nel.pet / core
forked from tangled.org/core
this repo has no description
fork atom
core / appview / repo / repo.go
at f1dba3622aae7fb6532f19f2c441c5f242dea16f 60 kB view raw
1package repo 2 3import ( 4 "context" 5 "database/sql" 6 "encoding/json" 7 "errors" 8 "fmt" 9 "io" 10 "log" 11 "log/slog" 12 "net/http" 13 "net/url" 14 "path/filepath" 15 "slices" 16 "strconv" 17 "strings" 18 "time" 19 20 comatproto "github.com/bluesky-social/indigo/api/atproto" 21 lexutil "github.com/bluesky-social/indigo/lex/util" 22 indigoxrpc "github.com/bluesky-social/indigo/xrpc" 23 "tangled.org/core/api/tangled" 24 "tangled.org/core/appview/commitverify" 25 "tangled.org/core/appview/config" 26 "tangled.org/core/appview/db" 27 "tangled.org/core/appview/notify" 28 "tangled.org/core/appview/oauth" 29 "tangled.org/core/appview/pages" 30 "tangled.org/core/appview/pages/markup" 31 "tangled.org/core/appview/reporesolver" 32 "tangled.org/core/appview/validator" 33 xrpcclient "tangled.org/core/appview/xrpcclient" 34 "tangled.org/core/eventconsumer" 35 "tangled.org/core/idresolver" 36 "tangled.org/core/patchutil" 37 "tangled.org/core/rbac" 38 "tangled.org/core/tid" 39 "tangled.org/core/types" 40 "tangled.org/core/xrpc/serviceauth" 41 42 securejoin "github.com/cyphar/filepath-securejoin" 43 "github.com/go-chi/chi/v5" 44 "github.com/go-git/go-git/v5/plumbing" 45 46 "github.com/bluesky-social/indigo/atproto/syntax" 47) 48 49type Repo struct { 50 repoResolver *reporesolver.RepoResolver 51 idResolver *idresolver.Resolver 52 config *config.Config 53 oauth *oauth.OAuth 54 pages *pages.Pages 55 spindlestream *eventconsumer.Consumer 56 db *db.DB 57 enforcer *rbac.Enforcer 58 notifier notify.Notifier 59 logger *slog.Logger 60 serviceAuth *serviceauth.ServiceAuth 61 validator *validator.Validator 62} 63 64func New( 65 oauth *oauth.OAuth, 66 repoResolver *reporesolver.RepoResolver, 67 pages *pages.Pages, 68 spindlestream *eventconsumer.Consumer, 69 idResolver *idresolver.Resolver, 70 db *db.DB, 71 config *config.Config, 72 notifier notify.Notifier, 73 enforcer *rbac.Enforcer, 74 logger *slog.Logger, 75 validator *validator.Validator, 76) *Repo { 77 return &Repo{oauth: oauth, 78 repoResolver: repoResolver, 79 pages: pages, 80 idResolver: idResolver, 81 config: config, 82 spindlestream: spindlestream, 83 db: db, 84 notifier: notifier, 85 enforcer: enforcer, 86 logger: logger, 87 validator: validator, 88 } 89} 90 91func (rp *Repo) DownloadArchive(w http.ResponseWriter, r *http.Request) { 92 ref := chi.URLParam(r, "ref") 93 ref, _ = url.PathUnescape(ref) 94 95 f, err := rp.repoResolver.Resolve(r) 96 if err != nil { 97 log.Println("failed to get repo and knot", err) 98 return 99 } 100 101 scheme := "http" 102 if !rp.config.Core.Dev { 103 scheme = "https" 104 } 105 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 106 xrpcc := &indigoxrpc.Client{ 107 Host: host, 108 } 109 110 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 111 archiveBytes, err := tangled.RepoArchive(r.Context(), xrpcc, "tar.gz", "", ref, repo) 112 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 113 log.Println("failed to call XRPC repo.archive", xrpcerr) 114 rp.pages.Error503(w) 115 return 116 } 117 118 // Set headers for file download, just pass along whatever the knot specifies 119 safeRefFilename := strings.ReplaceAll(plumbing.ReferenceName(ref).Short(), "/", "-") 120 filename := fmt.Sprintf("%s-%s.tar.gz", f.Name, safeRefFilename) 121 w.Header().Set("Content-Disposition", fmt.Sprintf("attachment; filename=\"%s\"", filename)) 122 w.Header().Set("Content-Type", "application/gzip") 123 w.Header().Set("Content-Length", fmt.Sprintf("%d", len(archiveBytes))) 124 125 // Write the archive data directly 126 w.Write(archiveBytes) 127} 128 129func (rp *Repo) RepoLog(w http.ResponseWriter, r *http.Request) { 130 f, err := rp.repoResolver.Resolve(r) 131 if err != nil { 132 log.Println("failed to fully resolve repo", err) 133 return 134 } 135 136 page := 1 137 if r.URL.Query().Get("page") != "" { 138 page, err = strconv.Atoi(r.URL.Query().Get("page")) 139 if err != nil { 140 page = 1 141 } 142 } 143 144 ref := chi.URLParam(r, "ref") 145 ref, _ = url.PathUnescape(ref) 146 147 scheme := "http" 148 if !rp.config.Core.Dev { 149 scheme = "https" 150 } 151 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 152 xrpcc := &indigoxrpc.Client{ 153 Host: host, 154 } 155 156 limit := int64(60) 157 cursor := "" 158 if page > 1 { 159 // Convert page number to cursor (offset) 160 offset := (page - 1) * int(limit) 161 cursor = strconv.Itoa(offset) 162 } 163 164 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 165 xrpcBytes, err := tangled.RepoLog(r.Context(), xrpcc, cursor, limit, "", ref, repo) 166 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 167 log.Println("failed to call XRPC repo.log", xrpcerr) 168 rp.pages.Error503(w) 169 return 170 } 171 172 var xrpcResp types.RepoLogResponse 173 if err := json.Unmarshal(xrpcBytes, &xrpcResp); err != nil { 174 log.Println("failed to decode XRPC response", err) 175 rp.pages.Error503(w) 176 return 177 } 178 179 tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 180 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 181 log.Println("failed to call XRPC repo.tags", xrpcerr) 182 rp.pages.Error503(w) 183 return 184 } 185 186 tagMap := make(map[string][]string) 187 if tagBytes != nil { 188 var tagResp types.RepoTagsResponse 189 if err := json.Unmarshal(tagBytes, &tagResp); err == nil { 190 for _, tag := range tagResp.Tags { 191 tagMap[tag.Hash] = append(tagMap[tag.Hash], tag.Name) 192 } 193 } 194 } 195 196 branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 197 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 198 log.Println("failed to call XRPC repo.branches", xrpcerr) 199 rp.pages.Error503(w) 200 return 201 } 202 203 if branchBytes != nil { 204 var branchResp types.RepoBranchesResponse 205 if err := json.Unmarshal(branchBytes, &branchResp); err == nil { 206 for _, branch := range branchResp.Branches { 207 tagMap[branch.Hash] = append(tagMap[branch.Hash], branch.Name) 208 } 209 } 210 } 211 212 user := rp.oauth.GetUser(r) 213 214 emailToDidMap, err := db.GetEmailToDid(rp.db, uniqueEmails(xrpcResp.Commits), true) 215 if err != nil { 216 log.Println("failed to fetch email to did mapping", err) 217 } 218 219 vc, err := commitverify.GetVerifiedObjectCommits(rp.db, emailToDidMap, xrpcResp.Commits) 220 if err != nil { 221 log.Println(err) 222 } 223 224 repoInfo := f.RepoInfo(user) 225 226 var shas []string 227 for _, c := range xrpcResp.Commits { 228 shas = append(shas, c.Hash.String()) 229 } 230 pipelines, err := getPipelineStatuses(rp.db, repoInfo, shas) 231 if err != nil { 232 log.Println(err) 233 // non-fatal 234 } 235 236 rp.pages.RepoLog(w, pages.RepoLogParams{ 237 LoggedInUser: user, 238 TagMap: tagMap, 239 RepoInfo: repoInfo, 240 RepoLogResponse: xrpcResp, 241 EmailToDidOrHandle: emailToDidOrHandle(rp, emailToDidMap), 242 VerifiedCommits: vc, 243 Pipelines: pipelines, 244 }) 245} 246 247func (rp *Repo) RepoDescriptionEdit(w http.ResponseWriter, r *http.Request) { 248 f, err := rp.repoResolver.Resolve(r) 249 if err != nil { 250 log.Println("failed to get repo and knot", err) 251 w.WriteHeader(http.StatusBadRequest) 252 return 253 } 254 255 user := rp.oauth.GetUser(r) 256 rp.pages.EditRepoDescriptionFragment(w, pages.RepoDescriptionParams{ 257 RepoInfo: f.RepoInfo(user), 258 }) 259} 260 261func (rp *Repo) RepoDescription(w http.ResponseWriter, r *http.Request) { 262 f, err := rp.repoResolver.Resolve(r) 263 if err != nil { 264 log.Println("failed to get repo and knot", err) 265 w.WriteHeader(http.StatusBadRequest) 266 return 267 } 268 269 repoAt := f.RepoAt() 270 rkey := repoAt.RecordKey().String() 271 if rkey == "" { 272 log.Println("invalid aturi for repo", err) 273 w.WriteHeader(http.StatusInternalServerError) 274 return 275 } 276 277 user := rp.oauth.GetUser(r) 278 279 switch r.Method { 280 case http.MethodGet: 281 rp.pages.RepoDescriptionFragment(w, pages.RepoDescriptionParams{ 282 RepoInfo: f.RepoInfo(user), 283 }) 284 return 285 case http.MethodPut: 286 newDescription := r.FormValue("description") 287 client, err := rp.oauth.AuthorizedClient(r) 288 if err != nil { 289 log.Println("failed to get client") 290 rp.pages.Notice(w, "repo-notice", "Failed to update description, try again later.") 291 return 292 } 293 294 // optimistic update 295 err = db.UpdateDescription(rp.db, string(repoAt), newDescription) 296 if err != nil { 297 log.Println("failed to perferom update-description query", err) 298 rp.pages.Notice(w, "repo-notice", "Failed to update description, try again later.") 299 return 300 } 301 302 newRepo := f.Repo 303 newRepo.Description = newDescription 304 record := newRepo.AsRecord() 305 306 // this is a bit of a pain because the golang atproto impl does not allow nil SwapRecord field 307 // 308 // SwapRecord is optional and should happen automagically, but given that it does not, we have to perform two requests 309 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, newRepo.Did, newRepo.Rkey) 310 if err != nil { 311 // failed to get record 312 rp.pages.Notice(w, "repo-notice", "Failed to update description, no record found on PDS.") 313 return 314 } 315 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 316 Collection: tangled.RepoNSID, 317 Repo: newRepo.Did, 318 Rkey: newRepo.Rkey, 319 SwapRecord: ex.Cid, 320 Record: &lexutil.LexiconTypeDecoder{ 321 Val: &record, 322 }, 323 }) 324 325 if err != nil { 326 log.Println("failed to perferom update-description query", err) 327 // failed to get record 328 rp.pages.Notice(w, "repo-notice", "Failed to update description, unable to save to PDS.") 329 return 330 } 331 332 newRepoInfo := f.RepoInfo(user) 333 newRepoInfo.Description = newDescription 334 335 rp.pages.RepoDescriptionFragment(w, pages.RepoDescriptionParams{ 336 RepoInfo: newRepoInfo, 337 }) 338 return 339 } 340} 341 342func (rp *Repo) RepoCommit(w http.ResponseWriter, r *http.Request) { 343 f, err := rp.repoResolver.Resolve(r) 344 if err != nil { 345 log.Println("failed to fully resolve repo", err) 346 return 347 } 348 ref := chi.URLParam(r, "ref") 349 ref, _ = url.PathUnescape(ref) 350 351 var diffOpts types.DiffOpts 352 if d := r.URL.Query().Get("diff"); d == "split" { 353 diffOpts.Split = true 354 } 355 356 if !plumbing.IsHash(ref) { 357 rp.pages.Error404(w) 358 return 359 } 360 361 scheme := "http" 362 if !rp.config.Core.Dev { 363 scheme = "https" 364 } 365 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 366 xrpcc := &indigoxrpc.Client{ 367 Host: host, 368 } 369 370 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 371 xrpcBytes, err := tangled.RepoDiff(r.Context(), xrpcc, ref, repo) 372 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 373 log.Println("failed to call XRPC repo.diff", xrpcerr) 374 rp.pages.Error503(w) 375 return 376 } 377 378 var result types.RepoCommitResponse 379 if err := json.Unmarshal(xrpcBytes, &result); err != nil { 380 log.Println("failed to decode XRPC response", err) 381 rp.pages.Error503(w) 382 return 383 } 384 385 emailToDidMap, err := db.GetEmailToDid(rp.db, []string{result.Diff.Commit.Committer.Email, result.Diff.Commit.Author.Email}, true) 386 if err != nil { 387 log.Println("failed to get email to did mapping:", err) 388 } 389 390 vc, err := commitverify.GetVerifiedCommits(rp.db, emailToDidMap, []types.NiceDiff{*result.Diff}) 391 if err != nil { 392 log.Println(err) 393 } 394 395 user := rp.oauth.GetUser(r) 396 repoInfo := f.RepoInfo(user) 397 pipelines, err := getPipelineStatuses(rp.db, repoInfo, []string{result.Diff.Commit.This}) 398 if err != nil { 399 log.Println(err) 400 // non-fatal 401 } 402 var pipeline *db.Pipeline 403 if p, ok := pipelines[result.Diff.Commit.This]; ok { 404 pipeline = &p 405 } 406 407 rp.pages.RepoCommit(w, pages.RepoCommitParams{ 408 LoggedInUser: user, 409 RepoInfo: f.RepoInfo(user), 410 RepoCommitResponse: result, 411 EmailToDidOrHandle: emailToDidOrHandle(rp, emailToDidMap), 412 VerifiedCommit: vc, 413 Pipeline: pipeline, 414 DiffOpts: diffOpts, 415 }) 416} 417 418func (rp *Repo) RepoTree(w http.ResponseWriter, r *http.Request) { 419 f, err := rp.repoResolver.Resolve(r) 420 if err != nil { 421 log.Println("failed to fully resolve repo", err) 422 return 423 } 424 425 ref := chi.URLParam(r, "ref") 426 ref, _ = url.PathUnescape(ref) 427 428 // if the tree path has a trailing slash, let's strip it 429 // so we don't 404 430 treePath := chi.URLParam(r, "*") 431 treePath, _ = url.PathUnescape(treePath) 432 treePath = strings.TrimSuffix(treePath, "/") 433 434 scheme := "http" 435 if !rp.config.Core.Dev { 436 scheme = "https" 437 } 438 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 439 xrpcc := &indigoxrpc.Client{ 440 Host: host, 441 } 442 443 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 444 xrpcResp, err := tangled.RepoTree(r.Context(), xrpcc, treePath, ref, repo) 445 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 446 log.Println("failed to call XRPC repo.tree", xrpcerr) 447 rp.pages.Error503(w) 448 return 449 } 450 451 // readme content 452 var ( 453 readmeContent string 454 readmeFileName string 455 ) 456 457 for _, filename := range markup.ReadmeFilenames { 458 path := fmt.Sprintf("%s/%s", treePath, filename) 459 blobResp, err := tangled.RepoBlob(r.Context(), xrpcc, path, false, ref, repo) 460 if err != nil { 461 continue 462 } 463 464 if blobResp == nil { 465 continue 466 } 467 468 readmeContent = blobResp.Content 469 readmeFileName = path 470 break 471 } 472 473 // Convert XRPC response to internal types.RepoTreeResponse 474 files := make([]types.NiceTree, len(xrpcResp.Files)) 475 for i, xrpcFile := range xrpcResp.Files { 476 file := types.NiceTree{ 477 Name: xrpcFile.Name, 478 Mode: xrpcFile.Mode, 479 Size: int64(xrpcFile.Size), 480 IsFile: xrpcFile.Is_file, 481 IsSubtree: xrpcFile.Is_subtree, 482 } 483 484 // Convert last commit info if present 485 if xrpcFile.Last_commit != nil { 486 commitWhen, _ := time.Parse(time.RFC3339, xrpcFile.Last_commit.When) 487 file.LastCommit = &types.LastCommitInfo{ 488 Hash: plumbing.NewHash(xrpcFile.Last_commit.Hash), 489 Message: xrpcFile.Last_commit.Message, 490 When: commitWhen, 491 } 492 } 493 494 files[i] = file 495 } 496 497 result := types.RepoTreeResponse{ 498 Ref: xrpcResp.Ref, 499 Files: files, 500 } 501 502 if xrpcResp.Parent != nil { 503 result.Parent = *xrpcResp.Parent 504 } 505 if xrpcResp.Dotdot != nil { 506 result.DotDot = *xrpcResp.Dotdot 507 } 508 509 // redirects tree paths trying to access a blob; in this case the result.Files is unpopulated, 510 // so we can safely redirect to the "parent" (which is the same file). 511 if len(result.Files) == 0 && result.Parent == treePath { 512 redirectTo := fmt.Sprintf("/%s/blob/%s/%s", f.OwnerSlashRepo(), url.PathEscape(ref), result.Parent) 513 http.Redirect(w, r, redirectTo, http.StatusFound) 514 return 515 } 516 517 user := rp.oauth.GetUser(r) 518 519 var breadcrumbs [][]string 520 breadcrumbs = append(breadcrumbs, []string{f.Name, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), url.PathEscape(ref))}) 521 if treePath != "" { 522 for idx, elem := range strings.Split(treePath, "/") { 523 breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], url.PathEscape(elem))}) 524 } 525 } 526 527 sortFiles(result.Files) 528 529 rp.pages.RepoTree(w, pages.RepoTreeParams{ 530 LoggedInUser: user, 531 BreadCrumbs: breadcrumbs, 532 TreePath: treePath, 533 RepoInfo: f.RepoInfo(user), 534 Readme: readmeContent, 535 ReadmeFileName: readmeFileName, 536 RepoTreeResponse: result, 537 }) 538} 539 540func (rp *Repo) RepoTags(w http.ResponseWriter, r *http.Request) { 541 f, err := rp.repoResolver.Resolve(r) 542 if err != nil { 543 log.Println("failed to get repo and knot", err) 544 return 545 } 546 547 scheme := "http" 548 if !rp.config.Core.Dev { 549 scheme = "https" 550 } 551 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 552 xrpcc := &indigoxrpc.Client{ 553 Host: host, 554 } 555 556 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 557 xrpcBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 558 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 559 log.Println("failed to call XRPC repo.tags", xrpcerr) 560 rp.pages.Error503(w) 561 return 562 } 563 564 var result types.RepoTagsResponse 565 if err := json.Unmarshal(xrpcBytes, &result); err != nil { 566 log.Println("failed to decode XRPC response", err) 567 rp.pages.Error503(w) 568 return 569 } 570 571 artifacts, err := db.GetArtifact(rp.db, db.FilterEq("repo_at", f.RepoAt())) 572 if err != nil { 573 log.Println("failed grab artifacts", err) 574 return 575 } 576 577 // convert artifacts to map for easy UI building 578 artifactMap := make(map[plumbing.Hash][]db.Artifact) 579 for _, a := range artifacts { 580 artifactMap[a.Tag] = append(artifactMap[a.Tag], a) 581 } 582 583 var danglingArtifacts []db.Artifact 584 for _, a := range artifacts { 585 found := false 586 for _, t := range result.Tags { 587 if t.Tag != nil { 588 if t.Tag.Hash == a.Tag { 589 found = true 590 } 591 } 592 } 593 594 if !found { 595 danglingArtifacts = append(danglingArtifacts, a) 596 } 597 } 598 599 user := rp.oauth.GetUser(r) 600 rp.pages.RepoTags(w, pages.RepoTagsParams{ 601 LoggedInUser: user, 602 RepoInfo: f.RepoInfo(user), 603 RepoTagsResponse: result, 604 ArtifactMap: artifactMap, 605 DanglingArtifacts: danglingArtifacts, 606 }) 607} 608 609func (rp *Repo) RepoBranches(w http.ResponseWriter, r *http.Request) { 610 f, err := rp.repoResolver.Resolve(r) 611 if err != nil { 612 log.Println("failed to get repo and knot", err) 613 return 614 } 615 616 scheme := "http" 617 if !rp.config.Core.Dev { 618 scheme = "https" 619 } 620 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 621 xrpcc := &indigoxrpc.Client{ 622 Host: host, 623 } 624 625 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 626 xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 627 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 628 log.Println("failed to call XRPC repo.branches", xrpcerr) 629 rp.pages.Error503(w) 630 return 631 } 632 633 var result types.RepoBranchesResponse 634 if err := json.Unmarshal(xrpcBytes, &result); err != nil { 635 log.Println("failed to decode XRPC response", err) 636 rp.pages.Error503(w) 637 return 638 } 639 640 sortBranches(result.Branches) 641 642 user := rp.oauth.GetUser(r) 643 rp.pages.RepoBranches(w, pages.RepoBranchesParams{ 644 LoggedInUser: user, 645 RepoInfo: f.RepoInfo(user), 646 RepoBranchesResponse: result, 647 }) 648} 649 650func (rp *Repo) RepoBlob(w http.ResponseWriter, r *http.Request) { 651 f, err := rp.repoResolver.Resolve(r) 652 if err != nil { 653 log.Println("failed to get repo and knot", err) 654 return 655 } 656 657 ref := chi.URLParam(r, "ref") 658 ref, _ = url.PathUnescape(ref) 659 660 filePath := chi.URLParam(r, "*") 661 filePath, _ = url.PathUnescape(filePath) 662 663 scheme := "http" 664 if !rp.config.Core.Dev { 665 scheme = "https" 666 } 667 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 668 xrpcc := &indigoxrpc.Client{ 669 Host: host, 670 } 671 672 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Repo.Name) 673 resp, err := tangled.RepoBlob(r.Context(), xrpcc, filePath, false, ref, repo) 674 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 675 log.Println("failed to call XRPC repo.blob", xrpcerr) 676 rp.pages.Error503(w) 677 return 678 } 679 680 // Use XRPC response directly instead of converting to internal types 681 682 var breadcrumbs [][]string 683 breadcrumbs = append(breadcrumbs, []string{f.Name, fmt.Sprintf("/%s/tree/%s", f.OwnerSlashRepo(), url.PathEscape(ref))}) 684 if filePath != "" { 685 for idx, elem := range strings.Split(filePath, "/") { 686 breadcrumbs = append(breadcrumbs, []string{elem, fmt.Sprintf("%s/%s", breadcrumbs[idx][1], url.PathEscape(elem))}) 687 } 688 } 689 690 showRendered := false 691 renderToggle := false 692 693 if markup.GetFormat(resp.Path) == markup.FormatMarkdown { 694 renderToggle = true 695 showRendered = r.URL.Query().Get("code") != "true" 696 } 697 698 var unsupported bool 699 var isImage bool 700 var isVideo bool 701 var contentSrc string 702 703 if resp.IsBinary != nil && *resp.IsBinary { 704 ext := strings.ToLower(filepath.Ext(resp.Path)) 705 switch ext { 706 case ".jpg", ".jpeg", ".png", ".gif", ".svg", ".webp": 707 isImage = true 708 case ".mp4", ".webm", ".ogg", ".mov", ".avi": 709 isVideo = true 710 default: 711 unsupported = true 712 } 713 714 // fetch the raw binary content using sh.tangled.repo.blob xrpc 715 repoName := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 716 717 baseURL := &url.URL{ 718 Scheme: scheme, 719 Host: f.Knot, 720 Path: "/xrpc/sh.tangled.repo.blob", 721 } 722 query := baseURL.Query() 723 query.Set("repo", repoName) 724 query.Set("ref", ref) 725 query.Set("path", filePath) 726 query.Set("raw", "true") 727 baseURL.RawQuery = query.Encode() 728 blobURL := baseURL.String() 729 730 contentSrc = blobURL 731 if !rp.config.Core.Dev { 732 contentSrc = markup.GenerateCamoURL(rp.config.Camo.Host, rp.config.Camo.SharedSecret, blobURL) 733 } 734 } 735 736 lines := 0 737 if resp.IsBinary == nil || !*resp.IsBinary { 738 lines = strings.Count(resp.Content, "\n") + 1 739 } 740 741 var sizeHint uint64 742 if resp.Size != nil { 743 sizeHint = uint64(*resp.Size) 744 } else { 745 sizeHint = uint64(len(resp.Content)) 746 } 747 748 user := rp.oauth.GetUser(r) 749 750 // Determine if content is binary (dereference pointer) 751 isBinary := false 752 if resp.IsBinary != nil { 753 isBinary = *resp.IsBinary 754 } 755 756 rp.pages.RepoBlob(w, pages.RepoBlobParams{ 757 LoggedInUser: user, 758 RepoInfo: f.RepoInfo(user), 759 BreadCrumbs: breadcrumbs, 760 ShowRendered: showRendered, 761 RenderToggle: renderToggle, 762 Unsupported: unsupported, 763 IsImage: isImage, 764 IsVideo: isVideo, 765 ContentSrc: contentSrc, 766 RepoBlob_Output: resp, 767 Contents: resp.Content, 768 Lines: lines, 769 SizeHint: sizeHint, 770 IsBinary: isBinary, 771 }) 772} 773 774func (rp *Repo) RepoBlobRaw(w http.ResponseWriter, r *http.Request) { 775 f, err := rp.repoResolver.Resolve(r) 776 if err != nil { 777 log.Println("failed to get repo and knot", err) 778 w.WriteHeader(http.StatusBadRequest) 779 return 780 } 781 782 ref := chi.URLParam(r, "ref") 783 ref, _ = url.PathUnescape(ref) 784 785 filePath := chi.URLParam(r, "*") 786 filePath, _ = url.PathUnescape(filePath) 787 788 scheme := "http" 789 if !rp.config.Core.Dev { 790 scheme = "https" 791 } 792 793 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Repo.Name) 794 baseURL := &url.URL{ 795 Scheme: scheme, 796 Host: f.Knot, 797 Path: "/xrpc/sh.tangled.repo.blob", 798 } 799 query := baseURL.Query() 800 query.Set("repo", repo) 801 query.Set("ref", ref) 802 query.Set("path", filePath) 803 query.Set("raw", "true") 804 baseURL.RawQuery = query.Encode() 805 blobURL := baseURL.String() 806 807 req, err := http.NewRequest("GET", blobURL, nil) 808 if err != nil { 809 log.Println("failed to create request", err) 810 return 811 } 812 813 // forward the If-None-Match header 814 if clientETag := r.Header.Get("If-None-Match"); clientETag != "" { 815 req.Header.Set("If-None-Match", clientETag) 816 } 817 818 client := &http.Client{} 819 resp, err := client.Do(req) 820 if err != nil { 821 log.Println("failed to reach knotserver", err) 822 rp.pages.Error503(w) 823 return 824 } 825 defer resp.Body.Close() 826 827 // forward 304 not modified 828 if resp.StatusCode == http.StatusNotModified { 829 w.WriteHeader(http.StatusNotModified) 830 return 831 } 832 833 if resp.StatusCode != http.StatusOK { 834 log.Printf("knotserver returned non-OK status for raw blob %s: %d", blobURL, resp.StatusCode) 835 w.WriteHeader(resp.StatusCode) 836 _, _ = io.Copy(w, resp.Body) 837 return 838 } 839 840 contentType := resp.Header.Get("Content-Type") 841 body, err := io.ReadAll(resp.Body) 842 if err != nil { 843 log.Printf("error reading response body from knotserver: %v", err) 844 w.WriteHeader(http.StatusInternalServerError) 845 return 846 } 847 848 if strings.HasPrefix(contentType, "text/") || isTextualMimeType(contentType) { 849 // serve all textual content as text/plain 850 w.Header().Set("Content-Type", "text/plain; charset=utf-8") 851 w.Write(body) 852 } else if strings.HasPrefix(contentType, "image/") || strings.HasPrefix(contentType, "video/") { 853 // serve images and videos with their original content type 854 w.Header().Set("Content-Type", contentType) 855 w.Write(body) 856 } else { 857 w.WriteHeader(http.StatusUnsupportedMediaType) 858 w.Write([]byte("unsupported content type")) 859 return 860 } 861} 862 863// isTextualMimeType returns true if the MIME type represents textual content 864// that should be served as text/plain 865func isTextualMimeType(mimeType string) bool { 866 textualTypes := []string{ 867 "application/json", 868 "application/xml", 869 "application/yaml", 870 "application/x-yaml", 871 "application/toml", 872 "application/javascript", 873 "application/ecmascript", 874 "message/", 875 } 876 877 return slices.Contains(textualTypes, mimeType) 878} 879 880// modify the spindle configured for this repo 881func (rp *Repo) EditSpindle(w http.ResponseWriter, r *http.Request) { 882 user := rp.oauth.GetUser(r) 883 l := rp.logger.With("handler", "EditSpindle") 884 l = l.With("did", user.Did) 885 l = l.With("handle", user.Handle) 886 887 errorId := "operation-error" 888 fail := func(msg string, err error) { 889 l.Error(msg, "err", err) 890 rp.pages.Notice(w, errorId, msg) 891 } 892 893 f, err := rp.repoResolver.Resolve(r) 894 if err != nil { 895 fail("Failed to resolve repo. Try again later", err) 896 return 897 } 898 899 newSpindle := r.FormValue("spindle") 900 removingSpindle := newSpindle == "[[none]]" // see pages/templates/repo/settings/pipelines.html for more info on why we use this value 901 client, err := rp.oauth.AuthorizedClient(r) 902 if err != nil { 903 fail("Failed to authorize. Try again later.", err) 904 return 905 } 906 907 if !removingSpindle { 908 // ensure that this is a valid spindle for this user 909 validSpindles, err := rp.enforcer.GetSpindlesForUser(user.Did) 910 if err != nil { 911 fail("Failed to find spindles. Try again later.", err) 912 return 913 } 914 915 if !slices.Contains(validSpindles, newSpindle) { 916 fail("Failed to configure spindle.", fmt.Errorf("%s is not a valid spindle: %q", newSpindle, validSpindles)) 917 return 918 } 919 } 920 921 newRepo := f.Repo 922 newRepo.Spindle = newSpindle 923 record := newRepo.AsRecord() 924 925 spindlePtr := &newSpindle 926 if removingSpindle { 927 spindlePtr = nil 928 newRepo.Spindle = "" 929 } 930 931 // optimistic update 932 err = db.UpdateSpindle(rp.db, newRepo.RepoAt().String(), spindlePtr) 933 if err != nil { 934 fail("Failed to update spindle. Try again later.", err) 935 return 936 } 937 938 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, newRepo.Did, newRepo.Rkey) 939 if err != nil { 940 fail("Failed to update spindle, no record found on PDS.", err) 941 return 942 } 943 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 944 Collection: tangled.RepoNSID, 945 Repo: newRepo.Did, 946 Rkey: newRepo.Rkey, 947 SwapRecord: ex.Cid, 948 Record: &lexutil.LexiconTypeDecoder{ 949 Val: &record, 950 }, 951 }) 952 953 if err != nil { 954 fail("Failed to update spindle, unable to save to PDS.", err) 955 return 956 } 957 958 if !removingSpindle { 959 // add this spindle to spindle stream 960 rp.spindlestream.AddSource( 961 context.Background(), 962 eventconsumer.NewSpindleSource(newSpindle), 963 ) 964 } 965 966 rp.pages.HxRefresh(w) 967} 968 969func (rp *Repo) AddLabel(w http.ResponseWriter, r *http.Request) { 970 user := rp.oauth.GetUser(r) 971 l := rp.logger.With("handler", "AddLabel") 972 l = l.With("did", user.Did) 973 l = l.With("handle", user.Handle) 974 975 f, err := rp.repoResolver.Resolve(r) 976 if err != nil { 977 l.Error("failed to get repo and knot", "err", err) 978 return 979 } 980 981 errorId := "add-label-error" 982 fail := func(msg string, err error) { 983 l.Error(msg, "err", err) 984 rp.pages.Notice(w, errorId, msg) 985 } 986 987 // get form values for label definition 988 name := r.FormValue("name") 989 concreteType := r.FormValue("valueType") 990 valueFormat := r.FormValue("valueFormat") 991 enumValues := r.FormValue("enumValues") 992 scope := r.FormValue("scope") 993 color := r.FormValue("color") 994 multiple := r.FormValue("multiple") == "true" 995 996 var variants []string 997 for part := range strings.SplitSeq(enumValues, ",") { 998 if part = strings.TrimSpace(part); part != "" { 999 variants = append(variants, part) 1000 } 1001 } 1002 1003 format := db.ValueTypeFormatAny 1004 if valueFormat == "did" { 1005 format = db.ValueTypeFormatDid 1006 } 1007 1008 valueType := db.ValueType{ 1009 Type: db.ConcreteType(concreteType), 1010 Format: format, 1011 Enum: variants, 1012 } 1013 1014 label := db.LabelDefinition{ 1015 Did: user.Did, 1016 Rkey: tid.TID(), 1017 Name: name, 1018 ValueType: valueType, 1019 Scope: syntax.NSID(scope), 1020 Color: &color, 1021 Multiple: multiple, 1022 Created: time.Now(), 1023 } 1024 if err := rp.validator.ValidateLabelDefinition(&label); err != nil { 1025 fail(err.Error(), err) 1026 return 1027 } 1028 1029 // announce this relation into the firehose, store into owners' pds 1030 client, err := rp.oauth.AuthorizedClient(r) 1031 if err != nil { 1032 fail(err.Error(), err) 1033 return 1034 } 1035 1036 // emit a labelRecord 1037 labelRecord := label.AsRecord() 1038 resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1039 Collection: tangled.LabelDefinitionNSID, 1040 Repo: label.Did, 1041 Rkey: label.Rkey, 1042 Record: &lexutil.LexiconTypeDecoder{ 1043 Val: &labelRecord, 1044 }, 1045 }) 1046 // invalid record 1047 if err != nil { 1048 fail("Failed to write record to PDS.", err) 1049 return 1050 } 1051 1052 aturi := resp.Uri 1053 l = l.With("at-uri", aturi) 1054 l.Info("wrote label record to PDS") 1055 1056 // update the repo to subscribe to this label 1057 newRepo := f.Repo 1058 newRepo.Labels = append(newRepo.Labels, aturi) 1059 repoRecord := newRepo.AsRecord() 1060 1061 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, newRepo.Did, newRepo.Rkey) 1062 if err != nil { 1063 fail("Failed to update labels, no record found on PDS.", err) 1064 return 1065 } 1066 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1067 Collection: tangled.RepoNSID, 1068 Repo: newRepo.Did, 1069 Rkey: newRepo.Rkey, 1070 SwapRecord: ex.Cid, 1071 Record: &lexutil.LexiconTypeDecoder{ 1072 Val: &repoRecord, 1073 }, 1074 }) 1075 1076 tx, err := rp.db.BeginTx(r.Context(), nil) 1077 if err != nil { 1078 fail("Failed to add label.", err) 1079 return 1080 } 1081 1082 rollback := func() { 1083 err1 := tx.Rollback() 1084 err2 := rollbackRecord(context.Background(), aturi, client) 1085 1086 // ignore txn complete errors, this is okay 1087 if errors.Is(err1, sql.ErrTxDone) { 1088 err1 = nil 1089 } 1090 1091 if errs := errors.Join(err1, err2); errs != nil { 1092 l.Error("failed to rollback changes", "errs", errs) 1093 return 1094 } 1095 } 1096 defer rollback() 1097 1098 _, err = db.AddLabelDefinition(tx, &label) 1099 if err != nil { 1100 fail("Failed to add label.", err) 1101 return 1102 } 1103 1104 err = db.SubscribeLabel(tx, &db.RepoLabel{ 1105 RepoAt: f.RepoAt(), 1106 LabelAt: label.AtUri(), 1107 }) 1108 1109 err = tx.Commit() 1110 if err != nil { 1111 fail("Failed to add label.", err) 1112 return 1113 } 1114 1115 // clear aturi when everything is successful 1116 aturi = "" 1117 1118 rp.pages.HxRefresh(w) 1119} 1120 1121func (rp *Repo) DeleteLabel(w http.ResponseWriter, r *http.Request) { 1122 user := rp.oauth.GetUser(r) 1123 l := rp.logger.With("handler", "DeleteLabel") 1124 l = l.With("did", user.Did) 1125 l = l.With("handle", user.Handle) 1126 1127 f, err := rp.repoResolver.Resolve(r) 1128 if err != nil { 1129 l.Error("failed to get repo and knot", "err", err) 1130 return 1131 } 1132 1133 errorId := "label-operation" 1134 fail := func(msg string, err error) { 1135 l.Error(msg, "err", err) 1136 rp.pages.Notice(w, errorId, msg) 1137 } 1138 1139 // get form values 1140 labelId := r.FormValue("label-id") 1141 1142 label, err := db.GetLabelDefinition(rp.db, db.FilterEq("id", labelId)) 1143 if err != nil { 1144 fail("Failed to find label definition.", err) 1145 return 1146 } 1147 1148 client, err := rp.oauth.AuthorizedClient(r) 1149 if err != nil { 1150 fail(err.Error(), err) 1151 return 1152 } 1153 1154 // delete label record from PDS 1155 _, err = client.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 1156 Collection: tangled.LabelDefinitionNSID, 1157 Repo: label.Did, 1158 Rkey: label.Rkey, 1159 }) 1160 if err != nil { 1161 fail("Failed to delete label record from PDS.", err) 1162 return 1163 } 1164 1165 // update repo record to remove the label reference 1166 newRepo := f.Repo 1167 var updated []string 1168 removedAt := label.AtUri().String() 1169 for _, l := range newRepo.Labels { 1170 if l != removedAt { 1171 updated = append(updated, l) 1172 } 1173 } 1174 newRepo.Labels = updated 1175 repoRecord := newRepo.AsRecord() 1176 1177 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, newRepo.Did, newRepo.Rkey) 1178 if err != nil { 1179 fail("Failed to update labels, no record found on PDS.", err) 1180 return 1181 } 1182 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1183 Collection: tangled.RepoNSID, 1184 Repo: newRepo.Did, 1185 Rkey: newRepo.Rkey, 1186 SwapRecord: ex.Cid, 1187 Record: &lexutil.LexiconTypeDecoder{ 1188 Val: &repoRecord, 1189 }, 1190 }) 1191 if err != nil { 1192 fail("Failed to update repo record.", err) 1193 return 1194 } 1195 1196 // transaction for DB changes 1197 tx, err := rp.db.BeginTx(r.Context(), nil) 1198 if err != nil { 1199 fail("Failed to delete label.", err) 1200 return 1201 } 1202 defer tx.Rollback() 1203 1204 err = db.UnsubscribeLabel( 1205 tx, 1206 db.FilterEq("repo_at", f.RepoAt()), 1207 db.FilterEq("label_at", removedAt), 1208 ) 1209 if err != nil { 1210 fail("Failed to unsubscribe label.", err) 1211 return 1212 } 1213 1214 err = db.DeleteLabelDefinition(tx, db.FilterEq("id", label.Id)) 1215 if err != nil { 1216 fail("Failed to delete label definition.", err) 1217 return 1218 } 1219 1220 err = tx.Commit() 1221 if err != nil { 1222 fail("Failed to delete label.", err) 1223 return 1224 } 1225 1226 // everything succeeded 1227 rp.pages.HxRefresh(w) 1228} 1229 1230func (rp *Repo) SubscribeLabel(w http.ResponseWriter, r *http.Request) { 1231 user := rp.oauth.GetUser(r) 1232 l := rp.logger.With("handler", "DeleteLabel") 1233 l = l.With("did", user.Did) 1234 l = l.With("handle", user.Handle) 1235 1236 f, err := rp.repoResolver.Resolve(r) 1237 if err != nil { 1238 l.Error("failed to get repo and knot", "err", err) 1239 return 1240 } 1241 1242 errorId := "label-operation" 1243 fail := func(msg string, err error) { 1244 l.Error(msg, "err", err) 1245 rp.pages.Notice(w, errorId, msg) 1246 } 1247 1248 labelAt := r.FormValue("label") 1249 _, err = db.GetLabelDefinition(rp.db, db.FilterEq("at_uri", labelAt)) 1250 if err != nil { 1251 fail("Failed to subscribe to label.", err) 1252 return 1253 } 1254 1255 newRepo := f.Repo 1256 newRepo.Labels = append(newRepo.Labels, labelAt) 1257 repoRecord := newRepo.AsRecord() 1258 1259 client, err := rp.oauth.AuthorizedClient(r) 1260 if err != nil { 1261 fail(err.Error(), err) 1262 return 1263 } 1264 1265 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, f.Repo.Did, f.Repo.Rkey) 1266 if err != nil { 1267 fail("Failed to update labels, no record found on PDS.", err) 1268 return 1269 } 1270 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1271 Collection: tangled.RepoNSID, 1272 Repo: newRepo.Did, 1273 Rkey: newRepo.Rkey, 1274 SwapRecord: ex.Cid, 1275 Record: &lexutil.LexiconTypeDecoder{ 1276 Val: &repoRecord, 1277 }, 1278 }) 1279 1280 err = db.SubscribeLabel(rp.db, &db.RepoLabel{ 1281 RepoAt: f.RepoAt(), 1282 LabelAt: syntax.ATURI(labelAt), 1283 }) 1284 if err != nil { 1285 fail("Failed to subscribe to label.", err) 1286 return 1287 } 1288 1289 // everything succeeded 1290 rp.pages.HxRefresh(w) 1291} 1292 1293func (rp *Repo) UnsubscribeLabel(w http.ResponseWriter, r *http.Request) { 1294 user := rp.oauth.GetUser(r) 1295 l := rp.logger.With("handler", "DeleteLabel") 1296 l = l.With("did", user.Did) 1297 l = l.With("handle", user.Handle) 1298 1299 f, err := rp.repoResolver.Resolve(r) 1300 if err != nil { 1301 l.Error("failed to get repo and knot", "err", err) 1302 return 1303 } 1304 1305 errorId := "label-operation" 1306 fail := func(msg string, err error) { 1307 l.Error(msg, "err", err) 1308 rp.pages.Notice(w, errorId, msg) 1309 } 1310 1311 labelAt := r.FormValue("label") 1312 _, err = db.GetLabelDefinition(rp.db, db.FilterEq("at_uri", labelAt)) 1313 if err != nil { 1314 fail("Failed to unsubscribe to label.", err) 1315 return 1316 } 1317 1318 // update repo record to remove the label reference 1319 newRepo := f.Repo 1320 var updated []string 1321 for _, l := range newRepo.Labels { 1322 if l != labelAt { 1323 updated = append(updated, l) 1324 } 1325 } 1326 newRepo.Labels = updated 1327 repoRecord := newRepo.AsRecord() 1328 1329 client, err := rp.oauth.AuthorizedClient(r) 1330 if err != nil { 1331 fail(err.Error(), err) 1332 return 1333 } 1334 1335 ex, err := client.RepoGetRecord(r.Context(), "", tangled.RepoNSID, f.Repo.Did, f.Repo.Rkey) 1336 if err != nil { 1337 fail("Failed to update labels, no record found on PDS.", err) 1338 return 1339 } 1340 _, err = client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1341 Collection: tangled.RepoNSID, 1342 Repo: newRepo.Did, 1343 Rkey: newRepo.Rkey, 1344 SwapRecord: ex.Cid, 1345 Record: &lexutil.LexiconTypeDecoder{ 1346 Val: &repoRecord, 1347 }, 1348 }) 1349 1350 err = db.UnsubscribeLabel( 1351 rp.db, 1352 db.FilterEq("repo_at", f.RepoAt()), 1353 db.FilterEq("label_at", labelAt), 1354 ) 1355 if err != nil { 1356 fail("Failed to unsubscribe label.", err) 1357 return 1358 } 1359 1360 // everything succeeded 1361 rp.pages.HxRefresh(w) 1362} 1363 1364func (rp *Repo) AddCollaborator(w http.ResponseWriter, r *http.Request) { 1365 user := rp.oauth.GetUser(r) 1366 l := rp.logger.With("handler", "AddCollaborator") 1367 l = l.With("did", user.Did) 1368 l = l.With("handle", user.Handle) 1369 1370 f, err := rp.repoResolver.Resolve(r) 1371 if err != nil { 1372 l.Error("failed to get repo and knot", "err", err) 1373 return 1374 } 1375 1376 errorId := "add-collaborator-error" 1377 fail := func(msg string, err error) { 1378 l.Error(msg, "err", err) 1379 rp.pages.Notice(w, errorId, msg) 1380 } 1381 1382 collaborator := r.FormValue("collaborator") 1383 if collaborator == "" { 1384 fail("Invalid form.", nil) 1385 return 1386 } 1387 1388 // remove a single leading `@`, to make @handle work with ResolveIdent 1389 collaborator = strings.TrimPrefix(collaborator, "@") 1390 1391 collaboratorIdent, err := rp.idResolver.ResolveIdent(r.Context(), collaborator) 1392 if err != nil { 1393 fail(fmt.Sprintf("'%s' is not a valid DID/handle.", collaborator), err) 1394 return 1395 } 1396 1397 if collaboratorIdent.DID.String() == user.Did { 1398 fail("You seem to be adding yourself as a collaborator.", nil) 1399 return 1400 } 1401 l = l.With("collaborator", collaboratorIdent.Handle) 1402 l = l.With("knot", f.Knot) 1403 1404 // announce this relation into the firehose, store into owners' pds 1405 client, err := rp.oauth.AuthorizedClient(r) 1406 if err != nil { 1407 fail("Failed to write to PDS.", err) 1408 return 1409 } 1410 1411 // emit a record 1412 currentUser := rp.oauth.GetUser(r) 1413 rkey := tid.TID() 1414 createdAt := time.Now() 1415 resp, err := client.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 1416 Collection: tangled.RepoCollaboratorNSID, 1417 Repo: currentUser.Did, 1418 Rkey: rkey, 1419 Record: &lexutil.LexiconTypeDecoder{ 1420 Val: &tangled.RepoCollaborator{ 1421 Subject: collaboratorIdent.DID.String(), 1422 Repo: string(f.RepoAt()), 1423 CreatedAt: createdAt.Format(time.RFC3339), 1424 }}, 1425 }) 1426 // invalid record 1427 if err != nil { 1428 fail("Failed to write record to PDS.", err) 1429 return 1430 } 1431 1432 aturi := resp.Uri 1433 l = l.With("at-uri", aturi) 1434 l.Info("wrote record to PDS") 1435 1436 tx, err := rp.db.BeginTx(r.Context(), nil) 1437 if err != nil { 1438 fail("Failed to add collaborator.", err) 1439 return 1440 } 1441 1442 rollback := func() { 1443 err1 := tx.Rollback() 1444 err2 := rp.enforcer.E.LoadPolicy() 1445 err3 := rollbackRecord(context.Background(), aturi, client) 1446 1447 // ignore txn complete errors, this is okay 1448 if errors.Is(err1, sql.ErrTxDone) { 1449 err1 = nil 1450 } 1451 1452 if errs := errors.Join(err1, err2, err3); errs != nil { 1453 l.Error("failed to rollback changes", "errs", errs) 1454 return 1455 } 1456 } 1457 defer rollback() 1458 1459 err = rp.enforcer.AddCollaborator(collaboratorIdent.DID.String(), f.Knot, f.DidSlashRepo()) 1460 if err != nil { 1461 fail("Failed to add collaborator permissions.", err) 1462 return 1463 } 1464 1465 err = db.AddCollaborator(tx, db.Collaborator{ 1466 Did: syntax.DID(currentUser.Did), 1467 Rkey: rkey, 1468 SubjectDid: collaboratorIdent.DID, 1469 RepoAt: f.RepoAt(), 1470 Created: createdAt, 1471 }) 1472 if err != nil { 1473 fail("Failed to add collaborator.", err) 1474 return 1475 } 1476 1477 err = tx.Commit() 1478 if err != nil { 1479 fail("Failed to add collaborator.", err) 1480 return 1481 } 1482 1483 err = rp.enforcer.E.SavePolicy() 1484 if err != nil { 1485 fail("Failed to update collaborator permissions.", err) 1486 return 1487 } 1488 1489 // clear aturi to when everything is successful 1490 aturi = "" 1491 1492 rp.pages.HxRefresh(w) 1493} 1494 1495func (rp *Repo) DeleteRepo(w http.ResponseWriter, r *http.Request) { 1496 user := rp.oauth.GetUser(r) 1497 1498 noticeId := "operation-error" 1499 f, err := rp.repoResolver.Resolve(r) 1500 if err != nil { 1501 log.Println("failed to get repo and knot", err) 1502 return 1503 } 1504 1505 // remove record from pds 1506 xrpcClient, err := rp.oauth.AuthorizedClient(r) 1507 if err != nil { 1508 log.Println("failed to get authorized client", err) 1509 return 1510 } 1511 _, err = xrpcClient.RepoDeleteRecord(r.Context(), &comatproto.RepoDeleteRecord_Input{ 1512 Collection: tangled.RepoNSID, 1513 Repo: user.Did, 1514 Rkey: f.Rkey, 1515 }) 1516 if err != nil { 1517 log.Printf("failed to delete record: %s", err) 1518 rp.pages.Notice(w, noticeId, "Failed to delete repository from PDS.") 1519 return 1520 } 1521 log.Println("removed repo record ", f.RepoAt().String()) 1522 1523 client, err := rp.oauth.ServiceClient( 1524 r, 1525 oauth.WithService(f.Knot), 1526 oauth.WithLxm(tangled.RepoDeleteNSID), 1527 oauth.WithDev(rp.config.Core.Dev), 1528 ) 1529 if err != nil { 1530 log.Println("failed to connect to knot server:", err) 1531 return 1532 } 1533 1534 err = tangled.RepoDelete( 1535 r.Context(), 1536 client, 1537 &tangled.RepoDelete_Input{ 1538 Did: f.OwnerDid(), 1539 Name: f.Name, 1540 Rkey: f.Rkey, 1541 }, 1542 ) 1543 if err := xrpcclient.HandleXrpcErr(err); err != nil { 1544 rp.pages.Notice(w, noticeId, err.Error()) 1545 return 1546 } 1547 log.Println("deleted repo from knot") 1548 1549 tx, err := rp.db.BeginTx(r.Context(), nil) 1550 if err != nil { 1551 log.Println("failed to start tx") 1552 w.Write(fmt.Append(nil, "failed to add collaborator: ", err)) 1553 return 1554 } 1555 defer func() { 1556 tx.Rollback() 1557 err = rp.enforcer.E.LoadPolicy() 1558 if err != nil { 1559 log.Println("failed to rollback policies") 1560 } 1561 }() 1562 1563 // remove collaborator RBAC 1564 repoCollaborators, err := rp.enforcer.E.GetImplicitUsersForResourceByDomain(f.DidSlashRepo(), f.Knot) 1565 if err != nil { 1566 rp.pages.Notice(w, noticeId, "Failed to remove collaborators") 1567 return 1568 } 1569 for _, c := range repoCollaborators { 1570 did := c[0] 1571 rp.enforcer.RemoveCollaborator(did, f.Knot, f.DidSlashRepo()) 1572 } 1573 log.Println("removed collaborators") 1574 1575 // remove repo RBAC 1576 err = rp.enforcer.RemoveRepo(f.OwnerDid(), f.Knot, f.DidSlashRepo()) 1577 if err != nil { 1578 rp.pages.Notice(w, noticeId, "Failed to update RBAC rules") 1579 return 1580 } 1581 1582 // remove repo from db 1583 err = db.RemoveRepo(tx, f.OwnerDid(), f.Name) 1584 if err != nil { 1585 rp.pages.Notice(w, noticeId, "Failed to update appview") 1586 return 1587 } 1588 log.Println("removed repo from db") 1589 1590 err = tx.Commit() 1591 if err != nil { 1592 log.Println("failed to commit changes", err) 1593 http.Error(w, err.Error(), http.StatusInternalServerError) 1594 return 1595 } 1596 1597 err = rp.enforcer.E.SavePolicy() 1598 if err != nil { 1599 log.Println("failed to update ACLs", err) 1600 http.Error(w, err.Error(), http.StatusInternalServerError) 1601 return 1602 } 1603 1604 rp.pages.HxRedirect(w, fmt.Sprintf("/%s", f.OwnerDid())) 1605} 1606 1607func (rp *Repo) SetDefaultBranch(w http.ResponseWriter, r *http.Request) { 1608 f, err := rp.repoResolver.Resolve(r) 1609 if err != nil { 1610 log.Println("failed to get repo and knot", err) 1611 return 1612 } 1613 1614 noticeId := "operation-error" 1615 branch := r.FormValue("branch") 1616 if branch == "" { 1617 http.Error(w, "malformed form", http.StatusBadRequest) 1618 return 1619 } 1620 1621 client, err := rp.oauth.ServiceClient( 1622 r, 1623 oauth.WithService(f.Knot), 1624 oauth.WithLxm(tangled.RepoSetDefaultBranchNSID), 1625 oauth.WithDev(rp.config.Core.Dev), 1626 ) 1627 if err != nil { 1628 log.Println("failed to connect to knot server:", err) 1629 rp.pages.Notice(w, noticeId, "Failed to connect to knot server.") 1630 return 1631 } 1632 1633 xe := tangled.RepoSetDefaultBranch( 1634 r.Context(), 1635 client, 1636 &tangled.RepoSetDefaultBranch_Input{ 1637 Repo: f.RepoAt().String(), 1638 DefaultBranch: branch, 1639 }, 1640 ) 1641 if err := xrpcclient.HandleXrpcErr(xe); err != nil { 1642 log.Println("xrpc failed", "err", xe) 1643 rp.pages.Notice(w, noticeId, err.Error()) 1644 return 1645 } 1646 1647 rp.pages.HxRefresh(w) 1648} 1649 1650func (rp *Repo) Secrets(w http.ResponseWriter, r *http.Request) { 1651 user := rp.oauth.GetUser(r) 1652 l := rp.logger.With("handler", "Secrets") 1653 l = l.With("handle", user.Handle) 1654 l = l.With("did", user.Did) 1655 1656 f, err := rp.repoResolver.Resolve(r) 1657 if err != nil { 1658 log.Println("failed to get repo and knot", err) 1659 return 1660 } 1661 1662 if f.Spindle == "" { 1663 log.Println("empty spindle cannot add/rm secret", err) 1664 return 1665 } 1666 1667 lxm := tangled.RepoAddSecretNSID 1668 if r.Method == http.MethodDelete { 1669 lxm = tangled.RepoRemoveSecretNSID 1670 } 1671 1672 spindleClient, err := rp.oauth.ServiceClient( 1673 r, 1674 oauth.WithService(f.Spindle), 1675 oauth.WithLxm(lxm), 1676 oauth.WithExp(60), 1677 oauth.WithDev(rp.config.Core.Dev), 1678 ) 1679 if err != nil { 1680 log.Println("failed to create spindle client", err) 1681 return 1682 } 1683 1684 key := r.FormValue("key") 1685 if key == "" { 1686 w.WriteHeader(http.StatusBadRequest) 1687 return 1688 } 1689 1690 switch r.Method { 1691 case http.MethodPut: 1692 errorId := "add-secret-error" 1693 1694 value := r.FormValue("value") 1695 if value == "" { 1696 w.WriteHeader(http.StatusBadRequest) 1697 return 1698 } 1699 1700 err = tangled.RepoAddSecret( 1701 r.Context(), 1702 spindleClient, 1703 &tangled.RepoAddSecret_Input{ 1704 Repo: f.RepoAt().String(), 1705 Key: key, 1706 Value: value, 1707 }, 1708 ) 1709 if err != nil { 1710 l.Error("Failed to add secret.", "err", err) 1711 rp.pages.Notice(w, errorId, "Failed to add secret.") 1712 return 1713 } 1714 1715 case http.MethodDelete: 1716 errorId := "operation-error" 1717 1718 err = tangled.RepoRemoveSecret( 1719 r.Context(), 1720 spindleClient, 1721 &tangled.RepoRemoveSecret_Input{ 1722 Repo: f.RepoAt().String(), 1723 Key: key, 1724 }, 1725 ) 1726 if err != nil { 1727 l.Error("Failed to delete secret.", "err", err) 1728 rp.pages.Notice(w, errorId, "Failed to delete secret.") 1729 return 1730 } 1731 } 1732 1733 rp.pages.HxRefresh(w) 1734} 1735 1736type tab = map[string]any 1737 1738var ( 1739 // would be great to have ordered maps right about now 1740 settingsTabs []tab = []tab{ 1741 {"Name": "general", "Icon": "sliders-horizontal"}, 1742 {"Name": "access", "Icon": "users"}, 1743 {"Name": "pipelines", "Icon": "layers-2"}, 1744 } 1745) 1746 1747func (rp *Repo) RepoSettings(w http.ResponseWriter, r *http.Request) { 1748 tabVal := r.URL.Query().Get("tab") 1749 if tabVal == "" { 1750 tabVal = "general" 1751 } 1752 1753 switch tabVal { 1754 case "general": 1755 rp.generalSettings(w, r) 1756 1757 case "access": 1758 rp.accessSettings(w, r) 1759 1760 case "pipelines": 1761 rp.pipelineSettings(w, r) 1762 } 1763} 1764 1765func (rp *Repo) generalSettings(w http.ResponseWriter, r *http.Request) { 1766 f, err := rp.repoResolver.Resolve(r) 1767 user := rp.oauth.GetUser(r) 1768 1769 scheme := "http" 1770 if !rp.config.Core.Dev { 1771 scheme = "https" 1772 } 1773 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 1774 xrpcc := &indigoxrpc.Client{ 1775 Host: host, 1776 } 1777 1778 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 1779 xrpcBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 1780 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 1781 log.Println("failed to call XRPC repo.branches", xrpcerr) 1782 rp.pages.Error503(w) 1783 return 1784 } 1785 1786 var result types.RepoBranchesResponse 1787 if err := json.Unmarshal(xrpcBytes, &result); err != nil { 1788 log.Println("failed to decode XRPC response", err) 1789 rp.pages.Error503(w) 1790 return 1791 } 1792 1793 labels, err := db.GetLabelDefinitions(rp.db, db.FilterIn("at_uri", f.Repo.Labels)) 1794 if err != nil { 1795 log.Println("failed to fetch labels", err) 1796 rp.pages.Error503(w) 1797 return 1798 } 1799 1800 rp.pages.RepoGeneralSettings(w, pages.RepoGeneralSettingsParams{ 1801 LoggedInUser: user, 1802 RepoInfo: f.RepoInfo(user), 1803 Branches: result.Branches, 1804 Labels: labels, 1805 Tabs: settingsTabs, 1806 Tab: "general", 1807 }) 1808} 1809 1810func (rp *Repo) accessSettings(w http.ResponseWriter, r *http.Request) { 1811 f, err := rp.repoResolver.Resolve(r) 1812 user := rp.oauth.GetUser(r) 1813 1814 repoCollaborators, err := f.Collaborators(r.Context()) 1815 if err != nil { 1816 log.Println("failed to get collaborators", err) 1817 } 1818 1819 rp.pages.RepoAccessSettings(w, pages.RepoAccessSettingsParams{ 1820 LoggedInUser: user, 1821 RepoInfo: f.RepoInfo(user), 1822 Tabs: settingsTabs, 1823 Tab: "access", 1824 Collaborators: repoCollaborators, 1825 }) 1826} 1827 1828func (rp *Repo) pipelineSettings(w http.ResponseWriter, r *http.Request) { 1829 f, err := rp.repoResolver.Resolve(r) 1830 user := rp.oauth.GetUser(r) 1831 1832 // all spindles that the repo owner is a member of 1833 spindles, err := rp.enforcer.GetSpindlesForUser(f.OwnerDid()) 1834 if err != nil { 1835 log.Println("failed to fetch spindles", err) 1836 return 1837 } 1838 1839 var secrets []*tangled.RepoListSecrets_Secret 1840 if f.Spindle != "" { 1841 if spindleClient, err := rp.oauth.ServiceClient( 1842 r, 1843 oauth.WithService(f.Spindle), 1844 oauth.WithLxm(tangled.RepoListSecretsNSID), 1845 oauth.WithExp(60), 1846 oauth.WithDev(rp.config.Core.Dev), 1847 ); err != nil { 1848 log.Println("failed to create spindle client", err) 1849 } else if resp, err := tangled.RepoListSecrets(r.Context(), spindleClient, f.RepoAt().String()); err != nil { 1850 log.Println("failed to fetch secrets", err) 1851 } else { 1852 secrets = resp.Secrets 1853 } 1854 } 1855 1856 slices.SortFunc(secrets, func(a, b *tangled.RepoListSecrets_Secret) int { 1857 return strings.Compare(a.Key, b.Key) 1858 }) 1859 1860 var dids []string 1861 for _, s := range secrets { 1862 dids = append(dids, s.CreatedBy) 1863 } 1864 resolvedIdents := rp.idResolver.ResolveIdents(r.Context(), dids) 1865 1866 // convert to a more manageable form 1867 var niceSecret []map[string]any 1868 for id, s := range secrets { 1869 when, _ := time.Parse(time.RFC3339, s.CreatedAt) 1870 niceSecret = append(niceSecret, map[string]any{ 1871 "Id": id, 1872 "Key": s.Key, 1873 "CreatedAt": when, 1874 "CreatedBy": resolvedIdents[id].Handle.String(), 1875 }) 1876 } 1877 1878 rp.pages.RepoPipelineSettings(w, pages.RepoPipelineSettingsParams{ 1879 LoggedInUser: user, 1880 RepoInfo: f.RepoInfo(user), 1881 Tabs: settingsTabs, 1882 Tab: "pipelines", 1883 Spindles: spindles, 1884 CurrentSpindle: f.Spindle, 1885 Secrets: niceSecret, 1886 }) 1887} 1888 1889func (rp *Repo) SyncRepoFork(w http.ResponseWriter, r *http.Request) { 1890 ref := chi.URLParam(r, "ref") 1891 ref, _ = url.PathUnescape(ref) 1892 1893 user := rp.oauth.GetUser(r) 1894 f, err := rp.repoResolver.Resolve(r) 1895 if err != nil { 1896 log.Printf("failed to resolve source repo: %v", err) 1897 return 1898 } 1899 1900 switch r.Method { 1901 case http.MethodPost: 1902 client, err := rp.oauth.ServiceClient( 1903 r, 1904 oauth.WithService(f.Knot), 1905 oauth.WithLxm(tangled.RepoForkSyncNSID), 1906 oauth.WithDev(rp.config.Core.Dev), 1907 ) 1908 if err != nil { 1909 rp.pages.Notice(w, "repo", "Failed to connect to knot server.") 1910 return 1911 } 1912 1913 repoInfo := f.RepoInfo(user) 1914 if repoInfo.Source == nil { 1915 rp.pages.Notice(w, "repo", "This repository is not a fork.") 1916 return 1917 } 1918 1919 err = tangled.RepoForkSync( 1920 r.Context(), 1921 client, 1922 &tangled.RepoForkSync_Input{ 1923 Did: user.Did, 1924 Name: f.Name, 1925 Source: repoInfo.Source.RepoAt().String(), 1926 Branch: ref, 1927 }, 1928 ) 1929 if err := xrpcclient.HandleXrpcErr(err); err != nil { 1930 rp.pages.Notice(w, "repo", err.Error()) 1931 return 1932 } 1933 1934 rp.pages.HxRefresh(w) 1935 return 1936 } 1937} 1938 1939func (rp *Repo) ForkRepo(w http.ResponseWriter, r *http.Request) { 1940 user := rp.oauth.GetUser(r) 1941 f, err := rp.repoResolver.Resolve(r) 1942 if err != nil { 1943 log.Printf("failed to resolve source repo: %v", err) 1944 return 1945 } 1946 1947 switch r.Method { 1948 case http.MethodGet: 1949 user := rp.oauth.GetUser(r) 1950 knots, err := rp.enforcer.GetKnotsForUser(user.Did) 1951 if err != nil { 1952 rp.pages.Notice(w, "repo", "Invalid user account.") 1953 return 1954 } 1955 1956 rp.pages.ForkRepo(w, pages.ForkRepoParams{ 1957 LoggedInUser: user, 1958 Knots: knots, 1959 RepoInfo: f.RepoInfo(user), 1960 }) 1961 1962 case http.MethodPost: 1963 l := rp.logger.With("handler", "ForkRepo") 1964 1965 targetKnot := r.FormValue("knot") 1966 if targetKnot == "" { 1967 rp.pages.Notice(w, "repo", "Invalid form submission—missing knot domain.") 1968 return 1969 } 1970 l = l.With("targetKnot", targetKnot) 1971 1972 ok, err := rp.enforcer.E.Enforce(user.Did, targetKnot, targetKnot, "repo:create") 1973 if err != nil || !ok { 1974 rp.pages.Notice(w, "repo", "You do not have permission to create a repo in this knot.") 1975 return 1976 } 1977 1978 // choose a name for a fork 1979 forkName := f.Name 1980 // this check is *only* to see if the forked repo name already exists 1981 // in the user's account. 1982 existingRepo, err := db.GetRepo( 1983 rp.db, 1984 db.FilterEq("did", user.Did), 1985 db.FilterEq("name", f.Name), 1986 ) 1987 if err != nil { 1988 if errors.Is(err, sql.ErrNoRows) { 1989 // no existing repo with this name found, we can use the name as is 1990 } else { 1991 log.Println("error fetching existing repo from db", "err", err) 1992 rp.pages.Notice(w, "repo", "Failed to fork this repository. Try again later.") 1993 return 1994 } 1995 } else if existingRepo != nil { 1996 // repo with this name already exists, append random string 1997 forkName = fmt.Sprintf("%s-%s", forkName, randomString(3)) 1998 } 1999 l = l.With("forkName", forkName) 2000 2001 uri := "https" 2002 if rp.config.Core.Dev { 2003 uri = "http" 2004 } 2005 2006 forkSourceUrl := fmt.Sprintf("%s://%s/%s/%s", uri, f.Knot, f.OwnerDid(), f.Repo.Name) 2007 l = l.With("cloneUrl", forkSourceUrl) 2008 2009 sourceAt := f.RepoAt().String() 2010 2011 // create an atproto record for this fork 2012 rkey := tid.TID() 2013 repo := &db.Repo{ 2014 Did: user.Did, 2015 Name: forkName, 2016 Knot: targetKnot, 2017 Rkey: rkey, 2018 Source: sourceAt, 2019 Description: existingRepo.Description, 2020 Created: time.Now(), 2021 } 2022 record := repo.AsRecord() 2023 2024 xrpcClient, err := rp.oauth.AuthorizedClient(r) 2025 if err != nil { 2026 l.Error("failed to create xrpcclient", "err", err) 2027 rp.pages.Notice(w, "repo", "Failed to fork repository.") 2028 return 2029 } 2030 2031 atresp, err := xrpcClient.RepoPutRecord(r.Context(), &comatproto.RepoPutRecord_Input{ 2032 Collection: tangled.RepoNSID, 2033 Repo: user.Did, 2034 Rkey: rkey, 2035 Record: &lexutil.LexiconTypeDecoder{ 2036 Val: &record, 2037 }, 2038 }) 2039 if err != nil { 2040 l.Error("failed to write to PDS", "err", err) 2041 rp.pages.Notice(w, "repo", "Failed to announce repository creation.") 2042 return 2043 } 2044 2045 aturi := atresp.Uri 2046 l = l.With("aturi", aturi) 2047 l.Info("wrote to PDS") 2048 2049 tx, err := rp.db.BeginTx(r.Context(), nil) 2050 if err != nil { 2051 l.Info("txn failed", "err", err) 2052 rp.pages.Notice(w, "repo", "Failed to save repository information.") 2053 return 2054 } 2055 2056 // The rollback function reverts a few things on failure: 2057 // - the pending txn 2058 // - the ACLs 2059 // - the atproto record created 2060 rollback := func() { 2061 err1 := tx.Rollback() 2062 err2 := rp.enforcer.E.LoadPolicy() 2063 err3 := rollbackRecord(context.Background(), aturi, xrpcClient) 2064 2065 // ignore txn complete errors, this is okay 2066 if errors.Is(err1, sql.ErrTxDone) { 2067 err1 = nil 2068 } 2069 2070 if errs := errors.Join(err1, err2, err3); errs != nil { 2071 l.Error("failed to rollback changes", "errs", errs) 2072 return 2073 } 2074 } 2075 defer rollback() 2076 2077 client, err := rp.oauth.ServiceClient( 2078 r, 2079 oauth.WithService(targetKnot), 2080 oauth.WithLxm(tangled.RepoCreateNSID), 2081 oauth.WithDev(rp.config.Core.Dev), 2082 ) 2083 if err != nil { 2084 l.Error("could not create service client", "err", err) 2085 rp.pages.Notice(w, "repo", "Failed to connect to knot server.") 2086 return 2087 } 2088 2089 err = tangled.RepoCreate( 2090 r.Context(), 2091 client, 2092 &tangled.RepoCreate_Input{ 2093 Rkey: rkey, 2094 Source: &forkSourceUrl, 2095 }, 2096 ) 2097 if err := xrpcclient.HandleXrpcErr(err); err != nil { 2098 rp.pages.Notice(w, "repo", err.Error()) 2099 return 2100 } 2101 2102 err = db.AddRepo(tx, repo) 2103 if err != nil { 2104 log.Println(err) 2105 rp.pages.Notice(w, "repo", "Failed to save repository information.") 2106 return 2107 } 2108 2109 // acls 2110 p, _ := securejoin.SecureJoin(user.Did, forkName) 2111 err = rp.enforcer.AddRepo(user.Did, targetKnot, p) 2112 if err != nil { 2113 log.Println(err) 2114 rp.pages.Notice(w, "repo", "Failed to set up repository permissions.") 2115 return 2116 } 2117 2118 err = tx.Commit() 2119 if err != nil { 2120 log.Println("failed to commit changes", err) 2121 http.Error(w, err.Error(), http.StatusInternalServerError) 2122 return 2123 } 2124 2125 err = rp.enforcer.E.SavePolicy() 2126 if err != nil { 2127 log.Println("failed to update ACLs", err) 2128 http.Error(w, err.Error(), http.StatusInternalServerError) 2129 return 2130 } 2131 2132 // reset the ATURI because the transaction completed successfully 2133 aturi = "" 2134 2135 rp.notifier.NewRepo(r.Context(), repo) 2136 rp.pages.HxLocation(w, fmt.Sprintf("/@%s/%s", user.Handle, forkName)) 2137 } 2138} 2139 2140// this is used to rollback changes made to the PDS 2141// 2142// it is a no-op if the provided ATURI is empty 2143func rollbackRecord(ctx context.Context, aturi string, xrpcc *xrpcclient.Client) error { 2144 if aturi == "" { 2145 return nil 2146 } 2147 2148 parsed := syntax.ATURI(aturi) 2149 2150 collection := parsed.Collection().String() 2151 repo := parsed.Authority().String() 2152 rkey := parsed.RecordKey().String() 2153 2154 _, err := xrpcc.RepoDeleteRecord(ctx, &comatproto.RepoDeleteRecord_Input{ 2155 Collection: collection, 2156 Repo: repo, 2157 Rkey: rkey, 2158 }) 2159 return err 2160} 2161 2162func (rp *Repo) RepoCompareNew(w http.ResponseWriter, r *http.Request) { 2163 user := rp.oauth.GetUser(r) 2164 f, err := rp.repoResolver.Resolve(r) 2165 if err != nil { 2166 log.Println("failed to get repo and knot", err) 2167 return 2168 } 2169 2170 scheme := "http" 2171 if !rp.config.Core.Dev { 2172 scheme = "https" 2173 } 2174 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 2175 xrpcc := &indigoxrpc.Client{ 2176 Host: host, 2177 } 2178 2179 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 2180 branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 2181 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 2182 log.Println("failed to call XRPC repo.branches", xrpcerr) 2183 rp.pages.Error503(w) 2184 return 2185 } 2186 2187 var branchResult types.RepoBranchesResponse 2188 if err := json.Unmarshal(branchBytes, &branchResult); err != nil { 2189 log.Println("failed to decode XRPC branches response", err) 2190 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 2191 return 2192 } 2193 branches := branchResult.Branches 2194 2195 sortBranches(branches) 2196 2197 var defaultBranch string 2198 for _, b := range branches { 2199 if b.IsDefault { 2200 defaultBranch = b.Name 2201 } 2202 } 2203 2204 base := defaultBranch 2205 head := defaultBranch 2206 2207 params := r.URL.Query() 2208 queryBase := params.Get("base") 2209 queryHead := params.Get("head") 2210 if queryBase != "" { 2211 base = queryBase 2212 } 2213 if queryHead != "" { 2214 head = queryHead 2215 } 2216 2217 tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 2218 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 2219 log.Println("failed to call XRPC repo.tags", xrpcerr) 2220 rp.pages.Error503(w) 2221 return 2222 } 2223 2224 var tags types.RepoTagsResponse 2225 if err := json.Unmarshal(tagBytes, &tags); err != nil { 2226 log.Println("failed to decode XRPC tags response", err) 2227 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 2228 return 2229 } 2230 2231 repoinfo := f.RepoInfo(user) 2232 2233 rp.pages.RepoCompareNew(w, pages.RepoCompareNewParams{ 2234 LoggedInUser: user, 2235 RepoInfo: repoinfo, 2236 Branches: branches, 2237 Tags: tags.Tags, 2238 Base: base, 2239 Head: head, 2240 }) 2241} 2242 2243func (rp *Repo) RepoCompare(w http.ResponseWriter, r *http.Request) { 2244 user := rp.oauth.GetUser(r) 2245 f, err := rp.repoResolver.Resolve(r) 2246 if err != nil { 2247 log.Println("failed to get repo and knot", err) 2248 return 2249 } 2250 2251 var diffOpts types.DiffOpts 2252 if d := r.URL.Query().Get("diff"); d == "split" { 2253 diffOpts.Split = true 2254 } 2255 2256 // if user is navigating to one of 2257 // /compare/{base}/{head} 2258 // /compare/{base}...{head} 2259 base := chi.URLParam(r, "base") 2260 head := chi.URLParam(r, "head") 2261 if base == "" && head == "" { 2262 rest := chi.URLParam(r, "*") // master...feature/xyz 2263 parts := strings.SplitN(rest, "...", 2) 2264 if len(parts) == 2 { 2265 base = parts[0] 2266 head = parts[1] 2267 } 2268 } 2269 2270 base, _ = url.PathUnescape(base) 2271 head, _ = url.PathUnescape(head) 2272 2273 if base == "" || head == "" { 2274 log.Printf("invalid comparison") 2275 rp.pages.Error404(w) 2276 return 2277 } 2278 2279 scheme := "http" 2280 if !rp.config.Core.Dev { 2281 scheme = "https" 2282 } 2283 host := fmt.Sprintf("%s://%s", scheme, f.Knot) 2284 xrpcc := &indigoxrpc.Client{ 2285 Host: host, 2286 } 2287 2288 repo := fmt.Sprintf("%s/%s", f.OwnerDid(), f.Name) 2289 2290 branchBytes, err := tangled.RepoBranches(r.Context(), xrpcc, "", 0, repo) 2291 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 2292 log.Println("failed to call XRPC repo.branches", xrpcerr) 2293 rp.pages.Error503(w) 2294 return 2295 } 2296 2297 var branches types.RepoBranchesResponse 2298 if err := json.Unmarshal(branchBytes, &branches); err != nil { 2299 log.Println("failed to decode XRPC branches response", err) 2300 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 2301 return 2302 } 2303 2304 tagBytes, err := tangled.RepoTags(r.Context(), xrpcc, "", 0, repo) 2305 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 2306 log.Println("failed to call XRPC repo.tags", xrpcerr) 2307 rp.pages.Error503(w) 2308 return 2309 } 2310 2311 var tags types.RepoTagsResponse 2312 if err := json.Unmarshal(tagBytes, &tags); err != nil { 2313 log.Println("failed to decode XRPC tags response", err) 2314 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 2315 return 2316 } 2317 2318 compareBytes, err := tangled.RepoCompare(r.Context(), xrpcc, repo, base, head) 2319 if xrpcerr := xrpcclient.HandleXrpcErr(err); xrpcerr != nil { 2320 log.Println("failed to call XRPC repo.compare", xrpcerr) 2321 rp.pages.Error503(w) 2322 return 2323 } 2324 2325 var formatPatch types.RepoFormatPatchResponse 2326 if err := json.Unmarshal(compareBytes, &formatPatch); err != nil { 2327 log.Println("failed to decode XRPC compare response", err) 2328 rp.pages.Notice(w, "compare-error", "Failed to produce comparison. Try again later.") 2329 return 2330 } 2331 2332 diff := patchutil.AsNiceDiff(formatPatch.Patch, base) 2333 2334 repoinfo := f.RepoInfo(user) 2335 2336 rp.pages.RepoCompare(w, pages.RepoCompareParams{ 2337 LoggedInUser: user, 2338 RepoInfo: repoinfo, 2339 Branches: branches.Branches, 2340 Tags: tags.Tags, 2341 Base: base, 2342 Head: head, 2343 Diff: &diff, 2344 DiffOpts: diffOpts, 2345 }) 2346 2347}