···
"github.com/go-chi/chi/v5"
"github.com/gorilla/sessions"
"github.com/lestrrat-go/jwx/v2/jwk"
"github.com/posthog/posthog-go"
"tangled.sh/icyphox.sh/atproto-oauth/helpers"
19
+
tangled "tangled.sh/tangled.sh/core/api/tangled"
sessioncache "tangled.sh/tangled.sh/core/appview/cache/session"
"tangled.sh/tangled.sh/core/appview/config"
"tangled.sh/tangled.sh/core/appview/db"
···
"tangled.sh/tangled.sh/core/idresolver"
"tangled.sh/tangled.sh/core/knotclient"
"tangled.sh/tangled.sh/core/rbac"
30
+
"tangled.sh/tangled.sh/core/tid"
···
log.Println("session saved successfully")
go o.addToDefaultKnot(oauthRequest.Did)
302
+
go o.addToDefaultSpindle(oauthRequest.Did)
err = o.posthog.Enqueue(posthog.Capture{
···
341
+
func (o *OAuthHandler) addToDefaultSpindle(did string) {
342
+
// use the tangled.sh app password to get an accessJwt
343
+
// and create an sh.tangled.spindle.member record with that
345
+
defaultSpindle := "spindle.tangled.sh"
346
+
appPassword := o.config.Core.AppPassword
348
+
// TODO: hardcoded tangled handle and did for now
349
+
tangledHandle := "tangled.sh"
350
+
tangledDid := "did:plc:wshs7t2adsemcrrd4snkeqli"
352
+
if appPassword == "" {
353
+
log.Println("no app password configured, skipping spindle member addition")
357
+
log.Printf("adding %s to default spindle", did)
359
+
resolved, err := o.idResolver.ResolveIdent(context.Background(), tangledDid)
361
+
log.Printf("failed to resolve tangled.sh DID %s: %v", tangledDid, err)
365
+
pdsEndpoint := resolved.PDSEndpoint()
366
+
if pdsEndpoint == "" {
367
+
log.Printf("no PDS endpoint found for tangled.sh DID %s", tangledDid)
371
+
sessionPayload := map[string]string{
372
+
"identifier": tangledHandle,
373
+
"password": appPassword,
375
+
sessionBytes, err := json.Marshal(sessionPayload)
377
+
log.Printf("failed to marshal session payload: %v", err)
381
+
sessionURL := pdsEndpoint + "/xrpc/com.atproto.server.createSession"
382
+
sessionReq, err := http.NewRequestWithContext(context.Background(), "POST", sessionURL, bytes.NewBuffer(sessionBytes))
384
+
log.Printf("failed to create session request: %v", err)
387
+
sessionReq.Header.Set("Content-Type", "application/json")
389
+
client := &http.Client{Timeout: 30 * time.Second}
390
+
sessionResp, err := client.Do(sessionReq)
392
+
log.Printf("failed to create session: %v", err)
395
+
defer sessionResp.Body.Close()
397
+
if sessionResp.StatusCode != http.StatusOK {
398
+
log.Printf("failed to create session: HTTP %d", sessionResp.StatusCode)
402
+
var session struct {
403
+
AccessJwt string `json:"accessJwt"`
405
+
if err := json.NewDecoder(sessionResp.Body).Decode(&session); err != nil {
406
+
log.Printf("failed to decode session response: %v", err)
410
+
record := tangled.SpindleMember{
411
+
LexiconTypeID: "sh.tangled.spindle.member",
413
+
Instance: defaultSpindle,
414
+
CreatedAt: time.Now().Format(time.RFC3339),
417
+
recordBytes, err := json.Marshal(record)
419
+
log.Printf("failed to marshal spindle member record: %v", err)
423
+
payload := map[string]interface{}{
424
+
"repo": tangledDid,
425
+
"collection": tangled.SpindleMemberNSID,
427
+
"record": json.RawMessage(recordBytes),
430
+
payloadBytes, err := json.Marshal(payload)
432
+
log.Printf("failed to marshal request payload: %v", err)
436
+
url := pdsEndpoint + "/xrpc/com.atproto.repo.putRecord"
437
+
req, err := http.NewRequestWithContext(context.Background(), "POST", url, bytes.NewBuffer(payloadBytes))
439
+
log.Printf("failed to create HTTP request: %v", err)
443
+
req.Header.Set("Content-Type", "application/json")
444
+
req.Header.Set("Authorization", "Bearer "+session.AccessJwt)
446
+
resp, err := client.Do(req)
448
+
log.Printf("failed to add user to default spindle: %v", err)
451
+
defer resp.Body.Close()
453
+
if resp.StatusCode != http.StatusOK {
454
+
log.Printf("failed to add user to default spindle: HTTP %d", resp.StatusCode)
458
+
log.Printf("successfully added %s to default spindle", did)
func (o *OAuthHandler) addToDefaultKnot(did string) {
defaultKnot := "knot1.tangled.sh"
anirudh.fi