collinenlucy.nl/controller.go

package main

import (
	"database/sql"
	"encoding/base64"
	"encoding/json"
	"fmt"
	"log"
	"net/http"
	"os"
	"strconv"
	"strings"
	"time"
)

var token string

type Handler struct {
	db     *sql.DB
	ntfy   *Ntfy
	visits *VisitHandler
}

func getStaticFile(relPath string, contentType string, w http.ResponseWriter) {
	file, err := os.ReadFile(relPath)
	if err != nil {
		w.WriteHeader(http.StatusInternalServerError)
		fmt.Fprintf(w, "%s", err.Error())
		return
	}

	w.Header().Add("Content-Type", contentType)
	w.WriteHeader(http.StatusOK)
	w.Write(file)
}

func isAuthorized(r *http.Request) bool {
	auth := r.Header.Get("Authorization")

	if auth == "" {
		return false
	}

	return auth == fmt.Sprintf("Basic %s", token)
}

func (h *Handler) getRsvps(w http.ResponseWriter, r *http.Request) {
	if !isAuthorized(r) {
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	rsvps, err := GetRsvps(h.db)
	if err != nil {
		w.WriteHeader(http.StatusInternalServerError)
		fmt.Fprintf(w, "%s", err.Error())
		return
	}

	marshalledRsvps, err := json.Marshal(rsvps)
	if err != nil {
		w.WriteHeader(http.StatusInternalServerError)
		fmt.Fprintf(w, "%s", err.Error())
		return
	}

	w.Header().Add("Content-Type", "application/json")
	w.WriteHeader(http.StatusOK)
	fmt.Fprintf(w, "%s", marshalledRsvps)
}

func (h *Handler) createRsvp(w http.ResponseWriter, r *http.Request) {
	err := r.ParseForm()

	if err != nil {
		fmt.Println(err)
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	attending := r.Form.Get("attending") == "true"
	partySize, err := strconv.ParseInt(r.Form.Get("party-size"), 10, 64)

	if err != nil {
		fmt.Println(err)
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	partyMembers := make([]Member, partySize)
	for i := range partySize {
		name := r.Form.Get(fmt.Sprintf("name-%d", i))
		child := r.Form.Has(fmt.Sprintf("child-%d", i)) && r.Form.Get(fmt.Sprintf("child-%d", i)) == "true"
		dietaryPreferences := r.Form.Get(fmt.Sprintf("diet-%d", i))
		member := Member{
			Name:               name,
			Child:              child,
			DietaryPreferences: dietaryPreferences,
		}
		partyMembers[i] = member
	}

	rsvp := Rsvp{
		Attending:    attending,
		PartySize:    partySize,
		PartyMembers: partyMembers,
	}

	_, err = rsvp.CreateRsvp(h.db)

	if err != nil {
		fmt.Println(err)
		w.WriteHeader(http.StatusInternalServerError)
		return
	}

	if h.ntfy != nil {
		SendRsvpNotification(h.ntfy, &rsvp)
	}
	w.Header().Add("Location", "/rsvp_confirmed")
	w.WriteHeader(http.StatusSeeOther)
}

func SetupAuth() {
	var username string
	var password string
	for _, entry := range os.Environ() {
		split := strings.Split(entry, "=")
		switch split[0] {
		case "USERNAME":
			username = split[1]
		case "PASSWORD":
			password = split[1]
		}

		if username != "" && password != "" {
			break
		}
	}

	if username == "" || password == "" {
		log.Fatal("no authorization details")
	}

	sb := new(strings.Builder)
	encoder := base64.NewEncoder(base64.StdEncoding, sb)
	encoder.Write(fmt.Appendf(nil, "%s:%s", username, password))
	encoder.Close()

	token = sb.String()

	fmt.Println("auth ready")
}

func (h *Handler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	fmt.Printf("%s - [%s] (%s) %s\n", time.Now().Format(time.RFC3339), r.RemoteAddr, r.Method, r.URL)
	h.visits.HandleVisit(r.RemoteAddr)

	switch true {
	case r.Method == "GET" && r.URL.Path == "/favicon.ico":
		getStaticFile("./client/favicon.ico", "image/png", w)

	case r.Method == "GET" && r.URL.Path == "/":
		getStaticFile("./client/index.html", "text/html", w)

	case r.Method == "GET" && r.URL.Path == "/rsvp":
		getStaticFile("./client/rsvp.html", "text/html", w)

	case r.Method == "GET" && r.URL.Path == "/rsvp_confirmed":
		getStaticFile("./client/rsvp_confirmed.html", "text/html", w)

	case r.Method == "GET" && r.URL.Path == "/rsvps_list":
		getStaticFile("./client/rsvps_list.html", "text/html", w)

	case r.Method == "GET" && r.URL.Path == "/login":
		getStaticFile("./client/login.html", "text/html", w)

	case r.Method == "GET" && r.URL.Path == "/index.js":
		getStaticFile("./client/index.js", "text/javascript", w)

	case r.Method == "GET" && r.URL.Path == "/rsvp.js":
		getStaticFile("./client/rsvp.js", "text/javascript", w)

	case r.Method == "GET" && r.URL.Path == "/rsvp_confirmed.js":
		getStaticFile("./client/rsvp_confirmed.js", "text/javascript", w)

	case r.Method == "GET" && r.URL.Path == "/rsvps_list.js":
		getStaticFile("./client/rsvps_list.js", "text/javascript", w)

	case r.Method == "GET" && r.URL.Path == "/login.js":
		getStaticFile("./client/login.js", "text/javascript", w)

	case r.Method == "GET" && r.URL.Path == "/style.css":
		getStaticFile("./client/style.css", "text/css", w)

	case r.Method == "GET" && r.URL.Path == "/api/rsvps":
		h.getRsvps(w, r)

	case r.Method == "POST" && r.URL.Path == "/api/rsvps":
		h.createRsvp(w, r)

	default:
		w.WriteHeader(http.StatusNotFound)
	}
}
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`package main`

			`import (`
			`"database/sql"`
Adding auth function to controller 2025-06-30 12:37:33 +02:00			`"encoding/base64"`
Fixing response when getting rsvps to marshal JSON 2025-08-10 15:40:20 +02:00			`"encoding/json"`
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`"fmt"`
Adding auth function to controller 2025-06-30 12:37:33 +02:00			`"log"`
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`"net/http"`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00			`"os"`
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00			`"strconv"`
Adding auth function to controller 2025-06-30 12:37:33 +02:00			`"strings"`
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`"time"`
			`)`

Adding auth function to controller 2025-06-30 12:37:33 +02:00			`var token string`

Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`type Handler struct {`
Adding simple visits handler to send a notification on site load with some simple rate limiting and caching 2025-09-02 16:48:44 +02:00			`db *sql.DB`
			`ntfy *Ntfy`
			`visits *VisitHandler`
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`}`

Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00			`func getStaticFile(relPath string, contentType string, w http.ResponseWriter) {`
			`file, err := os.ReadFile(relPath)`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`fmt.Fprintf(w, "%s", err.Error())`
			`return`
			`}`

			`w.Header().Add("Content-Type", contentType)`
			`w.WriteHeader(http.StatusOK)`
			`w.Write(file)`
			`}`

Making smaller functions to make switch simpler 2025-06-30 15:38:18 +02:00			`func isAuthorized(r *http.Request) bool {`
			`auth := r.Header.Get("Authorization")`

			`if auth == "" {`
			`return false`
			`}`

			`return auth == fmt.Sprintf("Basic %s", token)`
			`}`

			`func (h Handler) getRsvps(w http.ResponseWriter, r http.Request) {`
			`if !isAuthorized(r) {`
			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

			`rsvps, err := GetRsvps(h.db)`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`fmt.Fprintf(w, "%s", err.Error())`
			`return`
			`}`

Fixing response when getting rsvps to marshal JSON 2025-08-10 15:40:20 +02:00			`marshalledRsvps, err := json.Marshal(rsvps)`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`fmt.Fprintf(w, "%s", err.Error())`
			`return`
			`}`

Adding appropriate content-type header to get rsvps 2025-08-27 14:00:19 +02:00			`w.Header().Add("Content-Type", "application/json")`
Making smaller functions to make switch simpler 2025-06-30 15:38:18 +02:00			`w.WriteHeader(http.StatusOK)`
Fixing response when getting rsvps to marshal JSON 2025-08-10 15:40:20 +02:00			`fmt.Fprintf(w, "%s", marshalledRsvps)`
Making smaller functions to make switch simpler 2025-06-30 15:38:18 +02:00			`}`

			`func (h Handler) createRsvp(w http.ResponseWriter, r http.Request) {`
			`err := r.ParseForm()`

			`if err != nil {`
			`fmt.Println(err)`
			`w.WriteHeader(http.StatusBadRequest)`
			`return`
			`}`

			`attending := r.Form.Get("attending") == "true"`
			`partySize, err := strconv.ParseInt(r.Form.Get("party-size"), 10, 64)`

			`if err != nil {`
			`fmt.Println(err)`
			`w.WriteHeader(http.StatusBadRequest)`
			`return`
			`}`

			`partyMembers := make([]Member, partySize)`
			`for i := range partySize {`
			`name := r.Form.Get(fmt.Sprintf("name-%d", i))`
			`child := r.Form.Has(fmt.Sprintf("child-%d", i)) && r.Form.Get(fmt.Sprintf("child-%d", i)) == "true"`
			`dietaryPreferences := r.Form.Get(fmt.Sprintf("diet-%d", i))`
			`member := Member{`
			`Name: name,`
			`Child: child,`
			`DietaryPreferences: dietaryPreferences,`
			`}`
			`partyMembers[i] = member`
			`}`

			`rsvp := Rsvp{`
			`Attending: attending,`
			`PartySize: partySize,`
			`PartyMembers: partyMembers,`
			`}`

			`_, err = rsvp.CreateRsvp(h.db)`

			`if err != nil {`
			`fmt.Println(err)`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return`
			`}`

			`if h.ntfy != nil {`
			`SendRsvpNotification(h.ntfy, &rsvp)`
			`}`
			`w.Header().Add("Location", "/rsvp_confirmed")`
			`w.WriteHeader(http.StatusSeeOther)`
			`}`

Adding auth function to controller 2025-06-30 12:37:33 +02:00			`func SetupAuth() {`
			`var username string`
			`var password string`
			`for _, entry := range os.Environ() {`
			`split := strings.Split(entry, "=")`
			`switch split[0] {`
			`case "USERNAME":`
			`username = split[1]`
			`case "PASSWORD":`
			`password = split[1]`
			`}`

			`if username != "" && password != "" {`
			`break`
			`}`
			`}`

			`if username == "" \|\| password == "" {`
			`log.Fatal("no authorization details")`
			`}`

			`sb := new(strings.Builder)`
			`encoder := base64.NewEncoder(base64.StdEncoding, sb)`
			`encoder.Write(fmt.Appendf(nil, "%s:%s", username, password))`
			`encoder.Close()`

			`token = sb.String()`
Setting up .env reader 2025-06-30 12:37:33 +02:00
			`fmt.Println("auth ready")`
Adding auth function to controller 2025-06-30 12:37:33 +02:00			`}`

Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`func (h Handler) ServeHTTP(w http.ResponseWriter, r http.Request) {`
			`fmt.Printf("%s - [%s] (%s) %s\n", time.Now().Format(time.RFC3339), r.RemoteAddr, r.Method, r.URL)`
Adding simple visits handler to send a notification on site load with some simple rate limiting and caching 2025-09-02 16:48:44 +02:00			`h.visits.HandleVisit(r.RemoteAddr)`
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00
			`switch true {`
Adding favicon 2025-08-27 18:13:06 +02:00			`case r.Method == "GET" && r.URL.Path == "/favicon.ico":`
			`getStaticFile("./client/favicon.ico", "image/png", w)`

Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/index.html", "text/html", w)`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00
			`case r.Method == "GET" && r.URL.Path == "/rsvp":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/rsvp.html", "text/html", w)`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/rsvp_confirmed":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/rsvp_confirmed.html", "text/html", w)`
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00
adding "admin" section to see all rsvps 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/rsvps_list":`
			`getStaticFile("./client/rsvps_list.html", "text/html", w)`

Adding login form and handler 2025-07-10 09:35:25 +02:00			`case r.Method == "GET" && r.URL.Path == "/login":`
			`getStaticFile("./client/login.html", "text/html", w)`

Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/index.js":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/index.js", "text/javascript", w)`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/rsvp.js":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/rsvp.js", "text/javascript", w)`
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00
Changing how the RSVP button is displayed and how setting the cookie works 2025-08-27 17:46:36 +02:00			`case r.Method == "GET" && r.URL.Path == "/rsvp_confirmed.js":`
			`getStaticFile("./client/rsvp_confirmed.js", "text/javascript", w)`

adding "admin" section to see all rsvps 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/rsvps_list.js":`
			`getStaticFile("./client/rsvps_list.js", "text/javascript", w)`

Adding login form and handler 2025-07-10 09:35:25 +02:00			`case r.Method == "GET" && r.URL.Path == "/login.js":`
			`getStaticFile("./client/login.js", "text/javascript", w)`

Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00			`case r.Method == "GET" && r.URL.Path == "/style.css":`
changing directory structure so server is root and client is a sub-folder to make deployment easier 2025-06-30 12:37:33 +02:00			`getStaticFile("./client/style.css", "text/css", w)`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00
			`case r.Method == "GET" && r.URL.Path == "/api/rsvps":`
Making smaller functions to make switch simpler 2025-06-30 15:38:18 +02:00			`h.getRsvps(w, r)`
Changing server and client so that the server hosts the client files 2025-06-30 12:37:33 +02:00
			`case r.Method == "POST" && r.URL.Path == "/api/rsvps":`
Making smaller functions to make switch simpler 2025-06-30 15:38:18 +02:00			`h.createRsvp(w, r)`
Finishing up rsvp creation and confirmation from clients 2025-06-30 12:37:33 +02:00
Adding basic backend to handle RSVPs 2025-06-30 12:37:33 +02:00			`default:`
			`w.WriteHeader(http.StatusNotFound)`
			`}`
			`}`