opengist/internal/db/admin_setting.go

package db

import (
	"gorm.io/gorm/clause"
)

type AdminSetting struct {
	Key   string `gorm:"uniqueIndex"`
	Value string
}

const (
	SettingDisableSignup          = "disable-signup"
	SettingRequireLogin           = "require-login"
	SettingAllowGistsWithoutLogin = "allow-gists-without-login"
	SettingDisableLoginForm       = "disable-login-form"
	SettingDisableGravatar        = "disable-gravatar"
)

func GetSetting(key string) (string, error) {
	var setting AdminSetting
	err := db.Where("key = ?", key).First(&setting).Error
	return setting.Value, err
}

func GetSettings() (map[string]string, error) {
	var settings []AdminSetting
	err := db.Find(&settings).Error
	if err != nil {
		return nil, err
	}

	result := make(map[string]string)
	for _, setting := range settings {
		result[setting.Key] = setting.Value
	}

	return result, nil
}

func UpdateSetting(key string, value string) error {
	return db.Clauses(clause.OnConflict{
		Columns:   []clause.Column{{Name: "key"}}, // key column
		DoUpdates: clause.AssignmentColumns([]string{"value"}),
	}).Create(&AdminSetting{
		Key:   key,
		Value: value,
	}).Error
}

func setSetting(key string, value string) error {
	return db.Create(&AdminSetting{Key: key, Value: value}).Error
}

func initAdminSettings(settings map[string]string) error {
	for key, value := range settings {
		if err := setSetting(key, value); err != nil {
			if !IsUniqueConstraintViolation(err) {
				return err
			}
		}
	}

	return nil
}

type DBAuthInfo struct{}

func (auth DBAuthInfo) RequireLogin() (bool, error) {
	s, err := GetSetting(SettingRequireLogin)
	if err != nil {
		return true, err
	}
	return s == "1", nil
}

func (auth DBAuthInfo) AllowGistsWithoutLogin() (bool, error) {
	s, err := GetSetting(SettingAllowGistsWithoutLogin)
	if err != nil {
		return false, err
	}
	return s == "1", nil
}
Tweaked project structure (#88) 2023-09-02 22:30:57 +00:00			`package db`
Create admin settings and moved signup disable setting there 2023-04-16 22:17:06 +00:00
			`import (`
			`"gorm.io/gorm/clause"`
			`)`

			`type AdminSetting struct {`
			Key string `gorm:"uniqueIndex"`
			`Value string`
			`}`

			`const (`
Add a setting to allow anonymous access to individual gists while still RequireLogin everywhere else (#229) * Add a setting to allow accessing individual gists without auth This is a middle ground between the existing setting "Require Login", which requires login to do anything at all, and having it off, which shows a public list of gists and more generally allows discovering info about the users/gists of the instance without login. The idea of this setting is that it is "require login" for everything except individual gists. Fixes #228. Co-authored-by: Thomas Miceli <tho.miceli@gmail.com> 2024-05-12 21:40:11 +00:00			`SettingDisableSignup = "disable-signup"`
			`SettingRequireLogin = "require-login"`
			`SettingAllowGistsWithoutLogin = "allow-gists-without-login"`
			`SettingDisableLoginForm = "disable-login-form"`
			`SettingDisableGravatar = "disable-gravatar"`
Create admin settings and moved signup disable setting there 2023-04-16 22:17:06 +00:00			`)`

			`func GetSetting(key string) (string, error) {`
			`var setting AdminSetting`
			`err := db.Where("key = ?", key).First(&setting).Error`
			`return setting.Value, err`
			`}`

Add require login feature to see gists 2023-04-28 18:31:10 +00:00			`func GetSettings() (map[string]string, error) {`
			`var settings []AdminSetting`
			`err := db.Find(&settings).Error`
			`if err != nil {`
			`return nil, err`
			`}`

			`result := make(map[string]string)`
			`for _, setting := range settings {`
			`result[setting.Key] = setting.Value`
			`}`

			`return result, nil`
			`}`

Create admin settings and moved signup disable setting there 2023-04-16 22:17:06 +00:00			`func UpdateSetting(key string, value string) error {`
			`return db.Clauses(clause.OnConflict{`
Add require login feature to see gists 2023-04-28 18:31:10 +00:00			`Columns: []clause.Column{{Name: "key"}}, // key column`
Create admin settings and moved signup disable setting there 2023-04-16 22:17:06 +00:00			`DoUpdates: clause.AssignmentColumns([]string{"value"}),`
			`}).Create(&AdminSetting{`
			`Key: key,`
			`Value: value,`
			`}).Error`
			`}`

			`func setSetting(key string, value string) error {`
			`return db.Create(&AdminSetting{Key: key, Value: value}).Error`
			`}`

			`func initAdminSettings(settings map[string]string) error {`
			`for key, value := range settings {`
			`if err := setSetting(key, value); err != nil {`
Support Github and Gitea OAuth providers 2023-04-17 12:25:39 +00:00			`if !IsUniqueConstraintViolation(err) {`
Create admin settings and moved signup disable setting there 2023-04-16 22:17:06 +00:00			`return err`
			`}`
			`}`
			`}`

			`return nil`
			`}`
Add a setting to allow anonymous access to individual gists while still RequireLogin everywhere else (#229) * Add a setting to allow accessing individual gists without auth This is a middle ground between the existing setting "Require Login", which requires login to do anything at all, and having it off, which shows a public list of gists and more generally allows discovering info about the users/gists of the instance without login. The idea of this setting is that it is "require login" for everything except individual gists. Fixes #228. Co-authored-by: Thomas Miceli <tho.miceli@gmail.com> 2024-05-12 21:40:11 +00:00
			`type DBAuthInfo struct{}`

			`func (auth DBAuthInfo) RequireLogin() (bool, error) {`
			`s, err := GetSetting(SettingRequireLogin)`
			`if err != nil {`
			`return true, err`
			`}`
			`return s == "1", nil`
			`}`

			`func (auth DBAuthInfo) AllowGistsWithoutLogin() (bool, error) {`
			`s, err := GetSetting(SettingAllowGistsWithoutLogin)`
			`if err != nil {`
			`return false, err`
			`}`
			`return s == "1", nil`
			`}`