = "/repo/new" 92 92 - ) 93 93 - 94 94 - body, _ := json.Marshal(map[string]any{ 95 95 - "did": did, 96 96 - "name": repoName, 97 97 - "default_branch": defaultBranch, 98 98 - }) 99 99 - 100 100 - req, err := s.newRequest(Method, Endpoint, body) 101 101 - if err != nil { 102 102 - return nil, err 103 103 - } 104 104 - 105 105 - return s.client.Do(req) 106 106 - } 107 107 - 108 108 - func (s *SignedClient) RepoLanguages(ownerDid, repoName, ref string) (*types.RepoLanguageResponse, error) { 109 109 - const ( 110 110 - Method = "GET" 111 111 - ) 112 112 - endpoint := fmt.Sprintf("/%s/%s/languages/%s", ownerDid, repoName, url.PathEscape(ref)) 113 113 - 114 114 - req, err := s.newRequest(Method, endpoint, nil) 115 115 - if err != nil { 116 116 - return nil, err 117 117 - } 118 118 - 119 119 - resp, err := s.client.Do(req) 120 120 - if err != nil { 121 121 - return nil, err 122 122 - } 123 123 - 124 124 - var result types.RepoLanguageResponse 125 125 - if resp.StatusCode != http.StatusOK { 126 126 - log.Println("failed to calculate languages", resp.Status) 127 127 - return &types.RepoLanguageResponse{}, nil 128 128 - } 129 129 - 130 130 - body, err := io.ReadAll(resp.Body) 131 131 - if err != nil { 132 132 - return nil, err 133 133 - } 134 134 - 135 135 - err = json.Unmarshal(body, &result) 136 136 - if err != nil { 137 137 - return nil, err 138 138 - } 139 139 - 140 140 - return &result, nil 141 141 - } 142 142 - 143 143 - func (s *SignedClient) RepoForkAheadBehind(ownerDid, source, name, branch, hiddenRef string) (*http.Response, error) { 144 144 - const ( 145 145 - Method = "GET" 146 146 - ) 147 147 - endpoint := fmt.Sprintf("/repo/fork/sync/%s", url.PathEscape(branch)) 148 148 - 149 149 - body, _ := json.Marshal(map[string]any{ 150 150 - "did": ownerDid, 151 151 - "source": source, 152 152 - "name": name, 153 153 - "hiddenref": hiddenRef, 154 154 - }) 155 155 - 156 156 - req, err := s.newRequest(Method, endpoint, body) 157 157 - if err != nil { 158 158 - return nil, err 159 159 - } 160 160 - 161 161 - return s.client.Do(req) 162 162 - } 163 163 - 164 164 - func (s *SignedClient) SyncRepoFork(ownerDid, source, name, branch string) (*http.Response, error) { 165 165 - const ( 166 166 - Method = "POST" 167 167 - ) 168 168 - endpoint := fmt.Sprintf("/repo/fork/sync/%s", url.PathEscape(branch)) 169 169 - 170 170 - body, _ := json.Marshal(map[string]any{ 171 171 - "did": ownerDid, 172 172 - "source": source, 173 173 - "name": name, 174 174 - }) 175 175 - 176 176 - req, err := s.newRequest(Method, endpoint, body) 177 177 - if err != nil { 178 178 - return nil, err 179 179 - } 180 180 - 181 181 - return s.client.Do(req) 182 182 - } 183 183 - 184 184 - func (s *SignedClient) ForkRepo(ownerDid, source, name string) (*http.Response, error) { 185 185 - const ( 186 186 - Method = "POST" 187 187 - Endpoint = "/repo/fork" 188 188 - ) 189 189 - 190 190 - body, _ := json.Marshal(map[string]any{ 191 191 - "did": ownerDid, 192 192 - "source": source, 193 193 - "name": name, 194 194 - }) 195 195 - 196 196 - req, err := s.newRequest(Method, Endpoint, body) 197 197 - if err != nil { 198 198 - return nil, err 199 199 - } 200 200 - 201 201 - return s.client.Do(req) 202 202 - } 203 203 - 204 204 - func (s *SignedClient) RemoveRepo(did, repoName string) (*http.Response, error) { 205 205 - const ( 206 206 - Method = "DELETE" 207 207 - Endpoint = "/repo" 208 208 - ) 209 209 - 210 210 - body, _ := json.Marshal(map[string]any{ 211 211 - "did": did, 212 212 - "name": repoName, 213 213 - }) 214 214 - 215 215 - req, err := s.newRequest(Method, Endpoint, body) 216 216 - if err != nil { 217 217 - return nil, err 218 218 - } 219 219 - 220 220 - return s.client.Do(req) 221 221 - } 222 222 - 223 223 - func (s *SignedClient) AddMember(did string) (*http.Response, error) { 224 224 - const ( 225 225 - Method = "PUT" 226 226 - Endpoint = "/member/add" 227 227 - ) 228 228 - 229 229 - body, _ := json.Marshal(map[string]any{ 230 230 - "did": did, 231 231 - }) 232 232 - 233 233 - req, err := s.newRequest(Method, Endpoint, body) 234 234 - if err != nil { 235 235 - return nil, err 236 236 - } 237 237 - 238 238 - return s.client.Do(req) 239 239 - } 240 240 - 241 241 - func (s *SignedClient) SetDefaultBranch(ownerDid, repoName, branch string) (*http.Response, error) { 242 242 - const ( 243 243 - Method = "PUT" 244 244 - ) 245 245 - endpoint := fmt.Sprintf("/%s/%s/branches/default", ownerDid, repoName) 246 246 - 247 247 - body, _ := json.Marshal(map[string]any{ 248 248 - "branch": branch, 249 249 - }) 250 250 - 251 251 - req, err := s.newRequest(Method, endpoint, body) 252 252 - if err != nil { 253 253 - return nil, err 254 254 - } 255 255 - 256 256 - return s.client.Do(req) 257 257 - } 258 258 - 259 259 - func (s *SignedClient) AddCollaborator(ownerDid, repoName, memberDid string) (*http.Response, error) { 260 260 - const ( 261 261 - Method = "POST" 262 262 - ) 263 263 - endpoint := fmt.Sprintf("/%s/%s/collaborator/add", ownerDid, repoName) 264 264 - 265 265 - body, _ := json.Marshal(map[string]any{ 266 266 - "did": memberDid, 267 267 - }) 268 268 - 269 269 - req, err := s.newRequest(Method, endpoint, body) 270 270 - if err != nil { 271 271 - return nil, err 272 272 - } 273 273 - 274 274 - return s.client.Do(req) 275 275 - } 276 276 - 277 277 - func (s *SignedClient) Merge( 278 278 - patch []byte, 279 279 - ownerDid, targetRepo, branch, commitMessage, commitBody, authorName, authorEmail string, 280 280 - ) (*http.Response, error) { 281 281 - const ( 282 282 - Method = "POST" 283 283 - ) 284 284 - endpoint := fmt.Sprintf("/%s/%s/merge", ownerDid, targetRepo) 285 285 - 286 286 - mr := types.MergeRequest{ 287 287 - Branch: branch, 288 288 - CommitMessage: commitMessage, 289 289 - CommitBody: commitBody, 290 290 - AuthorName: authorName, 291 291 - AuthorEmail: authorEmail, 292 292 - Patch: string(patch), 293 293 - } 294 294 - 295 295 - body, _ := json.Marshal(mr) 296 296 - 297 297 - req, err := s.newRequest(Method, endpoint, body) 298 298 - if err != nil { 299 299 - return nil, err 300 300 - } 301 301 - 302 302 - return s.client.Do(req) 303 303 - } 304 304 - 305 305 - func (s *SignedClient) MergeCheck(patch []byte, ownerDid, targetRepo, branch string) (*http.Response, error) { 306 306 - const ( 307 307 - Method = "POST" 308 308 - ) 309 309 - endpoint := fmt.Sprintf("/%s/%s/merge/check", ownerDid, targetRepo) 310 310 - 311 311 - body, _ := json.Marshal(map[string]any{ 312 312 - "patch": string(patch), 313 313 - "branch": branch, 314 314 - }) 315 315 - 316 316 - req, err := s.newRequest(Method, endpoint, body) 317 317 - if err != nil { 318 318 - return nil, err 319 319 - } 320 320 - 321 321 - return s.client.Do(req) 322 322 - } 323 323 - 324 324 - func (s *SignedClient) NewHiddenRef(ownerDid, targetRepo, forkBranch, remoteBranch string) (*http.Response, error) { 325 325 - const ( 326 326 - Method = "POST" 327 327 - ) 328 328 - endpoint := fmt.Sprintf("/%s/%s/hidden-ref/%s/%s", ownerDid, targetRepo, url.PathEscape(forkBranch), url.PathEscape(remoteBranch)) 329 329 - 330 330 - req, err := s.newRequest(Method, endpoint, nil) 331 331 - if err != nil { 332 332 - return nil, err 333 333 - } 334 334 - 335 335 - return s.client.Do(req) 336 336 - }

-250

knotclient/unsigned.go

··· 1 1 - package knotclient 2 2 - 3 3 - import ( 4 4 - "bytes" 5 5 - "encoding/json" 6 6 - "fmt" 7 7 - "io" 8 8 - "log" 9 9 - "net/http" 10 10 - "net/url" 11 11 - "strconv" 12 12 - "time" 13 13 - 14 14 - "tangled.sh/tangled.sh/core/types" 15 15 - ) 16 16 - 17 17 - type UnsignedClient struct { 18 18 - Url *url.URL 19 19 - client *http.Client 20 20 - } 21 21 - 22 22 - func NewUnsignedClient(domain string, dev bool) (*UnsignedClient, error) { 23 23 - client := &http.Client{ 24 24 - Timeout: 5 * time.Second, 25 25 - } 26 26 - 27 27 - scheme := "https" 28 28 - if dev { 29 29 - scheme = "http" 30 30 - } 31 31 - url, err := url.Parse(fmt.Sprintf("%s://%s", scheme, domain)) 32 32 - if err != nil { 33 33 - return nil, err 34 34 - } 35 35 - 36 36 - unsignedClient := &UnsignedClient{ 37 37 - client: client, 38 38 - Url: url, 39 39 - } 40 40 - 41 41 - return unsignedClient, nil 42 42 - } 43 43 - 44 44 - func (us *UnsignedClient) newRequest(method, endpoint string, query url.Values, body []byte) (*http.Request, error) { 45 45 - reqUrl := us.Url.JoinPath(endpoint) 46 46 - 47 47 - // add query parameters 48 48 - if query != nil { 49 49 - reqUrl.RawQuery = query.Encode() 50 50 - } 51 51 - 52 52 - return http.NewRequest(method, reqUrl.String(), bytes.NewReader(body)) 53 53 - } 54 54 - 55 55 - func do[T any](us *UnsignedClient, req *http.Request) (*T, error) { 56 56 - resp, err := us.client.Do(req) 57 57 - if err != nil { 58 58 - return nil, err 59 59 - } 60 60 - defer resp.Body.Close() 61 61 - 62 62 - body, err := io.ReadAll(resp.Body) 63 63 - if err != nil { 64 64 - log.Printf("Error reading response body: %v", err) 65 65 - return nil, err 66 66 - } 67 67 - 68 68 - var result T 69 69 - err = json.Unmarshal(body, &result) 70 70 - if err != nil { 71 71 - log.Printf("Error unmarshalling response body: %v", err) 72 72 - return nil, err 73 73 - } 74 74 - 75 75 - return &result, nil 76 76 - } 77 77 - 78 78 - func (us *UnsignedClient) Index(ownerDid, repoName, ref string) (*types.RepoIndexResponse, error) { 79 79 - const ( 80 80 - Method = "GET" 81 81 - ) 82 82 - 83 83 - endpoint := fmt.Sprintf("/%s/%s/tree/%s", ownerDid, repoName, ref) 84 84 - if ref == "" { 85 85 - endpoint = fmt.Sprintf("/%s/%s", ownerDid, repoName) 86 86 - } 87 87 - 88 88 - req, err := us.newRequest(Method, endpoint, nil, nil) 89 89 - if err != nil { 90 90 - return nil, err 91 91 - } 92 92 - 93 93 - return do[types.RepoIndexResponse](us, req) 94 94 - } 95 95 - 96 96 - func (us *UnsignedClient) Log(ownerDid, repoName, ref string, page int) (*types.RepoLogResponse, error) { 97 97 - const ( 98 98 - Method = "GET" 99 99 - ) 100 100 - 101 101 - endpoint := fmt.Sprintf("/%s/%s/log/%s", ownerDid, repoName, url.PathEscape(ref)) 102 102 - 103 103 - query := url.Values{} 104 104 - query.Add("page", strconv.Itoa(page)) 105 105 - query.Add("per_page", strconv.Itoa(60)) 106 106 - 107 107 - req, err := us.newRequest(Method, endpoint, query, nil) 108 108 - if err != nil { 109 109 - return nil, err 110 110 - } 111 111 - 112 112 - return do[types.RepoLogResponse](us, req) 113 113 - } 114 114 - 115 115 - func (us *UnsignedClient) Branches(ownerDid, repoName string) (*types.RepoBranchesResponse, error) { 116 116 - const ( 117 117 - Method = "GET" 118 118 - ) 119 119 - 120 120 - endpoint := fmt.Sprintf("/%s/%s/branches", ownerDid, repoName) 121 121 - 122 122 - req, err := us.newRequest(Method, endpoint, nil, nil) 123 123 - if err != nil { 124 124 - return nil, err 125 125 - } 126 126 - 127 127 - return do[types.RepoBranchesResponse](us, req) 128 128 - } 129 129 - 130 130 - func (us *UnsignedClient) Tags(ownerDid, repoName string) (*types.RepoTagsResponse, error) { 131 131 - const ( 132 132 - Method = "GET" 133 133 - ) 134 134 - 135 135 - endpoint := fmt.Sprintf("/%s/%s/tags", ownerDid, repoName) 136 136 - 137 137 - req, err := us.newRequest(Method, endpoint, nil, nil) 138 138 - if err != nil { 139 139 - return nil, err 140 140 - } 141 141 - 142 142 - return do[types.RepoTagsResponse](us, req) 143 143 - } 144 144 - 145 145 - func (us *UnsignedClient) Branch(ownerDid, repoName, branch string) (*types.RepoBranchResponse, error) { 146 146 - const ( 147 147 - Method = "GET" 148 148 - ) 149 149 - 150 150 - endpoint := fmt.Sprintf("/%s/%s/branches/%s", ownerDid, repoName, url.PathEscape(branch)) 151 151 - 152 152 - req, err := us.newRequest(Method, endpoint, nil, nil) 153 153 - if err != nil { 154 154 - return nil, err 155 155 - } 156 156 - 157 157 - return do[types.RepoBranchResponse](us, req) 158 158 - } 159 159 - 160 160 - func (us *UnsignedClient) DefaultBranch(ownerDid, repoName string) (*types.RepoDefaultBranchResponse, error) { 161 161 - const ( 162 162 - Method = "GET" 163 163 - ) 164 164 - 165 165 - endpoint := fmt.Sprintf("/%s/%s/branches/default", ownerDid, repoName) 166 166 - 167 167 - req, err := us.newRequest(Method, endpoint, nil, nil) 168 168 - if err != nil { 169 169 - return nil, err 170 170 - } 171 171 - 172 172 - resp, err := us.client.Do(req) 173 173 - if err != nil { 174 174 - return nil, err 175 175 - } 176 176 - defer resp.Body.Close() 177 177 - 178 178 - var defaultBranch types.RepoDefaultBranchResponse 179 179 - if err := json.NewDecoder(resp.Body).Decode(&defaultBranch); err != nil { 180 180 - return nil, err 181 181 - } 182 182 - 183 183 - return &defaultBranch, nil 184 184 - } 185 185 - 186 186 - func (us *UnsignedClient) Capabilities() (*types.Capabilities, error) { 187 187 - const ( 188 188 - Method = "GET" 189 189 - Endpoint = "/capabilities" 190 190 - ) 191 191 - 192 192 - req, err := us.newRequest(Method, Endpoint, nil, nil) 193 193 - if err != nil { 194 194 - return nil, err 195 195 - } 196 196 - 197 197 - resp, err := us.client.Do(req) 198 198 - if err != nil { 199 199 - return nil, err 200 200 - } 201 201 - defer resp.Body.Close() 202 202 - 203 203 - var capabilities types.Capabilities 204 204 - if err := json.NewDecoder(resp.Body).Decode(&capabilities); err != nil { 205 205 - return nil, err 206 206 - } 207 207 - 208 208 - return &capabilities, nil 209 209 - } 210 210 - 211 211 - func (us *UnsignedClient) Compare(ownerDid, repoName, rev1, rev2 string) (*types.RepoFormatPatchResponse, error) { 212 212 - const ( 213 213 - Method = "GET" 214 214 - ) 215 215 - 216 216 - endpoint := fmt.Sprintf("/%s/%s/compare/%s/%s", ownerDid, repoName, url.PathEscape(rev1), url.PathEscape(rev2)) 217 217 - 218 218 - req, err := us.newRequest(Method, endpoint, nil, nil) 219 219 - if err != nil { 220 220 - return nil, fmt.Errorf("Failed to create request.") 221 221 - } 222 222 - 223 223 - compareResp, err := us.client.Do(req) 224 224 - if err != nil { 225 225 - return nil, fmt.Errorf("Failed to create request.") 226 226 - } 227 227 - defer compareResp.Body.Close() 228 228 - 229 229 - switch compareResp.StatusCode { 230 230 - case 404: 231 231 - case 400: 232 232 - return nil, fmt.Errorf("Branch comparisons not supported on this knot.") 233 233 - } 234 234 - 235 235 - respBody, err := io.ReadAll(compareResp.Body) 236 236 - if err != nil { 237 237 - log.Println("failed to compare across branches") 238 238 - return nil, fmt.Errorf("Failed to compare branches.") 239 239 - } 240 240 - defer compareResp.Body.Close() 241 241 - 242 242 - var formatPatchResponse types.RepoFormatPatchResponse 243 243 - err = json.Unmarshal(respBody, &formatPatchResponse) 244 244 - if err != nil { 245 245 - log.Println("failed to unmarshal format-patch response", err) 246 246 - return nil, fmt.Errorf("failed to compare branches.") 247 247 - } 248 248 - 249 249 - return &formatPatchResponse, nil 250 250 - }

+8 -1

knotserver/config/config.go

··· 17 17 type Server struct { 18 18 ListenAddr string `env:"LISTEN_ADDR, default=0.0.0.0:5555"` 19 19 InternalListenAddr string `env:"INTERNAL_LISTEN_ADDR, default=127.0.0.1:5444"` 20 20 - Secret string `env:"SECRET, required"` 21 20 DBPath string `env:"DB_PATH, default=knotserver.db"` 22 21 Hostname string `env:"HOSTNAME, required"` 23 22 JetstreamEndpoint string `env:"JETSTREAM_ENDPOINT, default=wss://jetstream1.us-west.bsky.network/subscribe"` 23 23 + Owner string `env:"OWNER, required"` 24 24 LogDids bool `env:"LOG_DIDS, default=true"` 25 25 26 26 // This disables signature verification so use with caution. 27 27 Dev bool `env:"DEV, default=false"` 28 28 } 29 29 30 30 + type Git struct { 31 31 + // user name & email used as committer 32 32 + UserName string `env:"USER_NAME, default=Tangled"` 33 33 + UserEmail string `env:"USER_EMAIL, default=noreply@tangled.sh"` 34 34 + } 35 35 + 30 36 func (s Server) Did() syntax.DID { 31 37 return syntax.DID(fmt.Sprintf("did:web:%s", s.Hostname)) 32 38 } ··· 34 40 type Config struct { 35 41 Repo Repo `env:",prefix=KNOT_REPO_"` 36 42 Server Server `env:",prefix=KNOT_SERVER_"` 43 43 + Git Git `env:",prefix=KNOT_GIT_"` 37 44 AppViewEndpoint string `env:"APPVIEW_ENDPOINT, default=https://tangled.sh"` 38 45 } 39 46

+14 -10

knotserver/db/init.go

··· 2 2 3 3 import ( 4 4 "database/sql" 5 5 + "strings" 5 6 6 7 _ "github.com/mattn/go-sqlite3" 7 8 ) ··· 11 12 } 12 13 13 14 func Setup(dbPath string) (*DB, error) { 14 14 - db, err := sql.Open("sqlite3", dbPath) 15 15 + // https://github.com/mattn/go-sqlite3#connection-string 16 16 + opts := []string{ 17 17 + "_foreign_keys=1", 18 18 + "_journal_mode=WAL", 19 19 + "_synchronous=NORMAL", 20 20 + "_auto_vacuum=incremental", 21 21 + } 22 22 + 23 23 + db, err := sql.Open("sqlite3", dbPath+"?"+strings.Join(opts, "&")) 15 24 if err != nil { 16 25 return nil, err 17 26 } 18 27 19 19 - _, err = db.Exec(` 20 20 - pragma journal_mode = WAL; 21 21 - pragma synchronous = normal; 22 22 - pragma foreign_keys = on; 23 23 - pragma temp_store = memory; 24 24 - pragma mmap_size = 30000000000; 25 25 - pragma page_size = 32768; 26 26 - pragma auto_vacuum = incremental; 27 27 - pragma busy_timeout = 5000; 28 28 + // NOTE: If any other migration is added here, you MUST 29 29 + // copy the pattern in appview: use a single sql.Conn 30 30 + // for every migration. 28 31 32 32 + _, err = db.Exec(` 29 33 create table if not exists known_dids ( 30 34 did text primary key 31 35 );

+40

knotserver/db/pubkeys.go

··· 1 1 package db 2 2 3 3 import ( 4 4 + "strconv" 4 5 "time" 5 6 6 7 "tangled.sh/tangled.sh/core/api/tangled" ··· 99 100 100 101 return keys, nil 101 102 } 103 103 + 104 104 + func (d *DB) GetPublicKeysPaginated(limit int, cursor string) ([]PublicKey, string, error) { 105 105 + var keys []PublicKey 106 106 + 107 107 + offset := 0 108 108 + if cursor != "" { 109 109 + if o, err := strconv.Atoi(cursor); err == nil && o >= 0 { 110 110 + offset = o 111 111 + } 112 112 + } 113 113 + 114 114 + query := `select key, did, created from public_keys order by created desc limit ? offset ?` 115 115 + rows, err := d.db.Query(query, limit+1, offset) // +1 to check if there are more results 116 116 + if err != nil { 117 117 + return nil, "", err 118 118 + } 119 119 + defer rows.Close() 120 120 + 121 121 + for rows.Next() { 122 122 + var publicKey PublicKey 123 123 + if err := rows.Scan(&publicKey.Key, &publicKey.Did, &publicKey.CreatedAt); err != nil { 124 124 + return nil, "", err 125 125 + } 126 126 + keys = append(keys, publicKey) 127 127 + } 128 128 + 129 129 + if err := rows.Err(); err != nil { 130 130 + return nil, "", err 131 131 + } 132 132 + 133 133 + // check if there are more results for pagination 134 134 + var nextCursor string 135 135 + if len(keys) > limit { 136 136 + keys = keys[:limit] // remove the extra item 137 137 + nextCursor = strconv.Itoa(offset + limit) 138 138 + } 139 139 + 140 140 + return keys, nextCursor, nil 141 141 + }

+2 -2

knotserver/events.go

··· 15 15 WriteBufferSize: 1024, 16 16 } 17 17 18 18 - func (h *Handle) Events(w http.ResponseWriter, r *http.Request) { 18 18 + func (h *Knot) Events(w http.ResponseWriter, r *http.Request) { 19 19 l := h.l.With("handler", "OpLog") 20 20 l.Debug("received new connection") 21 21 ··· 83 83 } 84 84 } 85 85 86 86 - func (h *Handle) streamOps(conn *websocket.Conn, cursor *int64) error { 86 86 + func (h *Knot) streamOps(conn *websocket.Conn, cursor *int64) error { 87 87 events, err := h.db.GetEvents(*cursor) 88 88 if err != nil { 89 89 h.l.Error("failed to fetch events from db", "err", err, "cursor", cursor)

-56

knotserver/file.go

··· 1 1 - package knotserver 2 2 - 3 3 - import ( 4 4 - "bytes" 5 5 - "io" 6 6 - "log/slog" 7 7 - "net/http" 8 8 - "strings" 9 9 - 10 10 - "tangled.sh/tangled.sh/core/types" 11 11 - ) 12 12 - 13 13 - func (h *Handle) listFiles(files []types.NiceTree, data map[string]any, w http.ResponseWriter) { 14 14 - data["files"] = files 15 15 - 16 16 - writeJSON(w, data) 17 17 - return 18 18 - } 19 19 - 20 20 - func countLines(r io.Reader) (int, error) { 21 21 - buf := make([]byte, 32*1024) 22 22 - bufLen := 0 23 23 - count := 0 24 24 - nl := []byte{'\n'} 25 25 - 26 26 - for { 27 27 - c, err := r.Read(buf) 28 28 - if c > 0 { 29 29 - bufLen += c 30 30 - } 31 31 - count += bytes.Count(buf[:c], nl) 32 32 - 33 33 - switch { 34 34 - case err == io.EOF: 35 35 - /* handle last line not having a newline at the end */ 36 36 - if bufLen >= 1 && buf[(bufLen-1)%(32*1024)] != '\n' { 37 37 - count++ 38 38 - } 39 39 - return count, nil 40 40 - case err != nil: 41 41 - return 0, err 42 42 - } 43 43 - } 44 44 - } 45 45 - 46 46 - func (h *Handle) showFile(resp types.RepoBlobResponse, w http.ResponseWriter, l *slog.Logger) { 47 47 - lc, err := countLines(strings.NewReader(resp.Contents)) 48 48 - if err != nil { 49 49 - // Non-fatal, we'll just skip showing line numbers in the template. 50 50 - l.Warn("counting lines", "error", err) 51 51 - } 52 52 - 53 53 - resp.Lines = lc 54 54 - writeJSON(w, resp) 55 55 - return 56 56 - }

+8 -10

knotserver/git/fork.go

··· 10 10 ) 11 11 12 12 func Fork(repoPath, source string) error { 13 13 - _, err := git.PlainClone(repoPath, true, &git.CloneOptions{ 14 14 - URL: source, 15 15 - SingleBranch: false, 16 16 - }) 17 17 - 18 18 - if err != nil { 13 13 + cloneCmd := exec.Command("git", "clone", "--bare", source, repoPath) 14 14 + if err := cloneCmd.Run(); err != nil { 19 15 return fmt.Errorf("failed to bare clone repository: %w", err) 20 16 } 21 17 22 22 - err = exec.Command("git", "-C", repoPath, "config", "receive.hideRefs", "refs/hidden").Run() 23 23 - if err != nil { 18 18 + configureCmd := exec.Command("git", "-C", repoPath, "config", "receive.hideRefs", "refs/hidden") 19 19 + if err := configureCmd.Run(); err != nil { 24 20 return fmt.Errorf("failed to configure hidden refs: %w", err) 25 21 } 26 22 27 23 return nil 28 24 } 29 25 30 30 - func (g *GitRepo) Sync(branch string) error { 26 26 + func (g *GitRepo) Sync() error { 27 27 + branch := g.h.String() 28 28 + 31 29 fetchOpts := &git.FetchOptions{ 32 30 RefSpecs: []config.RefSpec{ 33 33 - config.RefSpec(fmt.Sprintf("+refs/heads/%s:refs/heads/%s", branch, branch)), 31 31 + config.RefSpec("+" + branch + ":" + branch), // +refs/heads/master:refs/heads/master 34 32 }, 35 33 } 36 34

+4 -1

knotserver/git/language.go

··· 3 3 import ( 4 4 "context" 5 5 "path" 6 6 + "strings" 6 7 7 8 "github.com/go-enry/go-enry/v2" 8 9 "github.com/go-git/go-git/v5/plumbing/object" ··· 20 21 return nil 21 22 } 22 23 23 23 - if enry.IsGenerated(filepath, content) { 24 24 + if enry.IsGenerated(filepath, content) || 25 25 + enry.IsBinary(content) || 26 26 + strings.HasSuffix(filepath, "bun.lock") { 24 27 return nil 25 28 } 26 29

+58 -72

knotserver/git/merge.go

··· 12 12 "github.com/dgraph-io/ristretto" 13 13 "github.com/go-git/go-git/v5" 14 14 "github.com/go-git/go-git/v5/plumbing" 15 15 - "tangled.sh/tangled.sh/core/patchutil" 16 15 ) 17 16 18 17 type MergeCheckCache struct { ··· 86 85 87 86 // MergeOptions specifies the configuration for a merge operation 88 87 type MergeOptions struct { 89 89 - CommitMessage string 90 90 - CommitBody string 91 91 - AuthorName string 92 92 - AuthorEmail string 93 93 - FormatPatch bool 88 88 + CommitMessage string 89 89 + CommitBody string 90 90 + AuthorName string 91 91 + AuthorEmail string 92 92 + CommitterName string 93 93 + CommitterEmail string 94 94 + FormatPatch bool 94 95 } 95 96 96 97 func (e ErrMerge) Error() string { ··· 143 144 return tmpDir, nil 144 145 } 145 146 146 146 - func (g *GitRepo) applyPatch(tmpDir, patchFile string, checkOnly bool, opts *MergeOptions) error { 147 147 + func (g *GitRepo) checkPatch(tmpDir, patchFile string) error { 147 148 var stderr bytes.Buffer 148 148 - var cmd *exec.Cmd 149 149 150 150 - if checkOnly { 151 151 - cmd = exec.Command("git", "-C", tmpDir, "apply", "--check", "-v", patchFile) 152 152 - } else { 153 153 - // if patch is a format-patch, apply using 'git am' 154 154 - if opts.FormatPatch { 155 155 - amCmd := exec.Command("git", "-C", tmpDir, "am", patchFile) 156 156 - amCmd.Stderr = &stderr 157 157 - if err := amCmd.Run(); err != nil { 158 158 - return fmt.Errorf("patch application failed: %s", stderr.String()) 159 159 - } 160 160 - return nil 150 150 + cmd := exec.Command("git", "-C", tmpDir, "apply", "--check", "-v", patchFile) 151 151 + cmd.Stderr = &stderr 152 152 + 153 153 + if err := cmd.Run(); err != nil { 154 154 + conflicts := parseGitApplyErrors(stderr.String()) 155 155 + return &ErrMerge{ 156 156 + Message: "patch cannot be applied cleanly", 157 157 + Conflicts: conflicts, 158 158 + HasConflict: len(conflicts) > 0, 159 159 + OtherError: err, 161 160 } 162 162 - 163 163 - // else, apply using 'git apply' and commit it manually 164 164 - exec.Command("git", "-C", tmpDir, "config", "advice.mergeConflict", "false").Run() 165 165 - if opts != nil { 166 166 - applyCmd := exec.Command("git", "-C", tmpDir, "apply", patchFile) 167 167 - applyCmd.Stderr = &stderr 168 168 - if err := applyCmd.Run(); err != nil { 169 169 - return fmt.Errorf("patch application failed: %s", stderr.String()) 170 170 - } 161 161 + } 162 162 + return nil 163 163 + } 171 164 172 172 - stageCmd := exec.Command("git", "-C", tmpDir, "add", ".") 173 173 - if err := stageCmd.Run(); err != nil { 174 174 - return fmt.Errorf("failed to stage changes: %w", err) 175 175 - } 165 165 + func (g *GitRepo) applyPatch(tmpDir, patchFile string, opts MergeOptions) error { 166 166 + var stderr bytes.Buffer 167 167 + var cmd *exec.Cmd 176 168 177 177 - commitArgs := []string{"-C", tmpDir, "commit"} 169 169 + // configure default git user before merge 170 170 + exec.Command("git", "-C", tmpDir, "config", "user.name", opts.CommitterName).Run() 171 171 + exec.Command("git", "-C", tmpDir, "config", "user.email", opts.CommitterEmail).Run() 172 172 + exec.Command("git", "-C", tmpDir, "config", "advice.mergeConflict", "false").Run() 178 173 179 179 - // Set author if provided 180 180 - authorName := opts.AuthorName 181 181 - authorEmail := opts.AuthorEmail 174 174 + // if patch is a format-patch, apply using 'git am' 175 175 + if opts.FormatPatch { 176 176 + cmd = exec.Command("git", "-C", tmpDir, "am", patchFile) 177 177 + } else { 178 178 + // else, apply using 'git apply' and commit it manually 179 179 + applyCmd := exec.Command("git", "-C", tmpDir, "apply", patchFile) 180 180 + applyCmd.Stderr = &stderr 181 181 + if err := applyCmd.Run(); err != nil { 182 182 + return fmt.Errorf("patch application failed: %s", stderr.String()) 183 183 + } 182 184 183 183 - if authorEmail == "" { 184 184 - authorEmail = "noreply@tangled.sh" 185 185 - } 185 185 + stageCmd := exec.Command("git", "-C", tmpDir, "add", ".") 186 186 + if err := stageCmd.Run(); err != nil { 187 187 + return fmt.Errorf("failed to stage changes: %w", err) 188 188 + } 186 189 187 187 - if authorName == "" { 188 188 - authorName = "Tangled" 189 189 - } 190 190 + commitArgs := []string{"-C", tmpDir, "commit"} 190 191 191 191 - if authorName != "" { 192 192 - commitArgs = append(commitArgs, "--author", fmt.Sprintf("%s <%s>", authorName, authorEmail)) 193 193 - } 192 192 + // Set author if provided 193 193 + authorName := opts.AuthorName 194 194 + authorEmail := opts.AuthorEmail 194 195 195 195 - commitArgs = append(commitArgs, "-m", opts.CommitMessage) 196 196 + if authorName != "" && authorEmail != "" { 197 197 + commitArgs = append(commitArgs, "--author", fmt.Sprintf("%s <%s>", authorName, authorEmail)) 198 198 + } 199 199 + // else, will default to knot's global user.name & user.email configured via `KNOT_GIT_USER_*` env variables 196 200 197 197 - if opts.CommitBody != "" { 198 198 - commitArgs = append(commitArgs, "-m", opts.CommitBody) 199 199 - } 201 201 + commitArgs = append(commitArgs, "-m", opts.CommitMessage) 200 202 201 201 - cmd = exec.Command("git", commitArgs...) 202 202 - } else { 203 203 - // If no commit message specified, use git-am which automatically creates a commit 204 204 - cmd = exec.Command("git", "-C", tmpDir, "am", patchFile) 203 203 + if opts.CommitBody != "" { 204 204 + commitArgs = append(commitArgs, "-m", opts.CommitBody) 205 205 } 206 206 + 207 207 + cmd = exec.Command("git", commitArgs...) 206 208 } 207 209 208 210 cmd.Stderr = &stderr 209 211 210 212 if err := cmd.Run(); err != nil { 211 211 - if checkOnly { 212 212 - conflicts := parseGitApplyErrors(stderr.String()) 213 213 - return &ErrMerge{ 214 214 - Message: "patch cannot be applied cleanly", 215 215 - Conflicts: conflicts, 216 216 - HasConflict: len(conflicts) > 0, 217 217 - OtherError: err, 218 218 - } 219 219 - } 220 213 return fmt.Errorf("patch application failed: %s", stderr.String()) 221 214 } 222 215 ··· 227 220 if val, ok := mergeCheckCache.Get(g, patchData, targetBranch); ok { 228 221 return val 229 222 } 230 230 - 231 231 - var opts MergeOptions 232 232 - opts.FormatPatch = patchutil.IsFormatPatch(string(patchData)) 233 223 234 224 patchFile, err := g.createTempFileWithPatch(patchData) 235 225 if err != nil { ··· 249 239 } 250 240 defer os.RemoveAll(tmpDir) 251 241 252 252 - result := g.applyPatch(tmpDir, patchFile, true, &opts) 242 242 + result := g.checkPatch(tmpDir, patchFile) 253 243 mergeCheckCache.Set(g, patchData, targetBranch, result) 254 244 return result 255 245 } 256 246 257 257 - func (g *GitRepo) Merge(patchData []byte, targetBranch string) error { 258 258 - return g.MergeWithOptions(patchData, targetBranch, nil) 259 259 - } 260 260 - 261 261 - func (g *GitRepo) MergeWithOptions(patchData []byte, targetBranch string, opts *MergeOptions) error { 247 247 + func (g *GitRepo) MergeWithOptions(patchData []byte, targetBranch string, opts MergeOptions) error { 262 248 patchFile, err := g.createTempFileWithPatch(patchData) 263 249 if err != nil { 264 250 return &ErrMerge{ ··· 277 263 } 278 264 defer os.RemoveAll(tmpDir) 279 265 280 280 - if err := g.applyPatch(tmpDir, patchFile, false, opts); err != nil { 266 266 + if err := g.applyPatch(tmpDir, patchFile, opts); err != nil { 281 267 return err 282 268 } 283 269

+28 -22

knotserver/git/post_receive.go

··· 3 3 import ( 4 4 "bufio" 5 5 "context" 6 6 + "errors" 6 7 "fmt" 7 8 "io" 8 9 "strings" ··· 57 58 ByEmail map[string]int 58 59 } 59 60 60 60 - func (g *GitRepo) RefUpdateMeta(line PostReceiveLine) RefUpdateMeta { 61 61 + func (g *GitRepo) RefUpdateMeta(line PostReceiveLine) (RefUpdateMeta, error) { 62 62 + var errs error 63 63 + 61 64 commitCount, err := g.newCommitCount(line) 62 62 - if err != nil { 63 63 - // TODO: log this 64 64 - } 65 65 + errors.Join(errs, err) 65 66 66 67 isDefaultRef, err := g.isDefaultBranch(line) 67 67 - if err != nil { 68 68 - // TODO: log this 69 69 - } 68 68 + errors.Join(errs, err) 70 69 71 70 ctx, cancel := context.WithTimeout(context.Background(), time.Second*2) 72 71 defer cancel() 73 72 breakdown, err := g.AnalyzeLanguages(ctx) 74 74 - if err != nil { 75 75 - // TODO: log this 76 76 - } 73 73 + errors.Join(errs, err) 77 74 78 75 return RefUpdateMeta{ 79 76 CommitCount: commitCount, 80 77 IsDefaultRef: isDefaultRef, 81 78 LangBreakdown: breakdown, 82 82 - } 79 79 + }, errs 83 80 } 84 81 85 82 func (g *GitRepo) newCommitCount(line PostReceiveLine) (CommitCount, error) { ··· 95 92 args := []string{fmt.Sprintf("--max-count=%d", 100)} 96 93 97 94 if line.OldSha.IsZero() { 98 98 - // just git rev-list <newsha> 95 95 + // git rev-list <newsha> ^other-branches --not ^this-branch 99 96 args = append(args, line.NewSha.String()) 97 97 + 98 98 + branches, _ := g.Branches() 99 99 + for _, b := range branches { 100 100 + if !strings.Contains(line.Ref, b.Name) { 101 101 + args = append(args, fmt.Sprintf("^%s", b.Name)) 102 102 + } 103 103 + } 104 104 + 105 105 + args = append(args, "--not") 106 106 + args = append(args, fmt.Sprintf("^%s", line.Ref)) 100 107 } else { 101 108 // git rev-list <oldsha>..<newsha> 102 109 args = append(args, fmt.Sprintf("%s..%s", line.OldSha.String(), line.NewSha.String())) ··· 138 145 } 139 146 140 147 func (m RefUpdateMeta) AsRecord() tangled.GitRefUpdate_Meta { 141 141 - var byEmail []*tangled.GitRefUpdate_Meta_CommitCount_ByEmail_Elem 148 148 + var byEmail []*tangled.GitRefUpdate_IndividualEmailCommitCount 142 149 for e, v := range m.CommitCount.ByEmail { 143 143 - byEmail = append(byEmail, &tangled.GitRefUpdate_Meta_CommitCount_ByEmail_Elem{ 150 150 + byEmail = append(byEmail, &tangled.GitRefUpdate_IndividualEmailCommitCount{ 144 151 Email: e, 145 152 Count: int64(v), 146 153 }) 147 154 } 148 155 149 149 - var langs []*tangled.GitRefUpdate_Pair 156 156 + var langs []*tangled.GitRefUpdate_IndividualLanguageSize 150 157 for lang, size := range m.LangBreakdown { 151 151 - langs = append(langs, &tangled.GitRefUpdate_Pair{ 158 158 + langs = append(langs, &tangled.GitRefUpdate_IndividualLanguageSize{ 152 159 Lang: lang, 153 160 Size: size, 154 161 }) 155 162 } 156 156 - langBreakdown := &tangled.GitRefUpdate_Meta_LangBreakdown{ 157 157 - Inputs: langs, 158 158 - } 159 163 160 164 return tangled.GitRefUpdate_Meta{ 161 161 - CommitCount: &tangled.GitRefUpdate_Meta_CommitCount{ 165 165 + CommitCount: &tangled.GitRefUpdate_CommitCountBreakdown{ 162 166 ByEmail: byEmail, 163 167 }, 164 164 - IsDefaultRef: m.IsDefaultRef, 165 165 - LangBreakdown: langBreakdown, 168 168 + IsDefaultRef: m.IsDefaultRef, 169 169 + LangBreakdown: &tangled.GitRefUpdate_LangBreakdown{ 170 170 + Inputs: langs, 171 171 + }, 166 172 } 167 173 }

+9 -4

knotserver/git.go

··· 13 13 "tangled.sh/tangled.sh/core/knotserver/git/service" 14 14 ) 15 15 16 16 - func (d *Handle) InfoRefs(w http.ResponseWriter, r *http.Request) { 16 16 + func (d *Knot) InfoRefs(w http.ResponseWriter, r *http.Request) { 17 17 did := chi.URLParam(r, "did") 18 18 name := chi.URLParam(r, "name") 19 19 repoName, err := securejoin.SecureJoin(did, name) ··· 56 56 } 57 57 } 58 58 59 59 - func (d *Handle) UploadPack(w http.ResponseWriter, r *http.Request) { 59 59 + func (d *Knot) UploadPack(w http.ResponseWriter, r *http.Request) { 60 60 did := chi.URLParam(r, "did") 61 61 name := chi.URLParam(r, "name") 62 62 repo, err := securejoin.SecureJoin(d.c.Repo.ScanPath, filepath.Join(did, name)) ··· 105 105 } 106 106 } 107 107 108 108 - func (d *Handle) ReceivePack(w http.ResponseWriter, r *http.Request) { 108 108 + func (d *Knot) ReceivePack(w http.ResponseWriter, r *http.Request) { 109 109 did := chi.URLParam(r, "did") 110 110 name := chi.URLParam(r, "name") 111 111 _, err := securejoin.SecureJoin(d.c.Repo.ScanPath, filepath.Join(did, name)) ··· 118 118 d.RejectPush(w, r, name) 119 119 } 120 120 121 121 - func (d *Handle) RejectPush(w http.ResponseWriter, r *http.Request, unqualifiedRepoName string) { 121 121 + func (d *Knot) RejectPush(w http.ResponseWriter, r *http.Request, unqualifiedRepoName string) { 122 122 // A text/plain response will cause git to print each line of the body 123 123 // prefixed with "remote: ". 124 124 w.Header().Set("content-type", "text/plain; charset=UTF-8") ··· 129 129 // If the appview gave us the repository owner's handle we can attempt to 130 130 // construct the correct ssh url. 131 131 ownerHandle := r.Header.Get("x-tangled-repo-owner-handle") 132 132 + ownerHandle = strings.TrimPrefix(ownerHandle, "@") 132 133 if ownerHandle != "" && !strings.ContainsAny(ownerHandle, ":") { 133 134 hostname := d.c.Server.Hostname 134 135 if strings.Contains(hostname, ":") { 135 136 hostname = strings.Split(hostname, ":")[0] 137 137 + } 138 138 + 139 139 + if hostname == "knot1.tangled.sh" { 140 140 + hostname = "tangled.sh" 136 141 } 137 142 138 143 fmt.Fprintf(w, " Try:\ngit remote set-url --push origin git@%s:%s/%s\n\n... and push again.", hostname, ownerHandle, unqualifiedRepoName)

-211

knotserver/handler.go

··· 1 1 - package knotserver 2 2 - 3 3 - import ( 4 4 - "context" 5 5 - "fmt" 6 6 - "log/slog" 7 7 - "net/http" 8 8 - "runtime/debug" 9 9 - 10 10 - "github.com/go-chi/chi/v5" 11 11 - "tangled.sh/tangled.sh/core/idresolver" 12 12 - "tangled.sh/tangled.sh/core/jetstream" 13 13 - "tangled.sh/tangled.sh/core/knotserver/config" 14 14 - "tangled.sh/tangled.sh/core/knotserver/db" 15 15 - "tangled.sh/tangled.sh/core/knotserver/xrpc" 16 16 - tlog "tangled.sh/tangled.sh/core/log" 17 17 - "tangled.sh/tangled.sh/core/notifier" 18 18 - "tangled.sh/tangled.sh/core/rbac" 19 19 - ) 20 20 - 21 21 - type Handle struct { 22 22 - c *config.Config 23 23 - db *db.DB 24 24 - jc *jetstream.JetstreamClient 25 25 - e *rbac.Enforcer 26 26 - l *slog.Logger 27 27 - n *notifier.Notifier 28 28 - resolver *idresolver.Resolver 29 29 - 30 30 - // init is a channel that is closed when the knot has been initailized 31 31 - // i.e. when the first user (knot owner) has been added. 32 32 - init chan struct{} 33 33 - knotInitialized bool 34 34 - } 35 35 - 36 36 - func Setup(ctx context.Context, c *config.Config, db *db.DB, e *rbac.Enforcer, jc *jetstream.JetstreamClient, l *slog.Logger, n *notifier.Notifier) (http.Handler, error) { 37 37 - r := chi.NewRouter() 38 38 - 39 39 - h := Handle{ 40 40 - c: c, 41 41 - db: db, 42 42 - e: e, 43 43 - l: l, 44 44 - jc: jc, 45 45 - n: n, 46 46 - resolver: idresolver.DefaultResolver(), 47 47 - init: make(chan struct{}), 48 48 - } 49 49 - 50 50 - err := e.AddKnot(rbac.ThisServer) 51 51 - if err != nil { 52 52 - return nil, fmt.Errorf("failed to setup enforcer: %w", err) 53 53 - } 54 54 - 55 55 - err = h.jc.StartJetstream(ctx, h.processMessages) 56 56 - if err != nil { 57 57 - return nil, fmt.Errorf("failed to start jetstream: %w", err) 58 58 - } 59 59 - 60 60 - // Check if the knot knows about any Dids; 61 61 - // if it does, it is already initialized and we can repopulate the 62 62 - // Jetstream subscriptions. 63 63 - dids, err := db.GetAllDids() 64 64 - if err != nil { 65 65 - return nil, fmt.Errorf("failed to get all Dids: %w", err) 66 66 - } 67 67 - 68 68 - if len(dids) > 0 { 69 69 - h.knotInitialized = true 70 70 - close(h.init) 71 71 - for _, d := range dids { 72 72 - h.jc.AddDid(d) 73 73 - } 74 74 - } 75 75 - 76 76 - r.Get("/", h.Index) 77 77 - r.Get("/capabilities", h.Capabilities) 78 78 - r.Get("/version", h.Version) 79 79 - r.Route("/{did}", func(r chi.Router) { 80 80 - // Repo routes 81 81 - r.Route("/{name}", func(r chi.Router) { 82 82 - r.Route("/collaborator", func(r chi.Router) { 83 83 - r.Use(h.VerifySignature) 84 84 - r.Post("/add", h.AddRepoCollaborator) 85 85 - }) 86 86 - 87 87 - r.Route("/languages", func(r chi.Router) { 88 88 - r.With(h.VerifySignature) 89 89 - r.Get("/", h.RepoLanguages) 90 90 - r.Get("/{ref}", h.RepoLanguages) 91 91 - }) 92 92 - 93 93 - r.Get("/", h.RepoIndex) 94 94 - r.Get("/info/refs", h.InfoRefs) 95 95 - r.Post("/git-upload-pack", h.UploadPack) 96 96 - r.Post("/git-receive-pack", h.ReceivePack) 97 97 - r.Get("/compare/{rev1}/{rev2}", h.Compare) // git diff-tree compare of two objects 98 98 - 99 99 - r.With(h.VerifySignature).Post("/hidden-ref/{forkRef}/{remoteRef}", h.NewHiddenRef) 100 100 - 101 101 - r.Route("/merge", func(r chi.Router) { 102 102 - r.With(h.VerifySignature) 103 103 - r.Post("/", h.Merge) 104 104 - r.Post("/check", h.MergeCheck) 105 105 - }) 106 106 - 107 107 - r.Route("/tree/{ref}", func(r chi.Router) { 108 108 - r.Get("/", h.RepoIndex) 109 109 - r.Get("/*", h.RepoTree) 110 110 - }) 111 111 - 112 112 - r.Route("/blob/{ref}", func(r chi.Router) { 113 113 - r.Get("/*", h.Blob) 114 114 - }) 115 115 - 116 116 - r.Route("/raw/{ref}", func(r chi.Router) { 117 117 - r.Get("/*", h.BlobRaw) 118 118 - }) 119 119 - 120 120 - r.Get("/log/{ref}", h.Log) 121 121 - r.Get("/archive/{file}", h.Archive) 122 122 - r.Get("/commit/{ref}", h.Diff) 123 123 - r.Get("/tags", h.Tags) 124 124 - r.Route("/branches", func(r chi.Router) { 125 125 - r.Get("/", h.Branches) 126 126 - r.Get("/{branch}", h.Branch) 127 127 - r.Route("/default", func(r chi.Router) { 128 128 - r.Get("/", h.DefaultBranch) 129 129 - r.With(h.VerifySignature).Put("/", h.SetDefaultBranch) 130 130 - }) 131 131 - }) 132 132 - }) 133 133 - }) 134 134 - 135 135 - // xrpc apis 136 136 - r.Mount("/xrpc", h.XrpcRouter()) 137 137 - 138 138 - // Create a new repository. 139 139 - r.Route("/repo", func(r chi.Router) { 140 140 - r.Use(h.VerifySignature) 141 141 - r.Put("/new", h.NewRepo) 142 142 - r.Delete("/", h.RemoveRepo) 143 143 - r.Route("/fork", func(r chi.Router) { 144 144 - r.Post("/", h.RepoFork) 145 145 - r.Post("/sync/{branch}", h.RepoForkSync) 146 146 - r.Get("/sync/{branch}", h.RepoForkAheadBehind) 147 147 - }) 148 148 - }) 149 149 - 150 150 - r.Route("/member", func(r chi.Router) { 151 151 - r.Use(h.VerifySignature) 152 152 - r.Put("/add", h.AddMember) 153 153 - }) 154 154 - 155 155 - // Socket that streams git oplogs 156 156 - r.Get("/events", h.Events) 157 157 - 158 158 - // Initialize the knot with an owner and public key. 159 159 - r.With(h.VerifySignature).Post("/init", h.Init) 160 160 - 161 161 - // Health check. Used for two-way verification with appview. 162 162 - r.With(h.VerifySignature).Get("/health", h.Health) 163 163 - 164 164 - // All public keys on the knot. 165 165 - r.Get("/keys", h.Keys) 166 166 - 167 167 - return r, nil 168 168 - } 169 169 - 170 170 - func (h *Handle) XrpcRouter() http.Handler { 171 171 - logger := tlog.New("knots") 172 172 - 173 173 - xrpc := &xrpc.Xrpc{ 174 174 - Config: h.c, 175 175 - Db: h.db, 176 176 - Ingester: h.jc, 177 177 - Enforcer: h.e, 178 178 - Logger: logger, 179 179 - Notifier: h.n, 180 180 - Resolver: h.resolver, 181 181 - } 182 182 - return xrpc.Router() 183 183 - } 184 184 - 185 185 - // version is set during build time. 186 186 - var version string 187 187 - 188 188 - func (h *Handle) Version(w http.ResponseWriter, r *http.Request) { 189 189 - if version == "" { 190 190 - info, ok := debug.ReadBuildInfo() 191 191 - if !ok { 192 192 - http.Error(w, "failed to read build info", http.StatusInternalServerError) 193 193 - return 194 194 - } 195 195 - 196 196 - var modVer string 197 197 - for _, mod := range info.Deps { 198 198 - if mod.Path == "tangled.sh/tangled.sh/knotserver" { 199 199 - version = mod.Version 200 200 - break 201 201 - } 202 202 - } 203 203 - 204 204 - if modVer == "" { 205 205 - version = "unknown" 206 206 - } 207 207 - } 208 208 - 209 209 - w.Header().Set("Content-Type", "text/plain; charset=utf-8") 210 210 - fmt.Fprintf(w, "knotserver/%s", version) 211 211 - }

-10

knotserver/http_util.go

··· 20 20 func notFound(w http.ResponseWriter) { 21 21 writeError(w, "not found", http.StatusNotFound) 22 22 } 23 23 - 24 24 - func writeMsg(w http.ResponseWriter, msg string) { 25 25 - writeJSON(w, map[string]string{"msg": msg}) 26 26 - } 27 27 - 28 28 - func writeConflict(w http.ResponseWriter, data interface{}) { 29 29 - w.Header().Set("Content-Type", "application/json") 30 30 - w.WriteHeader(http.StatusConflict) 31 31 - json.NewEncoder(w).Encode(data) 32 32 - }

+130 -80

knotserver/ingester.go

··· 8 8 "net/http" 9 9 "net/url" 10 10 "path/filepath" 11 11 - "slices" 12 11 "strings" 13 12 14 13 comatproto "github.com/bluesky-social/indigo/api/atproto" ··· 25 24 "tangled.sh/tangled.sh/core/workflow" 26 25 ) 27 26 28 28 - func (h *Handle) processPublicKey(ctx context.Context, did string, record tangled.PublicKey) error { 27 27 + func (h *Knot) processPublicKey(ctx context.Context, event *models.Event) error { 29 28 l := log.FromContext(ctx) 29 29 + raw := json.RawMessage(event.Commit.Record) 30 30 + did := event.Did 31 31 + 32 32 + var record tangled.PublicKey 33 33 + if err := json.Unmarshal(raw, &record); err != nil { 34 34 + return fmt.Errorf("failed to unmarshal record: %w", err) 35 35 + } 36 36 + 30 37 pk := db.PublicKey{ 31 38 Did: did, 32 39 PublicKey: record, ··· 39 46 return nil 40 47 } 41 48 42 42 - func (h *Handle) processKnotMember(ctx context.Context, did string, record tangled.KnotMember) error { 49 49 + func (h *Knot) processKnotMember(ctx context.Context, event *models.Event) error { 43 50 l := log.FromContext(ctx) 51 51 + raw := json.RawMessage(event.Commit.Record) 52 52 + did := event.Did 53 53 + 54 54 + var record tangled.KnotMember 55 55 + if err := json.Unmarshal(raw, &record); err != nil { 56 56 + return fmt.Errorf("failed to unmarshal record: %w", err) 57 57 + } 44 58 45 59 if record.Domain != h.c.Server.Hostname { 46 60 l.Error("domain mismatch", "domain", record.Domain, "expected", h.c.Server.Hostname) ··· 59 73 } 60 74 l.Info("added member from firehose", "member", record.Subject) 61 75 62 62 - if err := h.db.AddDid(did); err != nil { 76 76 + if err := h.db.AddDid(record.Subject); err != nil { 63 77 l.Error("failed to add did", "error", err) 64 78 return fmt.Errorf("failed to add did: %w", err) 65 79 } 66 66 - h.jc.AddDid(did) 80 80 + h.jc.AddDid(record.Subject) 67 81 68 68 - if err := h.fetchAndAddKeys(ctx, did); err != nil { 82 82 + if err := h.fetchAndAddKeys(ctx, record.Subject); err != nil { 69 83 return fmt.Errorf("failed to fetch and add keys: %w", err) 70 84 } 71 85 72 86 return nil 73 87 } 74 88 75 75 - func (h *Handle) processPull(ctx context.Context, did string, record tangled.RepoPull) error { 89 89 + func (h *Knot) processPull(ctx context.Context, event *models.Event) error { 90 90 + raw := json.RawMessage(event.Commit.Record) 91 91 + did := event.Did 92 92 + 93 93 + var record tangled.RepoPull 94 94 + if err := json.Unmarshal(raw, &record); err != nil { 95 95 + return fmt.Errorf("failed to unmarshal record: %w", err) 96 96 + } 97 97 + 76 98 l := log.FromContext(ctx) 77 99 l = l.With("handler", "processPull") 78 100 l = l.With("did", did) 79 79 - l = l.With("target_repo", record.TargetRepo) 80 80 - l = l.With("target_branch", record.TargetBranch) 81 101 82 82 - if record.Source == nil { 83 83 - reason := "not a branch-based pull request" 84 84 - l.Info("ignoring pull record", "reason", reason) 85 85 - return fmt.Errorf("ignoring pull record: %s", reason) 102 102 + if record.Target == nil { 103 103 + return fmt.Errorf("ignoring pull record: target repo is nil") 86 104 } 87 105 88 88 - if record.Source.Repo != nil { 89 89 - reason := "fork based pull" 90 90 - l.Info("ignoring pull record", "reason", reason) 91 91 - return fmt.Errorf("ignoring pull record: %s", reason) 92 92 - } 106 106 + l = l.With("target_repo", record.Target.Repo) 107 107 + l = l.With("target_branch", record.Target.Branch) 93 108 94 94 - allDids, err := h.db.GetAllDids() 95 95 - if err != nil { 96 96 - return err 109 109 + if record.Source == nil { 110 110 + return fmt.Errorf("ignoring pull record: not a branch-based pull request") 97 111 } 98 112 99 99 - // presently: we only process PRs from collaborators for pipelines 100 100 - if !slices.Contains(allDids, did) { 101 101 - reason := "not a known did" 102 102 - l.Info("rejecting pull record", "reason", reason) 103 103 - return fmt.Errorf("rejected pull record: %s, %s", reason, did) 113 113 + if record.Source.Repo != nil { 114 114 + return fmt.Errorf("ignoring pull record: fork based pull") 104 115 } 105 116 106 106 - repoAt, err := syntax.ParseATURI(record.TargetRepo) 117 117 + repoAt, err := syntax.ParseATURI(record.Target.Repo) 107 118 if err != nil { 108 108 - return err 119 119 + return fmt.Errorf("failed to parse ATURI: %w", err) 109 120 } 110 121 111 122 // resolve this aturi to extract the repo record ··· 121 132 122 133 resp, err := comatproto.RepoGetRecord(ctx, &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 123 134 if err != nil { 124 124 - return err 135 135 + return fmt.Errorf("failed to resolver repo: %w", err) 125 136 } 126 137 127 138 repo := resp.Value.Val.(*tangled.Repo) 128 139 129 140 if repo.Knot != h.c.Server.Hostname { 130 130 - reason := "not this knot" 131 131 - l.Info("rejecting pull record", "reason", reason) 132 132 - return fmt.Errorf("rejected pull record: %s", reason) 141 141 + return fmt.Errorf("rejected pull record: not this knot, %s != %s", repo.Knot, h.c.Server.Hostname) 133 142 } 134 143 135 144 didSlashRepo, err := securejoin.SecureJoin(repo.Owner, repo.Name) 136 145 if err != nil { 137 137 - return err 146 146 + return fmt.Errorf("failed to construct relative repo path: %w", err) 138 147 } 139 148 140 149 repoPath, err := securejoin.SecureJoin(h.c.Repo.ScanPath, didSlashRepo) 141 150 if err != nil { 142 142 - return err 151 151 + return fmt.Errorf("failed to construct absolute repo path: %w", err) 143 152 } 144 153 145 154 gr, err := git.Open(repoPath, record.Source.Branch) 146 155 if err != nil { 147 147 - return err 156 156 + return fmt.Errorf("failed to open git repository: %w", err) 148 157 } 149 158 150 159 workflowDir, err := gr.FileTree(ctx, workflow.WorkflowDir) 151 160 if err != nil { 152 152 - return err 161 161 + return fmt.Errorf("failed to open workflow directory: %w", err) 153 162 } 154 163 155 155 - var pipeline workflow.Pipeline 164 164 + var pipeline workflow.RawPipeline 156 165 for _, e := range workflowDir { 157 166 if !e.IsFile { 158 167 continue ··· 164 173 continue 165 174 } 166 175 167 167 - wf, err := workflow.FromFile(e.Name, contents) 168 168 - if err != nil { 169 169 - // TODO: log here, respond to client that is pushing 170 170 - h.l.Error("failed to parse workflow", "err", err, "path", fpath) 171 171 - continue 172 172 - } 173 173 - 174 174 - pipeline = append(pipeline, wf) 176 176 + pipeline = append(pipeline, workflow.RawWorkflow{ 177 177 + Name: e.Name, 178 178 + Contents: contents, 179 179 + }) 175 180 } 176 181 177 182 trigger := tangled.Pipeline_PullRequestTriggerData{ 178 183 Action: "create", 179 184 SourceBranch: record.Source.Branch, 180 185 SourceSha: record.Source.Sha, 181 181 - TargetBranch: record.TargetBranch, 186 186 + TargetBranch: record.Target.Branch, 182 187 } 183 188 184 189 compiler := workflow.Compiler{ ··· 193 198 }, 194 199 } 195 200 196 196 - cp := compiler.Compile(pipeline) 201 201 + cp := compiler.Compile(compiler.Parse(pipeline)) 197 202 eventJson, err := json.Marshal(cp) 198 203 if err != nil { 199 199 - return err 204 204 + return fmt.Errorf("failed to marshal pipeline event: %w", err) 200 205 } 201 206 202 207 // do not run empty pipelines ··· 204 209 return nil 205 210 } 206 211 207 207 - event := db.Event{ 212 212 + ev := db.Event{ 208 213 Rkey: TID(), 209 214 Nsid: tangled.PipelineNSID, 210 215 EventJson: string(eventJson), 211 216 } 212 217 213 213 - return h.db.InsertEvent(event, h.n) 218 218 + return h.db.InsertEvent(ev, h.n) 214 219 } 215 220 216 216 - func (h *Handle) fetchAndAddKeys(ctx context.Context, did string) error { 221 221 + // duplicated from add collaborator 222 222 + func (h *Knot) processCollaborator(ctx context.Context, event *models.Event) error { 223 223 + raw := json.RawMessage(event.Commit.Record) 224 224 + did := event.Did 225 225 + 226 226 + var record tangled.RepoCollaborator 227 227 + if err := json.Unmarshal(raw, &record); err != nil { 228 228 + return fmt.Errorf("failed to unmarshal record: %w", err) 229 229 + } 230 230 + 231 231 + repoAt, err := syntax.ParseATURI(record.Repo) 232 232 + if err != nil { 233 233 + return err 234 234 + } 235 235 + 236 236 + resolver := idresolver.DefaultResolver() 237 237 + 238 238 + subjectId, err := resolver.ResolveIdent(ctx, record.Subject) 239 239 + if err != nil || subjectId.Handle.IsInvalidHandle() { 240 240 + return err 241 241 + } 242 242 + 243 243 + // TODO: fix this for good, we need to fetch the record here unfortunately 244 244 + // resolve this aturi to extract the repo record 245 245 + owner, err := resolver.ResolveIdent(ctx, repoAt.Authority().String()) 246 246 + if err != nil || owner.Handle.IsInvalidHandle() { 247 247 + return fmt.Errorf("failed to resolve handle: %w", err) 248 248 + } 249 249 + 250 250 + xrpcc := xrpc.Client{ 251 251 + Host: owner.PDSEndpoint(), 252 252 + } 253 253 + 254 254 + resp, err := comatproto.RepoGetRecord(ctx, &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 255 255 + if err != nil { 256 256 + return err 257 257 + } 258 258 + 259 259 + repo := resp.Value.Val.(*tangled.Repo) 260 260 + didSlashRepo, _ := securejoin.SecureJoin(owner.DID.String(), repo.Name) 261 261 + 262 262 + // check perms for this user 263 263 + ok, err := h.e.IsCollaboratorInviteAllowed(did, rbac.ThisServer, didSlashRepo) 264 264 + if err != nil { 265 265 + return fmt.Errorf("failed to check permissions: %w", err) 266 266 + } 267 267 + if !ok { 268 268 + return fmt.Errorf("insufficient permissions: %s, %s, %s", did, "IsCollaboratorInviteAllowed", didSlashRepo) 269 269 + } 270 270 + 271 271 + if err := h.db.AddDid(subjectId.DID.String()); err != nil { 272 272 + return err 273 273 + } 274 274 + h.jc.AddDid(subjectId.DID.String()) 275 275 + 276 276 + if err := h.e.AddCollaborator(subjectId.DID.String(), rbac.ThisServer, didSlashRepo); err != nil { 277 277 + return err 278 278 + } 279 279 + 280 280 + return h.fetchAndAddKeys(ctx, subjectId.DID.String()) 281 281 + } 282 282 + 283 283 + func (h *Knot) fetchAndAddKeys(ctx context.Context, did string) error { 217 284 l := log.FromContext(ctx) 218 285 219 286 keysEndpoint, err := url.JoinPath(h.c.AppViewEndpoint, "keys", did) ··· 240 307 return fmt.Errorf("error reading response body: %w", err) 241 308 } 242 309 243 243 - for _, key := range strings.Split(string(plaintext), "\n") { 310 310 + for key := range strings.SplitSeq(string(plaintext), "\n") { 244 311 if key == "" { 245 312 continue 246 313 } ··· 256 323 return nil 257 324 } 258 325 259 259 - func (h *Handle) processMessages(ctx context.Context, event *models.Event) error { 260 260 - did := event.Did 326 326 + func (h *Knot) processMessages(ctx context.Context, event *models.Event) error { 261 327 if event.Kind != models.EventKindCommit { 262 328 return nil 263 329 } ··· 266 332 defer func() { 267 333 eventTime := event.TimeUS 268 334 lastTimeUs := eventTime + 1 269 269 - fmt.Println("lastTimeUs", lastTimeUs) 270 335 if err := h.db.SaveLastTimeUs(lastTimeUs); err != nil { 271 336 err = fmt.Errorf("(deferred) failed to save last time us: %w", err) 272 337 } 273 338 }() 274 339 275 275 - raw := json.RawMessage(event.Commit.Record) 276 276 - 277 340 switch event.Commit.Collection { 278 341 case tangled.PublicKeyNSID: 279 279 - var record tangled.PublicKey 280 280 - if err := json.Unmarshal(raw, &record); err != nil { 281 281 - return fmt.Errorf("failed to unmarshal record: %w", err) 282 282 - } 283 283 - if err := h.processPublicKey(ctx, did, record); err != nil { 284 284 - return fmt.Errorf("failed to process public key: %w", err) 285 285 - } 286 286 - 342 342 + err = h.processPublicKey(ctx, event) 287 343 case tangled.KnotMemberNSID: 288 288 - var record tangled.KnotMember 289 289 - if err := json.Unmarshal(raw, &record); err != nil { 290 290 - return fmt.Errorf("failed to unmarshal record: %w", err) 291 291 - } 292 292 - if err := h.processKnotMember(ctx, did, record); err != nil { 293 293 - return fmt.Errorf("failed to process knot member: %w", err) 294 294 - } 344 344 + err = h.processKnotMember(ctx, event) 295 345 case tangled.RepoPullNSID: 296 296 - var record tangled.RepoPull 297 297 - if err := json.Unmarshal(raw, &record); err != nil { 298 298 - return fmt.Errorf("failed to unmarshal record: %w", err) 299 299 - } 300 300 - if err := h.processPull(ctx, did, record); err != nil { 301 301 - return fmt.Errorf("failed to process knot member: %w", err) 302 302 - } 346 346 + err = h.processPull(ctx, event) 347 347 + case tangled.RepoCollaboratorNSID: 348 348 + err = h.processCollaborator(ctx, event) 349 349 + } 350 350 + 351 351 + if err != nil { 352 352 + h.l.Debug("failed to process event", "nsid", event.Commit.Collection, "err", err) 303 353 } 304 354 305 305 - return err 355 355 + return nil 306 356 }

+20 -39

knotserver/internal.go

··· 3 3 import ( 4 4 "context" 5 5 "encoding/json" 6 6 + "errors" 6 7 "fmt" 7 8 "log/slog" 8 9 "net/http" ··· 46 47 } 47 48 48 49 w.WriteHeader(http.StatusNoContent) 49 49 - return 50 50 } 51 51 52 52 func (h *InternalHandle) InternalKeys(w http.ResponseWriter, r *http.Request) { ··· 62 62 data = append(data, j) 63 63 } 64 64 writeJSON(w, data) 65 65 - return 66 65 } 67 66 68 67 type PushOptions struct { ··· 145 144 return fmt.Errorf("failed to open git repo at ref %s: %w", line.Ref, err) 146 145 } 147 146 148 148 - meta := gr.RefUpdateMeta(line) 147 147 + var errs error 148 148 + meta, err := gr.RefUpdateMeta(line) 149 149 + errors.Join(errs, err) 149 150 150 151 metaRecord := meta.AsRecord() 151 152 ··· 169 170 EventJson: string(eventJson), 170 171 } 171 172 172 172 - return h.db.InsertEvent(event, h.n) 173 173 + return errors.Join(errs, h.db.InsertEvent(event, h.n)) 173 174 } 174 175 175 176 func (h *InternalHandle) triggerPipeline(clientMsgs *[]string, line git.PostReceiveLine, gitUserDid, repoDid, repoName string, pushOptions PushOptions) error { ··· 197 198 return err 198 199 } 199 200 200 200 - pipelineParseErrors := []string{} 201 201 - 202 202 - var pipeline workflow.Pipeline 201 201 + var pipeline workflow.RawPipeline 203 202 for _, e := range workflowDir { 204 203 if !e.IsFile { 205 204 continue ··· 211 210 continue 212 211 } 213 212 214 214 - wf, err := workflow.FromFile(e.Name, contents) 215 215 - if err != nil { 216 216 - h.l.Error("failed to parse workflow", "err", err, "path", fpath) 217 217 - pipelineParseErrors = append(pipelineParseErrors, fmt.Sprintf("- at %s: %s\n", fpath, err)) 218 218 - continue 219 219 - } 220 220 - 221 221 - pipeline = append(pipeline, wf) 213 213 + pipeline = append(pipeline, workflow.RawWorkflow{ 214 214 + Name: e.Name, 215 215 + Contents: contents, 216 216 + }) 222 217 } 223 218 224 219 trigger := tangled.Pipeline_PushTriggerData{ ··· 239 234 }, 240 235 } 241 236 242 242 - cp := compiler.Compile(pipeline) 237 237 + cp := compiler.Compile(compiler.Parse(pipeline)) 243 238 eventJson, err := json.Marshal(cp) 244 239 if err != nil { 245 240 return err 246 241 } 247 242 243 243 + for _, e := range compiler.Diagnostics.Errors { 244 244 + *clientMsgs = append(*clientMsgs, e.String()) 245 245 + } 246 246 + 248 247 if pushOptions.verboseCi { 249 249 - hasDiagnostics := false 250 250 - if len(pipelineParseErrors) > 0 { 251 251 - hasDiagnostics = true 252 252 - *clientMsgs = append(*clientMsgs, "error: failed to parse workflow(s):") 253 253 - for _, error := range pipelineParseErrors { 254 254 - *clientMsgs = append(*clientMsgs, error) 255 255 - } 248 248 + if compiler.Diagnostics.IsEmpty() { 249 249 + *clientMsgs = append(*clientMsgs, "success: pipeline compiled with no diagnostics") 256 250 } 257 257 - if len(compiler.Diagnostics.Errors) > 0 { 258 258 - hasDiagnostics = true 259 259 - *clientMsgs = append(*clientMsgs, "error(s) on pipeline:") 260 260 - for _, error := range compiler.Diagnostics.Errors { 261 261 - *clientMsgs = append(*clientMsgs, fmt.Sprintf("- %s:", error)) 262 262 - } 263 263 - } 264 264 - if len(compiler.Diagnostics.Warnings) > 0 { 265 265 - hasDiagnostics = true 266 266 - *clientMsgs = append(*clientMsgs, "warning(s) on pipeline:") 267 267 - for _, warning := range compiler.Diagnostics.Warnings { 268 268 - *clientMsgs = append(*clientMsgs, fmt.Sprintf("- at %s: %s: %s", warning.Path, warning.Type, warning.Reason)) 269 269 - } 270 270 - } 271 271 - if !hasDiagnostics { 272 272 - *clientMsgs = append(*clientMsgs, "success: pipeline compiled with no diagnostics") 251 251 + 252 252 + for _, w := range compiler.Diagnostics.Warnings { 253 253 + *clientMsgs = append(*clientMsgs, w.String()) 273 254 } 274 255 } 275 256

-53

knotserver/middleware.go

··· 1 1 - package knotserver 2 2 - 3 3 - import ( 4 4 - "crypto/hmac" 5 5 - "crypto/sha256" 6 6 - "encoding/hex" 7 7 - "net/http" 8 8 - "time" 9 9 - ) 10 10 - 11 11 - func (h *Handle) VerifySignature(next http.Handler) http.Handler { 12 12 - if h.c.Server.Dev { 13 13 - return next 14 14 - } 15 15 - return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 16 16 - signature := r.Header.Get("X-Signature") 17 17 - if signature == "" || !h.verifyHMAC(signature, r) { 18 18 - writeError(w, "signature verification failed", http.StatusForbidden) 19 19 - return 20 20 - } 21 21 - next.ServeHTTP(w, r) 22 22 - }) 23 23 - } 24 24 - 25 25 - func (h *Handle) verifyHMAC(signature string, r *http.Request) bool { 26 26 - secret := h.c.Server.Secret 27 27 - timestamp := r.Header.Get("X-Timestamp") 28 28 - if timestamp == "" { 29 29 - return false 30 30 - } 31 31 - 32 32 - // Verify that the timestamp is not older than a minute 33 33 - reqTime, err := time.Parse(time.RFC3339, timestamp) 34 34 - if err != nil { 35 35 - return false 36 36 - } 37 37 - if time.Since(reqTime) > time.Minute { 38 38 - return false 39 39 - } 40 40 - 41 41 - message := r.Method + r.URL.Path + timestamp 42 42 - 43 43 - mac := hmac.New(sha256.New, []byte(secret)) 44 44 - mac.Write([]byte(message)) 45 45 - expectedMAC := mac.Sum(nil) 46 46 - 47 47 - signatureBytes, err := hex.DecodeString(signature) 48 48 - if err != nil { 49 49 - return false 50 50 - } 51 51 - 52 52 - return hmac.Equal(signatureBytes, expectedMAC) 53 53 - }

+152

knotserver/router.go

··· 1 1 + package knotserver 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "fmt" 6 6 + "log/slog" 7 7 + "net/http" 8 8 + 9 9 + "github.com/go-chi/chi/v5" 10 10 + "tangled.sh/tangled.sh/core/idresolver" 11 11 + "tangled.sh/tangled.sh/core/jetstream" 12 12 + "tangled.sh/tangled.sh/core/knotserver/config" 13 13 + "tangled.sh/tangled.sh/core/knotserver/db" 14 14 + "tangled.sh/tangled.sh/core/knotserver/xrpc" 15 15 + tlog "tangled.sh/tangled.sh/core/log" 16 16 + "tangled.sh/tangled.sh/core/notifier" 17 17 + "tangled.sh/tangled.sh/core/rbac" 18 18 + "tangled.sh/tangled.sh/core/xrpc/serviceauth" 19 19 + ) 20 20 + 21 21 + type Knot struct { 22 22 + c *config.Config 23 23 + db *db.DB 24 24 + jc *jetstream.JetstreamClient 25 25 + e *rbac.Enforcer 26 26 + l *slog.Logger 27 27 + n *notifier.Notifier 28 28 + resolver *idresolver.Resolver 29 29 + } 30 30 + 31 31 + func Setup(ctx context.Context, c *config.Config, db *db.DB, e *rbac.Enforcer, jc *jetstream.JetstreamClient, l *slog.Logger, n *notifier.Notifier) (http.Handler, error) { 32 32 + r := chi.NewRouter() 33 33 + 34 34 + h := Knot{ 35 35 + c: c, 36 36 + db: db, 37 37 + e: e, 38 38 + l: l, 39 39 + jc: jc, 40 40 + n: n, 41 41 + resolver: idresolver.DefaultResolver(), 42 42 + } 43 43 + 44 44 + err := e.AddKnot(rbac.ThisServer) 45 45 + if err != nil { 46 46 + return nil, fmt.Errorf("failed to setup enforcer: %w", err) 47 47 + } 48 48 + 49 49 + // configure owner 50 50 + if err = h.configureOwner(); err != nil { 51 51 + return nil, err 52 52 + } 53 53 + h.l.Info("owner set", "did", h.c.Server.Owner) 54 54 + h.jc.AddDid(h.c.Server.Owner) 55 55 + 56 56 + // configure known-dids in jetstream consumer 57 57 + dids, err := h.db.GetAllDids() 58 58 + if err != nil { 59 59 + return nil, fmt.Errorf("failed to get all dids: %w", err) 60 60 + } 61 61 + for _, d := range dids { 62 62 + jc.AddDid(d) 63 63 + } 64 64 + 65 65 + err = h.jc.StartJetstream(ctx, h.processMessages) 66 66 + if err != nil { 67 67 + return nil, fmt.Errorf("failed to start jetstream: %w", err) 68 68 + } 69 69 + 70 70 + r.Get("/", func(w http.ResponseWriter, r *http.Request) { 71 71 + w.Write([]byte("This is a knot server. More info at https://tangled.sh")) 72 72 + }) 73 73 + 74 74 + r.Route("/{did}", func(r chi.Router) { 75 75 + r.Route("/{name}", func(r chi.Router) { 76 76 + // routes for git operations 77 77 + r.Get("/info/refs", h.InfoRefs) 78 78 + r.Post("/git-upload-pack", h.UploadPack) 79 79 + r.Post("/git-receive-pack", h.ReceivePack) 80 80 + }) 81 81 + }) 82 82 + 83 83 + // xrpc apis 84 84 + r.Mount("/xrpc", h.XrpcRouter()) 85 85 + 86 86 + // Socket that streams git oplogs 87 87 + r.Get("/events", h.Events) 88 88 + 89 89 + return r, nil 90 90 + } 91 91 + 92 92 + func (h *Knot) XrpcRouter() http.Handler { 93 93 + logger := tlog.New("knots") 94 94 + 95 95 + serviceAuth := serviceauth.NewServiceAuth(h.l, h.resolver, h.c.Server.Did().String()) 96 96 + 97 97 + xrpc := &xrpc.Xrpc{ 98 98 + Config: h.c, 99 99 + Db: h.db, 100 100 + Ingester: h.jc, 101 101 + Enforcer: h.e, 102 102 + Logger: logger, 103 103 + Notifier: h.n, 104 104 + Resolver: h.resolver, 105 105 + ServiceAuth: serviceAuth, 106 106 + } 107 107 + return xrpc.Router() 108 108 + } 109 109 + 110 110 + func (h *Knot) configureOwner() error { 111 111 + cfgOwner := h.c.Server.Owner 112 112 + 113 113 + rbacDomain := "thisserver" 114 114 + 115 115 + existing, err := h.e.GetKnotUsersByRole("server:owner", rbacDomain) 116 116 + if err != nil { 117 117 + return err 118 118 + } 119 119 + 120 120 + switch len(existing) { 121 121 + case 0: 122 122 + // no owner configured, continue 123 123 + case 1: 124 124 + // find existing owner 125 125 + existingOwner := existing[0] 126 126 + 127 127 + // no ownership change, this is okay 128 128 + if existingOwner == h.c.Server.Owner { 129 129 + break 130 130 + } 131 131 + 132 132 + // remove existing owner 133 133 + if err = h.db.RemoveDid(existingOwner); err != nil { 134 134 + return err 135 135 + } 136 136 + if err = h.e.RemoveKnotOwner(rbacDomain, existingOwner); err != nil { 137 137 + return err 138 138 + } 139 139 + 140 140 + default: 141 141 + return fmt.Errorf("more than one owner in DB, try deleting %q and starting over", h.c.Server.DBPath) 142 142 + } 143 143 + 144 144 + if err = h.db.AddDid(cfgOwner); err != nil { 145 145 + return fmt.Errorf("failed to add owner to DB: %w", err) 146 146 + } 147 147 + if err := h.e.AddKnotOwner(rbacDomain, cfgOwner); err != nil { 148 148 + return fmt.Errorf("failed to add owner to RBAC: %w", err) 149 149 + } 150 150 + 151 151 + return nil 152 152 + }

-1348

knotserver/routes.go

··· 1 1 - package knotserver 2 2 - 3 3 - import ( 4 4 - "compress/gzip" 5 5 - "context" 6 6 - "crypto/hmac" 7 7 - "crypto/sha256" 8 8 - "encoding/hex" 9 9 - "encoding/json" 10 10 - "errors" 11 11 - "fmt" 12 12 - "log" 13 13 - "net/http" 14 14 - "net/url" 15 15 - "os" 16 16 - "path/filepath" 17 17 - "strconv" 18 18 - "strings" 19 19 - "sync" 20 20 - "time" 21 21 - 22 22 - securejoin "github.com/cyphar/filepath-securejoin" 23 23 - "github.com/gliderlabs/ssh" 24 24 - "github.com/go-chi/chi/v5" 25 25 - gogit "github.com/go-git/go-git/v5" 26 26 - "github.com/go-git/go-git/v5/plumbing" 27 27 - "github.com/go-git/go-git/v5/plumbing/object" 28 28 - "tangled.sh/tangled.sh/core/hook" 29 29 - "tangled.sh/tangled.sh/core/knotserver/db" 30 30 - "tangled.sh/tangled.sh/core/knotserver/git" 31 31 - "tangled.sh/tangled.sh/core/patchutil" 32 32 - "tangled.sh/tangled.sh/core/rbac" 33 33 - "tangled.sh/tangled.sh/core/types" 34 34 - ) 35 35 - 36 36 - func (h *Handle) Index(w http.ResponseWriter, r *http.Request) { 37 37 - w.Write([]byte("This is a knot server. More info at https://tangled.sh")) 38 38 - } 39 39 - 40 40 - func (h *Handle) Capabilities(w http.ResponseWriter, r *http.Request) { 41 41 - w.Header().Set("Content-Type", "application/json") 42 42 - 43 43 - capabilities := map[string]any{ 44 44 - "pull_requests": map[string]any{ 45 45 - "format_patch": true, 46 46 - "patch_submissions": true, 47 47 - "branch_submissions": true, 48 48 - "fork_submissions": true, 49 49 - }, 50 50 - } 51 51 - 52 52 - jsonData, err := json.Marshal(capabilities) 53 53 - if err != nil { 54 54 - http.Error(w, "Failed to serialize JSON", http.StatusInternalServerError) 55 55 - return 56 56 - } 57 57 - 58 58 - w.Write(jsonData) 59 59 - } 60 60 - 61 61 - func (h *Handle) RepoIndex(w http.ResponseWriter, r *http.Request) { 62 62 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 63 63 - l := h.l.With("path", path, "handler", "RepoIndex") 64 64 - ref := chi.URLParam(r, "ref") 65 65 - ref, _ = url.PathUnescape(ref) 66 66 - 67 67 - gr, err := git.Open(path, ref) 68 68 - if err != nil { 69 69 - plain, err2 := git.PlainOpen(path) 70 70 - if err2 != nil { 71 71 - l.Error("opening repo", "error", err2.Error()) 72 72 - notFound(w) 73 73 - return 74 74 - } 75 75 - branches, _ := plain.Branches() 76 76 - 77 77 - log.Println(err) 78 78 - 79 79 - if errors.Is(err, plumbing.ErrReferenceNotFound) { 80 80 - resp := types.RepoIndexResponse{ 81 81 - IsEmpty: true, 82 82 - Branches: branches, 83 83 - } 84 84 - writeJSON(w, resp) 85 85 - return 86 86 - } else { 87 87 - l.Error("opening repo", "error", err.Error()) 88 88 - notFound(w) 89 89 - return 90 90 - } 91 91 - } 92 92 - 93 93 - var ( 94 94 - commits []*object.Commit 95 95 - total int 96 96 - branches []types.Branch 97 97 - files []types.NiceTree 98 98 - tags []object.Tag 99 99 - ) 100 100 - 101 101 - var wg sync.WaitGroup 102 102 - errorsCh := make(chan error, 5) 103 103 - 104 104 - wg.Add(1) 105 105 - go func() { 106 106 - defer wg.Done() 107 107 - cs, err := gr.Commits(0, 60) 108 108 - if err != nil { 109 109 - errorsCh <- fmt.Errorf("commits: %w", err) 110 110 - return 111 111 - } 112 112 - commits = cs 113 113 - }() 114 114 - 115 115 - wg.Add(1) 116 116 - go func() { 117 117 - defer wg.Done() 118 118 - t, err := gr.TotalCommits() 119 119 - if err != nil { 120 120 - errorsCh <- fmt.Errorf("calculating total: %w", err) 121 121 - return 122 122 - } 123 123 - total = t 124 124 - }() 125 125 - 126 126 - wg.Add(1) 127 127 - go func() { 128 128 - defer wg.Done() 129 129 - bs, err := gr.Branches() 130 130 - if err != nil { 131 131 - errorsCh <- fmt.Errorf("fetching branches: %w", err) 132 132 - return 133 133 - } 134 134 - branches = bs 135 135 - }() 136 136 - 137 137 - wg.Add(1) 138 138 - go func() { 139 139 - defer wg.Done() 140 140 - ts, err := gr.Tags() 141 141 - if err != nil { 142 142 - errorsCh <- fmt.Errorf("fetching tags: %w", err) 143 143 - return 144 144 - } 145 145 - tags = ts 146 146 - }() 147 147 - 148 148 - wg.Add(1) 149 149 - go func() { 150 150 - defer wg.Done() 151 151 - fs, err := gr.FileTree(r.Context(), "") 152 152 - if err != nil { 153 153 - errorsCh <- fmt.Errorf("fetching filetree: %w", err) 154 154 - return 155 155 - } 156 156 - files = fs 157 157 - }() 158 158 - 159 159 - wg.Wait() 160 160 - close(errorsCh) 161 161 - 162 162 - // show any errors 163 163 - for err := range errorsCh { 164 164 - l.Error("loading repo", "error", err.Error()) 165 165 - writeError(w, err.Error(), http.StatusInternalServerError) 166 166 - return 167 167 - } 168 168 - 169 169 - rtags := []*types.TagReference{} 170 170 - for _, tag := range tags { 171 171 - var target *object.Tag 172 172 - if tag.Target != plumbing.ZeroHash { 173 173 - target = &tag 174 174 - } 175 175 - tr := types.TagReference{ 176 176 - Tag: target, 177 177 - } 178 178 - 179 179 - tr.Reference = types.Reference{ 180 180 - Name: tag.Name, 181 181 - Hash: tag.Hash.String(), 182 182 - } 183 183 - 184 184 - if tag.Message != "" { 185 185 - tr.Message = tag.Message 186 186 - } 187 187 - 188 188 - rtags = append(rtags, &tr) 189 189 - } 190 190 - 191 191 - var readmeContent string 192 192 - var readmeFile string 193 193 - for _, readme := range h.c.Repo.Readme { 194 194 - content, _ := gr.FileContent(readme) 195 195 - if len(content) > 0 { 196 196 - readmeContent = string(content) 197 197 - readmeFile = readme 198 198 - } 199 199 - } 200 200 - 201 201 - if ref == "" { 202 202 - mainBranch, err := gr.FindMainBranch() 203 203 - if err != nil { 204 204 - writeError(w, err.Error(), http.StatusInternalServerError) 205 205 - l.Error("finding main branch", "error", err.Error()) 206 206 - return 207 207 - } 208 208 - ref = mainBranch 209 209 - } 210 210 - 211 211 - resp := types.RepoIndexResponse{ 212 212 - IsEmpty: false, 213 213 - Ref: ref, 214 214 - Commits: commits, 215 215 - Description: getDescription(path), 216 216 - Readme: readmeContent, 217 217 - ReadmeFileName: readmeFile, 218 218 - Files: files, 219 219 - Branches: branches, 220 220 - Tags: rtags, 221 221 - TotalCommits: total, 222 222 - } 223 223 - 224 224 - writeJSON(w, resp) 225 225 - return 226 226 - } 227 227 - 228 228 - func (h *Handle) RepoTree(w http.ResponseWriter, r *http.Request) { 229 229 - treePath := chi.URLParam(r, "*") 230 230 - ref := chi.URLParam(r, "ref") 231 231 - ref, _ = url.PathUnescape(ref) 232 232 - 233 233 - l := h.l.With("handler", "RepoTree", "ref", ref, "treePath", treePath) 234 234 - 235 235 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 236 236 - gr, err := git.Open(path, ref) 237 237 - if err != nil { 238 238 - notFound(w) 239 239 - return 240 240 - } 241 241 - 242 242 - files, err := gr.FileTree(r.Context(), treePath) 243 243 - if err != nil { 244 244 - writeError(w, err.Error(), http.StatusInternalServerError) 245 245 - l.Error("file tree", "error", err.Error()) 246 246 - return 247 247 - } 248 248 - 249 249 - resp := types.RepoTreeResponse{ 250 250 - Ref: ref, 251 251 - Parent: treePath, 252 252 - Description: getDescription(path), 253 253 - DotDot: filepath.Dir(treePath), 254 254 - Files: files, 255 255 - } 256 256 - 257 257 - writeJSON(w, resp) 258 258 - return 259 259 - } 260 260 - 261 261 - func (h *Handle) BlobRaw(w http.ResponseWriter, r *http.Request) { 262 262 - treePath := chi.URLParam(r, "*") 263 263 - ref := chi.URLParam(r, "ref") 264 264 - ref, _ = url.PathUnescape(ref) 265 265 - 266 266 - l := h.l.With("handler", "BlobRaw", "ref", ref, "treePath", treePath) 267 267 - 268 268 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 269 269 - gr, err := git.Open(path, ref) 270 270 - if err != nil { 271 271 - notFound(w) 272 272 - return 273 273 - } 274 274 - 275 275 - contents, err := gr.RawContent(treePath) 276 276 - if err != nil { 277 277 - writeError(w, err.Error(), http.StatusBadRequest) 278 278 - l.Error("file content", "error", err.Error()) 279 279 - return 280 280 - } 281 281 - 282 282 - mimeType := http.DetectContentType(contents) 283 283 - 284 284 - // exception for svg 285 285 - if filepath.Ext(treePath) == ".svg" { 286 286 - mimeType = "image/svg+xml" 287 287 - } 288 288 - 289 289 - // allow image, video, and text/plain files to be served directly 290 290 - switch { 291 291 - case strings.HasPrefix(mimeType, "image/"): 292 292 - // allowed 293 293 - case strings.HasPrefix(mimeType, "video/"): 294 294 - // allowed 295 295 - case strings.HasPrefix(mimeType, "text/plain"): 296 296 - // allowed 297 297 - default: 298 298 - l.Error("attempted to serve disallowed file type", "mimetype", mimeType) 299 299 - writeError(w, "only image, video, and text files can be accessed directly", http.StatusForbidden) 300 300 - return 301 301 - } 302 302 - 303 303 - w.Header().Set("Cache-Control", "public, max-age=86400") // cache for 24 hours 304 304 - w.Header().Set("ETag", fmt.Sprintf("%x", sha256.Sum256(contents))) 305 305 - w.Header().Set("Content-Type", mimeType) 306 306 - w.Write(contents) 307 307 - } 308 308 - 309 309 - func (h *Handle) Blob(w http.ResponseWriter, r *http.Request) { 310 310 - treePath := chi.URLParam(r, "*") 311 311 - ref := chi.URLParam(r, "ref") 312 312 - ref, _ = url.PathUnescape(ref) 313 313 - 314 314 - l := h.l.With("handler", "Blob", "ref", ref, "treePath", treePath) 315 315 - 316 316 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 317 317 - gr, err := git.Open(path, ref) 318 318 - if err != nil { 319 319 - notFound(w) 320 320 - return 321 321 - } 322 322 - 323 323 - var isBinaryFile bool = false 324 324 - contents, err := gr.FileContent(treePath) 325 325 - if errors.Is(err, git.ErrBinaryFile) { 326 326 - isBinaryFile = true 327 327 - } else if errors.Is(err, object.ErrFileNotFound) { 328 328 - notFound(w) 329 329 - return 330 330 - } else if err != nil { 331 331 - writeError(w, err.Error(), http.StatusInternalServerError) 332 332 - return 333 333 - } 334 334 - 335 335 - bytes := []byte(contents) 336 336 - // safe := string(sanitize(bytes)) 337 337 - sizeHint := len(bytes) 338 338 - 339 339 - resp := types.RepoBlobResponse{ 340 340 - Ref: ref, 341 341 - Contents: string(bytes), 342 342 - Path: treePath, 343 343 - IsBinary: isBinaryFile, 344 344 - SizeHint: uint64(sizeHint), 345 345 - } 346 346 - 347 347 - h.showFile(resp, w, l) 348 348 - } 349 349 - 350 350 - func (h *Handle) Archive(w http.ResponseWriter, r *http.Request) { 351 351 - name := chi.URLParam(r, "name") 352 352 - file := chi.URLParam(r, "file") 353 353 - 354 354 - l := h.l.With("handler", "Archive", "name", name, "file", file) 355 355 - 356 356 - // TODO: extend this to add more files compression (e.g.: xz) 357 357 - if !strings.HasSuffix(file, ".tar.gz") { 358 358 - notFound(w) 359 359 - return 360 360 - } 361 361 - 362 362 - ref := strings.TrimSuffix(file, ".tar.gz") 363 363 - 364 364 - // This allows the browser to use a proper name for the file when 365 365 - // downloading 366 366 - filename := fmt.Sprintf("%s-%s.tar.gz", name, ref) 367 367 - setContentDisposition(w, filename) 368 368 - setGZipMIME(w) 369 369 - 370 370 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 371 371 - gr, err := git.Open(path, ref) 372 372 - if err != nil { 373 373 - notFound(w) 374 374 - return 375 375 - } 376 376 - 377 377 - gw := gzip.NewWriter(w) 378 378 - defer gw.Close() 379 379 - 380 380 - prefix := fmt.Sprintf("%s-%s", name, ref) 381 381 - err = gr.WriteTar(gw, prefix) 382 382 - if err != nil { 383 383 - // once we start writing to the body we can't report error anymore 384 384 - // so we are only left with printing the error. 385 385 - l.Error("writing tar file", "error", err.Error()) 386 386 - return 387 387 - } 388 388 - 389 389 - err = gw.Flush() 390 390 - if err != nil { 391 391 - // once we start writing to the body we can't report error anymore 392 392 - // so we are only left with printing the error. 393 393 - l.Error("flushing?", "error", err.Error()) 394 394 - return 395 395 - } 396 396 - } 397 397 - 398 398 - func (h *Handle) Log(w http.ResponseWriter, r *http.Request) { 399 399 - ref := chi.URLParam(r, "ref") 400 400 - ref, _ = url.PathUnescape(ref) 401 401 - 402 402 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 403 403 - 404 404 - l := h.l.With("handler", "Log", "ref", ref, "path", path) 405 405 - 406 406 - gr, err := git.Open(path, ref) 407 407 - if err != nil { 408 408 - notFound(w) 409 409 - return 410 410 - } 411 411 - 412 412 - // Get page parameters 413 413 - page := 1 414 414 - pageSize := 30 415 415 - 416 416 - if pageParam := r.URL.Query().Get("page"); pageParam != "" { 417 417 - if p, err := strconv.Atoi(pageParam); err == nil && p > 0 { 418 418 - page = p 419 419 - } 420 420 - } 421 421 - 422 422 - if pageSizeParam := r.URL.Query().Get("per_page"); pageSizeParam != "" { 423 423 - if ps, err := strconv.Atoi(pageSizeParam); err == nil && ps > 0 { 424 424 - pageSize = ps 425 425 - } 426 426 - } 427 427 - 428 428 - // convert to offset/limit 429 429 - offset := (page - 1) * pageSize 430 430 - limit := pageSize 431 431 - 432 432 - commits, err := gr.Commits(offset, limit) 433 433 - if err != nil { 434 434 - writeError(w, err.Error(), http.StatusInternalServerError) 435 435 - l.Error("fetching commits", "error", err.Error()) 436 436 - return 437 437 - } 438 438 - 439 439 - total := len(commits) 440 440 - 441 441 - resp := types.RepoLogResponse{ 442 442 - Commits: commits, 443 443 - Ref: ref, 444 444 - Description: getDescription(path), 445 445 - Log: true, 446 446 - Total: total, 447 447 - Page: page, 448 448 - PerPage: pageSize, 449 449 - } 450 450 - 451 451 - writeJSON(w, resp) 452 452 - return 453 453 - } 454 454 - 455 455 - func (h *Handle) Diff(w http.ResponseWriter, r *http.Request) { 456 456 - ref := chi.URLParam(r, "ref") 457 457 - ref, _ = url.PathUnescape(ref) 458 458 - 459 459 - l := h.l.With("handler", "Diff", "ref", ref) 460 460 - 461 461 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 462 462 - gr, err := git.Open(path, ref) 463 463 - if err != nil { 464 464 - notFound(w) 465 465 - return 466 466 - } 467 467 - 468 468 - diff, err := gr.Diff() 469 469 - if err != nil { 470 470 - writeError(w, err.Error(), http.StatusInternalServerError) 471 471 - l.Error("getting diff", "error", err.Error()) 472 472 - return 473 473 - } 474 474 - 475 475 - resp := types.RepoCommitResponse{ 476 476 - Ref: ref, 477 477 - Diff: diff, 478 478 - } 479 479 - 480 480 - writeJSON(w, resp) 481 481 - return 482 482 - } 483 483 - 484 484 - func (h *Handle) Tags(w http.ResponseWriter, r *http.Request) { 485 485 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 486 486 - l := h.l.With("handler", "Refs") 487 487 - 488 488 - gr, err := git.Open(path, "") 489 489 - if err != nil { 490 490 - notFound(w) 491 491 - return 492 492 - } 493 493 - 494 494 - tags, err := gr.Tags() 495 495 - if err != nil { 496 496 - // Non-fatal, we *should* have at least one branch to show. 497 497 - l.Warn("getting tags", "error", err.Error()) 498 498 - } 499 499 - 500 500 - rtags := []*types.TagReference{} 501 501 - for _, tag := range tags { 502 502 - var target *object.Tag 503 503 - if tag.Target != plumbing.ZeroHash { 504 504 - target = &tag 505 505 - } 506 506 - tr := types.TagReference{ 507 507 - Tag: target, 508 508 - } 509 509 - 510 510 - tr.Reference = types.Reference{ 511 511 - Name: tag.Name, 512 512 - Hash: tag.Hash.String(), 513 513 - } 514 514 - 515 515 - if tag.Message != "" { 516 516 - tr.Message = tag.Message 517 517 - } 518 518 - 519 519 - rtags = append(rtags, &tr) 520 520 - } 521 521 - 522 522 - resp := types.RepoTagsResponse{ 523 523 - Tags: rtags, 524 524 - } 525 525 - 526 526 - writeJSON(w, resp) 527 527 - return 528 528 - } 529 529 - 530 530 - func (h *Handle) Branches(w http.ResponseWriter, r *http.Request) { 531 531 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 532 532 - 533 533 - gr, err := git.PlainOpen(path) 534 534 - if err != nil { 535 535 - notFound(w) 536 536 - return 537 537 - } 538 538 - 539 539 - branches, _ := gr.Branches() 540 540 - 541 541 - resp := types.RepoBranchesResponse{ 542 542 - Branches: branches, 543 543 - } 544 544 - 545 545 - writeJSON(w, resp) 546 546 - return 547 547 - } 548 548 - 549 549 - func (h *Handle) Branch(w http.ResponseWriter, r *http.Request) { 550 550 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 551 551 - branchName := chi.URLParam(r, "branch") 552 552 - branchName, _ = url.PathUnescape(branchName) 553 553 - 554 554 - l := h.l.With("handler", "Branch") 555 555 - 556 556 - gr, err := git.PlainOpen(path) 557 557 - if err != nil { 558 558 - notFound(w) 559 559 - return 560 560 - } 561 561 - 562 562 - ref, err := gr.Branch(branchName) 563 563 - if err != nil { 564 564 - l.Error("getting branch", "error", err.Error()) 565 565 - writeError(w, err.Error(), http.StatusInternalServerError) 566 566 - return 567 567 - } 568 568 - 569 569 - commit, err := gr.Commit(ref.Hash()) 570 570 - if err != nil { 571 571 - l.Error("getting commit object", "error", err.Error()) 572 572 - writeError(w, err.Error(), http.StatusInternalServerError) 573 573 - return 574 574 - } 575 575 - 576 576 - defaultBranch, err := gr.FindMainBranch() 577 577 - isDefault := false 578 578 - if err != nil { 579 579 - l.Error("getting default branch", "error", err.Error()) 580 580 - // do not quit though 581 581 - } else if defaultBranch == branchName { 582 582 - isDefault = true 583 583 - } 584 584 - 585 585 - resp := types.RepoBranchResponse{ 586 586 - Branch: types.Branch{ 587 587 - Reference: types.Reference{ 588 588 - Name: ref.Name().Short(), 589 589 - Hash: ref.Hash().String(), 590 590 - }, 591 591 - Commit: commit, 592 592 - IsDefault: isDefault, 593 593 - }, 594 594 - } 595 595 - 596 596 - writeJSON(w, resp) 597 597 - return 598 598 - } 599 599 - 600 600 - func (h *Handle) Keys(w http.ResponseWriter, r *http.Request) { 601 601 - l := h.l.With("handler", "Keys") 602 602 - 603 603 - switch r.Method { 604 604 - case http.MethodGet: 605 605 - keys, err := h.db.GetAllPublicKeys() 606 606 - if err != nil { 607 607 - writeError(w, err.Error(), http.StatusInternalServerError) 608 608 - l.Error("getting public keys", "error", err.Error()) 609 609 - return 610 610 - } 611 611 - 612 612 - data := make([]map[string]any, 0) 613 613 - for _, key := range keys { 614 614 - j := key.JSON() 615 615 - data = append(data, j) 616 616 - } 617 617 - writeJSON(w, data) 618 618 - return 619 619 - 620 620 - case http.MethodPut: 621 621 - pk := db.PublicKey{} 622 622 - if err := json.NewDecoder(r.Body).Decode(&pk); err != nil { 623 623 - writeError(w, "invalid request body", http.StatusBadRequest) 624 624 - return 625 625 - } 626 626 - 627 627 - _, _, _, _, err := ssh.ParseAuthorizedKey([]byte(pk.Key)) 628 628 - if err != nil { 629 629 - writeError(w, "invalid pubkey", http.StatusBadRequest) 630 630 - } 631 631 - 632 632 - if err := h.db.AddPublicKey(pk); err != nil { 633 633 - writeError(w, err.Error(), http.StatusInternalServerError) 634 634 - l.Error("adding public key", "error", err.Error()) 635 635 - return 636 636 - } 637 637 - 638 638 - w.WriteHeader(http.StatusNoContent) 639 639 - return 640 640 - } 641 641 - } 642 642 - 643 643 - func (h *Handle) NewRepo(w http.ResponseWriter, r *http.Request) { 644 644 - l := h.l.With("handler", "NewRepo") 645 645 - 646 646 - data := struct { 647 647 - Did string `json:"did"` 648 648 - Name string `json:"name"` 649 649 - DefaultBranch string `json:"default_branch,omitempty"` 650 650 - }{} 651 651 - 652 652 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 653 653 - writeError(w, "invalid request body", http.StatusBadRequest) 654 654 - return 655 655 - } 656 656 - 657 657 - if data.DefaultBranch == "" { 658 658 - data.DefaultBranch = h.c.Repo.MainBranch 659 659 - } 660 660 - 661 661 - did := data.Did 662 662 - name := data.Name 663 663 - defaultBranch := data.DefaultBranch 664 664 - 665 665 - if err := validateRepoName(name); err != nil { 666 666 - l.Error("creating repo", "error", err.Error()) 667 667 - writeError(w, err.Error(), http.StatusBadRequest) 668 668 - return 669 669 - } 670 670 - 671 671 - relativeRepoPath := filepath.Join(did, name) 672 672 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, relativeRepoPath) 673 673 - err := git.InitBare(repoPath, defaultBranch) 674 674 - if err != nil { 675 675 - l.Error("initializing bare repo", "error", err.Error()) 676 676 - if errors.Is(err, gogit.ErrRepositoryAlreadyExists) { 677 677 - writeError(w, "That repo already exists!", http.StatusConflict) 678 678 - return 679 679 - } else { 680 680 - writeError(w, err.Error(), http.StatusInternalServerError) 681 681 - return 682 682 - } 683 683 - } 684 684 - 685 685 - // add perms for this user to access the repo 686 686 - err = h.e.AddRepo(did, rbac.ThisServer, relativeRepoPath) 687 687 - if err != nil { 688 688 - l.Error("adding repo permissions", "error", err.Error()) 689 689 - writeError(w, err.Error(), http.StatusInternalServerError) 690 690 - return 691 691 - } 692 692 - 693 693 - hook.SetupRepo( 694 694 - hook.Config( 695 695 - hook.WithScanPath(h.c.Repo.ScanPath), 696 696 - hook.WithInternalApi(h.c.Server.InternalListenAddr), 697 697 - ), 698 698 - repoPath, 699 699 - ) 700 700 - 701 701 - w.WriteHeader(http.StatusNoContent) 702 702 - } 703 703 - 704 704 - func (h *Handle) RepoForkAheadBehind(w http.ResponseWriter, r *http.Request) { 705 705 - l := h.l.With("handler", "RepoForkSync") 706 706 - 707 707 - data := struct { 708 708 - Did string `json:"did"` 709 709 - Source string `json:"source"` 710 710 - Name string `json:"name,omitempty"` 711 711 - HiddenRef string `json:"hiddenref"` 712 712 - }{} 713 713 - 714 714 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 715 715 - writeError(w, "invalid request body", http.StatusBadRequest) 716 716 - return 717 717 - } 718 718 - 719 719 - did := data.Did 720 720 - source := data.Source 721 721 - 722 722 - if did == "" || source == "" { 723 723 - l.Error("invalid request body, empty did or name") 724 724 - w.WriteHeader(http.StatusBadRequest) 725 725 - return 726 726 - } 727 727 - 728 728 - var name string 729 729 - if data.Name != "" { 730 730 - name = data.Name 731 731 - } else { 732 732 - name = filepath.Base(source) 733 733 - } 734 734 - 735 735 - branch := chi.URLParam(r, "branch") 736 736 - branch, _ = url.PathUnescape(branch) 737 737 - 738 738 - relativeRepoPath := filepath.Join(did, name) 739 739 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, relativeRepoPath) 740 740 - 741 741 - gr, err := git.PlainOpen(repoPath) 742 742 - if err != nil { 743 743 - log.Println(err) 744 744 - notFound(w) 745 745 - return 746 746 - } 747 747 - 748 748 - forkCommit, err := gr.ResolveRevision(branch) 749 749 - if err != nil { 750 750 - l.Error("error resolving ref revision", "msg", err.Error()) 751 751 - writeError(w, fmt.Sprintf("error resolving revision %s", branch), http.StatusBadRequest) 752 752 - return 753 753 - } 754 754 - 755 755 - sourceCommit, err := gr.ResolveRevision(data.HiddenRef) 756 756 - if err != nil { 757 757 - l.Error("error resolving hidden ref revision", "msg", err.Error()) 758 758 - writeError(w, fmt.Sprintf("error resolving revision %s", data.HiddenRef), http.StatusBadRequest) 759 759 - return 760 760 - } 761 761 - 762 762 - status := types.UpToDate 763 763 - if forkCommit.Hash.String() != sourceCommit.Hash.String() { 764 764 - isAncestor, err := forkCommit.IsAncestor(sourceCommit) 765 765 - if err != nil { 766 766 - log.Printf("error resolving whether %s is ancestor of %s: %s", branch, data.HiddenRef, err) 767 767 - return 768 768 - } 769 769 - 770 770 - if isAncestor { 771 771 - status = types.FastForwardable 772 772 - } else { 773 773 - status = types.Conflict 774 774 - } 775 775 - } 776 776 - 777 777 - w.Header().Set("Content-Type", "application/json") 778 778 - json.NewEncoder(w).Encode(types.AncestorCheckResponse{Status: status}) 779 779 - } 780 780 - 781 781 - func (h *Handle) RepoLanguages(w http.ResponseWriter, r *http.Request) { 782 782 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 783 783 - ref := chi.URLParam(r, "ref") 784 784 - ref, _ = url.PathUnescape(ref) 785 785 - 786 786 - l := h.l.With("handler", "RepoLanguages") 787 787 - 788 788 - gr, err := git.Open(repoPath, ref) 789 789 - if err != nil { 790 790 - l.Error("opening repo", "error", err.Error()) 791 791 - notFound(w) 792 792 - return 793 793 - } 794 794 - 795 795 - ctx, cancel := context.WithTimeout(r.Context(), 1*time.Second) 796 796 - defer cancel() 797 797 - 798 798 - sizes, err := gr.AnalyzeLanguages(ctx) 799 799 - if err != nil { 800 800 - l.Error("failed to analyze languages", "error", err.Error()) 801 801 - writeError(w, err.Error(), http.StatusNoContent) 802 802 - return 803 803 - } 804 804 - 805 805 - resp := types.RepoLanguageResponse{Languages: sizes} 806 806 - 807 807 - writeJSON(w, resp) 808 808 - } 809 809 - 810 810 - func (h *Handle) RepoForkSync(w http.ResponseWriter, r *http.Request) { 811 811 - l := h.l.With("handler", "RepoForkSync") 812 812 - 813 813 - data := struct { 814 814 - Did string `json:"did"` 815 815 - Source string `json:"source"` 816 816 - Name string `json:"name,omitempty"` 817 817 - }{} 818 818 - 819 819 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 820 820 - writeError(w, "invalid request body", http.StatusBadRequest) 821 821 - return 822 822 - } 823 823 - 824 824 - did := data.Did 825 825 - source := data.Source 826 826 - 827 827 - if did == "" || source == "" { 828 828 - l.Error("invalid request body, empty did or name") 829 829 - w.WriteHeader(http.StatusBadRequest) 830 830 - return 831 831 - } 832 832 - 833 833 - var name string 834 834 - if data.Name != "" { 835 835 - name = data.Name 836 836 - } else { 837 837 - name = filepath.Base(source) 838 838 - } 839 839 - 840 840 - branch := chi.URLParam(r, "branch") 841 841 - branch, _ = url.PathUnescape(branch) 842 842 - 843 843 - relativeRepoPath := filepath.Join(did, name) 844 844 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, relativeRepoPath) 845 845 - 846 846 - gr, err := git.PlainOpen(repoPath) 847 847 - if err != nil { 848 848 - log.Println(err) 849 849 - notFound(w) 850 850 - return 851 851 - } 852 852 - 853 853 - err = gr.Sync(branch) 854 854 - if err != nil { 855 855 - l.Error("error syncing repo fork", "error", err.Error()) 856 856 - writeError(w, err.Error(), http.StatusInternalServerError) 857 857 - return 858 858 - } 859 859 - 860 860 - w.WriteHeader(http.StatusNoContent) 861 861 - } 862 862 - 863 863 - func (h *Handle) RepoFork(w http.ResponseWriter, r *http.Request) { 864 864 - l := h.l.With("handler", "RepoFork") 865 865 - 866 866 - data := struct { 867 867 - Did string `json:"did"` 868 868 - Source string `json:"source"` 869 869 - Name string `json:"name,omitempty"` 870 870 - }{} 871 871 - 872 872 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 873 873 - writeError(w, "invalid request body", http.StatusBadRequest) 874 874 - return 875 875 - } 876 876 - 877 877 - did := data.Did 878 878 - source := data.Source 879 879 - 880 880 - if did == "" || source == "" { 881 881 - l.Error("invalid request body, empty did or name") 882 882 - w.WriteHeader(http.StatusBadRequest) 883 883 - return 884 884 - } 885 885 - 886 886 - var name string 887 887 - if data.Name != "" { 888 888 - name = data.Name 889 889 - } else { 890 890 - name = filepath.Base(source) 891 891 - } 892 892 - 893 893 - relativeRepoPath := filepath.Join(did, name) 894 894 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, relativeRepoPath) 895 895 - 896 896 - err := git.Fork(repoPath, source) 897 897 - if err != nil { 898 898 - l.Error("forking repo", "error", err.Error()) 899 899 - writeError(w, err.Error(), http.StatusInternalServerError) 900 900 - return 901 901 - } 902 902 - 903 903 - // add perms for this user to access the repo 904 904 - err = h.e.AddRepo(did, rbac.ThisServer, relativeRepoPath) 905 905 - if err != nil { 906 906 - l.Error("adding repo permissions", "error", err.Error()) 907 907 - writeError(w, err.Error(), http.StatusInternalServerError) 908 908 - return 909 909 - } 910 910 - 911 911 - hook.SetupRepo( 912 912 - hook.Config( 913 913 - hook.WithScanPath(h.c.Repo.ScanPath), 914 914 - hook.WithInternalApi(h.c.Server.InternalListenAddr), 915 915 - ), 916 916 - repoPath, 917 917 - ) 918 918 - 919 919 - w.WriteHeader(http.StatusNoContent) 920 920 - } 921 921 - 922 922 - func (h *Handle) RemoveRepo(w http.ResponseWriter, r *http.Request) { 923 923 - l := h.l.With("handler", "RemoveRepo") 924 924 - 925 925 - data := struct { 926 926 - Did string `json:"did"` 927 927 - Name string `json:"name"` 928 928 - }{} 929 929 - 930 930 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 931 931 - writeError(w, "invalid request body", http.StatusBadRequest) 932 932 - return 933 933 - } 934 934 - 935 935 - did := data.Did 936 936 - name := data.Name 937 937 - 938 938 - if did == "" || name == "" { 939 939 - l.Error("invalid request body, empty did or name") 940 940 - w.WriteHeader(http.StatusBadRequest) 941 941 - return 942 942 - } 943 943 - 944 944 - relativeRepoPath := filepath.Join(did, name) 945 945 - repoPath, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, relativeRepoPath) 946 946 - err := os.RemoveAll(repoPath) 947 947 - if err != nil { 948 948 - l.Error("removing repo", "error", err.Error()) 949 949 - writeError(w, err.Error(), http.StatusInternalServerError) 950 950 - return 951 951 - } 952 952 - 953 953 - w.WriteHeader(http.StatusNoContent) 954 954 - 955 955 - } 956 956 - func (h *Handle) Merge(w http.ResponseWriter, r *http.Request) { 957 957 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 958 958 - 959 959 - data := types.MergeRequest{} 960 960 - 961 961 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 962 962 - writeError(w, err.Error(), http.StatusBadRequest) 963 963 - h.l.Error("git: failed to unmarshal json patch", "handler", "Merge", "error", err) 964 964 - return 965 965 - } 966 966 - 967 967 - mo := &git.MergeOptions{ 968 968 - AuthorName: data.AuthorName, 969 969 - AuthorEmail: data.AuthorEmail, 970 970 - CommitBody: data.CommitBody, 971 971 - CommitMessage: data.CommitMessage, 972 972 - } 973 973 - 974 974 - patch := data.Patch 975 975 - branch := data.Branch 976 976 - gr, err := git.Open(path, branch) 977 977 - if err != nil { 978 978 - notFound(w) 979 979 - return 980 980 - } 981 981 - 982 982 - mo.FormatPatch = patchutil.IsFormatPatch(patch) 983 983 - 984 984 - if err := gr.MergeWithOptions([]byte(patch), branch, mo); err != nil { 985 985 - var mergeErr *git.ErrMerge 986 986 - if errors.As(err, &mergeErr) { 987 987 - conflicts := make([]types.ConflictInfo, len(mergeErr.Conflicts)) 988 988 - for i, conflict := range mergeErr.Conflicts { 989 989 - conflicts[i] = types.ConflictInfo{ 990 990 - Filename: conflict.Filename, 991 991 - Reason: conflict.Reason, 992 992 - } 993 993 - } 994 994 - response := types.MergeCheckResponse{ 995 995 - IsConflicted: true, 996 996 - Conflicts: conflicts, 997 997 - Message: mergeErr.Message, 998 998 - } 999 999 - writeConflict(w, response) 1000 1000 - h.l.Error("git: merge conflict", "handler", "Merge", "error", mergeErr) 1001 1001 - } else { 1002 1002 - writeError(w, err.Error(), http.StatusBadRequest) 1003 1003 - h.l.Error("git: failed to merge", "handler", "Merge", "error", err.Error()) 1004 1004 - } 1005 1005 - return 1006 1006 - } 1007 1007 - 1008 1008 - w.WriteHeader(http.StatusOK) 1009 1009 - } 1010 1010 - 1011 1011 - func (h *Handle) MergeCheck(w http.ResponseWriter, r *http.Request) { 1012 1012 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 1013 1013 - 1014 1014 - var data struct { 1015 1015 - Patch string `json:"patch"` 1016 1016 - Branch string `json:"branch"` 1017 1017 - } 1018 1018 - 1019 1019 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 1020 1020 - writeError(w, err.Error(), http.StatusBadRequest) 1021 1021 - h.l.Error("git: failed to unmarshal json patch", "handler", "MergeCheck", "error", err) 1022 1022 - return 1023 1023 - } 1024 1024 - 1025 1025 - patch := data.Patch 1026 1026 - branch := data.Branch 1027 1027 - gr, err := git.Open(path, branch) 1028 1028 - if err != nil { 1029 1029 - notFound(w) 1030 1030 - return 1031 1031 - } 1032 1032 - 1033 1033 - err = gr.MergeCheck([]byte(patch), branch) 1034 1034 - if err == nil { 1035 1035 - response := types.MergeCheckResponse{ 1036 1036 - IsConflicted: false, 1037 1037 - } 1038 1038 - writeJSON(w, response) 1039 1039 - return 1040 1040 - } 1041 1041 - 1042 1042 - var mergeErr *git.ErrMerge 1043 1043 - if errors.As(err, &mergeErr) { 1044 1044 - conflicts := make([]types.ConflictInfo, len(mergeErr.Conflicts)) 1045 1045 - for i, conflict := range mergeErr.Conflicts { 1046 1046 - conflicts[i] = types.ConflictInfo{ 1047 1047 - Filename: conflict.Filename, 1048 1048 - Reason: conflict.Reason, 1049 1049 - } 1050 1050 - } 1051 1051 - response := types.MergeCheckResponse{ 1052 1052 - IsConflicted: true, 1053 1053 - Conflicts: conflicts, 1054 1054 - Message: mergeErr.Message, 1055 1055 - } 1056 1056 - writeConflict(w, response) 1057 1057 - h.l.Error("git: merge conflict", "handler", "MergeCheck", "error", mergeErr.Error()) 1058 1058 - return 1059 1059 - } 1060 1060 - writeError(w, err.Error(), http.StatusInternalServerError) 1061 1061 - h.l.Error("git: failed to check merge", "handler", "MergeCheck", "error", err.Error()) 1062 1062 - } 1063 1063 - 1064 1064 - func (h *Handle) Compare(w http.ResponseWriter, r *http.Request) { 1065 1065 - rev1 := chi.URLParam(r, "rev1") 1066 1066 - rev1, _ = url.PathUnescape(rev1) 1067 1067 - 1068 1068 - rev2 := chi.URLParam(r, "rev2") 1069 1069 - rev2, _ = url.PathUnescape(rev2) 1070 1070 - 1071 1071 - l := h.l.With("handler", "Compare", "r1", rev1, "r2", rev2) 1072 1072 - 1073 1073 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 1074 1074 - gr, err := git.PlainOpen(path) 1075 1075 - if err != nil { 1076 1076 - notFound(w) 1077 1077 - return 1078 1078 - } 1079 1079 - 1080 1080 - commit1, err := gr.ResolveRevision(rev1) 1081 1081 - if err != nil { 1082 1082 - l.Error("error resolving revision 1", "msg", err.Error()) 1083 1083 - writeError(w, fmt.Sprintf("error resolving revision %s", rev1), http.StatusBadRequest) 1084 1084 - return 1085 1085 - } 1086 1086 - 1087 1087 - commit2, err := gr.ResolveRevision(rev2) 1088 1088 - if err != nil { 1089 1089 - l.Error("error resolving revision 2", "msg", err.Error()) 1090 1090 - writeError(w, fmt.Sprintf("error resolving revision %s", rev2), http.StatusBadRequest) 1091 1091 - return 1092 1092 - } 1093 1093 - 1094 1094 - rawPatch, formatPatch, err := gr.FormatPatch(commit1, commit2) 1095 1095 - if err != nil { 1096 1096 - l.Error("error comparing revisions", "msg", err.Error()) 1097 1097 - writeError(w, "error comparing revisions", http.StatusBadRequest) 1098 1098 - return 1099 1099 - } 1100 1100 - 1101 1101 - writeJSON(w, types.RepoFormatPatchResponse{ 1102 1102 - Rev1: commit1.Hash.String(), 1103 1103 - Rev2: commit2.Hash.String(), 1104 1104 - FormatPatch: formatPatch, 1105 1105 - Patch: rawPatch, 1106 1106 - }) 1107 1107 - return 1108 1108 - } 1109 1109 - 1110 1110 - func (h *Handle) NewHiddenRef(w http.ResponseWriter, r *http.Request) { 1111 1111 - l := h.l.With("handler", "NewHiddenRef") 1112 1112 - 1113 1113 - forkRef := chi.URLParam(r, "forkRef") 1114 1114 - forkRef, _ = url.PathUnescape(forkRef) 1115 1115 - 1116 1116 - remoteRef := chi.URLParam(r, "remoteRef") 1117 1117 - remoteRef, _ = url.PathUnescape(remoteRef) 1118 1118 - 1119 1119 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 1120 1120 - gr, err := git.PlainOpen(path) 1121 1121 - if err != nil { 1122 1122 - notFound(w) 1123 1123 - return 1124 1124 - } 1125 1125 - 1126 1126 - err = gr.TrackHiddenRemoteRef(forkRef, remoteRef) 1127 1127 - if err != nil { 1128 1128 - l.Error("error tracking hidden remote ref", "msg", err.Error()) 1129 1129 - writeError(w, "error tracking hidden remote ref", http.StatusBadRequest) 1130 1130 - return 1131 1131 - } 1132 1132 - 1133 1133 - w.WriteHeader(http.StatusNoContent) 1134 1134 - return 1135 1135 - } 1136 1136 - 1137 1137 - func (h *Handle) AddMember(w http.ResponseWriter, r *http.Request) { 1138 1138 - l := h.l.With("handler", "AddMember") 1139 1139 - 1140 1140 - data := struct { 1141 1141 - Did string `json:"did"` 1142 1142 - }{} 1143 1143 - 1144 1144 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 1145 1145 - writeError(w, "invalid request body", http.StatusBadRequest) 1146 1146 - return 1147 1147 - } 1148 1148 - 1149 1149 - did := data.Did 1150 1150 - 1151 1151 - if err := h.db.AddDid(did); err != nil { 1152 1152 - l.Error("adding did", "error", err.Error()) 1153 1153 - writeError(w, err.Error(), http.StatusInternalServerError) 1154 1154 - return 1155 1155 - } 1156 1156 - h.jc.AddDid(did) 1157 1157 - 1158 1158 - if err := h.e.AddKnotMember(rbac.ThisServer, did); err != nil { 1159 1159 - l.Error("adding member", "error", err.Error()) 1160 1160 - writeError(w, err.Error(), http.StatusInternalServerError) 1161 1161 - return 1162 1162 - } 1163 1163 - 1164 1164 - if err := h.fetchAndAddKeys(r.Context(), did); err != nil { 1165 1165 - l.Error("fetching and adding keys", "error", err.Error()) 1166 1166 - writeError(w, err.Error(), http.StatusInternalServerError) 1167 1167 - return 1168 1168 - } 1169 1169 - 1170 1170 - w.WriteHeader(http.StatusNoContent) 1171 1171 - } 1172 1172 - 1173 1173 - func (h *Handle) AddRepoCollaborator(w http.ResponseWriter, r *http.Request) { 1174 1174 - l := h.l.With("handler", "AddRepoCollaborator") 1175 1175 - 1176 1176 - data := struct { 1177 1177 - Did string `json:"did"` 1178 1178 - }{} 1179 1179 - 1180 1180 - ownerDid := chi.URLParam(r, "did") 1181 1181 - repo := chi.URLParam(r, "name") 1182 1182 - 1183 1183 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 1184 1184 - writeError(w, "invalid request body", http.StatusBadRequest) 1185 1185 - return 1186 1186 - } 1187 1187 - 1188 1188 - if err := h.db.AddDid(data.Did); err != nil { 1189 1189 - l.Error("adding did", "error", err.Error()) 1190 1190 - writeError(w, err.Error(), http.StatusInternalServerError) 1191 1191 - return 1192 1192 - } 1193 1193 - h.jc.AddDid(data.Did) 1194 1194 - 1195 1195 - repoName, _ := securejoin.SecureJoin(ownerDid, repo) 1196 1196 - if err := h.e.AddCollaborator(data.Did, rbac.ThisServer, repoName); err != nil { 1197 1197 - l.Error("adding repo collaborator", "error", err.Error()) 1198 1198 - writeError(w, err.Error(), http.StatusInternalServerError) 1199 1199 - return 1200 1200 - } 1201 1201 - 1202 1202 - if err := h.fetchAndAddKeys(r.Context(), data.Did); err != nil { 1203 1203 - l.Error("fetching and adding keys", "error", err.Error()) 1204 1204 - writeError(w, err.Error(), http.StatusInternalServerError) 1205 1205 - return 1206 1206 - } 1207 1207 - 1208 1208 - w.WriteHeader(http.StatusNoContent) 1209 1209 - } 1210 1210 - 1211 1211 - func (h *Handle) DefaultBranch(w http.ResponseWriter, r *http.Request) { 1212 1212 - l := h.l.With("handler", "DefaultBranch") 1213 1213 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 1214 1214 - 1215 1215 - gr, err := git.Open(path, "") 1216 1216 - if err != nil { 1217 1217 - notFound(w) 1218 1218 - return 1219 1219 - } 1220 1220 - 1221 1221 - branch, err := gr.FindMainBranch() 1222 1222 - if err != nil { 1223 1223 - writeError(w, err.Error(), http.StatusInternalServerError) 1224 1224 - l.Error("getting default branch", "error", err.Error()) 1225 1225 - return 1226 1226 - } 1227 1227 - 1228 1228 - writeJSON(w, types.RepoDefaultBranchResponse{ 1229 1229 - Branch: branch, 1230 1230 - }) 1231 1231 - } 1232 1232 - 1233 1233 - func (h *Handle) SetDefaultBranch(w http.ResponseWriter, r *http.Request) { 1234 1234 - l := h.l.With("handler", "SetDefaultBranch") 1235 1235 - path, _ := securejoin.SecureJoin(h.c.Repo.ScanPath, didPath(r)) 1236 1236 - 1237 1237 - data := struct { 1238 1238 - Branch string `json:"branch"` 1239 1239 - }{} 1240 1240 - 1241 1241 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 1242 1242 - writeError(w, err.Error(), http.StatusBadRequest) 1243 1243 - return 1244 1244 - } 1245 1245 - 1246 1246 - gr, err := git.PlainOpen(path) 1247 1247 - if err != nil { 1248 1248 - notFound(w) 1249 1249 - return 1250 1250 - } 1251 1251 - 1252 1252 - err = gr.SetDefaultBranch(data.Branch) 1253 1253 - if err != nil { 1254 1254 - writeError(w, err.Error(), http.StatusInternalServerError) 1255 1255 - l.Error("setting default branch", "error", err.Error()) 1256 1256 - return 1257 1257 - } 1258 1258 - 1259 1259 - w.WriteHeader(http.StatusNoContent) 1260 1260 - } 1261 1261 - 1262 1262 - func (h *Handle) Init(w http.ResponseWriter, r *http.Request) { 1263 1263 - l := h.l.With("handler", "Init") 1264 1264 - 1265 1265 - if h.knotInitialized { 1266 1266 - writeError(w, "knot already initialized", http.StatusConflict) 1267 1267 - return 1268 1268 - } 1269 1269 - 1270 1270 - data := struct { 1271 1271 - Did string `json:"did"` 1272 1272 - }{} 1273 1273 - 1274 1274 - if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 1275 1275 - l.Error("failed to decode request body", "error", err.Error()) 1276 1276 - writeError(w, "invalid request body", http.StatusBadRequest) 1277 1277 - return 1278 1278 - } 1279 1279 - 1280 1280 - if data.Did == "" { 1281 1281 - l.Error("empty DID in request", "did", data.Did) 1282 1282 - writeError(w, "did is empty", http.StatusBadRequest) 1283 1283 - return 1284 1284 - } 1285 1285 - 1286 1286 - if err := h.db.AddDid(data.Did); err != nil { 1287 1287 - l.Error("failed to add DID", "error", err.Error()) 1288 1288 - writeError(w, err.Error(), http.StatusInternalServerError) 1289 1289 - return 1290 1290 - } 1291 1291 - h.jc.AddDid(data.Did) 1292 1292 - 1293 1293 - if err := h.e.AddKnotOwner(rbac.ThisServer, data.Did); err != nil { 1294 1294 - l.Error("adding owner", "error", err.Error()) 1295 1295 - writeError(w, err.Error(), http.StatusInternalServerError) 1296 1296 - return 1297 1297 - } 1298 1298 - 1299 1299 - if err := h.fetchAndAddKeys(r.Context(), data.Did); err != nil { 1300 1300 - l.Error("fetching and adding keys", "error", err.Error()) 1301 1301 - writeError(w, err.Error(), http.StatusInternalServerError) 1302 1302 - return 1303 1303 - } 1304 1304 - 1305 1305 - close(h.init) 1306 1306 - 1307 1307 - mac := hmac.New(sha256.New, []byte(h.c.Server.Secret)) 1308 1308 - mac.Write([]byte("ok")) 1309 1309 - w.Header().Add("X-Signature", hex.EncodeToString(mac.Sum(nil))) 1310 1310 - 1311 1311 - w.WriteHeader(http.StatusNoContent) 1312 1312 - } 1313 1313 - 1314 1314 - func (h *Handle) Health(w http.ResponseWriter, r *http.Request) { 1315 1315 - w.Write([]byte("ok")) 1316 1316 - } 1317 1317 - 1318 1318 - func validateRepoName(name string) error { 1319 1319 - // check for path traversal attempts 1320 1320 - if name == "." || name == ".." || 1321 1321 - strings.Contains(name, "/") || strings.Contains(name, "\\") { 1322 1322 - return fmt.Errorf("Repository name contains invalid path characters") 1323 1323 - } 1324 1324 - 1325 1325 - // check for sequences that could be used for traversal when normalized 1326 1326 - if strings.Contains(name, "./") || strings.Contains(name, "../") || 1327 1327 - strings.HasPrefix(name, ".") || strings.HasSuffix(name, ".") { 1328 1328 - return fmt.Errorf("Repository name contains invalid path sequence") 1329 1329 - } 1330 1330 - 1331 1331 - // then continue with character validation 1332 1332 - for _, char := range name { 1333 1333 - if !((char >= 'a' && char <= 'z') || 1334 1334 - (char >= 'A' && char <= 'Z') || 1335 1335 - (char >= '0' && char <= '9') || 1336 1336 - char == '-' || char == '_' || char == '.') { 1337 1337 - return fmt.Errorf("Repository name can only contain alphanumeric characters, periods, hyphens, and underscores") 1338 1338 - } 1339 1339 - } 1340 1340 - 1341 1341 - // additional check to prevent multiple sequential dots 1342 1342 - if strings.Contains(name, "..") { 1343 1343 - return fmt.Errorf("Repository name cannot contain sequential dots") 1344 1344 - } 1345 1345 - 1346 1346 - // if all checks pass 1347 1347 - return nil 1348 1348 - }

+17 -13

knotserver/server.go

··· 22 22 Usage: "run a knot server", 23 23 Action: Run, 24 24 Description: ` 25 25 - Environment variables: 26 26 - KNOT_SERVER_SECRET (required) 27 27 - KNOT_SERVER_HOSTNAME (required) 28 28 - KNOT_SERVER_LISTEN_ADDR (default: 0.0.0.0:5555) 29 29 - KNOT_SERVER_INTERNAL_LISTEN_ADDR (default: 127.0.0.1:5444) 30 30 - KNOT_SERVER_DB_PATH (default: knotserver.db) 31 31 - KNOT_SERVER_JETSTREAM_ENDPOINT (default: wss://jetstream1.us-west.bsky.network/subscribe) 32 32 - KNOT_SERVER_DEV (default: false) 33 33 - KNOT_REPO_SCAN_PATH (default: /home/git) 34 34 - KNOT_REPO_README (comma-separated list) 35 35 - KNOT_REPO_MAIN_BRANCH (default: main) 36 36 - APPVIEW_ENDPOINT (default: https://tangled.sh) 37 37 - `, 25 25 + Environment variables: 26 26 + KNOT_SERVER_LISTEN_ADDR (default: 0.0.0.0:5555) 27 27 + KNOT_SERVER_INTERNAL_LISTEN_ADDR (default: 127.0.0.1:5444) 28 28 + KNOT_SERVER_DB_PATH (default: knotserver.db) 29 29 + KNOT_SERVER_HOSTNAME (required) 30 30 + KNOT_SERVER_JETSTREAM_ENDPOINT (default: wss://jetstream1.us-west.bsky.network/subscribe) 31 31 + KNOT_SERVER_OWNER (required) 32 32 + KNOT_SERVER_LOG_DIDS (default: true) 33 33 + KNOT_SERVER_DEV (default: false) 34 34 + KNOT_REPO_SCAN_PATH (default: /home/git) 35 35 + KNOT_REPO_README (comma-separated list) 36 36 + KNOT_REPO_MAIN_BRANCH (default: main) 37 37 + KNOT_GIT_USER_NAME (default: Tangled) 38 38 + KNOT_GIT_USER_EMAIL (default: noreply@tangled.sh) 39 39 + APPVIEW_ENDPOINT (default: https://tangled.sh) 40 40 + `, 38 41 } 39 42 } 40 43 ··· 76 79 tangled.PublicKeyNSID, 77 80 tangled.KnotMemberNSID, 78 81 tangled.RepoPullNSID, 82 82 + tangled.RepoCollaboratorNSID, 79 83 }, nil, logger, db, true, c.Server.LogDids) 80 84 if err != nil { 81 85 logger.Error("failed to setup jetstream", "error", err)

+156

knotserver/xrpc/create_repo.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "errors" 6 6 + "fmt" 7 7 + "net/http" 8 8 + "path/filepath" 9 9 + "strings" 10 10 + 11 11 + comatproto "github.com/bluesky-social/indigo/api/atproto" 12 12 + "github.com/bluesky-social/indigo/atproto/syntax" 13 13 + "github.com/bluesky-social/indigo/xrpc" 14 14 + securejoin "github.com/cyphar/filepath-securejoin" 15 15 + gogit "github.com/go-git/go-git/v5" 16 16 + "tangled.sh/tangled.sh/core/api/tangled" 17 17 + "tangled.sh/tangled.sh/core/hook" 18 18 + "tangled.sh/tangled.sh/core/knotserver/git" 19 19 + "tangled.sh/tangled.sh/core/rbac" 20 20 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 21 21 + ) 22 22 + 23 23 + func (h *Xrpc) CreateRepo(w http.ResponseWriter, r *http.Request) { 24 24 + l := h.Logger.With("handler", "NewRepo") 25 25 + fail := func(e xrpcerr.XrpcError) { 26 26 + l.Error("failed", "kind", e.Tag, "error", e.Message) 27 27 + writeError(w, e, http.StatusBadRequest) 28 28 + } 29 29 + 30 30 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 31 31 + if !ok { 32 32 + fail(xrpcerr.MissingActorDidError) 33 33 + return 34 34 + } 35 35 + 36 36 + isMember, err := h.Enforcer.IsRepoCreateAllowed(actorDid.String(), rbac.ThisServer) 37 37 + if err != nil { 38 38 + fail(xrpcerr.GenericError(err)) 39 39 + return 40 40 + } 41 41 + if !isMember { 42 42 + fail(xrpcerr.AccessControlError(actorDid.String())) 43 43 + return 44 44 + } 45 45 + 46 46 + var data tangled.RepoCreate_Input 47 47 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 48 48 + fail(xrpcerr.GenericError(err)) 49 49 + return 50 50 + } 51 51 + 52 52 + rkey := data.Rkey 53 53 + 54 54 + ident, err := h.Resolver.ResolveIdent(r.Context(), actorDid.String()) 55 55 + if err != nil || ident.Handle.IsInvalidHandle() { 56 56 + fail(xrpcerr.GenericError(err)) 57 57 + return 58 58 + } 59 59 + 60 60 + xrpcc := xrpc.Client{ 61 61 + Host: ident.PDSEndpoint(), 62 62 + } 63 63 + 64 64 + resp, err := comatproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, actorDid.String(), rkey) 65 65 + if err != nil { 66 66 + fail(xrpcerr.GenericError(err)) 67 67 + return 68 68 + } 69 69 + 70 70 + repo := resp.Value.Val.(*tangled.Repo) 71 71 + 72 72 + defaultBranch := h.Config.Repo.MainBranch 73 73 + if data.DefaultBranch != nil && *data.DefaultBranch != "" { 74 74 + defaultBranch = *data.DefaultBranch 75 75 + } 76 76 + 77 77 + if err := validateRepoName(repo.Name); err != nil { 78 78 + l.Error("creating repo", "error", err.Error()) 79 79 + fail(xrpcerr.GenericError(err)) 80 80 + return 81 81 + } 82 82 + 83 83 + relativeRepoPath := filepath.Join(actorDid.String(), repo.Name) 84 84 + repoPath, _ := securejoin.SecureJoin(h.Config.Repo.ScanPath, relativeRepoPath) 85 85 + 86 86 + if data.Source != nil && *data.Source != "" { 87 87 + err = git.Fork(repoPath, *data.Source) 88 88 + if err != nil { 89 89 + l.Error("forking repo", "error", err.Error()) 90 90 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 91 91 + return 92 92 + } 93 93 + } else { 94 94 + err = git.InitBare(repoPath, defaultBranch) 95 95 + if err != nil { 96 96 + l.Error("initializing bare repo", "error", err.Error()) 97 97 + if errors.Is(err, gogit.ErrRepositoryAlreadyExists) { 98 98 + fail(xrpcerr.RepoExistsError("repository already exists")) 99 99 + return 100 100 + } else { 101 101 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 102 102 + return 103 103 + } 104 104 + } 105 105 + } 106 106 + 107 107 + // add perms for this user to access the repo 108 108 + err = h.Enforcer.AddRepo(actorDid.String(), rbac.ThisServer, relativeRepoPath) 109 109 + if err != nil { 110 110 + l.Error("adding repo permissions", "error", err.Error()) 111 111 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 112 112 + return 113 113 + } 114 114 + 115 115 + hook.SetupRepo( 116 116 + hook.Config( 117 117 + hook.WithScanPath(h.Config.Repo.ScanPath), 118 118 + hook.WithInternalApi(h.Config.Server.InternalListenAddr), 119 119 + ), 120 120 + repoPath, 121 121 + ) 122 122 + 123 123 + w.WriteHeader(http.StatusOK) 124 124 + } 125 125 + 126 126 + func validateRepoName(name string) error { 127 127 + // check for path traversal attempts 128 128 + if name == "." || name == ".." || 129 129 + strings.Contains(name, "/") || strings.Contains(name, "\\") { 130 130 + return fmt.Errorf("Repository name contains invalid path characters") 131 131 + } 132 132 + 133 133 + // check for sequences that could be used for traversal when normalized 134 134 + if strings.Contains(name, "./") || strings.Contains(name, "../") || 135 135 + strings.HasPrefix(name, ".") || strings.HasSuffix(name, ".") { 136 136 + return fmt.Errorf("Repository name contains invalid path sequence") 137 137 + } 138 138 + 139 139 + // then continue with character validation 140 140 + for _, char := range name { 141 141 + if !((char >= 'a' && char <= 'z') || 142 142 + (char >= 'A' && char <= 'Z') || 143 143 + (char >= '0' && char <= '9') || 144 144 + char == '-' || char == '_' || char == '.') { 145 145 + return fmt.Errorf("Repository name can only contain alphanumeric characters, periods, hyphens, and underscores") 146 146 + } 147 147 + } 148 148 + 149 149 + // additional check to prevent multiple sequential dots 150 150 + if strings.Contains(name, "..") { 151 151 + return fmt.Errorf("Repository name cannot contain sequential dots") 152 152 + } 153 153 + 154 154 + // if all checks pass 155 155 + return nil 156 156 + }

+96

knotserver/xrpc/delete_repo.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + "net/http" 7 7 + "os" 8 8 + "path/filepath" 9 9 + 10 10 + comatproto "github.com/bluesky-social/indigo/api/atproto" 11 11 + "github.com/bluesky-social/indigo/atproto/syntax" 12 12 + "github.com/bluesky-social/indigo/xrpc" 13 13 + securejoin "github.com/cyphar/filepath-securejoin" 14 14 + "tangled.sh/tangled.sh/core/api/tangled" 15 15 + "tangled.sh/tangled.sh/core/rbac" 16 16 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 17 17 + ) 18 18 + 19 19 + func (x *Xrpc) DeleteRepo(w http.ResponseWriter, r *http.Request) { 20 20 + l := x.Logger.With("handler", "DeleteRepo") 21 21 + fail := func(e xrpcerr.XrpcError) { 22 22 + l.Error("failed", "kind", e.Tag, "error", e.Message) 23 23 + writeError(w, e, http.StatusBadRequest) 24 24 + } 25 25 + 26 26 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 27 27 + if !ok { 28 28 + fail(xrpcerr.MissingActorDidError) 29 29 + return 30 30 + } 31 31 + 32 32 + var data tangled.RepoDelete_Input 33 33 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 34 34 + fail(xrpcerr.GenericError(err)) 35 35 + return 36 36 + } 37 37 + 38 38 + did := data.Did 39 39 + name := data.Name 40 40 + rkey := data.Rkey 41 41 + 42 42 + if did == "" || name == "" { 43 43 + fail(xrpcerr.GenericError(fmt.Errorf("did and name are required"))) 44 44 + return 45 45 + } 46 46 + 47 47 + ident, err := x.Resolver.ResolveIdent(r.Context(), actorDid.String()) 48 48 + if err != nil || ident.Handle.IsInvalidHandle() { 49 49 + fail(xrpcerr.GenericError(err)) 50 50 + return 51 51 + } 52 52 + 53 53 + xrpcc := xrpc.Client{ 54 54 + Host: ident.PDSEndpoint(), 55 55 + } 56 56 + 57 57 + // ensure that the record does not exists 58 58 + _, err = comatproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, actorDid.String(), rkey) 59 59 + if err == nil { 60 60 + fail(xrpcerr.RecordExistsError(rkey)) 61 61 + return 62 62 + } 63 63 + 64 64 + relativeRepoPath := filepath.Join(did, name) 65 65 + isDeleteAllowed, err := x.Enforcer.IsRepoDeleteAllowed(actorDid.String(), rbac.ThisServer, relativeRepoPath) 66 66 + if err != nil { 67 67 + fail(xrpcerr.GenericError(err)) 68 68 + return 69 69 + } 70 70 + if !isDeleteAllowed { 71 71 + fail(xrpcerr.AccessControlError(actorDid.String())) 72 72 + return 73 73 + } 74 74 + 75 75 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 76 76 + if err != nil { 77 77 + fail(xrpcerr.GenericError(err)) 78 78 + return 79 79 + } 80 80 + 81 81 + err = os.RemoveAll(repoPath) 82 82 + if err != nil { 83 83 + l.Error("deleting repo", "error", err.Error()) 84 84 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 85 85 + return 86 86 + } 87 87 + 88 88 + err = x.Enforcer.RemoveRepo(did, rbac.ThisServer, relativeRepoPath) 89 89 + if err != nil { 90 90 + l.Error("failed to delete repo from enforcer", "error", err.Error()) 91 91 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 92 92 + return 93 93 + } 94 94 + 95 95 + w.WriteHeader(http.StatusOK) 96 96 + }

+111

knotserver/xrpc/fork_status.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + "net/http" 7 7 + "path/filepath" 8 8 + 9 9 + "github.com/bluesky-social/indigo/atproto/syntax" 10 10 + securejoin "github.com/cyphar/filepath-securejoin" 11 11 + "tangled.sh/tangled.sh/core/api/tangled" 12 12 + "tangled.sh/tangled.sh/core/knotserver/git" 13 13 + "tangled.sh/tangled.sh/core/rbac" 14 14 + "tangled.sh/tangled.sh/core/types" 15 15 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 16 16 + ) 17 17 + 18 18 + func (x *Xrpc) ForkStatus(w http.ResponseWriter, r *http.Request) { 19 19 + l := x.Logger.With("handler", "ForkStatus") 20 20 + fail := func(e xrpcerr.XrpcError) { 21 21 + l.Error("failed", "kind", e.Tag, "error", e.Message) 22 22 + writeError(w, e, http.StatusBadRequest) 23 23 + } 24 24 + 25 25 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 26 26 + if !ok { 27 27 + fail(xrpcerr.MissingActorDidError) 28 28 + return 29 29 + } 30 30 + 31 31 + var data tangled.RepoForkStatus_Input 32 32 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 33 33 + fail(xrpcerr.GenericError(err)) 34 34 + return 35 35 + } 36 36 + 37 37 + did := data.Did 38 38 + source := data.Source 39 39 + branch := data.Branch 40 40 + hiddenRef := data.HiddenRef 41 41 + 42 42 + if did == "" || source == "" || branch == "" || hiddenRef == "" { 43 43 + fail(xrpcerr.GenericError(fmt.Errorf("did, source, branch, and hiddenRef are required"))) 44 44 + return 45 45 + } 46 46 + 47 47 + var name string 48 48 + if data.Name != "" { 49 49 + name = data.Name 50 50 + } else { 51 51 + name = filepath.Base(source) 52 52 + } 53 53 + 54 54 + relativeRepoPath := filepath.Join(did, name) 55 55 + 56 56 + if ok, err := x.Enforcer.IsPushAllowed(actorDid.String(), rbac.ThisServer, relativeRepoPath); !ok || err != nil { 57 57 + l.Error("insufficient permissions", "did", actorDid.String(), "repo", relativeRepoPath) 58 58 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 59 59 + return 60 60 + } 61 61 + 62 62 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 63 63 + if err != nil { 64 64 + fail(xrpcerr.GenericError(err)) 65 65 + return 66 66 + } 67 67 + 68 68 + gr, err := git.PlainOpen(repoPath) 69 69 + if err != nil { 70 70 + fail(xrpcerr.GenericError(fmt.Errorf("failed to open repository: %w", err))) 71 71 + return 72 72 + } 73 73 + 74 74 + forkCommit, err := gr.ResolveRevision(branch) 75 75 + if err != nil { 76 76 + l.Error("error resolving ref revision", "msg", err.Error()) 77 77 + fail(xrpcerr.GenericError(fmt.Errorf("error resolving revision %s: %w", branch, err))) 78 78 + return 79 79 + } 80 80 + 81 81 + sourceCommit, err := gr.ResolveRevision(hiddenRef) 82 82 + if err != nil { 83 83 + l.Error("error resolving hidden ref revision", "msg", err.Error()) 84 84 + fail(xrpcerr.GenericError(fmt.Errorf("error resolving revision %s: %w", hiddenRef, err))) 85 85 + return 86 86 + } 87 87 + 88 88 + status := types.UpToDate 89 89 + if forkCommit.Hash.String() != sourceCommit.Hash.String() { 90 90 + isAncestor, err := forkCommit.IsAncestor(sourceCommit) 91 91 + if err != nil { 92 92 + l.Error("error checking ancestor relationship", "error", err.Error()) 93 93 + fail(xrpcerr.GenericError(fmt.Errorf("error resolving whether %s is ancestor of %s: %w", branch, hiddenRef, err))) 94 94 + return 95 95 + } 96 96 + 97 97 + if isAncestor { 98 98 + status = types.FastForwardable 99 99 + } else { 100 100 + status = types.Conflict 101 101 + } 102 102 + } 103 103 + 104 104 + response := tangled.RepoForkStatus_Output{ 105 105 + Status: int64(status), 106 106 + } 107 107 + 108 108 + w.Header().Set("Content-Type", "application/json") 109 109 + w.WriteHeader(http.StatusOK) 110 110 + json.NewEncoder(w).Encode(response) 111 111 + }

+73

knotserver/xrpc/fork_sync.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + "net/http" 7 7 + "path/filepath" 8 8 + 9 9 + "github.com/bluesky-social/indigo/atproto/syntax" 10 10 + securejoin "github.com/cyphar/filepath-securejoin" 11 11 + "tangled.sh/tangled.sh/core/api/tangled" 12 12 + "tangled.sh/tangled.sh/core/knotserver/git" 13 13 + "tangled.sh/tangled.sh/core/rbac" 14 14 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 15 15 + ) 16 16 + 17 17 + func (x *Xrpc) ForkSync(w http.ResponseWriter, r *http.Request) { 18 18 + l := x.Logger.With("handler", "ForkSync") 19 19 + fail := func(e xrpcerr.XrpcError) { 20 20 + l.Error("failed", "kind", e.Tag, "error", e.Message) 21 21 + writeError(w, e, http.StatusBadRequest) 22 22 + } 23 23 + 24 24 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 25 25 + if !ok { 26 26 + fail(xrpcerr.MissingActorDidError) 27 27 + return 28 28 + } 29 29 + 30 30 + var data tangled.RepoForkSync_Input 31 31 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 32 32 + fail(xrpcerr.GenericError(err)) 33 33 + return 34 34 + } 35 35 + 36 36 + did := data.Did 37 37 + name := data.Name 38 38 + branch := data.Branch 39 39 + 40 40 + if did == "" || name == "" { 41 41 + fail(xrpcerr.GenericError(fmt.Errorf("did, name are required"))) 42 42 + return 43 43 + } 44 44 + 45 45 + relativeRepoPath := filepath.Join(did, name) 46 46 + 47 47 + if ok, err := x.Enforcer.IsPushAllowed(actorDid.String(), rbac.ThisServer, relativeRepoPath); !ok || err != nil { 48 48 + l.Error("insufficient permissions", "did", actorDid.String(), "repo", relativeRepoPath) 49 49 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 50 50 + return 51 51 + } 52 52 + 53 53 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 54 54 + if err != nil { 55 55 + fail(xrpcerr.GenericError(err)) 56 56 + return 57 57 + } 58 58 + 59 59 + gr, err := git.Open(repoPath, branch) 60 60 + if err != nil { 61 61 + fail(xrpcerr.GenericError(fmt.Errorf("failed to open repository: %w", err))) 62 62 + return 63 63 + } 64 64 + 65 65 + err = gr.Sync() 66 66 + if err != nil { 67 67 + l.Error("error syncing repo fork", "error", err.Error()) 68 68 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 69 69 + return 70 70 + } 71 71 + 72 72 + w.WriteHeader(http.StatusOK) 73 73 + }

+104

knotserver/xrpc/hidden_ref.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + "net/http" 7 7 + 8 8 + comatproto "github.com/bluesky-social/indigo/api/atproto" 9 9 + "github.com/bluesky-social/indigo/atproto/syntax" 10 10 + "github.com/bluesky-social/indigo/xrpc" 11 11 + securejoin "github.com/cyphar/filepath-securejoin" 12 12 + "tangled.sh/tangled.sh/core/api/tangled" 13 13 + "tangled.sh/tangled.sh/core/knotserver/git" 14 14 + "tangled.sh/tangled.sh/core/rbac" 15 15 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 16 16 + ) 17 17 + 18 18 + func (x *Xrpc) HiddenRef(w http.ResponseWriter, r *http.Request) { 19 19 + l := x.Logger.With("handler", "HiddenRef") 20 20 + fail := func(e xrpcerr.XrpcError) { 21 21 + l.Error("failed", "kind", e.Tag, "error", e.Message) 22 22 + writeError(w, e, http.StatusBadRequest) 23 23 + } 24 24 + 25 25 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 26 26 + if !ok { 27 27 + fail(xrpcerr.MissingActorDidError) 28 28 + return 29 29 + } 30 30 + 31 31 + var data tangled.RepoHiddenRef_Input 32 32 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 33 33 + fail(xrpcerr.GenericError(err)) 34 34 + return 35 35 + } 36 36 + 37 37 + forkRef := data.ForkRef 38 38 + remoteRef := data.RemoteRef 39 39 + repoAtUri := data.Repo 40 40 + 41 41 + if forkRef == "" || remoteRef == "" || repoAtUri == "" { 42 42 + fail(xrpcerr.GenericError(fmt.Errorf("forkRef, remoteRef, and repo are required"))) 43 43 + return 44 44 + } 45 45 + 46 46 + repoAt, err := syntax.ParseATURI(repoAtUri) 47 47 + if err != nil { 48 48 + fail(xrpcerr.InvalidRepoError(repoAtUri)) 49 49 + return 50 50 + } 51 51 + 52 52 + ident, err := x.Resolver.ResolveIdent(r.Context(), repoAt.Authority().String()) 53 53 + if err != nil || ident.Handle.IsInvalidHandle() { 54 54 + fail(xrpcerr.GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 55 55 + return 56 56 + } 57 57 + 58 58 + xrpcc := xrpc.Client{Host: ident.PDSEndpoint()} 59 59 + resp, err := comatproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 60 60 + if err != nil { 61 61 + fail(xrpcerr.GenericError(err)) 62 62 + return 63 63 + } 64 64 + 65 65 + repo := resp.Value.Val.(*tangled.Repo) 66 66 + didPath, err := securejoin.SecureJoin(actorDid.String(), repo.Name) 67 67 + if err != nil { 68 68 + fail(xrpcerr.GenericError(err)) 69 69 + return 70 70 + } 71 71 + 72 72 + if ok, err := x.Enforcer.IsPushAllowed(actorDid.String(), rbac.ThisServer, didPath); !ok || err != nil { 73 73 + l.Error("insufficient permissions", "did", actorDid.String(), "repo", didPath) 74 74 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 75 75 + return 76 76 + } 77 77 + 78 78 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, didPath) 79 79 + if err != nil { 80 80 + fail(xrpcerr.GenericError(err)) 81 81 + return 82 82 + } 83 83 + 84 84 + gr, err := git.PlainOpen(repoPath) 85 85 + if err != nil { 86 86 + fail(xrpcerr.GenericError(fmt.Errorf("failed to open repository: %w", err))) 87 87 + return 88 88 + } 89 89 + 90 90 + err = gr.TrackHiddenRemoteRef(forkRef, remoteRef) 91 91 + if err != nil { 92 92 + l.Error("error tracking hidden remote ref", "error", err.Error()) 93 93 + writeError(w, xrpcerr.GitError(err), http.StatusInternalServerError) 94 94 + return 95 95 + } 96 96 + 97 97 + response := tangled.RepoHiddenRef_Output{ 98 98 + Success: true, 99 99 + } 100 100 + 101 101 + w.Header().Set("Content-Type", "application/json") 102 102 + w.WriteHeader(http.StatusOK) 103 103 + json.NewEncoder(w).Encode(response) 104 104 + }

+49

knotserver/xrpc/list_keys.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "strconv" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/api/tangled" 8 8 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 9 9 + ) 10 10 + 11 11 + func (x *Xrpc) ListKeys(w http.ResponseWriter, r *http.Request) { 12 12 + cursor := r.URL.Query().Get("cursor") 13 13 + 14 14 + limit := 100 // default 15 15 + if limitStr := r.URL.Query().Get("limit"); limitStr != "" { 16 16 + if l, err := strconv.Atoi(limitStr); err == nil && l > 0 && l <= 1000 { 17 17 + limit = l 18 18 + } 19 19 + } 20 20 + 21 21 + keys, nextCursor, err := x.Db.GetPublicKeysPaginated(limit, cursor) 22 22 + if err != nil { 23 23 + x.Logger.Error("failed to get public keys", "error", err) 24 24 + writeError(w, xrpcerr.NewXrpcError( 25 25 + xrpcerr.WithTag("InternalServerError"), 26 26 + xrpcerr.WithMessage("failed to retrieve public keys"), 27 27 + ), http.StatusInternalServerError) 28 28 + return 29 29 + } 30 30 + 31 31 + publicKeys := make([]*tangled.KnotListKeys_PublicKey, 0, len(keys)) 32 32 + for _, key := range keys { 33 33 + publicKeys = append(publicKeys, &tangled.KnotListKeys_PublicKey{ 34 34 + Did: key.Did, 35 35 + Key: key.Key, 36 36 + CreatedAt: key.CreatedAt, 37 37 + }) 38 38 + } 39 39 + 40 40 + response := tangled.KnotListKeys_Output{ 41 41 + Keys: publicKeys, 42 42 + } 43 43 + 44 44 + if nextCursor != "" { 45 45 + response.Cursor = &nextCursor 46 46 + } 47 47 + 48 48 + writeJson(w, response) 49 49 + }

+114

knotserver/xrpc/merge.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "errors" 6 6 + "fmt" 7 7 + "net/http" 8 8 + 9 9 + "github.com/bluesky-social/indigo/atproto/syntax" 10 10 + securejoin "github.com/cyphar/filepath-securejoin" 11 11 + "tangled.sh/tangled.sh/core/api/tangled" 12 12 + "tangled.sh/tangled.sh/core/knotserver/git" 13 13 + "tangled.sh/tangled.sh/core/patchutil" 14 14 + "tangled.sh/tangled.sh/core/rbac" 15 15 + "tangled.sh/tangled.sh/core/types" 16 16 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 17 17 + ) 18 18 + 19 19 + func (x *Xrpc) Merge(w http.ResponseWriter, r *http.Request) { 20 20 + l := x.Logger.With("handler", "Merge") 21 21 + fail := func(e xrpcerr.XrpcError) { 22 22 + l.Error("failed", "kind", e.Tag, "error", e.Message) 23 23 + writeError(w, e, http.StatusBadRequest) 24 24 + } 25 25 + 26 26 + actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 27 27 + if !ok { 28 28 + fail(xrpcerr.MissingActorDidError) 29 29 + return 30 30 + } 31 31 + 32 32 + var data tangled.RepoMerge_Input 33 33 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 34 34 + fail(xrpcerr.GenericError(err)) 35 35 + return 36 36 + } 37 37 + 38 38 + did := data.Did 39 39 + name := data.Name 40 40 + 41 41 + if did == "" || name == "" { 42 42 + fail(xrpcerr.GenericError(fmt.Errorf("did and name are required"))) 43 43 + return 44 44 + } 45 45 + 46 46 + relativeRepoPath, err := securejoin.SecureJoin(did, name) 47 47 + if err != nil { 48 48 + fail(xrpcerr.GenericError(err)) 49 49 + return 50 50 + } 51 51 + 52 52 + if ok, err := x.Enforcer.IsPushAllowed(actorDid.String(), rbac.ThisServer, relativeRepoPath); !ok || err != nil { 53 53 + l.Error("insufficient permissions", "did", actorDid.String(), "repo", relativeRepoPath) 54 54 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 55 55 + return 56 56 + } 57 57 + 58 58 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 59 59 + if err != nil { 60 60 + fail(xrpcerr.GenericError(err)) 61 61 + return 62 62 + } 63 63 + 64 64 + gr, err := git.Open(repoPath, data.Branch) 65 65 + if err != nil { 66 66 + fail(xrpcerr.GenericError(fmt.Errorf("failed to open repository: %w", err))) 67 67 + return 68 68 + } 69 69 + 70 70 + mo := git.MergeOptions{} 71 71 + if data.AuthorName != nil { 72 72 + mo.AuthorName = *data.AuthorName 73 73 + } 74 74 + if data.AuthorEmail != nil { 75 75 + mo.AuthorEmail = *data.AuthorEmail 76 76 + } 77 77 + if data.CommitBody != nil { 78 78 + mo.CommitBody = *data.CommitBody 79 79 + } 80 80 + if data.CommitMessage != nil { 81 81 + mo.CommitMessage = *data.CommitMessage 82 82 + } 83 83 + 84 84 + mo.CommitterName = x.Config.Git.UserName 85 85 + mo.CommitterEmail = x.Config.Git.UserEmail 86 86 + mo.FormatPatch = patchutil.IsFormatPatch(data.Patch) 87 87 + 88 88 + err = gr.MergeWithOptions([]byte(data.Patch), data.Branch, mo) 89 89 + if err != nil { 90 90 + var mergeErr *git.ErrMerge 91 91 + if errors.As(err, &mergeErr) { 92 92 + conflicts := make([]types.ConflictInfo, len(mergeErr.Conflicts)) 93 93 + for i, conflict := range mergeErr.Conflicts { 94 94 + conflicts[i] = types.ConflictInfo{ 95 95 + Filename: conflict.Filename, 96 96 + Reason: conflict.Reason, 97 97 + } 98 98 + } 99 99 + 100 100 + conflictErr := xrpcerr.NewXrpcError( 101 101 + xrpcerr.WithTag("MergeConflict"), 102 102 + xrpcerr.WithMessage(fmt.Sprintf("Merge failed due to conflicts: %s", mergeErr.Message)), 103 103 + ) 104 104 + writeError(w, conflictErr, http.StatusConflict) 105 105 + return 106 106 + } else { 107 107 + l.Error("failed to merge", "error", err.Error()) 108 108 + writeError(w, xrpcerr.GitError(err), http.StatusInternalServerError) 109 109 + return 110 110 + } 111 111 + } 112 112 + 113 113 + w.WriteHeader(http.StatusOK) 114 114 + }

+87

knotserver/xrpc/merge_check.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "errors" 6 6 + "fmt" 7 7 + "net/http" 8 8 + 9 9 + securejoin "github.com/cyphar/filepath-securejoin" 10 10 + "tangled.sh/tangled.sh/core/api/tangled" 11 11 + "tangled.sh/tangled.sh/core/knotserver/git" 12 12 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 13 13 + ) 14 14 + 15 15 + func (x *Xrpc) MergeCheck(w http.ResponseWriter, r *http.Request) { 16 16 + l := x.Logger.With("handler", "MergeCheck") 17 17 + fail := func(e xrpcerr.XrpcError) { 18 18 + l.Error("failed", "kind", e.Tag, "error", e.Message) 19 19 + writeError(w, e, http.StatusBadRequest) 20 20 + } 21 21 + 22 22 + var data tangled.RepoMergeCheck_Input 23 23 + if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 24 24 + fail(xrpcerr.GenericError(err)) 25 25 + return 26 26 + } 27 27 + 28 28 + did := data.Did 29 29 + name := data.Name 30 30 + 31 31 + if did == "" || name == "" { 32 32 + fail(xrpcerr.GenericError(fmt.Errorf("did and name are required"))) 33 33 + return 34 34 + } 35 35 + 36 36 + relativeRepoPath, err := securejoin.SecureJoin(did, name) 37 37 + if err != nil { 38 38 + fail(xrpcerr.GenericError(err)) 39 39 + return 40 40 + } 41 41 + 42 42 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 43 43 + if err != nil { 44 44 + fail(xrpcerr.GenericError(err)) 45 45 + return 46 46 + } 47 47 + 48 48 + gr, err := git.Open(repoPath, data.Branch) 49 49 + if err != nil { 50 50 + fail(xrpcerr.GenericError(fmt.Errorf("failed to open repository: %w", err))) 51 51 + return 52 52 + } 53 53 + 54 54 + err = gr.MergeCheck([]byte(data.Patch), data.Branch) 55 55 + 56 56 + response := tangled.RepoMergeCheck_Output{ 57 57 + Is_conflicted: false, 58 58 + } 59 59 + 60 60 + if err != nil { 61 61 + var mergeErr *git.ErrMerge 62 62 + if errors.As(err, &mergeErr) { 63 63 + response.Is_conflicted = true 64 64 + 65 65 + conflicts := make([]*tangled.RepoMergeCheck_ConflictInfo, len(mergeErr.Conflicts)) 66 66 + for i, conflict := range mergeErr.Conflicts { 67 67 + conflicts[i] = &tangled.RepoMergeCheck_ConflictInfo{ 68 68 + Filename: conflict.Filename, 69 69 + Reason: conflict.Reason, 70 70 + } 71 71 + } 72 72 + response.Conflicts = conflicts 73 73 + 74 74 + if mergeErr.Message != "" { 75 75 + response.Message = &mergeErr.Message 76 76 + } 77 77 + } else { 78 78 + response.Is_conflicted = true 79 79 + errMsg := err.Error() 80 80 + response.Error = &errMsg 81 81 + } 82 82 + } 83 83 + 84 84 + w.Header().Set("Content-Type", "application/json") 85 85 + w.WriteHeader(http.StatusOK) 86 86 + json.NewEncoder(w).Encode(response) 87 87 + }

+22

knotserver/xrpc/owner.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + 6 6 + "tangled.sh/tangled.sh/core/api/tangled" 7 7 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 8 8 + ) 9 9 + 10 10 + func (x *Xrpc) Owner(w http.ResponseWriter, r *http.Request) { 11 11 + owner := x.Config.Server.Owner 12 12 + if owner == "" { 13 13 + writeError(w, xrpcerr.OwnerNotFoundError, http.StatusInternalServerError) 14 14 + return 15 15 + } 16 16 + 17 17 + response := tangled.Owner_Output{ 18 18 + Owner: owner, 19 19 + } 20 20 + 21 21 + writeJson(w, response) 22 22 + }

+81

knotserver/xrpc/repo_archive.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "compress/gzip" 5 5 + "fmt" 6 6 + "net/http" 7 7 + "strings" 8 8 + 9 9 + "github.com/go-git/go-git/v5/plumbing" 10 10 + 11 11 + "tangled.sh/tangled.sh/core/knotserver/git" 12 12 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 13 13 + ) 14 14 + 15 15 + func (x *Xrpc) RepoArchive(w http.ResponseWriter, r *http.Request) { 16 16 + repo := r.URL.Query().Get("repo") 17 17 + repoPath, err := x.parseRepoParam(repo) 18 18 + if err != nil { 19 19 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 20 20 + return 21 21 + } 22 22 + 23 23 + ref := r.URL.Query().Get("ref") 24 24 + // ref can be empty (git.Open handles this) 25 25 + 26 26 + format := r.URL.Query().Get("format") 27 27 + if format == "" { 28 28 + format = "tar.gz" // default 29 29 + } 30 30 + 31 31 + prefix := r.URL.Query().Get("prefix") 32 32 + 33 33 + if format != "tar.gz" { 34 34 + writeError(w, xrpcerr.NewXrpcError( 35 35 + xrpcerr.WithTag("InvalidRequest"), 36 36 + xrpcerr.WithMessage("only tar.gz format is supported"), 37 37 + ), http.StatusBadRequest) 38 38 + return 39 39 + } 40 40 + 41 41 + gr, err := git.Open(repoPath, ref) 42 42 + if err != nil { 43 43 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 44 44 + return 45 45 + } 46 46 + 47 47 + repoParts := strings.Split(repo, "/") 48 48 + repoName := repoParts[len(repoParts)-1] 49 49 + 50 50 + safeRefFilename := strings.ReplaceAll(plumbing.ReferenceName(ref).Short(), "/", "-") 51 51 + 52 52 + var archivePrefix string 53 53 + if prefix != "" { 54 54 + archivePrefix = prefix 55 55 + } else { 56 56 + archivePrefix = fmt.Sprintf("%s-%s", repoName, safeRefFilename) 57 57 + } 58 58 + 59 59 + filename := fmt.Sprintf("%s-%s.tar.gz", repoName, safeRefFilename) 60 60 + w.Header().Set("Content-Disposition", fmt.Sprintf("attachment; filename=\"%s\"", filename)) 61 61 + w.Header().Set("Content-Type", "application/gzip") 62 62 + 63 63 + gw := gzip.NewWriter(w) 64 64 + defer gw.Close() 65 65 + 66 66 + err = gr.WriteTar(gw, archivePrefix) 67 67 + if err != nil { 68 68 + // once we start writing to the body we can't report error anymore 69 69 + // so we are only left with logging the error 70 70 + x.Logger.Error("writing tar file", "error", err.Error()) 71 71 + return 72 72 + } 73 73 + 74 74 + err = gw.Flush() 75 75 + if err != nil { 76 76 + // once we start writing to the body we can't report error anymore 77 77 + // so we are only left with logging the error 78 78 + x.Logger.Error("flushing", "error", err.Error()) 79 79 + return 80 80 + } 81 81 + }

+143

knotserver/xrpc/repo_blob.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "crypto/sha256" 5 5 + "encoding/base64" 6 6 + "fmt" 7 7 + "net/http" 8 8 + "path/filepath" 9 9 + "slices" 10 10 + "strings" 11 11 + 12 12 + "tangled.sh/tangled.sh/core/api/tangled" 13 13 + "tangled.sh/tangled.sh/core/knotserver/git" 14 14 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 15 15 + ) 16 16 + 17 17 + func (x *Xrpc) RepoBlob(w http.ResponseWriter, r *http.Request) { 18 18 + repo := r.URL.Query().Get("repo") 19 19 + repoPath, err := x.parseRepoParam(repo) 20 20 + if err != nil { 21 21 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 22 22 + return 23 23 + } 24 24 + 25 25 + ref := r.URL.Query().Get("ref") 26 26 + // ref can be empty (git.Open handles this) 27 27 + 28 28 + treePath := r.URL.Query().Get("path") 29 29 + if treePath == "" { 30 30 + writeError(w, xrpcerr.NewXrpcError( 31 31 + xrpcerr.WithTag("InvalidRequest"), 32 32 + xrpcerr.WithMessage("missing path parameter"), 33 33 + ), http.StatusBadRequest) 34 34 + return 35 35 + } 36 36 + 37 37 + raw := r.URL.Query().Get("raw") == "true" 38 38 + 39 39 + gr, err := git.Open(repoPath, ref) 40 40 + if err != nil { 41 41 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 42 42 + return 43 43 + } 44 44 + 45 45 + contents, err := gr.RawContent(treePath) 46 46 + if err != nil { 47 47 + x.Logger.Error("file content", "error", err.Error()) 48 48 + writeError(w, xrpcerr.NewXrpcError( 49 49 + xrpcerr.WithTag("FileNotFound"), 50 50 + xrpcerr.WithMessage("file not found at the specified path"), 51 51 + ), http.StatusNotFound) 52 52 + return 53 53 + } 54 54 + 55 55 + mimeType := http.DetectContentType(contents) 56 56 + 57 57 + if filepath.Ext(treePath) == ".svg" { 58 58 + mimeType = "image/svg+xml" 59 59 + } 60 60 + 61 61 + if raw { 62 62 + contentHash := sha256.Sum256(contents) 63 63 + eTag := fmt.Sprintf("\"%x\"", contentHash) 64 64 + 65 65 + switch { 66 66 + case strings.HasPrefix(mimeType, "image/"), strings.HasPrefix(mimeType, "video/"): 67 67 + if clientETag := r.Header.Get("If-None-Match"); clientETag == eTag { 68 68 + w.WriteHeader(http.StatusNotModified) 69 69 + return 70 70 + } 71 71 + w.Header().Set("ETag", eTag) 72 72 + w.Header().Set("Content-Type", mimeType) 73 73 + 74 74 + case strings.HasPrefix(mimeType, "text/"): 75 75 + w.Header().Set("Cache-Control", "public, no-cache") 76 76 + // serve all text content as text/plain 77 77 + w.Header().Set("Content-Type", "text/plain; charset=utf-8") 78 78 + 79 79 + case isTextualMimeType(mimeType): 80 80 + // handle textual application types (json, xml, etc.) as text/plain 81 81 + w.Header().Set("Cache-Control", "public, no-cache") 82 82 + w.Header().Set("Content-Type", "text/plain; charset=utf-8") 83 83 + 84 84 + default: 85 85 + x.Logger.Error("attempted to serve disallowed file type", "mimetype", mimeType) 86 86 + writeError(w, xrpcerr.NewXrpcError( 87 87 + xrpcerr.WithTag("InvalidRequest"), 88 88 + xrpcerr.WithMessage("only image, video, and text files can be accessed directly"), 89 89 + ), http.StatusForbidden) 90 90 + return 91 91 + } 92 92 + w.Write(contents) 93 93 + return 94 94 + } 95 95 + 96 96 + isTextual := func(mt string) bool { 97 97 + return strings.HasPrefix(mt, "text/") || isTextualMimeType(mt) 98 98 + } 99 99 + 100 100 + var content string 101 101 + var encoding string 102 102 + 103 103 + isBinary := !isTextual(mimeType) 104 104 + 105 105 + if isBinary { 106 106 + content = base64.StdEncoding.EncodeToString(contents) 107 107 + encoding = "base64" 108 108 + } else { 109 109 + content = string(contents) 110 110 + encoding = "utf-8" 111 111 + } 112 112 + 113 113 + response := tangled.RepoBlob_Output{ 114 114 + Ref: ref, 115 115 + Path: treePath, 116 116 + Content: content, 117 117 + Encoding: &encoding, 118 118 + Size: &[]int64{int64(len(contents))}[0], 119 119 + IsBinary: &isBinary, 120 120 + } 121 121 + 122 122 + if mimeType != "" { 123 123 + response.MimeType = &mimeType 124 124 + } 125 125 + 126 126 + writeJson(w, response) 127 127 + } 128 128 + 129 129 + // isTextualMimeType returns true if the MIME type represents textual content 130 130 + // that should be served as text/plain for security reasons 131 131 + func isTextualMimeType(mimeType string) bool { 132 132 + textualTypes := []string{ 133 133 + "application/json", 134 134 + "application/xml", 135 135 + "application/yaml", 136 136 + "application/x-yaml", 137 137 + "application/toml", 138 138 + "application/javascript", 139 139 + "application/ecmascript", 140 140 + } 141 141 + 142 142 + return slices.Contains(textualTypes, mimeType) 143 143 + }

+85

knotserver/xrpc/repo_branch.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "net/url" 6 6 + "time" 7 7 + 8 8 + "tangled.sh/tangled.sh/core/api/tangled" 9 9 + "tangled.sh/tangled.sh/core/knotserver/git" 10 10 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 11 11 + ) 12 12 + 13 13 + func (x *Xrpc) RepoBranch(w http.ResponseWriter, r *http.Request) { 14 14 + repo := r.URL.Query().Get("repo") 15 15 + repoPath, err := x.parseRepoParam(repo) 16 16 + if err != nil { 17 17 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 18 18 + return 19 19 + } 20 20 + 21 21 + name := r.URL.Query().Get("name") 22 22 + if name == "" { 23 23 + writeError(w, xrpcerr.NewXrpcError( 24 24 + xrpcerr.WithTag("InvalidRequest"), 25 25 + xrpcerr.WithMessage("missing name parameter"), 26 26 + ), http.StatusBadRequest) 27 27 + return 28 28 + } 29 29 + 30 30 + branchName, _ := url.PathUnescape(name) 31 31 + 32 32 + gr, err := git.PlainOpen(repoPath) 33 33 + if err != nil { 34 34 + writeError(w, xrpcerr.RepoNotFoundError, http.StatusNoContent) 35 35 + return 36 36 + } 37 37 + 38 38 + ref, err := gr.Branch(branchName) 39 39 + if err != nil { 40 40 + x.Logger.Error("getting branch", "error", err.Error()) 41 41 + writeError(w, xrpcerr.NewXrpcError( 42 42 + xrpcerr.WithTag("BranchNotFound"), 43 43 + xrpcerr.WithMessage("branch not found"), 44 44 + ), http.StatusNotFound) 45 45 + return 46 46 + } 47 47 + 48 48 + commit, err := gr.Commit(ref.Hash()) 49 49 + if err != nil { 50 50 + x.Logger.Error("getting commit object", "error", err.Error()) 51 51 + writeError(w, xrpcerr.NewXrpcError( 52 52 + xrpcerr.WithTag("BranchNotFound"), 53 53 + xrpcerr.WithMessage("failed to get commit object"), 54 54 + ), http.StatusInternalServerError) 55 55 + return 56 56 + } 57 57 + 58 58 + defaultBranch, err := gr.FindMainBranch() 59 59 + isDefault := false 60 60 + if err != nil { 61 61 + x.Logger.Error("getting default branch", "error", err.Error()) 62 62 + } else if defaultBranch == branchName { 63 63 + isDefault = true 64 64 + } 65 65 + 66 66 + response := tangled.RepoBranch_Output{ 67 67 + Name: ref.Name().Short(), 68 68 + Hash: ref.Hash().String(), 69 69 + ShortHash: &[]string{ref.Hash().String()[:7]}[0], 70 70 + When: commit.Author.When.Format(time.RFC3339), 71 71 + IsDefault: &isDefault, 72 72 + } 73 73 + 74 74 + if commit.Message != "" { 75 75 + response.Message = &commit.Message 76 76 + } 77 77 + 78 78 + response.Author = &tangled.RepoBranch_Signature{ 79 79 + Name: commit.Author.Name, 80 80 + Email: commit.Author.Email, 81 81 + When: commit.Author.When.Format(time.RFC3339), 82 82 + } 83 83 + 84 84 + writeJson(w, response) 85 85 + }

+56

knotserver/xrpc/repo_branches.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "strconv" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/knotserver/git" 8 8 + "tangled.sh/tangled.sh/core/types" 9 9 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 10 10 + ) 11 11 + 12 12 + func (x *Xrpc) RepoBranches(w http.ResponseWriter, r *http.Request) { 13 13 + repo := r.URL.Query().Get("repo") 14 14 + repoPath, err := x.parseRepoParam(repo) 15 15 + if err != nil { 16 16 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 17 17 + return 18 18 + } 19 19 + 20 20 + cursor := r.URL.Query().Get("cursor") 21 21 + 22 22 + // limit := 50 // default 23 23 + // if limitStr := r.URL.Query().Get("limit"); limitStr != "" { 24 24 + // if l, err := strconv.Atoi(limitStr); err == nil && l > 0 && l <= 100 { 25 25 + // limit = l 26 26 + // } 27 27 + // } 28 28 + 29 29 + limit := 500 30 30 + 31 31 + gr, err := git.PlainOpen(repoPath) 32 32 + if err != nil { 33 33 + writeError(w, xrpcerr.RepoNotFoundError, http.StatusNoContent) 34 34 + return 35 35 + } 36 36 + 37 37 + branches, _ := gr.Branches() 38 38 + 39 39 + offset := 0 40 40 + if cursor != "" { 41 41 + if o, err := strconv.Atoi(cursor); err == nil && o >= 0 && o < len(branches) { 42 42 + offset = o 43 43 + } 44 44 + } 45 45 + 46 46 + end := min(offset+limit, len(branches)) 47 47 + 48 48 + paginatedBranches := branches[offset:end] 49 49 + 50 50 + // Create response using existing types.RepoBranchesResponse 51 51 + response := types.RepoBranchesResponse{ 52 52 + Branches: paginatedBranches, 53 53 + } 54 54 + 55 55 + writeJson(w, response) 56 56 + }

+82

knotserver/xrpc/repo_compare.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "net/http" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/knotserver/git" 8 8 + "tangled.sh/tangled.sh/core/types" 9 9 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 10 10 + ) 11 11 + 12 12 + func (x *Xrpc) RepoCompare(w http.ResponseWriter, r *http.Request) { 13 13 + repo := r.URL.Query().Get("repo") 14 14 + repoPath, err := x.parseRepoParam(repo) 15 15 + if err != nil { 16 16 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 17 17 + return 18 18 + } 19 19 + 20 20 + rev1 := r.URL.Query().Get("rev1") 21 21 + if rev1 == "" { 22 22 + writeError(w, xrpcerr.NewXrpcError( 23 23 + xrpcerr.WithTag("InvalidRequest"), 24 24 + xrpcerr.WithMessage("missing rev1 parameter"), 25 25 + ), http.StatusBadRequest) 26 26 + return 27 27 + } 28 28 + 29 29 + rev2 := r.URL.Query().Get("rev2") 30 30 + if rev2 == "" { 31 31 + writeError(w, xrpcerr.NewXrpcError( 32 32 + xrpcerr.WithTag("InvalidRequest"), 33 33 + xrpcerr.WithMessage("missing rev2 parameter"), 34 34 + ), http.StatusBadRequest) 35 35 + return 36 36 + } 37 37 + 38 38 + gr, err := git.PlainOpen(repoPath) 39 39 + if err != nil { 40 40 + writeError(w, xrpcerr.RepoNotFoundError, http.StatusNoContent) 41 41 + return 42 42 + } 43 43 + 44 44 + commit1, err := gr.ResolveRevision(rev1) 45 45 + if err != nil { 46 46 + x.Logger.Error("error resolving revision 1", "msg", err.Error()) 47 47 + writeError(w, xrpcerr.NewXrpcError( 48 48 + xrpcerr.WithTag("RevisionNotFound"), 49 49 + xrpcerr.WithMessage(fmt.Sprintf("error resolving revision %s", rev1)), 50 50 + ), http.StatusBadRequest) 51 51 + return 52 52 + } 53 53 + 54 54 + commit2, err := gr.ResolveRevision(rev2) 55 55 + if err != nil { 56 56 + x.Logger.Error("error resolving revision 2", "msg", err.Error()) 57 57 + writeError(w, xrpcerr.NewXrpcError( 58 58 + xrpcerr.WithTag("RevisionNotFound"), 59 59 + xrpcerr.WithMessage(fmt.Sprintf("error resolving revision %s", rev2)), 60 60 + ), http.StatusBadRequest) 61 61 + return 62 62 + } 63 63 + 64 64 + rawPatch, formatPatch, err := gr.FormatPatch(commit1, commit2) 65 65 + if err != nil { 66 66 + x.Logger.Error("error comparing revisions", "msg", err.Error()) 67 67 + writeError(w, xrpcerr.NewXrpcError( 68 68 + xrpcerr.WithTag("CompareError"), 69 69 + xrpcerr.WithMessage("error comparing revisions"), 70 70 + ), http.StatusBadRequest) 71 71 + return 72 72 + } 73 73 + 74 74 + response := types.RepoFormatPatchResponse{ 75 75 + Rev1: commit1.Hash.String(), 76 76 + Rev2: commit2.Hash.String(), 77 77 + FormatPatch: formatPatch, 78 78 + Patch: rawPatch, 79 79 + } 80 80 + 81 81 + writeJson(w, response) 82 82 + }

+41

knotserver/xrpc/repo_diff.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + 6 6 + "tangled.sh/tangled.sh/core/knotserver/git" 7 7 + "tangled.sh/tangled.sh/core/types" 8 8 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 9 9 + ) 10 10 + 11 11 + func (x *Xrpc) RepoDiff(w http.ResponseWriter, r *http.Request) { 12 12 + repo := r.URL.Query().Get("repo") 13 13 + repoPath, err := x.parseRepoParam(repo) 14 14 + if err != nil { 15 15 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 16 16 + return 17 17 + } 18 18 + 19 19 + ref := r.URL.Query().Get("ref") 20 20 + // ref can be empty (git.Open handles this) 21 21 + 22 22 + gr, err := git.Open(repoPath, ref) 23 23 + if err != nil { 24 24 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 25 25 + return 26 26 + } 27 27 + 28 28 + diff, err := gr.Diff() 29 29 + if err != nil { 30 30 + x.Logger.Error("getting diff", "error", err.Error()) 31 31 + writeError(w, xrpcerr.RefNotFoundError, http.StatusInternalServerError) 32 32 + return 33 33 + } 34 34 + 35 35 + response := types.RepoCommitResponse{ 36 36 + Ref: ref, 37 37 + Diff: diff, 38 38 + } 39 39 + 40 40 + writeJson(w, response) 41 41 + }

+39

knotserver/xrpc/repo_get_default_branch.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "time" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/api/tangled" 8 8 + "tangled.sh/tangled.sh/core/knotserver/git" 9 9 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 10 10 + ) 11 11 + 12 12 + func (x *Xrpc) RepoGetDefaultBranch(w http.ResponseWriter, r *http.Request) { 13 13 + repo := r.URL.Query().Get("repo") 14 14 + repoPath, err := x.parseRepoParam(repo) 15 15 + if err != nil { 16 16 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 17 17 + return 18 18 + } 19 19 + 20 20 + gr, err := git.PlainOpen(repoPath) 21 21 + 22 22 + branch, err := gr.FindMainBranch() 23 23 + if err != nil { 24 24 + x.Logger.Error("getting default branch", "error", err.Error()) 25 25 + writeError(w, xrpcerr.NewXrpcError( 26 26 + xrpcerr.WithTag("InvalidRequest"), 27 27 + xrpcerr.WithMessage("failed to get default branch"), 28 28 + ), http.StatusInternalServerError) 29 29 + return 30 30 + } 31 31 + 32 32 + response := tangled.RepoGetDefaultBranch_Output{ 33 33 + Name: branch, 34 34 + Hash: "", 35 35 + When: time.UnixMicro(0).Format(time.RFC3339), 36 36 + } 37 37 + 38 38 + writeJson(w, response) 39 39 + }

+76

knotserver/xrpc/repo_languages.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "math" 6 6 + "net/http" 7 7 + "time" 8 8 + 9 9 + "tangled.sh/tangled.sh/core/api/tangled" 10 10 + "tangled.sh/tangled.sh/core/knotserver/git" 11 11 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 12 12 + ) 13 13 + 14 14 + func (x *Xrpc) RepoLanguages(w http.ResponseWriter, r *http.Request) { 15 15 + repo := r.URL.Query().Get("repo") 16 16 + repoPath, err := x.parseRepoParam(repo) 17 17 + if err != nil { 18 18 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 19 19 + return 20 20 + } 21 21 + 22 22 + ref := r.URL.Query().Get("ref") 23 23 + 24 24 + gr, err := git.Open(repoPath, ref) 25 25 + if err != nil { 26 26 + x.Logger.Error("opening repo", "error", err.Error()) 27 27 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 28 28 + return 29 29 + } 30 30 + 31 31 + ctx, cancel := context.WithTimeout(r.Context(), 1*time.Second) 32 32 + defer cancel() 33 33 + 34 34 + sizes, err := gr.AnalyzeLanguages(ctx) 35 35 + if err != nil { 36 36 + x.Logger.Error("failed to analyze languages", "error", err.Error()) 37 37 + writeError(w, xrpcerr.NewXrpcError( 38 38 + xrpcerr.WithTag("InvalidRequest"), 39 39 + xrpcerr.WithMessage("failed to analyze repository languages"), 40 40 + ), http.StatusNoContent) 41 41 + return 42 42 + } 43 43 + 44 44 + var apiLanguages []*tangled.RepoLanguages_Language 45 45 + var totalSize int64 46 46 + 47 47 + for _, size := range sizes { 48 48 + totalSize += size 49 49 + } 50 50 + 51 51 + for name, size := range sizes { 52 52 + percentagef64 := float64(size) / float64(totalSize) * 100 53 53 + percentage := math.Round(percentagef64) 54 54 + 55 55 + lang := &tangled.RepoLanguages_Language{ 56 56 + Name: name, 57 57 + Size: size, 58 58 + Percentage: int64(percentage), 59 59 + } 60 60 + 61 61 + apiLanguages = append(apiLanguages, lang) 62 62 + } 63 63 + 64 64 + response := tangled.RepoLanguages_Output{ 65 65 + Ref: ref, 66 66 + Languages: apiLanguages, 67 67 + } 68 68 + 69 69 + if totalSize > 0 { 70 70 + response.TotalSize = &totalSize 71 71 + totalFiles := int64(len(sizes)) 72 72 + response.TotalFiles = &totalFiles 73 73 + } 74 74 + 75 75 + writeJson(w, response) 76 76 + }

+81

knotserver/xrpc/repo_log.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "strconv" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/knotserver/git" 8 8 + "tangled.sh/tangled.sh/core/types" 9 9 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 10 10 + ) 11 11 + 12 12 + func (x *Xrpc) RepoLog(w http.ResponseWriter, r *http.Request) { 13 13 + repo := r.URL.Query().Get("repo") 14 14 + repoPath, err := x.parseRepoParam(repo) 15 15 + if err != nil { 16 16 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 17 17 + return 18 18 + } 19 19 + 20 20 + ref := r.URL.Query().Get("ref") 21 21 + 22 22 + path := r.URL.Query().Get("path") 23 23 + cursor := r.URL.Query().Get("cursor") 24 24 + 25 25 + limit := 50 // default 26 26 + if limitStr := r.URL.Query().Get("limit"); limitStr != "" { 27 27 + if l, err := strconv.Atoi(limitStr); err == nil && l > 0 && l <= 100 { 28 28 + limit = l 29 29 + } 30 30 + } 31 31 + 32 32 + gr, err := git.Open(repoPath, ref) 33 33 + if err != nil { 34 34 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 35 35 + return 36 36 + } 37 37 + 38 38 + offset := 0 39 39 + if cursor != "" { 40 40 + if o, err := strconv.Atoi(cursor); err == nil && o >= 0 { 41 41 + offset = o 42 42 + } 43 43 + } 44 44 + 45 45 + commits, err := gr.Commits(offset, limit) 46 46 + if err != nil { 47 47 + x.Logger.Error("fetching commits", "error", err.Error()) 48 48 + writeError(w, xrpcerr.NewXrpcError( 49 49 + xrpcerr.WithTag("PathNotFound"), 50 50 + xrpcerr.WithMessage("failed to read commit log"), 51 51 + ), http.StatusNotFound) 52 52 + return 53 53 + } 54 54 + 55 55 + total, err := gr.TotalCommits() 56 56 + if err != nil { 57 57 + x.Logger.Error("fetching total commits", "error", err.Error()) 58 58 + writeError(w, xrpcerr.NewXrpcError( 59 59 + xrpcerr.WithTag("InternalServerError"), 60 60 + xrpcerr.WithMessage("failed to fetch total commits"), 61 61 + ), http.StatusNotFound) 62 62 + return 63 63 + } 64 64 + 65 65 + // Create response using existing types.RepoLogResponse 66 66 + response := types.RepoLogResponse{ 67 67 + Commits: commits, 68 68 + Ref: ref, 69 69 + Page: (offset / limit) + 1, 70 70 + PerPage: limit, 71 71 + Total: total, 72 72 + } 73 73 + 74 74 + if path != "" { 75 75 + response.Description = path 76 76 + } 77 77 + 78 78 + response.Log = true 79 79 + 80 80 + writeJson(w, response) 81 81 + }

+86

knotserver/xrpc/repo_tags.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "strconv" 6 6 + 7 7 + "github.com/go-git/go-git/v5/plumbing" 8 8 + "github.com/go-git/go-git/v5/plumbing/object" 9 9 + 10 10 + "tangled.sh/tangled.sh/core/knotserver/git" 11 11 + "tangled.sh/tangled.sh/core/types" 12 12 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 13 13 + ) 14 14 + 15 15 + func (x *Xrpc) RepoTags(w http.ResponseWriter, r *http.Request) { 16 16 + repo := r.URL.Query().Get("repo") 17 17 + repoPath, err := x.parseRepoParam(repo) 18 18 + if err != nil { 19 19 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 20 20 + return 21 21 + } 22 22 + 23 23 + cursor := r.URL.Query().Get("cursor") 24 24 + 25 25 + limit := 50 // default 26 26 + if limitStr := r.URL.Query().Get("limit"); limitStr != "" { 27 27 + if l, err := strconv.Atoi(limitStr); err == nil && l > 0 && l <= 100 { 28 28 + limit = l 29 29 + } 30 30 + } 31 31 + 32 32 + gr, err := git.PlainOpen(repoPath) 33 33 + if err != nil { 34 34 + x.Logger.Error("failed to open", "error", err) 35 35 + writeError(w, xrpcerr.RepoNotFoundError, http.StatusNoContent) 36 36 + return 37 37 + } 38 38 + 39 39 + tags, err := gr.Tags() 40 40 + if err != nil { 41 41 + x.Logger.Warn("getting tags", "error", err.Error()) 42 42 + tags = []object.Tag{} 43 43 + } 44 44 + 45 45 + rtags := []*types.TagReference{} 46 46 + for _, tag := range tags { 47 47 + var target *object.Tag 48 48 + if tag.Target != plumbing.ZeroHash { 49 49 + target = &tag 50 50 + } 51 51 + tr := types.TagReference{ 52 52 + Tag: target, 53 53 + } 54 54 + 55 55 + tr.Reference = types.Reference{ 56 56 + Name: tag.Name, 57 57 + Hash: tag.Hash.String(), 58 58 + } 59 59 + 60 60 + if tag.Message != "" { 61 61 + tr.Message = tag.Message 62 62 + } 63 63 + 64 64 + rtags = append(rtags, &tr) 65 65 + } 66 66 + 67 67 + // apply pagination manually 68 68 + offset := 0 69 69 + if cursor != "" { 70 70 + if o, err := strconv.Atoi(cursor); err == nil && o >= 0 && o < len(rtags) { 71 71 + offset = o 72 72 + } 73 73 + } 74 74 + 75 75 + // calculate end index 76 76 + end := min(offset+limit, len(rtags)) 77 77 + 78 78 + paginatedTags := rtags[offset:end] 79 79 + 80 80 + // Create response using existing types.RepoTagsResponse 81 81 + response := types.RepoTagsResponse{ 82 82 + Tags: paginatedTags, 83 83 + } 84 84 + 85 85 + writeJson(w, response) 86 86 + }

+89

knotserver/xrpc/repo_tree.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "net/http" 5 5 + "path/filepath" 6 6 + "time" 7 7 + 8 8 + "tangled.sh/tangled.sh/core/api/tangled" 9 9 + "tangled.sh/tangled.sh/core/knotserver/git" 10 10 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 11 11 + ) 12 12 + 13 13 + func (x *Xrpc) RepoTree(w http.ResponseWriter, r *http.Request) { 14 14 + ctx := r.Context() 15 15 + 16 16 + repo := r.URL.Query().Get("repo") 17 17 + repoPath, err := x.parseRepoParam(repo) 18 18 + if err != nil { 19 19 + writeError(w, err.(xrpcerr.XrpcError), http.StatusBadRequest) 20 20 + return 21 21 + } 22 22 + 23 23 + ref := r.URL.Query().Get("ref") 24 24 + // ref can be empty (git.Open handles this) 25 25 + 26 26 + path := r.URL.Query().Get("path") 27 27 + // path can be empty (defaults to root) 28 28 + 29 29 + gr, err := git.Open(repoPath, ref) 30 30 + if err != nil { 31 31 + x.Logger.Error("failed to open git repository", "error", err, "path", repoPath, "ref", ref) 32 32 + writeError(w, xrpcerr.RefNotFoundError, http.StatusNotFound) 33 33 + return 34 34 + } 35 35 + 36 36 + files, err := gr.FileTree(ctx, path) 37 37 + if err != nil { 38 38 + x.Logger.Error("failed to get file tree", "error", err, "path", path) 39 39 + writeError(w, xrpcerr.NewXrpcError( 40 40 + xrpcerr.WithTag("PathNotFound"), 41 41 + xrpcerr.WithMessage("failed to read repository tree"), 42 42 + ), http.StatusNotFound) 43 43 + return 44 44 + } 45 45 + 46 46 + // convert NiceTree -> tangled.RepoTree_TreeEntry 47 47 + treeEntries := make([]*tangled.RepoTree_TreeEntry, len(files)) 48 48 + for i, file := range files { 49 49 + entry := &tangled.RepoTree_TreeEntry{ 50 50 + Name: file.Name, 51 51 + Mode: file.Mode, 52 52 + Size: file.Size, 53 53 + Is_file: file.IsFile, 54 54 + Is_subtree: file.IsSubtree, 55 55 + } 56 56 + 57 57 + if file.LastCommit != nil { 58 58 + entry.Last_commit = &tangled.RepoTree_LastCommit{ 59 59 + Hash: file.LastCommit.Hash.String(), 60 60 + Message: file.LastCommit.Message, 61 61 + When: file.LastCommit.When.Format(time.RFC3339), 62 62 + } 63 63 + } 64 64 + 65 65 + treeEntries[i] = entry 66 66 + } 67 67 + 68 68 + var parentPtr *string 69 69 + if path != "" { 70 70 + parentPtr = &path 71 71 + } 72 72 + 73 73 + var dotdotPtr *string 74 74 + if path != "" { 75 75 + dotdot := filepath.Dir(path) 76 76 + if dotdot != "." { 77 77 + dotdotPtr = &dotdot 78 78 + } 79 79 + } 80 80 + 81 81 + response := tangled.RepoTree_Output{ 82 82 + Ref: ref, 83 83 + Parent: parentPtr, 84 84 + Dotdot: dotdotPtr, 85 85 + Files: treeEntries, 86 86 + } 87 87 + 88 88 + writeJson(w, response) 89 89 + }

-149

knotserver/xrpc/router.go

··· 1 1 - package xrpc 2 2 - 3 3 - import ( 4 4 - "context" 5 5 - "encoding/json" 6 6 - "fmt" 7 7 - "log/slog" 8 8 - "net/http" 9 9 - "strings" 10 10 - 11 11 - "tangled.sh/tangled.sh/core/api/tangled" 12 12 - "tangled.sh/tangled.sh/core/idresolver" 13 13 - "tangled.sh/tangled.sh/core/jetstream" 14 14 - "tangled.sh/tangled.sh/core/knotserver/config" 15 15 - "tangled.sh/tangled.sh/core/knotserver/db" 16 16 - "tangled.sh/tangled.sh/core/notifier" 17 17 - "tangled.sh/tangled.sh/core/rbac" 18 18 - 19 19 - "github.com/bluesky-social/indigo/atproto/auth" 20 20 - "github.com/go-chi/chi/v5" 21 21 - ) 22 22 - 23 23 - type Xrpc struct { 24 24 - Config *config.Config 25 25 - Db *db.DB 26 26 - Ingester *jetstream.JetstreamClient 27 27 - Enforcer *rbac.Enforcer 28 28 - Logger *slog.Logger 29 29 - Notifier *notifier.Notifier 30 30 - Resolver *idresolver.Resolver 31 31 - } 32 32 - 33 33 - func (x *Xrpc) Router() http.Handler { 34 34 - r := chi.NewRouter() 35 35 - 36 36 - r.With(x.VerifyServiceAuth).Post("/"+tangled.RepoSetDefaultBranchNSID, x.SetDefaultBranch) 37 37 - 38 38 - return r 39 39 - } 40 40 - 41 41 - func (x *Xrpc) VerifyServiceAuth(next http.Handler) http.Handler { 42 42 - return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 43 43 - l := x.Logger.With("url", r.URL) 44 44 - 45 45 - token := r.Header.Get("Authorization") 46 46 - token = strings.TrimPrefix(token, "Bearer ") 47 47 - 48 48 - s := auth.ServiceAuthValidator{ 49 49 - Audience: x.Config.Server.Did().String(), 50 50 - Dir: x.Resolver.Directory(), 51 51 - } 52 52 - 53 53 - did, err := s.Validate(r.Context(), token, nil) 54 54 - if err != nil { 55 55 - l.Error("signature verification failed", "err", err) 56 56 - writeError(w, AuthError(err), http.StatusForbidden) 57 57 - return 58 58 - } 59 59 - 60 60 - r = r.WithContext( 61 61 - context.WithValue(r.Context(), ActorDid, did), 62 62 - ) 63 63 - 64 64 - next.ServeHTTP(w, r) 65 65 - }) 66 66 - } 67 67 - 68 68 - type XrpcError struct { 69 69 - Tag string `json:"error"` 70 70 - Message string `json:"message"` 71 71 - } 72 72 - 73 73 - func NewXrpcError(opts ...ErrOpt) XrpcError { 74 74 - x := XrpcError{} 75 75 - for _, o := range opts { 76 76 - o(&x) 77 77 - } 78 78 - 79 79 - return x 80 80 - } 81 81 - 82 82 - type ErrOpt = func(xerr *XrpcError) 83 83 - 84 84 - func WithTag(tag string) ErrOpt { 85 85 - return func(xerr *XrpcError) { 86 86 - xerr.Tag = tag 87 87 - } 88 88 - } 89 89 - 90 90 - func WithMessage[S ~string](s S) ErrOpt { 91 91 - return func(xerr *XrpcError) { 92 92 - xerr.Message = string(s) 93 93 - } 94 94 - } 95 95 - 96 96 - func WithError(e error) ErrOpt { 97 97 - return func(xerr *XrpcError) { 98 98 - xerr.Message = e.Error() 99 99 - } 100 100 - } 101 101 - 102 102 - var MissingActorDidError = NewXrpcError( 103 103 - WithTag("MissingActorDid"), 104 104 - WithMessage("actor DID not supplied"), 105 105 - ) 106 106 - 107 107 - var AuthError = func(err error) XrpcError { 108 108 - return NewXrpcError( 109 109 - WithTag("Auth"), 110 110 - WithError(fmt.Errorf("signature verification failed: %w", err)), 111 111 - ) 112 112 - } 113 113 - 114 114 - var InvalidRepoError = func(r string) XrpcError { 115 115 - return NewXrpcError( 116 116 - WithTag("InvalidRepo"), 117 117 - WithError(fmt.Errorf("supplied at-uri is not a repo: %s", r)), 118 118 - ) 119 119 - } 120 120 - 121 121 - var AccessControlError = func(d string) XrpcError { 122 122 - return NewXrpcError( 123 123 - WithTag("AccessControl"), 124 124 - WithError(fmt.Errorf("DID does not have sufficent access permissions for this operation: %s", d)), 125 125 - ) 126 126 - } 127 127 - 128 128 - var GitError = func(e error) XrpcError { 129 129 - return NewXrpcError( 130 130 - WithTag("Git"), 131 131 - WithError(fmt.Errorf("git error: %w", e)), 132 132 - ) 133 133 - } 134 134 - 135 135 - func GenericError(err error) XrpcError { 136 136 - return NewXrpcError( 137 137 - WithTag("Generic"), 138 138 - WithError(err), 139 139 - ) 140 140 - } 141 141 - 142 142 - // this is slightly different from http_util::write_error to follow the spec: 143 143 - // 144 144 - // the json object returned must include an "error" and a "message" 145 145 - func writeError(w http.ResponseWriter, e XrpcError, status int) { 146 146 - w.Header().Set("Content-Type", "application/json") 147 147 - w.WriteHeader(status) 148 148 - json.NewEncoder(w).Encode(e) 149 149 - }

+12 -10

knotserver/xrpc/set_default_branch.go

··· 12 12 "tangled.sh/tangled.sh/core/api/tangled" 13 13 "tangled.sh/tangled.sh/core/knotserver/git" 14 14 "tangled.sh/tangled.sh/core/rbac" 15 15 + 16 16 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 15 17 ) 16 18 17 19 const ActorDid string = "ActorDid" 18 20 19 21 func (x *Xrpc) SetDefaultBranch(w http.ResponseWriter, r *http.Request) { 20 22 l := x.Logger 21 21 - fail := func(e XrpcError) { 23 23 + fail := func(e xrpcerr.XrpcError) { 22 24 l.Error("failed", "kind", e.Tag, "error", e.Message) 23 25 writeError(w, e, http.StatusBadRequest) 24 26 } 25 27 26 28 actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 27 29 if !ok { 28 28 - fail(MissingActorDidError) 30 30 + fail(xrpcerr.MissingActorDidError) 29 31 return 30 32 } 31 33 32 34 var data tangled.RepoSetDefaultBranch_Input 33 35 if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 34 34 - fail(GenericError(err)) 36 36 + fail(xrpcerr.GenericError(err)) 35 37 return 36 38 } 37 39 38 40 // unfortunately we have to resolve repo-at here 39 41 repoAt, err := syntax.ParseATURI(data.Repo) 40 42 if err != nil { 41 41 - fail(InvalidRepoError(data.Repo)) 43 43 + fail(xrpcerr.InvalidRepoError(data.Repo)) 42 44 return 43 45 } 44 46 45 47 // resolve this aturi to extract the repo record 46 48 ident, err := x.Resolver.ResolveIdent(r.Context(), repoAt.Authority().String()) 47 49 if err != nil || ident.Handle.IsInvalidHandle() { 48 48 - fail(GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 50 50 + fail(xrpcerr.GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 49 51 return 50 52 } 51 53 52 54 xrpcc := xrpc.Client{Host: ident.PDSEndpoint()} 53 55 resp, err := comatproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 54 56 if err != nil { 55 55 - fail(GenericError(err)) 57 57 + fail(xrpcerr.GenericError(err)) 56 58 return 57 59 } 58 60 59 61 repo := resp.Value.Val.(*tangled.Repo) 60 62 didPath, err := securejoin.SecureJoin(actorDid.String(), repo.Name) 61 63 if err != nil { 62 62 - fail(GenericError(err)) 64 64 + fail(xrpcerr.GenericError(err)) 63 65 return 64 66 } 65 67 66 68 if ok, err := x.Enforcer.IsPushAllowed(actorDid.String(), rbac.ThisServer, didPath); !ok || err != nil { 67 69 l.Error("insufficent permissions", "did", actorDid.String()) 68 68 - writeError(w, AccessControlError(actorDid.String()), http.StatusUnauthorized) 70 70 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 69 71 return 70 72 } 71 73 72 74 path, _ := securejoin.SecureJoin(x.Config.Repo.ScanPath, didPath) 73 75 gr, err := git.PlainOpen(path) 74 76 if err != nil { 75 75 - fail(InvalidRepoError(data.Repo)) 77 77 + fail(xrpcerr.GenericError(err)) 76 78 return 77 79 } 78 80 79 81 err = gr.SetDefaultBranch(data.DefaultBranch) 80 82 if err != nil { 81 83 l.Error("setting default branch", "error", err.Error()) 82 82 - writeError(w, GitError(err), http.StatusInternalServerError) 84 84 + writeError(w, xrpcerr.GitError(err), http.StatusInternalServerError) 83 85 return 84 86 } 85 87

+60

knotserver/xrpc/version.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "net/http" 6 6 + "runtime/debug" 7 7 + 8 8 + "tangled.sh/tangled.sh/core/api/tangled" 9 9 + ) 10 10 + 11 11 + // version is set during build time. 12 12 + var version string 13 13 + 14 14 + func (x *Xrpc) Version(w http.ResponseWriter, r *http.Request) { 15 15 + if version == "" { 16 16 + info, ok := debug.ReadBuildInfo() 17 17 + if !ok { 18 18 + http.Error(w, "failed to read build info", http.StatusInternalServerError) 19 19 + return 20 20 + } 21 21 + 22 22 + var modVer string 23 23 + var sha string 24 24 + var modified bool 25 25 + 26 26 + for _, mod := range info.Deps { 27 27 + if mod.Path == "tangled.sh/tangled.sh/knotserver/xrpc" { 28 28 + modVer = mod.Version 29 29 + break 30 30 + } 31 31 + } 32 32 + 33 33 + for _, setting := range info.Settings { 34 34 + switch setting.Key { 35 35 + case "vcs.revision": 36 36 + sha = setting.Value 37 37 + case "vcs.modified": 38 38 + modified = setting.Value == "true" 39 39 + } 40 40 + } 41 41 + 42 42 + if modVer == "" { 43 43 + modVer = "unknown" 44 44 + } 45 45 + 46 46 + if sha == "" { 47 47 + version = modVer 48 48 + } else if modified { 49 49 + version = fmt.Sprintf("%s (%s with modifications)", modVer, sha) 50 50 + } else { 51 51 + version = fmt.Sprintf("%s (%s)", modVer, sha) 52 52 + } 53 53 + } 54 54 + 55 55 + response := tangled.KnotVersion_Output{ 56 56 + Version: version, 57 57 + } 58 58 + 59 59 + writeJson(w, response) 60 60 + }

+127

knotserver/xrpc/xrpc.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "log/slog" 6 6 + "net/http" 7 7 + "strings" 8 8 + 9 9 + securejoin "github.com/cyphar/filepath-securejoin" 10 10 + "tangled.sh/tangled.sh/core/api/tangled" 11 11 + "tangled.sh/tangled.sh/core/idresolver" 12 12 + "tangled.sh/tangled.sh/core/jetstream" 13 13 + "tangled.sh/tangled.sh/core/knotserver/config" 14 14 + "tangled.sh/tangled.sh/core/knotserver/db" 15 15 + "tangled.sh/tangled.sh/core/notifier" 16 16 + "tangled.sh/tangled.sh/core/rbac" 17 17 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 18 18 + "tangled.sh/tangled.sh/core/xrpc/serviceauth" 19 19 + 20 20 + "github.com/go-chi/chi/v5" 21 21 + ) 22 22 + 23 23 + type Xrpc struct { 24 24 + Config *config.Config 25 25 + Db *db.DB 26 26 + Ingester *jetstream.JetstreamClient 27 27 + Enforcer *rbac.Enforcer 28 28 + Logger *slog.Logger 29 29 + Notifier *notifier.Notifier 30 30 + Resolver *idresolver.Resolver 31 31 + ServiceAuth *serviceauth.ServiceAuth 32 32 + } 33 33 + 34 34 + func (x *Xrpc) Router() http.Handler { 35 35 + r := chi.NewRouter() 36 36 + 37 37 + r.Group(func(r chi.Router) { 38 38 + r.Use(x.ServiceAuth.VerifyServiceAuth) 39 39 + 40 40 + r.Post("/"+tangled.RepoSetDefaultBranchNSID, x.SetDefaultBranch) 41 41 + r.Post("/"+tangled.RepoCreateNSID, x.CreateRepo) 42 42 + r.Post("/"+tangled.RepoDeleteNSID, x.DeleteRepo) 43 43 + r.Post("/"+tangled.RepoForkStatusNSID, x.ForkStatus) 44 44 + r.Post("/"+tangled.RepoForkSyncNSID, x.ForkSync) 45 45 + r.Post("/"+tangled.RepoHiddenRefNSID, x.HiddenRef) 46 46 + r.Post("/"+tangled.RepoMergeNSID, x.Merge) 47 47 + }) 48 48 + 49 49 + // merge check is an open endpoint 50 50 + // 51 51 + // TODO: should we constrain this more? 52 52 + // - we can calculate on PR submit/resubmit/gitRefUpdate etc. 53 53 + // - use ETags on clients to keep requests to a minimum 54 54 + r.Post("/"+tangled.RepoMergeCheckNSID, x.MergeCheck) 55 55 + 56 56 + // repo query endpoints (no auth required) 57 57 + r.Get("/"+tangled.RepoTreeNSID, x.RepoTree) 58 58 + r.Get("/"+tangled.RepoLogNSID, x.RepoLog) 59 59 + r.Get("/"+tangled.RepoBranchesNSID, x.RepoBranches) 60 60 + r.Get("/"+tangled.RepoTagsNSID, x.RepoTags) 61 61 + r.Get("/"+tangled.RepoBlobNSID, x.RepoBlob) 62 62 + r.Get("/"+tangled.RepoDiffNSID, x.RepoDiff) 63 63 + r.Get("/"+tangled.RepoCompareNSID, x.RepoCompare) 64 64 + r.Get("/"+tangled.RepoGetDefaultBranchNSID, x.RepoGetDefaultBranch) 65 65 + r.Get("/"+tangled.RepoBranchNSID, x.RepoBranch) 66 66 + r.Get("/"+tangled.RepoArchiveNSID, x.RepoArchive) 67 67 + r.Get("/"+tangled.RepoLanguagesNSID, x.RepoLanguages) 68 68 + 69 69 + // knot query endpoints (no auth required) 70 70 + r.Get("/"+tangled.KnotListKeysNSID, x.ListKeys) 71 71 + r.Get("/"+tangled.KnotVersionNSID, x.Version) 72 72 + 73 73 + // service query endpoints (no auth required) 74 74 + r.Get("/"+tangled.OwnerNSID, x.Owner) 75 75 + 76 76 + return r 77 77 + } 78 78 + 79 79 + // parseRepoParam parses a repo parameter in 'did/repoName' format and returns 80 80 + // the full repository path on disk 81 81 + func (x *Xrpc) parseRepoParam(repo string) (string, error) { 82 82 + if repo == "" { 83 83 + return "", xrpcerr.NewXrpcError( 84 84 + xrpcerr.WithTag("InvalidRequest"), 85 85 + xrpcerr.WithMessage("missing repo parameter"), 86 86 + ) 87 87 + } 88 88 + 89 89 + // Parse repo string (did/repoName format) 90 90 + parts := strings.SplitN(repo, "/", 2) 91 91 + if len(parts) != 2 { 92 92 + return "", xrpcerr.NewXrpcError( 93 93 + xrpcerr.WithTag("InvalidRequest"), 94 94 + xrpcerr.WithMessage("invalid repo format, expected 'did/repoName'"), 95 95 + ) 96 96 + } 97 97 + 98 98 + did := parts[0] 99 99 + repoName := parts[1] 100 100 + 101 101 + // Construct repository path using the same logic as didPath 102 102 + didRepoPath, err := securejoin.SecureJoin(did, repoName) 103 103 + if err != nil { 104 104 + return "", xrpcerr.RepoNotFoundError 105 105 + } 106 106 + 107 107 + repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, didRepoPath) 108 108 + if err != nil { 109 109 + return "", xrpcerr.RepoNotFoundError 110 110 + } 111 111 + 112 112 + return repoPath, nil 113 113 + } 114 114 + 115 115 + func writeError(w http.ResponseWriter, e xrpcerr.XrpcError, status int) { 116 116 + w.Header().Set("Content-Type", "application/json") 117 117 + w.WriteHeader(status) 118 118 + json.NewEncoder(w).Encode(e) 119 119 + } 120 120 + 121 121 + func writeJson(w http.ResponseWriter, response any) { 122 122 + w.Header().Set("Content-Type", "application/json") 123 123 + if err := json.NewEncoder(w).Encode(response); err != nil { 124 124 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 125 125 + return 126 126 + } 127 127 + }

+158

legal/privacy.md

··· 1 1 + # Privacy Policy 2 2 + 3 3 + **Last updated:** January 15, 2025 4 4 + 5 5 + This Privacy Policy describes how Tangled ("we," "us," or "our") 6 6 + collects, uses, and shares your personal information when you use our 7 7 + platform and services (the "Service"). 8 8 + 9 9 + ## 1. Information We Collect 10 10 + 11 11 + ### Account Information 12 12 + 13 13 + When you create an account, we collect: 14 14 + 15 15 + - Your chosen username 16 16 + - Email address 17 17 + - Profile information you choose to provide 18 18 + - Authentication data 19 19 + 20 20 + ### Content and Activity 21 21 + 22 22 + We store: 23 23 + 24 24 + - Code repositories and associated metadata 25 25 + - Issues, pull requests, and comments 26 26 + - Activity logs and usage patterns 27 27 + - Public keys for authentication 28 28 + 29 29 + ## 2. Data Location and Hosting 30 30 + 31 31 + ### EU Data Hosting 32 32 + 33 33 + **All Tangled service data is hosted within the European Union.** 34 34 + Specifically: 35 35 + 36 36 + - **Personal Data Servers (PDS):** Accounts hosted on Tangled PDS 37 37 + (*.tngl.sh) are located in Finland 38 38 + - **Application Data:** All other service data is stored on EU-based 39 39 + servers 40 40 + - **Data Processing:** All data processing occurs within EU 41 41 + jurisdiction 42 42 + 43 43 + ### External PDS Notice 44 44 + 45 45 + **Important:** If your account is hosted on Bluesky's PDS or other 46 46 + self-hosted Personal Data Servers (not *.tngl.sh), we do not control 47 47 + that data. The data protection, storage location, and privacy 48 48 + practices for such accounts are governed by the respective PDS 49 49 + provider's policies, not this Privacy Policy. We only control data 50 50 + processing within our own services and infrastructure. 51 51 + 52 52 + ## 3. Third-Party Data Processors 53 53 + 54 54 + We only share your data with the following third-party processors: 55 55 + 56 56 + ### Resend (Email Services) 57 57 + 58 58 + - **Purpose:** Sending transactional emails (account verification, 59 59 + notifications) 60 60 + - **Data Shared:** Email address and necessary message content 61 61 + 62 62 + ### Cloudflare (Image Caching) 63 63 + 64 64 + - **Purpose:** Caching and optimizing image delivery 65 65 + - **Data Shared:** Public images and associated metadata for caching 66 66 + purposes 67 67 + 68 68 + ### Posthog (Usage Metrics Tracking) 69 69 + 70 70 + - **Purpose:** Tracking usage and platform metrics 71 71 + - **Data Shared:** Anonymous usage data, IP addresses, DIDs, and browser 72 72 + information 73 73 + 74 74 + ## 4. How We Use Your Information 75 75 + 76 76 + We use your information to: 77 77 + 78 78 + - Provide and maintain the Service 79 79 + - Process your transactions and requests 80 80 + - Send you technical notices and support messages 81 81 + - Improve and develop new features 82 82 + - Ensure security and prevent fraud 83 83 + - Comply with legal obligations 84 84 + 85 85 + ## 5. Data Sharing and Disclosure 86 86 + 87 87 + We do not sell, trade, or rent your personal information. We may share 88 88 + your information only in the following circumstances: 89 89 + 90 90 + - With the third-party processors listed above 91 91 + - When required by law or legal process 92 92 + - To protect our rights, property, or safety, or that of our users 93 93 + - In connection with a merger, acquisition, or sale of assets (with 94 94 + appropriate protections) 95 95 + 96 96 + ## 6. Data Security 97 97 + 98 98 + We implement appropriate technical and organizational measures to 99 99 + protect your personal information against unauthorized access, 100 100 + alteration, disclosure, or destruction. However, no method of 101 101 + transmission over the Internet is 100% secure. 102 102 + 103 103 + ## 7. Data Retention 104 104 + 105 105 + We retain your personal information for as long as necessary to provide 106 106 + the Service and fulfill the purposes outlined in this Privacy Policy, 107 107 + unless a longer retention period is required by law. 108 108 + 109 109 + ## 8. Your Rights 110 110 + 111 111 + Under applicable data protection laws, you have the right to: 112 112 + 113 113 + - Access your personal information 114 114 + - Correct inaccurate information 115 115 + - Request deletion of your information 116 116 + - Object to processing of your information 117 117 + - Data portability 118 118 + - Withdraw consent (where applicable) 119 119 + 120 120 + ## 9. Cookies and Tracking 121 121 + 122 122 + We use cookies and similar technologies to: 123 123 + 124 124 + - Maintain your login session 125 125 + - Remember your preferences 126 126 + - Analyze usage patterns to improve the Service 127 127 + 128 128 + You can control cookie settings through your browser preferences. 129 129 + 130 130 + ## 10. Children's Privacy 131 131 + 132 132 + The Service is not intended for children under 16 years of age. We do 133 133 + not knowingly collect personal information from children under 16. If 134 134 + we become aware that we have collected such information, we will take 135 135 + steps to delete it. 136 136 + 137 137 + ## 11. International Data Transfers 138 138 + 139 139 + While all our primary data processing occurs within the EU, some of our 140 140 + third-party processors may process data outside the EU. When this 141 141 + occurs, we ensure appropriate safeguards are in place, such as Standard 142 142 + Contractual Clauses or adequacy decisions. 143 143 + 144 144 + ## 12. Changes to This Privacy Policy 145 145 + 146 146 + We may update this Privacy Policy from time to time. We will notify you 147 147 + of any changes by posting the new Privacy Policy on this page and 148 148 + updating the "Last updated" date. 149 149 + 150 150 + ## 13. Contact Information 151 151 + 152 152 + If you have any questions about this Privacy Policy or wish to exercise 153 153 + your rights, please contact us through our platform or via email. 154 154 + 155 155 + --- 156 156 + 157 157 + This Privacy Policy complies with the EU General Data Protection 158 158 + Regulation (GDPR) and other applicable data protection laws.

+109

legal/terms.md

··· 1 1 + # Terms of Service 2 2 + 3 3 + **Last updated:** January 15, 2025 4 4 + 5 5 + Welcome to Tangled. These Terms of Service ("Terms") govern your access 6 6 + to and use of the Tangled platform and services (the "Service") 7 7 + operated by us ("Tangled," "we," "us," or "our"). 8 8 + 9 9 + ## 1. Acceptance of Terms 10 10 + 11 11 + By accessing or using our Service, you agree to be bound by these Terms. 12 12 + If you disagree with any part of these terms, then you may not access 13 13 + the Service. 14 14 + 15 15 + ## 2. Account Registration 16 16 + 17 17 + To use certain features of the Service, you must register for an 18 18 + account. You agree to provide accurate, current, and complete 19 19 + information during the registration process and to update such 20 20 + information to keep it accurate, current, and complete. 21 21 + 22 22 + ## 3. Account Termination 23 23 + 24 24 + > **Important Notice** 25 25 + > 26 26 + > **We reserve the right to terminate, suspend, or restrict access to 27 27 + > your account at any time, for any reason, or for no reason at all, at 28 28 + > our sole discretion.** This includes, but is not limited to, 29 29 + > termination for violation of these Terms, inappropriate conduct, spam, 30 30 + > abuse, or any other behavior we deem harmful to the Service or other 31 31 + > users. 32 32 + > 33 33 + > Account termination may result in the loss of access to your 34 34 + > repositories, data, and other content associated with your account. We 35 35 + > are not obligated to provide advance notice of termination, though we 36 36 + > may do so in our discretion. 37 37 + 38 38 + ## 4. Acceptable Use 39 39 + 40 40 + You agree not to use the Service to: 41 41 + 42 42 + - Violate any applicable laws or regulations 43 43 + - Infringe upon the rights of others 44 44 + - Upload, store, or share content that is illegal, harmful, threatening, 45 45 + abusive, harassing, defamatory, vulgar, obscene, or otherwise 46 46 + objectionable 47 47 + - Engage in spam, phishing, or other deceptive practices 48 48 + - Attempt to gain unauthorized access to the Service or other users' 49 49 + accounts 50 50 + - Interfere with or disrupt the Service or servers connected to the 51 51 + Service 52 52 + 53 53 + ## 5. Content and Intellectual Property 54 54 + 55 55 + You retain ownership of the content you upload to the Service. By 56 56 + uploading content, you grant us a non-exclusive, worldwide, royalty-free 57 57 + license to use, reproduce, modify, and distribute your content as 58 58 + necessary to provide the Service. 59 59 + 60 60 + ## 6. Privacy 61 61 + 62 62 + Your privacy is important to us. Please review our [Privacy 63 63 + Policy](/privacy), which also governs your use of the Service. 64 64 + 65 65 + ## 7. Disclaimers 66 66 + 67 67 + The Service is provided on an "AS IS" and "AS AVAILABLE" basis. We make 68 68 + no warranties, expressed or implied, and hereby disclaim and negate all 69 69 + other warranties including without limitation, implied warranties or 70 70 + conditions of merchantability, fitness for a particular purpose, or 71 71 + non-infringement of intellectual property or other violation of rights. 72 72 + 73 73 + ## 8. Limitation of Liability 74 74 + 75 75 + In no event shall Tangled, nor its directors, employees, partners, 76 76 + agents, suppliers, or affiliates, be liable for any indirect, 77 77 + incidental, special, consequential, or punitive damages, including 78 78 + without limitation, loss of profits, data, use, goodwill, or other 79 79 + intangible losses, resulting from your use of the Service. 80 80 + 81 81 + ## 9. Indemnification 82 82 + 83 83 + You agree to defend, indemnify, and hold harmless Tangled and its 84 84 + affiliates, officers, directors, employees, and agents from and against 85 85 + any and all claims, damages, obligations, losses, liabilities, costs, 86 86 + or debt, and expenses (including attorney's fees). 87 87 + 88 88 + ## 10. Governing Law 89 89 + 90 90 + These Terms shall be interpreted and governed by the laws of Finland, 91 91 + without regard to its conflict of law provisions. 92 92 + 93 93 + ## 11. Changes to Terms 94 94 + 95 95 + We reserve the right to modify or replace these Terms at any time. If a 96 96 + revision is material, we will try to provide at least 30 days notice 97 97 + prior to any new terms taking effect. 98 98 + 99 99 + ## 12. Contact Information 100 100 + 101 101 + If you have any questions about these Terms of Service, please contact 102 102 + us through our platform or via email. 103 103 + 104 104 + --- 105 105 + 106 106 + These terms are effective as of the last updated date shown above and 107 107 + will remain in effect except with respect to any changes in their 108 108 + provisions in the future, which will be in effect immediately after 109 109 + being posted on this page.

-37

lexicons/addSecret.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo.addSecret", 4 4 - "defs": { 5 5 - "main": { 6 6 - "type": "procedure", 7 7 - "description": "Add a CI secret", 8 8 - "input": { 9 9 - "encoding": "application/json", 10 10 - "schema": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "repo", 14 14 - "key", 15 15 - "value" 16 16 - ], 17 17 - "properties": { 18 18 - "repo": { 19 19 - "type": "string", 20 20 - "format": "at-uri" 21 21 - }, 22 22 - "key": { 23 23 - "type": "string", 24 24 - "maxLength": 50, 25 25 - "minLength": 1 26 26 - }, 27 27 - "value": { 28 28 - "type": "string", 29 29 - "maxLength": 200, 30 30 - "minLength": 1 31 31 - } 32 32 - } 33 33 - } 34 34 - } 35 35 - } 36 36 - } 37 37 - }

-52

lexicons/artifact.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo.artifact", 4 4 - "needsCbor": true, 5 5 - "needsType": true, 6 6 - "defs": { 7 7 - "main": { 8 8 - "type": "record", 9 9 - "key": "tid", 10 10 - "record": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "name", 14 14 - "repo", 15 15 - "tag", 16 16 - "createdAt", 17 17 - "artifact" 18 18 - ], 19 19 - "properties": { 20 20 - "name": { 21 21 - "type": "string", 22 22 - "description": "name of the artifact" 23 23 - }, 24 24 - "repo": { 25 25 - "type": "string", 26 26 - "format": "at-uri", 27 27 - "description": "repo that this artifact is being uploaded to" 28 28 - }, 29 29 - "tag": { 30 30 - "type": "bytes", 31 31 - "description": "hash of the tag object that this artifact is attached to (only annotated tags are supported)", 32 32 - "minLength": 20, 33 33 - "maxLength": 20 34 34 - }, 35 35 - "createdAt": { 36 36 - "type": "string", 37 37 - "format": "datetime", 38 38 - "description": "time of creation of this artifact" 39 39 - }, 40 40 - "artifact": { 41 41 - "type": "blob", 42 42 - "description": "the artifact", 43 43 - "accept": [ 44 44 - "*/*" 45 45 - ], 46 46 - "maxSize": 52428800 47 47 - } 48 48 - } 49 49 - } 50 50 - } 51 51 - } 52 52 - }

-29

lexicons/defaultBranch.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo.setDefaultBranch", 4 4 - "defs": { 5 5 - "main": { 6 6 - "type": "procedure", 7 7 - "description": "Set the default branch for a repository", 8 8 - "input": { 9 9 - "encoding": "application/json", 10 10 - "schema": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "repo", 14 14 - "defaultBranch" 15 15 - ], 16 16 - "properties": { 17 17 - "repo": { 18 18 - "type": "string", 19 19 - "format": "at-uri" 20 20 - }, 21 21 - "defaultBranch": { 22 22 - "type": "string" 23 23 - } 24 24 - } 25 25 - } 26 26 - } 27 27 - } 28 28 - } 29 29 - }

+59 -52

lexicons/git/refUpdate.json

··· 51 51 "maxLength": 40 52 52 }, 53 53 "meta": { 54 54 - "type": "object", 55 55 - "required": [ 56 56 - "isDefaultRef", 57 57 - "commitCount" 58 58 - ], 59 59 - "properties": { 60 60 - "isDefaultRef": { 61 61 - "type": "boolean", 62 62 - "default": "false" 63 63 - }, 64 64 - "langBreakdown": { 65 65 - "type": "object", 66 66 - "properties": { 67 67 - "inputs": { 68 68 - "type": "array", 69 69 - "items": { 70 70 - "type": "ref", 71 71 - "ref": "#pair" 72 72 - } 73 73 - } 74 74 - } 75 75 - }, 76 76 - "commitCount": { 77 77 - "type": "object", 78 78 - "required": [], 79 79 - "properties": { 80 80 - "byEmail": { 81 81 - "type": "array", 82 82 - "items": { 83 83 - "type": "object", 84 84 - "required": [ 85 85 - "email", 86 86 - "count" 87 87 - ], 88 88 - "properties": { 89 89 - "email": { 90 90 - "type": "string" 91 91 - }, 92 92 - "count": { 93 93 - "type": "integer" 94 94 - } 95 95 - } 96 96 - } 97 97 - } 98 98 - } 99 99 - } 100 100 - } 54 54 + "type": "ref", 55 55 + "ref": "#meta" 56 56 + } 57 57 + } 58 58 + } 59 59 + }, 60 60 + "meta": { 61 61 + "type": "object", 62 62 + "required": ["isDefaultRef", "commitCount"], 63 63 + "properties": { 64 64 + "isDefaultRef": { 65 65 + "type": "boolean", 66 66 + "default": false 67 67 + }, 68 68 + "langBreakdown": { 69 69 + "type": "ref", 70 70 + "ref": "#langBreakdown" 71 71 + }, 72 72 + "commitCount": { 73 73 + "type": "ref", 74 74 + "ref": "#commitCountBreakdown" 75 75 + } 76 76 + } 77 77 + }, 78 78 + "langBreakdown": { 79 79 + "type": "object", 80 80 + "properties": { 81 81 + "inputs": { 82 82 + "type": "array", 83 83 + "items": { 84 84 + "type": "ref", 85 85 + "ref": "#individualLanguageSize" 101 86 } 102 87 } 103 88 } 104 89 }, 105 105 - "pair": { 90 90 + "individualLanguageSize": { 106 91 "type": "object", 107 107 - "required": [ 108 108 - "lang", 109 109 - "size" 110 110 - ], 92 92 + "required": ["lang", "size"], 111 93 "properties": { 112 94 "lang": { 113 95 "type": "string" 114 96 }, 115 97 "size": { 98 98 + "type": "integer" 99 99 + } 100 100 + } 101 101 + }, 102 102 + "commitCountBreakdown": { 103 103 + "type": "object", 104 104 + "required": [], 105 105 + "properties": { 106 106 + "byEmail": { 107 107 + "type": "array", 108 108 + "items": { 109 109 + "type": "ref", 110 110 + "ref": "#individualEmailCommitCount" 111 111 + } 112 112 + } 113 113 + } 114 114 + }, 115 115 + "individualEmailCommitCount": { 116 116 + "type": "object", 117 117 + "required": ["email", "count"], 118 118 + "properties": { 119 119 + "email": { 120 120 + "type": "string" 121 121 + }, 122 122 + "count": { 116 123 "type": "integer" 117 124 } 118 125 }

+4 -11

lexicons/issue/comment.json

··· 19 19 "type": "string", 20 20 "format": "at-uri" 21 21 }, 22 22 - "repo": { 23 23 - "type": "string", 24 24 - "format": "at-uri" 25 25 - }, 26 26 - "commentId": { 27 27 - "type": "integer" 28 28 - }, 29 29 - "owner": { 30 30 - "type": "string", 31 31 - "format": "did" 32 32 - }, 33 22 "body": { 34 23 "type": "string" 35 24 }, 36 25 "createdAt": { 37 26 "type": "string", 38 27 "format": "datetime" 28 28 + }, 29 29 + "replyTo": { 30 30 + "type": "string", 31 31 + "format": "at-uri" 39 32 } 40 33 } 41 34 }

+1 -14

lexicons/issue/issue.json

··· 9 9 "key": "tid", 10 10 "record": { 11 11 "type": "object", 12 12 - "required": [ 13 13 - "repo", 14 14 - "issueId", 15 15 - "owner", 16 16 - "title", 17 17 - "createdAt" 18 18 - ], 12 12 + "required": ["repo", "title", "createdAt"], 19 13 "properties": { 20 14 "repo": { 21 15 "type": "string", 22 16 "format": "at-uri" 23 23 - }, 24 24 - "issueId": { 25 25 - "type": "integer" 26 26 - }, 27 27 - "owner": { 28 28 - "type": "string", 29 29 - "format": "did" 30 17 }, 31 18 "title": { 32 19 "type": "string"

+24

lexicons/knot/knot.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.knot", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "any", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "createdAt" 14 14 + ], 15 15 + "properties": { 16 16 + "createdAt": { 17 17 + "type": "string", 18 18 + "format": "datetime" 19 19 + } 20 20 + } 21 21 + } 22 22 + } 23 23 + } 24 24 + }

+73

lexicons/knot/listKeys.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.knot.listKeys", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "description": "List all public keys stored in the knot server", 8 8 + "parameters": { 9 9 + "type": "params", 10 10 + "properties": { 11 11 + "limit": { 12 12 + "type": "integer", 13 13 + "description": "Maximum number of keys to return", 14 14 + "minimum": 1, 15 15 + "maximum": 1000, 16 16 + "default": 100 17 17 + }, 18 18 + "cursor": { 19 19 + "type": "string", 20 20 + "description": "Pagination cursor" 21 21 + } 22 22 + } 23 23 + }, 24 24 + "output": { 25 25 + "encoding": "application/json", 26 26 + "schema": { 27 27 + "type": "object", 28 28 + "required": ["keys"], 29 29 + "properties": { 30 30 + "keys": { 31 31 + "type": "array", 32 32 + "items": { 33 33 + "type": "ref", 34 34 + "ref": "#publicKey" 35 35 + } 36 36 + }, 37 37 + "cursor": { 38 38 + "type": "string", 39 39 + "description": "Pagination cursor for next page" 40 40 + } 41 41 + } 42 42 + } 43 43 + }, 44 44 + "errors": [ 45 45 + { 46 46 + "name": "InternalServerError", 47 47 + "description": "Failed to retrieve public keys" 48 48 + } 49 49 + ] 50 50 + }, 51 51 + "publicKey": { 52 52 + "type": "object", 53 53 + "required": ["did", "key", "createdAt"], 54 54 + "properties": { 55 55 + "did": { 56 56 + "type": "string", 57 57 + "format": "did", 58 58 + "description": "DID associated with the public key" 59 59 + }, 60 60 + "key": { 61 61 + "type": "string", 62 62 + "maxLength": 4096, 63 63 + "description": "Public key contents" 64 64 + }, 65 65 + "createdAt": { 66 66 + "type": "string", 67 67 + "format": "datetime", 68 68 + "description": "Key upload timestamp" 69 69 + } 70 70 + } 71 71 + } 72 72 + } 73 73 + }

+25

lexicons/knot/version.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.knot.version", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "description": "Get the version of a knot", 8 8 + "output": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "version" 14 14 + ], 15 15 + "properties": { 16 16 + "version": { 17 17 + "type": "string" 18 18 + } 19 19 + } 20 20 + } 21 21 + }, 22 22 + "errors": [] 23 23 + } 24 24 + } 25 25 + }

-67

lexicons/listSecrets.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo.listSecrets", 4 4 - "defs": { 5 5 - "main": { 6 6 - "type": "query", 7 7 - "parameters": { 8 8 - "type": "params", 9 9 - "required": [ 10 10 - "repo" 11 11 - ], 12 12 - "properties": { 13 13 - "repo": { 14 14 - "type": "string", 15 15 - "format": "at-uri" 16 16 - } 17 17 - } 18 18 - }, 19 19 - "output": { 20 20 - "encoding": "application/json", 21 21 - "schema": { 22 22 - "type": "object", 23 23 - "required": [ 24 24 - "secrets" 25 25 - ], 26 26 - "properties": { 27 27 - "secrets": { 28 28 - "type": "array", 29 29 - "items": { 30 30 - "type": "ref", 31 31 - "ref": "#secret" 32 32 - } 33 33 - } 34 34 - } 35 35 - } 36 36 - } 37 37 - }, 38 38 - "secret": { 39 39 - "type": "object", 40 40 - "required": [ 41 41 - "repo", 42 42 - "key", 43 43 - "createdAt", 44 44 - "createdBy" 45 45 - ], 46 46 - "properties": { 47 47 - "repo": { 48 48 - "type": "string", 49 49 - "format": "at-uri" 50 50 - }, 51 51 - "key": { 52 52 - "type": "string", 53 53 - "maxLength": 50, 54 54 - "minLength": 1 55 55 - }, 56 56 - "createdAt": { 57 57 - "type": "string", 58 58 - "format": "datetime" 59 59 - }, 60 60 - "createdBy": { 61 61 - "type": "string", 62 62 - "format": "did" 63 63 - } 64 64 - } 65 65 - } 66 66 - } 67 67 - }

+31

lexicons/owner.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.owner", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "description": "Get the owner of a service", 8 8 + "output": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "owner" 14 14 + ], 15 15 + "properties": { 16 16 + "owner": { 17 17 + "type": "string", 18 18 + "format": "did" 19 19 + } 20 20 + } 21 21 + } 22 22 + }, 23 23 + "errors": [ 24 24 + { 25 25 + "name": "OwnerNotFound", 26 26 + "description": "Owner is not set for this service" 27 27 + } 28 28 + ] 29 29 + } 30 30 + } 31 31 + }

+207

lexicons/pipeline/pipeline.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.pipeline", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "tid", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "triggerMetadata", 14 14 + "workflows" 15 15 + ], 16 16 + "properties": { 17 17 + "triggerMetadata": { 18 18 + "type": "ref", 19 19 + "ref": "#triggerMetadata" 20 20 + }, 21 21 + "workflows": { 22 22 + "type": "array", 23 23 + "items": { 24 24 + "type": "ref", 25 25 + "ref": "#workflow" 26 26 + } 27 27 + } 28 28 + } 29 29 + } 30 30 + }, 31 31 + "triggerMetadata": { 32 32 + "type": "object", 33 33 + "required": [ 34 34 + "kind", 35 35 + "repo" 36 36 + ], 37 37 + "properties": { 38 38 + "kind": { 39 39 + "type": "string", 40 40 + "enum": [ 41 41 + "push", 42 42 + "pull_request", 43 43 + "manual" 44 44 + ] 45 45 + }, 46 46 + "repo": { 47 47 + "type": "ref", 48 48 + "ref": "#triggerRepo" 49 49 + }, 50 50 + "push": { 51 51 + "type": "ref", 52 52 + "ref": "#pushTriggerData" 53 53 + }, 54 54 + "pullRequest": { 55 55 + "type": "ref", 56 56 + "ref": "#pullRequestTriggerData" 57 57 + }, 58 58 + "manual": { 59 59 + "type": "ref", 60 60 + "ref": "#manualTriggerData" 61 61 + } 62 62 + } 63 63 + }, 64 64 + "triggerRepo": { 65 65 + "type": "object", 66 66 + "required": [ 67 67 + "knot", 68 68 + "did", 69 69 + "repo", 70 70 + "defaultBranch" 71 71 + ], 72 72 + "properties": { 73 73 + "knot": { 74 74 + "type": "string" 75 75 + }, 76 76 + "did": { 77 77 + "type": "string", 78 78 + "format": "did" 79 79 + }, 80 80 + "repo": { 81 81 + "type": "string" 82 82 + }, 83 83 + "defaultBranch": { 84 84 + "type": "string" 85 85 + } 86 86 + } 87 87 + }, 88 88 + "pushTriggerData": { 89 89 + "type": "object", 90 90 + "required": [ 91 91 + "ref", 92 92 + "newSha", 93 93 + "oldSha" 94 94 + ], 95 95 + "properties": { 96 96 + "ref": { 97 97 + "type": "string" 98 98 + }, 99 99 + "newSha": { 100 100 + "type": "string", 101 101 + "minLength": 40, 102 102 + "maxLength": 40 103 103 + }, 104 104 + "oldSha": { 105 105 + "type": "string", 106 106 + "minLength": 40, 107 107 + "maxLength": 40 108 108 + } 109 109 + } 110 110 + }, 111 111 + "pullRequestTriggerData": { 112 112 + "type": "object", 113 113 + "required": [ 114 114 + "sourceBranch", 115 115 + "targetBranch", 116 116 + "sourceSha", 117 117 + "action" 118 118 + ], 119 119 + "properties": { 120 120 + "sourceBranch": { 121 121 + "type": "string" 122 122 + }, 123 123 + "targetBranch": { 124 124 + "type": "string" 125 125 + }, 126 126 + "sourceSha": { 127 127 + "type": "string", 128 128 + "minLength": 40, 129 129 + "maxLength": 40 130 130 + }, 131 131 + "action": { 132 132 + "type": "string" 133 133 + } 134 134 + } 135 135 + }, 136 136 + "manualTriggerData": { 137 137 + "type": "object", 138 138 + "properties": { 139 139 + "inputs": { 140 140 + "type": "array", 141 141 + "items": { 142 142 + "type": "ref", 143 143 + "ref": "#pair" 144 144 + } 145 145 + } 146 146 + } 147 147 + }, 148 148 + "workflow": { 149 149 + "type": "object", 150 150 + "required": [ 151 151 + "name", 152 152 + "engine", 153 153 + "clone", 154 154 + "raw" 155 155 + ], 156 156 + "properties": { 157 157 + "name": { 158 158 + "type": "string" 159 159 + }, 160 160 + "engine": { 161 161 + "type": "string" 162 162 + }, 163 163 + "clone": { 164 164 + "type": "ref", 165 165 + "ref": "#cloneOpts" 166 166 + }, 167 167 + "raw": { 168 168 + "type": "string" 169 169 + } 170 170 + } 171 171 + }, 172 172 + "cloneOpts": { 173 173 + "type": "object", 174 174 + "required": [ 175 175 + "skip", 176 176 + "depth", 177 177 + "submodules" 178 178 + ], 179 179 + "properties": { 180 180 + "skip": { 181 181 + "type": "boolean" 182 182 + }, 183 183 + "depth": { 184 184 + "type": "integer" 185 185 + }, 186 186 + "submodules": { 187 187 + "type": "boolean" 188 188 + } 189 189 + } 190 190 + }, 191 191 + "pair": { 192 192 + "type": "object", 193 193 + "required": [ 194 194 + "key", 195 195 + "value" 196 196 + ], 197 197 + "properties": { 198 198 + "key": { 199 199 + "type": "string" 200 200 + }, 201 201 + "value": { 202 202 + "type": "string" 203 203 + } 204 204 + } 205 205 + } 206 206 + } 207 207 + }

-263

lexicons/pipeline.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.pipeline", 4 4 - "needsCbor": true, 5 5 - "needsType": true, 6 6 - "defs": { 7 7 - "main": { 8 8 - "type": "record", 9 9 - "key": "tid", 10 10 - "record": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "triggerMetadata", 14 14 - "workflows" 15 15 - ], 16 16 - "properties": { 17 17 - "triggerMetadata": { 18 18 - "type": "ref", 19 19 - "ref": "#triggerMetadata" 20 20 - }, 21 21 - "workflows": { 22 22 - "type": "array", 23 23 - "items": { 24 24 - "type": "ref", 25 25 - "ref": "#workflow" 26 26 - } 27 27 - } 28 28 - } 29 29 - } 30 30 - }, 31 31 - "triggerMetadata": { 32 32 - "type": "object", 33 33 - "required": [ 34 34 - "kind", 35 35 - "repo" 36 36 - ], 37 37 - "properties": { 38 38 - "kind": { 39 39 - "type": "string", 40 40 - "enum": [ 41 41 - "push", 42 42 - "pull_request", 43 43 - "manual" 44 44 - ] 45 45 - }, 46 46 - "repo": { 47 47 - "type": "ref", 48 48 - "ref": "#triggerRepo" 49 49 - }, 50 50 - "push": { 51 51 - "type": "ref", 52 52 - "ref": "#pushTriggerData" 53 53 - }, 54 54 - "pullRequest": { 55 55 - "type": "ref", 56 56 - "ref": "#pullRequestTriggerData" 57 57 - }, 58 58 - "manual": { 59 59 - "type": "ref", 60 60 - "ref": "#manualTriggerData" 61 61 - } 62 62 - } 63 63 - }, 64 64 - "triggerRepo": { 65 65 - "type": "object", 66 66 - "required": [ 67 67 - "knot", 68 68 - "did", 69 69 - "repo", 70 70 - "defaultBranch" 71 71 - ], 72 72 - "properties": { 73 73 - "knot": { 74 74 - "type": "string" 75 75 - }, 76 76 - "did": { 77 77 - "type": "string", 78 78 - "format": "did" 79 79 - }, 80 80 - "repo": { 81 81 - "type": "string" 82 82 - }, 83 83 - "defaultBranch": { 84 84 - "type": "string" 85 85 - } 86 86 - } 87 87 - }, 88 88 - "pushTriggerData": { 89 89 - "type": "object", 90 90 - "required": [ 91 91 - "ref", 92 92 - "newSha", 93 93 - "oldSha" 94 94 - ], 95 95 - "properties": { 96 96 - "ref": { 97 97 - "type": "string" 98 98 - }, 99 99 - "newSha": { 100 100 - "type": "string", 101 101 - "minLength": 40, 102 102 - "maxLength": 40 103 103 - }, 104 104 - "oldSha": { 105 105 - "type": "string", 106 106 - "minLength": 40, 107 107 - "maxLength": 40 108 108 - } 109 109 - } 110 110 - }, 111 111 - "pullRequestTriggerData": { 112 112 - "type": "object", 113 113 - "required": [ 114 114 - "sourceBranch", 115 115 - "targetBranch", 116 116 - "sourceSha", 117 117 - "action" 118 118 - ], 119 119 - "properties": { 120 120 - "sourceBranch": { 121 121 - "type": "string" 122 122 - }, 123 123 - "targetBranch": { 124 124 - "type": "string" 125 125 - }, 126 126 - "sourceSha": { 127 127 - "type": "string", 128 128 - "minLength": 40, 129 129 - "maxLength": 40 130 130 - }, 131 131 - "action": { 132 132 - "type": "string" 133 133 - } 134 134 - } 135 135 - }, 136 136 - "manualTriggerData": { 137 137 - "type": "object", 138 138 - "properties": { 139 139 - "inputs": { 140 140 - "type": "array", 141 141 - "items": { 142 142 - "type": "ref", 143 143 - "ref": "#pair" 144 144 - } 145 145 - } 146 146 - } 147 147 - }, 148 148 - "workflow": { 149 149 - "type": "object", 150 150 - "required": [ 151 151 - "name", 152 152 - "dependencies", 153 153 - "steps", 154 154 - "environment", 155 155 - "clone" 156 156 - ], 157 157 - "properties": { 158 158 - "name": { 159 159 - "type": "string" 160 160 - }, 161 161 - "dependencies": { 162 162 - "type": "array", 163 163 - "items": { 164 164 - "type": "ref", 165 165 - "ref": "#dependency" 166 166 - } 167 167 - }, 168 168 - "steps": { 169 169 - "type": "array", 170 170 - "items": { 171 171 - "type": "ref", 172 172 - "ref": "#step" 173 173 - } 174 174 - }, 175 175 - "environment": { 176 176 - "type": "array", 177 177 - "items": { 178 178 - "type": "ref", 179 179 - "ref": "#pair" 180 180 - } 181 181 - }, 182 182 - "clone": { 183 183 - "type": "ref", 184 184 - "ref": "#cloneOpts" 185 185 - } 186 186 - } 187 187 - }, 188 188 - "dependency": { 189 189 - "type": "object", 190 190 - "required": [ 191 191 - "registry", 192 192 - "packages" 193 193 - ], 194 194 - "properties": { 195 195 - "registry": { 196 196 - "type": "string" 197 197 - }, 198 198 - "packages": { 199 199 - "type": "array", 200 200 - "items": { 201 201 - "type": "string" 202 202 - } 203 203 - } 204 204 - } 205 205 - }, 206 206 - "cloneOpts": { 207 207 - "type": "object", 208 208 - "required": [ 209 209 - "skip", 210 210 - "depth", 211 211 - "submodules" 212 212 - ], 213 213 - "properties": { 214 214 - "skip": { 215 215 - "type": "boolean" 216 216 - }, 217 217 - "depth": { 218 218 - "type": "integer" 219 219 - }, 220 220 - "submodules": { 221 221 - "type": "boolean" 222 222 - } 223 223 - } 224 224 - }, 225 225 - "step": { 226 226 - "type": "object", 227 227 - "required": [ 228 228 - "name", 229 229 - "command" 230 230 - ], 231 231 - "properties": { 232 232 - "name": { 233 233 - "type": "string" 234 234 - }, 235 235 - "command": { 236 236 - "type": "string" 237 237 - }, 238 238 - "environment": { 239 239 - "type": "array", 240 240 - "items": { 241 241 - "type": "ref", 242 242 - "ref": "#pair" 243 243 - } 244 244 - } 245 245 - } 246 246 - }, 247 247 - "pair": { 248 248 - "type": "object", 249 249 - "required": [ 250 250 - "key", 251 251 - "value" 252 252 - ], 253 253 - "properties": { 254 254 - "key": { 255 255 - "type": "string" 256 256 - }, 257 257 - "value": { 258 258 - "type": "string" 259 259 - } 260 260 - } 261 261 - } 262 262 - } 263 263 - }

-11

lexicons/pulls/comment.json

··· 19 19 "type": "string", 20 20 "format": "at-uri" 21 21 }, 22 22 - "repo": { 23 23 - "type": "string", 24 24 - "format": "at-uri" 25 25 - }, 26 26 - "commentId": { 27 27 - "type": "integer" 28 28 - }, 29 29 - "owner": { 30 30 - "type": "string", 31 31 - "format": "did" 32 32 - }, 33 22 "body": { 34 23 "type": "string" 35 24 },

+20 -12

lexicons/pulls/pull.json

··· 10 10 "record": { 11 11 "type": "object", 12 12 "required": [ 13 13 - "targetRepo", 14 14 - "targetBranch", 15 15 - "pullId", 13 13 + "target", 16 14 "title", 17 15 "patch", 18 16 "createdAt" 19 17 ], 20 18 "properties": { 21 21 - "targetRepo": { 22 22 - "type": "string", 23 23 - "format": "at-uri" 24 24 - }, 25 25 - "targetBranch": { 26 26 - "type": "string" 27 27 - }, 28 28 - "pullId": { 29 29 - "type": "integer" 19 19 + "target": { 20 20 + "type": "ref", 21 21 + "ref": "#target" 30 22 }, 31 23 "title": { 32 24 "type": "string" ··· 45 37 "type": "string", 46 38 "format": "datetime" 47 39 } 40 40 + } 41 41 + } 42 42 + }, 43 43 + "target": { 44 44 + "type": "object", 45 45 + "required": [ 46 46 + "repo", 47 47 + "branch" 48 48 + ], 49 49 + "properties": { 50 50 + "repo": { 51 51 + "type": "string", 52 52 + "format": "at-uri" 53 53 + }, 54 54 + "branch": { 55 55 + "type": "string" 48 56 } 49 57 } 50 58 },

-31

lexicons/removeSecret.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo.removeSecret", 4 4 - "defs": { 5 5 - "main": { 6 6 - "type": "procedure", 7 7 - "description": "Remove a CI secret", 8 8 - "input": { 9 9 - "encoding": "application/json", 10 10 - "schema": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "repo", 14 14 - "key" 15 15 - ], 16 16 - "properties": { 17 17 - "repo": { 18 18 - "type": "string", 19 19 - "format": "at-uri" 20 20 - }, 21 21 - "key": { 22 22 - "type": "string", 23 23 - "maxLength": 50, 24 24 - "minLength": 1 25 25 - } 26 26 - } 27 27 - } 28 28 - } 29 29 - } 30 30 - } 31 31 - }

+37

lexicons/repo/addSecret.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.addSecret", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Add a CI secret", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "repo", 14 14 + "key", 15 15 + "value" 16 16 + ], 17 17 + "properties": { 18 18 + "repo": { 19 19 + "type": "string", 20 20 + "format": "at-uri" 21 21 + }, 22 22 + "key": { 23 23 + "type": "string", 24 24 + "maxLength": 50, 25 25 + "minLength": 1 26 26 + }, 27 27 + "value": { 28 28 + "type": "string", 29 29 + "maxLength": 200, 30 30 + "minLength": 1 31 31 + } 32 32 + } 33 33 + } 34 34 + } 35 35 + } 36 36 + } 37 37 + }

+55

lexicons/repo/archive.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.archive", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "ref"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)" 18 18 + }, 19 19 + "format": { 20 20 + "type": "string", 21 21 + "description": "Archive format", 22 22 + "enum": ["tar", "zip", "tar.gz", "tar.bz2", "tar.xz"], 23 23 + "default": "tar.gz" 24 24 + }, 25 25 + "prefix": { 26 26 + "type": "string", 27 27 + "description": "Prefix for files in the archive" 28 28 + } 29 29 + } 30 30 + }, 31 31 + "output": { 32 32 + "encoding": "*/*", 33 33 + "description": "Binary archive data" 34 34 + }, 35 35 + "errors": [ 36 36 + { 37 37 + "name": "RepoNotFound", 38 38 + "description": "Repository not found or access denied" 39 39 + }, 40 40 + { 41 41 + "name": "RefNotFound", 42 42 + "description": "Git reference not found" 43 43 + }, 44 44 + { 45 45 + "name": "InvalidRequest", 46 46 + "description": "Invalid request parameters" 47 47 + }, 48 48 + { 49 49 + "name": "ArchiveError", 50 50 + "description": "Failed to create archive" 51 51 + } 52 52 + ] 53 53 + } 54 54 + } 55 55 + }

+52

lexicons/repo/artifact.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.artifact", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "tid", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "name", 14 14 + "repo", 15 15 + "tag", 16 16 + "createdAt", 17 17 + "artifact" 18 18 + ], 19 19 + "properties": { 20 20 + "name": { 21 21 + "type": "string", 22 22 + "description": "name of the artifact" 23 23 + }, 24 24 + "repo": { 25 25 + "type": "string", 26 26 + "format": "at-uri", 27 27 + "description": "repo that this artifact is being uploaded to" 28 28 + }, 29 29 + "tag": { 30 30 + "type": "bytes", 31 31 + "description": "hash of the tag object that this artifact is attached to (only annotated tags are supported)", 32 32 + "minLength": 20, 33 33 + "maxLength": 20 34 34 + }, 35 35 + "createdAt": { 36 36 + "type": "string", 37 37 + "format": "datetime", 38 38 + "description": "time of creation of this artifact" 39 39 + }, 40 40 + "artifact": { 41 41 + "type": "blob", 42 42 + "description": "the artifact", 43 43 + "accept": [ 44 44 + "*/*" 45 45 + ], 46 46 + "maxSize": 52428800 47 47 + } 48 48 + } 49 49 + } 50 50 + } 51 51 + } 52 52 + }

+138

lexicons/repo/blob.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.blob", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "ref", "path"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)" 18 18 + }, 19 19 + "path": { 20 20 + "type": "string", 21 21 + "description": "Path to the file within the repository" 22 22 + }, 23 23 + "raw": { 24 24 + "type": "boolean", 25 25 + "description": "Return raw file content instead of JSON response", 26 26 + "default": false 27 27 + } 28 28 + } 29 29 + }, 30 30 + "output": { 31 31 + "encoding": "application/json", 32 32 + "schema": { 33 33 + "type": "object", 34 34 + "required": ["ref", "path", "content"], 35 35 + "properties": { 36 36 + "ref": { 37 37 + "type": "string", 38 38 + "description": "The git reference used" 39 39 + }, 40 40 + "path": { 41 41 + "type": "string", 42 42 + "description": "The file path" 43 43 + }, 44 44 + "content": { 45 45 + "type": "string", 46 46 + "description": "File content (base64 encoded for binary files)" 47 47 + }, 48 48 + "encoding": { 49 49 + "type": "string", 50 50 + "description": "Content encoding", 51 51 + "enum": ["utf-8", "base64"] 52 52 + }, 53 53 + "size": { 54 54 + "type": "integer", 55 55 + "description": "File size in bytes" 56 56 + }, 57 57 + "isBinary": { 58 58 + "type": "boolean", 59 59 + "description": "Whether the file is binary" 60 60 + }, 61 61 + "mimeType": { 62 62 + "type": "string", 63 63 + "description": "MIME type of the file" 64 64 + }, 65 65 + "lastCommit": { 66 66 + "type": "ref", 67 67 + "ref": "#lastCommit" 68 68 + } 69 69 + } 70 70 + } 71 71 + }, 72 72 + "errors": [ 73 73 + { 74 74 + "name": "RepoNotFound", 75 75 + "description": "Repository not found or access denied" 76 76 + }, 77 77 + { 78 78 + "name": "RefNotFound", 79 79 + "description": "Git reference not found" 80 80 + }, 81 81 + { 82 82 + "name": "FileNotFound", 83 83 + "description": "File not found at the specified path" 84 84 + }, 85 85 + { 86 86 + "name": "InvalidRequest", 87 87 + "description": "Invalid request parameters" 88 88 + } 89 89 + ] 90 90 + }, 91 91 + "lastCommit": { 92 92 + "type": "object", 93 93 + "required": ["hash", "message", "when"], 94 94 + "properties": { 95 95 + "hash": { 96 96 + "type": "string", 97 97 + "description": "Commit hash" 98 98 + }, 99 99 + "shortHash": { 100 100 + "type": "string", 101 101 + "description": "Short commit hash" 102 102 + }, 103 103 + "message": { 104 104 + "type": "string", 105 105 + "description": "Commit message" 106 106 + }, 107 107 + "author": { 108 108 + "type": "ref", 109 109 + "ref": "#signature" 110 110 + }, 111 111 + "when": { 112 112 + "type": "string", 113 113 + "format": "datetime", 114 114 + "description": "Commit timestamp" 115 115 + } 116 116 + } 117 117 + }, 118 118 + "signature": { 119 119 + "type": "object", 120 120 + "required": ["name", "email", "when"], 121 121 + "properties": { 122 122 + "name": { 123 123 + "type": "string", 124 124 + "description": "Author name" 125 125 + }, 126 126 + "email": { 127 127 + "type": "string", 128 128 + "description": "Author email" 129 129 + }, 130 130 + "when": { 131 131 + "type": "string", 132 132 + "format": "datetime", 133 133 + "description": "Author timestamp" 134 134 + } 135 135 + } 136 136 + } 137 137 + } 138 138 + }

+94

lexicons/repo/branch.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.branch", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "name"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "name": { 16 16 + "type": "string", 17 17 + "description": "Branch name to get information for" 18 18 + } 19 19 + } 20 20 + }, 21 21 + "output": { 22 22 + "encoding": "application/json", 23 23 + "schema": { 24 24 + "type": "object", 25 25 + "required": ["name", "hash", "when"], 26 26 + "properties": { 27 27 + "name": { 28 28 + "type": "string", 29 29 + "description": "Branch name" 30 30 + }, 31 31 + "hash": { 32 32 + "type": "string", 33 33 + "description": "Latest commit hash on this branch" 34 34 + }, 35 35 + "shortHash": { 36 36 + "type": "string", 37 37 + "description": "Short commit hash" 38 38 + }, 39 39 + "when": { 40 40 + "type": "string", 41 41 + "format": "datetime", 42 42 + "description": "Timestamp of latest commit" 43 43 + }, 44 44 + "message": { 45 45 + "type": "string", 46 46 + "description": "Latest commit message" 47 47 + }, 48 48 + "author": { 49 49 + "type": "ref", 50 50 + "ref": "#signature" 51 51 + }, 52 52 + "isDefault": { 53 53 + "type": "boolean", 54 54 + "description": "Whether this is the default branch" 55 55 + } 56 56 + } 57 57 + } 58 58 + }, 59 59 + "errors": [ 60 60 + { 61 61 + "name": "RepoNotFound", 62 62 + "description": "Repository not found or access denied" 63 63 + }, 64 64 + { 65 65 + "name": "BranchNotFound", 66 66 + "description": "Branch not found" 67 67 + }, 68 68 + { 69 69 + "name": "InvalidRequest", 70 70 + "description": "Invalid request parameters" 71 71 + } 72 72 + ] 73 73 + }, 74 74 + "signature": { 75 75 + "type": "object", 76 76 + "required": ["name", "email", "when"], 77 77 + "properties": { 78 78 + "name": { 79 79 + "type": "string", 80 80 + "description": "Author name" 81 81 + }, 82 82 + "email": { 83 83 + "type": "string", 84 84 + "description": "Author email" 85 85 + }, 86 86 + "when": { 87 87 + "type": "string", 88 88 + "format": "datetime", 89 89 + "description": "Author timestamp" 90 90 + } 91 91 + } 92 92 + } 93 93 + } 94 94 + }

+43

lexicons/repo/branches.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.branches", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "limit": { 16 16 + "type": "integer", 17 17 + "description": "Maximum number of branches to return", 18 18 + "minimum": 1, 19 19 + "maximum": 100, 20 20 + "default": 50 21 21 + }, 22 22 + "cursor": { 23 23 + "type": "string", 24 24 + "description": "Pagination cursor" 25 25 + } 26 26 + } 27 27 + }, 28 28 + "output": { 29 29 + "encoding": "*/*" 30 30 + }, 31 31 + "errors": [ 32 32 + { 33 33 + "name": "RepoNotFound", 34 34 + "description": "Repository not found or access denied" 35 35 + }, 36 36 + { 37 37 + "name": "InvalidRequest", 38 38 + "description": "Invalid request parameters" 39 39 + } 40 40 + ] 41 41 + } 42 42 + } 43 43 + }

+36

lexicons/repo/collaborator.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.collaborator", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "tid", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "subject", 14 14 + "repo", 15 15 + "createdAt" 16 16 + ], 17 17 + "properties": { 18 18 + "subject": { 19 19 + "type": "string", 20 20 + "format": "did" 21 21 + }, 22 22 + "repo": { 23 23 + "type": "string", 24 24 + "description": "repo to add this user to", 25 25 + "format": "at-uri" 26 26 + }, 27 27 + "createdAt": { 28 28 + "type": "string", 29 29 + "format": "datetime" 30 30 + } 31 31 + } 32 32 + } 33 33 + } 34 34 + } 35 35 + } 36 36 +

+49

lexicons/repo/compare.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.compare", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "rev1", "rev2"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "rev1": { 16 16 + "type": "string", 17 17 + "description": "First revision (commit, branch, or tag)" 18 18 + }, 19 19 + "rev2": { 20 20 + "type": "string", 21 21 + "description": "Second revision (commit, branch, or tag)" 22 22 + } 23 23 + } 24 24 + }, 25 25 + "output": { 26 26 + "encoding": "*/*", 27 27 + "description": "Compare output in application/json" 28 28 + }, 29 29 + "errors": [ 30 30 + { 31 31 + "name": "RepoNotFound", 32 32 + "description": "Repository not found or access denied" 33 33 + }, 34 34 + { 35 35 + "name": "RevisionNotFound", 36 36 + "description": "One or both revisions not found" 37 37 + }, 38 38 + { 39 39 + "name": "InvalidRequest", 40 40 + "description": "Invalid request parameters" 41 41 + }, 42 42 + { 43 43 + "name": "CompareError", 44 44 + "description": "Failed to compare revisions" 45 45 + } 46 46 + ] 47 47 + } 48 48 + } 49 49 + }

+33

lexicons/repo/create.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.create", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Create a new repository", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "rkey" 14 14 + ], 15 15 + "properties": { 16 16 + "rkey": { 17 17 + "type": "string", 18 18 + "description": "Rkey of the repository record" 19 19 + }, 20 20 + "defaultBranch": { 21 21 + "type": "string", 22 22 + "description": "Default branch to push to" 23 23 + }, 24 24 + "source": { 25 25 + "type": "string", 26 26 + "description": "A source URL to clone from, populate this when forking or importing a repository." 27 27 + } 28 28 + } 29 29 + } 30 30 + } 31 31 + } 32 32 + } 33 33 + }

+29

lexicons/repo/defaultBranch.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.setDefaultBranch", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Set the default branch for a repository", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "repo", 14 14 + "defaultBranch" 15 15 + ], 16 16 + "properties": { 17 17 + "repo": { 18 18 + "type": "string", 19 19 + "format": "at-uri" 20 20 + }, 21 21 + "defaultBranch": { 22 22 + "type": "string" 23 23 + } 24 24 + } 25 25 + } 26 26 + } 27 27 + } 28 28 + } 29 29 + }

+32

lexicons/repo/delete.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.delete", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Delete a repository", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": ["did", "name", "rkey"], 13 13 + "properties": { 14 14 + "did": { 15 15 + "type": "string", 16 16 + "format": "did", 17 17 + "description": "DID of the repository owner" 18 18 + }, 19 19 + "name": { 20 20 + "type": "string", 21 21 + "description": "Name of the repository to delete" 22 22 + }, 23 23 + "rkey": { 24 24 + "type": "string", 25 25 + "description": "Rkey of the repository record" 26 26 + } 27 27 + } 28 28 + } 29 29 + } 30 30 + } 31 31 + } 32 32 + }

+40

lexicons/repo/diff.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.diff", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "ref"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)" 18 18 + } 19 19 + } 20 20 + }, 21 21 + "output": { 22 22 + "encoding": "*/*" 23 23 + }, 24 24 + "errors": [ 25 25 + { 26 26 + "name": "RepoNotFound", 27 27 + "description": "Repository not found or access denied" 28 28 + }, 29 29 + { 30 30 + "name": "RefNotFound", 31 31 + "description": "Git reference not found" 32 32 + }, 33 33 + { 34 34 + "name": "InvalidRequest", 35 35 + "description": "Invalid request parameters" 36 36 + } 37 37 + ] 38 38 + } 39 39 + } 40 40 + }

+53

lexicons/repo/forkStatus.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.forkStatus", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Check fork status relative to upstream source", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": ["did", "name", "source", "branch", "hiddenRef"], 13 13 + "properties": { 14 14 + "did": { 15 15 + "type": "string", 16 16 + "format": "did", 17 17 + "description": "DID of the fork owner" 18 18 + }, 19 19 + "name": { 20 20 + "type": "string", 21 21 + "description": "Name of the forked repository" 22 22 + }, 23 23 + "source": { 24 24 + "type": "string", 25 25 + "description": "Source repository URL" 26 26 + }, 27 27 + "branch": { 28 28 + "type": "string", 29 29 + "description": "Branch to check status for" 30 30 + }, 31 31 + "hiddenRef": { 32 32 + "type": "string", 33 33 + "description": "Hidden ref to use for comparison" 34 34 + } 35 35 + } 36 36 + } 37 37 + }, 38 38 + "output": { 39 39 + "encoding": "application/json", 40 40 + "schema": { 41 41 + "type": "object", 42 42 + "required": ["status"], 43 43 + "properties": { 44 44 + "status": { 45 45 + "type": "integer", 46 46 + "description": "Fork status: 0=UpToDate, 1=FastForwardable, 2=Conflict, 3=MissingBranch" 47 47 + } 48 48 + } 49 49 + } 50 50 + } 51 51 + } 52 52 + } 53 53 + }

+42

lexicons/repo/forkSync.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.forkSync", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Sync a forked repository with its upstream source", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "did", 14 14 + "source", 15 15 + "name", 16 16 + "branch" 17 17 + ], 18 18 + "properties": { 19 19 + "did": { 20 20 + "type": "string", 21 21 + "format": "did", 22 22 + "description": "DID of the fork owner" 23 23 + }, 24 24 + "source": { 25 25 + "type": "string", 26 26 + "format": "at-uri", 27 27 + "description": "AT-URI of the source repository" 28 28 + }, 29 29 + "name": { 30 30 + "type": "string", 31 31 + "description": "Name of the forked repository" 32 32 + }, 33 33 + "branch": { 34 34 + "type": "string", 35 35 + "description": "Branch to sync" 36 36 + } 37 37 + } 38 38 + } 39 39 + } 40 40 + } 41 41 + } 42 42 + }

+82

lexicons/repo/getDefaultBranch.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.getDefaultBranch", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + } 15 15 + } 16 16 + }, 17 17 + "output": { 18 18 + "encoding": "application/json", 19 19 + "schema": { 20 20 + "type": "object", 21 21 + "required": ["name", "hash", "when"], 22 22 + "properties": { 23 23 + "name": { 24 24 + "type": "string", 25 25 + "description": "Default branch name" 26 26 + }, 27 27 + "hash": { 28 28 + "type": "string", 29 29 + "description": "Latest commit hash on default branch" 30 30 + }, 31 31 + "shortHash": { 32 32 + "type": "string", 33 33 + "description": "Short commit hash" 34 34 + }, 35 35 + "when": { 36 36 + "type": "string", 37 37 + "format": "datetime", 38 38 + "description": "Timestamp of latest commit" 39 39 + }, 40 40 + "message": { 41 41 + "type": "string", 42 42 + "description": "Latest commit message" 43 43 + }, 44 44 + "author": { 45 45 + "type": "ref", 46 46 + "ref": "#signature" 47 47 + } 48 48 + } 49 49 + } 50 50 + }, 51 51 + "errors": [ 52 52 + { 53 53 + "name": "RepoNotFound", 54 54 + "description": "Repository not found or access denied" 55 55 + }, 56 56 + { 57 57 + "name": "InvalidRequest", 58 58 + "description": "Invalid request parameters" 59 59 + } 60 60 + ] 61 61 + }, 62 62 + "signature": { 63 63 + "type": "object", 64 64 + "required": ["name", "email", "when"], 65 65 + "properties": { 66 66 + "name": { 67 67 + "type": "string", 68 68 + "description": "Author name" 69 69 + }, 70 70 + "email": { 71 71 + "type": "string", 72 72 + "description": "Author email" 73 73 + }, 74 74 + "when": { 75 75 + "type": "string", 76 76 + "format": "datetime", 77 77 + "description": "Author timestamp" 78 78 + } 79 79 + } 80 80 + } 81 81 + } 82 82 + }

+59

lexicons/repo/hiddenRef.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.hiddenRef", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Create a hidden ref in a repository", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "repo", 14 14 + "forkRef", 15 15 + "remoteRef" 16 16 + ], 17 17 + "properties": { 18 18 + "repo": { 19 19 + "type": "string", 20 20 + "format": "at-uri", 21 21 + "description": "AT-URI of the repository" 22 22 + }, 23 23 + "forkRef": { 24 24 + "type": "string", 25 25 + "description": "Fork reference name" 26 26 + }, 27 27 + "remoteRef": { 28 28 + "type": "string", 29 29 + "description": "Remote reference name" 30 30 + } 31 31 + } 32 32 + } 33 33 + }, 34 34 + "output": { 35 35 + "encoding": "application/json", 36 36 + "schema": { 37 37 + "type": "object", 38 38 + "required": [ 39 39 + "success" 40 40 + ], 41 41 + "properties": { 42 42 + "success": { 43 43 + "type": "boolean", 44 44 + "description": "Whether the hidden ref was created successfully" 45 45 + }, 46 46 + "ref": { 47 47 + "type": "string", 48 48 + "description": "The created hidden ref name" 49 49 + }, 50 50 + "error": { 51 51 + "type": "string", 52 52 + "description": "Error message if creation failed" 53 53 + } 54 54 + } 55 55 + } 56 56 + } 57 57 + } 58 58 + } 59 59 + }

+99

lexicons/repo/languages.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.languages", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)", 18 18 + "default": "HEAD" 19 19 + } 20 20 + } 21 21 + }, 22 22 + "output": { 23 23 + "encoding": "application/json", 24 24 + "schema": { 25 25 + "type": "object", 26 26 + "required": ["ref", "languages"], 27 27 + "properties": { 28 28 + "ref": { 29 29 + "type": "string", 30 30 + "description": "The git reference used" 31 31 + }, 32 32 + "languages": { 33 33 + "type": "array", 34 34 + "items": { 35 35 + "type": "ref", 36 36 + "ref": "#language" 37 37 + } 38 38 + }, 39 39 + "totalSize": { 40 40 + "type": "integer", 41 41 + "description": "Total size of all analyzed files in bytes" 42 42 + }, 43 43 + "totalFiles": { 44 44 + "type": "integer", 45 45 + "description": "Total number of files analyzed" 46 46 + } 47 47 + } 48 48 + } 49 49 + }, 50 50 + "errors": [ 51 51 + { 52 52 + "name": "RepoNotFound", 53 53 + "description": "Repository not found or access denied" 54 54 + }, 55 55 + { 56 56 + "name": "RefNotFound", 57 57 + "description": "Git reference not found" 58 58 + }, 59 59 + { 60 60 + "name": "InvalidRequest", 61 61 + "description": "Invalid request parameters" 62 62 + } 63 63 + ] 64 64 + }, 65 65 + "language": { 66 66 + "type": "object", 67 67 + "required": ["name", "size", "percentage"], 68 68 + "properties": { 69 69 + "name": { 70 70 + "type": "string", 71 71 + "description": "Programming language name" 72 72 + }, 73 73 + "size": { 74 74 + "type": "integer", 75 75 + "description": "Total size of files in this language (bytes)" 76 76 + }, 77 77 + "percentage": { 78 78 + "type": "integer", 79 79 + "description": "Percentage of total codebase (0-100)" 80 80 + }, 81 81 + "fileCount": { 82 82 + "type": "integer", 83 83 + "description": "Number of files in this language" 84 84 + }, 85 85 + "color": { 86 86 + "type": "string", 87 87 + "description": "Hex color code for this language" 88 88 + }, 89 89 + "extensions": { 90 90 + "type": "array", 91 91 + "items": { 92 92 + "type": "string" 93 93 + }, 94 94 + "description": "File extensions associated with this language" 95 95 + } 96 96 + } 97 97 + } 98 98 + } 99 99 + }

+67

lexicons/repo/listSecrets.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.listSecrets", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": [ 10 10 + "repo" 11 11 + ], 12 12 + "properties": { 13 13 + "repo": { 14 14 + "type": "string", 15 15 + "format": "at-uri" 16 16 + } 17 17 + } 18 18 + }, 19 19 + "output": { 20 20 + "encoding": "application/json", 21 21 + "schema": { 22 22 + "type": "object", 23 23 + "required": [ 24 24 + "secrets" 25 25 + ], 26 26 + "properties": { 27 27 + "secrets": { 28 28 + "type": "array", 29 29 + "items": { 30 30 + "type": "ref", 31 31 + "ref": "#secret" 32 32 + } 33 33 + } 34 34 + } 35 35 + } 36 36 + } 37 37 + }, 38 38 + "secret": { 39 39 + "type": "object", 40 40 + "required": [ 41 41 + "repo", 42 42 + "key", 43 43 + "createdAt", 44 44 + "createdBy" 45 45 + ], 46 46 + "properties": { 47 47 + "repo": { 48 48 + "type": "string", 49 49 + "format": "at-uri" 50 50 + }, 51 51 + "key": { 52 52 + "type": "string", 53 53 + "maxLength": 50, 54 54 + "minLength": 1 55 55 + }, 56 56 + "createdAt": { 57 57 + "type": "string", 58 58 + "format": "datetime" 59 59 + }, 60 60 + "createdBy": { 61 61 + "type": "string", 62 62 + "format": "did" 63 63 + } 64 64 + } 65 65 + } 66 66 + } 67 67 + }

+60

lexicons/repo/log.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.log", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "ref"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)" 18 18 + }, 19 19 + "path": { 20 20 + "type": "string", 21 21 + "description": "Path to filter commits by", 22 22 + "default": "" 23 23 + }, 24 24 + "limit": { 25 25 + "type": "integer", 26 26 + "description": "Maximum number of commits to return", 27 27 + "minimum": 1, 28 28 + "maximum": 100, 29 29 + "default": 50 30 30 + }, 31 31 + "cursor": { 32 32 + "type": "string", 33 33 + "description": "Pagination cursor (commit SHA)" 34 34 + } 35 35 + } 36 36 + }, 37 37 + "output": { 38 38 + "encoding": "*/*" 39 39 + }, 40 40 + "errors": [ 41 41 + { 42 42 + "name": "RepoNotFound", 43 43 + "description": "Repository not found or access denied" 44 44 + }, 45 45 + { 46 46 + "name": "RefNotFound", 47 47 + "description": "Git reference not found" 48 48 + }, 49 49 + { 50 50 + "name": "PathNotFound", 51 51 + "description": "Path not found in repository" 52 52 + }, 53 53 + { 54 54 + "name": "InvalidRequest", 55 55 + "description": "Invalid request parameters" 56 56 + } 57 57 + ] 58 58 + } 59 59 + } 60 60 + }

+52

lexicons/repo/merge.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.merge", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Merge a patch into a repository branch", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": ["did", "name", "patch", "branch"], 13 13 + "properties": { 14 14 + "did": { 15 15 + "type": "string", 16 16 + "format": "did", 17 17 + "description": "DID of the repository owner" 18 18 + }, 19 19 + "name": { 20 20 + "type": "string", 21 21 + "description": "Name of the repository" 22 22 + }, 23 23 + "patch": { 24 24 + "type": "string", 25 25 + "description": "Patch content to merge" 26 26 + }, 27 27 + "branch": { 28 28 + "type": "string", 29 29 + "description": "Target branch to merge into" 30 30 + }, 31 31 + "authorName": { 32 32 + "type": "string", 33 33 + "description": "Author name for the merge commit" 34 34 + }, 35 35 + "authorEmail": { 36 36 + "type": "string", 37 37 + "description": "Author email for the merge commit" 38 38 + }, 39 39 + "commitBody": { 40 40 + "type": "string", 41 41 + "description": "Additional commit message body" 42 42 + }, 43 43 + "commitMessage": { 44 44 + "type": "string", 45 45 + "description": "Merge commit message" 46 46 + } 47 47 + } 48 48 + } 49 49 + } 50 50 + } 51 51 + } 52 52 + }

+79

lexicons/repo/mergeCheck.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.mergeCheck", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Check if a merge is possible between two branches", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": ["did", "name", "patch", "branch"], 13 13 + "properties": { 14 14 + "did": { 15 15 + "type": "string", 16 16 + "format": "did", 17 17 + "description": "DID of the repository owner" 18 18 + }, 19 19 + "name": { 20 20 + "type": "string", 21 21 + "description": "Name of the repository" 22 22 + }, 23 23 + "patch": { 24 24 + "type": "string", 25 25 + "description": "Patch or pull request to check for merge conflicts" 26 26 + }, 27 27 + "branch": { 28 28 + "type": "string", 29 29 + "description": "Target branch to merge into" 30 30 + } 31 31 + } 32 32 + } 33 33 + }, 34 34 + "output": { 35 35 + "encoding": "application/json", 36 36 + "schema": { 37 37 + "type": "object", 38 38 + "required": ["is_conflicted"], 39 39 + "properties": { 40 40 + "is_conflicted": { 41 41 + "type": "boolean", 42 42 + "description": "Whether the merge has conflicts" 43 43 + }, 44 44 + "conflicts": { 45 45 + "type": "array", 46 46 + "description": "List of files with merge conflicts", 47 47 + "items": { 48 48 + "type": "ref", 49 49 + "ref": "#conflictInfo" 50 50 + } 51 51 + }, 52 52 + "message": { 53 53 + "type": "string", 54 54 + "description": "Additional message about the merge check" 55 55 + }, 56 56 + "error": { 57 57 + "type": "string", 58 58 + "description": "Error message if check failed" 59 59 + } 60 60 + } 61 61 + } 62 62 + } 63 63 + }, 64 64 + "conflictInfo": { 65 65 + "type": "object", 66 66 + "required": ["filename", "reason"], 67 67 + "properties": { 68 68 + "filename": { 69 69 + "type": "string", 70 70 + "description": "Name of the conflicted file" 71 71 + }, 72 72 + "reason": { 73 73 + "type": "string", 74 74 + "description": "Reason for the conflict" 75 75 + } 76 76 + } 77 77 + } 78 78 + } 79 79 + }

+31

lexicons/repo/removeSecret.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.removeSecret", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "procedure", 7 7 + "description": "Remove a CI secret", 8 8 + "input": { 9 9 + "encoding": "application/json", 10 10 + "schema": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "repo", 14 14 + "key" 15 15 + ], 16 16 + "properties": { 17 17 + "repo": { 18 18 + "type": "string", 19 19 + "format": "at-uri" 20 20 + }, 21 21 + "key": { 22 22 + "type": "string", 23 23 + "maxLength": 50, 24 24 + "minLength": 1 25 25 + } 26 26 + } 27 27 + } 28 28 + } 29 29 + } 30 30 + } 31 31 + }

+53

lexicons/repo/repo.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "tid", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "name", 14 14 + "knot", 15 15 + "owner", 16 16 + "createdAt" 17 17 + ], 18 18 + "properties": { 19 19 + "name": { 20 20 + "type": "string", 21 21 + "description": "name of the repo" 22 22 + }, 23 23 + "owner": { 24 24 + "type": "string", 25 25 + "format": "did" 26 26 + }, 27 27 + "knot": { 28 28 + "type": "string", 29 29 + "description": "knot where the repo was created" 30 30 + }, 31 31 + "spindle": { 32 32 + "type": "string", 33 33 + "description": "CI runner to send jobs to and receive results from" 34 34 + }, 35 35 + "description": { 36 36 + "type": "string", 37 37 + "minGraphemes": 1, 38 38 + "maxGraphemes": 140 39 39 + }, 40 40 + "source": { 41 41 + "type": "string", 42 42 + "format": "uri", 43 43 + "description": "source of the repo" 44 44 + }, 45 45 + "createdAt": { 46 46 + "type": "string", 47 47 + "format": "datetime" 48 48 + } 49 49 + } 50 50 + } 51 51 + } 52 52 + } 53 53 + }

+43

lexicons/repo/tags.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.tags", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "limit": { 16 16 + "type": "integer", 17 17 + "description": "Maximum number of tags to return", 18 18 + "minimum": 1, 19 19 + "maximum": 100, 20 20 + "default": 50 21 21 + }, 22 22 + "cursor": { 23 23 + "type": "string", 24 24 + "description": "Pagination cursor" 25 25 + } 26 26 + } 27 27 + }, 28 28 + "output": { 29 29 + "encoding": "*/*" 30 30 + }, 31 31 + "errors": [ 32 32 + { 33 33 + "name": "RepoNotFound", 34 34 + "description": "Repository not found or access denied" 35 35 + }, 36 36 + { 37 37 + "name": "InvalidRequest", 38 38 + "description": "Invalid request parameters" 39 39 + } 40 40 + ] 41 41 + } 42 42 + } 43 43 + }

+123

lexicons/repo/tree.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.repo.tree", 4 4 + "defs": { 5 5 + "main": { 6 6 + "type": "query", 7 7 + "parameters": { 8 8 + "type": "params", 9 9 + "required": ["repo", "ref"], 10 10 + "properties": { 11 11 + "repo": { 12 12 + "type": "string", 13 13 + "description": "Repository identifier in format 'did:plc:.../repoName'" 14 14 + }, 15 15 + "ref": { 16 16 + "type": "string", 17 17 + "description": "Git reference (branch, tag, or commit SHA)" 18 18 + }, 19 19 + "path": { 20 20 + "type": "string", 21 21 + "description": "Path within the repository tree", 22 22 + "default": "" 23 23 + } 24 24 + } 25 25 + }, 26 26 + "output": { 27 27 + "encoding": "application/json", 28 28 + "schema": { 29 29 + "type": "object", 30 30 + "required": ["ref", "files"], 31 31 + "properties": { 32 32 + "ref": { 33 33 + "type": "string", 34 34 + "description": "The git reference used" 35 35 + }, 36 36 + "parent": { 37 37 + "type": "string", 38 38 + "description": "The parent path in the tree" 39 39 + }, 40 40 + "dotdot": { 41 41 + "type": "string", 42 42 + "description": "Parent directory path" 43 43 + }, 44 44 + "files": { 45 45 + "type": "array", 46 46 + "items": { 47 47 + "type": "ref", 48 48 + "ref": "#treeEntry" 49 49 + } 50 50 + } 51 51 + } 52 52 + } 53 53 + }, 54 54 + "errors": [ 55 55 + { 56 56 + "name": "RepoNotFound", 57 57 + "description": "Repository not found or access denied" 58 58 + }, 59 59 + { 60 60 + "name": "RefNotFound", 61 61 + "description": "Git reference not found" 62 62 + }, 63 63 + { 64 64 + "name": "PathNotFound", 65 65 + "description": "Path not found in repository tree" 66 66 + }, 67 67 + { 68 68 + "name": "InvalidRequest", 69 69 + "description": "Invalid request parameters" 70 70 + } 71 71 + ] 72 72 + }, 73 73 + "treeEntry": { 74 74 + "type": "object", 75 75 + "required": ["name", "mode", "size", "is_file", "is_subtree"], 76 76 + "properties": { 77 77 + "name": { 78 78 + "type": "string", 79 79 + "description": "Relative file or directory name" 80 80 + }, 81 81 + "mode": { 82 82 + "type": "string", 83 83 + "description": "File mode" 84 84 + }, 85 85 + "size": { 86 86 + "type": "integer", 87 87 + "description": "File size in bytes" 88 88 + }, 89 89 + "is_file": { 90 90 + "type": "boolean", 91 91 + "description": "Whether this entry is a file" 92 92 + }, 93 93 + "is_subtree": { 94 94 + "type": "boolean", 95 95 + "description": "Whether this entry is a directory/subtree" 96 96 + }, 97 97 + "last_commit": { 98 98 + "type": "ref", 99 99 + "ref": "#lastCommit" 100 100 + } 101 101 + } 102 102 + }, 103 103 + "lastCommit": { 104 104 + "type": "object", 105 105 + "required": ["hash", "message", "when"], 106 106 + "properties": { 107 107 + "hash": { 108 108 + "type": "string", 109 109 + "description": "Commit hash" 110 110 + }, 111 111 + "message": { 112 112 + "type": "string", 113 113 + "description": "Commit message" 114 114 + }, 115 115 + "when": { 116 116 + "type": "string", 117 117 + "format": "datetime", 118 118 + "description": "Commit timestamp" 119 119 + } 120 120 + } 121 121 + } 122 122 + } 123 123 + }

-54

lexicons/repo.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.repo", 4 4 - "needsCbor": true, 5 5 - "needsType": true, 6 6 - "defs": { 7 7 - "main": { 8 8 - "type": "record", 9 9 - "key": "tid", 10 10 - "record": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "name", 14 14 - "knot", 15 15 - "owner", 16 16 - "createdAt" 17 17 - ], 18 18 - "properties": { 19 19 - "name": { 20 20 - "type": "string", 21 21 - "description": "name of the repo" 22 22 - }, 23 23 - "owner": { 24 24 - "type": "string", 25 25 - "format": "did" 26 26 - }, 27 27 - "knot": { 28 28 - "type": "string", 29 29 - "description": "knot where the repo was created" 30 30 - }, 31 31 - "spindle": { 32 32 - "type": "string", 33 33 - "description": "CI runner to send jobs to and receive results from" 34 34 - }, 35 35 - "description": { 36 36 - "type": "string", 37 37 - "format": "datetime", 38 38 - "minGraphemes": 1, 39 39 - "maxGraphemes": 140 40 40 - }, 41 41 - "source": { 42 42 - "type": "string", 43 43 - "format": "uri", 44 44 - "description": "source of the repo" 45 45 - }, 46 46 - "createdAt": { 47 47 - "type": "string", 48 48 - "format": "datetime" 49 49 - } 50 50 - } 51 51 - } 52 52 - } 53 53 - } 54 54 - }

+25

lexicons/spindle/spindle.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.spindle", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "any", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "createdAt" 14 14 + ], 15 15 + "properties": { 16 16 + "createdAt": { 17 17 + "type": "string", 18 18 + "format": "datetime" 19 19 + } 20 20 + } 21 21 + } 22 22 + } 23 23 + } 24 24 + } 25 25 +

-25

lexicons/spindle.json

··· 1 1 - { 2 2 - "lexicon": 1, 3 3 - "id": "sh.tangled.spindle", 4 4 - "needsCbor": true, 5 5 - "needsType": true, 6 6 - "defs": { 7 7 - "main": { 8 8 - "type": "record", 9 9 - "key": "any", 10 10 - "record": { 11 11 - "type": "object", 12 12 - "required": [ 13 13 - "createdAt" 14 14 - ], 15 15 - "properties": { 16 16 - "createdAt": { 17 17 - "type": "string", 18 18 - "format": "datetime" 19 19 - } 20 20 - } 21 21 - } 22 22 - } 23 23 - } 24 24 - } 25 25 -

+40

lexicons/string/string.json

··· 1 1 + { 2 2 + "lexicon": 1, 3 3 + "id": "sh.tangled.string", 4 4 + "needsCbor": true, 5 5 + "needsType": true, 6 6 + "defs": { 7 7 + "main": { 8 8 + "type": "record", 9 9 + "key": "tid", 10 10 + "record": { 11 11 + "type": "object", 12 12 + "required": [ 13 13 + "filename", 14 14 + "description", 15 15 + "createdAt", 16 16 + "contents" 17 17 + ], 18 18 + "properties": { 19 19 + "filename": { 20 20 + "type": "string", 21 21 + "maxGraphemes": 140, 22 22 + "minGraphemes": 1 23 23 + }, 24 24 + "description": { 25 25 + "type": "string", 26 26 + "maxGraphemes": 280 27 27 + }, 28 28 + "createdAt": { 29 29 + "type": "string", 30 30 + "format": "datetime" 31 31 + }, 32 32 + "contents": { 33 33 + "type": "string", 34 34 + "minGraphemes": 1 35 35 + } 36 36 + } 37 37 + } 38 38 + } 39 39 + } 40 40 + }

+3 -1

log/log.go

··· 9 9 // NewHandler sets up a new slog.Handler with the service name 10 10 // as an attribute 11 11 func NewHandler(name string) slog.Handler { 12 12 - handler := slog.NewTextHandler(os.Stdout, &slog.HandlerOptions{}) 12 12 + handler := slog.NewTextHandler(os.Stdout, &slog.HandlerOptions{ 13 13 + Level: slog.LevelDebug, 14 14 + }) 13 15 14 16 var attrs []slog.Attr 15 17 attrs = append(attrs, slog.Attr{Key: "service", Value: slog.StringValue(name)})

+99 -21

nix/gomod2nix.toml

··· 11 11 version = "v0.6.2" 12 12 hash = "sha256-tVNWDUMILZbJvarcl/E7tpSnkn7urqgSHa2Eaka5vSU=" 13 13 [mod."github.com/ProtonMail/go-crypto"] 14 14 - version = "v1.2.0" 15 15 - hash = "sha256-5fKgWUz6BoyFNNZ1OD9QjhBrhNEBCuVfO2WqH+X59oo=" 14 14 + version = "v1.3.0" 15 15 + hash = "sha256-TUG+C4MyeWglOmiwiW2/NUVurFHXLgEPRd3X9uQ1NGI=" 16 16 + [mod."github.com/alecthomas/assert/v2"] 17 17 + version = "v2.11.0" 18 18 + hash = "sha256-tDJCDKZ0R4qNA7hgMKWrpDyogt1802LCJDBCExxdqaU=" 16 19 [mod."github.com/alecthomas/chroma/v2"] 17 20 version = "v2.19.0" 18 21 hash = "sha256-dxsu43a+PvHg2jYR0Tfys6a8x6IVR+9oCGAh+fvL3SM=" 19 22 replaced = "github.com/oppiliappan/chroma/v2" 23 23 + [mod."github.com/alecthomas/repr"] 24 24 + version = "v0.4.0" 25 25 + hash = "sha256-CyAzMSTfLGHDtfGXi91y7XMVpPUDNOKjsznb+osl9dU=" 20 26 [mod."github.com/anmitsu/go-shlex"] 21 27 version = "v0.0.0-20200514113438-38f4b401e2be" 22 28 hash = "sha256-L3Ak4X2z7WXq7vMKuiHCOJ29nlpajUQ08Sfb9T0yP54=" ··· 51 57 [mod."github.com/casbin/govaluate"] 52 58 version = "v1.3.0" 53 59 hash = "sha256-vDUFEGt8oL4n/PHwlMZPjmaLvcpGTN4HEIRGl2FPxUA=" 60 60 + [mod."github.com/cenkalti/backoff/v4"] 61 61 + version = "v4.3.0" 62 62 + hash = "sha256-wfVjNZsGG1WoNC5aL+kdcy6QXPgZo4THAevZ1787md8=" 54 63 [mod."github.com/cespare/xxhash/v2"] 55 64 version = "v2.3.0" 56 65 hash = "sha256-7hRlwSR+fos1kx4VZmJ/7snR7zHh8ZFKX+qqqqGcQpY=" 57 66 [mod."github.com/cloudflare/circl"] 58 58 - version = "v1.6.0" 59 59 - hash = "sha256-a+SVfnHYC8Fb+NQLboNg5P9sry+WutzuNetVHFVAAo0=" 67 67 + version = "v1.6.2-0.20250618153321-aa837fd1539d" 68 68 + hash = "sha256-0s/i/XmMcuvPQ+qK9OIU5KxwYZyLVXRtdlYvIXRJT3Y=" 69 69 + [mod."github.com/cloudflare/cloudflare-go"] 70 70 + version = "v0.115.0" 71 71 + hash = "sha256-jezmDs6IsHA4rag7DzcHDfDgde0vU4iKgCN9+0XDViw=" 60 72 [mod."github.com/containerd/errdefs"] 61 73 version = "v1.0.0" 62 74 hash = "sha256-wMZGoeqvRhuovYCJx0Js4P3qFCNTZ/6Atea/kNYoPMI=" ··· 105 117 [mod."github.com/felixge/httpsnoop"] 106 118 version = "v1.0.4" 107 119 hash = "sha256-c1JKoRSndwwOyOxq9ddCe+8qn7mG9uRq2o/822x5O/c=" 120 120 + [mod."github.com/fsnotify/fsnotify"] 121 121 + version = "v1.6.0" 122 122 + hash = "sha256-DQesOCweQPEwmAn6s7DCP/Dwy8IypC+osbpfsvpkdP0=" 108 123 [mod."github.com/gliderlabs/ssh"] 109 124 version = "v0.3.8" 110 125 hash = "sha256-FW+91qCB3rfTm0I1VmqfwA7o+2kDys2JHOudKKyxWwc=" ··· 127 142 version = "v5.17.0" 128 143 hash = "sha256-gya68abB6GtejUqr60DyU7NIGtNzHQVCAeDTYKk1evQ=" 129 144 replaced = "github.com/oppiliappan/go-git/v5" 145 145 + [mod."github.com/go-jose/go-jose/v3"] 146 146 + version = "v3.0.4" 147 147 + hash = "sha256-RrLHCu9l6k0XVobdZQJ9Sx/VTQcWjrdLR5BEG7yXTEQ=" 130 148 [mod."github.com/go-logr/logr"] 131 149 version = "v1.4.3" 132 150 hash = "sha256-Nnp/dEVNMxLp3RSPDHZzGbI8BkSNuZMX0I0cjWKXXLA=" ··· 136 154 [mod."github.com/go-redis/cache/v9"] 137 155 version = "v9.0.0" 138 156 hash = "sha256-b4S3K4KoZhF0otw6FRIOq/PTdHGrb/LumB4GKo4khsY=" 157 157 + [mod."github.com/go-test/deep"] 158 158 + version = "v1.1.1" 159 159 + hash = "sha256-WvPrTvUPmbQb4R6DrvSB9O3zm0IOk+n14YpnSl2deR8=" 139 160 [mod."github.com/goccy/go-json"] 140 161 version = "v0.10.5" 141 162 hash = "sha256-/EtlGihP0/7oInzMC5E0InZ4b5Ad3s4xOpqotloi3xw=" ··· 148 169 [mod."github.com/golang/groupcache"] 149 170 version = "v0.0.0-20241129210726-2c02b8208cf8" 150 171 hash = "sha256-AdLZ3dJLe/yduoNvZiXugZxNfmwJjNQyQGsIdzYzH74=" 172 172 + [mod."github.com/golang/mock"] 173 173 + version = "v1.6.0" 174 174 + hash = "sha256-fWdnMQisRbiRzGT3ISrUHovquzLRHWvcv1JEsJFZRno=" 175 175 + [mod."github.com/google/go-querystring"] 176 176 + version = "v1.1.0" 177 177 + hash = "sha256-itsKgKghuX26czU79cK6C2n+lc27jm5Dw1XbIRgwZJY=" 151 178 [mod."github.com/google/uuid"] 152 179 version = "v1.6.0" 153 180 hash = "sha256-VWl9sqUzdOuhW0KzQlv0gwwUQClYkmZwSydHG2sALYw=" 154 181 [mod."github.com/gorilla/css"] 155 182 version = "v1.0.1" 156 183 hash = "sha256-6JwNHqlY2NpZ0pSQTyYPSpiNqjXOdFHqrUT10sv3y8A=" 184 184 + [mod."github.com/gorilla/feeds"] 185 185 + version = "v1.2.0" 186 186 + hash = "sha256-ptczizo27t6Bsq6rHJ4WiHmBRP54UC5yNfHghAqOBQk=" 157 187 [mod."github.com/gorilla/securecookie"] 158 188 version = "v1.1.2" 159 189 hash = "sha256-KeMHNM9emxX+N0WYiZsTii7n8sNsmjWwbnQ9SaJfTKE=" ··· 161 191 version = "v1.4.0" 162 192 hash = "sha256-cLK2z1uOEz7Wah/LclF65ptYMqzuvaRnfIGYqtn3b7g=" 163 193 [mod."github.com/gorilla/websocket"] 164 164 - version = "v1.5.3" 165 165 - hash = "sha256-vTIGEFMEi+30ZdO6ffMNJ/kId6pZs5bbyqov8xe9BM0=" 194 194 + version = "v1.5.4-0.20250319132907-e064f32e3674" 195 195 + hash = "sha256-a8n6oe20JDpwThClgAyVhJDi6QVaS0qzT4PvRxlQ9to=" 196 196 + [mod."github.com/hashicorp/errwrap"] 197 197 + version = "v1.1.0" 198 198 + hash = "sha256-6lwuMQOfBq+McrViN3maJTIeh4f8jbEqvLy2c9FvvFw=" 166 199 [mod."github.com/hashicorp/go-cleanhttp"] 167 200 version = "v0.5.2" 168 201 hash = "sha256-N9GOKYo7tK6XQUFhvhImtL7PZW/mr4C4Manx/yPVvcQ=" 202 202 + [mod."github.com/hashicorp/go-multierror"] 203 203 + version = "v1.1.1" 204 204 + hash = "sha256-ANzPEUJIZIlToxR89Mn7Db73d9LGI51ssy7eNnUgmlA=" 169 205 [mod."github.com/hashicorp/go-retryablehttp"] 170 206 version = "v0.7.8" 171 207 hash = "sha256-4LZwKaFBbpKi9lSq5y6lOlYHU6WMnQdGNMxTd33rN80=" 208 208 + [mod."github.com/hashicorp/go-secure-stdlib/parseutil"] 209 209 + version = "v0.2.0" 210 210 + hash = "sha256-mb27ZKw5VDTmNj1QJvxHVR0GyY7UdacLJ0jWDV3nQd8=" 211 211 + [mod."github.com/hashicorp/go-secure-stdlib/strutil"] 212 212 + version = "v0.1.2" 213 213 + hash = "sha256-UmCMzjamCW1d9KNvNzELqKf1ElHOXPz+ZtdJkI+DV0A=" 214 214 + [mod."github.com/hashicorp/go-sockaddr"] 215 215 + version = "v1.0.7" 216 216 + hash = "sha256-p6eDOrGzN1jMmT/F/f/VJMq0cKNFhUcEuVVwTE6vSrs=" 172 217 [mod."github.com/hashicorp/golang-lru"] 173 218 version = "v1.0.2" 174 219 hash = "sha256-yy+5botc6T5wXgOe2mfNXJP3wr+MkVlUZ2JBkmmrA48=" 175 220 [mod."github.com/hashicorp/golang-lru/v2"] 176 221 version = "v2.0.7" 177 222 hash = "sha256-t1bcXLgrQNOYUVyYEZ0knxcXpsTk4IuJZDjKvyJX75g=" 223 223 + [mod."github.com/hashicorp/hcl"] 224 224 + version = "v1.0.1-vault-7" 225 225 + hash = "sha256-xqYtjCJQVsg04Yj2Uy2Q5bi6X6cDRYhJD/SUEWaHMDM=" 226 226 + [mod."github.com/hexops/gotextdiff"] 227 227 + version = "v1.0.3" 228 228 + hash = "sha256-wVs5uJs2KHU1HnDCDdSe0vIgNZylvs8oNidDxwA3+O0=" 178 229 [mod."github.com/hiddeco/sshsig"] 179 230 version = "v0.2.0" 180 231 hash = "sha256-Yc8Ip4XxrL5plb7Lq0ziYFznteVDZnskoyOZDIMsWOU=" ··· 256 307 [mod."github.com/minio/sha256-simd"] 257 308 version = "v1.0.1" 258 309 hash = "sha256-4hfGDIQaWq8fvtGzHDhoK9v2IocXnJY7OAL6saMJbmA=" 310 310 + [mod."github.com/mitchellh/mapstructure"] 311 311 + version = "v1.5.0" 312 312 + hash = "sha256-ztVhGQXs67MF8UadVvG72G3ly0ypQW0IRDdOOkjYwoE=" 259 313 [mod."github.com/moby/docker-image-spec"] 260 314 version = "v1.3.1" 261 315 hash = "sha256-xwSNLmMagzywdGJIuhrWl1r7cIWBYCOMNYbuDDT6Jhs=" ··· 289 343 [mod."github.com/munnerz/goautoneg"] 290 344 version = "v0.0.0-20191010083416-a7dc8b61c822" 291 345 hash = "sha256-79URDDFenmGc9JZu+5AXHToMrtTREHb3BC84b/gym9Q=" 346 346 + [mod."github.com/onsi/gomega"] 347 347 + version = "v1.37.0" 348 348 + hash = "sha256-PfHFYp365MwBo+CUZs+mN5QEk3Kqe9xrBX+twWfIc9o=" 349 349 + [mod."github.com/openbao/openbao/api/v2"] 350 350 + version = "v2.3.0" 351 351 + hash = "sha256-1bIyvL3GdzPUfsM+gxuKMaH5jKxMaucZQgL6/DfbmDM=" 292 352 [mod."github.com/opencontainers/go-digest"] 293 353 version = "v1.0.0" 294 354 hash = "sha256-cfVDjHyWItmUGZ2dzQhCHgmOmou8v7N+itDkLZVkqkQ=" ··· 296 356 version = "v1.1.1" 297 357 hash = "sha256-bxBjtl+6846Ed3QHwdssOrNvlHV6b+Dn17zPISSQGP8=" 298 358 [mod."github.com/opentracing/opentracing-go"] 299 299 - version = "v1.2.0" 300 300 - hash = "sha256-kKTKFGXOsCF6QdVzI++GgaRzv2W+kWq5uDXOJChvLxM=" 359 359 + version = "v1.2.1-0.20220228012449-10b1cf09e00b" 360 360 + hash = "sha256-77oWcDviIoGWHVAotbgmGRpLGpH5AUy+pM15pl3vRrw=" 301 361 [mod."github.com/pjbgf/sha1cd"] 302 362 version = "v0.3.2" 303 363 hash = "sha256-jdbiRhU8xc1C5c8m7BSCj71PUXHY3f7TWFfxDKKpUMk=" ··· 326 386 version = "v0.16.1" 327 387 hash = "sha256-OBCvKlLW2obct35p0L9Q+1ZrxZjpTmbgHMP2rng9hpo=" 328 388 [mod."github.com/redis/go-redis/v9"] 329 329 - version = "v9.3.0" 330 330 - hash = "sha256-PNXDX3BH92d2jL/AkdK0eWMorh387Y6duwYNhsqNe+w=" 389 389 + version = "v9.7.3" 390 390 + hash = "sha256-7ip5Ns/NEnFmVLr5iN8m3gS4RrzVAYJ7pmJeeaTmjjo=" 331 391 [mod."github.com/resend/resend-go/v2"] 332 392 version = "v2.15.0" 333 393 hash = "sha256-1lMoxuMLQXaNWFKadS6rpztAKwvIl3/LWMXqw7f5WYg=" 394 394 + [mod."github.com/ryanuber/go-glob"] 395 395 + version = "v1.0.0" 396 396 + hash = "sha256-YkMl1utwUhi3E0sHK23ISpAsPyj4+KeXyXKoFYGXGVY=" 334 397 [mod."github.com/segmentio/asm"] 335 398 version = "v1.2.0" 336 399 hash = "sha256-zbNuKxNrUDUc6IlmRQNuJQzVe5Ol/mqp7srDg9IMMqs=" ··· 362 425 [mod."github.com/whyrusleeping/cbor-gen"] 363 426 version = "v0.3.1" 364 427 hash = "sha256-PAd8M2Z8t6rVRBII+Rg8Bz+QaJIwbW64bfyqsv31kgc=" 428 428 + [mod."github.com/wyatt915/goldmark-treeblood"] 429 429 + version = "v0.0.0-20250825231212-5dcbdb2f4b57" 430 430 + hash = "sha256-IZEsUXTBTsNgWoD7vqRUc9aFCCHNjzk1IUmI9O+NCnM=" 431 431 + [mod."github.com/wyatt915/treeblood"] 432 432 + version = "v0.1.15" 433 433 + hash = "sha256-hb99exdkoY2Qv8WdDxhwgPXGbEYimUr6wFtPXEvcO9g=" 365 434 [mod."github.com/yuin/goldmark"] 366 366 - version = "v1.4.13" 367 367 - hash = "sha256-GVwFKZY6moIS6I0ZGuio/WtDif+lkZRfqWS6b4AAJyI=" 435 435 + version = "v1.7.12" 436 436 + hash = "sha256-thLYBS4woL2X5qRdo7vP+xCvjlGRDU0jXtDCUt6vvWM=" 437 437 + [mod."github.com/yuin/goldmark-highlighting/v2"] 438 438 + version = "v2.0.0-20230729083705-37449abec8cc" 439 439 + hash = "sha256-HpiwU7jIeDUAg2zOpTIiviQir8dpRPuXYh2nqFFccpg=" 368 440 [mod."gitlab.com/yawning/secp256k1-voi"] 369 441 version = "v0.0.0-20230925100816-f2616030848b" 370 442 hash = "sha256-X8INg01LTg13iOuwPI3uOhPN7r01sPZtmtwJ2sudjCA=" ··· 380 452 [mod."go.opentelemetry.io/otel"] 381 453 version = "v1.37.0" 382 454 hash = "sha256-zWpyp9K8/Te86uhNjamchZctTdAnmHhoVw9m4ACfSoo=" 455 455 + [mod."go.opentelemetry.io/otel/exporters/otlp/otlptrace"] 456 456 + version = "v1.33.0" 457 457 + hash = "sha256-D5BMzmtN1d3pRnxIcvDOyQrjerK1JoavtYjJLhPKv/I=" 383 458 [mod."go.opentelemetry.io/otel/metric"] 384 459 version = "v1.37.0" 385 460 hash = "sha256-BWnkdldA3xzGhnaConzMAuQzOnugytIvrP6GjkZVAYg=" ··· 405 480 version = "v0.0.0-20250620022241-b7579e27df2b" 406 481 hash = "sha256-IsDTeuWLj4UkPO4NhWTvFeZ22WNtlxjoWiyAJh6zdig=" 407 482 [mod."golang.org/x/net"] 408 408 - version = "v0.41.0" 409 409 - hash = "sha256-6/pi8rNmGvBFzkJQXkXkMfL1Bjydhg3BgAMYDyQ/Uvg=" 483 483 + version = "v0.42.0" 484 484 + hash = "sha256-YxileisIIez+kcAI+21kY5yk0iRuEqti2YdmS8jvP2s=" 410 485 [mod."golang.org/x/sync"] 411 411 - version = "v0.15.0" 412 412 - hash = "sha256-Jf4ehm8H8YAWY6mM151RI5CbG7JcOFtmN0AZx4bE3UE=" 486 486 + version = "v0.16.0" 487 487 + hash = "sha256-sqKDRESeMzLe0jWGWltLZL/JIgrn0XaIeBWCzVN3Bks=" 413 488 [mod."golang.org/x/sys"] 414 489 version = "v0.34.0" 415 490 hash = "sha256-5rZ7p8IaGli5X1sJbfIKOcOEwY4c0yQhinJPh2EtK50=" 491 491 + [mod."golang.org/x/text"] 492 492 + version = "v0.27.0" 493 493 + hash = "sha256-VX0rOh6L3qIvquKSGjfZQFU8URNtGvkNvxE7OZtboW8=" 416 494 [mod."golang.org/x/time"] 417 495 version = "v0.12.0" 418 496 hash = "sha256-Cp3oxrCMH2wyxjzr5SHVmyhgaoUuSl56Uy00Q7DYEpw=" ··· 420 498 version = "v0.0.0-20240903120638-7835f813f4da" 421 499 hash = "sha256-bE7CcrnAvryNvM26ieJGXqbAtuLwHaGcmtVMsVnksqo=" 422 500 [mod."google.golang.org/genproto/googleapis/api"] 423 423 - version = "v0.0.0-20250519155744-55703ea1f237" 424 424 - hash = "sha256-ivktx8ipWgWZgchh4FjKoWL7kU8kl/TtIavtZq/F5SQ=" 501 501 + version = "v0.0.0-20250603155806-513f23925822" 502 502 + hash = "sha256-0CS432v9zVhkVLqFpZtxBX8rvVqP67lb7qQ3es7RqIU=" 425 503 [mod."google.golang.org/genproto/googleapis/rpc"] 426 426 - version = "v0.0.0-20250519155744-55703ea1f237" 504 504 + version = "v0.0.0-20250603155806-513f23925822" 427 505 hash = "sha256-WK7iDtAhH19NPe3TywTQlGjDawNaDKWnxhFL9PgVUwM=" 428 506 [mod."google.golang.org/grpc"] 429 429 - version = "v1.72.1" 430 430 - hash = "sha256-5JczomNvroKWtIYKDgXwaIaEfuNEK//MHPhJQiaxMXs=" 507 507 + version = "v1.73.0" 508 508 + hash = "sha256-LfVlwip++q2DX70RU6CxoXglx1+r5l48DwlFD05G11c=" 431 509 [mod."google.golang.org/protobuf"] 432 510 version = "v1.36.6" 433 511 hash = "sha256-lT5qnefI5FDJnowz9PEkAGylH3+fE+A3DJDkAyy9RMc="

+14

nix/modules/appview.nix

··· 27 27 default = "00000000000000000000000000000000"; 28 28 description = "Cookie secret"; 29 29 }; 30 30 + environmentFile = mkOption { 31 31 + type = with types; nullOr path; 32 32 + default = null; 33 33 + example = "/etc/tangled-appview.env"; 34 34 + description = '' 35 35 + Additional environment file as defined in {manpage}`systemd.exec(5)`. 36 36 + 37 37 + Sensitive secrets such as {env}`TANGLED_COOKIE_SECRET` may be 38 38 + passed to the service without makeing them world readable in the 39 39 + nix store. 40 40 + 41 41 + ''; 42 42 + }; 30 43 }; 31 44 }; 32 45 ··· 39 52 ListenStream = "0.0.0.0:${toString cfg.port}"; 40 53 ExecStart = "${cfg.package}/bin/appview"; 41 54 Restart = "always"; 55 55 + EnvironmentFile = optional (cfg.environmentFile != null) cfg.environmentFile; 42 56 }; 43 57 44 58 environment = {

+54 -20

nix/modules/knot.nix

··· 58 58 }; 59 59 }; 60 60 61 61 + motd = mkOption { 62 62 + type = types.nullOr types.str; 63 63 + default = null; 64 64 + description = '' 65 65 + Message of the day 66 66 + 67 67 + The contents are shown as-is; eg. you will want to add a newline if 68 68 + setting a non-empty message since the knot won't do this for you. 69 69 + ''; 70 70 + }; 71 71 + 72 72 + motdFile = mkOption { 73 73 + type = types.nullOr types.path; 74 74 + default = null; 75 75 + description = '' 76 76 + File containing message of the day 77 77 + 78 78 + The contents are shown as-is; eg. you will want to add a newline if 79 79 + setting a non-empty message since the knot won't do this for you. 80 80 + ''; 81 81 + }; 82 82 + 61 83 server = { 62 84 listenAddr = mkOption { 63 85 type = types.str; ··· 71 93 description = "Internal address for inter-service communication"; 72 94 }; 73 95 74 74 - secretFile = mkOption { 75 75 - type = lib.types.path; 76 76 - example = "KNOT_SERVER_SECRET=<hash>"; 77 77 - description = "File containing secret key provided by appview (required)"; 96 96 + owner = mkOption { 97 97 + type = types.str; 98 98 + example = "did:plc:qfpnj4og54vl56wngdriaxug"; 99 99 + description = "DID of owner (required)"; 78 100 }; 79 101 80 102 dbPath = mkOption { ··· 104 126 cfg.package 105 127 ]; 106 128 107 107 - system.activationScripts.gitConfig = '' 108 108 - mkdir -p "${cfg.repo.scanPath}" 109 109 - chown -R ${cfg.gitUser}:${cfg.gitUser} "${cfg.repo.scanPath}" 110 110 - 111 111 - mkdir -p "${cfg.stateDir}/.config/git" 112 112 - cat > "${cfg.stateDir}/.config/git/config" << EOF 113 113 - [user] 114 114 - name = Git User 115 115 - email = git@example.com 116 116 - [receive] 117 117 - advertisePushOptions = true 118 118 - EOF 119 119 - chown -R ${cfg.gitUser}:${cfg.gitUser} "${cfg.stateDir}" 120 120 - ''; 121 121 - 122 129 users.users.${cfg.gitUser} = { 123 130 isSystemUser = true; 124 131 useDefaultShell = true; ··· 154 161 description = "knot service"; 155 162 after = ["network.target" "sshd.service"]; 156 163 wantedBy = ["multi-user.target"]; 164 164 + enableStrictShellChecks = true; 165 165 + 166 166 + preStart = let 167 167 + setMotd = 168 168 + if cfg.motdFile != null && cfg.motd != null 169 169 + then throw "motdFile and motd cannot be both set" 170 170 + else '' 171 171 + ${optionalString (cfg.motdFile != null) "cat ${cfg.motdFile} > ${cfg.stateDir}/motd"} 172 172 + ${optionalString (cfg.motd != null) ''printf "${cfg.motd}" > ${cfg.stateDir}/motd''} 173 173 + ''; 174 174 + in '' 175 175 + mkdir -p "${cfg.repo.scanPath}" 176 176 + chown -R ${cfg.gitUser}:${cfg.gitUser} "${cfg.repo.scanPath}" 177 177 + 178 178 + mkdir -p "${cfg.stateDir}/.config/git" 179 179 + cat > "${cfg.stateDir}/.config/git/config" << EOF 180 180 + [user] 181 181 + name = Git User 182 182 + email = git@example.com 183 183 + [receive] 184 184 + advertisePushOptions = true 185 185 + EOF 186 186 + ${setMotd} 187 187 + chown -R ${cfg.gitUser}:${cfg.gitUser} "${cfg.stateDir}" 188 188 + ''; 189 189 + 157 190 serviceConfig = { 158 191 User = cfg.gitUser; 192 192 + PermissionsStartOnly = true; 159 193 WorkingDirectory = cfg.stateDir; 160 194 Environment = [ 161 195 "KNOT_REPO_SCAN_PATH=${cfg.repo.scanPath}" ··· 165 199 "KNOT_SERVER_LISTEN_ADDR=${cfg.server.listenAddr}" 166 200 "KNOT_SERVER_DB_PATH=${cfg.server.dbPath}" 167 201 "KNOT_SERVER_HOSTNAME=${cfg.server.hostname}" 202 202 + "KNOT_SERVER_OWNER=${cfg.server.owner}" 168 203 ]; 169 169 - EnvironmentFile = cfg.server.secretFile; 170 204 ExecStart = "${cfg.package}/bin/knot server"; 171 205 Restart = "always"; 172 206 };

+40 -2

nix/modules/spindle.nix

··· 54 54 example = "did:plc:qfpnj4og54vl56wngdriaxug"; 55 55 description = "DID of owner (required)"; 56 56 }; 57 57 + 58 58 + maxJobCount = mkOption { 59 59 + type = types.int; 60 60 + default = 2; 61 61 + example = 5; 62 62 + description = "Maximum number of concurrent jobs to run"; 63 63 + }; 64 64 + 65 65 + queueSize = mkOption { 66 66 + type = types.int; 67 67 + default = 100; 68 68 + example = 100; 69 69 + description = "Maximum number of jobs queue up"; 70 70 + }; 71 71 + 72 72 + secrets = { 73 73 + provider = mkOption { 74 74 + type = types.str; 75 75 + default = "sqlite"; 76 76 + description = "Backend to use for secret management, valid options are 'sqlite', and 'openbao'."; 77 77 + }; 78 78 + 79 79 + openbao = { 80 80 + proxyAddr = mkOption { 81 81 + type = types.str; 82 82 + default = "http://127.0.0.1:8200"; 83 83 + }; 84 84 + mount = mkOption { 85 85 + type = types.str; 86 86 + default = "spindle"; 87 87 + }; 88 88 + }; 89 89 + }; 57 90 }; 58 91 59 92 pipelines = { ··· 89 122 "SPINDLE_SERVER_JETSTREAM=${cfg.server.jetstreamEndpoint}" 90 123 "SPINDLE_SERVER_DEV=${lib.boolToString cfg.server.dev}" 91 124 "SPINDLE_SERVER_OWNER=${cfg.server.owner}" 92 92 - "SPINDLE_PIPELINES_NIXERY=${cfg.pipelines.nixery}" 93 93 - "SPINDLE_PIPELINES_WORKFLOW_TIMEOUT=${cfg.pipelines.workflowTimeout}" 125 125 + "SPINDLE_SERVER_MAX_JOB_COUNT=${toString cfg.server.maxJobCount}" 126 126 + "SPINDLE_SERVER_QUEUE_SIZE=${toString cfg.server.queueSize}" 127 127 + "SPINDLE_SERVER_SECRETS_PROVIDER=${cfg.server.secrets.provider}" 128 128 + "SPINDLE_SERVER_SECRETS_OPENBAO_PROXY_ADDR=${cfg.server.secrets.openbao.proxyAddr}" 129 129 + "SPINDLE_SERVER_SECRETS_OPENBAO_MOUNT=${cfg.server.secrets.openbao.mount}" 130 130 + "SPINDLE_NIXERY_PIPELINES_NIXERY=${cfg.pipelines.nixery}" 131 131 + "SPINDLE_NIXERY_PIPELINES_WORKFLOW_TIMEOUT=${cfg.pipelines.workflowTimeout}" 94 132 ]; 95 133 ExecStart = "${cfg.package}/bin/spindle"; 96 134 Restart = "always";

+29

nix/pkgs/appview-static-files.nix

··· 1 1 + { 2 2 + runCommandLocal, 3 3 + htmx-src, 4 4 + htmx-ws-src, 5 5 + lucide-src, 6 6 + inter-fonts-src, 7 7 + ibm-plex-mono-src, 8 8 + sqlite-lib, 9 9 + tailwindcss, 10 10 + src, 11 11 + }: 12 12 + runCommandLocal "appview-static-files" { 13 13 + # TOOD(winter): figure out why this is even required after 14 14 + # changing the libraries that the tailwindcss binary loads 15 15 + sandboxProfile = '' 16 16 + (allow file-read* (subpath "/System/Library/OpenSSL")) 17 17 + ''; 18 18 + } '' 19 19 + mkdir -p $out/{fonts,icons} && cd $out 20 20 + cp -f ${htmx-src} htmx.min.js 21 21 + cp -f ${htmx-ws-src} htmx-ext-ws.min.js 22 22 + cp -rf ${lucide-src}/*.svg icons/ 23 23 + cp -f ${inter-fonts-src}/web/InterVariable*.woff2 fonts/ 24 24 + cp -f ${inter-fonts-src}/web/InterDisplay*.woff2 fonts/ 25 25 + cp -f ${ibm-plex-mono-src}/fonts/complete/woff2/IBMPlexMono*.woff2 fonts/ 26 26 + # tailwindcss -c $src/tailwind.config.js -i $src/input.css -o tw.css won't work 27 27 + # for whatever reason (produces broken css), so we are doing this instead 28 28 + cd ${src} && ${tailwindcss}/bin/tailwindcss -i input.css -o $out/tw.css 29 29 + ''

+5 -17

nix/pkgs/appview.nix

··· 1 1 { 2 2 buildGoApplication, 3 3 modules, 4 4 - htmx-src, 5 5 - htmx-ws-src, 6 6 - lucide-src, 7 7 - inter-fonts-src, 8 8 - ibm-plex-mono-src, 9 9 - tailwindcss, 4 4 + appview-static-files, 10 5 sqlite-lib, 11 11 - gitignoreSource, 6 6 + src, 12 7 }: 13 8 buildGoApplication { 14 9 pname = "appview"; 15 10 version = "0.1.0"; 16 16 - src = gitignoreSource ../..; 17 17 - inherit modules; 11 11 + inherit src modules; 18 12 19 13 postUnpack = '' 20 14 pushd source 21 21 - mkdir -p appview/pages/static/{fonts,icons} 22 22 - cp -f ${htmx-src} appview/pages/static/htmx.min.js 23 23 - cp -f ${htmx-ws-src} appview/pages/static/htmx-ext-ws.min.js 24 24 - cp -rf ${lucide-src}/*.svg appview/pages/static/icons/ 25 25 - cp -f ${inter-fonts-src}/web/InterVariable*.woff2 appview/pages/static/fonts/ 26 26 - cp -f ${inter-fonts-src}/web/InterDisplay*.woff2 appview/pages/static/fonts/ 27 27 - cp -f ${ibm-plex-mono-src}/fonts/complete/woff2/IBMPlexMono-Regular.woff2 appview/pages/static/fonts/ 28 28 - ${tailwindcss}/bin/tailwindcss -i input.css -o appview/pages/static/tw.css 15 15 + mkdir -p appview/pages/static 16 16 + cp -frv ${appview-static-files}/* appview/pages/static 29 17 popd 30 18 ''; 31 19

+7 -3

nix/pkgs/genjwks.nix

··· 1 1 { 2 2 - gitignoreSource, 3 2 buildGoApplication, 4 3 modules, 5 4 }: 6 5 buildGoApplication { 7 6 pname = "genjwks"; 8 7 version = "0.1.0"; 9 9 - src = gitignoreSource ../..; 8 8 + src = ../../cmd/genjwks; 9 9 + postPatch = '' 10 10 + ln -s ${../../go.mod} ./go.mod 11 11 + ''; 12 12 + postInstall = '' 13 13 + mv $out/bin/core $out/bin/genjwks 14 14 + ''; 10 15 inherit modules; 11 11 - subPackages = ["cmd/genjwks"]; 12 16 doCheck = false; 13 17 CGO_ENABLED = 0; 14 18 }

+18 -14

nix/pkgs/knot-unwrapped.nix

··· 2 2 buildGoApplication, 3 3 modules, 4 4 sqlite-lib, 5 5 - gitignoreSource, 6 6 - }: 7 7 - buildGoApplication { 8 8 - pname = "knot"; 9 9 - version = "0.1.0"; 10 10 - src = gitignoreSource ../..; 11 11 - inherit modules; 5 5 + src, 6 6 + }: let 7 7 + version = "1.9.0-alpha"; 8 8 + in 9 9 + buildGoApplication { 10 10 + pname = "knot"; 11 11 + inherit src version modules; 12 12 13 13 - doCheck = false; 13 13 + doCheck = false; 14 14 15 15 - subPackages = ["cmd/knot"]; 16 16 - tags = ["libsqlite3"]; 15 15 + subPackages = ["cmd/knot"]; 16 16 + tags = ["libsqlite3"]; 17 17 18 18 - env.CGO_CFLAGS = "-I ${sqlite-lib}/include "; 19 19 - env.CGO_LDFLAGS = "-L ${sqlite-lib}/lib"; 20 20 - CGO_ENABLED = 1; 21 21 - } 18 18 + ldflags = [ 19 19 + "-X tangled.sh/tangled.sh/core/knotserver/xrpc.version=${version}" 20 20 + ]; 21 21 + 22 22 + env.CGO_CFLAGS = "-I ${sqlite-lib}/include "; 23 23 + env.CGO_LDFLAGS = "-L ${sqlite-lib}/lib"; 24 24 + CGO_ENABLED = 1; 25 25 + }

+1 -1

nix/pkgs/lexgen.nix

··· 7 7 version = "0.1.0"; 8 8 src = indigo; 9 9 subPackages = ["cmd/lexgen"]; 10 10 - vendorHash = "sha256-pGc29fgJFq8LP7n/pY1cv6ExZl88PAeFqIbFEhB3xXs="; 10 10 + vendorHash = "sha256-VbDrcN4r5b7utRFQzVsKgDsVgdQLSXl7oZ5kdPA/huw="; 11 11 doCheck = false; 12 12 }

+2 -3

nix/pkgs/spindle.nix

··· 2 2 buildGoApplication, 3 3 modules, 4 4 sqlite-lib, 5 5 - gitignoreSource, 5 5 + src, 6 6 }: 7 7 buildGoApplication { 8 8 pname = "spindle"; 9 9 version = "0.1.0"; 10 10 - src = gitignoreSource ../..; 11 11 - inherit modules; 10 10 + inherit src modules; 12 11 13 12 doCheck = false; 14 13

+123 -63

nix/vm.nix

··· 1 1 { 2 2 nixpkgs, 3 3 + system, 4 4 + hostSystem, 3 5 self, 4 4 - }: 5 5 - nixpkgs.lib.nixosSystem { 6 6 - system = "x86_64-linux"; 7 7 - modules = [ 8 8 - self.nixosModules.knot 9 9 - self.nixosModules.spindle 10 10 - ({ 11 11 - config, 12 12 - pkgs, 13 13 - ... 14 14 - }: { 15 15 - virtualisation = { 16 16 - memorySize = 2048; 17 17 - diskSize = 10 * 1024; 18 18 - cores = 2; 19 19 - forwardPorts = [ 20 20 - # ssh 21 21 - { 22 22 - from = "host"; 23 23 - host.port = 2222; 24 24 - guest.port = 22; 25 25 - } 26 26 - # knot 27 27 - { 28 28 - from = "host"; 29 29 - host.port = 6000; 30 30 - guest.port = 6000; 31 31 - } 32 32 - # spindle 33 33 - { 34 34 - from = "host"; 35 35 - host.port = 6555; 36 36 - guest.port = 6555; 37 37 - } 38 38 - ]; 39 39 - }; 40 40 - services.getty.autologinUser = "root"; 41 41 - environment.systemPackages = with pkgs; [curl vim git]; 42 42 - systemd.tmpfiles.rules = let 43 43 - u = config.services.tangled-knot.gitUser; 44 44 - g = config.services.tangled-knot.gitUser; 45 45 - in [ 46 46 - "d /var/lib/knot 0770 ${u} ${g} - -" # Create the directory first 47 47 - "f+ /var/lib/knot/secret 0660 ${u} ${g} - KNOT_SERVER_SECRET=168c426fa6d9829fcbe85c96bdf144e800fb9737d6ca87f21acc543b1aa3e440" 48 48 - ]; 49 49 - services.tangled-knot = { 50 50 - enable = true; 51 51 - server = { 52 52 - secretFile = "/var/lib/knot/secret"; 53 53 - hostname = "localhost:6000"; 54 54 - listenAddr = "0.0.0.0:6000"; 6 6 + }: let 7 7 + envVar = name: let 8 8 + var = builtins.getEnv name; 9 9 + in 10 10 + if var == "" 11 11 + then throw "\$${name} must be defined, see docs/hacking.md for more details" 12 12 + else var; 13 13 + in 14 14 + nixpkgs.lib.nixosSystem { 15 15 + inherit system; 16 16 + modules = [ 17 17 + self.nixosModules.knot 18 18 + self.nixosModules.spindle 19 19 + ({ 20 20 + lib, 21 21 + config, 22 22 + pkgs, 23 23 + ... 24 24 + }: { 25 25 + virtualisation.vmVariant.virtualisation = { 26 26 + host.pkgs = import nixpkgs {system = hostSystem;}; 27 27 + 28 28 + graphics = false; 29 29 + memorySize = 2048; 30 30 + diskSize = 10 * 1024; 31 31 + cores = 2; 32 32 + forwardPorts = [ 33 33 + # ssh 34 34 + { 35 35 + from = "host"; 36 36 + host.port = 2222; 37 37 + guest.port = 22; 38 38 + } 39 39 + # knot 40 40 + { 41 41 + from = "host"; 42 42 + host.port = 6000; 43 43 + guest.port = 6000; 44 44 + } 45 45 + # spindle 46 46 + { 47 47 + from = "host"; 48 48 + host.port = 6555; 49 49 + guest.port = 6555; 50 50 + } 51 51 + ]; 52 52 + sharedDirectories = { 53 53 + # We can't use the 9p mounts directly for most of these 54 54 + # as SQLite is incompatible with them. So instead we 55 55 + # mount the shared directories to a different location 56 56 + # and copy the contents around on service start/stop. 57 57 + knotData = { 58 58 + source = "$TANGLED_VM_DATA_DIR/knot"; 59 59 + target = "/mnt/knot-data"; 60 60 + }; 61 61 + spindleData = { 62 62 + source = "$TANGLED_VM_DATA_DIR/spindle"; 63 63 + target = "/mnt/spindle-data"; 64 64 + }; 65 65 + spindleLogs = { 66 66 + source = "$TANGLED_VM_DATA_DIR/spindle-logs"; 67 67 + target = "/var/log/spindle"; 68 68 + }; 69 69 + }; 55 70 }; 56 56 - }; 57 57 - services.tangled-spindle = { 58 58 - enable = true; 59 59 - server = { 60 60 - owner = "did:plc:qfpnj4og54vl56wngdriaxug"; 61 61 - hostname = "localhost:6555"; 62 62 - listenAddr = "0.0.0.0:6555"; 63 63 - dev = true; 71 71 + # This is fine because any and all ports that are forwarded to host are explicitly marked above, we don't need a separate guest firewall 72 72 + networking.firewall.enable = false; 73 73 + time.timeZone = "Europe/London"; 74 74 + services.getty.autologinUser = "root"; 75 75 + environment.systemPackages = with pkgs; [curl vim git sqlite litecli]; 76 76 + services.tangled-knot = { 77 77 + enable = true; 78 78 + motd = "Welcome to the development knot!\n"; 79 79 + server = { 80 80 + owner = envVar "TANGLED_VM_KNOT_OWNER"; 81 81 + hostname = "localhost:6000"; 82 82 + listenAddr = "0.0.0.0:6000"; 83 83 + }; 84 84 + }; 85 85 + services.tangled-spindle = { 86 86 + enable = true; 87 87 + server = { 88 88 + owner = envVar "TANGLED_VM_SPINDLE_OWNER"; 89 89 + hostname = "localhost:6555"; 90 90 + listenAddr = "0.0.0.0:6555"; 91 91 + dev = true; 92 92 + queueSize = 100; 93 93 + maxJobCount = 2; 94 94 + secrets = { 95 95 + provider = "sqlite"; 96 96 + }; 97 97 + }; 64 98 }; 65 65 - }; 66 66 - }) 67 67 - ]; 68 68 - } 99 99 + users = { 100 100 + # So we don't have to deal with permission clashing between 101 101 + # blank disk VMs and existing state 102 102 + users.${config.services.tangled-knot.gitUser}.uid = 666; 103 103 + groups.${config.services.tangled-knot.gitUser}.gid = 666; 104 104 + 105 105 + # TODO: separate spindle user 106 106 + }; 107 107 + systemd.services = let 108 108 + mkDataSyncScripts = source: target: { 109 109 + enableStrictShellChecks = true; 110 110 + 111 111 + preStart = lib.mkBefore '' 112 112 + mkdir -p ${target} 113 113 + ${lib.getExe pkgs.rsync} -a ${source}/ ${target} 114 114 + ''; 115 115 + 116 116 + postStop = lib.mkAfter '' 117 117 + ${lib.getExe pkgs.rsync} -a ${target}/ ${source} 118 118 + ''; 119 119 + 120 120 + serviceConfig.PermissionsStartOnly = true; 121 121 + }; 122 122 + in { 123 123 + knot = mkDataSyncScripts "/mnt/knot-data" config.services.tangled-knot.stateDir; 124 124 + spindle = mkDataSyncScripts "/mnt/spindle-data" (builtins.dirOf config.services.tangled-spindle.server.dbPath); 125 125 + }; 126 126 + }) 127 127 + ]; 128 128 + }

+1 -1

patchutil/combinediff.go

··· 119 119 // we have f1 and f2, combine them 120 120 combined, err := combineFiles(f1, f2) 121 121 if err != nil { 122 122 - fmt.Println(err) 122 122 + // fmt.Println(err) 123 123 } 124 124 125 125 // combined can be nil commit 2 reverted all changes from commit 1

+14 -1

rbac/rbac.go

··· 43 43 return nil, err 44 44 } 45 45 46 46 - db, err := sql.Open("sqlite3", path) 46 46 + db, err := sql.Open("sqlite3", path+"?_foreign_keys=1") 47 47 if err != nil { 48 48 return nil, err 49 49 } ··· 97 97 func (e *Enforcer) RemoveSpindle(spindle string) error { 98 98 spindle = intoSpindle(spindle) 99 99 _, err := e.E.DeleteDomains(spindle) 100 100 + return err 101 101 + } 102 102 + 103 103 + func (e *Enforcer) RemoveKnot(knot string) error { 104 104 + _, err := e.E.DeleteDomains(knot) 100 105 return err 101 106 } 102 107 ··· 270 275 271 276 func (e *Enforcer) IsSpindleInviteAllowed(user, domain string) (bool, error) { 272 277 return e.isInviteAllowed(user, intoSpindle(domain)) 278 278 + } 279 279 + 280 280 + func (e *Enforcer) IsRepoCreateAllowed(user, domain string) (bool, error) { 281 281 + return e.E.Enforce(user, domain, domain, "repo:create") 282 282 + } 283 283 + 284 284 + func (e *Enforcer) IsRepoDeleteAllowed(user, domain, repo string) (bool, error) { 285 285 + return e.E.Enforce(user, domain, repo, "repo:delete") 273 286 } 274 287 275 288 func (e *Enforcer) IsPushAllowed(user, domain, repo string) (bool, error) {

+1 -1

rbac/rbac_test.go

··· 14 14 ) 15 15 16 16 func setup(t *testing.T) *rbac.Enforcer { 17 17 - db, err := sql.Open("sqlite3", ":memory:") 17 17 + db, err := sql.Open("sqlite3", ":memory:?_foreign_keys=1") 18 18 assert.NoError(t, err) 19 19 20 20 a, err := adapter.NewAdapter(db, "sqlite3", "acl")

+8 -8

spindle/config/config.go

··· 16 16 Dev bool `env:"DEV, default=false"` 17 17 Owner string `env:"OWNER, required"` 18 18 Secrets Secrets `env:",prefix=SECRETS_"` 19 19 + LogDir string `env:"LOG_DIR, default=/var/log/spindle"` 20 20 + QueueSize int `env:"QUEUE_SIZE, default=100"` 21 21 + MaxJobCount int `env:"MAX_JOB_COUNT, default=2"` // max number of jobs that run at a time 19 22 } 20 23 21 24 func (s Server) Did() syntax.DID { ··· 28 31 } 29 32 30 33 type OpenBaoConfig struct { 31 31 - Addr string `env:"ADDR"` 32 32 - RoleID string `env:"ROLE_ID"` 33 33 - SecretID string `env:"SECRET_ID"` 34 34 - Mount string `env:"MOUNT, default=spindle"` 34 34 + ProxyAddr string `env:"PROXY_ADDR, default=http://127.0.0.1:8200"` 35 35 + Mount string `env:"MOUNT, default=spindle"` 35 36 } 36 37 37 37 - type Pipelines struct { 38 38 + type NixeryPipelines struct { 38 39 Nixery string `env:"NIXERY, default=nixery.tangled.sh"` 39 40 WorkflowTimeout string `env:"WORKFLOW_TIMEOUT, default=5m"` 40 40 - LogDir string `env:"LOG_DIR, default=/var/log/spindle"` 41 41 } 42 42 43 43 type Config struct { 44 44 - Server Server `env:",prefix=SPINDLE_SERVER_"` 45 45 - Pipelines Pipelines `env:",prefix=SPINDLE_PIPELINES_"` 44 44 + Server Server `env:",prefix=SPINDLE_SERVER_"` 45 45 + NixeryPipelines NixeryPipelines `env:",prefix=SPINDLE_NIXERY_PIPELINES_"` 46 46 } 47 47 48 48 func Load(ctx context.Context) (*Config, error) {

+29 -10

spindle/db/db.go

··· 2 2 3 3 import ( 4 4 "database/sql" 5 5 + "strings" 5 6 6 7 _ "github.com/mattn/go-sqlite3" 7 8 ) ··· 11 12 } 12 13 13 14 func Make(dbPath string) (*DB, error) { 14 14 - db, err := sql.Open("sqlite3", dbPath) 15 15 + // https://github.com/mattn/go-sqlite3#connection-string 16 16 + opts := []string{ 17 17 + "_foreign_keys=1", 18 18 + "_journal_mode=WAL", 19 19 + "_synchronous=NORMAL", 20 20 + "_auto_vacuum=incremental", 21 21 + } 22 22 + 23 23 + db, err := sql.Open("sqlite3", dbPath+"?"+strings.Join(opts, "&")) 15 24 if err != nil { 16 25 return nil, err 17 26 } 27 27 + 28 28 + // NOTE: If any other migration is added here, you MUST 29 29 + // copy the pattern in appview: use a single sql.Conn 30 30 + // for every migration. 18 31 19 32 _, err = db.Exec(` 20 20 - pragma journal_mode = WAL; 21 21 - pragma synchronous = normal; 22 22 - pragma foreign_keys = on; 23 23 - pragma temp_store = memory; 24 24 - pragma mmap_size = 30000000000; 25 25 - pragma page_size = 32768; 26 26 - pragma auto_vacuum = incremental; 27 27 - pragma busy_timeout = 5000; 28 28 - 29 33 create table if not exists _jetstream ( 30 34 id integer primary key autoincrement, 31 35 last_time_us integer not null ··· 43 47 addedAt text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 44 48 45 49 unique(owner, name) 50 50 + ); 51 51 + 52 52 + create table if not exists spindle_members ( 53 53 + -- identifiers for the record 54 54 + id integer primary key autoincrement, 55 55 + did text not null, 56 56 + rkey text not null, 57 57 + 58 58 + -- data 59 59 + instance text not null, 60 60 + subject text not null, 61 61 + created text not null default (strftime('%Y-%m-%dT%H:%M:%SZ', 'now')), 62 62 + 63 63 + -- constraints 64 64 + unique (did, instance, subject) 46 65 ); 47 66 48 67 -- status event for a single workflow

+59

spindle/db/member.go

··· 1 1 + package db 2 2 + 3 3 + import ( 4 4 + "time" 5 5 + 6 6 + "github.com/bluesky-social/indigo/atproto/syntax" 7 7 + ) 8 8 + 9 9 + type SpindleMember struct { 10 10 + Id int 11 11 + Did syntax.DID // owner of the record 12 12 + Rkey string // rkey of the record 13 13 + Instance string 14 14 + Subject syntax.DID // the member being added 15 15 + Created time.Time 16 16 + } 17 17 + 18 18 + func AddSpindleMember(db *DB, member SpindleMember) error { 19 19 + _, err := db.Exec( 20 20 + `insert or ignore into spindle_members (did, rkey, instance, subject) values (?, ?, ?, ?)`, 21 21 + member.Did, 22 22 + member.Rkey, 23 23 + member.Instance, 24 24 + member.Subject, 25 25 + ) 26 26 + return err 27 27 + } 28 28 + 29 29 + func RemoveSpindleMember(db *DB, owner_did, rkey string) error { 30 30 + _, err := db.Exec( 31 31 + "delete from spindle_members where did = ? and rkey = ?", 32 32 + owner_did, 33 33 + rkey, 34 34 + ) 35 35 + return err 36 36 + } 37 37 + 38 38 + func GetSpindleMember(db *DB, did, rkey string) (*SpindleMember, error) { 39 39 + query := 40 40 + `select id, did, rkey, instance, subject, created 41 41 + from spindle_members 42 42 + where did = ? and rkey = ?` 43 43 + 44 44 + var member SpindleMember 45 45 + var createdAt string 46 46 + err := db.QueryRow(query, did, rkey).Scan( 47 47 + &member.Id, 48 48 + &member.Did, 49 49 + &member.Rkey, 50 50 + &member.Instance, 51 51 + &member.Subject, 52 52 + &createdAt, 53 53 + ) 54 54 + if err != nil { 55 55 + return nil, err 56 56 + } 57 57 + 58 58 + return &member, nil 59 59 + }

-21

spindle/engine/ansi_stripper.go

··· 1 1 - package engine 2 2 - 3 3 - import ( 4 4 - "io" 5 5 - 6 6 - "regexp" 7 7 - ) 8 8 - 9 9 - // regex to match ANSI escape codes (e.g., color codes, cursor moves) 10 10 - const ansi = "[\u001B\u009B][[\\]()#;?]*(?:(?:(?:[a-zA-Z\\d]*(?:;[a-zA-Z\\d]*)*)?\u0007)|(?:(?:\\d{1,4}(?:;\\d{0,4})*)?[\\dA-PRZcf-ntqry=><~]))" 11 11 - 12 12 - var re = regexp.MustCompile(ansi) 13 13 - 14 14 - type ansiStrippingWriter struct { 15 15 - underlying io.Writer 16 16 - } 17 17 - 18 18 - func (w *ansiStrippingWriter) Write(p []byte) (int, error) { 19 19 - clean := re.ReplaceAll(p, []byte{}) 20 20 - return w.underlying.Write(clean) 21 21 - }

+68 -415

spindle/engine/engine.go

··· 4 4 "context" 5 5 "errors" 6 6 "fmt" 7 7 - "io" 8 7 "log/slog" 9 9 - "os" 10 10 - "strings" 11 11 - "sync" 12 12 - "time" 13 8 14 9 securejoin "github.com/cyphar/filepath-securejoin" 15 15 - "github.com/docker/docker/api/types/container" 16 16 - "github.com/docker/docker/api/types/image" 17 17 - "github.com/docker/docker/api/types/mount" 18 18 - "github.com/docker/docker/api/types/network" 19 19 - "github.com/docker/docker/api/types/volume" 20 20 - "github.com/docker/docker/client" 21 21 - "github.com/docker/docker/pkg/stdcopy" 22 10 "golang.org/x/sync/errgroup" 23 23 - "tangled.sh/tangled.sh/core/log" 24 11 "tangled.sh/tangled.sh/core/notifier" 25 12 "tangled.sh/tangled.sh/core/spindle/config" 26 13 "tangled.sh/tangled.sh/core/spindle/db" ··· 28 15 "tangled.sh/tangled.sh/core/spindle/secrets" 29 16 ) 30 17 31 31 - const ( 32 32 - workspaceDir = "/tangled/workspace" 18 18 + var ( 19 19 + ErrTimedOut = errors.New("timed out") 20 20 + ErrWorkflowFailed = errors.New("workflow failed") 33 21 ) 34 22 35 35 - type cleanupFunc func(context.Context) error 36 36 - 37 37 - type Engine struct { 38 38 - docker client.APIClient 39 39 - l *slog.Logger 40 40 - db *db.DB 41 41 - n *notifier.Notifier 42 42 - cfg *config.Config 43 43 - vault secrets.Manager 44 44 - 45 45 - cleanupMu sync.Mutex 46 46 - cleanup map[string][]cleanupFunc 47 47 - } 48 48 - 49 49 - func New(ctx context.Context, cfg *config.Config, db *db.DB, n *notifier.Notifier, vault secrets.Manager) (*Engine, error) { 50 50 - dcli, err := client.NewClientWithOpts(client.FromEnv, client.WithAPIVersionNegotiation()) 51 51 - if err != nil { 52 52 - return nil, err 53 53 - } 54 54 - 55 55 - l := log.FromContext(ctx).With("component", "spindle") 56 56 - 57 57 - e := &Engine{ 58 58 - docker: dcli, 59 59 - l: l, 60 60 - db: db, 61 61 - n: n, 62 62 - cfg: cfg, 63 63 - vault: vault, 64 64 - } 65 65 - 66 66 - e.cleanup = make(map[string][]cleanupFunc) 67 67 - 68 68 - return e, nil 69 69 - } 70 70 - 71 71 - func (e *Engine) StartWorkflows(ctx context.Context, pipeline *models.Pipeline, pipelineId models.PipelineId) { 72 72 - e.l.Info("starting all workflows in parallel", "pipeline", pipelineId) 23 23 + func StartWorkflows(l *slog.Logger, vault secrets.Manager, cfg *config.Config, db *db.DB, n *notifier.Notifier, ctx context.Context, pipeline *models.Pipeline, pipelineId models.PipelineId) { 24 24 + l.Info("starting all workflows in parallel", "pipeline", pipelineId) 73 25 74 26 // extract secrets 75 27 var allSecrets []secrets.UnlockedSecret 76 28 if didSlashRepo, err := securejoin.SecureJoin(pipeline.RepoOwner, pipeline.RepoName); err == nil { 77 77 - if res, err := e.vault.GetSecretsUnlocked(ctx, secrets.DidSlashRepo(didSlashRepo)); err == nil { 29 29 + if res, err := vault.GetSecretsUnlocked(ctx, secrets.DidSlashRepo(didSlashRepo)); err == nil { 78 30 allSecrets = res 79 31 } 80 32 } 81 33 82 82 - workflowTimeoutStr := e.cfg.Pipelines.WorkflowTimeout 83 83 - workflowTimeout, err := time.ParseDuration(workflowTimeoutStr) 84 84 - if err != nil { 85 85 - e.l.Error("failed to parse workflow timeout", "error", err, "timeout", workflowTimeoutStr) 86 86 - workflowTimeout = 5 * time.Minute 87 87 - } 88 88 - e.l.Info("using workflow timeout", "timeout", workflowTimeout) 89 89 - 90 34 eg, ctx := errgroup.WithContext(ctx) 91 91 - for _, w := range pipeline.Workflows { 92 92 - eg.Go(func() error { 93 93 - wid := models.WorkflowId{ 94 94 - PipelineId: pipelineId, 95 95 - Name: w.Name, 96 96 - } 97 97 - 98 98 - err := e.db.StatusRunning(wid, e.n) 99 99 - if err != nil { 100 100 - return err 101 101 - } 35 35 + for eng, wfs := range pipeline.Workflows { 36 36 + workflowTimeout := eng.WorkflowTimeout() 37 37 + l.Info("using workflow timeout", "timeout", workflowTimeout) 102 38 103 103 - err = e.SetupWorkflow(ctx, wid) 104 104 - if err != nil { 105 105 - e.l.Error("setting up worklow", "wid", wid, "err", err) 106 106 - return err 107 107 - } 108 108 - defer e.DestroyWorkflow(ctx, wid) 109 109 - 110 110 - reader, err := e.docker.ImagePull(ctx, w.Image, image.PullOptions{}) 111 111 - if err != nil { 112 112 - e.l.Error("pipeline image pull failed!", "image", w.Image, "workflowId", wid, "error", err.Error()) 39 39 + for _, w := range wfs { 40 40 + eg.Go(func() error { 41 41 + wid := models.WorkflowId{ 42 42 + PipelineId: pipelineId, 43 43 + Name: w.Name, 44 44 + } 113 45 114 114 - err := e.db.StatusFailed(wid, err.Error(), -1, e.n) 46 46 + err := db.StatusRunning(wid, n) 115 47 if err != nil { 116 48 return err 117 49 } 118 50 119 119 - return fmt.Errorf("pulling image: %w", err) 120 120 - } 121 121 - defer reader.Close() 122 122 - io.Copy(os.Stdout, reader) 123 123 - 124 124 - ctx, cancel := context.WithTimeout(ctx, workflowTimeout) 125 125 - defer cancel() 51 51 + err = eng.SetupWorkflow(ctx, wid, &w) 52 52 + if err != nil { 53 53 + // TODO(winter): Should this always set StatusFailed? 54 54 + // In the original, we only do in a subset of cases. 55 55 + l.Error("setting up worklow", "wid", wid, "err", err) 126 56 127 127 - err = e.StartSteps(ctx, wid, w, allSecrets) 128 128 - if err != nil { 129 129 - if errors.Is(err, ErrTimedOut) { 130 130 - dbErr := e.db.StatusTimeout(wid, e.n) 131 131 - if dbErr != nil { 132 132 - return dbErr 57 57 + destroyErr := eng.DestroyWorkflow(ctx, wid) 58 58 + if destroyErr != nil { 59 59 + l.Error("failed to destroy workflow after setup failure", "error", destroyErr) 133 60 } 134 134 - } else { 135 135 - dbErr := e.db.StatusFailed(wid, err.Error(), -1, e.n) 61 61 + 62 62 + dbErr := db.StatusFailed(wid, err.Error(), -1, n) 136 63 if dbErr != nil { 137 64 return dbErr 138 65 } 66 66 + return err 139 67 } 68 68 + defer eng.DestroyWorkflow(ctx, wid) 140 69 141 141 - return fmt.Errorf("starting steps image: %w", err) 142 142 - } 70 70 + wfLogger, err := models.NewWorkflowLogger(cfg.Server.LogDir, wid) 71 71 + if err != nil { 72 72 + l.Warn("failed to setup step logger; logs will not be persisted", "error", err) 73 73 + wfLogger = nil 74 74 + } else { 75 75 + defer wfLogger.Close() 76 76 + } 143 77 144 144 - err = e.db.StatusSuccess(wid, e.n) 145 145 - if err != nil { 146 146 - return err 147 147 - } 78 78 + ctx, cancel := context.WithTimeout(ctx, workflowTimeout) 79 79 + defer cancel() 148 80 149 149 - return nil 150 150 - }) 151 151 - } 81 81 + for stepIdx, step := range w.Steps { 82 82 + if wfLogger != nil { 83 83 + ctl := wfLogger.ControlWriter(stepIdx, step) 84 84 + ctl.Write([]byte(step.Name())) 85 85 + } 152 86 153 153 - if err = eg.Wait(); err != nil { 154 154 - e.l.Error("failed to run one or more workflows", "err", err) 155 155 - } else { 156 156 - e.l.Error("successfully ran full pipeline") 157 157 - } 158 158 - } 87 87 + err = eng.RunStep(ctx, wid, &w, stepIdx, allSecrets, wfLogger) 88 88 + if err != nil { 89 89 + if errors.Is(err, ErrTimedOut) { 90 90 + dbErr := db.StatusTimeout(wid, n) 91 91 + if dbErr != nil { 92 92 + return dbErr 93 93 + } 94 94 + } else { 95 95 + dbErr := db.StatusFailed(wid, err.Error(), -1, n) 96 96 + if dbErr != nil { 97 97 + return dbErr 98 98 + } 99 99 + } 159 100 160 160 - // SetupWorkflow sets up a new network for the workflow and volumes for 161 161 - // the workspace and Nix store. These are persisted across steps and are 162 162 - // destroyed at the end of the workflow. 163 163 - func (e *Engine) SetupWorkflow(ctx context.Context, wid models.WorkflowId) error { 164 164 - e.l.Info("setting up workflow", "workflow", wid) 101 101 + return fmt.Errorf("starting steps image: %w", err) 102 102 + } 103 103 + } 165 104 166 166 - _, err := e.docker.VolumeCreate(ctx, volume.CreateOptions{ 167 167 - Name: workspaceVolume(wid), 168 168 - Driver: "local", 169 169 - }) 170 170 - if err != nil { 171 171 - return err 172 172 - } 173 173 - e.registerCleanup(wid, func(ctx context.Context) error { 174 174 - return e.docker.VolumeRemove(ctx, workspaceVolume(wid), true) 175 175 - }) 176 176 - 177 177 - _, err = e.docker.VolumeCreate(ctx, volume.CreateOptions{ 178 178 - Name: nixVolume(wid), 179 179 - Driver: "local", 180 180 - }) 181 181 - if err != nil { 182 182 - return err 183 183 - } 184 184 - e.registerCleanup(wid, func(ctx context.Context) error { 185 185 - return e.docker.VolumeRemove(ctx, nixVolume(wid), true) 186 186 - }) 187 187 - 188 188 - _, err = e.docker.NetworkCreate(ctx, networkName(wid), network.CreateOptions{ 189 189 - Driver: "bridge", 190 190 - }) 191 191 - if err != nil { 192 192 - return err 193 193 - } 194 194 - e.registerCleanup(wid, func(ctx context.Context) error { 195 195 - return e.docker.NetworkRemove(ctx, networkName(wid)) 196 196 - }) 105 105 + err = db.StatusSuccess(wid, n) 106 106 + if err != nil { 107 107 + return err 108 108 + } 197 109 198 198 - return nil 199 199 - } 200 200 - 201 201 - // StartSteps starts all steps sequentially with the same base image. 202 202 - // ONLY marks pipeline as failed if container's exit code is non-zero. 203 203 - // All other errors are bubbled up. 204 204 - // Fixed version of the step execution logic 205 205 - func (e *Engine) StartSteps(ctx context.Context, wid models.WorkflowId, w models.Workflow, secrets []secrets.UnlockedSecret) error { 206 206 - workflowEnvs := ConstructEnvs(w.Environment) 207 207 - for _, s := range secrets { 208 208 - workflowEnvs.AddEnv(s.Key, s.Value) 209 209 - } 210 210 - 211 211 - for stepIdx, step := range w.Steps { 212 212 - select { 213 213 - case <-ctx.Done(): 214 214 - return ctx.Err() 215 215 - default: 216 216 - } 217 217 - 218 218 - envs := append(EnvVars(nil), workflowEnvs...) 219 219 - for k, v := range step.Environment { 220 220 - envs.AddEnv(k, v) 221 221 - } 222 222 - envs.AddEnv("HOME", workspaceDir) 223 223 - e.l.Debug("envs for step", "step", step.Name, "envs", envs.Slice()) 224 224 - 225 225 - hostConfig := hostConfig(wid) 226 226 - resp, err := e.docker.ContainerCreate(ctx, &container.Config{ 227 227 - Image: w.Image, 228 228 - Cmd: []string{"bash", "-c", step.Command}, 229 229 - WorkingDir: workspaceDir, 230 230 - Tty: false, 231 231 - Hostname: "spindle", 232 232 - Env: envs.Slice(), 233 233 - }, hostConfig, nil, nil, "") 234 234 - defer e.DestroyStep(ctx, resp.ID) 235 235 - if err != nil { 236 236 - return fmt.Errorf("creating container: %w", err) 237 237 - } 238 238 - 239 239 - err = e.docker.NetworkConnect(ctx, networkName(wid), resp.ID, nil) 240 240 - if err != nil { 241 241 - return fmt.Errorf("connecting network: %w", err) 242 242 - } 243 243 - 244 244 - err = e.docker.ContainerStart(ctx, resp.ID, container.StartOptions{}) 245 245 - if err != nil { 246 246 - return err 247 247 - } 248 248 - e.l.Info("started container", "name", resp.ID, "step", step.Name) 249 249 - 250 250 - // start tailing logs in background 251 251 - tailDone := make(chan error, 1) 252 252 - go func() { 253 253 - tailDone <- e.TailStep(ctx, resp.ID, wid, stepIdx, step) 254 254 - }() 255 255 - 256 256 - // wait for container completion or timeout 257 257 - waitDone := make(chan struct{}) 258 258 - var state *container.State 259 259 - var waitErr error 260 260 - 261 261 - go func() { 262 262 - defer close(waitDone) 263 263 - state, waitErr = e.WaitStep(ctx, resp.ID) 264 264 - }() 265 265 - 266 266 - select { 267 267 - case <-waitDone: 268 268 - 269 269 - // wait for tailing to complete 270 270 - <-tailDone 271 271 - 272 272 - case <-ctx.Done(): 273 273 - e.l.Warn("step timed out; killing container", "container", resp.ID, "step", step.Name) 274 274 - err = e.DestroyStep(context.Background(), resp.ID) 275 275 - if err != nil { 276 276 - e.l.Error("failed to destroy step", "container", resp.ID, "error", err) 277 277 - } 278 278 - 279 279 - // wait for both goroutines to finish 280 280 - <-waitDone 281 281 - <-tailDone 282 282 - 283 283 - return ErrTimedOut 284 284 - } 285 285 - 286 286 - select { 287 287 - case <-ctx.Done(): 288 288 - return ctx.Err() 289 289 - default: 290 290 - } 291 291 - 292 292 - if waitErr != nil { 293 293 - return waitErr 294 294 - } 295 295 - 296 296 - err = e.DestroyStep(ctx, resp.ID) 297 297 - if err != nil { 298 298 - return err 299 299 - } 300 300 - 301 301 - if state.ExitCode != 0 { 302 302 - e.l.Error("workflow failed!", "workflow_id", wid.String(), "error", state.Error, "exit_code", state.ExitCode, "oom_killed", state.OOMKilled) 303 303 - if state.OOMKilled { 304 304 - return ErrOOMKilled 305 305 - } 306 306 - return ErrWorkflowFailed 110 110 + return nil 111 111 + }) 307 112 } 308 113 } 309 114 310 310 - return nil 311 311 - } 312 312 - 313 313 - func (e *Engine) WaitStep(ctx context.Context, containerID string) (*container.State, error) { 314 314 - wait, errCh := e.docker.ContainerWait(ctx, containerID, container.WaitConditionNotRunning) 315 315 - select { 316 316 - case err := <-errCh: 317 317 - if err != nil { 318 318 - return nil, err 319 319 - } 320 320 - case <-wait: 321 321 - } 322 322 - 323 323 - e.l.Info("waited for container", "name", containerID) 324 324 - 325 325 - info, err := e.docker.ContainerInspect(ctx, containerID) 326 326 - if err != nil { 327 327 - return nil, err 328 328 - } 329 329 - 330 330 - return info.State, nil 331 331 - } 332 332 - 333 333 - func (e *Engine) TailStep(ctx context.Context, containerID string, wid models.WorkflowId, stepIdx int, step models.Step) error { 334 334 - wfLogger, err := NewWorkflowLogger(e.cfg.Pipelines.LogDir, wid) 335 335 - if err != nil { 336 336 - e.l.Warn("failed to setup step logger; logs will not be persisted", "error", err) 337 337 - return err 115 115 + if err := eg.Wait(); err != nil { 116 116 + l.Error("failed to run one or more workflows", "err", err) 117 117 + } else { 118 118 + l.Error("successfully ran full pipeline") 338 119 } 339 339 - defer wfLogger.Close() 340 340 - 341 341 - ctl := wfLogger.ControlWriter(stepIdx, step) 342 342 - ctl.Write([]byte(step.Name)) 343 343 - 344 344 - logs, err := e.docker.ContainerLogs(ctx, containerID, container.LogsOptions{ 345 345 - Follow: true, 346 346 - ShowStdout: true, 347 347 - ShowStderr: true, 348 348 - Details: false, 349 349 - Timestamps: false, 350 350 - }) 351 351 - if err != nil { 352 352 - return err 353 353 - } 354 354 - 355 355 - _, err = stdcopy.StdCopy( 356 356 - wfLogger.DataWriter("stdout"), 357 357 - wfLogger.DataWriter("stderr"), 358 358 - logs, 359 359 - ) 360 360 - if err != nil && err != io.EOF && !errors.Is(err, context.DeadlineExceeded) { 361 361 - return fmt.Errorf("failed to copy logs: %w", err) 362 362 - } 363 363 - 364 364 - return nil 365 365 - } 366 366 - 367 367 - func (e *Engine) DestroyStep(ctx context.Context, containerID string) error { 368 368 - err := e.docker.ContainerKill(ctx, containerID, "9") // SIGKILL 369 369 - if err != nil && !isErrContainerNotFoundOrNotRunning(err) { 370 370 - return err 371 371 - } 372 372 - 373 373 - if err := e.docker.ContainerRemove(ctx, containerID, container.RemoveOptions{ 374 374 - RemoveVolumes: true, 375 375 - RemoveLinks: false, 376 376 - Force: false, 377 377 - }); err != nil && !isErrContainerNotFoundOrNotRunning(err) { 378 378 - return err 379 379 - } 380 380 - 381 381 - return nil 382 382 - } 383 383 - 384 384 - func (e *Engine) DestroyWorkflow(ctx context.Context, wid models.WorkflowId) error { 385 385 - e.cleanupMu.Lock() 386 386 - key := wid.String() 387 387 - 388 388 - fns := e.cleanup[key] 389 389 - delete(e.cleanup, key) 390 390 - e.cleanupMu.Unlock() 391 391 - 392 392 - for _, fn := range fns { 393 393 - if err := fn(ctx); err != nil { 394 394 - e.l.Error("failed to cleanup workflow resource", "workflowId", wid, "error", err) 395 395 - } 396 396 - } 397 397 - return nil 398 398 - } 399 399 - 400 400 - func (e *Engine) registerCleanup(wid models.WorkflowId, fn cleanupFunc) { 401 401 - e.cleanupMu.Lock() 402 402 - defer e.cleanupMu.Unlock() 403 403 - 404 404 - key := wid.String() 405 405 - e.cleanup[key] = append(e.cleanup[key], fn) 406 406 - } 407 407 - 408 408 - func workspaceVolume(wid models.WorkflowId) string { 409 409 - return fmt.Sprintf("workspace-%s", wid) 410 410 - } 411 411 - 412 412 - func nixVolume(wid models.WorkflowId) string { 413 413 - return fmt.Sprintf("nix-%s", wid) 414 414 - } 415 415 - 416 416 - func networkName(wid models.WorkflowId) string { 417 417 - return fmt.Sprintf("workflow-network-%s", wid) 418 418 - } 419 419 - 420 420 - func hostConfig(wid models.WorkflowId) *container.HostConfig { 421 421 - hostConfig := &container.HostConfig{ 422 422 - Mounts: []mount.Mount{ 423 423 - { 424 424 - Type: mount.TypeVolume, 425 425 - Source: workspaceVolume(wid), 426 426 - Target: workspaceDir, 427 427 - }, 428 428 - { 429 429 - Type: mount.TypeVolume, 430 430 - Source: nixVolume(wid), 431 431 - Target: "/nix", 432 432 - }, 433 433 - { 434 434 - Type: mount.TypeTmpfs, 435 435 - Target: "/tmp", 436 436 - ReadOnly: false, 437 437 - TmpfsOptions: &mount.TmpfsOptions{ 438 438 - Mode: 0o1777, // world-writeable sticky bit 439 439 - Options: [][]string{ 440 440 - {"exec"}, 441 441 - }, 442 442 - }, 443 443 - }, 444 444 - { 445 445 - Type: mount.TypeVolume, 446 446 - Source: "etc-nix-" + wid.String(), 447 447 - Target: "/etc/nix", 448 448 - }, 449 449 - }, 450 450 - ReadonlyRootfs: false, 451 451 - CapDrop: []string{"ALL"}, 452 452 - CapAdd: []string{"CAP_DAC_OVERRIDE"}, 453 453 - SecurityOpt: []string{"no-new-privileges"}, 454 454 - ExtraHosts: []string{"host.docker.internal:host-gateway"}, 455 455 - } 456 456 - 457 457 - return hostConfig 458 458 - } 459 459 - 460 460 - // thanks woodpecker 461 461 - func isErrContainerNotFoundOrNotRunning(err error) bool { 462 462 - // Error response from daemon: Cannot kill container: ...: No such container: ... 463 463 - // Error response from daemon: Cannot kill container: ...: Container ... is not running" 464 464 - // Error response from podman daemon: can only kill running containers. ... is in state exited 465 465 - // Error: No such container: ... 466 466 - return err != nil && (strings.Contains(err.Error(), "No such container") || strings.Contains(err.Error(), "is not running") || strings.Contains(err.Error(), "can only kill running containers")) 467 120 }

-28

spindle/engine/envs.go

··· 1 1 - package engine 2 2 - 3 3 - import ( 4 4 - "fmt" 5 5 - ) 6 6 - 7 7 - type EnvVars []string 8 8 - 9 9 - // ConstructEnvs converts a tangled.Pipeline_Step_Environment_Elem.{Key,Value} 10 10 - // representation into a docker-friendly []string{"KEY=value", ...} slice. 11 11 - func ConstructEnvs(envs map[string]string) EnvVars { 12 12 - var dockerEnvs EnvVars 13 13 - for k, v := range envs { 14 14 - ev := fmt.Sprintf("%s=%s", k, v) 15 15 - dockerEnvs = append(dockerEnvs, ev) 16 16 - } 17 17 - return dockerEnvs 18 18 - } 19 19 - 20 20 - // Slice returns the EnvVar as a []string slice. 21 21 - func (ev EnvVars) Slice() []string { 22 22 - return ev 23 23 - } 24 24 - 25 25 - // AddEnv adds a key=value string to the EnvVar. 26 26 - func (ev *EnvVars) AddEnv(key, value string) { 27 27 - *ev = append(*ev, fmt.Sprintf("%s=%s", key, value)) 28 28 - }

-48

spindle/engine/envs_test.go

··· 1 1 - package engine 2 2 - 3 3 - import ( 4 4 - "testing" 5 5 - 6 6 - "github.com/stretchr/testify/assert" 7 7 - ) 8 8 - 9 9 - func TestConstructEnvs(t *testing.T) { 10 10 - tests := []struct { 11 11 - name string 12 12 - in map[string]string 13 13 - want EnvVars 14 14 - }{ 15 15 - { 16 16 - name: "empty input", 17 17 - in: make(map[string]string), 18 18 - want: EnvVars{}, 19 19 - }, 20 20 - { 21 21 - name: "single env var", 22 22 - in: map[string]string{"FOO": "bar"}, 23 23 - want: EnvVars{"FOO=bar"}, 24 24 - }, 25 25 - { 26 26 - name: "multiple env vars", 27 27 - in: map[string]string{"FOO": "bar", "BAZ": "qux"}, 28 28 - want: EnvVars{"FOO=bar", "BAZ=qux"}, 29 29 - }, 30 30 - } 31 31 - for _, tt := range tests { 32 32 - t.Run(tt.name, func(t *testing.T) { 33 33 - got := ConstructEnvs(tt.in) 34 34 - if got == nil { 35 35 - got = EnvVars{} 36 36 - } 37 37 - assert.ElementsMatch(t, tt.want, got) 38 38 - }) 39 39 - } 40 40 - } 41 41 - 42 42 - func TestAddEnv(t *testing.T) { 43 43 - ev := EnvVars{} 44 44 - ev.AddEnv("FOO", "bar") 45 45 - ev.AddEnv("BAZ", "qux") 46 46 - want := EnvVars{"FOO=bar", "BAZ=qux"} 47 47 - assert.ElementsMatch(t, want, ev) 48 48 - }

-9

spindle/engine/errors.go

··· 1 1 - package engine 2 2 - 3 3 - import "errors" 4 4 - 5 5 - var ( 6 6 - ErrOOMKilled = errors.New("oom killed") 7 7 - ErrTimedOut = errors.New("timed out") 8 8 - ErrWorkflowFailed = errors.New("workflow failed") 9 9 - )

-84

spindle/engine/logger.go

··· 1 1 - package engine 2 2 - 3 3 - import ( 4 4 - "encoding/json" 5 5 - "fmt" 6 6 - "io" 7 7 - "os" 8 8 - "path/filepath" 9 9 - "strings" 10 10 - 11 11 - "tangled.sh/tangled.sh/core/spindle/models" 12 12 - ) 13 13 - 14 14 - type WorkflowLogger struct { 15 15 - file *os.File 16 16 - encoder *json.Encoder 17 17 - } 18 18 - 19 19 - func NewWorkflowLogger(baseDir string, wid models.WorkflowId) (*WorkflowLogger, error) { 20 20 - path := LogFilePath(baseDir, wid) 21 21 - 22 22 - file, err := os.OpenFile(path, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0644) 23 23 - if err != nil { 24 24 - return nil, fmt.Errorf("creating log file: %w", err) 25 25 - } 26 26 - 27 27 - return &WorkflowLogger{ 28 28 - file: file, 29 29 - encoder: json.NewEncoder(file), 30 30 - }, nil 31 31 - } 32 32 - 33 33 - func LogFilePath(baseDir string, workflowID models.WorkflowId) string { 34 34 - logFilePath := filepath.Join(baseDir, fmt.Sprintf("%s.log", workflowID.String())) 35 35 - return logFilePath 36 36 - } 37 37 - 38 38 - func (l *WorkflowLogger) Close() error { 39 39 - return l.file.Close() 40 40 - } 41 41 - 42 42 - func (l *WorkflowLogger) DataWriter(stream string) io.Writer { 43 43 - // TODO: emit stream 44 44 - return &dataWriter{ 45 45 - logger: l, 46 46 - stream: stream, 47 47 - } 48 48 - } 49 49 - 50 50 - func (l *WorkflowLogger) ControlWriter(idx int, step models.Step) io.Writer { 51 51 - return &controlWriter{ 52 52 - logger: l, 53 53 - idx: idx, 54 54 - step: step, 55 55 - } 56 56 - } 57 57 - 58 58 - type dataWriter struct { 59 59 - logger *WorkflowLogger 60 60 - stream string 61 61 - } 62 62 - 63 63 - func (w *dataWriter) Write(p []byte) (int, error) { 64 64 - line := strings.TrimRight(string(p), "\r\n") 65 65 - entry := models.NewDataLogLine(line, w.stream) 66 66 - if err := w.logger.encoder.Encode(entry); err != nil { 67 67 - return 0, err 68 68 - } 69 69 - return len(p), nil 70 70 - } 71 71 - 72 72 - type controlWriter struct { 73 73 - logger *WorkflowLogger 74 74 - idx int 75 75 - step models.Step 76 76 - } 77 77 - 78 78 - func (w *controlWriter) Write(_ []byte) (int, error) { 79 79 - entry := models.NewControlLogLine(w.idx, w.step) 80 80 - if err := w.logger.encoder.Encode(entry); err != nil { 81 81 - return 0, err 82 82 - } 83 83 - return len(w.step.Name), nil 84 84 - }

+21

spindle/engines/nixery/ansi_stripper.go

··· 1 1 + package nixery 2 2 + 3 3 + import ( 4 4 + "io" 5 5 + 6 6 + "regexp" 7 7 + ) 8 8 + 9 9 + // regex to match ANSI escape codes (e.g., color codes, cursor moves) 10 10 + const ansi = "[\u001B\u009B][[\\]()#;?]*(?:(?:(?:[a-zA-Z\\d]*(?:;[a-zA-Z\\d]*)*)?\u0007)|(?:(?:\\d{1,4}(?:;\\d{0,4})*)?[\\dA-PRZcf-ntqry=><~]))" 11 11 + 12 12 + var re = regexp.MustCompile(ansi) 13 13 + 14 14 + type ansiStrippingWriter struct { 15 15 + underlying io.Writer 16 16 + } 17 17 + 18 18 + func (w *ansiStrippingWriter) Write(p []byte) (int, error) { 19 19 + clean := re.ReplaceAll(p, []byte{}) 20 20 + return w.underlying.Write(clean) 21 21 + }

+421

spindle/engines/nixery/engine.go

··· 1 1 + package nixery 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "errors" 6 6 + "fmt" 7 7 + "io" 8 8 + "log/slog" 9 9 + "os" 10 10 + "path" 11 11 + "runtime" 12 12 + "sync" 13 13 + "time" 14 14 + 15 15 + "github.com/docker/docker/api/types/container" 16 16 + "github.com/docker/docker/api/types/image" 17 17 + "github.com/docker/docker/api/types/mount" 18 18 + "github.com/docker/docker/api/types/network" 19 19 + "github.com/docker/docker/client" 20 20 + "github.com/docker/docker/pkg/stdcopy" 21 21 + "gopkg.in/yaml.v3" 22 22 + "tangled.sh/tangled.sh/core/api/tangled" 23 23 + "tangled.sh/tangled.sh/core/log" 24 24 + "tangled.sh/tangled.sh/core/spindle/config" 25 25 + "tangled.sh/tangled.sh/core/spindle/engine" 26 26 + "tangled.sh/tangled.sh/core/spindle/models" 27 27 + "tangled.sh/tangled.sh/core/spindle/secrets" 28 28 + ) 29 29 + 30 30 + const ( 31 31 + workspaceDir = "/tangled/workspace" 32 32 + homeDir = "/tangled/home" 33 33 + ) 34 34 + 35 35 + type cleanupFunc func(context.Context) error 36 36 + 37 37 + type Engine struct { 38 38 + docker client.APIClient 39 39 + l *slog.Logger 40 40 + cfg *config.Config 41 41 + 42 42 + cleanupMu sync.Mutex 43 43 + cleanup map[string][]cleanupFunc 44 44 + } 45 45 + 46 46 + type Step struct { 47 47 + name string 48 48 + kind models.StepKind 49 49 + command string 50 50 + environment map[string]string 51 51 + } 52 52 + 53 53 + func (s Step) Name() string { 54 54 + return s.name 55 55 + } 56 56 + 57 57 + func (s Step) Command() string { 58 58 + return s.command 59 59 + } 60 60 + 61 61 + func (s Step) Kind() models.StepKind { 62 62 + return s.kind 63 63 + } 64 64 + 65 65 + // setupSteps get added to start of Steps 66 66 + type setupSteps []models.Step 67 67 + 68 68 + // addStep adds a step to the beginning of the workflow's steps. 69 69 + func (ss *setupSteps) addStep(step models.Step) { 70 70 + *ss = append(*ss, step) 71 71 + } 72 72 + 73 73 + type addlFields struct { 74 74 + image string 75 75 + container string 76 76 + env map[string]string 77 77 + } 78 78 + 79 79 + func (e *Engine) InitWorkflow(twf tangled.Pipeline_Workflow, tpl tangled.Pipeline) (*models.Workflow, error) { 80 80 + swf := &models.Workflow{} 81 81 + addl := addlFields{} 82 82 + 83 83 + dwf := &struct { 84 84 + Steps []struct { 85 85 + Command string `yaml:"command"` 86 86 + Name string `yaml:"name"` 87 87 + Environment map[string]string `yaml:"environment"` 88 88 + } `yaml:"steps"` 89 89 + Dependencies map[string][]string `yaml:"dependencies"` 90 90 + Environment map[string]string `yaml:"environment"` 91 91 + }{} 92 92 + err := yaml.Unmarshal([]byte(twf.Raw), &dwf) 93 93 + if err != nil { 94 94 + return nil, err 95 95 + } 96 96 + 97 97 + for _, dstep := range dwf.Steps { 98 98 + sstep := Step{} 99 99 + sstep.environment = dstep.Environment 100 100 + sstep.command = dstep.Command 101 101 + sstep.name = dstep.Name 102 102 + sstep.kind = models.StepKindUser 103 103 + swf.Steps = append(swf.Steps, sstep) 104 104 + } 105 105 + swf.Name = twf.Name 106 106 + addl.env = dwf.Environment 107 107 + addl.image = workflowImage(dwf.Dependencies, e.cfg.NixeryPipelines.Nixery) 108 108 + 109 109 + setup := &setupSteps{} 110 110 + 111 111 + setup.addStep(nixConfStep()) 112 112 + setup.addStep(cloneStep(twf, *tpl.TriggerMetadata, e.cfg.Server.Dev)) 113 113 + // this step could be empty 114 114 + if s := dependencyStep(dwf.Dependencies); s != nil { 115 115 + setup.addStep(*s) 116 116 + } 117 117 + 118 118 + // append setup steps in order to the start of workflow steps 119 119 + swf.Steps = append(*setup, swf.Steps...) 120 120 + swf.Data = addl 121 121 + 122 122 + return swf, nil 123 123 + } 124 124 + 125 125 + func (e *Engine) WorkflowTimeout() time.Duration { 126 126 + workflowTimeoutStr := e.cfg.NixeryPipelines.WorkflowTimeout 127 127 + workflowTimeout, err := time.ParseDuration(workflowTimeoutStr) 128 128 + if err != nil { 129 129 + e.l.Error("failed to parse workflow timeout", "error", err, "timeout", workflowTimeoutStr) 130 130 + workflowTimeout = 5 * time.Minute 131 131 + } 132 132 + 133 133 + return workflowTimeout 134 134 + } 135 135 + 136 136 + func workflowImage(deps map[string][]string, nixery string) string { 137 137 + var dependencies string 138 138 + for reg, ds := range deps { 139 139 + if reg == "nixpkgs" { 140 140 + dependencies = path.Join(ds...) 141 141 + } 142 142 + } 143 143 + 144 144 + // load defaults from somewhere else 145 145 + dependencies = path.Join(dependencies, "bash", "git", "coreutils", "nix") 146 146 + 147 147 + if runtime.GOARCH == "arm64" { 148 148 + dependencies = path.Join("arm64", dependencies) 149 149 + } 150 150 + 151 151 + return path.Join(nixery, dependencies) 152 152 + } 153 153 + 154 154 + func New(ctx context.Context, cfg *config.Config) (*Engine, error) { 155 155 + dcli, err := client.NewClientWithOpts(client.FromEnv, client.WithAPIVersionNegotiation()) 156 156 + if err != nil { 157 157 + return nil, err 158 158 + } 159 159 + 160 160 + l := log.FromContext(ctx).With("component", "spindle") 161 161 + 162 162 + e := &Engine{ 163 163 + docker: dcli, 164 164 + l: l, 165 165 + cfg: cfg, 166 166 + } 167 167 + 168 168 + e.cleanup = make(map[string][]cleanupFunc) 169 169 + 170 170 + return e, nil 171 171 + } 172 172 + 173 173 + func (e *Engine) SetupWorkflow(ctx context.Context, wid models.WorkflowId, wf *models.Workflow) error { 174 174 + e.l.Info("setting up workflow", "workflow", wid) 175 175 + 176 176 + _, err := e.docker.NetworkCreate(ctx, networkName(wid), network.CreateOptions{ 177 177 + Driver: "bridge", 178 178 + }) 179 179 + if err != nil { 180 180 + return err 181 181 + } 182 182 + e.registerCleanup(wid, func(ctx context.Context) error { 183 183 + return e.docker.NetworkRemove(ctx, networkName(wid)) 184 184 + }) 185 185 + 186 186 + addl := wf.Data.(addlFields) 187 187 + 188 188 + reader, err := e.docker.ImagePull(ctx, addl.image, image.PullOptions{}) 189 189 + if err != nil { 190 190 + e.l.Error("pipeline image pull failed!", "image", addl.image, "workflowId", wid, "error", err.Error()) 191 191 + 192 192 + return fmt.Errorf("pulling image: %w", err) 193 193 + } 194 194 + defer reader.Close() 195 195 + io.Copy(os.Stdout, reader) 196 196 + 197 197 + resp, err := e.docker.ContainerCreate(ctx, &container.Config{ 198 198 + Image: addl.image, 199 199 + Cmd: []string{"cat"}, 200 200 + OpenStdin: true, // so cat stays alive :3 201 201 + Tty: false, 202 202 + Hostname: "spindle", 203 203 + WorkingDir: workspaceDir, 204 204 + Labels: map[string]string{ 205 205 + "sh.tangled.pipeline/workflow_id": wid.String(), 206 206 + }, 207 207 + // TODO(winter): investigate whether environment variables passed here 208 208 + // get propagated to ContainerExec processes 209 209 + }, &container.HostConfig{ 210 210 + Mounts: []mount.Mount{ 211 211 + { 212 212 + Type: mount.TypeTmpfs, 213 213 + Target: "/tmp", 214 214 + ReadOnly: false, 215 215 + TmpfsOptions: &mount.TmpfsOptions{ 216 216 + Mode: 0o1777, // world-writeable sticky bit 217 217 + Options: [][]string{ 218 218 + {"exec"}, 219 219 + }, 220 220 + }, 221 221 + }, 222 222 + }, 223 223 + ReadonlyRootfs: false, 224 224 + CapDrop: []string{"ALL"}, 225 225 + CapAdd: []string{"CAP_DAC_OVERRIDE"}, 226 226 + SecurityOpt: []string{"no-new-privileges"}, 227 227 + ExtraHosts: []string{"host.docker.internal:host-gateway"}, 228 228 + }, nil, nil, "") 229 229 + if err != nil { 230 230 + return fmt.Errorf("creating container: %w", err) 231 231 + } 232 232 + e.registerCleanup(wid, func(ctx context.Context) error { 233 233 + err = e.docker.ContainerStop(ctx, resp.ID, container.StopOptions{}) 234 234 + if err != nil { 235 235 + return err 236 236 + } 237 237 + 238 238 + return e.docker.ContainerRemove(ctx, resp.ID, container.RemoveOptions{ 239 239 + RemoveVolumes: true, 240 240 + RemoveLinks: false, 241 241 + Force: false, 242 242 + }) 243 243 + }) 244 244 + 245 245 + err = e.docker.ContainerStart(ctx, resp.ID, container.StartOptions{}) 246 246 + if err != nil { 247 247 + return fmt.Errorf("starting container: %w", err) 248 248 + } 249 249 + 250 250 + mkExecResp, err := e.docker.ContainerExecCreate(ctx, resp.ID, container.ExecOptions{ 251 251 + Cmd: []string{"mkdir", "-p", workspaceDir, homeDir}, 252 252 + AttachStdout: true, // NOTE(winter): pretty sure this will make it so that when stdout read is done below, mkdir is done. maybe?? 253 253 + AttachStderr: true, // for good measure, backed up by docker/cli ("If -d is not set, attach to everything by default") 254 254 + }) 255 255 + if err != nil { 256 256 + return err 257 257 + } 258 258 + 259 259 + // This actually *starts* the command. Thanks, Docker! 260 260 + execResp, err := e.docker.ContainerExecAttach(ctx, mkExecResp.ID, container.ExecAttachOptions{}) 261 261 + if err != nil { 262 262 + return err 263 263 + } 264 264 + defer execResp.Close() 265 265 + 266 266 + // This is apparently best way to wait for the command to complete. 267 267 + _, err = io.ReadAll(execResp.Reader) 268 268 + if err != nil { 269 269 + return err 270 270 + } 271 271 + 272 272 + execInspectResp, err := e.docker.ContainerExecInspect(ctx, mkExecResp.ID) 273 273 + if err != nil { 274 274 + return err 275 275 + } 276 276 + 277 277 + if execInspectResp.ExitCode != 0 { 278 278 + return fmt.Errorf("mkdir exited with exit code %d", execInspectResp.ExitCode) 279 279 + } else if execInspectResp.Running { 280 280 + return errors.New("mkdir is somehow still running??") 281 281 + } 282 282 + 283 283 + addl.container = resp.ID 284 284 + wf.Data = addl 285 285 + 286 286 + return nil 287 287 + } 288 288 + 289 289 + func (e *Engine) RunStep(ctx context.Context, wid models.WorkflowId, w *models.Workflow, idx int, secrets []secrets.UnlockedSecret, wfLogger *models.WorkflowLogger) error { 290 290 + addl := w.Data.(addlFields) 291 291 + workflowEnvs := ConstructEnvs(addl.env) 292 292 + // TODO(winter): should SetupWorkflow also have secret access? 293 293 + // IMO yes, but probably worth thinking on. 294 294 + for _, s := range secrets { 295 295 + workflowEnvs.AddEnv(s.Key, s.Value) 296 296 + } 297 297 + 298 298 + step := w.Steps[idx].(Step) 299 299 + 300 300 + select { 301 301 + case <-ctx.Done(): 302 302 + return ctx.Err() 303 303 + default: 304 304 + } 305 305 + 306 306 + envs := append(EnvVars(nil), workflowEnvs...) 307 307 + for k, v := range step.environment { 308 308 + envs.AddEnv(k, v) 309 309 + } 310 310 + envs.AddEnv("HOME", homeDir) 311 311 + 312 312 + mkExecResp, err := e.docker.ContainerExecCreate(ctx, addl.container, container.ExecOptions{ 313 313 + Cmd: []string{"bash", "-c", step.command}, 314 314 + AttachStdout: true, 315 315 + AttachStderr: true, 316 316 + Env: envs, 317 317 + }) 318 318 + if err != nil { 319 319 + return fmt.Errorf("creating exec: %w", err) 320 320 + } 321 321 + 322 322 + // start tailing logs in background 323 323 + tailDone := make(chan error, 1) 324 324 + go func() { 325 325 + tailDone <- e.tailStep(ctx, wfLogger, mkExecResp.ID, wid, idx, step) 326 326 + }() 327 327 + 328 328 + select { 329 329 + case <-tailDone: 330 330 + 331 331 + case <-ctx.Done(): 332 332 + // cleanup will be handled by DestroyWorkflow, since 333 333 + // Docker doesn't provide an API to kill an exec run 334 334 + // (sure, we could grab the PID and kill it ourselves, 335 335 + // but that's wasted effort) 336 336 + e.l.Warn("step timed out", "step", step.Name) 337 337 + 338 338 + <-tailDone 339 339 + 340 340 + return engine.ErrTimedOut 341 341 + } 342 342 + 343 343 + select { 344 344 + case <-ctx.Done(): 345 345 + return ctx.Err() 346 346 + default: 347 347 + } 348 348 + 349 349 + execInspectResp, err := e.docker.ContainerExecInspect(ctx, mkExecResp.ID) 350 350 + if err != nil { 351 351 + return err 352 352 + } 353 353 + 354 354 + if execInspectResp.ExitCode != 0 { 355 355 + inspectResp, err := e.docker.ContainerInspect(ctx, addl.container) 356 356 + if err != nil { 357 357 + return err 358 358 + } 359 359 + 360 360 + e.l.Error("workflow failed!", "workflow_id", wid.String(), "exit_code", execInspectResp.ExitCode, "oom_killed", inspectResp.State.OOMKilled) 361 361 + 362 362 + if inspectResp.State.OOMKilled { 363 363 + return ErrOOMKilled 364 364 + } 365 365 + return engine.ErrWorkflowFailed 366 366 + } 367 367 + 368 368 + return nil 369 369 + } 370 370 + 371 371 + func (e *Engine) tailStep(ctx context.Context, wfLogger *models.WorkflowLogger, execID string, wid models.WorkflowId, stepIdx int, step models.Step) error { 372 372 + if wfLogger == nil { 373 373 + return nil 374 374 + } 375 375 + 376 376 + // This actually *starts* the command. Thanks, Docker! 377 377 + logs, err := e.docker.ContainerExecAttach(ctx, execID, container.ExecAttachOptions{}) 378 378 + if err != nil { 379 379 + return err 380 380 + } 381 381 + defer logs.Close() 382 382 + 383 383 + _, err = stdcopy.StdCopy( 384 384 + wfLogger.DataWriter("stdout"), 385 385 + wfLogger.DataWriter("stderr"), 386 386 + logs.Reader, 387 387 + ) 388 388 + if err != nil && err != io.EOF && !errors.Is(err, context.DeadlineExceeded) { 389 389 + return fmt.Errorf("failed to copy logs: %w", err) 390 390 + } 391 391 + 392 392 + return nil 393 393 + } 394 394 + 395 395 + func (e *Engine) DestroyWorkflow(ctx context.Context, wid models.WorkflowId) error { 396 396 + e.cleanupMu.Lock() 397 397 + key := wid.String() 398 398 + 399 399 + fns := e.cleanup[key] 400 400 + delete(e.cleanup, key) 401 401 + e.cleanupMu.Unlock() 402 402 + 403 403 + for _, fn := range fns { 404 404 + if err := fn(ctx); err != nil { 405 405 + e.l.Error("failed to cleanup workflow resource", "workflowId", wid, "error", err) 406 406 + } 407 407 + } 408 408 + return nil 409 409 + } 410 410 + 411 411 + func (e *Engine) registerCleanup(wid models.WorkflowId, fn cleanupFunc) { 412 412 + e.cleanupMu.Lock() 413 413 + defer e.cleanupMu.Unlock() 414 414 + 415 415 + key := wid.String() 416 416 + e.cleanup[key] = append(e.cleanup[key], fn) 417 417 + } 418 418 + 419 419 + func networkName(wid models.WorkflowId) string { 420 420 + return fmt.Sprintf("workflow-network-%s", wid) 421 421 + }

+28

spindle/engines/nixery/envs.go

··· 1 1 + package nixery 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + ) 6 6 + 7 7 + type EnvVars []string 8 8 + 9 9 + // ConstructEnvs converts a tangled.Pipeline_Step_Environment_Elem.{Key,Value} 10 10 + // representation into a docker-friendly []string{"KEY=value", ...} slice. 11 11 + func ConstructEnvs(envs map[string]string) EnvVars { 12 12 + var dockerEnvs EnvVars 13 13 + for k, v := range envs { 14 14 + ev := fmt.Sprintf("%s=%s", k, v) 15 15 + dockerEnvs = append(dockerEnvs, ev) 16 16 + } 17 17 + return dockerEnvs 18 18 + } 19 19 + 20 20 + // Slice returns the EnvVar as a []string slice. 21 21 + func (ev EnvVars) Slice() []string { 22 22 + return ev 23 23 + } 24 24 + 25 25 + // AddEnv adds a key=value string to the EnvVar. 26 26 + func (ev *EnvVars) AddEnv(key, value string) { 27 27 + *ev = append(*ev, fmt.Sprintf("%s=%s", key, value)) 28 28 + }

+48

spindle/engines/nixery/envs_test.go

··· 1 1 + package nixery 2 2 + 3 3 + import ( 4 4 + "testing" 5 5 + 6 6 + "github.com/stretchr/testify/assert" 7 7 + ) 8 8 + 9 9 + func TestConstructEnvs(t *testing.T) { 10 10 + tests := []struct { 11 11 + name string 12 12 + in map[string]string 13 13 + want EnvVars 14 14 + }{ 15 15 + { 16 16 + name: "empty input", 17 17 + in: make(map[string]string), 18 18 + want: EnvVars{}, 19 19 + }, 20 20 + { 21 21 + name: "single env var", 22 22 + in: map[string]string{"FOO": "bar"}, 23 23 + want: EnvVars{"FOO=bar"}, 24 24 + }, 25 25 + { 26 26 + name: "multiple env vars", 27 27 + in: map[string]string{"FOO": "bar", "BAZ": "qux"}, 28 28 + want: EnvVars{"FOO=bar", "BAZ=qux"}, 29 29 + }, 30 30 + } 31 31 + for _, tt := range tests { 32 32 + t.Run(tt.name, func(t *testing.T) { 33 33 + got := ConstructEnvs(tt.in) 34 34 + if got == nil { 35 35 + got = EnvVars{} 36 36 + } 37 37 + assert.ElementsMatch(t, tt.want, got) 38 38 + }) 39 39 + } 40 40 + } 41 41 + 42 42 + func TestAddEnv(t *testing.T) { 43 43 + ev := EnvVars{} 44 44 + ev.AddEnv("FOO", "bar") 45 45 + ev.AddEnv("BAZ", "qux") 46 46 + want := EnvVars{"FOO=bar", "BAZ=qux"} 47 47 + assert.ElementsMatch(t, want, ev) 48 48 + }

+7

spindle/engines/nixery/errors.go

··· 1 1 + package nixery 2 2 + 3 3 + import "errors" 4 4 + 5 5 + var ( 6 6 + ErrOOMKilled = errors.New("oom killed") 7 7 + )

+126

spindle/engines/nixery/setup_steps.go

··· 1 1 + package nixery 2 2 + 3 3 + import ( 4 4 + "fmt" 5 5 + "path" 6 6 + "strings" 7 7 + 8 8 + "tangled.sh/tangled.sh/core/api/tangled" 9 9 + "tangled.sh/tangled.sh/core/workflow" 10 10 + ) 11 11 + 12 12 + func nixConfStep() Step { 13 13 + setupCmd := `mkdir -p /etc/nix 14 14 + echo 'extra-experimental-features = nix-command flakes' >> /etc/nix/nix.conf 15 15 + echo 'build-users-group = ' >> /etc/nix/nix.conf` 16 16 + return Step{ 17 17 + command: setupCmd, 18 18 + name: "Configure Nix", 19 19 + } 20 20 + } 21 21 + 22 22 + // cloneOptsAsSteps processes clone options and adds corresponding steps 23 23 + // to the beginning of the workflow's step list if cloning is not skipped. 24 24 + // 25 25 + // the steps to do here are: 26 26 + // - git init 27 27 + // - git remote add origin <url> 28 28 + // - git fetch --depth=<d> --recurse-submodules=<yes|no> <sha> 29 29 + // - git checkout FETCH_HEAD 30 30 + func cloneStep(twf tangled.Pipeline_Workflow, tr tangled.Pipeline_TriggerMetadata, dev bool) Step { 31 31 + if twf.Clone.Skip { 32 32 + return Step{} 33 33 + } 34 34 + 35 35 + var commands []string 36 36 + 37 37 + // initialize git repo in workspace 38 38 + commands = append(commands, "git init") 39 39 + 40 40 + // add repo as git remote 41 41 + scheme := "https://" 42 42 + if dev { 43 43 + scheme = "http://" 44 44 + tr.Repo.Knot = strings.ReplaceAll(tr.Repo.Knot, "localhost", "host.docker.internal") 45 45 + } 46 46 + url := scheme + path.Join(tr.Repo.Knot, tr.Repo.Did, tr.Repo.Repo) 47 47 + commands = append(commands, fmt.Sprintf("git remote add origin %s", url)) 48 48 + 49 49 + // run git fetch 50 50 + { 51 51 + var fetchArgs []string 52 52 + 53 53 + // default clone depth is 1 54 54 + depth := 1 55 55 + if twf.Clone.Depth > 1 { 56 56 + depth = int(twf.Clone.Depth) 57 57 + } 58 58 + fetchArgs = append(fetchArgs, fmt.Sprintf("--depth=%d", depth)) 59 59 + 60 60 + // optionally recurse submodules 61 61 + if twf.Clone.Submodules { 62 62 + fetchArgs = append(fetchArgs, "--recurse-submodules=yes") 63 63 + } 64 64 + 65 65 + // set remote to fetch from 66 66 + fetchArgs = append(fetchArgs, "origin") 67 67 + 68 68 + // set revision to checkout 69 69 + switch workflow.TriggerKind(tr.Kind) { 70 70 + case workflow.TriggerKindManual: 71 71 + // TODO: unimplemented 72 72 + case workflow.TriggerKindPush: 73 73 + fetchArgs = append(fetchArgs, tr.Push.NewSha) 74 74 + case workflow.TriggerKindPullRequest: 75 75 + fetchArgs = append(fetchArgs, tr.PullRequest.SourceSha) 76 76 + } 77 77 + 78 78 + commands = append(commands, fmt.Sprintf("git fetch %s", strings.Join(fetchArgs, " "))) 79 79 + } 80 80 + 81 81 + // run git checkout 82 82 + commands = append(commands, "git checkout FETCH_HEAD") 83 83 + 84 84 + cloneStep := Step{ 85 85 + command: strings.Join(commands, "\n"), 86 86 + name: "Clone repository into workspace", 87 87 + } 88 88 + return cloneStep 89 89 + } 90 90 + 91 91 + // dependencyStep processes dependencies defined in the workflow. 92 92 + // For dependencies using a custom registry (i.e. not nixpkgs), it collects 93 93 + // all packages and adds a single 'nix profile install' step to the 94 94 + // beginning of the workflow's step list. 95 95 + func dependencyStep(deps map[string][]string) *Step { 96 96 + var customPackages []string 97 97 + 98 98 + for registry, packages := range deps { 99 99 + if registry == "nixpkgs" { 100 100 + continue 101 101 + } 102 102 + 103 103 + if len(packages) == 0 { 104 104 + customPackages = append(customPackages, registry) 105 105 + } 106 106 + // collect packages from custom registries 107 107 + for _, pkg := range packages { 108 108 + customPackages = append(customPackages, fmt.Sprintf("'%s#%s'", registry, pkg)) 109 109 + } 110 110 + } 111 111 + 112 112 + if len(customPackages) > 0 { 113 113 + installCmd := "nix --extra-experimental-features nix-command --extra-experimental-features flakes profile install" 114 114 + cmd := fmt.Sprintf("%s %s", installCmd, strings.Join(customPackages, " ")) 115 115 + installStep := Step{ 116 116 + command: cmd, 117 117 + name: "Install custom dependencies", 118 118 + environment: map[string]string{ 119 119 + "NIX_NO_COLOR": "1", 120 120 + "NIX_SHOW_DOWNLOAD_PROGRESS": "0", 121 121 + }, 122 122 + } 123 123 + return &installStep 124 124 + } 125 125 + return nil 126 126 + }

+168 -10

spindle/ingester.go

··· 3 3 import ( 4 4 "context" 5 5 "encoding/json" 6 6 + "errors" 6 7 "fmt" 7 7 - "path/filepath" 8 8 + "time" 8 9 9 10 "tangled.sh/tangled.sh/core/api/tangled" 10 11 "tangled.sh/tangled.sh/core/eventconsumer" 12 12 + "tangled.sh/tangled.sh/core/idresolver" 11 13 "tangled.sh/tangled.sh/core/rbac" 14 14 + "tangled.sh/tangled.sh/core/spindle/db" 12 15 16 16 + comatproto "github.com/bluesky-social/indigo/api/atproto" 17 17 + "github.com/bluesky-social/indigo/atproto/identity" 18 18 + "github.com/bluesky-social/indigo/atproto/syntax" 19 19 + "github.com/bluesky-social/indigo/xrpc" 13 20 "github.com/bluesky-social/jetstream/pkg/models" 21 21 + securejoin "github.com/cyphar/filepath-securejoin" 14 22 ) 15 23 16 24 type Ingester func(ctx context.Context, e *models.Event) error ··· 32 40 33 41 switch e.Commit.Collection { 34 42 case tangled.SpindleMemberNSID: 35 35 - s.ingestMember(ctx, e) 43 43 + err = s.ingestMember(ctx, e) 36 44 case tangled.RepoNSID: 37 37 - s.ingestRepo(ctx, e) 45 45 + err = s.ingestRepo(ctx, e) 46 46 + case tangled.RepoCollaboratorNSID: 47 47 + err = s.ingestCollaborator(ctx, e) 48 48 + } 49 49 + 50 50 + if err != nil { 51 51 + s.l.Debug("failed to process message", "nsid", e.Commit.Collection, "err", err) 38 52 } 39 53 40 40 - return err 54 54 + return nil 41 55 } 42 56 } 43 57 44 58 func (s *Spindle) ingestMember(_ context.Context, e *models.Event) error { 59 59 + var err error 45 60 did := e.Did 46 46 - var err error 61 61 + rkey := e.Commit.RKey 47 62 48 63 l := s.l.With("component", "ingester", "record", tangled.SpindleMemberNSID) 49 64 ··· 58 73 } 59 74 60 75 domain := s.cfg.Server.Hostname 61 61 - if s.cfg.Server.Dev { 62 62 - domain = s.cfg.Server.ListenAddr 63 63 - } 64 76 recordInstance := record.Instance 65 77 66 78 if recordInstance != domain { ··· 74 86 return fmt.Errorf("failed to enforce permissions: %w", err) 75 87 } 76 88 89 89 + if err := db.AddSpindleMember(s.db, db.SpindleMember{ 90 90 + Did: syntax.DID(did), 91 91 + Rkey: rkey, 92 92 + Instance: recordInstance, 93 93 + Subject: syntax.DID(record.Subject), 94 94 + Created: time.Now(), 95 95 + }); err != nil { 96 96 + l.Error("failed to add member", "error", err) 97 97 + return fmt.Errorf("failed to add member: %w", err) 98 98 + } 99 99 + 77 100 if err := s.e.AddSpindleMember(rbacDomain, record.Subject); err != nil { 78 101 l.Error("failed to add member", "error", err) 79 102 return fmt.Errorf("failed to add member: %w", err) ··· 88 111 89 112 return nil 90 113 114 114 + case models.CommitOperationDelete: 115 115 + record, err := db.GetSpindleMember(s.db, did, rkey) 116 116 + if err != nil { 117 117 + l.Error("failed to find member", "error", err) 118 118 + return fmt.Errorf("failed to find member: %w", err) 119 119 + } 120 120 + 121 121 + if err := db.RemoveSpindleMember(s.db, did, rkey); err != nil { 122 122 + l.Error("failed to remove member", "error", err) 123 123 + return fmt.Errorf("failed to remove member: %w", err) 124 124 + } 125 125 + 126 126 + if err := s.e.RemoveSpindleMember(rbacDomain, record.Subject.String()); err != nil { 127 127 + l.Error("failed to add member", "error", err) 128 128 + return fmt.Errorf("failed to add member: %w", err) 129 129 + } 130 130 + l.Info("added member from firehose", "member", record.Subject) 131 131 + 132 132 + if err := s.db.RemoveDid(record.Subject.String()); err != nil { 133 133 + l.Error("failed to add did", "error", err) 134 134 + return fmt.Errorf("failed to add did: %w", err) 135 135 + } 136 136 + s.jc.RemoveDid(record.Subject.String()) 137 137 + 91 138 } 92 139 return nil 93 140 } 94 141 95 95 - func (s *Spindle) ingestRepo(_ context.Context, e *models.Event) error { 142 142 + func (s *Spindle) ingestRepo(ctx context.Context, e *models.Event) error { 96 143 var err error 144 144 + did := e.Did 145 145 + resolver := idresolver.DefaultResolver() 97 146 98 147 l := s.l.With("component", "ingester", "record", tangled.RepoNSID) 99 148 ··· 129 178 return fmt.Errorf("failed to add repo: %w", err) 130 179 } 131 180 181 181 + didSlashRepo, err := securejoin.SecureJoin(record.Owner, record.Name) 182 182 + if err != nil { 183 183 + return err 184 184 + } 185 185 + 132 186 // add repo to rbac 133 133 - if err := s.e.AddRepo(record.Owner, rbac.ThisServer, filepath.Join(record.Owner, record.Name)); err != nil { 187 187 + if err := s.e.AddRepo(record.Owner, rbac.ThisServer, didSlashRepo); err != nil { 134 188 l.Error("failed to add repo to enforcer", "error", err) 135 189 return fmt.Errorf("failed to add repo: %w", err) 136 190 } 137 191 192 192 + // add collaborators to rbac 193 193 + owner, err := resolver.ResolveIdent(ctx, did) 194 194 + if err != nil || owner.Handle.IsInvalidHandle() { 195 195 + return err 196 196 + } 197 197 + if err := s.fetchAndAddCollaborators(ctx, owner, didSlashRepo); err != nil { 198 198 + return err 199 199 + } 200 200 + 138 201 // add this knot to the event consumer 139 202 src := eventconsumer.NewKnotSource(record.Knot) 140 203 s.ks.AddSource(context.Background(), src) ··· 144 207 } 145 208 return nil 146 209 } 210 210 + 211 211 + func (s *Spindle) ingestCollaborator(ctx context.Context, e *models.Event) error { 212 212 + var err error 213 213 + 214 214 + l := s.l.With("component", "ingester", "record", tangled.RepoCollaboratorNSID, "did", e.Did) 215 215 + 216 216 + l.Info("ingesting collaborator record") 217 217 + 218 218 + switch e.Commit.Operation { 219 219 + case models.CommitOperationCreate, models.CommitOperationUpdate: 220 220 + raw := e.Commit.Record 221 221 + record := tangled.RepoCollaborator{} 222 222 + err = json.Unmarshal(raw, &record) 223 223 + if err != nil { 224 224 + l.Error("invalid record", "error", err) 225 225 + return err 226 226 + } 227 227 + 228 228 + resolver := idresolver.DefaultResolver() 229 229 + 230 230 + subjectId, err := resolver.ResolveIdent(ctx, record.Subject) 231 231 + if err != nil || subjectId.Handle.IsInvalidHandle() { 232 232 + return err 233 233 + } 234 234 + 235 235 + repoAt, err := syntax.ParseATURI(record.Repo) 236 236 + if err != nil { 237 237 + l.Info("rejecting record, invalid repoAt", "repoAt", record.Repo) 238 238 + return nil 239 239 + } 240 240 + 241 241 + // TODO: get rid of this entirely 242 242 + // resolve this aturi to extract the repo record 243 243 + owner, err := resolver.ResolveIdent(ctx, repoAt.Authority().String()) 244 244 + if err != nil || owner.Handle.IsInvalidHandle() { 245 245 + return fmt.Errorf("failed to resolve handle: %w", err) 246 246 + } 247 247 + 248 248 + xrpcc := xrpc.Client{ 249 249 + Host: owner.PDSEndpoint(), 250 250 + } 251 251 + 252 252 + resp, err := comatproto.RepoGetRecord(ctx, &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 253 253 + if err != nil { 254 254 + return err 255 255 + } 256 256 + 257 257 + repo := resp.Value.Val.(*tangled.Repo) 258 258 + didSlashRepo, _ := securejoin.SecureJoin(owner.DID.String(), repo.Name) 259 259 + 260 260 + // check perms for this user 261 261 + if ok, err := s.e.IsCollaboratorInviteAllowed(owner.DID.String(), rbac.ThisServer, didSlashRepo); !ok || err != nil { 262 262 + return fmt.Errorf("insufficient permissions: %w", err) 263 263 + } 264 264 + 265 265 + // add collaborator to rbac 266 266 + if err := s.e.AddCollaborator(record.Subject, rbac.ThisServer, didSlashRepo); err != nil { 267 267 + l.Error("failed to add repo to enforcer", "error", err) 268 268 + return fmt.Errorf("failed to add repo: %w", err) 269 269 + } 270 270 + 271 271 + return nil 272 272 + } 273 273 + return nil 274 274 + } 275 275 + 276 276 + func (s *Spindle) fetchAndAddCollaborators(ctx context.Context, owner *identity.Identity, didSlashRepo string) error { 277 277 + l := s.l.With("component", "ingester", "handler", "fetchAndAddCollaborators") 278 278 + 279 279 + l.Info("fetching and adding existing collaborators") 280 280 + 281 281 + xrpcc := xrpc.Client{ 282 282 + Host: owner.PDSEndpoint(), 283 283 + } 284 284 + 285 285 + resp, err := comatproto.RepoListRecords(ctx, &xrpcc, tangled.RepoCollaboratorNSID, "", 50, owner.DID.String(), false) 286 286 + if err != nil { 287 287 + return err 288 288 + } 289 289 + 290 290 + var errs error 291 291 + for _, r := range resp.Records { 292 292 + if r == nil { 293 293 + continue 294 294 + } 295 295 + record := r.Value.Val.(*tangled.RepoCollaborator) 296 296 + 297 297 + if err := s.e.AddCollaborator(record.Subject, rbac.ThisServer, didSlashRepo); err != nil { 298 298 + l.Error("failed to add repo to enforcer", "error", err) 299 299 + errors.Join(errs, fmt.Errorf("failed to add repo: %w", err)) 300 300 + } 301 301 + } 302 302 + 303 303 + return errs 304 304 + }

+17

spindle/models/engine.go

··· 1 1 + package models 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "time" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/api/tangled" 8 8 + "tangled.sh/tangled.sh/core/spindle/secrets" 9 9 + ) 10 10 + 11 11 + type Engine interface { 12 12 + InitWorkflow(twf tangled.Pipeline_Workflow, tpl tangled.Pipeline) (*Workflow, error) 13 13 + SetupWorkflow(ctx context.Context, wid WorkflowId, wf *Workflow) error 14 14 + WorkflowTimeout() time.Duration 15 15 + DestroyWorkflow(ctx context.Context, wid WorkflowId) error 16 16 + RunStep(ctx context.Context, wid WorkflowId, w *Workflow, idx int, secrets []secrets.UnlockedSecret, wfLogger *WorkflowLogger) error 17 17 + }

+82

spindle/models/logger.go

··· 1 1 + package models 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + "io" 7 7 + "os" 8 8 + "path/filepath" 9 9 + "strings" 10 10 + ) 11 11 + 12 12 + type WorkflowLogger struct { 13 13 + file *os.File 14 14 + encoder *json.Encoder 15 15 + } 16 16 + 17 17 + func NewWorkflowLogger(baseDir string, wid WorkflowId) (*WorkflowLogger, error) { 18 18 + path := LogFilePath(baseDir, wid) 19 19 + 20 20 + file, err := os.OpenFile(path, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0644) 21 21 + if err != nil { 22 22 + return nil, fmt.Errorf("creating log file: %w", err) 23 23 + } 24 24 + 25 25 + return &WorkflowLogger{ 26 26 + file: file, 27 27 + encoder: json.NewEncoder(file), 28 28 + }, nil 29 29 + } 30 30 + 31 31 + func LogFilePath(baseDir string, workflowID WorkflowId) string { 32 32 + logFilePath := filepath.Join(baseDir, fmt.Sprintf("%s.log", workflowID.String())) 33 33 + return logFilePath 34 34 + } 35 35 + 36 36 + func (l *WorkflowLogger) Close() error { 37 37 + return l.file.Close() 38 38 + } 39 39 + 40 40 + func (l *WorkflowLogger) DataWriter(stream string) io.Writer { 41 41 + // TODO: emit stream 42 42 + return &dataWriter{ 43 43 + logger: l, 44 44 + stream: stream, 45 45 + } 46 46 + } 47 47 + 48 48 + func (l *WorkflowLogger) ControlWriter(idx int, step Step) io.Writer { 49 49 + return &controlWriter{ 50 50 + logger: l, 51 51 + idx: idx, 52 52 + step: step, 53 53 + } 54 54 + } 55 55 + 56 56 + type dataWriter struct { 57 57 + logger *WorkflowLogger 58 58 + stream string 59 59 + } 60 60 + 61 61 + func (w *dataWriter) Write(p []byte) (int, error) { 62 62 + line := strings.TrimRight(string(p), "\r\n") 63 63 + entry := NewDataLogLine(line, w.stream) 64 64 + if err := w.logger.encoder.Encode(entry); err != nil { 65 65 + return 0, err 66 66 + } 67 67 + return len(p), nil 68 68 + } 69 69 + 70 70 + type controlWriter struct { 71 71 + logger *WorkflowLogger 72 72 + idx int 73 73 + step Step 74 74 + } 75 75 + 76 76 + func (w *controlWriter) Write(_ []byte) (int, error) { 77 77 + entry := NewControlLogLine(w.idx, w.step) 78 78 + if err := w.logger.encoder.Encode(entry); err != nil { 79 79 + return 0, err 80 80 + } 81 81 + return len(w.step.Name()), nil 82 82 + }

+3 -3

spindle/models/models.go

··· 104 104 func NewControlLogLine(idx int, step Step) LogLine { 105 105 return LogLine{ 106 106 Kind: LogKindControl, 107 107 - Content: step.Name, 107 107 + Content: step.Name(), 108 108 StepId: idx, 109 109 - StepKind: step.Kind, 110 110 - StepCommand: step.Command, 109 109 + StepKind: step.Kind(), 110 110 + StepCommand: step.Command(), 111 111 } 112 112 }

+8 -103

spindle/models/pipeline.go

··· 1 1 package models 2 2 3 3 - import ( 4 4 - "path" 5 5 - 6 6 - "tangled.sh/tangled.sh/core/api/tangled" 7 7 - "tangled.sh/tangled.sh/core/spindle/config" 8 8 - ) 9 9 - 10 3 type Pipeline struct { 11 4 RepoOwner string 12 5 RepoName string 13 13 - Workflows []Workflow 6 6 + Workflows map[Engine][]Workflow 14 7 } 15 8 16 16 - type Step struct { 17 17 - Command string 18 18 - Name string 19 19 - Environment map[string]string 20 20 - Kind StepKind 9 9 + type Step interface { 10 10 + Name() string 11 11 + Command() string 12 12 + Kind() StepKind 21 13 } 22 14 23 15 type StepKind int ··· 30 22 ) 31 23 32 24 type Workflow struct { 33 33 - Steps []Step 34 34 - Environment map[string]string 35 35 - Name string 36 36 - Image string 37 37 - } 38 38 - 39 39 - // setupSteps get added to start of Steps 40 40 - type setupSteps []Step 41 41 - 42 42 - // addStep adds a step to the beginning of the workflow's steps. 43 43 - func (ss *setupSteps) addStep(step Step) { 44 44 - *ss = append(*ss, step) 45 45 - } 46 46 - 47 47 - // ToPipeline converts a tangled.Pipeline into a model.Pipeline. 48 48 - // In the process, dependencies are resolved: nixpkgs deps 49 49 - // are constructed atop nixery and set as the Workflow.Image, 50 50 - // and ones from custom registries 51 51 - func ToPipeline(pl tangled.Pipeline, cfg config.Config) *Pipeline { 52 52 - workflows := []Workflow{} 53 53 - 54 54 - for _, twf := range pl.Workflows { 55 55 - swf := &Workflow{} 56 56 - for _, tstep := range twf.Steps { 57 57 - sstep := Step{} 58 58 - sstep.Environment = stepEnvToMap(tstep.Environment) 59 59 - sstep.Command = tstep.Command 60 60 - sstep.Name = tstep.Name 61 61 - sstep.Kind = StepKindUser 62 62 - swf.Steps = append(swf.Steps, sstep) 63 63 - } 64 64 - swf.Name = twf.Name 65 65 - swf.Environment = workflowEnvToMap(twf.Environment) 66 66 - swf.Image = workflowImage(twf.Dependencies, cfg.Pipelines.Nixery) 67 67 - 68 68 - setup := &setupSteps{} 69 69 - 70 70 - setup.addStep(nixConfStep()) 71 71 - setup.addStep(cloneStep(*twf, *pl.TriggerMetadata, cfg.Server.Dev)) 72 72 - // this step could be empty 73 73 - if s := dependencyStep(*twf); s != nil { 74 74 - setup.addStep(*s) 75 75 - } 76 76 - 77 77 - // append setup steps in order to the start of workflow steps 78 78 - swf.Steps = append(*setup, swf.Steps...) 79 79 - 80 80 - workflows = append(workflows, *swf) 81 81 - } 82 82 - repoOwner := pl.TriggerMetadata.Repo.Did 83 83 - repoName := pl.TriggerMetadata.Repo.Repo 84 84 - return &Pipeline{ 85 85 - RepoOwner: repoOwner, 86 86 - RepoName: repoName, 87 87 - Workflows: workflows, 88 88 - } 89 89 - } 90 90 - 91 91 - func workflowEnvToMap(envs []*tangled.Pipeline_Pair) map[string]string { 92 92 - envMap := map[string]string{} 93 93 - for _, env := range envs { 94 94 - if env != nil { 95 95 - envMap[env.Key] = env.Value 96 96 - } 97 97 - } 98 98 - return envMap 99 99 - } 100 100 - 101 101 - func stepEnvToMap(envs []*tangled.Pipeline_Pair) map[string]string { 102 102 - envMap := map[string]string{} 103 103 - for _, env := range envs { 104 104 - if env != nil { 105 105 - envMap[env.Key] = env.Value 106 106 - } 107 107 - } 108 108 - return envMap 109 109 - } 110 110 - 111 111 - func workflowImage(deps []*tangled.Pipeline_Dependency, nixery string) string { 112 112 - var dependencies string 113 113 - for _, d := range deps { 114 114 - if d.Registry == "nixpkgs" { 115 115 - dependencies = path.Join(d.Packages...) 116 116 - } 117 117 - } 118 118 - 119 119 - // load defaults from somewhere else 120 120 - dependencies = path.Join(dependencies, "bash", "git", "coreutils", "nix") 121 121 - 122 122 - return path.Join(nixery, dependencies) 25 25 + Steps []Step 26 26 + Name string 27 27 + Data any 123 28 }

-128

spindle/models/setup_steps.go

··· 1 1 - package models 2 2 - 3 3 - import ( 4 4 - "fmt" 5 5 - "path" 6 6 - "strings" 7 7 - 8 8 - "tangled.sh/tangled.sh/core/api/tangled" 9 9 - "tangled.sh/tangled.sh/core/workflow" 10 10 - ) 11 11 - 12 12 - func nixConfStep() Step { 13 13 - setupCmd := `echo 'extra-experimental-features = nix-command flakes' >> /etc/nix/nix.conf 14 14 - echo 'build-users-group = ' >> /etc/nix/nix.conf` 15 15 - return Step{ 16 16 - Command: setupCmd, 17 17 - Name: "Configure Nix", 18 18 - } 19 19 - } 20 20 - 21 21 - // cloneOptsAsSteps processes clone options and adds corresponding steps 22 22 - // to the beginning of the workflow's step list if cloning is not skipped. 23 23 - // 24 24 - // the steps to do here are: 25 25 - // - git init 26 26 - // - git remote add origin <url> 27 27 - // - git fetch --depth=<d> --recurse-submodules=<yes|no> <sha> 28 28 - // - git checkout FETCH_HEAD 29 29 - func cloneStep(twf tangled.Pipeline_Workflow, tr tangled.Pipeline_TriggerMetadata, dev bool) Step { 30 30 - if twf.Clone.Skip { 31 31 - return Step{} 32 32 - } 33 33 - 34 34 - var commands []string 35 35 - 36 36 - // initialize git repo in workspace 37 37 - commands = append(commands, "git init") 38 38 - 39 39 - // add repo as git remote 40 40 - scheme := "https://" 41 41 - if dev { 42 42 - scheme = "http://" 43 43 - tr.Repo.Knot = strings.ReplaceAll(tr.Repo.Knot, "localhost", "host.docker.internal") 44 44 - } 45 45 - url := scheme + path.Join(tr.Repo.Knot, tr.Repo.Did, tr.Repo.Repo) 46 46 - commands = append(commands, fmt.Sprintf("git remote add origin %s", url)) 47 47 - 48 48 - // run git fetch 49 49 - { 50 50 - var fetchArgs []string 51 51 - 52 52 - // default clone depth is 1 53 53 - depth := 1 54 54 - if twf.Clone.Depth > 1 { 55 55 - depth = int(twf.Clone.Depth) 56 56 - } 57 57 - fetchArgs = append(fetchArgs, fmt.Sprintf("--depth=%d", depth)) 58 58 - 59 59 - // optionally recurse submodules 60 60 - if twf.Clone.Submodules { 61 61 - fetchArgs = append(fetchArgs, "--recurse-submodules=yes") 62 62 - } 63 63 - 64 64 - // set remote to fetch from 65 65 - fetchArgs = append(fetchArgs, "origin") 66 66 - 67 67 - // set revision to checkout 68 68 - switch workflow.TriggerKind(tr.Kind) { 69 69 - case workflow.TriggerKindManual: 70 70 - // TODO: unimplemented 71 71 - case workflow.TriggerKindPush: 72 72 - fetchArgs = append(fetchArgs, tr.Push.NewSha) 73 73 - case workflow.TriggerKindPullRequest: 74 74 - fetchArgs = append(fetchArgs, tr.PullRequest.SourceSha) 75 75 - } 76 76 - 77 77 - commands = append(commands, fmt.Sprintf("git fetch %s", strings.Join(fetchArgs, " "))) 78 78 - } 79 79 - 80 80 - // run git checkout 81 81 - commands = append(commands, "git checkout FETCH_HEAD") 82 82 - 83 83 - cloneStep := Step{ 84 84 - Command: strings.Join(commands, "\n"), 85 85 - Name: "Clone repository into workspace", 86 86 - } 87 87 - return cloneStep 88 88 - } 89 89 - 90 90 - // dependencyStep processes dependencies defined in the workflow. 91 91 - // For dependencies using a custom registry (i.e. not nixpkgs), it collects 92 92 - // all packages and adds a single 'nix profile install' step to the 93 93 - // beginning of the workflow's step list. 94 94 - func dependencyStep(twf tangled.Pipeline_Workflow) *Step { 95 95 - var customPackages []string 96 96 - 97 97 - for _, d := range twf.Dependencies { 98 98 - registry := d.Registry 99 99 - packages := d.Packages 100 100 - 101 101 - if registry == "nixpkgs" { 102 102 - continue 103 103 - } 104 104 - 105 105 - if len(packages) == 0 { 106 106 - customPackages = append(customPackages, registry) 107 107 - } 108 108 - // collect packages from custom registries 109 109 - for _, pkg := range packages { 110 110 - customPackages = append(customPackages, fmt.Sprintf("'%s#%s'", registry, pkg)) 111 111 - } 112 112 - } 113 113 - 114 114 - if len(customPackages) > 0 { 115 115 - installCmd := "nix --extra-experimental-features nix-command --extra-experimental-features flakes profile install" 116 116 - cmd := fmt.Sprintf("%s %s", installCmd, strings.Join(customPackages, " ")) 117 117 - installStep := Step{ 118 118 - Command: cmd, 119 119 - Name: "Install custom dependencies", 120 120 - Environment: map[string]string{ 121 121 - "NIX_NO_COLOR": "1", 122 122 - "NIX_SHOW_DOWNLOAD_PROGRESS": "0", 123 123 - }, 124 124 - } 125 125 - return &installStep 126 126 - } 127 127 - return nil 128 128 - }

+56 -150

spindle/secrets/openbao.go

··· 6 6 "log/slog" 7 7 "path" 8 8 "strings" 9 9 - "sync" 10 9 "time" 11 10 12 11 "github.com/bluesky-social/indigo/atproto/syntax" ··· 16 15 type OpenBaoManager struct { 17 16 client *vault.Client 18 17 mountPath string 19 19 - roleID string 20 20 - secretID string 21 21 - stopCh chan struct{} 22 22 - tokenMu sync.RWMutex 23 18 logger *slog.Logger 24 19 } 25 20 ··· 31 26 } 32 27 } 33 28 34 34 - func NewOpenBaoManager(address, roleID, secretID string, logger *slog.Logger, opts ...OpenBaoManagerOpt) (*OpenBaoManager, error) { 35 35 - if address == "" { 36 36 - return nil, fmt.Errorf("address cannot be empty") 37 37 - } 38 38 - if roleID == "" { 39 39 - return nil, fmt.Errorf("role_id cannot be empty") 40 40 - } 41 41 - if secretID == "" { 42 42 - return nil, fmt.Errorf("secret_id cannot be empty") 29 29 + // NewOpenBaoManager creates a new OpenBao manager that connects to a Bao Proxy 30 30 + // The proxyAddress should point to the local Bao Proxy (e.g., "http://127.0.0.1:8200") 31 31 + // The proxy handles all authentication automatically via Auto-Auth 32 32 + func NewOpenBaoManager(proxyAddress string, logger *slog.Logger, opts ...OpenBaoManagerOpt) (*OpenBaoManager, error) { 33 33 + if proxyAddress == "" { 34 34 + return nil, fmt.Errorf("proxy address cannot be empty") 43 35 } 44 36 45 37 config := vault.DefaultConfig() 46 46 - config.Address = address 38 38 + config.Address = proxyAddress 47 39 48 40 client, err := vault.NewClient(config) 49 41 if err != nil { 50 42 return nil, fmt.Errorf("failed to create openbao client: %w", err) 51 43 } 52 44 53 53 - // Authenticate using AppRole 54 54 - err = authenticateAppRole(client, roleID, secretID) 55 55 - if err != nil { 56 56 - return nil, fmt.Errorf("failed to authenticate with AppRole: %w", err) 57 57 - } 58 58 - 59 45 manager := &OpenBaoManager{ 60 46 client: client, 61 47 mountPath: "spindle", // default KV v2 mount path 62 62 - roleID: roleID, 63 63 - secretID: secretID, 64 64 - stopCh: make(chan struct{}), 65 48 logger: logger, 66 49 } 67 50 ··· 69 52 opt(manager) 70 53 } 71 54 72 72 - go manager.tokenRenewalLoop() 73 73 - 74 74 - return manager, nil 75 75 - } 76 76 - 77 77 - // authenticateAppRole authenticates the client using AppRole method 78 78 - func authenticateAppRole(client *vault.Client, roleID, secretID string) error { 79 79 - authData := map[string]interface{}{ 80 80 - "role_id": roleID, 81 81 - "secret_id": secretID, 82 82 - } 83 83 - 84 84 - resp, err := client.Logical().Write("auth/approle/login", authData) 85 85 - if err != nil { 86 86 - return fmt.Errorf("failed to login with AppRole: %w", err) 87 87 - } 88 88 - 89 89 - if resp == nil || resp.Auth == nil { 90 90 - return fmt.Errorf("no auth info returned from AppRole login") 91 91 - } 92 92 - 93 93 - client.SetToken(resp.Auth.ClientToken) 94 94 - return nil 95 95 - } 96 96 - 97 97 - // stop stops the token renewal goroutine 98 98 - func (v *OpenBaoManager) Stop() { 99 99 - close(v.stopCh) 100 100 - } 101 101 - 102 102 - // tokenRenewalLoop runs in a background goroutine to automatically renew or re-authenticate tokens 103 103 - func (v *OpenBaoManager) tokenRenewalLoop() { 104 104 - ticker := time.NewTicker(30 * time.Second) // Check every 30 seconds 105 105 - defer ticker.Stop() 106 106 - 107 107 - for { 108 108 - select { 109 109 - case <-v.stopCh: 110 110 - return 111 111 - case <-ticker.C: 112 112 - ctx := context.Background() 113 113 - if err := v.ensureValidToken(ctx); err != nil { 114 114 - v.logger.Error("openbao token renewal failed", "error", err) 115 115 - } 116 116 - } 117 117 - } 118 118 - } 119 119 - 120 120 - // ensureValidToken checks if the current token is valid and renews or re-authenticates if needed 121 121 - func (v *OpenBaoManager) ensureValidToken(ctx context.Context) error { 122 122 - v.tokenMu.Lock() 123 123 - defer v.tokenMu.Unlock() 124 124 - 125 125 - // check current token info 126 126 - tokenInfo, err := v.client.Auth().Token().LookupSelf() 127 127 - if err != nil { 128 128 - // token is invalid, need to re-authenticate 129 129 - v.logger.Warn("token lookup failed, re-authenticating", "error", err) 130 130 - return v.reAuthenticate() 131 131 - } 132 132 - 133 133 - if tokenInfo == nil || tokenInfo.Data == nil { 134 134 - return v.reAuthenticate() 135 135 - } 136 136 - 137 137 - // check TTL 138 138 - ttlRaw, ok := tokenInfo.Data["ttl"] 139 139 - if !ok { 140 140 - return v.reAuthenticate() 141 141 - } 142 142 - 143 143 - var ttl int64 144 144 - switch t := ttlRaw.(type) { 145 145 - case int64: 146 146 - ttl = t 147 147 - case float64: 148 148 - ttl = int64(t) 149 149 - case int: 150 150 - ttl = int64(t) 151 151 - default: 152 152 - return v.reAuthenticate() 153 153 - } 154 154 - 155 155 - // if TTL is less than 5 minutes, try to renew 156 156 - if ttl < 300 { 157 157 - v.logger.Info("token ttl low, attempting renewal", "ttl_seconds", ttl) 158 158 - 159 159 - renewResp, err := v.client.Auth().Token().RenewSelf(3600) // 1h 160 160 - if err != nil { 161 161 - v.logger.Warn("token renewal failed, re-authenticating", "error", err) 162 162 - return v.reAuthenticate() 163 163 - } 164 164 - 165 165 - if renewResp == nil || renewResp.Auth == nil { 166 166 - v.logger.Warn("token renewal returned no auth info, re-authenticating") 167 167 - return v.reAuthenticate() 168 168 - } 169 169 - 170 170 - v.logger.Info("token renewed successfully", "new_ttl_seconds", renewResp.Auth.LeaseDuration) 55 55 + if err := manager.testConnection(); err != nil { 56 56 + return nil, fmt.Errorf("failed to connect to bao proxy: %w", err) 171 57 } 172 58 173 173 - return nil 59 59 + logger.Info("successfully connected to bao proxy", "address", proxyAddress) 60 60 + return manager, nil 174 61 } 175 62 176 176 - // reAuthenticate performs a fresh authentication using AppRole 177 177 - func (v *OpenBaoManager) reAuthenticate() error { 178 178 - v.logger.Info("re-authenticating with approle") 63 63 + // testConnection verifies that we can connect to the proxy 64 64 + func (v *OpenBaoManager) testConnection() error { 65 65 + ctx, cancel := context.WithTimeout(context.Background(), 10*time.Second) 66 66 + defer cancel() 179 67 180 180 - err := authenticateAppRole(v.client, v.roleID, v.secretID) 68 68 + // try token self-lookup as a quick way to verify proxy works 69 69 + // and is authenticated 70 70 + _, err := v.client.Auth().Token().LookupSelfWithContext(ctx) 181 71 if err != nil { 182 182 - return fmt.Errorf("re-authentication failed: %w", err) 72 72 + return fmt.Errorf("proxy connection test failed: %w", err) 183 73 } 184 74 185 185 - v.logger.Info("re-authentication successful") 186 75 return nil 187 76 } 188 77 189 78 func (v *OpenBaoManager) AddSecret(ctx context.Context, secret UnlockedSecret) error { 190 190 - v.tokenMu.RLock() 191 191 - defer v.tokenMu.RUnlock() 192 79 if err := ValidateKey(secret.Key); err != nil { 193 80 return err 194 81 } 195 82 196 83 secretPath := v.buildSecretPath(secret.Repo, secret.Key) 197 197 - 198 198 - fmt.Println(v.mountPath, secretPath) 84 84 + v.logger.Debug("adding secret", "repo", secret.Repo, "key", secret.Key, "path", secretPath) 199 85 86 86 + // Check if secret already exists 200 87 existing, err := v.client.KVv2(v.mountPath).Get(ctx, secretPath) 201 88 if err == nil && existing != nil { 89 89 + v.logger.Debug("secret already exists", "path", secretPath) 202 90 return ErrKeyAlreadyPresent 203 91 } 204 92 ··· 210 98 "created_by": secret.CreatedBy.String(), 211 99 } 212 100 213 213 - _, err = v.client.KVv2(v.mountPath).Put(ctx, secretPath, secretData) 101 101 + v.logger.Debug("writing secret to openbao", "path", secretPath, "mount", v.mountPath) 102 102 + resp, err := v.client.KVv2(v.mountPath).Put(ctx, secretPath, secretData) 214 103 if err != nil { 104 104 + v.logger.Error("failed to write secret", "path", secretPath, "error", err) 215 105 return fmt.Errorf("failed to store secret in openbao: %w", err) 216 106 } 217 107 108 108 + v.logger.Debug("secret write response", "version", resp.VersionMetadata.Version, "created_time", resp.VersionMetadata.CreatedTime) 109 109 + 110 110 + v.logger.Debug("verifying secret was written", "path", secretPath) 111 111 + readBack, err := v.client.KVv2(v.mountPath).Get(ctx, secretPath) 112 112 + if err != nil { 113 113 + v.logger.Error("failed to verify secret after write", "path", secretPath, "error", err) 114 114 + return fmt.Errorf("secret not found after writing to %s/%s: %w", v.mountPath, secretPath, err) 115 115 + } 116 116 + 117 117 + if readBack == nil || readBack.Data == nil { 118 118 + v.logger.Error("secret verification returned empty data", "path", secretPath) 119 119 + return fmt.Errorf("secret verification failed: empty data returned for %s/%s", v.mountPath, secretPath) 120 120 + } 121 121 + 122 122 + v.logger.Info("secret added and verified successfully", "repo", secret.Repo, "key", secret.Key, "version", readBack.VersionMetadata.Version) 218 123 return nil 219 124 } 220 125 221 126 func (v *OpenBaoManager) RemoveSecret(ctx context.Context, secret Secret[any]) error { 222 222 - v.tokenMu.RLock() 223 223 - defer v.tokenMu.RUnlock() 224 127 secretPath := v.buildSecretPath(secret.Repo, secret.Key) 225 128 129 129 + // check if secret exists 226 130 existing, err := v.client.KVv2(v.mountPath).Get(ctx, secretPath) 227 131 if err != nil || existing == nil { 228 132 return ErrKeyNotFound 229 133 } 230 134 231 231 - err = v.client.KVv2(v.mountPath).Delete(ctx, secretPath) 135 135 + err = v.client.KVv2(v.mountPath).DeleteMetadata(ctx, secretPath) 232 136 if err != nil { 233 137 return fmt.Errorf("failed to delete secret from openbao: %w", err) 234 138 } 235 139 140 140 + v.logger.Debug("secret removed successfully", "repo", secret.Repo, "key", secret.Key) 236 141 return nil 237 142 } 238 143 239 144 func (v *OpenBaoManager) GetSecretsLocked(ctx context.Context, repo DidSlashRepo) ([]LockedSecret, error) { 240 240 - v.tokenMu.RLock() 241 241 - defer v.tokenMu.RUnlock() 242 145 repoPath := v.buildRepoPath(repo) 243 146 244 244 - secretsList, err := v.client.Logical().List(fmt.Sprintf("%s/metadata/%s", v.mountPath, repoPath)) 147 147 + secretsList, err := v.client.Logical().ListWithContext(ctx, fmt.Sprintf("%s/metadata/%s", v.mountPath, repoPath)) 245 148 if err != nil { 246 149 if strings.Contains(err.Error(), "no secret found") || strings.Contains(err.Error(), "no handler for route") { 247 150 return []LockedSecret{}, nil ··· 266 169 continue 267 170 } 268 171 269 269 - secretPath := path.Join(repoPath, key) 172 172 + secretPath := fmt.Sprintf("%s/%s", repoPath, key) 270 173 secretData, err := v.client.KVv2(v.mountPath).Get(ctx, secretPath) 271 174 if err != nil { 272 272 - continue // Skip secrets we can't read 175 175 + v.logger.Warn("failed to read secret metadata", "path", secretPath, "error", err) 176 176 + continue 273 177 } 274 178 275 179 if secretData == nil || secretData.Data == nil { ··· 308 212 secrets = append(secrets, secret) 309 213 } 310 214 215 215 + v.logger.Debug("retrieved locked secrets", "repo", repo, "count", len(secrets)) 311 216 return secrets, nil 312 217 } 313 218 314 219 func (v *OpenBaoManager) GetSecretsUnlocked(ctx context.Context, repo DidSlashRepo) ([]UnlockedSecret, error) { 315 315 - v.tokenMu.RLock() 316 316 - defer v.tokenMu.RUnlock() 317 220 repoPath := v.buildRepoPath(repo) 318 221 319 319 - secretsList, err := v.client.Logical().List(fmt.Sprintf("%s/metadata/%s", v.mountPath, repoPath)) 222 222 + secretsList, err := v.client.Logical().ListWithContext(ctx, fmt.Sprintf("%s/metadata/%s", v.mountPath, repoPath)) 320 223 if err != nil { 321 224 if strings.Contains(err.Error(), "no secret found") || strings.Contains(err.Error(), "no handler for route") { 322 225 return []UnlockedSecret{}, nil ··· 341 244 continue 342 245 } 343 246 344 344 - secretPath := path.Join(repoPath, key) 247 247 + secretPath := fmt.Sprintf("%s/%s", repoPath, key) 345 248 secretData, err := v.client.KVv2(v.mountPath).Get(ctx, secretPath) 346 249 if err != nil { 250 250 + v.logger.Warn("failed to read secret", "path", secretPath, "error", err) 347 251 continue 348 252 } 349 253 ··· 355 259 356 260 valueStr, ok := data["value"].(string) 357 261 if !ok { 358 358 - continue // skip secrets without values 262 262 + v.logger.Warn("secret missing value", "path", secretPath) 263 263 + continue 359 264 } 360 265 361 266 createdAtStr, ok := data["created_at"].(string) ··· 389 294 secrets = append(secrets, secret) 390 295 } 391 296 297 297 + v.logger.Debug("retrieved unlocked secrets", "repo", repo, "count", len(secrets)) 392 298 return secrets, nil 393 299 } 394 300 395 395 - // buildRepoPath creates an OpenBao path for a repository 301 301 + // buildRepoPath creates a safe path for a repository 396 302 func (v *OpenBaoManager) buildRepoPath(repo DidSlashRepo) string { 397 303 // convert DidSlashRepo to a safe path by replacing special characters 398 304 repoPath := strings.ReplaceAll(string(repo), "/", "_") ··· 401 307 return fmt.Sprintf("repos/%s", repoPath) 402 308 } 403 309 404 404 - // buildSecretPath creates an OpenBao path for a specific secret 310 310 + // buildSecretPath creates a path for a specific secret 405 311 func (v *OpenBaoManager) buildSecretPath(repo DidSlashRepo, key string) string { 406 312 return path.Join(v.buildRepoPath(repo), key) 407 313 }

+59 -84

spindle/secrets/openbao_test.go

··· 16 16 secrets map[string]UnlockedSecret // key: repo_key format 17 17 shouldError bool 18 18 errorToReturn error 19 19 - stopped bool 20 19 } 21 20 22 21 func NewMockOpenBaoManager() *MockOpenBaoManager { ··· 31 30 func (m *MockOpenBaoManager) ClearError() { 32 31 m.shouldError = false 33 32 m.errorToReturn = nil 34 34 - } 35 35 - 36 36 - func (m *MockOpenBaoManager) Stop() { 37 37 - m.stopped = true 38 38 - } 39 39 - 40 40 - func (m *MockOpenBaoManager) IsStopped() bool { 41 41 - return m.stopped 42 33 } 43 34 44 35 func (m *MockOpenBaoManager) buildKey(repo DidSlashRepo, key string) string { ··· 118 109 } 119 110 } 120 111 112 112 + // Test MockOpenBaoManager interface compliance 113 113 + func TestMockOpenBaoManagerInterface(t *testing.T) { 114 114 + var _ Manager = (*MockOpenBaoManager)(nil) 115 115 + } 116 116 + 121 117 func TestOpenBaoManagerInterface(t *testing.T) { 122 118 var _ Manager = (*OpenBaoManager)(nil) 123 119 } ··· 125 121 func TestNewOpenBaoManager(t *testing.T) { 126 122 tests := []struct { 127 123 name string 128 128 - address string 129 129 - roleID string 130 130 - secretID string 124 124 + proxyAddr string 131 125 opts []OpenBaoManagerOpt 132 126 expectError bool 133 127 errorContains string 134 128 }{ 135 129 { 136 136 - name: "empty address", 137 137 - address: "", 138 138 - roleID: "test-role-id", 139 139 - secretID: "test-secret-id", 130 130 + name: "empty proxy address", 131 131 + proxyAddr: "", 140 132 opts: nil, 141 133 expectError: true, 142 142 - errorContains: "address cannot be empty", 134 134 + errorContains: "proxy address cannot be empty", 143 135 }, 144 136 { 145 145 - name: "empty role_id", 146 146 - address: "http://localhost:8200", 147 147 - roleID: "", 148 148 - secretID: "test-secret-id", 137 137 + name: "valid proxy address", 138 138 + proxyAddr: "http://localhost:8200", 149 139 opts: nil, 150 150 - expectError: true, 151 151 - errorContains: "role_id cannot be empty", 140 140 + expectError: true, // Will fail because no real proxy is running 141 141 + errorContains: "failed to connect to bao proxy", 152 142 }, 153 143 { 154 154 - name: "empty secret_id", 155 155 - address: "http://localhost:8200", 156 156 - roleID: "test-role-id", 157 157 - secretID: "", 158 158 - opts: nil, 159 159 - expectError: true, 160 160 - errorContains: "secret_id cannot be empty", 144 144 + name: "with mount path option", 145 145 + proxyAddr: "http://localhost:8200", 146 146 + opts: []OpenBaoManagerOpt{WithMountPath("custom-mount")}, 147 147 + expectError: true, // Will fail because no real proxy is running 148 148 + errorContains: "failed to connect to bao proxy", 161 149 }, 162 150 } 163 151 164 152 for _, tt := range tests { 165 153 t.Run(tt.name, func(t *testing.T) { 166 154 logger := slog.New(slog.NewTextHandler(os.Stderr, nil)) 167 167 - manager, err := NewOpenBaoManager(tt.address, tt.roleID, tt.secretID, logger, tt.opts...) 155 155 + manager, err := NewOpenBaoManager(tt.proxyAddr, logger, tt.opts...) 168 156 169 157 if tt.expectError { 170 158 assert.Error(t, err) 171 159 assert.Nil(t, manager) 172 160 assert.Contains(t, err.Error(), tt.errorContains) 173 161 } else { 174 174 - // For valid configurations, we expect an error during authentication 175 175 - // since we're not connecting to a real OpenBao server 176 176 - assert.Error(t, err) 177 177 - assert.Nil(t, manager) 162 162 + assert.NoError(t, err) 163 163 + assert.NotNil(t, manager) 178 164 } 179 165 }) 180 166 } ··· 253 239 assert.Equal(t, "custom-mount", manager.mountPath) 254 240 } 255 241 256 256 - func TestOpenBaoManager_Stop(t *testing.T) { 257 257 - // Create a manager with minimal setup 258 258 - manager := &OpenBaoManager{ 259 259 - mountPath: "test", 260 260 - stopCh: make(chan struct{}), 261 261 - } 262 262 - 263 263 - // Verify the manager implements Stopper interface 264 264 - var stopper Stopper = manager 265 265 - assert.NotNil(t, stopper) 266 266 - 267 267 - // Call Stop and verify it doesn't panic 268 268 - assert.NotPanics(t, func() { 269 269 - manager.Stop() 270 270 - }) 271 271 - 272 272 - // Verify the channel was closed 273 273 - select { 274 274 - case <-manager.stopCh: 275 275 - // Channel was closed as expected 276 276 - default: 277 277 - t.Error("Expected stop channel to be closed after Stop()") 278 278 - } 279 279 - } 280 280 - 281 281 - func TestOpenBaoManager_StopperInterface(t *testing.T) { 282 282 - manager := &OpenBaoManager{} 283 283 - 284 284 - // Verify that OpenBaoManager implements the Stopper interface 285 285 - _, ok := interface{}(manager).(Stopper) 286 286 - assert.True(t, ok, "OpenBaoManager should implement Stopper interface") 287 287 - } 288 288 - 289 289 - // Test MockOpenBaoManager interface compliance 290 290 - func TestMockOpenBaoManagerInterface(t *testing.T) { 291 291 - var _ Manager = (*MockOpenBaoManager)(nil) 292 292 - var _ Stopper = (*MockOpenBaoManager)(nil) 293 293 - } 294 294 - 295 242 func TestMockOpenBaoManager_AddSecret(t *testing.T) { 296 243 tests := []struct { 297 244 name string ··· 563 510 assert.NoError(t, err) 564 511 } 565 512 566 566 - func TestMockOpenBaoManager_Stop(t *testing.T) { 567 567 - mock := NewMockOpenBaoManager() 568 568 - 569 569 - assert.False(t, mock.IsStopped()) 570 570 - 571 571 - mock.Stop() 572 572 - 573 573 - assert.True(t, mock.IsStopped()) 574 574 - } 575 575 - 576 513 func TestMockOpenBaoManager_Integration(t *testing.T) { 577 514 tests := []struct { 578 515 name string ··· 628 565 }) 629 566 } 630 567 } 568 568 + 569 569 + func TestOpenBaoManager_ProxyConfiguration(t *testing.T) { 570 570 + tests := []struct { 571 571 + name string 572 572 + proxyAddr string 573 573 + description string 574 574 + }{ 575 575 + { 576 576 + name: "default_localhost", 577 577 + proxyAddr: "http://127.0.0.1:8200", 578 578 + description: "Should connect to default localhost proxy", 579 579 + }, 580 580 + { 581 581 + name: "custom_host", 582 582 + proxyAddr: "http://bao-proxy:8200", 583 583 + description: "Should connect to custom proxy host", 584 584 + }, 585 585 + { 586 586 + name: "https_proxy", 587 587 + proxyAddr: "https://127.0.0.1:8200", 588 588 + description: "Should connect to HTTPS proxy", 589 589 + }, 590 590 + } 591 591 + 592 592 + for _, tt := range tests { 593 593 + t.Run(tt.name, func(t *testing.T) { 594 594 + t.Log("Testing scenario:", tt.description) 595 595 + logger := slog.New(slog.NewTextHandler(os.Stderr, nil)) 596 596 + 597 597 + // All these will fail because no real proxy is running 598 598 + // but we can test that the configuration is properly accepted 599 599 + manager, err := NewOpenBaoManager(tt.proxyAddr, logger) 600 600 + assert.Error(t, err) // Expected because no real proxy 601 601 + assert.Nil(t, manager) 602 602 + assert.Contains(t, err.Error(), "failed to connect to bao proxy") 603 603 + }) 604 604 + } 605 605 + }

+13 -6

spindle/secrets/policy.hcl

··· 1 1 - # KV v2 data operations 2 2 - path "spindle/data/*" { 1 1 + # Allow full access to the spindle KV mount 2 2 + path "spindle/*" { 3 3 capabilities = ["create", "read", "update", "delete", "list"] 4 4 } 5 5 6 6 - # KV v2 metadata operations (needed for listing) 6 6 + path "spindle/data/*" { 7 7 + capabilities = ["create", "read", "update", "delete"] 8 8 + } 9 9 + 7 10 path "spindle/metadata/*" { 8 11 capabilities = ["list", "read", "delete"] 9 12 } 10 13 11 11 - # Root path access (needed for mount-level operations) 12 12 - path "spindle/*" { 13 13 - capabilities = ["list"] 14 14 + # Allow listing mounts (for connection testing) 15 15 + path "sys/mounts" { 16 16 + capabilities = ["read"] 14 17 } 15 18 19 19 + # Allow token self-lookup (for health checks) 20 20 + path "auth/token/lookup-self" { 21 21 + capabilities = ["read"] 22 22 + }

+1 -1

spindle/secrets/sqlite.go

··· 24 24 } 25 25 26 26 func NewSQLiteManager(dbPath string, opts ...SqliteManagerOpt) (*SqliteManager, error) { 27 27 - db, err := sql.Open("sqlite3", dbPath) 27 27 + db, err := sql.Open("sqlite3", dbPath+"?_foreign_keys=1") 28 28 if err != nil { 29 29 return nil, fmt.Errorf("failed to open sqlite database: %w", err) 30 30 }

+68 -30

spindle/server.go

··· 20 20 "tangled.sh/tangled.sh/core/spindle/config" 21 21 "tangled.sh/tangled.sh/core/spindle/db" 22 22 "tangled.sh/tangled.sh/core/spindle/engine" 23 23 + "tangled.sh/tangled.sh/core/spindle/engines/nixery" 23 24 "tangled.sh/tangled.sh/core/spindle/models" 24 25 "tangled.sh/tangled.sh/core/spindle/queue" 25 26 "tangled.sh/tangled.sh/core/spindle/secrets" 26 27 "tangled.sh/tangled.sh/core/spindle/xrpc" 28 28 + "tangled.sh/tangled.sh/core/xrpc/serviceauth" 27 29 ) 28 30 29 31 //go:embed motd ··· 39 41 e *rbac.Enforcer 40 42 l *slog.Logger 41 43 n *notifier.Notifier 42 42 - eng *engine.Engine 44 44 + engs map[string]models.Engine 43 45 jq *queue.Queue 44 46 cfg *config.Config 45 47 ks *eventconsumer.Consumer ··· 71 73 var vault secrets.Manager 72 74 switch cfg.Server.Secrets.Provider { 73 75 case "openbao": 74 74 - if cfg.Server.Secrets.OpenBao.Addr == "" { 75 75 - return fmt.Errorf("openbao address is required when using openbao secrets provider") 76 76 - } 77 77 - if cfg.Server.Secrets.OpenBao.RoleID == "" { 78 78 - return fmt.Errorf("openbao role_id is required when using openbao secrets provider") 79 79 - } 80 80 - if cfg.Server.Secrets.OpenBao.SecretID == "" { 81 81 - return fmt.Errorf("openbao secret_id is required when using openbao secrets provider") 76 76 + if cfg.Server.Secrets.OpenBao.ProxyAddr == "" { 77 77 + return fmt.Errorf("openbao proxy address is required when using openbao secrets provider") 82 78 } 83 79 vault, err = secrets.NewOpenBaoManager( 84 84 - cfg.Server.Secrets.OpenBao.Addr, 85 85 - cfg.Server.Secrets.OpenBao.RoleID, 86 86 - cfg.Server.Secrets.OpenBao.SecretID, 80 80 + cfg.Server.Secrets.OpenBao.ProxyAddr, 87 81 logger, 88 82 secrets.WithMountPath(cfg.Server.Secrets.OpenBao.Mount), 89 83 ) 90 84 if err != nil { 91 85 return fmt.Errorf("failed to setup openbao secrets provider: %w", err) 92 86 } 93 93 - logger.Info("using openbao secrets provider", "address", cfg.Server.Secrets.OpenBao.Addr, "mount", cfg.Server.Secrets.OpenBao.Mount) 87 87 + logger.Info("using openbao secrets provider", "proxy_address", cfg.Server.Secrets.OpenBao.ProxyAddr, "mount", cfg.Server.Secrets.OpenBao.Mount) 94 88 case "sqlite", "": 95 89 vault, err = secrets.NewSQLiteManager(cfg.Server.DBPath, secrets.WithTableName("secrets")) 96 90 if err != nil { ··· 101 95 return fmt.Errorf("unknown secrets provider: %s", cfg.Server.Secrets.Provider) 102 96 } 103 97 104 104 - eng, err := engine.New(ctx, cfg, d, &n, vault) 98 98 + nixeryEng, err := nixery.New(ctx, cfg) 105 99 if err != nil { 106 100 return err 107 101 } 108 102 109 109 - jq := queue.NewQueue(100, 2) 103 103 + jq := queue.NewQueue(cfg.Server.QueueSize, cfg.Server.MaxJobCount) 104 104 + logger.Info("initialized queue", "queueSize", cfg.Server.QueueSize, "numWorkers", cfg.Server.MaxJobCount) 110 105 111 106 collections := []string{ 112 107 tangled.SpindleMemberNSID, 113 108 tangled.RepoNSID, 109 109 + tangled.RepoCollaboratorNSID, 114 110 } 115 111 jc, err := jetstream.NewJetstreamClient(cfg.Server.JetstreamEndpoint, "spindle", collections, nil, logger, d, true, true) 116 112 if err != nil { ··· 118 114 } 119 115 jc.AddDid(cfg.Server.Owner) 120 116 117 117 + // Check if the spindle knows about any Dids; 118 118 + dids, err := d.GetAllDids() 119 119 + if err != nil { 120 120 + return fmt.Errorf("failed to get all dids: %w", err) 121 121 + } 122 122 + for _, d := range dids { 123 123 + jc.AddDid(d) 124 124 + } 125 125 + 121 126 resolver := idresolver.DefaultResolver() 122 127 123 128 spindle := Spindle{ ··· 126 131 db: d, 127 132 l: logger, 128 133 n: &n, 129 129 - eng: eng, 134 134 + engs: map[string]models.Engine{"nixery": nixeryEng}, 130 135 jq: jq, 131 136 cfg: cfg, 132 137 res: resolver, ··· 198 203 w.Write(motd) 199 204 }) 200 205 mux.HandleFunc("/events", s.Events) 201 201 - mux.HandleFunc("/owner", func(w http.ResponseWriter, r *http.Request) { 202 202 - w.Write([]byte(s.cfg.Server.Owner)) 203 203 - }) 204 206 mux.HandleFunc("/logs/{knot}/{rkey}/{name}", s.Logs) 205 207 206 208 mux.Mount("/xrpc", s.XrpcRouter()) ··· 210 212 func (s *Spindle) XrpcRouter() http.Handler { 211 213 logger := s.l.With("route", "xrpc") 212 214 215 215 + serviceAuth := serviceauth.NewServiceAuth(s.l, s.res, s.cfg.Server.Did().String()) 216 216 + 213 217 x := xrpc.Xrpc{ 214 214 - Logger: logger, 215 215 - Db: s.db, 216 216 - Enforcer: s.e, 217 217 - Engine: s.eng, 218 218 - Config: s.cfg, 219 219 - Resolver: s.res, 220 220 - Vault: s.vault, 218 218 + Logger: logger, 219 219 + Db: s.db, 220 220 + Enforcer: s.e, 221 221 + Engines: s.engs, 222 222 + Config: s.cfg, 223 223 + Resolver: s.res, 224 224 + Vault: s.vault, 225 225 + ServiceAuth: serviceAuth, 221 226 } 222 227 223 228 return x.Router() ··· 240 245 return fmt.Errorf("no repo data found") 241 246 } 242 247 248 248 + if src.Key() != tpl.TriggerMetadata.Repo.Knot { 249 249 + return fmt.Errorf("repo knot does not match event source: %s != %s", src.Key(), tpl.TriggerMetadata.Repo.Knot) 250 250 + } 251 251 + 243 252 // filter by repos 244 253 _, err = s.db.GetRepo( 245 254 tpl.TriggerMetadata.Repo.Knot, ··· 255 264 Rkey: msg.Rkey, 256 265 } 257 266 267 267 + workflows := make(map[models.Engine][]models.Workflow) 268 268 + 258 269 for _, w := range tpl.Workflows { 259 270 if w != nil { 260 260 - err := s.db.StatusPending(models.WorkflowId{ 271 271 + if _, ok := s.engs[w.Engine]; !ok { 272 272 + err = s.db.StatusFailed(models.WorkflowId{ 273 273 + PipelineId: pipelineId, 274 274 + Name: w.Name, 275 275 + }, fmt.Sprintf("unknown engine %#v", w.Engine), -1, s.n) 276 276 + if err != nil { 277 277 + return err 278 278 + } 279 279 + 280 280 + continue 281 281 + } 282 282 + 283 283 + eng := s.engs[w.Engine] 284 284 + 285 285 + if _, ok := workflows[eng]; !ok { 286 286 + workflows[eng] = []models.Workflow{} 287 287 + } 288 288 + 289 289 + ewf, err := s.engs[w.Engine].InitWorkflow(*w, tpl) 290 290 + if err != nil { 291 291 + return err 292 292 + } 293 293 + 294 294 + workflows[eng] = append(workflows[eng], *ewf) 295 295 + 296 296 + err = s.db.StatusPending(models.WorkflowId{ 261 297 PipelineId: pipelineId, 262 298 Name: w.Name, 263 299 }, s.n) ··· 266 302 } 267 303 } 268 304 } 269 269 - 270 270 - spl := models.ToPipeline(tpl, *s.cfg) 271 305 272 306 ok := s.jq.Enqueue(queue.Job{ 273 307 Run: func() error { 274 274 - s.eng.StartWorkflows(ctx, spl, pipelineId) 308 308 + engine.StartWorkflows(s.l, s.vault, s.cfg, s.db, s.n, ctx, &models.Pipeline{ 309 309 + RepoOwner: tpl.TriggerMetadata.Repo.Did, 310 310 + RepoName: tpl.TriggerMetadata.Repo.Repo, 311 311 + Workflows: workflows, 312 312 + }, pipelineId) 275 313 return nil 276 314 }, 277 315 OnFail: func(jobError error) {

+32 -2

spindle/stream.go

··· 6 6 "fmt" 7 7 "io" 8 8 "net/http" 9 9 + "os" 9 10 "strconv" 10 11 "time" 11 12 12 12 - "tangled.sh/tangled.sh/core/spindle/engine" 13 13 "tangled.sh/tangled.sh/core/spindle/models" 14 14 15 15 "github.com/go-chi/chi/v5" ··· 143 143 } 144 144 isFinished := models.StatusKind(status.Status).IsFinish() 145 145 146 146 - filePath := engine.LogFilePath(s.cfg.Pipelines.LogDir, wid) 146 146 + filePath := models.LogFilePath(s.cfg.Server.LogDir, wid) 147 147 + 148 148 + if status.Status == models.StatusKindFailed.String() && status.Error != nil { 149 149 + if _, err := os.Stat(filePath); os.IsNotExist(err) { 150 150 + msgs := []models.LogLine{ 151 151 + { 152 152 + Kind: models.LogKindControl, 153 153 + Content: "", 154 154 + StepId: 0, 155 155 + StepKind: models.StepKindUser, 156 156 + }, 157 157 + { 158 158 + Kind: models.LogKindData, 159 159 + Content: *status.Error, 160 160 + }, 161 161 + } 162 162 + 163 163 + for _, msg := range msgs { 164 164 + b, err := json.Marshal(msg) 165 165 + if err != nil { 166 166 + return err 167 167 + } 168 168 + 169 169 + if err := conn.WriteMessage(websocket.TextMessage, b); err != nil { 170 170 + return fmt.Errorf("failed to write to websocket: %w", err) 171 171 + } 172 172 + } 173 173 + 174 174 + return nil 175 175 + } 176 176 + } 147 177 148 178 config := tail.Config{ 149 179 Follow: !isFinished,

+11 -10

spindle/xrpc/add_secret.go

··· 13 13 "tangled.sh/tangled.sh/core/api/tangled" 14 14 "tangled.sh/tangled.sh/core/rbac" 15 15 "tangled.sh/tangled.sh/core/spindle/secrets" 16 16 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 16 17 ) 17 18 18 19 func (x *Xrpc) AddSecret(w http.ResponseWriter, r *http.Request) { 19 20 l := x.Logger 20 20 - fail := func(e XrpcError) { 21 21 + fail := func(e xrpcerr.XrpcError) { 21 22 l.Error("failed", "kind", e.Tag, "error", e.Message) 22 23 writeError(w, e, http.StatusBadRequest) 23 24 } 24 25 25 26 actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 26 27 if !ok { 27 27 - fail(MissingActorDidError) 28 28 + fail(xrpcerr.MissingActorDidError) 28 29 return 29 30 } 30 31 31 32 var data tangled.RepoAddSecret_Input 32 33 if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 33 33 - fail(GenericError(err)) 34 34 + fail(xrpcerr.GenericError(err)) 34 35 return 35 36 } 36 37 37 38 if err := secrets.ValidateKey(data.Key); err != nil { 38 38 - fail(GenericError(err)) 39 39 + fail(xrpcerr.GenericError(err)) 39 40 return 40 41 } 41 42 42 43 // unfortunately we have to resolve repo-at here 43 44 repoAt, err := syntax.ParseATURI(data.Repo) 44 45 if err != nil { 45 45 - fail(InvalidRepoError(data.Repo)) 46 46 + fail(xrpcerr.InvalidRepoError(data.Repo)) 46 47 return 47 48 } 48 49 49 50 // resolve this aturi to extract the repo record 50 51 ident, err := x.Resolver.ResolveIdent(r.Context(), repoAt.Authority().String()) 51 52 if err != nil || ident.Handle.IsInvalidHandle() { 52 52 - fail(GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 53 53 + fail(xrpcerr.GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 53 54 return 54 55 } 55 56 56 57 xrpcc := xrpc.Client{Host: ident.PDSEndpoint()} 57 58 resp, err := atproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 58 59 if err != nil { 59 59 - fail(GenericError(err)) 60 60 + fail(xrpcerr.GenericError(err)) 60 61 return 61 62 } 62 63 63 64 repo := resp.Value.Val.(*tangled.Repo) 64 65 didPath, err := securejoin.SecureJoin(repo.Owner, repo.Name) 65 66 if err != nil { 66 66 - fail(GenericError(err)) 67 67 + fail(xrpcerr.GenericError(err)) 67 68 return 68 69 } 69 70 70 71 if ok, err := x.Enforcer.IsSettingsAllowed(actorDid.String(), rbac.ThisServer, didPath); !ok || err != nil { 71 72 l.Error("insufficent permissions", "did", actorDid.String()) 72 72 - writeError(w, AccessControlError(actorDid.String()), http.StatusUnauthorized) 73 73 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 73 74 return 74 75 } 75 76 ··· 83 84 err = x.Vault.AddSecret(r.Context(), secret) 84 85 if err != nil { 85 86 l.Error("failed to add secret to vault", "did", actorDid.String(), "err", err) 86 86 - writeError(w, GenericError(err), http.StatusInternalServerError) 87 87 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 87 88 return 88 89 } 89 90

+10 -9

spindle/xrpc/list_secrets.go

··· 13 13 "tangled.sh/tangled.sh/core/api/tangled" 14 14 "tangled.sh/tangled.sh/core/rbac" 15 15 "tangled.sh/tangled.sh/core/spindle/secrets" 16 16 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 16 17 ) 17 18 18 19 func (x *Xrpc) ListSecrets(w http.ResponseWriter, r *http.Request) { 19 20 l := x.Logger 20 20 - fail := func(e XrpcError) { 21 21 + fail := func(e xrpcerr.XrpcError) { 21 22 l.Error("failed", "kind", e.Tag, "error", e.Message) 22 23 writeError(w, e, http.StatusBadRequest) 23 24 } 24 25 25 26 actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 26 27 if !ok { 27 27 - fail(MissingActorDidError) 28 28 + fail(xrpcerr.MissingActorDidError) 28 29 return 29 30 } 30 31 31 32 repoParam := r.URL.Query().Get("repo") 32 33 if repoParam == "" { 33 33 - fail(GenericError(fmt.Errorf("empty params"))) 34 34 + fail(xrpcerr.GenericError(fmt.Errorf("empty params"))) 34 35 return 35 36 } 36 37 37 38 // unfortunately we have to resolve repo-at here 38 39 repoAt, err := syntax.ParseATURI(repoParam) 39 40 if err != nil { 40 40 - fail(InvalidRepoError(repoParam)) 41 41 + fail(xrpcerr.InvalidRepoError(repoParam)) 41 42 return 42 43 } 43 44 44 45 // resolve this aturi to extract the repo record 45 46 ident, err := x.Resolver.ResolveIdent(r.Context(), repoAt.Authority().String()) 46 47 if err != nil || ident.Handle.IsInvalidHandle() { 47 47 - fail(GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 48 48 + fail(xrpcerr.GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 48 49 return 49 50 } 50 51 51 52 xrpcc := xrpc.Client{Host: ident.PDSEndpoint()} 52 53 resp, err := atproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 53 54 if err != nil { 54 54 - fail(GenericError(err)) 55 55 + fail(xrpcerr.GenericError(err)) 55 56 return 56 57 } 57 58 58 59 repo := resp.Value.Val.(*tangled.Repo) 59 60 didPath, err := securejoin.SecureJoin(repo.Owner, repo.Name) 60 61 if err != nil { 61 61 - fail(GenericError(err)) 62 62 + fail(xrpcerr.GenericError(err)) 62 63 return 63 64 } 64 65 65 66 if ok, err := x.Enforcer.IsSettingsAllowed(actorDid.String(), rbac.ThisServer, didPath); !ok || err != nil { 66 67 l.Error("insufficent permissions", "did", actorDid.String()) 67 67 - writeError(w, AccessControlError(actorDid.String()), http.StatusUnauthorized) 68 68 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 68 69 return 69 70 } 70 71 71 72 ls, err := x.Vault.GetSecretsLocked(r.Context(), secrets.DidSlashRepo(didPath)) 72 73 if err != nil { 73 74 l.Error("failed to get secret from vault", "did", actorDid.String(), "err", err) 74 74 - writeError(w, GenericError(err), http.StatusInternalServerError) 75 75 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 75 76 return 76 77 } 77 78

+31

spindle/xrpc/owner.go

··· 1 1 + package xrpc 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "net/http" 6 6 + 7 7 + "tangled.sh/tangled.sh/core/api/tangled" 8 8 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 9 9 + ) 10 10 + 11 11 + func (x *Xrpc) Owner(w http.ResponseWriter, r *http.Request) { 12 12 + owner := x.Config.Server.Owner 13 13 + if owner == "" { 14 14 + writeError(w, xrpcerr.OwnerNotFoundError, http.StatusInternalServerError) 15 15 + return 16 16 + } 17 17 + 18 18 + response := tangled.Owner_Output{ 19 19 + Owner: owner, 20 20 + } 21 21 + 22 22 + w.Header().Set("Content-Type", "application/json") 23 23 + if err := json.NewEncoder(w).Encode(response); err != nil { 24 24 + x.Logger.Error("failed to encode response", "error", err) 25 25 + writeError(w, xrpcerr.NewXrpcError( 26 26 + xrpcerr.WithTag("InternalServerError"), 27 27 + xrpcerr.WithMessage("failed to encode response"), 28 28 + ), http.StatusInternalServerError) 29 29 + return 30 30 + } 31 31 + }

+10 -9

spindle/xrpc/remove_secret.go

··· 12 12 "tangled.sh/tangled.sh/core/api/tangled" 13 13 "tangled.sh/tangled.sh/core/rbac" 14 14 "tangled.sh/tangled.sh/core/spindle/secrets" 15 15 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 15 16 ) 16 17 17 18 func (x *Xrpc) RemoveSecret(w http.ResponseWriter, r *http.Request) { 18 19 l := x.Logger 19 19 - fail := func(e XrpcError) { 20 20 + fail := func(e xrpcerr.XrpcError) { 20 21 l.Error("failed", "kind", e.Tag, "error", e.Message) 21 22 writeError(w, e, http.StatusBadRequest) 22 23 } 23 24 24 25 actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 25 26 if !ok { 26 26 - fail(MissingActorDidError) 27 27 + fail(xrpcerr.MissingActorDidError) 27 28 return 28 29 } 29 30 30 31 var data tangled.RepoRemoveSecret_Input 31 32 if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 32 32 - fail(GenericError(err)) 33 33 + fail(xrpcerr.GenericError(err)) 33 34 return 34 35 } 35 36 36 37 // unfortunately we have to resolve repo-at here 37 38 repoAt, err := syntax.ParseATURI(data.Repo) 38 39 if err != nil { 39 39 - fail(InvalidRepoError(data.Repo)) 40 40 + fail(xrpcerr.InvalidRepoError(data.Repo)) 40 41 return 41 42 } 42 43 43 44 // resolve this aturi to extract the repo record 44 45 ident, err := x.Resolver.ResolveIdent(r.Context(), repoAt.Authority().String()) 45 46 if err != nil || ident.Handle.IsInvalidHandle() { 46 46 - fail(GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 47 47 + fail(xrpcerr.GenericError(fmt.Errorf("failed to resolve handle: %w", err))) 47 48 return 48 49 } 49 50 50 51 xrpcc := xrpc.Client{Host: ident.PDSEndpoint()} 51 52 resp, err := atproto.RepoGetRecord(r.Context(), &xrpcc, "", tangled.RepoNSID, repoAt.Authority().String(), repoAt.RecordKey().String()) 52 53 if err != nil { 53 53 - fail(GenericError(err)) 54 54 + fail(xrpcerr.GenericError(err)) 54 55 return 55 56 } 56 57 57 58 repo := resp.Value.Val.(*tangled.Repo) 58 59 didPath, err := securejoin.SecureJoin(repo.Owner, repo.Name) 59 60 if err != nil { 60 60 - fail(GenericError(err)) 61 61 + fail(xrpcerr.GenericError(err)) 61 62 return 62 63 } 63 64 64 65 if ok, err := x.Enforcer.IsSettingsAllowed(actorDid.String(), rbac.ThisServer, didPath); !ok || err != nil { 65 66 l.Error("insufficent permissions", "did", actorDid.String()) 66 66 - writeError(w, AccessControlError(actorDid.String()), http.StatusUnauthorized) 67 67 + writeError(w, xrpcerr.AccessControlError(actorDid.String()), http.StatusUnauthorized) 67 68 return 68 69 } 69 70 ··· 74 75 err = x.Vault.RemoveSecret(r.Context(), secret) 75 76 if err != nil { 76 77 l.Error("failed to remove secret from vault", "did", actorDid.String(), "err", err) 77 77 - writeError(w, GenericError(err), http.StatusInternalServerError) 78 78 + writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 78 79 return 79 80 } 80 81

+20 -108

spindle/xrpc/xrpc.go

··· 1 1 package xrpc 2 2 3 3 import ( 4 4 - "context" 5 4 _ "embed" 6 5 "encoding/json" 7 7 - "fmt" 8 6 "log/slog" 9 7 "net/http" 10 10 - "strings" 11 8 12 12 - "github.com/bluesky-social/indigo/atproto/auth" 13 9 "github.com/go-chi/chi/v5" 14 10 15 11 "tangled.sh/tangled.sh/core/api/tangled" ··· 17 13 "tangled.sh/tangled.sh/core/rbac" 18 14 "tangled.sh/tangled.sh/core/spindle/config" 19 15 "tangled.sh/tangled.sh/core/spindle/db" 20 20 - "tangled.sh/tangled.sh/core/spindle/engine" 16 16 + "tangled.sh/tangled.sh/core/spindle/models" 21 17 "tangled.sh/tangled.sh/core/spindle/secrets" 18 18 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 19 19 + "tangled.sh/tangled.sh/core/xrpc/serviceauth" 22 20 ) 23 21 24 22 const ActorDid string = "ActorDid" 25 23 26 24 type Xrpc struct { 27 27 - Logger *slog.Logger 28 28 - Db *db.DB 29 29 - Enforcer *rbac.Enforcer 30 30 - Engine *engine.Engine 31 31 - Config *config.Config 32 32 - Resolver *idresolver.Resolver 33 33 - Vault secrets.Manager 25 25 + Logger *slog.Logger 26 26 + Db *db.DB 27 27 + Enforcer *rbac.Enforcer 28 28 + Engines map[string]models.Engine 29 29 + Config *config.Config 30 30 + Resolver *idresolver.Resolver 31 31 + Vault secrets.Manager 32 32 + ServiceAuth *serviceauth.ServiceAuth 34 33 } 35 34 36 35 func (x *Xrpc) Router() http.Handler { 37 36 r := chi.NewRouter() 38 37 39 39 - r.With(x.VerifyServiceAuth).Post("/"+tangled.RepoAddSecretNSID, x.AddSecret) 40 40 - r.With(x.VerifyServiceAuth).Post("/"+tangled.RepoRemoveSecretNSID, x.RemoveSecret) 41 41 - r.With(x.VerifyServiceAuth).Get("/"+tangled.RepoListSecretsNSID, x.ListSecrets) 42 42 - 43 43 - return r 44 44 - } 45 45 - 46 46 - func (x *Xrpc) VerifyServiceAuth(next http.Handler) http.Handler { 47 47 - return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 48 48 - l := x.Logger.With("url", r.URL) 49 49 - 50 50 - token := r.Header.Get("Authorization") 51 51 - token = strings.TrimPrefix(token, "Bearer ") 52 52 - 53 53 - s := auth.ServiceAuthValidator{ 54 54 - Audience: x.Config.Server.Did().String(), 55 55 - Dir: x.Resolver.Directory(), 56 56 - } 57 57 - 58 58 - did, err := s.Validate(r.Context(), token, nil) 59 59 - if err != nil { 60 60 - l.Error("signature verification failed", "err", err) 61 61 - writeError(w, AuthError(err), http.StatusForbidden) 62 62 - return 63 63 - } 64 64 - 65 65 - r = r.WithContext( 66 66 - context.WithValue(r.Context(), ActorDid, did), 67 67 - ) 38 38 + r.Group(func(r chi.Router) { 39 39 + r.Use(x.ServiceAuth.VerifyServiceAuth) 68 40 69 69 - next.ServeHTTP(w, r) 41 41 + r.Post("/"+tangled.RepoAddSecretNSID, x.AddSecret) 42 42 + r.Post("/"+tangled.RepoRemoveSecretNSID, x.RemoveSecret) 43 43 + r.Get("/"+tangled.RepoListSecretsNSID, x.ListSecrets) 70 44 }) 71 71 - } 72 72 - 73 73 - type XrpcError struct { 74 74 - Tag string `json:"error"` 75 75 - Message string `json:"message"` 76 76 - } 77 45 78 78 - func NewXrpcError(opts ...ErrOpt) XrpcError { 79 79 - x := XrpcError{} 80 80 - for _, o := range opts { 81 81 - o(&x) 82 82 - } 83 83 - 84 84 - return x 85 85 - } 86 86 - 87 87 - type ErrOpt = func(xerr *XrpcError) 88 88 - 89 89 - func WithTag(tag string) ErrOpt { 90 90 - return func(xerr *XrpcError) { 91 91 - xerr.Tag = tag 92 92 - } 93 93 - } 94 94 - 95 95 - func WithMessage[S ~string](s S) ErrOpt { 96 96 - return func(xerr *XrpcError) { 97 97 - xerr.Message = string(s) 98 98 - } 99 99 - } 100 100 - 101 101 - func WithError(e error) ErrOpt { 102 102 - return func(xerr *XrpcError) { 103 103 - xerr.Message = e.Error() 104 104 - } 105 105 - } 106 106 - 107 107 - var MissingActorDidError = NewXrpcError( 108 108 - WithTag("MissingActorDid"), 109 109 - WithMessage("actor DID not supplied"), 110 110 - ) 111 111 - 112 112 - var AuthError = func(err error) XrpcError { 113 113 - return NewXrpcError( 114 114 - WithTag("Auth"), 115 115 - WithError(fmt.Errorf("signature verification failed: %w", err)), 116 116 - ) 117 117 - } 118 118 - 119 119 - var InvalidRepoError = func(r string) XrpcError { 120 120 - return NewXrpcError( 121 121 - WithTag("InvalidRepo"), 122 122 - WithError(fmt.Errorf("supplied at-uri is not a repo: %s", r)), 123 123 - ) 124 124 - } 125 125 - 126 126 - func GenericError(err error) XrpcError { 127 127 - return NewXrpcError( 128 128 - WithTag("Generic"), 129 129 - WithError(err), 130 130 - ) 131 131 - } 46 46 + // service query endpoints (no auth required) 47 47 + r.Get("/"+tangled.OwnerNSID, x.Owner) 132 48 133 133 - var AccessControlError = func(d string) XrpcError { 134 134 - return NewXrpcError( 135 135 - WithTag("AccessControl"), 136 136 - WithError(fmt.Errorf("DID does not have sufficent access permissions for this operation: %s", d)), 137 137 - ) 49 49 + return r 138 50 } 139 51 140 52 // this is slightly different from http_util::write_error to follow the spec: 141 53 // 142 54 // the json object returned must include an "error" and a "message" 143 143 - func writeError(w http.ResponseWriter, e XrpcError, status int) { 55 55 + func writeError(w http.ResponseWriter, e xrpcerr.XrpcError, status int) { 144 56 w.Header().Set("Content-Type", "application/json") 145 57 w.WriteHeader(status) 146 58 json.NewEncoder(w).Encode(e)

+1 -3

tailwind.config.js

··· 36 36 css: { 37 37 maxWidth: "none", 38 38 pre: { 39 39 - backgroundColor: colors.gray[100], 40 40 - color: colors.black, 41 41 - "@apply font-normal text-black bg-gray-100 dark:bg-gray-900 dark:text-gray-300 dark:border-gray-700 dark:border": {}, 39 39 + "@apply font-normal text-black bg-gray-50 dark:bg-gray-900 dark:text-gray-300 dark:border-gray-700 border": {}, 42 40 }, 43 41 code: { 44 42 "@apply font-normal font-mono p-1 rounded text-black bg-gray-100 dark:bg-gray-900 dark:text-gray-300 dark:border-gray-700": {},

test_file

This is a binary file and will not be displayed.

+62 -41

workflow/compile.go

··· 1 1 package workflow 2 2 3 3 import ( 4 4 + "errors" 4 5 "fmt" 5 6 6 7 "tangled.sh/tangled.sh/core/api/tangled" 7 8 ) 8 9 10 10 + type RawWorkflow struct { 11 11 + Name string 12 12 + Contents []byte 13 13 + } 14 14 + 15 15 + type RawPipeline = []RawWorkflow 16 16 + 9 17 type Compiler struct { 10 18 Trigger tangled.Pipeline_TriggerMetadata 11 19 Diagnostics Diagnostics 12 20 } 13 21 14 22 type Diagnostics struct { 15 15 - Errors []error 23 23 + Errors []Error 16 24 Warnings []Warning 17 25 } 18 26 27 27 + func (d *Diagnostics) IsEmpty() bool { 28 28 + return len(d.Errors) == 0 && len(d.Warnings) == 0 29 29 + } 30 30 + 19 31 func (d *Diagnostics) Combine(o Diagnostics) { 20 32 d.Errors = append(d.Errors, o.Errors...) 21 33 d.Warnings = append(d.Warnings, o.Warnings...) ··· 25 37 d.Warnings = append(d.Warnings, Warning{path, kind, reason}) 26 38 } 27 39 28 28 - func (d *Diagnostics) AddError(err error) { 29 29 - d.Errors = append(d.Errors, err) 40 40 + func (d *Diagnostics) AddError(path string, err error) { 41 41 + d.Errors = append(d.Errors, Error{path, err}) 30 42 } 31 43 32 44 func (d Diagnostics) IsErr() bool { 33 45 return len(d.Errors) != 0 34 46 } 35 47 48 48 + type Error struct { 49 49 + Path string 50 50 + Error error 51 51 + } 52 52 + 53 53 + func (e Error) String() string { 54 54 + return fmt.Sprintf("error: %s: %s", e.Path, e.Error.Error()) 55 55 + } 56 56 + 36 57 type Warning struct { 37 58 Path string 38 59 Type WarningKind 39 60 Reason string 40 61 } 41 62 63 63 + func (w Warning) String() string { 64 64 + return fmt.Sprintf("warning: %s: %s: %s", w.Path, w.Type, w.Reason) 65 65 + } 66 66 + 67 67 + var ( 68 68 + MissingEngine error = errors.New("missing engine") 69 69 + ) 70 70 + 42 71 type WarningKind string 43 72 44 73 var ( ··· 46 75 InvalidConfiguration WarningKind = "invalid configuration" 47 76 ) 48 77 78 78 + func (compiler *Compiler) Parse(p RawPipeline) Pipeline { 79 79 + var pp Pipeline 80 80 + 81 81 + for _, w := range p { 82 82 + wf, err := FromFile(w.Name, w.Contents) 83 83 + if err != nil { 84 84 + compiler.Diagnostics.AddError(w.Name, err) 85 85 + continue 86 86 + } 87 87 + 88 88 + pp = append(pp, wf) 89 89 + } 90 90 + 91 91 + return pp 92 92 + } 93 93 + 49 94 // convert a repositories' workflow files into a fully compiled pipeline that runners accept 50 95 func (compiler *Compiler) Compile(p Pipeline) tangled.Pipeline { 51 96 cp := tangled.Pipeline{ 52 97 TriggerMetadata: &compiler.Trigger, 53 98 } 54 99 55 55 - for _, w := range p { 56 56 - cw := compiler.compileWorkflow(w) 100 100 + for _, wf := range p { 101 101 + cw := compiler.compileWorkflow(wf) 57 102 58 58 - // empty workflows are not added to the pipeline 59 59 - if len(cw.Steps) == 0 { 103 103 + if cw == nil { 60 104 continue 61 105 } 62 106 63 63 - cp.Workflows = append(cp.Workflows, &cw) 107 107 + cp.Workflows = append(cp.Workflows, cw) 64 108 } 65 109 66 110 return cp 67 111 } 68 112 69 69 - func (compiler *Compiler) compileWorkflow(w Workflow) tangled.Pipeline_Workflow { 70 70 - cw := tangled.Pipeline_Workflow{} 113 113 + func (compiler *Compiler) compileWorkflow(w Workflow) *tangled.Pipeline_Workflow { 114 114 + cw := &tangled.Pipeline_Workflow{} 71 115 72 116 if !w.Match(compiler.Trigger) { 73 117 compiler.Diagnostics.AddWarning( ··· 75 119 WorkflowSkipped, 76 120 fmt.Sprintf("did not match trigger %s", compiler.Trigger.Kind), 77 121 ) 78 78 - return cw 79 79 - } 80 80 - 81 81 - if len(w.Steps) == 0 { 82 82 - compiler.Diagnostics.AddWarning( 83 83 - w.Name, 84 84 - WorkflowSkipped, 85 85 - "empty workflow", 86 86 - ) 87 87 - return cw 122 122 + return nil 88 123 } 89 124 90 125 // validate clone options 91 126 compiler.analyzeCloneOptions(w) 92 127 93 128 cw.Name = w.Name 94 94 - cw.Dependencies = w.Dependencies.AsRecord() 95 95 - for _, s := range w.Steps { 96 96 - step := tangled.Pipeline_Step{ 97 97 - Command: s.Command, 98 98 - Name: s.Name, 99 99 - } 100 100 - for k, v := range s.Environment { 101 101 - e := &tangled.Pipeline_Pair{ 102 102 - Key: k, 103 103 - Value: v, 104 104 - } 105 105 - step.Environment = append(step.Environment, e) 106 106 - } 107 107 - cw.Steps = append(cw.Steps, &step) 129 129 + 130 130 + if w.Engine == "" { 131 131 + compiler.Diagnostics.AddError(w.Name, MissingEngine) 132 132 + return nil 108 133 } 109 109 - for k, v := range w.Environment { 110 110 - e := &tangled.Pipeline_Pair{ 111 111 - Key: k, 112 112 - Value: v, 113 113 - } 114 114 - cw.Environment = append(cw.Environment, e) 115 115 - } 134 134 + 135 135 + cw.Engine = w.Engine 136 136 + cw.Raw = w.Raw 116 137 117 138 o := w.CloneOpts.AsRecord() 118 139 cw.Clone = &o

+23 -29

workflow/compile_test.go

··· 26 26 27 27 func TestCompileWorkflow_MatchingWorkflowWithSteps(t *testing.T) { 28 28 wf := Workflow{ 29 29 - Name: ".tangled/workflows/test.yml", 30 30 - When: when, 31 31 - Steps: []Step{ 32 32 - {Name: "Test", Command: "go test ./..."}, 33 33 - }, 29 29 + Name: ".tangled/workflows/test.yml", 30 30 + Engine: "nixery", 31 31 + When: when, 34 32 CloneOpts: CloneOpts{}, // default true 35 33 } 36 34 ··· 43 41 assert.False(t, c.Diagnostics.IsErr()) 44 42 } 45 43 46 46 - func TestCompileWorkflow_EmptySteps(t *testing.T) { 47 47 - wf := Workflow{ 48 48 - Name: ".tangled/workflows/empty.yml", 49 49 - When: when, 50 50 - Steps: []Step{}, // no steps 51 51 - } 52 52 - 53 53 - c := Compiler{Trigger: trigger} 54 54 - cp := c.Compile([]Workflow{wf}) 55 55 - 56 56 - assert.Len(t, cp.Workflows, 0) 57 57 - assert.Len(t, c.Diagnostics.Warnings, 1) 58 58 - assert.Equal(t, WorkflowSkipped, c.Diagnostics.Warnings[0].Type) 59 59 - } 60 60 - 61 44 func TestCompileWorkflow_TriggerMismatch(t *testing.T) { 62 45 wf := Workflow{ 63 63 - Name: ".tangled/workflows/mismatch.yml", 46 46 + Name: ".tangled/workflows/mismatch.yml", 47 47 + Engine: "nixery", 64 48 When: []Constraint{ 65 49 { 66 50 Event: []string{"push"}, 67 51 Branch: []string{"master"}, // different branch 68 52 }, 69 53 }, 70 70 - Steps: []Step{ 71 71 - {Name: "Lint", Command: "golint ./..."}, 72 72 - }, 73 54 } 74 55 75 56 c := Compiler{Trigger: trigger} ··· 82 63 83 64 func TestCompileWorkflow_CloneFalseWithShallowTrue(t *testing.T) { 84 65 wf := Workflow{ 85 85 - Name: ".tangled/workflows/clone_skip.yml", 86 86 - When: when, 87 87 - Steps: []Step{ 88 88 - {Name: "Skip", Command: "echo skip"}, 89 89 - }, 66 66 + Name: ".tangled/workflows/clone_skip.yml", 67 67 + Engine: "nixery", 68 68 + When: when, 90 69 CloneOpts: CloneOpts{ 91 70 Skip: true, 92 71 Depth: 1, ··· 101 80 assert.Len(t, c.Diagnostics.Warnings, 1) 102 81 assert.Equal(t, InvalidConfiguration, c.Diagnostics.Warnings[0].Type) 103 82 } 83 83 + 84 84 + func TestCompileWorkflow_MissingEngine(t *testing.T) { 85 85 + wf := Workflow{ 86 86 + Name: ".tangled/workflows/missing_engine.yml", 87 87 + When: when, 88 88 + Engine: "", 89 89 + } 90 90 + 91 91 + c := Compiler{Trigger: trigger} 92 92 + cp := c.Compile([]Workflow{wf}) 93 93 + 94 94 + assert.Len(t, cp.Workflows, 0) 95 95 + assert.Len(t, c.Diagnostics.Errors, 1) 96 96 + assert.Equal(t, MissingEngine, c.Diagnostics.Errors[0].Error) 97 97 + }

+6 -33

workflow/def.go

··· 24 24 25 25 // this is simply a structural representation of the workflow file 26 26 Workflow struct { 27 27 - Name string `yaml:"-"` // name of the workflow file 28 28 - When []Constraint `yaml:"when"` 29 29 - Dependencies Dependencies `yaml:"dependencies"` 30 30 - Steps []Step `yaml:"steps"` 31 31 - Environment map[string]string `yaml:"environment"` 32 32 - CloneOpts CloneOpts `yaml:"clone"` 27 27 + Name string `yaml:"-"` // name of the workflow file 28 28 + Engine string `yaml:"engine"` 29 29 + When []Constraint `yaml:"when"` 30 30 + CloneOpts CloneOpts `yaml:"clone"` 31 31 + Raw string `yaml:"-"` 33 32 } 34 33 35 34 Constraint struct { 36 35 Event StringList `yaml:"event"` 37 36 Branch StringList `yaml:"branch"` // this is optional, and only applied on "push" events 38 37 } 39 39 - 40 40 - Dependencies map[string][]string 41 38 42 39 CloneOpts struct { 43 40 Skip bool `yaml:"skip"` 44 41 Depth int `yaml:"depth"` 45 42 IncludeSubmodules bool `yaml:"submodules"` 46 46 - } 47 47 - 48 48 - Step struct { 49 49 - Name string `yaml:"name"` 50 50 - Command string `yaml:"command"` 51 51 - Environment map[string]string `yaml:"environment"` 52 43 } 53 44 54 45 StringList []string ··· 77 68 } 78 69 79 70 wf.Name = name 71 71 + wf.Raw = string(contents) 80 72 81 73 return wf, nil 82 74 } ··· 173 165 } 174 166 175 167 return errors.New("failed to unmarshal StringOrSlice") 176 176 - } 177 177 - 178 178 - // conversion utilities to atproto records 179 179 - func (d Dependencies) AsRecord() []*tangled.Pipeline_Dependency { 180 180 - var deps []*tangled.Pipeline_Dependency 181 181 - for registry, packages := range d { 182 182 - deps = append(deps, &tangled.Pipeline_Dependency{ 183 183 - Registry: registry, 184 184 - Packages: packages, 185 185 - }) 186 186 - } 187 187 - return deps 188 188 - } 189 189 - 190 190 - func (s Step) AsRecord() tangled.Pipeline_Step { 191 191 - return tangled.Pipeline_Step{ 192 192 - Command: s.Command, 193 193 - Name: s.Name, 194 194 - } 195 168 } 196 169 197 170 func (c CloneOpts) AsRecord() tangled.Pipeline_CloneOpts {

+1 -86

workflow/def_test.go

··· 10 10 yamlData := ` 11 11 when: 12 12 - event: ["push", "pull_request"] 13 13 - branch: ["main", "develop"] 14 14 - 15 15 - dependencies: 16 16 - nixpkgs: 17 17 - - go 18 18 - - git 19 19 - - curl 20 20 - 21 21 - steps: 22 22 - - name: "Test" 23 23 - command: | 24 24 - go test ./...` 13 13 + branch: ["main", "develop"]` 25 14 26 15 wf, err := FromFile("test.yml", []byte(yamlData)) 27 16 assert.NoError(t, err, "YAML should unmarshal without error") ··· 30 19 assert.ElementsMatch(t, []string{"main", "develop"}, wf.When[0].Branch) 31 20 assert.ElementsMatch(t, []string{"push", "pull_request"}, wf.When[0].Event) 32 21 33 33 - assert.Len(t, wf.Steps, 1) 34 34 - assert.Equal(t, "Test", wf.Steps[0].Name) 35 35 - assert.Equal(t, "go test ./...", wf.Steps[0].Command) 36 36 - 37 37 - pkgs, ok := wf.Dependencies["nixpkgs"] 38 38 - assert.True(t, ok, "`nixpkgs` should be present in dependencies") 39 39 - assert.ElementsMatch(t, []string{"go", "git", "curl"}, pkgs) 40 40 - 41 22 assert.False(t, wf.CloneOpts.Skip, "Skip should default to false") 42 23 } 43 24 44 44 - func TestUnmarshalCustomRegistry(t *testing.T) { 45 45 - yamlData := ` 46 46 - when: 47 47 - - event: push 48 48 - branch: main 49 49 - 50 50 - dependencies: 51 51 - git+https://tangled.sh/@oppi.li/tbsp: 52 52 - - tbsp 53 53 - git+https://git.peppe.rs/languages/statix: 54 54 - - statix 55 55 - 56 56 - steps: 57 57 - - name: "Check" 58 58 - command: | 59 59 - statix check` 60 60 - 61 61 - wf, err := FromFile("test.yml", []byte(yamlData)) 62 62 - assert.NoError(t, err, "YAML should unmarshal without error") 63 63 - 64 64 - assert.ElementsMatch(t, []string{"push"}, wf.When[0].Event) 65 65 - assert.ElementsMatch(t, []string{"main"}, wf.When[0].Branch) 66 66 - 67 67 - assert.ElementsMatch(t, []string{"tbsp"}, wf.Dependencies["git+https://tangled.sh/@oppi.li/tbsp"]) 68 68 - assert.ElementsMatch(t, []string{"statix"}, wf.Dependencies["git+https://git.peppe.rs/languages/statix"]) 69 69 - } 70 70 - 71 25 func TestUnmarshalCloneFalse(t *testing.T) { 72 26 yamlData := ` 73 27 when: ··· 75 29 76 30 clone: 77 31 skip: true 78 78 - 79 79 - dependencies: 80 80 - nixpkgs: 81 81 - - python3 82 82 - 83 83 - steps: 84 84 - - name: Notify 85 85 - command: | 86 86 - python3 ./notify.py 87 32 ` 88 33 89 34 wf, err := FromFile("test.yml", []byte(yamlData)) ··· 93 38 94 39 assert.True(t, wf.CloneOpts.Skip, "Skip should be false") 95 40 } 96 96 - 97 97 - func TestUnmarshalEnv(t *testing.T) { 98 98 - yamlData := ` 99 99 - when: 100 100 - - event: ["pull_request_close"] 101 101 - 102 102 - clone: 103 103 - skip: false 104 104 - 105 105 - environment: 106 106 - HOME: /home/foo bar/baz 107 107 - CGO_ENABLED: 1 108 108 - 109 109 - steps: 110 110 - - name: Something 111 111 - command: echo "hello" 112 112 - environment: 113 113 - FOO: bar 114 114 - BAZ: qux 115 115 - ` 116 116 - 117 117 - wf, err := FromFile("test.yml", []byte(yamlData)) 118 118 - assert.NoError(t, err) 119 119 - 120 120 - assert.Len(t, wf.Environment, 2) 121 121 - assert.Equal(t, "/home/foo bar/baz", wf.Environment["HOME"]) 122 122 - assert.Equal(t, "1", wf.Environment["CGO_ENABLED"]) 123 123 - assert.Equal(t, "bar", wf.Steps[0].Environment["FOO"]) 124 124 - assert.Equal(t, "qux", wf.Steps[0].Environment["BAZ"]) 125 125 - }

+125

xrpc/errors/errors.go

··· 1 1 + package errors 2 2 + 3 3 + import ( 4 4 + "encoding/json" 5 5 + "fmt" 6 6 + ) 7 7 + 8 8 + type XrpcError struct { 9 9 + Tag string `json:"error"` 10 10 + Message string `json:"message"` 11 11 + } 12 12 + 13 13 + func (x XrpcError) Error() string { 14 14 + if x.Message != "" { 15 15 + return fmt.Sprintf("%s: %s", x.Tag, x.Message) 16 16 + } 17 17 + return x.Tag 18 18 + } 19 19 + 20 20 + func NewXrpcError(opts ...ErrOpt) XrpcError { 21 21 + x := XrpcError{} 22 22 + for _, o := range opts { 23 23 + o(&x) 24 24 + } 25 25 + 26 26 + return x 27 27 + } 28 28 + 29 29 + type ErrOpt = func(xerr *XrpcError) 30 30 + 31 31 + func WithTag(tag string) ErrOpt { 32 32 + return func(xerr *XrpcError) { 33 33 + xerr.Tag = tag 34 34 + } 35 35 + } 36 36 + 37 37 + func WithMessage[S ~string](s S) ErrOpt { 38 38 + return func(xerr *XrpcError) { 39 39 + xerr.Message = string(s) 40 40 + } 41 41 + } 42 42 + 43 43 + func WithError(e error) ErrOpt { 44 44 + return func(xerr *XrpcError) { 45 45 + xerr.Message = e.Error() 46 46 + } 47 47 + } 48 48 + 49 49 + var MissingActorDidError = NewXrpcError( 50 50 + WithTag("MissingActorDid"), 51 51 + WithMessage("actor DID not supplied"), 52 52 + ) 53 53 + 54 54 + var OwnerNotFoundError = NewXrpcError( 55 55 + WithTag("OwnerNotFound"), 56 56 + WithMessage("owner not set for this service"), 57 57 + ) 58 58 + 59 59 + var RepoNotFoundError = NewXrpcError( 60 60 + WithTag("RepoNotFound"), 61 61 + WithMessage("failed to access repository"), 62 62 + ) 63 63 + 64 64 + var RefNotFoundError = NewXrpcError( 65 65 + WithTag("RefNotFound"), 66 66 + WithMessage("failed to access ref"), 67 67 + ) 68 68 + 69 69 + var AuthError = func(err error) XrpcError { 70 70 + return NewXrpcError( 71 71 + WithTag("Auth"), 72 72 + WithError(fmt.Errorf("signature verification failed: %w", err)), 73 73 + ) 74 74 + } 75 75 + 76 76 + var InvalidRepoError = func(r string) XrpcError { 77 77 + return NewXrpcError( 78 78 + WithTag("InvalidRepo"), 79 79 + WithError(fmt.Errorf("supplied at-uri is not a repo: %s", r)), 80 80 + ) 81 81 + } 82 82 + 83 83 + var GitError = func(e error) XrpcError { 84 84 + return NewXrpcError( 85 85 + WithTag("Git"), 86 86 + WithError(fmt.Errorf("git error: %w", e)), 87 87 + ) 88 88 + } 89 89 + 90 90 + var AccessControlError = func(d string) XrpcError { 91 91 + return NewXrpcError( 92 92 + WithTag("AccessControl"), 93 93 + WithError(fmt.Errorf("DID does not have sufficent access permissions for this operation: %s", d)), 94 94 + ) 95 95 + } 96 96 + 97 97 + var RepoExistsError = func(r string) XrpcError { 98 98 + return NewXrpcError( 99 99 + WithTag("RepoExists"), 100 100 + WithError(fmt.Errorf("repo already exists: %s", r)), 101 101 + ) 102 102 + } 103 103 + 104 104 + var RecordExistsError = func(r string) XrpcError { 105 105 + return NewXrpcError( 106 106 + WithTag("RecordExists"), 107 107 + WithError(fmt.Errorf("repo already exists: %s", r)), 108 108 + ) 109 109 + } 110 110 + 111 111 + func GenericError(err error) XrpcError { 112 112 + return NewXrpcError( 113 113 + WithTag("Generic"), 114 114 + WithError(err), 115 115 + ) 116 116 + } 117 117 + 118 118 + func Unmarshal(errStr string) (XrpcError, error) { 119 119 + var xerr XrpcError 120 120 + err := json.Unmarshal([]byte(errStr), &xerr) 121 121 + if err != nil { 122 122 + return XrpcError{}, fmt.Errorf("failed to unmarshal XrpcError: %w", err) 123 123 + } 124 124 + return xerr, nil 125 125 + }

+65

xrpc/serviceauth/service_auth.go

··· 1 1 + package serviceauth 2 2 + 3 3 + import ( 4 4 + "context" 5 5 + "encoding/json" 6 6 + "log/slog" 7 7 + "net/http" 8 8 + "strings" 9 9 + 10 10 + "github.com/bluesky-social/indigo/atproto/auth" 11 11 + "tangled.sh/tangled.sh/core/idresolver" 12 12 + xrpcerr "tangled.sh/tangled.sh/core/xrpc/errors" 13 13 + ) 14 14 + 15 15 + const ActorDid string = "ActorDid" 16 16 + 17 17 + type ServiceAuth struct { 18 18 + logger *slog.Logger 19 19 + resolver *idresolver.Resolver 20 20 + audienceDid string 21 21 + } 22 22 + 23 23 + func NewServiceAuth(logger *slog.Logger, resolver *idresolver.Resolver, audienceDid string) *ServiceAuth { 24 24 + return &ServiceAuth{ 25 25 + logger: logger, 26 26 + resolver: resolver, 27 27 + audienceDid: audienceDid, 28 28 + } 29 29 + } 30 30 + 31 31 + func (sa *ServiceAuth) VerifyServiceAuth(next http.Handler) http.Handler { 32 32 + return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { 33 33 + l := sa.logger.With("url", r.URL) 34 34 + 35 35 + token := r.Header.Get("Authorization") 36 36 + token = strings.TrimPrefix(token, "Bearer ") 37 37 + 38 38 + s := auth.ServiceAuthValidator{ 39 39 + Audience: sa.audienceDid, 40 40 + Dir: sa.resolver.Directory(), 41 41 + } 42 42 + 43 43 + did, err := s.Validate(r.Context(), token, nil) 44 44 + if err != nil { 45 45 + l.Error("signature verification failed", "err", err) 46 46 + writeError(w, xrpcerr.AuthError(err), http.StatusForbidden) 47 47 + return 48 48 + } 49 49 + 50 50 + r = r.WithContext( 51 51 + context.WithValue(r.Context(), ActorDid, did), 52 52 + ) 53 53 + 54 54 + next.ServeHTTP(w, r) 55 55 + }) 56 56 + } 57 57 + 58 58 + // this is slightly different from http_util::write_error to follow the spec: 59 59 + // 60 60 + // the json object returned must include an "error" and a "message" 61 61 + func writeError(w http.ResponseWriter, e xrpcerr.XrpcError, status int) { 62 62 + w.Header().Set("Content-Type", "application/json") 63 63 + w.WriteHeader(status) 64 64 + json.NewEncoder(w).Encode(e) 65 65 + }