tenseleyflow/shithub / ec17e0b

+// SPDX-License-Identifier: AGPL-3.0-or-later

+

+package profile

+

+import (

+	"bytes"

+	"context"

+	"errors"

+	"html/template"

+	"io"

+	"net/url"

+	"path"

+	"strconv"

+	"strings"

+	"time"

+

+	"github.com/jackc/pgx/v5"

+	"github.com/jackc/pgx/v5/pgtype"

+	"golang.org/x/net/html"

+

+	"github.com/tenseleyFlow/shithub/internal/auth/policy"

+	mdrender "github.com/tenseleyFlow/shithub/internal/markdown"

+	orgsdb "github.com/tenseleyFlow/shithub/internal/orgs/sqlc"

+	repogit "github.com/tenseleyFlow/shithub/internal/repos/git"

+	reposdb "github.com/tenseleyFlow/shithub/internal/repos/sqlc"

+	usersdb "github.com/tenseleyFlow/shithub/internal/users/sqlc"

+	"github.com/tenseleyFlow/shithub/internal/web/middleware"

+)

+

+const (

+	profileContribWeeks      = 53

+	profileContribRepoLimit  = 80

+	profileContribMaxPerRepo = 2000

+	profileReadmeMaxBytes    = 1 * 1024 * 1024

+)

+

+type profileOrgBadge struct {

+	Slug        string

+	DisplayName string

+	AvatarURL   string

+}

+

+type profileReadme struct {

+	Owner string

+	Repo  string

+	Path  string

+	HTML  template.HTML

+}

+

+type contributionCalendar struct {

+	Total             int

+	Weeks             []contributionWeek

+	Years             []int

+	CurrentYear       int

+	MonthLabel        string

+	MonthCommitCount  int

+	MonthRepoCount    int

+	HasRepositoryData bool

+}

+

+type contributionWeek struct {

+	MonthLabel string

+	Days       []contributionDay

+}

+

+type contributionDay struct {

+	Date       string

+	Title      string

+	Count      int

+	Level      int

+	IsFuture   bool

+	IsInWindow bool

+}

+

+func (h *Handlers) visibleUserRepos(ctx context.Context, userID int64, viewer middleware.CurrentUser) []reposdb.Repo {

+	rows, err := reposdb.New().ListReposForOwnerUser(ctx, h.d.Pool, pgtype.Int8{Int64: userID, Valid: true})

+	if err != nil {

+		h.d.Logger.WarnContext(ctx, "profile overview: list repos", "user_id", userID, "error", err)

+		return nil

+	}

+	actor := policy.AnonymousActor()

+	if !viewer.IsAnonymous() {

+		actor = viewer.PolicyActor()

+	}

+	deps := policy.Deps{Pool: h.d.Pool}

+	out := make([]reposdb.Repo, 0, len(rows))

+	for _, repo := range rows {

+		if policy.IsVisibleTo(ctx, deps, actor, policy.NewRepoRefFromRepo(repo)) {

+			out = append(out, repo)

+		}

+	}

+	return out

+}

+

+func (h *Handlers) profileOrganizations(ctx context.Context, userID int64) []profileOrgBadge {

+	rows, err := orgsdb.New().ListOrgsForUser(ctx, h.d.Pool, userID)

+	if err != nil {

+		h.d.Logger.WarnContext(ctx, "profile overview: list orgs", "user_id", userID, "error", err)

+		return nil

+	}

+	out := make([]profileOrgBadge, 0, len(rows))

+	for _, row := range rows {

+		label := row.DisplayName

+		if label == "" {

+			label = row.Slug

+		}

+		out = append(out, profileOrgBadge{

+			Slug:        row.Slug,

+			DisplayName: label,

+			AvatarURL:   "/avatars/" + url.PathEscape(row.Slug),

+		})

+	}

+	return out

+}

+

+func (h *Handlers) profileReadme(ctx context.Context, user usersdb.User, viewer middleware.CurrentUser) (profileReadme, bool) {

+	if h.d.RepoFS == nil {

+		return profileReadme{}, false

+	}

+	repo, err := reposdb.New().GetRepoByOwnerUserAndName(ctx, h.d.Pool, reposdb.GetRepoByOwnerUserAndNameParams{

+		OwnerUserID: pgtype.Int8{Int64: user.ID, Valid: true},

+		Name:        user.Username,

+	})

+	if err != nil {

+		if !errors.Is(err, pgx.ErrNoRows) {

+			h.d.Logger.WarnContext(ctx, "profile overview: load profile readme repo", "user_id", user.ID, "error", err)

+		}

+		return profileReadme{}, false

+	}

+	actor := policy.AnonymousActor()

+	if !viewer.IsAnonymous() {

+		actor = viewer.PolicyActor()

+	}

+	if !policy.IsVisibleTo(ctx, policy.Deps{Pool: h.d.Pool}, actor, policy.NewRepoRefFromRepo(repo)) {

+		return profileReadme{}, false

+	}

+	gitDir, err := h.d.RepoFS.RepoPath(user.Username, repo.Name)

+	if err != nil {

+		h.d.Logger.WarnContext(ctx, "profile overview: readme repo path", "repo_id", repo.ID, "error", err)

+		return profileReadme{}, false

+	}

+	entries, err := repogit.LsTree(ctx, gitDir, repo.DefaultBranch, "")

+	if err != nil {

+		h.d.Logger.WarnContext(ctx, "profile overview: readme tree", "repo_id", repo.ID, "error", err)

+		return profileReadme{}, false

+	}

+	for _, entry := range entries {

+		if entry.Kind != repogit.EntryBlob || !strings.HasPrefix(strings.ToLower(entry.Name), "readme") {

+			continue

+		}

+		body, err := repogit.ReadBlobBytes(ctx, gitDir, repo.DefaultBranch, entry.Name, profileReadmeMaxBytes)

+		if err != nil {

+			h.d.Logger.WarnContext(ctx, "profile overview: readme blob", "repo_id", repo.ID, "path", entry.Name, "error", err)

+			return profileReadme{}, false

+		}

+		html := ""

+		lower := strings.ToLower(entry.Name)

+		if strings.HasSuffix(lower, ".md") || strings.HasSuffix(lower, ".markdown") {

+			rendered, err := mdrender.RenderDocumentHTML(body)

+			if err != nil {

+				h.d.Logger.WarnContext(ctx, "profile overview: render readme", "repo_id", repo.ID, "error", err)

+				return profileReadme{}, false

+			}

+			html = rewriteProfileMarkdownRelativeURLs(

+				rendered,

+				profileCodeRouteBase(user.Username, repo.Name, "blob", repo.DefaultBranch, ""),

+				profileCodeRouteBase(user.Username, repo.Name, "blob", repo.DefaultBranch, ""),

+				profileCodeRouteBase(user.Username, repo.Name, "raw", repo.DefaultBranch, ""),

+				profileCodeRouteBase(user.Username, repo.Name, "raw", repo.DefaultBranch, ""),

+			)

+		} else {

+			html = "<pre class=\"shithub-readme-plain\">" + template.HTMLEscapeString(string(body)) + "</pre>"

+		}

+		return profileReadme{

+			Owner: user.Username,

+			Repo:  repo.Name,

+			Path:  entry.Name,

+			HTML:  template.HTML(html), //nolint:gosec // sanitized by markdown renderer or escaped above.

+		}, true

+	}

+	return profileReadme{}, false

+}

+

+func (h *Handlers) contributionCalendar(ctx context.Context, user usersdb.User, repos []reposdb.Repo) contributionCalendar {

+	now := time.Now().UTC()

+	today := time.Date(now.Year(), now.Month(), now.Day(), 0, 0, 0, 0, time.UTC)

+	windowStart := today.AddDate(-1, 0, 1)

+	gridStart := windowStart.AddDate(0, 0, -int(windowStart.Weekday()))

+	windowEnd := today.Add(24 * time.Hour)

+

+	counts := map[string]int{}

+	reposWithMonthActivity := map[int64]struct{}{}

+	if h.d.RepoFS != nil && len(repos) > 0 {

+		emails := h.verifiedEmails(ctx, user.ID)

+		for i, repo := range repos {

+			if i >= profileContribRepoLimit {

+				break

+			}

+			gitDir, err := h.d.RepoFS.RepoPath(user.Username, repo.Name)

+			if err != nil {

+				continue

+			}

+			commits, err := repogit.Log(ctx, gitDir, repogit.LogOptions{

+				Ref:      repo.DefaultBranch,

+				MaxCount: profileContribMaxPerRepo,

+				Since:    windowStart,

+				Until:    windowEnd,

+			})

+			if err != nil {

+				continue

+			}

+			for _, commit := range commits {

+				if len(emails) > 0 {

+					if _, ok := emails[strings.ToLower(strings.TrimSpace(commit.AuthorEmail))]; !ok {

+						continue

+					}

+				}

+				day := time.Date(commit.AuthorWhen.UTC().Year(), commit.AuthorWhen.UTC().Month(), commit.AuthorWhen.UTC().Day(), 0, 0, 0, 0, time.UTC)

+				if day.Before(windowStart) || day.After(today) {

+					continue

+				}

+				key := day.Format("2006-01-02")

+				counts[key]++

+				if day.Year() == today.Year() && day.Month() == today.Month() {

+					reposWithMonthActivity[repo.ID] = struct{}{}

+				}

+			}

+		}

+	}

+

+	weeks := make([]contributionWeek, 0, profileContribWeeks)

+	total := 0

+	monthCommitCount := 0

+	for w := 0; w < profileContribWeeks; w++ {

+		week := contributionWeek{Days: make([]contributionDay, 0, 7)}

+		for d := 0; d < 7; d++ {

+			day := gridStart.AddDate(0, 0, w*7+d)

+			key := day.Format("2006-01-02")

+			count := counts[key]

+			inWindow := !day.Before(windowStart) && !day.After(today)

+			if inWindow {

+				total += count

+				if day.Year() == today.Year() && day.Month() == today.Month() {

+					monthCommitCount += count

+				}

+			}

+			if d == 0 && (day.Day() <= 7 || w == 0) {

+				week.MonthLabel = day.Format("Jan")

+			}

+			week.Days = append(week.Days, contributionDay{

+				Date:       key,

+				Title:      contributionDayTitle(count, day),

+				Count:      count,

+				Level:      contributionLevel(count),

+				IsFuture:   day.After(today),

+				IsInWindow: inWindow,

+			})

+		}

+		weeks = append(weeks, week)

+	}

+	years := []int{today.Year(), today.Year() - 1, today.Year() - 2, today.Year() - 3}

+	return contributionCalendar{

+		Total:             total,

+		Weeks:             weeks,

+		Years:             years,

+		CurrentYear:       today.Year(),

+		MonthLabel:        today.Format("January 2006"),

+		MonthCommitCount:  monthCommitCount,

+		MonthRepoCount:    len(reposWithMonthActivity),

+		HasRepositoryData: h.d.RepoFS != nil && len(repos) > 0,

+	}

+}

+

+func (h *Handlers) verifiedEmails(ctx context.Context, userID int64) map[string]struct{} {

+	rows, err := h.q.ListUserEmailsForUser(ctx, h.d.Pool, userID)

+	if err != nil {

+		return nil

+	}

+	out := make(map[string]struct{}, len(rows))

+	for _, row := range rows {

+		if row.Verified {

+			out[strings.ToLower(strings.TrimSpace(row.Email))] = struct{}{}

+		}

+	}

+	return out

+}

+

+func contributionLevel(count int) int {

+	switch {

+	case count <= 0:

+		return 0

+	case count < 3:

+		return 1

+	case count < 6:

+		return 2

+	case count < 10:

+		return 3

+	default:

+		return 4

+	}

+}

+

+func contributionDayTitle(count int, day time.Time) string {

+	if count == 0 {

+		return "No contributions on " + day.Format("January 2") + "."

+	}

+	if count == 1 {

+		return "1 contribution on " + day.Format("January 2") + "."

+	}

+	return strconv.Itoa(count) + " contributions on " + day.Format("January 2") + "."

+}

+

+func profileCodeRouteBase(owner, repoName, route, ref, dir string) string {

+	base := "/" + url.PathEscape(owner) + "/" + url.PathEscape(repoName) + "/" + route + "/" + escapeProfilePathSegments(ref)

+	if dir != "" {

+		base += "/" + escapeProfilePathSegments(dir)

+	}

+	return base

+}

+

+func escapeProfilePathSegments(p string) string {

+	parts := strings.Split(p, "/")

+	for i := range parts {

+		parts[i] = url.PathEscape(parts[i])

+	}

+	return strings.Join(parts, "/")

+}

+

+func rewriteProfileMarkdownRelativeURLs(fragment, linkBase, linkRoot, imageBase, imageRoot string) string {

+	if fragment == "" {

+		return ""

+	}

+	z := html.NewTokenizer(strings.NewReader(fragment))

+	var out bytes.Buffer

+	for {

+		tt := z.Next()

+		if tt == html.ErrorToken {

+			if z.Err() == io.EOF {

+				return out.String()

+			}

+			return fragment

+		}

+		tok := z.Token()

+		switch tt {

+		case html.StartTagToken, html.SelfClosingTagToken:

+			rewriteProfileMarkdownTokenURLs(&tok, linkBase, linkRoot, imageBase, imageRoot)

+		}

+		out.WriteString(tok.String())

+	}

+}

+

+func rewriteProfileMarkdownTokenURLs(tok *html.Token, linkBase, linkRoot, imageBase, imageRoot string) {

+	switch tok.Data {

+	case "a":

+		rewriteProfileAttr(tok, "href", linkBase, linkRoot)

+	case "img":

+		rewriteProfileAttr(tok, "src", imageBase, imageRoot)

+	}

+}

+

+func rewriteProfileAttr(tok *html.Token, key, base, root string) {

+	for i := range tok.Attr {

+		if tok.Attr[i].Key == key {

+			tok.Attr[i].Val = rewriteProfileRelativeMarkdownURL(tok.Attr[i].Val, base, root)

+		}

+	}

+}

+

+func rewriteProfileRelativeMarkdownURL(raw, base, root string) string {

+	if raw == "" || base == "" || root == "" || strings.TrimSpace(raw) != raw {

+		return raw

+	}

+	if strings.HasPrefix(raw, "#") || strings.HasPrefix(raw, "//") {

+		return raw

+	}

+	u, err := url.Parse(raw)

+	if err != nil || u.IsAbs() || u.Host != "" || strings.HasPrefix(u.Path, "/") || u.Path == "" {

+		return raw

+	}

+	next := path.Clean(path.Clean(base) + "/" + u.Path)

+	if next != root && !strings.HasPrefix(next, root+"/") {

+		return raw

+	}

+	u.Path = next

+	u.RawPath = ""

+	return u.String()

+}

+	visibleRepos := h.visibleUserRepos(r.Context(), user.ID, viewer)

+	readme, hasReadme := h.profileReadme(r.Context(), user, viewer)

+	displayName := user.DisplayName

+	if displayName == "" {

+		displayName = user.Username

+	}

+		"Title":            displayName,

+		"DisplayName":      displayName,

+		"OGTitle":          displayName + " (@" + user.Username + ")",

+		"VisibleRepoCount": len(visibleRepos),

+		"Orgs":             h.profileOrganizations(r.Context(), user.ID),

+		"ProfileReadme":    readme,

+		"HasProfileReadme": hasReadme,

+		"Contributions":    h.contributionCalendar(r.Context(), user, visibleRepos),