veryroundbird.house / core
forked from tangled.org/core
this repo has no description
fork atom
core / appview / repo / router.go
at push-pymywyqyumlo 2.6 kB view raw
1package repo 2 3import ( 4 "net/http" 5 6 "github.com/go-chi/chi/v5" 7 "tangled.sh/tangled.sh/core/appview/middleware" 8) 9 10func (rp *Repo) Router(mw *middleware.Middleware) http.Handler { 11 r := chi.NewRouter() 12 r.Get("/", rp.RepoIndex) 13 r.Get("/commits/{ref}", rp.RepoLog) 14 r.Route("/tree/{ref}", func(r chi.Router) { 15 r.Get("/", rp.RepoIndex) 16 r.Get("/*", rp.RepoTree) 17 }) 18 r.Get("/commit/{ref}", rp.RepoCommit) 19 r.Get("/branches", rp.RepoBranches) 20 r.Route("/tags", func(r chi.Router) { 21 r.Get("/", rp.RepoTags) 22 r.Route("/{tag}", func(r chi.Router) { 23 r.Use(middleware.AuthMiddleware(rp.oauth)) 24 // require auth to download for now 25 r.Get("/download/{file}", rp.DownloadArtifact) 26 27 // require repo:push to upload or delete artifacts 28 // 29 // additionally: only the uploader can truly delete an artifact 30 // (record+blob will live on their pds) 31 r.Group(func(r chi.Router) { 32 r.With(mw.RepoPermissionMiddleware("repo:push")) 33 r.Post("/upload", rp.AttachArtifact) 34 r.Delete("/{file}", rp.DeleteArtifact) 35 }) 36 }) 37 }) 38 r.Get("/blob/{ref}/*", rp.RepoBlob) 39 r.Get("/raw/{ref}/*", rp.RepoBlobRaw) 40 41 r.Route("/fork", func(r chi.Router) { 42 r.Use(middleware.AuthMiddleware(rp.oauth)) 43 r.Get("/", rp.ForkRepo) 44 r.Post("/", rp.ForkRepo) 45 r.With(mw.RepoPermissionMiddleware("repo:owner")).Route("/sync", func(r chi.Router) { 46 r.Post("/", rp.SyncRepoFork) 47 }) 48 }) 49 50 r.Route("/compare", func(r chi.Router) { 51 r.Get("/", rp.RepoCompareNew) // start an new comparison 52 53 // we have to wildcard here since we want to support GitHub's compare syntax 54 // /compare/{ref1}...{ref2} 55 // for example: 56 // /compare/master...some/feature 57 // /compare/master...example.com:another/feature <- this is a fork 58 r.Get("/{base}/{head}", rp.RepoCompare) 59 r.Get("/*", rp.RepoCompare) 60 }) 61 62 // settings routes, needs auth 63 r.Group(func(r chi.Router) { 64 r.Use(middleware.AuthMiddleware(rp.oauth)) 65 // repo description can only be edited by owner 66 r.With(mw.RepoPermissionMiddleware("repo:owner")).Route("/description", func(r chi.Router) { 67 r.Put("/", rp.RepoDescription) 68 r.Get("/", rp.RepoDescription) 69 r.Get("/edit", rp.RepoDescriptionEdit) 70 }) 71 r.With(mw.RepoPermissionMiddleware("repo:settings")).Route("/settings", func(r chi.Router) { 72 r.Get("/", rp.RepoSettings) 73 r.With(mw.RepoPermissionMiddleware("repo:owner")).Post("/spindle", rp.EditSpindle) 74 r.With(mw.RepoPermissionMiddleware("repo:invite")).Put("/collaborator", rp.AddCollaborator) 75 r.With(mw.RepoPermissionMiddleware("repo:delete")).Delete("/delete", rp.DeleteRepo) 76 r.Put("/branches/default", rp.SetDefaultBranch) 77 }) 78 }) 79 80 return r 81}