feat: store repo meta data in repo directory

- Store auth'd user in context. - Write description, owner, and git-daemon-export-ok files. Fixes: #255 Fixes: #256
charmbracelet · Jul 17, 2023 · cbd5025 · cbd5025
1 parent e398b4d
commit cbd5025
Show file tree

Hide file tree

Showing 4 changed files with 103 additions and 31 deletions.
diff --git a/server/backend/context.go b/server/backend/context.go
@@ -1,9 +1,18 @@
 package backend
 
-import "context"
+import (
+	"context"
 
-// ContextKey is the key for the backend in the context.
-var ContextKey = &struct{ string }{"backend"}
+	"github.com/charmbracelet/soft-serve/server/proto"
+)
+
+var (
+	// ContextKey is the key for the backend in the context.
+	ContextKey = &struct{ string }{"backend"}
+
+	// ContextKeyUser is the key for the user in the context.
+	ContextKeyUser = &struct{ string }{"user"}
+)
 
 // FromContext returns the backend from a context.
 func FromContext(ctx context.Context) *Backend {
@@ -18,3 +27,17 @@ func FromContext(ctx context.Context) *Backend {
 func WithContext(ctx context.Context, b *Backend) context.Context {
 	return context.WithValue(ctx, ContextKey, b)
 }
+
+// UserFromContext returns the user from a context.
+func UserFromContext(ctx context.Context) proto.User {
+	if u, ok := ctx.Value(ContextKeyUser).(proto.User); ok {
+		return u
+	}
+
+	return nil
+}
+
+// WithUserContext returns a new context with the user attached.
+func WithUserContext(ctx context.Context, u proto.User) context.Context {
+	return context.WithValue(ctx, ContextKeyUser, u)
+}
diff --git a/server/backend/repo.go b/server/backend/repo.go
@@ -5,6 +5,7 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"io/fs"
 	"os"
 	"path/filepath"
 	"time"
@@ -53,6 +54,25 @@ func (d *Backend) CreateRepository(ctx context.Context, name string, opts proto.
 			return err
 		}
 
+		if err := os.WriteFile(filepath.Join(rp, "description"), []byte(opts.Description), fs.ModePerm); err != nil {
+			d.logger.Error("failed to write description", "repo", name, "err", err)
+			return err
+		}
+
+		if !opts.Private {
+			if err := os.WriteFile(filepath.Join(rp, "git-daemon-export-ok"), []byte{}, fs.ModePerm); err != nil {
+				d.logger.Error("failed to write git-daemon-export-ok", "repo", name, "err", err)
+				return err
+			}
+		}
+
+		if user := UserFromContext(ctx); user != nil {
+			if err := os.WriteFile(filepath.Join(rp, "owner"), []byte(user.Username()), fs.ModePerm); err != nil {
+				d.logger.Error("failed to write owner", "repo", name, "err", err)
+				return err
+			}
+		}
+
 		return hooks.GenerateHooks(ctx, d.cfg, repo)
 	}); err != nil {
 		d.logger.Debug("failed to create repository in database", "err", err)
@@ -341,29 +361,43 @@ func (d *Backend) SetHidden(ctx context.Context, name string, hidden bool) error
 // SetDescription sets the description of a repository.
 //
 // It implements backend.Backend.
-func (d *Backend) SetDescription(ctx context.Context, repo string, desc string) error {
-	repo = utils.SanitizeRepo(repo)
+func (d *Backend) SetDescription(ctx context.Context, name string, desc string) error {
+	name = utils.SanitizeRepo(name)
+	rp := filepath.Join(d.reposPath(), name+".git")
 
 	// Delete cache
-	d.cache.Delete(repo)
+	d.cache.Delete(name)
 
 	return d.db.TransactionContext(ctx, func(tx *db.Tx) error {
-		return d.store.SetRepoDescriptionByName(ctx, tx, repo, desc)
+		if err := os.WriteFile(filepath.Join(rp, "description"), []byte(desc), fs.ModePerm); err != nil {
+			d.logger.Error("failed to write description", "repo", name, "err", err)
+			return err
+		}
+
+		return d.store.SetRepoDescriptionByName(ctx, tx, name, desc)
 	})
 }
 
 // SetPrivate sets the private flag of a repository.
 //
 // It implements backend.Backend.
-func (d *Backend) SetPrivate(ctx context.Context, repo string, private bool) error {
-	repo = utils.SanitizeRepo(repo)
+func (d *Backend) SetPrivate(ctx context.Context, name string, private bool) error {
+	name = utils.SanitizeRepo(name)
+	rp := filepath.Join(d.reposPath(), name+".git")
 
 	// Delete cache
-	d.cache.Delete(repo)
+	d.cache.Delete(name)
 
 	return db.WrapError(
 		d.db.TransactionContext(ctx, func(tx *db.Tx) error {
-			return d.store.SetRepoIsPrivateByName(ctx, tx, repo, private)
+			if !private {
+				if err := os.WriteFile(filepath.Join(rp, "git-daemon-export-ok"), []byte{}, fs.ModePerm); err != nil {
+					d.logger.Error("failed to write git-daemon-export-ok", "repo", name, "err", err)
+					return err
+				}
+			}
+
+			return d.store.SetRepoIsPrivateByName(ctx, tx, name, private)
 		}),
 	)
 }

diff --git a/server/backend/user.go b/server/backend/user.go
@@ -17,8 +17,36 @@ import (
 //
 // It implements backend.Backend.
 func (d *Backend) AccessLevel(ctx context.Context, repo string, username string) access.AccessLevel {
-	anon := d.AnonAccess(ctx)
 	user, _ := d.User(ctx, username)
+	return d.AccessLevelForUser(ctx, repo, user)
+}
+
+// AccessLevelByPublicKey returns the access level of a user's public key for a repository.
+//
+// It implements backend.Backend.
+func (d *Backend) AccessLevelByPublicKey(ctx context.Context, repo string, pk ssh.PublicKey) access.AccessLevel {
+	for _, k := range d.cfg.AdminKeys() {
+		if sshutils.KeysEqual(pk, k) {
+			return access.AdminAccess
+		}
+	}
+
+	user, _ := d.UserByPublicKey(ctx, pk)
+	if user != nil {
+		return d.AccessLevel(ctx, repo, user.Username())
+	}
+
+	return d.AccessLevel(ctx, repo, "")
+}
+
+// AccessLevelForUser returns the access level for the given user for a repository.
+func (d *Backend) AccessLevelForUser(ctx context.Context, repo string, user proto.User) access.AccessLevel {
+	var username string
+	if user != nil {
+		username = user.Username()
+	}
+
+	anon := d.AnonAccess(ctx)
 	// If the user is an admin, they have admin access.
 	if user != nil && user.IsAdmin() {
 		return access.AdminAccess
@@ -58,24 +86,6 @@ func (d *Backend) AccessLevel(ctx context.Context, repo string, username string)
 	return anon
 }
 
-// AccessLevelByPublicKey returns the access level of a user's public key for a repository.
-//
-// It implements backend.Backend.
-func (d *Backend) AccessLevelByPublicKey(ctx context.Context, repo string, pk ssh.PublicKey) access.AccessLevel {
-	for _, k := range d.cfg.AdminKeys() {
-		if sshutils.KeysEqual(pk, k) {
-			return access.AdminAccess
-		}
-	}
-
-	user, _ := d.UserByPublicKey(ctx, pk)
-	if user != nil {
-		return d.AccessLevel(ctx, repo, user.Username())
-	}
-
-	return d.AccessLevel(ctx, repo, "")
-}
-
 // User finds a user by username.
 //
 // It implements backend.Backend.

diff --git a/server/ssh/ssh.go b/server/ssh/ssh.go
@@ -191,7 +191,12 @@ func (s *SSHServer) PublicKeyHandler(ctx ssh.Context, pk ssh.PublicKey) (allowed
 		publicKeyCounter.WithLabelValues(strconv.FormatBool(*allowed)).Inc()
 	}(&allowed)
 
-	ac := s.be.AccessLevelByPublicKey(ctx, "", pk)
+	user, _ := s.be.UserByPublicKey(ctx, pk)
+	if user != nil {
+		ctx.SetValue(backend.ContextKeyUser, user)
+	}
+
+	ac := s.be.AccessLevelForUser(ctx, "", user)
 	s.logger.Debugf("access level for %q: %s", ak, ac)
 	allowed = ac >= access.ReadWriteAccess
 	return