1"use server";
2
3import { refresh } from "next/cache";
4import { redirect } from "next/navigation";
5import {
6  authorizeDevice,
7  createAnswer,
8  createAnswerComment,
9  createQuestion,
10  createQuestionComment,
11  createRepository,
12  getCurrentUser,
13  hasUser,
14  updateAnswer,
15  updateComment,
16  updateQuestion,
17  voteAnswer,
18  voteComment,
19  voteQuestion,
20} from "@/lib/dal";
21import { createSupabaseClient } from "@/lib/supabase";
22import type {
23  AnswerResponse,
24  CommentResponse,
25  CreateRepositoryResponse,
26  QuestionResponse,
27  UserResponse,
28  VoteResponse,
29} from "./lib/dto";
30import { delay, validateEmail } from "./util";
31
32export async function getCurrentUserAction(): Promise<UserResponse | null> {
33  return await getCurrentUser();
34}
35
36export type AuthActionResult = { success: true } | { error: string };
37
38export async function login(
39  _prev: AuthActionResult | null,
40  formData: FormData,
41): Promise<AuthActionResult> {
42  const supabase = await createSupabaseClient();
43  const email = formData.get("email") as string;
44  const password = formData.get("password") as string;
45  const redirectTo = formData.get("redirect") as string;
46
47  if (!validateEmail(email)) {
48    return await delay(300, { error: "Invalid email" });
49  }
50
51  const { error } = await supabase.auth.signInWithPassword({
52    email,
53    password,
54  });
55
56  if (error) return { error: error.message };
57  if (redirectTo) redirect(redirectTo);
58  return { success: true };
59}
60
61export async function signup(
62  _prev: AuthActionResult | null,
63  formData: FormData,
64): Promise<AuthActionResult> {
65  const supabase = await createSupabaseClient();
66  const email = formData.get("email") as string;
67  const username = formData.get("username") as string;
68  const redirectTo = formData.get("redirect") as string;
69
70  if (!validateEmail(email)) {
71    return await delay(300, { error: "Invalid email" })
72  };
73
74  const usernameError = await validateUsername(username);
75  if (usernameError) {
76    return { error: usernameError };
77  }
78
79  // note: this will _not_ fail if the user already exists, but instead send a sign-in link
80  // we don't differentiate between new and existing for security: otherwise attackers would be able to tell what
81  // user exists / doesn't exist
82  const { error } = await supabase.auth.signInWithOtp({
83    email,
84    options: { shouldCreateUser: true, data: { username } },
85  });
86
87  if (error) return { error: error.message };
88  if (redirectTo) redirect(redirectTo);
89  return { success: true };
90}
91
92async function validateUsername(username: string): Promise<string | null> {
93  if (username.length < 2) {
94    return await delay(300, "Username must be at least 2 characters");
95  }
96  if (username.length > 32) {
97    return await delay(300, "Username must be at most 32 characters");
98  }
99  if (username.startsWith("-")) {
100    return await delay(300, "Username cannot start with a hyphen");
101  }
102  if (username.endsWith("-")) {
103    return await delay(300, "Username cannot start with a hyphen");
104  }
105  const invalidChars = username.match(/[^a-zA-Z0-9_-]/g);
106  if (invalidChars) {
107    return await delay(300, `Username cannot include '${[...new Set(invalidChars)].join('')}'`);
108  }
109  const usernameTaken = await hasUser(username);
110  if (usernameTaken) {
111    return "Username taken";
112  }
113
114  return null;
115}
116
117export async function signout() {
118  const supabase = await createSupabaseClient();
119  const { error } = await supabase.auth.signOut();
120  console.log(error);
121}
122
123//////////////////////////////////////////////////////////////////////////////////////////////////////////
124// note that the actions here use refresh() as opposed to revalidatePath()
125// the reason why is that refresh() only ensures that the current request gets fresh data
126// whereas revalidatePath invalidates the entire client-side router cache regardless of the path passed in
127// this means things like instant back/forth and prefetches will not work if an action is invoked
128// even though it should only selectively dump that path in the client
129//
130// so rather dumbly, we just use refresh() which sets FreshnessPolicy.RefreshAll for the current navigation only
131//////////////////////////////////////////////////////////////////////////////////////////////////////////
132
133export type CreateRepositoryActionResult =
134  | { repository: CreateRepositoryResponse }
135  | { error: string };
136
137export async function createRepositoryAction(
138  formData: FormData,
139): Promise<CreateRepositoryActionResult> {
140  const owner = formData.get("owner") as string;
141  const name = formData.get("repo-name") as string;
142  const visibility = formData.get("visibility") as string;
143
144  if (!owner || !name) {
145    return { error: "Owner and repository name are required" };
146  }
147
148  const result = await createRepository(owner, name, {
149    owner_type: "user",
150    visibility,
151  });
152  if (!result) {
153    return { error: "Failed to create repository" };
154  }
155
156  refresh();
157  return { repository: result };
158}
159
160export type CreateQuestionActionResult =
161  | { question: QuestionResponse }
162  | { error: string };
163
164export async function createQuestionAction(
165  owner: string,
166  repo: string,
167  formData: FormData,
168): Promise<CreateQuestionActionResult> {
169  const title = formData.get("title") as string;
170  const body = formData.get("body") as string;
171  if (!title || !body) {
172    return { error: "Title and body are required" };
173  }
174
175  const result = await createQuestion(owner, repo, { title, body });
176  if (!result) {
177    return { error: "createQuestion call failed" };
178  }
179
180  refresh();
181  return { question: result };
182}
183
184export type UpdateQuestionActionResult =
185  | { question: QuestionResponse }
186  | { error: string };
187
188export async function updateQuestionAction(
189  owner: string,
190  repo: string,
191  number: number,
192  formData: FormData,
193): Promise<UpdateQuestionActionResult> {
194  const title = formData.get("title") as string;
195  const body = formData.get("body") as string;
196  if (!title || !body) {
197    return { error: "Title and body are required" };
198  }
199
200  const result = await updateQuestion(owner, repo, number, { title, body });
201  if (!result) {
202    return { error: "updateQuestion call failed" };
203  }
204
205  refresh();
206  return { question: result };
207}
208
209export type CreateAnswerActionResult =
210  | { answer: AnswerResponse }
211  | { error: string };
212
213export async function createAnswerAction(
214  owner: string,
215  repo: string,
216  number: number,
217  formData: FormData,
218): Promise<CreateAnswerActionResult> {
219  const body = formData.get("body") as string;
220  if (!body) {
221    return { error: "Body cannot be empty" };
222  }
223
224  const result = await createAnswer(owner, repo, number, { body });
225  if (!result) {
226    return { error: "createAnswer call failed" };
227  }
228
229  refresh();
230  return { answer: result };
231}
232
233export type UpdateAnswerActionResult =
234  | { answer: AnswerResponse }
235  | { error: string };
236
237export async function updateAnswerAction(
238  owner: string,
239  repo: string,
240  number: number,
241  answerId: string,
242  formData: FormData,
243): Promise<UpdateAnswerActionResult> {
244  const body = formData.get("body") as string;
245  if (!body) {
246    return { error: "Body cannot be empty" };
247  }
248
249  const result = await updateAnswer(owner, repo, number, answerId, { body });
250  if (!result) {
251    return { error: "updateAnswer call failed" };
252  }
253
254  refresh();
255  return { answer: result };
256}
257
258export type CreateCommentActionResult =
259  | { comment: CommentResponse }
260  | { error: string };
261
262export async function createCommentAction(
263  owner: string,
264  repo: string,
265  number: number,
266  parentType: "question" | "answer",
267  parentId: string | undefined,
268  formData: FormData,
269): Promise<CreateCommentActionResult> {
270  const body = formData.get("body") as string;
271  if (!body) {
272    return { error: "Body cannot be empty" };
273  } else if (parentType === "answer" && !parentId) {
274    return { error: "parentId is required if parentType is answer" };
275  }
276
277  const result =
278    parentType === "question"
279      ? await createQuestionComment(owner, repo, Number(number), { body })
280      : await createAnswerComment(owner, repo, Number(number), parentId!, {
281          body,
282        });
283
284  if (!result) {
285    return { error: "createComment call failed" };
286  }
287
288  refresh();
289  return { comment: result };
290}
291
292export type UpdateCommentActionResult =
293  | { comment: CommentResponse }
294  | { error: string };
295
296export async function updateCommentAction(
297  owner: string,
298  repo: string,
299  number: number,
300  commentId: string,
301  formData: FormData,
302): Promise<UpdateCommentActionResult> {
303  const body = formData.get("body") as string;
304  if (!body) {
305    return { error: "Body cannot be empty" };
306  }
307
308  const result = await updateComment(owner, repo, number, commentId, { body });
309  if (!result) {
310    return { error: "updateComment call failed" };
311  }
312
313  refresh();
314  return { comment: result };
315}
316
317export type VoteActionResult = { vote: VoteResponse } | { error: string };
318
319export async function voteAction(
320  owner: string,
321  repo: string,
322  number: number,
323  targetId: string | undefined,
324  targetType: "question" | "answer" | "comment",
325  formData: FormData,
326): Promise<VoteActionResult> {
327  const value = Number(formData.get("value"));
328
329  if (!targetId && targetType !== "question") {
330    return { error: `targetId must be set for target type ${targetType}` };
331  }
332
333  let result: VoteResponse | null;
334  if (targetType === "question") {
335    result = await voteQuestion(owner, repo, number, { value });
336  } else if (targetType === "answer") {
337    result = await voteAnswer(owner, repo, number, targetId!, { value });
338  } else {
339    result = await voteComment(owner, repo, number, targetId!, { value });
340  }
341
342  if (!result) {
343    return { error: "voteAction call failed" };
344  }
345
346  refresh();
347  return { vote: result };
348}
349
350export type AuthorizeDeviceActionResult =
351  | { success: true }
352  | { success: false; error: string };
353
354export async function authorizeDeviceAction(
355  userCode: string,
356): Promise<AuthorizeDeviceActionResult> {
357  if (!userCode) {
358    return { success: false, error: "User code is required" };
359  }
360
361  const success = await authorizeDevice({ user_code: userCode });
362  if (!success) {
363    return { success: false, error: "Failed to authorize device" };
364  }
365
366  return { success: true };
367}
368