feat: Filter private repository from the UIv0.0.17

Now the whole application takes public into account.

1 files changed, 28 insertions, 1 deletions

diff --git a/pkg/ext/auth.go b/pkg/ext/auth.go
index 304f4ad..5c3070e 100644
--- a/pkg/ext/auth.go
+++ b/pkg/ext/auth.go
@@ -6,6 +6,8 @@ import (
 	"errors"
 	"log/slog"
 	"net/http"
+
+	serverconfig "git.gabrielgio.me/cerrado/pkg/config"
 )
 
 type authService interface {
@@ -20,6 +22,25 @@ func DisableAuthentication(next http.HandlerFunc) http.HandlerFunc {
 	}
 }
 
+func VerifyRespository(
+	config *serverconfig.ConfigurationRepository,
+) func(next http.HandlerFunc) http.HandlerFunc {
+	return func(next http.HandlerFunc) http.HandlerFunc {
+		return func(w http.ResponseWriter, r *http.Request) {
+			name := r.PathValue("name")
+			if name != "" {
+				repo := config.GetByName(name)
+				if repo != nil && !repo.Public && !IsLoggedIn(r.Context()) {
+					NotFound(w, r)
+					return
+				}
+			}
+
+			next(w, r)
+		}
+	}
+}
+
 func Authenticate(auth authService) func(next http.HandlerFunc) http.HandlerFunc {
 	return func(next http.HandlerFunc) http.HandlerFunc {
 		return func(w http.ResponseWriter, r *http.Request) {
@@ -28,6 +49,7 @@ func Authenticate(auth authService) func(next http.HandlerFunc) http.HandlerFunc
 				if !errors.Is(err, http.ErrNoCookie) {
 					slog.Error("Error loading cookie", "error", err)
 				}
+
 				next(w, r)
 				return
 			}
@@ -47,10 +69,15 @@ func Authenticate(auth authService) func(next http.HandlerFunc) http.HandlerFunc
 			}
 
 			ctx := r.Context()
-			ctx = context.WithValue(ctx, "logged", true)
+			ctx = context.WithValue(ctx, "logged", valid)
 
 			slog.Info("Validated token", "valid?", valid)
 			next(w, r.WithContext(ctx))
 		}
 	}
 }
+
+func IsLoggedIn(ctx context.Context) bool {
+	t, ok := ctx.Value("logged").(bool)
+	return ok && t
+}