Signed-off-by: Seongmin Lee <git@boltless.me>

`sh.tangled.pipeline` events are now completely generated & streamed
from spindle

Signed-off-by: Seongmin Lee <git@boltless.me>

spindle will emit `sh.tangled.pipeline` event on:
- `sh.tangled.git.refUpdate` events from knot stream
- live create/update events of `sh.tangled.repo.pull` records

Signed-off-by: Seongmin Lee <git@boltless.me>

Spindle will sync git repo when new repo is registered

Spindle will listen to `sh.tangled.git.refUpdate` event from knot
stream and sync its local git repo instead. Spindle's git repo will
sparse-checkout only `/.tangled/workflows` directory.

Spindle now requires git version >=2.49 for `--revision` flag in `git
clone` command.

References:
- <https://stackoverflow.com/q/47541033/13150270>
- <https://stackoverflow.com/q/600079/13150270>

Signed-off-by: Seongmin Lee <git@boltless.me>

This single persistent directory can be used for storing general spindle
data like db, motd file and upcoming sparse-clone git repos.

db path will be `${DATA_DIR}/spindle.db`

Signed-off-by: Seongmin Lee <git@boltless.me>

spindle-tap will collect/stream record events from:
- users dynamically added by spindle (spindle members | collaborators of
repos using spindle)
- any users with `sh.tangled.repo.pull` collection

It might be bit inefficient considering it will also stream repo
creation events from PR authors due to second rule, but at least we now
have backfill logic and Sync 1.1 based syncing.

This inefficiency can be fixed later by modifying upstream tap cli or
embedding tap into spindle.

```
+--------- all tangled users --------+
| |
| +-- users known to spindle-tap --+ |
| | (PR author / manually added) | |
| | | |
| | +----------------------------+ | |
| | | users known to spindle | | |
| | | (members / collaborators) | | |
| | +----------------------------+ | |
| +--------------------------------+ |
+------------------------------------+
```

Close: <https://tangled.org/tangled.org/core/issues/341>

Signed-off-by: Seongmin Lee <git@boltless.me>

This new db migration won't migrate existing records in repos table.
Instead, it will simply rename the legacy table to `repos_old` and
create a new one with same name.

repo backfill will be done with tap

Signed-off-by: Seongmin Lee <git@boltless.me>

create new one if it's missing

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Seongmin Lee <git@boltless.me>

This commit includes bare minimum tap client to use tap from spindle.

Signed-off-by: Seongmin Lee <git@boltless.me>

This commit won't work without following spindle rewrite to use tap and
introduce backfill because repos table is empty yet.

Signed-off-by: Seongmin Lee <git@boltless.me>

1. Use repo AT-URI as identifier.
2. Use `dom` field rather than `obj` to filter by repository. So now
it's "user with role A in repo B can do action D to field C" where
`A,B,C,D` are `sub,dom,obj,act`.
3. Manage app-logic rules in embedded csv file which won't be saved in
db and load to memory on start. This makes app's global rbac rule
change easier as we just need to edit the csv file.

Many permission check methods are missing, but should be enough to test
this new RBAC enforcer package in spindle.

Related issue: <https://tangled.org/tangled.org/core/issues/282>

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Seongmin Lee <git@boltless.me>

avoid using `.Knot` and `.Rkey` directly

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Seongmin Lee <git@boltless.me>

- did-method-plc
- bluesky-jetstream
- bluesky-relay
- tap

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Anirudh Oppiliappan <anirudh@tangled.org>

Signed-off-by: pompydev <pompydev@proton.me>

prevents scrolling if the content is insufficient, this allows next/prev
buttons to be above the fold.

Signed-off-by: oppiliappan <me@oppi.li>

should cut down the false positives a bit. tests are included.

Signed-off-by: oppiliappan <me@oppi.li>

we now prefer links with `@`. this change also moves the styling into
the mention class entirely.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: estym <evann.regnault@pm.me>

using pandoc, tailwindcss, our standard fonts and lucide, we can build a
simple docs site with a single pandoc command.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

the new documentation format is a single DOCS.md file with one section
per chapter. this guide can also be passed around in various formats
(single html, mdbook-style, manpage etc.) thanks to pandoc.

Signed-off-by: oppiliappan <me@oppi.li>

this will be replaced in the future with a single DOCS.md file

Signed-off-by: oppiliappan <me@oppi.li>

This reverts commit caffe3d5dc86ef46ee52bc7596bd3221cffa6af2.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

this will fix nix devshell failing on darwin machine

The fix was introduced on: <https://github.com/NixOS/nix/pull/14778>

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Thomas Karpiniec <tkarpiniec@icloud.com>

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: Evan Jarrett <evan@evanjarrett.com>

Signed-off-by: Thomas Karpiniec <tkarpiniec@icloud.com>

This reverts commit ada8bf645f471d0aff466d4b91beb1d07dc9f4dd.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Seongmin Lee <git@boltless.me>

this will fix build error on darwin machines

Signed-off-by: Seongmin Lee <git@boltless.me>

fixes https://tangled.org/tangled.org/core/issues/339 .

Signed-off-by: helpimnotdrowning <helpimnotdrowning@gmail.com>

presently only renders in markdown and description contexts, we could
potentially apply this to commit message contexts too.

fixes https://tangled.org/tangled.org/core/issues/334 .

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: Seongmin Lee <git@boltless.me>

Signed-off-by: Thomas Karpiniec <tkarpiniec@icloud.com>

Signed-off-by: Thomas Karpiniec <tkarpiniec@icloud.com>

Signed-off-by: oppiliappan <me@oppi.li>

the merged_notifier no longer waits for the notifiers to complete. it is
now fire-and-forget.

Signed-off-by: oppiliappan <me@oppi.li>

rkey itself isn't unique across the network because multiple different
knots can emit same rkey. We should use full at-uri here instead.

Signed-off-by: Seongmin Lee <git@boltless.me>

This is better set in a global configuration file, and is set in the
default config for the nix module anyway.

Signed-off-by: tjh <x@tjh.dev>

Signed-off-by: tjh <x@tjh.dev>

Allows a knotserver-hosted repository to be the target of a `git archive --remote=https://<remote>` command.

Signed-off-by: tjh <x@tjh.dev>

Signed-off-by: Evan Jarrett <evan@evanjarrett.com>

Signed-off-by: tjh <x@tjh.dev>

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

`init` is a bad name for a file, a method inside the file could be
called `init` perhaps.

this is already the scheme followed by spindle and appview.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

it seems latest nixpkgs broke sqlite-lib builds. the static pkg set does
not provide ranlib or ar anymore.

Signed-off-by: oppiliappan <me@oppi.li>

Signed-off-by: oppiliappan <me@oppi.li>

move sets into tree

Signed-off-by: oppiliappan <me@oppi.li>