appview/state/router.go at b742fca8dd16905fe64f70b3418f05574cf97c95 · kot.pink/core

kot.pink / core
Monorepo for Tangled — https://tangled.org
core / appview / state / router.go
at b742fca8dd16905fe64f70b3418f05574cf97c95 6.1 kB view raw
  1package state
  2
  3import (
  4	"net/http"
  5	"strings"
  6
  7	"github.com/go-chi/chi/v5"
  8	"tangled.sh/tangled.sh/core/appview/state/userutil"
  9)
 10
 11func (s *State) Router() http.Handler {
 12	router := chi.NewRouter()
 13
 14	router.HandleFunc("/*", func(w http.ResponseWriter, r *http.Request) {
 15		pat := chi.URLParam(r, "*")
 16		if strings.HasPrefix(pat, "did:") || strings.HasPrefix(pat, "@") {
 17			s.UserRouter().ServeHTTP(w, r)
 18		} else {
 19			// Check if the first path element is a valid handle without '@' or a flattened DID
 20			pathParts := strings.SplitN(pat, "/", 2)
 21			if len(pathParts) > 0 {
 22				if userutil.IsHandleNoAt(pathParts[0]) {
 23					// Redirect to the same path but with '@' prefixed to the handle
 24					redirectPath := "@" + pat
 25					http.Redirect(w, r, "/"+redirectPath, http.StatusFound)
 26					return
 27				} else if userutil.IsFlattenedDid(pathParts[0]) {
 28					// Redirect to the unflattened DID version
 29					unflattenedDid := userutil.UnflattenDid(pathParts[0])
 30					var redirectPath string
 31					if len(pathParts) > 1 {
 32						redirectPath = unflattenedDid + "/" + pathParts[1]
 33					} else {
 34						redirectPath = unflattenedDid
 35					}
 36					http.Redirect(w, r, "/"+redirectPath, http.StatusFound)
 37					return
 38				}
 39			}
 40			s.StandardRouter().ServeHTTP(w, r)
 41		}
 42	})
 43
 44	return router
 45}
 46
 47func (s *State) UserRouter() http.Handler {
 48	r := chi.NewRouter()
 49
 50	// strip @ from user
 51	r.Use(StripLeadingAt)
 52
 53	r.With(ResolveIdent(s)).Route("/{user}", func(r chi.Router) {
 54		r.Get("/", s.ProfilePage)
 55		r.With(ResolveRepo(s)).Route("/{repo}", func(r chi.Router) {
 56			r.Get("/", s.RepoIndex)
 57			r.Get("/commits/{ref}", s.RepoLog)
 58			r.Route("/tree/{ref}", func(r chi.Router) {
 59				r.Get("/", s.RepoIndex)
 60				r.Get("/*", s.RepoTree)
 61			})
 62			r.Get("/commit/{ref}", s.RepoCommit)
 63			r.Get("/branches", s.RepoBranches)
 64			r.Get("/tags", s.RepoTags)
 65			r.Get("/blob/{ref}/*", s.RepoBlob)
 66			r.Get("/blob/{ref}/raw/*", s.RepoBlobRaw)
 67
 68			r.Route("/issues", func(r chi.Router) {
 69				r.Get("/", s.RepoIssues)
 70				r.Get("/{issue}", s.RepoSingleIssue)
 71
 72				r.Group(func(r chi.Router) {
 73					r.Use(AuthMiddleware(s))
 74					r.Get("/new", s.NewIssue)
 75					r.Post("/new", s.NewIssue)
 76					r.Post("/{issue}/comment", s.IssueComment)
 77					r.Post("/{issue}/close", s.CloseIssue)
 78					r.Post("/{issue}/reopen", s.ReopenIssue)
 79				})
 80			})
 81
 82			r.Route("/pulls", func(r chi.Router) {
 83				r.Get("/", s.RepoPulls)
 84				r.With(AuthMiddleware(s)).Route("/new", func(r chi.Router) {
 85					r.Get("/", s.NewPull)
 86					r.Post("/", s.NewPull)
 87				})
 88
 89				r.Route("/{pull}", func(r chi.Router) {
 90					r.Use(ResolvePull(s))
 91					r.Get("/", s.RepoSinglePull)
 92
 93					r.Route("/round/{round}", func(r chi.Router) {
 94						r.Get("/", s.RepoPullPatch)
 95						r.Get("/actions", s.PullActions)
 96						r.Route("/comment", func(r chi.Router) {
 97							r.Get("/", s.PullComment)
 98							r.Post("/", s.PullComment)
 99						})
100					})
101
102					r.Route("/round/{round}.patch", func(r chi.Router) {
103						r.Get("/", s.RepoPullPatchRaw)
104					})
105
106					// authorized requests below this point
107					r.Group(func(r chi.Router) {
108						r.Use(AuthMiddleware(s))
109						r.Route("/resubmit", func(r chi.Router) {
110							r.Get("/", s.ResubmitPull)
111							r.Post("/", s.ResubmitPull)
112						})
113						r.Route("/comment", func(r chi.Router) {
114							r.Get("/", s.PullComment)
115							r.Post("/", s.PullComment)
116						})
117						r.Post("/close", s.ClosePull)
118						r.Post("/reopen", s.ReopenPull)
119						// collaborators only
120						r.Group(func(r chi.Router) {
121							r.Use(RepoPermissionMiddleware(s, "repo:push"))
122							r.Post("/merge", s.MergePull)
123							// maybe lock, etc.
124						})
125					})
126				})
127			})
128
129			// These routes get proxied to the knot
130			r.Get("/info/refs", s.InfoRefs)
131			r.Post("/git-upload-pack", s.UploadPack)
132
133			// settings routes, needs auth
134			r.Group(func(r chi.Router) {
135				r.Use(AuthMiddleware(s))
136				// repo description can only be edited by owner
137				r.With(RepoPermissionMiddleware(s, "repo:owner")).Route("/description", func(r chi.Router) {
138					r.Put("/", s.RepoDescription)
139					r.Get("/", s.RepoDescription)
140					r.Get("/edit", s.RepoDescriptionEdit)
141				})
142				r.With(RepoPermissionMiddleware(s, "repo:settings")).Route("/settings", func(r chi.Router) {
143					r.Get("/", s.RepoSettings)
144					r.With(RepoPermissionMiddleware(s, "repo:invite")).Put("/collaborator", s.AddCollaborator)
145				})
146			})
147		})
148	})
149
150	r.NotFound(func(w http.ResponseWriter, r *http.Request) {
151		s.pages.Error404(w)
152	})
153
154	return r
155}
156
157func (s *State) StandardRouter() http.Handler {
158	r := chi.NewRouter()
159
160	r.Handle("/static/*", s.pages.Static())
161
162	r.Get("/", s.Timeline)
163
164	r.With(AuthMiddleware(s)).Get("/logout", s.Logout)
165
166	r.Route("/login", func(r chi.Router) {
167		r.Get("/", s.Login)
168		r.Post("/", s.Login)
169	})
170
171	r.Route("/knots", func(r chi.Router) {
172		r.Use(AuthMiddleware(s))
173		r.Get("/", s.Knots)
174		r.Post("/key", s.RegistrationKey)
175
176		r.Route("/{domain}", func(r chi.Router) {
177			r.Post("/init", s.InitKnotServer)
178			r.Get("/", s.KnotServerInfo)
179			r.Route("/member", func(r chi.Router) {
180				r.Use(KnotOwner(s))
181				r.Get("/", s.ListMembers)
182				r.Put("/", s.AddMember)
183				r.Delete("/", s.RemoveMember)
184			})
185		})
186	})
187
188	r.Route("/repo", func(r chi.Router) {
189		r.Route("/new", func(r chi.Router) {
190			r.Use(AuthMiddleware(s))
191			r.Get("/", s.NewRepo)
192			r.Post("/", s.NewRepo)
193		})
194		// r.Post("/import", s.ImportRepo)
195	})
196
197	r.With(AuthMiddleware(s)).Route("/follow", func(r chi.Router) {
198		r.Post("/", s.Follow)
199		r.Delete("/", s.Follow)
200	})
201
202	r.With(AuthMiddleware(s)).Route("/star", func(r chi.Router) {
203		r.Post("/", s.Star)
204		r.Delete("/", s.Star)
205	})
206
207	r.Route("/settings", func(r chi.Router) {
208		r.Use(AuthMiddleware(s))
209		r.Get("/", s.Settings)
210		r.Put("/keys", s.SettingsKeys)
211		r.Delete("/keys", s.SettingsKeys)
212		r.Put("/emails", s.SettingsEmails)
213		r.Delete("/emails", s.SettingsEmails)
214		r.Get("/emails/verify", s.SettingsEmailsVerify)
215		r.Post("/emails/verify/resend", s.SettingsEmailsVerifyResend)
216		r.Post("/emails/primary", s.SettingsEmailsPrimary)
217	})
218
219	r.Get("/keys/{user}", s.Keys)
220
221	r.NotFound(func(w http.ResponseWriter, r *http.Request) {
222		s.pages.Error404(w)
223	})
224	return r
225}