`ea1ba9f`

S32: dispatch settings via principals + thread SettingsActive=danger

Authored by

espadonne 4 days ago

SHA: ea1ba9ffedc15fa8209cc5b63f8c2f1f8d9068fe
Parents: 15bfd2c
Tree: 9b9a47d

1 changed file

Status	File	+	-
M	`internal/web/handlers/repo/lifecycle.go`	45	10

internal/web/handlers/repo/lifecycle.gomodified

  	"github.com/jackc/pgx/v5/pgtype"
  	"github.com/tenseleyFlow/shithub/internal/auth/policy"
 +	"github.com/tenseleyFlow/shithub/internal/orgs"
  	"github.com/tenseleyFlow/shithub/internal/repos/lifecycle"
  	reposdb "github.com/tenseleyFlow/shithub/internal/repos/sqlc"
  	"github.com/tenseleyFlow/shithub/internal/web/middleware"
  // loadRepoAndAuthorize is the common preamble for every settings-route
  // handler. Resolves owner+repo, applies policy.Can with the chosen
  // action, and either returns the row or writes the response.
 +//
 +// Owner kind dispatch goes through principals (S30) so org-owned
 +// repos resolve through the same path as user-owned ones. The
 +// returned `usersdb.User` is the OWNING USER for user-owned repos,
 +// or a synthetic row carrying just `ID` + `Username` (= the org slug)
 +// for org-owned repos — handlers that re-construct paths only need
 +// the slug, and the few that need a real users row already short-
 +// circuit via `viewer`.
  func (h *Handlers) loadRepoAndAuthorize(w http.ResponseWriter, r *http.Request, action policy.Action) (reposdb.Repo, usersdb.User, bool) {
  	ownerName := chi.URLParam(r, "owner")
  	repoName := chi.URLParam(r, "repo")
 -	owner, err := h.uq.GetUserByUsername(r.Context(), h.d.Pool, ownerName)
 +	principal, err := orgs.Resolve(r.Context(), h.d.Pool, ownerName)
  	if err != nil {
  		h.d.Render.HTTPError(w, r, http.StatusNotFound, "")
  		return reposdb.Repo{}, usersdb.User{}, false
+ 	}
 -	row, err := h.rq.GetRepoByOwnerUserAndName(r.Context(), h.d.Pool, reposdb.GetRepoByOwnerUserAndNameParams{
 -		OwnerUserID: pgtype.Int8{Int64: owner.ID, Valid: true},
 -		Name:        repoName,
 -	})
 +	var (
 +		row    reposdb.Repo
 +		owner  usersdb.User
 +	)
 +	switch principal.Kind {
 +	case orgs.PrincipalUser:
 +		owner, err = h.uq.GetUserByID(r.Context(), h.d.Pool, principal.ID)
 +		if err != nil {
 +			h.d.Render.HTTPError(w, r, http.StatusNotFound, "")
 +			return reposdb.Repo{}, usersdb.User{}, false
 +		}
 +		row, err = h.rq.GetRepoByOwnerUserAndName(r.Context(), h.d.Pool, reposdb.GetRepoByOwnerUserAndNameParams{
 +			OwnerUserID: pgtype.Int8{Int64: owner.ID, Valid: true},
 +			Name:        repoName,
 +		})
 +	case orgs.PrincipalOrg:
 +		row, err = h.rq.GetRepoByOwnerOrgAndName(r.Context(), h.d.Pool, reposdb.GetRepoByOwnerOrgAndNameParams{
 +			OwnerOrgID: pgtype.Int8{Int64: principal.ID, Valid: true},
 +			Name:       repoName,
 +		})
 +		// Synthesize an owner with the slug so callers that read
 +		// `owner.Username` for path composition still work. ID is
 +		// the org id; the field is repurposed but no caller treats
 +		// it as a user id in path-only contexts.
 +		owner = usersdb.User{ID: principal.ID, Username: principal.Slug}
 +	default:
 +		h.d.Render.HTTPError(w, r, http.StatusNotFound, "")
 +		return reposdb.Repo{}, usersdb.User{}, false
 +	}
  	if err != nil {
  		h.d.Render.HTTPError(w, r, http.StatusNotFound, "")
  		return reposdb.Repo{}, usersdb.User{}, false
+ 	}
  	transfers, _ := h.rq.ListTransfersForRepo(r.Context(), h.d.Pool, row.ID)
  	h.d.Render.RenderPage(w, r, "repo/settings", map[string]any{
 -		"Title":     "Settings · " + row.Name,
 -		"CSRFToken": middleware.CSRFTokenForRequest(r),
 -		"Owner":     owner.Username,
 -		"Repo":      row,
 -		"Transfers": transfers,
 +		"Title":          "Settings · " + row.Name,
 +		"CSRFToken":      middleware.CSRFTokenForRequest(r),
 +		"Owner":          owner.Username,
 +		"Repo":           row,
 +		"Transfers":      transfers,
 +		"SettingsActive": "danger",
  	})
+ }