appview/state/profile.go at 67c0e9bc7d93ce141284b0554feacb3c1d57f6d0

lewis.moe / tangled-core
fork atom
Monorepo for Tangled
fork atom
tangled-core / appview / state / profile.go
at 67c0e9bc7d93ce141284b0554feacb3c1d57f6d0 938 lines 26 kB view raw
wrap content
Anirudh Oppiliappan appview/state: bump profile avatar size limit to 5mb 2 weeks ago
c4e5e347
  1package state
  2
  3import (
  4	"context"
  5	"fmt"
  6	"log"
  7	"net/http"
  8	"slices"
  9	"strings"
 10	"time"
 11
 12	comatproto "github.com/bluesky-social/indigo/api/atproto"
 13	"github.com/bluesky-social/indigo/atproto/identity"
 14	"github.com/bluesky-social/indigo/atproto/syntax"
 15	lexutil "github.com/bluesky-social/indigo/lex/util"
 16	"github.com/go-chi/chi/v5"
 17	"github.com/gorilla/feeds"
 18	"tangled.org/core/api/tangled"
 19	"tangled.org/core/appview/db"
 20	"tangled.org/core/appview/models"
 21	"tangled.org/core/appview/pages"
 22	"tangled.org/core/orm"
 23	"tangled.org/core/xrpc"
 24)
 25
 26func (s *State) Profile(w http.ResponseWriter, r *http.Request) {
 27	tabVal := r.URL.Query().Get("tab")
 28	switch tabVal {
 29	case "repos":
 30		s.reposPage(w, r)
 31	case "followers":
 32		s.followersPage(w, r)
 33	case "following":
 34		s.followingPage(w, r)
 35	case "starred":
 36		s.starredPage(w, r)
 37	case "strings":
 38		s.stringsPage(w, r)
 39	default:
 40		s.profileOverview(w, r)
 41	}
 42}
 43
 44func (s *State) profile(r *http.Request) (*pages.ProfileCard, error) {
 45	didOrHandle := chi.URLParam(r, "user")
 46	if didOrHandle == "" {
 47		return nil, fmt.Errorf("empty DID or handle")
 48	}
 49
 50	ident, ok := r.Context().Value("resolvedId").(identity.Identity)
 51	if !ok {
 52		return nil, fmt.Errorf("failed to resolve ID")
 53	}
 54	did := ident.DID.String()
 55
 56	profile, err := db.GetProfile(s.db, did)
 57	if err != nil {
 58		return nil, fmt.Errorf("failed to get profile: %w", err)
 59	}
 60
 61	hasProfile := profile != nil
 62	if !hasProfile {
 63		profile = &models.Profile{Did: did}
 64	}
 65
 66	repoCount, err := db.CountRepos(s.db, orm.FilterEq("did", did))
 67	if err != nil {
 68		return nil, fmt.Errorf("failed to get repo count: %w", err)
 69	}
 70
 71	stringCount, err := db.CountStrings(s.db, orm.FilterEq("did", did))
 72	if err != nil {
 73		return nil, fmt.Errorf("failed to get string count: %w", err)
 74	}
 75
 76	starredCount, err := db.CountStars(s.db, orm.FilterEq("did", did))
 77	if err != nil {
 78		return nil, fmt.Errorf("failed to get starred repo count: %w", err)
 79	}
 80
 81	followStats, err := db.GetFollowerFollowingCount(s.db, did)
 82	if err != nil {
 83		return nil, fmt.Errorf("failed to get follower stats: %w", err)
 84	}
 85
 86	loggedInUser := s.oauth.GetMultiAccountUser(r)
 87	followStatus := models.IsNotFollowing
 88	if loggedInUser != nil {
 89		followStatus = db.GetFollowStatus(s.db, loggedInUser.Active.Did, did)
 90	}
 91
 92	now := time.Now()
 93	startOfYear := time.Date(now.Year(), 1, 1, 0, 0, 0, 0, time.UTC)
 94	punchcard, err := db.MakePunchcard(
 95		s.db,
 96		orm.FilterEq("did", did),
 97		orm.FilterGte("date", startOfYear.Format(time.DateOnly)),
 98		orm.FilterLte("date", now.Format(time.DateOnly)),
 99	)
100	if err != nil {
101		return nil, fmt.Errorf("failed to get punchcard for %s: %w", did, err)
102	}
103
104	return &pages.ProfileCard{
105		UserDid:      did,
106		HasProfile:   hasProfile,
107		Profile:      profile,
108		FollowStatus: followStatus,
109		Stats: pages.ProfileStats{
110			RepoCount:      repoCount,
111			StringCount:    stringCount,
112			StarredCount:   starredCount,
113			FollowersCount: followStats.Followers,
114			FollowingCount: followStats.Following,
115		},
116		Punchcard: punchcard,
117	}, nil
118}
119
120func (s *State) profileOverview(w http.ResponseWriter, r *http.Request) {
121	l := s.logger.With("handler", "profileHomePage")
122
123	profile, err := s.profile(r)
124	if err != nil {
125		l.Error("failed to build profile card", "err", err)
126		s.pages.Error500(w)
127		return
128	}
129	l = l.With("profileDid", profile.UserDid)
130
131	repos, err := db.GetRepos(
132		s.db,
133		0,
134		orm.FilterEq("did", profile.UserDid),
135	)
136	if err != nil {
137		l.Error("failed to fetch repos", "err", err)
138	}
139
140	// filter out ones that are pinned
141	pinnedRepos := []models.Repo{}
142	for i, r := range repos {
143		// if this is a pinned repo, add it
144		if slices.Contains(profile.Profile.PinnedRepos[:], r.RepoAt()) {
145			pinnedRepos = append(pinnedRepos, r)
146		}
147
148		// if there are no saved pins, add the first 4 repos
149		if profile.Profile.IsPinnedReposEmpty() && i < 4 {
150			pinnedRepos = append(pinnedRepos, r)
151		}
152	}
153
154	collaboratingRepos, err := db.CollaboratingIn(s.db, profile.UserDid)
155	if err != nil {
156		l.Error("failed to fetch collaborating repos", "err", err)
157	}
158
159	pinnedCollaboratingRepos := []models.Repo{}
160	for _, r := range collaboratingRepos {
161		// if this is a pinned repo, add it
162		if slices.Contains(profile.Profile.PinnedRepos[:], r.RepoAt()) {
163			pinnedCollaboratingRepos = append(pinnedCollaboratingRepos, r)
164		}
165	}
166
167	timeline, err := db.MakeProfileTimeline(s.db, profile.UserDid)
168	if err != nil {
169		l.Error("failed to create timeline", "err", err)
170	}
171
172	s.pages.ProfileOverview(w, pages.ProfileOverviewParams{
173		LoggedInUser:       s.oauth.GetMultiAccountUser(r),
174		Card:               profile,
175		Repos:              pinnedRepos,
176		CollaboratingRepos: pinnedCollaboratingRepos,
177		ProfileTimeline:    timeline,
178	})
179}
180
181func (s *State) reposPage(w http.ResponseWriter, r *http.Request) {
182	l := s.logger.With("handler", "reposPage")
183
184	profile, err := s.profile(r)
185	if err != nil {
186		l.Error("failed to build profile card", "err", err)
187		s.pages.Error500(w)
188		return
189	}
190	l = l.With("profileDid", profile.UserDid)
191
192	repos, err := db.GetRepos(
193		s.db,
194		0,
195		orm.FilterEq("did", profile.UserDid),
196	)
197	if err != nil {
198		l.Error("failed to get repos", "err", err)
199		s.pages.Error500(w)
200		return
201	}
202
203	err = s.pages.ProfileRepos(w, pages.ProfileReposParams{
204		LoggedInUser: s.oauth.GetMultiAccountUser(r),
205		Repos:        repos,
206		Card:         profile,
207	})
208}
209
210func (s *State) starredPage(w http.ResponseWriter, r *http.Request) {
211	l := s.logger.With("handler", "starredPage")
212
213	profile, err := s.profile(r)
214	if err != nil {
215		l.Error("failed to build profile card", "err", err)
216		s.pages.Error500(w)
217		return
218	}
219	l = l.With("profileDid", profile.UserDid)
220
221	stars, err := db.GetRepoStars(s.db, 0, orm.FilterEq("did", profile.UserDid))
222	if err != nil {
223		l.Error("failed to get stars", "err", err)
224		s.pages.Error500(w)
225		return
226	}
227	var repos []models.Repo
228	for _, s := range stars {
229		repos = append(repos, *s.Repo)
230	}
231
232	err = s.pages.ProfileStarred(w, pages.ProfileStarredParams{
233		LoggedInUser: s.oauth.GetMultiAccountUser(r),
234		Repos:        repos,
235		Card:         profile,
236	})
237}
238
239func (s *State) stringsPage(w http.ResponseWriter, r *http.Request) {
240	l := s.logger.With("handler", "stringsPage")
241
242	profile, err := s.profile(r)
243	if err != nil {
244		l.Error("failed to build profile card", "err", err)
245		s.pages.Error500(w)
246		return
247	}
248	l = l.With("profileDid", profile.UserDid)
249
250	strings, err := db.GetStrings(s.db, 0, orm.FilterEq("did", profile.UserDid))
251	if err != nil {
252		l.Error("failed to get strings", "err", err)
253		s.pages.Error500(w)
254		return
255	}
256
257	err = s.pages.ProfileStrings(w, pages.ProfileStringsParams{
258		LoggedInUser: s.oauth.GetMultiAccountUser(r),
259		Strings:      strings,
260		Card:         profile,
261	})
262}
263
264type FollowsPageParams struct {
265	Follows []pages.FollowCard
266	Card    *pages.ProfileCard
267}
268
269func (s *State) followPage(
270	r *http.Request,
271	fetchFollows func(db.Execer, string) ([]models.Follow, error),
272	extractDid func(models.Follow) string,
273) (*FollowsPageParams, error) {
274	l := s.logger.With("handler", "reposPage")
275
276	profile, err := s.profile(r)
277	if err != nil {
278		return nil, err
279	}
280	l = l.With("profileDid", profile.UserDid)
281
282	loggedInUser := s.oauth.GetMultiAccountUser(r)
283	params := FollowsPageParams{
284		Card: profile,
285	}
286
287	follows, err := fetchFollows(s.db, profile.UserDid)
288	if err != nil {
289		l.Error("failed to fetch follows", "err", err)
290		return &params, err
291	}
292
293	if len(follows) == 0 {
294		return &params, nil
295	}
296
297	followDids := make([]string, 0, len(follows))
298	for _, follow := range follows {
299		followDids = append(followDids, extractDid(follow))
300	}
301
302	profiles, err := db.GetProfiles(s.db, orm.FilterIn("did", followDids))
303	if err != nil {
304		l.Error("failed to get profiles", "followDids", followDids, "err", err)
305		return &params, err
306	}
307
308	followStatsMap, err := db.GetFollowerFollowingCounts(s.db, followDids)
309	if err != nil {
310		log.Printf("getting follow counts for %s: %s", followDids, err)
311	}
312
313	loggedInUserFollowing := make(map[string]struct{})
314	if loggedInUser != nil {
315		following, err := db.GetFollowing(s.db, loggedInUser.Active.Did)
316		if err != nil {
317			l.Error("failed to get follow list", "err", err, "loggedInUser", loggedInUser.Active.Did)
318			return &params, err
319		}
320		loggedInUserFollowing = make(map[string]struct{}, len(following))
321		for _, follow := range following {
322			loggedInUserFollowing[follow.SubjectDid] = struct{}{}
323		}
324	}
325
326	followCards := make([]pages.FollowCard, len(follows))
327	for i, did := range followDids {
328		followStats := followStatsMap[did]
329		followStatus := models.IsNotFollowing
330		if _, exists := loggedInUserFollowing[did]; exists {
331			followStatus = models.IsFollowing
332		} else if loggedInUser != nil && loggedInUser.Active.Did == did {
333			followStatus = models.IsSelf
334		}
335
336		var profile *models.Profile
337		if p, exists := profiles[did]; exists {
338			profile = p
339		} else {
340			profile = &models.Profile{}
341			profile.Did = did
342		}
343		followCards[i] = pages.FollowCard{
344			LoggedInUser:   loggedInUser,
345			UserDid:        did,
346			FollowStatus:   followStatus,
347			FollowersCount: followStats.Followers,
348			FollowingCount: followStats.Following,
349			Profile:        profile,
350		}
351	}
352
353	params.Follows = followCards
354
355	return &params, nil
356}
357
358func (s *State) followersPage(w http.ResponseWriter, r *http.Request) {
359	followPage, err := s.followPage(r, db.GetFollowers, func(f models.Follow) string { return f.UserDid })
360	if err != nil {
361		s.pages.Notice(w, "all-followers", "Failed to load followers")
362		return
363	}
364
365	s.pages.ProfileFollowers(w, pages.ProfileFollowersParams{
366		LoggedInUser: s.oauth.GetMultiAccountUser(r),
367		Followers:    followPage.Follows,
368		Card:         followPage.Card,
369	})
370}
371
372func (s *State) followingPage(w http.ResponseWriter, r *http.Request) {
373	followPage, err := s.followPage(r, db.GetFollowing, func(f models.Follow) string { return f.SubjectDid })
374	if err != nil {
375		s.pages.Notice(w, "all-following", "Failed to load following")
376		return
377	}
378
379	s.pages.ProfileFollowing(w, pages.ProfileFollowingParams{
380		LoggedInUser: s.oauth.GetMultiAccountUser(r),
381		Following:    followPage.Follows,
382		Card:         followPage.Card,
383	})
384}
385
386func (s *State) AtomFeedPage(w http.ResponseWriter, r *http.Request) {
387	ident, ok := r.Context().Value("resolvedId").(identity.Identity)
388	if !ok {
389		s.pages.Error404(w)
390		return
391	}
392
393	feed, err := s.getProfileFeed(r.Context(), &ident)
394	if err != nil {
395		s.pages.Error500(w)
396		return
397	}
398
399	if feed == nil {
400		return
401	}
402
403	atom, err := feed.ToAtom()
404	if err != nil {
405		s.pages.Error500(w)
406		return
407	}
408
409	w.Header().Set("content-type", "application/atom+xml")
410	w.Write([]byte(atom))
411}
412
413func (s *State) getProfileFeed(ctx context.Context, id *identity.Identity) (*feeds.Feed, error) {
414	timeline, err := db.MakeProfileTimeline(s.db, id.DID.String())
415	if err != nil {
416		return nil, err
417	}
418
419	author := &feeds.Author{
420		Name: fmt.Sprintf("@%s", id.Handle),
421	}
422
423	feed := feeds.Feed{
424		Title:   fmt.Sprintf("%s's timeline", author.Name),
425		Link:    &feeds.Link{Href: fmt.Sprintf("%s/@%s", s.config.Core.BaseUrl(), id.Handle), Type: "text/html", Rel: "alternate"},
426		Items:   make([]*feeds.Item, 0),
427		Updated: time.UnixMilli(0),
428		Author:  author,
429	}
430
431	for _, byMonth := range timeline.ByMonth {
432		if err := s.addPullRequestItems(ctx, &feed, byMonth.PullEvents.Items, author); err != nil {
433			return nil, err
434		}
435		if err := s.addIssueItems(ctx, &feed, byMonth.IssueEvents.Items, author); err != nil {
436			return nil, err
437		}
438		if err := s.addRepoItems(ctx, &feed, byMonth.RepoEvents, author); err != nil {
439			return nil, err
440		}
441	}
442
443	slices.SortFunc(feed.Items, func(a *feeds.Item, b *feeds.Item) int {
444		return int(b.Created.UnixMilli()) - int(a.Created.UnixMilli())
445	})
446
447	if len(feed.Items) > 0 {
448		feed.Updated = feed.Items[0].Created
449	}
450
451	return &feed, nil
452}
453
454func (s *State) addPullRequestItems(ctx context.Context, feed *feeds.Feed, pulls []*models.Pull, author *feeds.Author) error {
455	for _, pull := range pulls {
456		owner, err := s.idResolver.ResolveIdent(ctx, pull.Repo.Did)
457		if err != nil {
458			return err
459		}
460
461		// Add pull request creation item
462		feed.Items = append(feed.Items, s.createPullRequestItem(pull, owner, author))
463	}
464	return nil
465}
466
467func (s *State) addIssueItems(ctx context.Context, feed *feeds.Feed, issues []*models.Issue, author *feeds.Author) error {
468	for _, issue := range issues {
469		owner, err := s.idResolver.ResolveIdent(ctx, issue.Repo.Did)
470		if err != nil {
471			return err
472		}
473
474		feed.Items = append(feed.Items, s.createIssueItem(issue, owner, author))
475	}
476	return nil
477}
478
479func (s *State) addRepoItems(ctx context.Context, feed *feeds.Feed, repos []models.RepoEvent, author *feeds.Author) error {
480	for _, repo := range repos {
481		item, err := s.createRepoItem(ctx, repo, author)
482		if err != nil {
483			return err
484		}
485		feed.Items = append(feed.Items, item)
486	}
487	return nil
488}
489
490func (s *State) createPullRequestItem(pull *models.Pull, owner *identity.Identity, author *feeds.Author) *feeds.Item {
491	return &feeds.Item{
492		Title:   fmt.Sprintf("%s created pull request '%s' in @%s/%s", author.Name, pull.Title, owner.Handle, pull.Repo.Name),
493		Link:    &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s/pulls/%d", s.config.Core.BaseUrl(), owner.Handle, pull.Repo.Name, pull.PullId), Type: "text/html", Rel: "alternate"},
494		Created: pull.Created,
495		Author:  author,
496	}
497}
498
499func (s *State) createIssueItem(issue *models.Issue, owner *identity.Identity, author *feeds.Author) *feeds.Item {
500	return &feeds.Item{
501		Title:   fmt.Sprintf("%s created issue '%s' in @%s/%s", author.Name, issue.Title, owner.Handle, issue.Repo.Name),
502		Link:    &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s/issues/%d", s.config.Core.BaseUrl(), owner.Handle, issue.Repo.Name, issue.IssueId), Type: "text/html", Rel: "alternate"},
503		Created: issue.Created,
504		Author:  author,
505	}
506}
507
508func (s *State) createRepoItem(ctx context.Context, repo models.RepoEvent, author *feeds.Author) (*feeds.Item, error) {
509	var title string
510	if repo.Source != nil {
511		sourceOwner, err := s.idResolver.ResolveIdent(ctx, repo.Source.Did)
512		if err != nil {
513			return nil, err
514		}
515		title = fmt.Sprintf("%s forked repository @%s/%s to '%s'", author.Name, sourceOwner.Handle, repo.Source.Name, repo.Repo.Name)
516	} else {
517		title = fmt.Sprintf("%s created repository '%s'", author.Name, repo.Repo.Name)
518	}
519
520	return &feeds.Item{
521		Title:   title,
522		Link:    &feeds.Link{Href: fmt.Sprintf("%s/@%s/%s", s.config.Core.BaseUrl(), author.Name[1:], repo.Repo.Name), Type: "text/html", Rel: "alternate"}, // Remove @ prefix
523		Created: repo.Repo.Created,
524		Author:  author,
525	}, nil
526}
527
528func (s *State) UpdateProfileBio(w http.ResponseWriter, r *http.Request) {
529	user := s.oauth.GetMultiAccountUser(r)
530
531	err := r.ParseForm()
532	if err != nil {
533		log.Println("invalid profile update form", err)
534		s.pages.Notice(w, "update-profile", "Invalid form.")
535		return
536	}
537
538	profile, err := db.GetProfile(s.db, user.Active.Did)
539	if err != nil {
540		log.Printf("getting profile data for %s: %s", user.Active.Did, err)
541	}
542	if profile == nil {
543		profile = &models.Profile{Did: user.Active.Did}
544	}
545
546	profile.Description = r.FormValue("description")
547	profile.IncludeBluesky = r.FormValue("includeBluesky") == "on"
548	profile.Location = r.FormValue("location")
549	profile.Pronouns = r.FormValue("pronouns")
550
551	var links [5]string
552	for i := range 5 {
553		iLink := r.FormValue(fmt.Sprintf("link%d", i))
554		links[i] = iLink
555	}
556	profile.Links = links
557
558	// Parse stats (exactly 2)
559	stat0 := r.FormValue("stat0")
560	stat1 := r.FormValue("stat1")
561
562	profile.Stats[0].Kind = models.ParseVanityStatKind(stat0)
563	profile.Stats[1].Kind = models.ParseVanityStatKind(stat1)
564
565	if err := db.ValidateProfile(s.db, profile); err != nil {
566		log.Println("invalid profile", err)
567		s.pages.Notice(w, "update-profile", err.Error())
568		return
569	}
570
571	s.updateProfile(profile, w, r)
572}
573
574func (s *State) UpdateProfilePins(w http.ResponseWriter, r *http.Request) {
575	user := s.oauth.GetMultiAccountUser(r)
576
577	err := r.ParseForm()
578	if err != nil {
579		log.Println("invalid profile update form", err)
580		s.pages.Notice(w, "update-profile", "Invalid form.")
581		return
582	}
583
584	profile, err := db.GetProfile(s.db, user.Active.Did)
585	if err != nil {
586		log.Printf("getting profile data for %s: %s", user.Active.Did, err)
587	}
588	if profile == nil {
589		profile = &models.Profile{Did: user.Active.Did}
590	}
591
592	i := 0
593	var pinnedRepos [6]syntax.ATURI
594	for key, values := range r.Form {
595		if i >= 6 {
596			log.Println("invalid pin update form", err)
597			s.pages.Notice(w, "update-profile", "Only 6 repositories can be pinned at a time.")
598			return
599		}
600		if strings.HasPrefix(key, "pinnedRepo") && len(values) > 0 && values[0] != "" && i < 6 {
601			aturi, err := syntax.ParseATURI(values[0])
602			if err != nil {
603				log.Println("invalid profile update form", err)
604				s.pages.Notice(w, "update-profile", "Invalid form.")
605				return
606			}
607			pinnedRepos[i] = aturi
608			i++
609		}
610	}
611	profile.PinnedRepos = pinnedRepos
612
613	s.updateProfile(profile, w, r)
614}
615
616func (s *State) updateProfile(profile *models.Profile, w http.ResponseWriter, r *http.Request) {
617	user := s.oauth.GetMultiAccountUser(r)
618	tx, err := s.db.BeginTx(r.Context(), nil)
619	if err != nil {
620		log.Println("failed to start transaction", err)
621		s.pages.Notice(w, "update-profile", "Failed to update profile, try again later.")
622		return
623	}
624
625	client, err := s.oauth.AuthorizedClient(r)
626	if err != nil {
627		log.Println("failed to get authorized client", err)
628		s.pages.Notice(w, "update-profile", "Failed to update profile, try again later.")
629		return
630	}
631
632	// yeah... lexgen dose not support syntax.ATURI in the record for some reason,
633	// nor does it support exact size arrays
634	var pinnedRepoStrings []string
635	for _, r := range profile.PinnedRepos {
636		pinnedRepoStrings = append(pinnedRepoStrings, r.String())
637	}
638
639	var vanityStats []string
640	for _, v := range profile.Stats {
641		vanityStats = append(vanityStats, string(v.Kind))
642	}
643
644	ex, _ := comatproto.RepoGetRecord(r.Context(), client, "", tangled.ActorProfileNSID, user.Active.Did, "self")
645	var cid *string
646	if ex != nil {
647		cid = ex.Cid
648	}
649
650	_, err = comatproto.RepoPutRecord(r.Context(), client, &comatproto.RepoPutRecord_Input{
651		Collection: tangled.ActorProfileNSID,
652		Repo:       user.Active.Did,
653		Rkey:       "self",
654		Record: &lexutil.LexiconTypeDecoder{
655			Val: &tangled.ActorProfile{
656				Bluesky:            profile.IncludeBluesky,
657				Description:        &profile.Description,
658				Links:              profile.Links[:],
659				Location:           &profile.Location,
660				PinnedRepositories: pinnedRepoStrings,
661				Stats:              vanityStats[:],
662				Pronouns:           &profile.Pronouns,
663			}},
664		SwapRecord: cid,
665	})
666	if err != nil {
667		log.Println("failed to update profile", err)
668		s.pages.Notice(w, "update-profile", "Failed to update PDS, try again later.")
669		return
670	}
671
672	err = db.UpsertProfile(tx, profile)
673	if err != nil {
674		log.Println("failed to update profile", err)
675		s.pages.Notice(w, "update-profile", "Failed to update profile, try again later.")
676		return
677	}
678
679	s.notifier.UpdateProfile(r.Context(), profile)
680
681	s.pages.HxRedirect(w, "/"+user.Active.Did)
682}
683
684func (s *State) EditBioFragment(w http.ResponseWriter, r *http.Request) {
685	user := s.oauth.GetMultiAccountUser(r)
686
687	profile, err := db.GetProfile(s.db, user.Active.Did)
688	if err != nil {
689		log.Printf("getting profile data for %s: %s", user.Active.Did, err)
690	}
691	if profile == nil {
692		profile = &models.Profile{Did: user.Active.Did}
693	}
694
695	s.pages.EditBioFragment(w, pages.EditBioParams{
696		LoggedInUser: user,
697		Profile:      profile,
698	})
699}
700
701func (s *State) EditPinsFragment(w http.ResponseWriter, r *http.Request) {
702	user := s.oauth.GetMultiAccountUser(r)
703
704	profile, err := db.GetProfile(s.db, user.Active.Did)
705	if err != nil {
706		log.Printf("getting profile data for %s: %s", user.Active.Did, err)
707	}
708	if profile == nil {
709		profile = &models.Profile{Did: user.Active.Did}
710	}
711
712	repos, err := db.GetRepos(s.db, 0, orm.FilterEq("did", user.Active.Did))
713	if err != nil {
714		log.Printf("getting repos for %s: %s", user.Active.Did, err)
715	}
716
717	collaboratingRepos, err := db.CollaboratingIn(s.db, user.Active.Did)
718	if err != nil {
719		log.Printf("getting collaborating repos for %s: %s", user.Active.Did, err)
720	}
721
722	allRepos := []pages.PinnedRepo{}
723
724	for _, r := range repos {
725		isPinned := slices.Contains(profile.PinnedRepos[:], r.RepoAt())
726		allRepos = append(allRepos, pages.PinnedRepo{
727			IsPinned: isPinned,
728			Repo:     r,
729		})
730	}
731	for _, r := range collaboratingRepos {
732		isPinned := slices.Contains(profile.PinnedRepos[:], r.RepoAt())
733		allRepos = append(allRepos, pages.PinnedRepo{
734			IsPinned: isPinned,
735			Repo:     r,
736		})
737	}
738
739	s.pages.EditPinsFragment(w, pages.EditPinsParams{
740		LoggedInUser: user,
741		Profile:      profile,
742		AllRepos:     allRepos,
743	})
744}
745
746func (s *State) UploadProfileAvatar(w http.ResponseWriter, r *http.Request) {
747	l := s.logger.With("handler", "UploadProfileAvatar")
748	user := s.oauth.GetUser(r)
749	l = l.With("did", user.Did)
750
751	// Parse multipart form (10MB max)
752	if err := r.ParseMultipartForm(10 << 20); err != nil {
753		l.Error("failed to parse form", "err", err)
754		s.pages.Notice(w, "avatar-error", "Failed to parse form")
755		return
756	}
757
758	file, header, err := r.FormFile("avatar")
759	if err != nil {
760		l.Error("failed to read avatar file", "err", err)
761		s.pages.Notice(w, "avatar-error", "Failed to read avatar file")
762		return
763	}
764	defer file.Close()
765
766	if header.Size > 5000000 {
767		l.Warn("avatar file too large", "size", header.Size)
768		s.pages.Notice(w, "avatar-error", "Avatar file too large (max 5MB)")
769		return
770	}
771
772	contentType := header.Header.Get("Content-Type")
773	if contentType != "image/png" && contentType != "image/jpeg" {
774		l.Warn("invalid image type", "contentType", contentType)
775		s.pages.Notice(w, "avatar-error", "Invalid image type (only PNG and JPEG allowed)")
776		return
777	}
778
779	client, err := s.oauth.AuthorizedClient(r)
780	if err != nil {
781		l.Error("failed to get PDS client", "err", err)
782		s.pages.Notice(w, "avatar-error", "Failed to connect to your PDS")
783		return
784	}
785
786	uploadBlobResp, err := xrpc.RepoUploadBlob(r.Context(), client, file, header.Header.Get("Content-Type"))
787	if err != nil {
788		l.Error("failed to upload avatar blob", "err", err)
789		s.pages.Notice(w, "avatar-error", "Failed to upload avatar to your PDS")
790		return
791	}
792
793	l.Info("uploaded avatar blob", "cid", uploadBlobResp.Blob.Ref.String())
794
795	// get current profile record from PDS to get its CID for swap
796	getRecordResp, err := comatproto.RepoGetRecord(r.Context(), client, "", tangled.ActorProfileNSID, user.Did, "self")
797	if err != nil {
798		l.Error("failed to get current profile record", "err", err)
799		s.pages.Notice(w, "avatar-error", "Failed to get current profile from your PDS")
800		return
801	}
802
803	var profileRecord *tangled.ActorProfile
804	if getRecordResp.Value != nil {
805		if val, ok := getRecordResp.Value.Val.(*tangled.ActorProfile); ok {
806			profileRecord = val
807		} else {
808			l.Warn("profile record type assertion failed, creating new record")
809			profileRecord = &tangled.ActorProfile{}
810		}
811	} else {
812		l.Warn("no existing profile record, creating new record")
813		profileRecord = &tangled.ActorProfile{}
814	}
815
816	profileRecord.Avatar = uploadBlobResp.Blob
817
818	_, err = comatproto.RepoPutRecord(r.Context(), client, &comatproto.RepoPutRecord_Input{
819		Collection: tangled.ActorProfileNSID,
820		Repo:       user.Did,
821		Rkey:       "self",
822		Record:     &lexutil.LexiconTypeDecoder{Val: profileRecord},
823		SwapRecord: getRecordResp.Cid,
824	})
825
826	if err != nil {
827		l.Error("failed to update profile record", "err", err)
828		s.pages.Notice(w, "avatar-error", "Failed to update profile on your PDS")
829		return
830	}
831
832	l.Info("successfully updated profile with avatar")
833
834	profile, err := db.GetProfile(s.db, user.Did)
835	if err != nil {
836		l.Warn("getting profile data from DB", "err", err)
837	}
838	if profile == nil {
839		profile = &models.Profile{Did: user.Did}
840	}
841	profile.Avatar = uploadBlobResp.Blob.Ref.String()
842
843	tx, err := s.db.BeginTx(r.Context(), nil)
844	if err != nil {
845		l.Error("failed to start transaction", "err", err)
846		s.pages.HxRefresh(w)
847		w.WriteHeader(http.StatusOK)
848		return
849	}
850
851	err = db.UpsertProfile(tx, profile)
852	if err != nil {
853		l.Error("failed to update profile in DB", "err", err)
854		s.pages.HxRefresh(w)
855		w.WriteHeader(http.StatusOK)
856		return
857	}
858
859	s.pages.HxRedirect(w, r.Header.Get("Referer"))
860}
861
862func (s *State) RemoveProfileAvatar(w http.ResponseWriter, r *http.Request) {
863	l := s.logger.With("handler", "RemoveProfileAvatar")
864	user := s.oauth.GetUser(r)
865	l = l.With("did", user.Did)
866
867	client, err := s.oauth.AuthorizedClient(r)
868	if err != nil {
869		l.Error("failed to get PDS client", "err", err)
870		s.pages.Notice(w, "avatar-error", "Failed to connect to your PDS")
871		return
872	}
873
874	getRecordResp, err := comatproto.RepoGetRecord(r.Context(), client, "", tangled.ActorProfileNSID, user.Did, "self")
875	if err != nil {
876		l.Error("failed to get current profile record", "err", err)
877		s.pages.Notice(w, "avatar-error", "Failed to get current profile from your PDS")
878		return
879	}
880
881	var profileRecord *tangled.ActorProfile
882	if getRecordResp.Value != nil {
883		if val, ok := getRecordResp.Value.Val.(*tangled.ActorProfile); ok {
884			profileRecord = val
885		} else {
886			l.Warn("profile record type assertion failed")
887			profileRecord = &tangled.ActorProfile{}
888		}
889	} else {
890		l.Warn("no existing profile record")
891		profileRecord = &tangled.ActorProfile{}
892	}
893
894	profileRecord.Avatar = nil
895
896	_, err = comatproto.RepoPutRecord(r.Context(), client, &comatproto.RepoPutRecord_Input{
897		Collection: tangled.ActorProfileNSID,
898		Repo:       user.Did,
899		Rkey:       "self",
900		Record:     &lexutil.LexiconTypeDecoder{Val: profileRecord},
901		SwapRecord: getRecordResp.Cid,
902	})
903
904	if err != nil {
905		l.Error("failed to update profile record", "err", err)
906		s.pages.Notice(w, "avatar-error", "Failed to remove avatar from your PDS")
907		return
908	}
909
910	l.Info("successfully removed avatar from PDS")
911
912	profile, err := db.GetProfile(s.db, user.Did)
913	if err != nil {
914		l.Warn("getting profile data from DB", "err", err)
915	}
916	if profile == nil {
917		profile = &models.Profile{Did: user.Did}
918	}
919	profile.Avatar = ""
920
921	tx, err := s.db.BeginTx(r.Context(), nil)
922	if err != nil {
923		l.Error("failed to start transaction", "err", err)
924		s.pages.HxRefresh(w)
925		w.WriteHeader(http.StatusOK)
926		return
927	}
928
929	err = db.UpsertProfile(tx, profile)
930	if err != nil {
931		l.Error("failed to update profile in DB", "err", err)
932		s.pages.HxRefresh(w)
933		w.WriteHeader(http.StatusOK)
934		return
935	}
936
937	s.pages.HxRedirect(w, r.Header.Get("Referer"))
938}