···
"Coves/internal/atproto/did"
-
// Community handle validation regex (!name@instance)
-
var communityHandleRegex = regexp.MustCompile(`^?@([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?$`)
type communityService struct {
-
pdsURL string // PDS URL for write-forward operations
-
instanceDID string // DID of this Coves instance
-
instanceDomain string // Domain of this instance (for handles)
-
pdsAccessToken string // Access token for authenticating to PDS as the instance
-
provisioner *PDSAccountProvisioner // V2: Creates PDS accounts for communities
// NewCommunityService creates a new community service
···
return nil, fmt.Errorf("failed to provision PDS account for community: %w", err)
-
// Build scoped handle for display: !{name}@{instance}
-
// Note: The community's atProto handle is pdsAccount.Handle (e.g., gaming.communities.coves.social)
-
// The scoped handle (!gaming@coves.social) is for UI/UX - cleaner than the full atProto handle
-
scopedHandle := fmt.Sprintf("!%s@%s", req.Name, s.instanceDomain)
-
// Validate the scoped handle
-
if err := s.ValidateHandle(scopedHandle); err != nil {
-
return nil, fmt.Errorf("generated scoped handle is invalid: %w", err)
// Build community profile record
profile := map[string]interface{}{
"$type": "social.coves.community.profile",
-
"handle": scopedHandle, // Display handle (!gaming@coves.social)
-
"atprotoHandle": pdsAccount.Handle, // Real atProto handle (gaming.communities.coves.social)
"visibility": req.Visibility,
-
"hostedBy": s.instanceDID, // V2: Instance hosts, community owns
"createdBy": req.CreatedByDID,
"createdAt": time.Now().Format(time.RFC3339),
"federation": map[string]interface{}{
···
// Authenticate using community's access token
recordURI, recordCID, err := s.createRecordOnPDSAs(
-
pdsAccount.DID, // repo = community's DID (community owns its repo!)
"social.coves.community.profile",
-
"self", // canonical rkey for profile
-
pdsAccount.AccessToken, // authenticate as the community
return nil, fmt.Errorf("failed to create community profile record: %w", err)
···
// Build Community object with PDS credentials
-
DID: pdsAccount.DID, // Community's DID (owns the repo!)
-
Handle: scopedHandle, // !gaming@coves.social
DisplayName: req.DisplayName,
Description: req.Description,
-
OwnerDID: pdsAccount.DID, // V2: Community owns itself
CreatedByDID: req.CreatedByDID,
HostedByDID: req.HostedByDID,
PDSEmail: pdsAccount.Email,
···
recordURI, recordCID, err := s.putRecordOnPDSAs(
-
existing.DID, // repo = community's own DID (V2!)
"social.coves.community.profile",
-
"self", // V2: always "self"
-
existing.PDSAccessToken, // authenticate as the community
return nil, fmt.Errorf("failed to update community on PDS: %w", err)
···
"Coves/internal/atproto/did"
+
// Community handle validation regex (DNS-valid handle: name.communities.instance.com)
+
// Matches standard DNS hostname format (RFC 1035)
+
var communityHandleRegex = regexp.MustCompile(`^([a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?\.)+[a-zA-Z]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?$`)
type communityService struct {
+
pdsURL string // PDS URL for write-forward operations
+
instanceDID string // DID of this Coves instance
+
instanceDomain string // Domain of this instance (for handles)
+
pdsAccessToken string // Access token for authenticating to PDS as the instance
+
provisioner *PDSAccountProvisioner // V2: Creates PDS accounts for communities
// NewCommunityService creates a new community service
···
return nil, fmt.Errorf("failed to provision PDS account for community: %w", err)
+
// Validate the atProto handle
+
if err := s.ValidateHandle(pdsAccount.Handle); err != nil {
+
return nil, fmt.Errorf("generated atProto handle is invalid: %w", err)
// Build community profile record
profile := map[string]interface{}{
"$type": "social.coves.community.profile",
+
"handle": pdsAccount.Handle, // atProto handle (e.g., gaming.communities.coves.social)
+
"name": req.Name, // Short name for !mentions (e.g., "gaming")
"visibility": req.Visibility,
+
"hostedBy": s.instanceDID, // V2: Instance hosts, community owns
"createdBy": req.CreatedByDID,
"createdAt": time.Now().Format(time.RFC3339),
"federation": map[string]interface{}{
···
// Authenticate using community's access token
recordURI, recordCID, err := s.createRecordOnPDSAs(
+
pdsAccount.DID, // repo = community's DID (community owns its repo!)
"social.coves.community.profile",
+
"self", // canonical rkey for profile
+
pdsAccount.AccessToken, // authenticate as the community
return nil, fmt.Errorf("failed to create community profile record: %w", err)
···
// Build Community object with PDS credentials
+
DID: pdsAccount.DID, // Community's DID (owns the repo!)
+
Handle: pdsAccount.Handle, // atProto handle (e.g., gaming.communities.coves.social)
DisplayName: req.DisplayName,
Description: req.Description,
+
OwnerDID: pdsAccount.DID, // V2: Community owns itself
CreatedByDID: req.CreatedByDID,
HostedByDID: req.HostedByDID,
PDSEmail: pdsAccount.Email,
···
recordURI, recordCID, err := s.putRecordOnPDSAs(
+
existing.DID, // repo = community's own DID (V2!)
"social.coves.community.profile",
+
"self", // V2: always "self"
+
existing.PDSAccessToken, // authenticate as the community
return nil, fmt.Errorf("failed to update community on PDS: %w", err)
bretton.dev