nolith.dev / tangled-core
forked from tangled.org/core
Monorepo for Tangled
fork atom
tangled-core / knotserver / xrpc / delete_repo.go
at local-dev 91 lines 2.3 kB view raw
nolith.dev idresolver: add PDSClient() helper to reduce duplication
fc5a00ee
1package xrpc 2 3import ( 4 "encoding/json" 5 "fmt" 6 "net/http" 7 "os" 8 "path/filepath" 9 10 comatproto "github.com/bluesky-social/indigo/api/atproto" 11 "github.com/bluesky-social/indigo/atproto/syntax" 12 securejoin "github.com/cyphar/filepath-securejoin" 13 "tangled.org/core/api/tangled" 14 "tangled.org/core/rbac" 15 xrpcerr "tangled.org/core/xrpc/errors" 16) 17 18func (x *Xrpc) DeleteRepo(w http.ResponseWriter, r *http.Request) { 19 l := x.Logger.With("handler", "DeleteRepo") 20 fail := func(e xrpcerr.XrpcError) { 21 l.Error("failed", "kind", e.Tag, "error", e.Message) 22 writeError(w, e, http.StatusBadRequest) 23 } 24 25 actorDid, ok := r.Context().Value(ActorDid).(syntax.DID) 26 if !ok { 27 fail(xrpcerr.MissingActorDidError) 28 return 29 } 30 31 var data tangled.RepoDelete_Input 32 if err := json.NewDecoder(r.Body).Decode(&data); err != nil { 33 fail(xrpcerr.GenericError(err)) 34 return 35 } 36 37 did := data.Did 38 name := data.Name 39 rkey := data.Rkey 40 41 if did == "" || name == "" { 42 fail(xrpcerr.GenericError(fmt.Errorf("did and name are required"))) 43 return 44 } 45 46 _, pdsClient, err := x.Resolver.PDSClient(r.Context(), actorDid.String()) 47 if err != nil { 48 fail(xrpcerr.GenericError(err)) 49 return 50 } 51 52 // ensure that the record does not exists 53 _, err = comatproto.RepoGetRecord(r.Context(), pdsClient, "", tangled.RepoNSID, actorDid.String(), rkey) 54 if err == nil { 55 fail(xrpcerr.RecordExistsError(rkey)) 56 return 57 } 58 59 relativeRepoPath := filepath.Join(did, name) 60 isDeleteAllowed, err := x.Enforcer.IsRepoDeleteAllowed(actorDid.String(), rbac.ThisServer, relativeRepoPath) 61 if err != nil { 62 fail(xrpcerr.GenericError(err)) 63 return 64 } 65 if !isDeleteAllowed { 66 fail(xrpcerr.AccessControlError(actorDid.String())) 67 return 68 } 69 70 repoPath, err := securejoin.SecureJoin(x.Config.Repo.ScanPath, relativeRepoPath) 71 if err != nil { 72 fail(xrpcerr.GenericError(err)) 73 return 74 } 75 76 err = os.RemoveAll(repoPath) 77 if err != nil { 78 l.Error("deleting repo", "error", err.Error()) 79 writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 80 return 81 } 82 83 err = x.Enforcer.RemoveRepo(did, rbac.ThisServer, relativeRepoPath) 84 if err != nil { 85 l.Error("failed to delete repo from enforcer", "error", err.Error()) 86 writeError(w, xrpcerr.GenericError(err), http.StatusInternalServerError) 87 return 88 } 89 90 w.WriteHeader(http.StatusOK) 91}