pronounss/backend/db/user.go

package db

import (
	"context"
	"regexp"

	"codeberg.org/u1f320/pronouns.cc/backend/db/queries"
	"emperror.dev/errors"
	"github.com/bwmarrin/discordgo"
	"github.com/georgysavva/scany/pgxscan"
	"github.com/jackc/pgconn"
	"github.com/jackc/pgx/v4"
	"github.com/rs/xid"
)

type User struct {
	ID          xid.ID
	Username    string
	DisplayName *string
	Bio         *string

	AvatarURLs []string `db:"avatar_urls"`
	Links      []string

	Discord         *string
	DiscordUsername *string

	MaxInvites int
}

// usernames must match this regex
var usernameRegex = regexp.MustCompile(`^[\w-.]{2,40}$`)

const (
	ErrUserNotFound = errors.Sentinel("user not found")

	ErrUsernameTaken    = errors.Sentinel("username is already taken")
	ErrInvalidUsername  = errors.Sentinel("username contains invalid characters")
	ErrUsernameTooShort = errors.Sentinel("username is too short")
	ErrUsernameTooLong  = errors.Sentinel("username is too long")
)

const (
	MaxUsernameLength    = 40
	MaxDisplayNameLength = 100
	MaxUserBioLength     = 1000
	MaxUserLinksLength   = 25
	MaxLinkLength        = 256
)

// CreateUser creates a user with the given username.
func (db *DB) CreateUser(ctx context.Context, tx pgx.Tx, username string) (u User, err error) {
	// check if the username is valid
	// if not, return an error depending on what failed
	if !usernameRegex.MatchString(username) {
		if len(username) < 2 {
			return u, ErrUsernameTooShort
		} else if len(username) > 40 {
			return u, ErrUsernameTooLong
		}

		return u, ErrInvalidUsername
	}

	sql, args, err := sq.Insert("users").Columns("id", "username").Values(xid.New(), username).Suffix("RETURNING *").ToSql()
	if err != nil {
		return u, errors.Wrap(err, "building sql")
	}

	err = pgxscan.Get(ctx, tx, &u, sql, args...)
	if err != nil {
		if v, ok := errors.Cause(err).(*pgconn.PgError); ok {
			if v.Code == "23505" { // unique constraint violation
				return u, ErrUsernameTaken
			}
		}

		return u, errors.Cause(err)
	}

	return u, nil
}

// DiscordUser fetches a user by Discord user ID.
func (db *DB) DiscordUser(ctx context.Context, discordID string) (u User, err error) {
	sql, args, err := sq.Select("*").From("users").Where("discord = ?", discordID).ToSql()
	if err != nil {
		return u, errors.Wrap(err, "building sql")
	}

	err = pgxscan.Get(ctx, db, &u, sql, args...)
	if err != nil {
		if errors.Cause(err) == pgx.ErrNoRows {
			return u, ErrUserNotFound
		}
		return u, errors.Cause(err)
	}

	return u, nil
}

func (u *User) UpdateFromDiscord(ctx context.Context, db querier, du *discordgo.User) error {
	builder := sq.Update("users").
		Set("discord", du.ID).
		Set("discord_username", du.String()).
		Where("id = ?", u.ID).
		Suffix("RETURNING *")

	sql, args, err := builder.ToSql()
	if err != nil {
		return errors.Wrap(err, "building sql")
	}

	return pgxscan.Get(ctx, db, u, sql, args...)
}

func (db *DB) getUser(ctx context.Context, q querier, id xid.ID) (u User, err error) {
	qu, err := queries.NewQuerier(q).GetUserByID(ctx, id.String())
	if err != nil {
		if errors.Cause(err) == pgx.ErrNoRows {
			return u, ErrUserNotFound
		}

		return u, errors.Wrap(err, "getting user from database")
	}

	u = User{
		ID:              id,
		Username:        qu.Username,
		DisplayName:     qu.DisplayName,
		Bio:             qu.Bio,
		AvatarURLs:      qu.AvatarUrls,
		Links:           qu.Links,
		Discord:         qu.Discord,
		DiscordUsername: qu.DiscordUsername,
		MaxInvites:      int(qu.MaxInvites),
	}

	return u, nil
}

// User gets a user by ID.
func (db *DB) User(ctx context.Context, id xid.ID) (u User, err error) {
	return db.getUser(ctx, db, id)
}

// Username gets a user by username.
func (db *DB) Username(ctx context.Context, name string) (u User, err error) {
	err = pgxscan.Get(ctx, db, &u, "select * from users where username = $1", name)
	if err != nil {
		if errors.Cause(err) == pgx.ErrNoRows {
			return u, ErrUserNotFound
		}

		return u, errors.Cause(err)
	}

	return u, nil
}

// UsernameTaken checks if the given username is already taken.
func (db *DB) UsernameTaken(ctx context.Context, username string) (valid, taken bool, err error) {
	if !usernameRegex.MatchString(username) {
		return false, false, nil
	}

	err = db.QueryRow(ctx, "select exists (select id from users where username = $1)", username).Scan(&taken)
	return true, taken, err
}

// UpdateUsername validates the given username, then updates the given user's name to it if valid.
func (db *DB) UpdateUsername(ctx context.Context, tx pgx.Tx, id xid.ID, newName string) error {
	if !usernameRegex.MatchString(newName) {
		return ErrInvalidUsername
	}

	sql, args, err := sq.Update("users").Set("username", newName).Where("id = ?", id).ToSql()
	if err != nil {
		return errors.Wrap(err, "building sql")
	}

	_, err = db.Exec(ctx, sql, args...)
	if err != nil {
		pge := &pgconn.PgError{}
		if errors.As(err, &pge) {
			// unique constraint violation
			if pge.Code == "23505" {
				return ErrUsernameTaken
			}
		}

		return errors.Wrap(err, "executing query")
	}
	return nil
}

func (db *DB) UpdateUser(
	ctx context.Context,
	tx pgx.Tx, id xid.ID,
	displayName, bio *string,
	links *[]string,
	avatarURLs []string,
) (u User, err error) {
	if displayName == nil && bio == nil && links == nil && avatarURLs == nil {
		return db.getUser(ctx, tx, id)
	}

	builder := sq.Update("users").Where("id = ?", id)
	if displayName != nil {
		if *displayName == "" {
			builder = builder.Set("display_name", nil)
		} else {
			builder = builder.Set("display_name", *displayName)
		}
	}
	if bio != nil {
		if *bio == "" {
			builder = builder.Set("bio", nil)
		} else {
			builder = builder.Set("bio", *bio)
		}
	}
	if links != nil {
		if len(*links) == 0 {
			builder = builder.Set("links", nil)
		} else {
			builder = builder.Set("links", *links)
		}
	}

	if avatarURLs != nil {
		if len(avatarURLs) == 0 {
			builder = builder.Set("avatar_urls", nil)
		} else {
			builder = builder.Set("avatar_urls", avatarURLs)
		}
	}

	sql, args, err := builder.Suffix("RETURNING *").ToSql()
	if err != nil {
		return u, errors.Wrap(err, "building sql")
	}

	err = pgxscan.Get(ctx, tx, &u, sql, args...)
	if err != nil {
		return u, errors.Wrap(err, "executing sql")
	}

	return u, nil
}
initial commit 2022-05-02 17:19:37 +02:00			`package db`

			`import (`
			`"context"`
			`"regexp"`

feat!: wip pronoun entry rework 2023-01-04 22:41:29 +01:00			`"codeberg.org/u1f320/pronouns.cc/backend/db/queries"`
initial commit 2022-05-02 17:19:37 +02:00			`"emperror.dev/errors"`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`"github.com/bwmarrin/discordgo"`
initial commit 2022-05-02 17:19:37 +02:00			`"github.com/georgysavva/scany/pgxscan"`
			`"github.com/jackc/pgconn"`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`"github.com/jackc/pgx/v4"`
initial commit 2022-05-02 17:19:37 +02:00			`"github.com/rs/xid"`
			`)`

			`type User struct {`
			`ID xid.ID`
			`Username string`
			`DisplayName *string`
			`Bio *string`

feat(backend): remove avatar_source field, change avatar_urls on member 2022-09-20 14:12:29 +02:00			AvatarURLs []string `db:"avatar_urls"`
			`Links []string`
initial commit 2022-05-02 17:19:37 +02:00
add recoil store 2022-05-05 16:33:44 +02:00			`Discord *string`
			`DiscordUsername *string`
feat: add invites to backend 2022-11-18 15:27:52 +01:00
			`MaxInvites int`
initial commit 2022-05-02 17:19:37 +02:00			`}`

			`// usernames must match this regex`
feat(api): add PATCH /users/@me/fields, finish POST /auth/discord/callback 2022-05-17 22:35:26 +02:00			var usernameRegex = regexp.MustCompile(`^[\w-.]{2,40}$`)
initial commit 2022-05-02 17:19:37 +02:00
			`const (`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`ErrUserNotFound = errors.Sentinel("user not found")`
initial commit 2022-05-02 17:19:37 +02:00
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`ErrUsernameTaken = errors.Sentinel("username is already taken")`
initial commit 2022-05-02 17:19:37 +02:00			`ErrInvalidUsername = errors.Sentinel("username contains invalid characters")`
			`ErrUsernameTooShort = errors.Sentinel("username is too short")`
			`ErrUsernameTooLong = errors.Sentinel("username is too long")`
			`)`

feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00			`const (`
			`MaxUsernameLength = 40`
			`MaxDisplayNameLength = 100`
			`MaxUserBioLength = 1000`
			`MaxUserLinksLength = 25`
			`MaxLinkLength = 256`
			`)`

initial commit 2022-05-02 17:19:37 +02:00			`// CreateUser creates a user with the given username.`
feat: get signup via discord working 2022-11-18 02:17:27 +01:00			`func (db *DB) CreateUser(ctx context.Context, tx pgx.Tx, username string) (u User, err error) {`
initial commit 2022-05-02 17:19:37 +02:00			`// check if the username is valid`
			`// if not, return an error depending on what failed`
			`if !usernameRegex.MatchString(username) {`
			`if len(username) < 2 {`
			`return u, ErrUsernameTooShort`
			`} else if len(username) > 40 {`
			`return u, ErrUsernameTooLong`
			`}`

			`return u, ErrInvalidUsername`
			`}`

			`sql, args, err := sq.Insert("users").Columns("id", "username").Values(xid.New(), username).Suffix("RETURNING *").ToSql()`
			`if err != nil {`
			`return u, errors.Wrap(err, "building sql")`
			`}`

feat: get signup via discord working 2022-11-18 02:17:27 +01:00			`err = pgxscan.Get(ctx, tx, &u, sql, args...)`
initial commit 2022-05-02 17:19:37 +02:00			`if err != nil {`
			`if v, ok := errors.Cause(err).(*pgconn.PgError); ok {`
			`if v.Code == "23505" { // unique constraint violation`
			`return u, ErrUsernameTaken`
			`}`
			`}`

			`return u, errors.Cause(err)`
			`}`

			`return u, nil`
			`}`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00
			`// DiscordUser fetches a user by Discord user ID.`
			`func (db *DB) DiscordUser(ctx context.Context, discordID string) (u User, err error) {`
			`sql, args, err := sq.Select("*").From("users").Where("discord = ?", discordID).ToSql()`
			`if err != nil {`
			`return u, errors.Wrap(err, "building sql")`
			`}`

			`err = pgxscan.Get(ctx, db, &u, sql, args...)`
			`if err != nil {`
			`if errors.Cause(err) == pgx.ErrNoRows {`
			`return u, ErrUserNotFound`
			`}`
			`return u, errors.Cause(err)`
			`}`

			`return u, nil`
			`}`

feat!: wip pronoun entry rework 2023-01-04 22:41:29 +01:00			`func (u User) UpdateFromDiscord(ctx context.Context, db querier, du discordgo.User) error {`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`builder := sq.Update("users").`
fix: save discord ID in db, add HTTP status to new error codes 2022-11-18 02:26:40 +01:00			`Set("discord", du.ID).`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`Set("discord_username", du.String()).`
			`Where("id = ?", u.ID).`
			`Suffix("RETURNING *")`

			`sql, args, err := builder.ToSql()`
			`if err != nil {`
			`return errors.Wrap(err, "building sql")`
			`}`

			`return pgxscan.Get(ctx, db, u, sql, args...)`
			`}`

feat!: wip pronoun entry rework 2023-01-04 22:41:29 +01:00			`func (db *DB) getUser(ctx context.Context, q querier, id xid.ID) (u User, err error) {`
			`qu, err := queries.NewQuerier(q).GetUserByID(ctx, id.String())`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`if err != nil {`
			`if errors.Cause(err) == pgx.ErrNoRows {`
			`return u, ErrUserNotFound`
			`}`

feat!: wip pronoun entry rework 2023-01-04 22:41:29 +01:00			`return u, errors.Wrap(err, "getting user from database")`
			`}`

			`u = User{`
			`ID: id,`
			`Username: qu.Username,`
			`DisplayName: qu.DisplayName,`
			`Bio: qu.Bio,`
			`AvatarURLs: qu.AvatarUrls,`
			`Links: qu.Links,`
			`Discord: qu.Discord,`
			`DiscordUsername: qu.DiscordUsername,`
			`MaxInvites: int(qu.MaxInvites),`
add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`}`

			`return u, nil`
			`}`

feat(backend): allow changing username in PATCH /users/@me 2022-12-23 01:31:43 +01:00			`// User gets a user by ID.`
			`func (db *DB) User(ctx context.Context, id xid.ID) (u User, err error) {`
			`return db.getUser(ctx, db, id)`
			`}`

add frontend template + GET /users/{userRef} route 2022-05-04 16:27:16 +02:00			`// Username gets a user by username.`
			`func (db *DB) Username(ctx context.Context, name string) (u User, err error) {`
			`err = pgxscan.Get(ctx, db, &u, "select * from users where username = $1", name)`
			`if err != nil {`
			`if errors.Cause(err) == pgx.ErrNoRows {`
			`return u, ErrUserNotFound`
			`}`

			`return u, errors.Cause(err)`
			`}`

			`return u, nil`
			`}`
feat(api): add PATCH /users/@me/fields, finish POST /auth/discord/callback 2022-05-17 22:35:26 +02:00
			`// UsernameTaken checks if the given username is already taken.`
			`func (db *DB) UsernameTaken(ctx context.Context, username string) (valid, taken bool, err error) {`
			`if !usernameRegex.MatchString(username) {`
			`return false, false, nil`
			`}`

			`err = db.QueryRow(ctx, "select exists (select id from users where username = $1)", username).Scan(&taken)`
			`return true, taken, err`
			`}`
feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00
feat(backend): allow changing username in PATCH /users/@me 2022-12-23 01:31:43 +01:00			`// UpdateUsername validates the given username, then updates the given user's name to it if valid.`
			`func (db *DB) UpdateUsername(ctx context.Context, tx pgx.Tx, id xid.ID, newName string) error {`
			`if !usernameRegex.MatchString(newName) {`
			`return ErrInvalidUsername`
			`}`

			`sql, args, err := sq.Update("users").Set("username", newName).Where("id = ?", id).ToSql()`
			`if err != nil {`
			`return errors.Wrap(err, "building sql")`
			`}`

			`_, err = db.Exec(ctx, sql, args...)`
			`if err != nil {`
			`pge := &pgconn.PgError{}`
			`if errors.As(err, &pge) {`
			`// unique constraint violation`
			`if pge.Code == "23505" {`
			`return ErrUsernameTaken`
			`}`
			`}`

			`return errors.Wrap(err, "executing query")`
			`}`
			`return nil`
			`}`

feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00			`func (db *DB) UpdateUser(`
			`ctx context.Context,`
			`tx pgx.Tx, id xid.ID,`
			`displayName, bio *string,`
			`links *[]string,`
feat(backend): some member routes, half-broken avatar uploading 2022-09-20 12:55:00 +02:00			`avatarURLs []string,`
feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00			`) (u User, err error) {`
feat(backend): working avatar uploading 2022-09-20 13:02:48 +02:00			`if displayName == nil && bio == nil && links == nil && avatarURLs == nil {`
feat(backend): allow changing username in PATCH /users/@me 2022-12-23 01:31:43 +01:00			`return db.getUser(ctx, tx, id)`
feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00			`}`

			`builder := sq.Update("users").Where("id = ?", id)`
			`if displayName != nil {`
			`if *displayName == "" {`
			`builder = builder.Set("display_name", nil)`
			`} else {`
			`builder = builder.Set("display_name", *displayName)`
			`}`
			`}`
			`if bio != nil {`
			`if *bio == "" {`
			`builder = builder.Set("bio", nil)`
			`} else {`
			`builder = builder.Set("bio", *bio)`
			`}`
			`}`
			`if links != nil {`
			`if len(*links) == 0 {`
			`builder = builder.Set("links", nil)`
			`} else {`
			`builder = builder.Set("links", *links)`
			`}`
			`}`

feat(backend): some member routes, half-broken avatar uploading 2022-09-20 12:55:00 +02:00			`if avatarURLs != nil {`
			`if len(avatarURLs) == 0 {`
			`builder = builder.Set("avatar_urls", nil)`
			`} else {`
			`builder = builder.Set("avatar_urls", avatarURLs)`
			`}`
			`}`

feat(api): add PATCH /users/@me, remove PATCH /users/@me/fields 2022-06-16 14:54:15 +02:00			`sql, args, err := builder.Suffix("RETURNING *").ToSql()`
			`if err != nil {`
			`return u, errors.Wrap(err, "building sql")`
			`}`

			`err = pgxscan.Get(ctx, tx, &u, sql, args...)`
			`if err != nil {`
			`return u, errors.Wrap(err, "executing sql")`
			`}`

			`return u, nil`
			`}`