···
"github.com/go-chi/chi/v5"
"github.com/gorilla/sessions"
"github.com/lestrrat-go/jwx/v2/jwk"
"github.com/posthog/posthog-go"
"tangled.sh/icyphox.sh/atproto-oauth/helpers"
19
+
tangled "tangled.sh/tangled.sh/core/api/tangled"
sessioncache "tangled.sh/tangled.sh/core/appview/cache/session"
"tangled.sh/tangled.sh/core/appview/config"
"tangled.sh/tangled.sh/core/appview/db"
···
"tangled.sh/tangled.sh/core/idresolver"
"tangled.sh/tangled.sh/core/knotclient"
"tangled.sh/tangled.sh/core/rbac"
30
+
"tangled.sh/tangled.sh/core/tid"
···
log.Println("session saved successfully")
go o.addToDefaultKnot(oauthRequest.Did)
302
+
go o.addToDefaultSpindle(oauthRequest.Did)
err = o.posthog.Enqueue(posthog.Capture{
···
341
+
func (o *OAuthHandler) addToDefaultSpindle(did string) {
342
+
// use the tangled.sh app password to get an accessJwt
343
+
// and create an sh.tangled.spindle.member record with that
345
+
defaultSpindle := "spindle.tangled.sh"
346
+
appPassword := o.config.Core.AppPassword
348
+
spindleMembers, err := db.GetSpindleMembers(
350
+
db.FilterEq("instance", "spindle.tangled.sh"),
351
+
db.FilterEq("subject", did),
354
+
log.Printf("failed to get spindle members for did %s: %v", did, err)
358
+
if len(spindleMembers) != 0 {
359
+
log.Printf("did %s is already a member of the default spindle", did)
363
+
// TODO: hardcoded tangled handle and did for now
364
+
tangledHandle := "tangled.sh"
365
+
tangledDid := "did:plc:wshs7t2adsemcrrd4snkeqli"
367
+
if appPassword == "" {
368
+
log.Println("no app password configured, skipping spindle member addition")
372
+
log.Printf("adding %s to default spindle", did)
374
+
resolved, err := o.idResolver.ResolveIdent(context.Background(), tangledDid)
376
+
log.Printf("failed to resolve tangled.sh DID %s: %v", tangledDid, err)
380
+
pdsEndpoint := resolved.PDSEndpoint()
381
+
if pdsEndpoint == "" {
382
+
log.Printf("no PDS endpoint found for tangled.sh DID %s", tangledDid)
386
+
sessionPayload := map[string]string{
387
+
"identifier": tangledHandle,
388
+
"password": appPassword,
390
+
sessionBytes, err := json.Marshal(sessionPayload)
392
+
log.Printf("failed to marshal session payload: %v", err)
396
+
sessionURL := pdsEndpoint + "/xrpc/com.atproto.server.createSession"
397
+
sessionReq, err := http.NewRequestWithContext(context.Background(), "POST", sessionURL, bytes.NewBuffer(sessionBytes))
399
+
log.Printf("failed to create session request: %v", err)
402
+
sessionReq.Header.Set("Content-Type", "application/json")
404
+
client := &http.Client{Timeout: 30 * time.Second}
405
+
sessionResp, err := client.Do(sessionReq)
407
+
log.Printf("failed to create session: %v", err)
410
+
defer sessionResp.Body.Close()
412
+
if sessionResp.StatusCode != http.StatusOK {
413
+
log.Printf("failed to create session: HTTP %d", sessionResp.StatusCode)
417
+
var session struct {
418
+
AccessJwt string `json:"accessJwt"`
420
+
if err := json.NewDecoder(sessionResp.Body).Decode(&session); err != nil {
421
+
log.Printf("failed to decode session response: %v", err)
425
+
record := tangled.SpindleMember{
426
+
LexiconTypeID: "sh.tangled.spindle.member",
428
+
Instance: defaultSpindle,
429
+
CreatedAt: time.Now().Format(time.RFC3339),
432
+
recordBytes, err := json.Marshal(record)
434
+
log.Printf("failed to marshal spindle member record: %v", err)
438
+
payload := map[string]interface{}{
439
+
"repo": tangledDid,
440
+
"collection": tangled.SpindleMemberNSID,
442
+
"record": json.RawMessage(recordBytes),
445
+
payloadBytes, err := json.Marshal(payload)
447
+
log.Printf("failed to marshal request payload: %v", err)
451
+
url := pdsEndpoint + "/xrpc/com.atproto.repo.putRecord"
452
+
req, err := http.NewRequestWithContext(context.Background(), "POST", url, bytes.NewBuffer(payloadBytes))
454
+
log.Printf("failed to create HTTP request: %v", err)
458
+
req.Header.Set("Content-Type", "application/json")
459
+
req.Header.Set("Authorization", "Bearer "+session.AccessJwt)
461
+
resp, err := client.Do(req)
463
+
log.Printf("failed to add user to default spindle: %v", err)
466
+
defer resp.Body.Close()
468
+
if resp.StatusCode != http.StatusOK {
469
+
log.Printf("failed to add user to default spindle: HTTP %d", resp.StatusCode)
473
+
log.Printf("successfully added %s to default spindle", did)
func (o *OAuthHandler) addToDefaultKnot(did string) {
defaultKnot := "knot1.tangled.sh"
anirudh.fi