nidus-sync/sync/sudo.go

package sync

import (
	"context"
	"fmt"
	"net/http"

	"github.com/Gleipnir-Technology/nidus-sync/comms/email"
	"github.com/Gleipnir-Technology/nidus-sync/comms/text"
	"github.com/Gleipnir-Technology/nidus-sync/config"
	"github.com/Gleipnir-Technology/nidus-sync/html"
	nhttp "github.com/Gleipnir-Technology/nidus-sync/http"
	"github.com/Gleipnir-Technology/nidus-sync/platform"
	"github.com/rs/zerolog/log"
)

type contentSudo struct {
	ForwardEmailRMOAddress   string
	ForwardEmailNidusAddress string
}

func getSudo(ctx context.Context, r *http.Request, user platform.User) (*html.Response[contentSudo], *nhttp.ErrorWithStatus) {
	if !user.HasRoot() {
		return nil, &nhttp.ErrorWithStatus{
			Message: "You have to be a root user to access this",
			Status:  http.StatusForbidden,
		}
	}
	content := contentSudo{
		ForwardEmailRMOAddress:   config.ForwardEmailRMOAddress,
		ForwardEmailNidusAddress: config.ForwardEmailNidusAddress,
	}
	return html.NewResponse("sync/sudo.html", content), nil
}

type FormEmail struct {
	Body    string `schema:"emailBody"`
	From    string `schema:"emailFrom"`
	Subject string `schema:"emailSubject"`
	To      string `schema:"emailTo"`
}

func postSudoEmail(ctx context.Context, r *http.Request, u platform.User, e FormEmail) (string, *nhttp.ErrorWithStatus) {
	if !u.HasRoot() {
		return "", &nhttp.ErrorWithStatus{
			Message: "You must have sudo powers to do this",
			Status:  http.StatusForbidden,
		}
	}
	request := email.Request{
		From:    e.From,
		HTML:    fmt.Sprintf("<html><p>%s</p></html>", e.Body),
		Sender:  e.From,
		Subject: e.Subject,
		To:      e.To,
		Text:    e.Body,
	}
	resp, err := email.Send(ctx, request)
	if err != nil {
		log.Warn().Err(err).Msg("Failed to send email")
	} else {
		log.Info().Str("id", resp.ID).Str("to", e.To).Msg("Sent Email")
	}
	return "/sudo", nil
}

type FormSMS struct {
	Message string `schema:"smsMessage"`
	Phone   string `schema:"smsPhone"`
}

func postSudoSMS(ctx context.Context, r *http.Request, u platform.User, sms FormSMS) (string, *nhttp.ErrorWithStatus) {
	if !u.HasRoot() {
		return "", &nhttp.ErrorWithStatus{
			Message: "You must have sudo powers to do this",
			Status:  http.StatusForbidden,
		}
	}
	id, err := text.SendText(ctx, config.VoipMSNumber, sms.Phone, sms.Message)
	if err != nil {
		log.Warn().Err(err).Msg("Failed to send SMS")
	} else {
		log.Info().Str("id", id).Msg("Sent SMS")
	}
	return "/sudo", nil
}

type FormSSE struct {
	OrganizationID int32  `schema:"organizationID"`
	Resource       string `schema:"resource"`
	Type           string `schema:"type"`
	URIPath        string `schema:"uriPath"`
}

func postSudoSSE(ctx context.Context, r *http.Request, u platform.User, sse FormSSE) (string, *nhttp.ErrorWithStatus) {
	if !u.HasRoot() {
		return "", &nhttp.ErrorWithStatus{
			Message: "You must have sudo powers to do this",
			Status:  http.StatusForbidden,
		}
	}
	platform.SudoEvent(sse.OrganizationID, sse.Resource, sse.Type, sse.URIPath)
	return "/sudo", nil
}
Add mock of admin area 2026-02-18 07:07:15 +00:00			`package sync`

			`import (`
			`"context"`
Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`"fmt"`
Add mock of admin area 2026-02-18 07:07:15 +00:00			`"net/http"`

Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`"github.com/Gleipnir-Technology/nidus-sync/comms/email"`
Actually send SMS on the test page 2026-02-18 08:28:19 +00:00			`"github.com/Gleipnir-Technology/nidus-sync/comms/text"`
			`"github.com/Gleipnir-Technology/nidus-sync/config"`
Move handler objects to common location to share with RMO 2026-03-03 17:08:58 +00:00			`"github.com/Gleipnir-Technology/nidus-sync/html"`
			`nhttp "github.com/Gleipnir-Technology/nidus-sync/http"`
Massive rework of platform layer user/organization The goal of this rework is to make it so I can pass around platform.User instead of a pair of models.Organization and models.User. This is useful for reason I kind of forget now, but it started with working on notifications and ballooned massively from there into refactoring a number of things that were bugging me. This also includes a tiny amount of work on server-side events (SSE). * background stuff lives inside the platform now, which I need for having it push updates through SSE * userfile now lives in the platform, under file, so other platform functions can safely use it * oauth is broken into pieces and inside platform because other stuff was calling it already, but badly. * notifications go into the platform as well 2026-03-12 23:49:16 +00:00			`"github.com/Gleipnir-Technology/nidus-sync/platform"`
Add simple example handler for admin functions 2026-02-18 08:02:32 +00:00			`"github.com/rs/zerolog/log"`
Add mock of admin area 2026-02-18 07:07:15 +00:00			`)`

Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`type contentSudo struct {`
			`ForwardEmailRMOAddress string`
			`ForwardEmailNidusAddress string`
			`}`
Add mock of admin area 2026-02-18 07:07:15 +00:00
Massive rework of platform layer user/organization The goal of this rework is to make it so I can pass around platform.User instead of a pair of models.Organization and models.User. This is useful for reason I kind of forget now, but it started with working on notifications and ballooned massively from there into refactoring a number of things that were bugging me. This also includes a tiny amount of work on server-side events (SSE). * background stuff lives inside the platform now, which I need for having it push updates through SSE * userfile now lives in the platform, under file, so other platform functions can safely use it * oauth is broken into pieces and inside platform because other stuff was calling it already, but badly. * notifications go into the platform as well 2026-03-12 23:49:16 +00:00			`func getSudo(ctx context.Context, r http.Request, user platform.User) (html.Response[contentSudo], *nhttp.ErrorWithStatus) {`
			`if !user.HasRoot() {`
Move handler objects to common location to share with RMO 2026-03-03 17:08:58 +00:00			`return nil, &nhttp.ErrorWithStatus{`
Add mock of admin area 2026-02-18 07:07:15 +00:00			`Message: "You have to be a root user to access this",`
			`Status: http.StatusForbidden,`
			`}`
			`}`
Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`content := contentSudo{`
			`ForwardEmailRMOAddress: config.ForwardEmailRMOAddress,`
			`ForwardEmailNidusAddress: config.ForwardEmailNidusAddress,`
			`}`
Move handler objects to common location to share with RMO 2026-03-03 17:08:58 +00:00			`return html.NewResponse("sync/sudo.html", content), nil`
Add mock of admin area 2026-02-18 07:07:15 +00:00			`}`
Add simple example handler for admin functions 2026-02-18 08:02:32 +00:00
Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`type FormEmail struct {`
			Body string `schema:"emailBody"`
			From string `schema:"emailFrom"`
			Subject string `schema:"emailSubject"`
			To string `schema:"emailTo"`
			`}`

Massive rework of platform layer user/organization The goal of this rework is to make it so I can pass around platform.User instead of a pair of models.Organization and models.User. This is useful for reason I kind of forget now, but it started with working on notifications and ballooned massively from there into refactoring a number of things that were bugging me. This also includes a tiny amount of work on server-side events (SSE). * background stuff lives inside the platform now, which I need for having it push updates through SSE * userfile now lives in the platform, under file, so other platform functions can safely use it * oauth is broken into pieces and inside platform because other stuff was calling it already, but badly. * notifications go into the platform as well 2026-03-12 23:49:16 +00:00			`func postSudoEmail(ctx context.Context, r http.Request, u platform.User, e FormEmail) (string, nhttp.ErrorWithStatus) {`
			`if !u.HasRoot() {`
Move handler objects to common location to share with RMO 2026-03-03 17:08:58 +00:00			`return "", &nhttp.ErrorWithStatus{`
Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`Message: "You must have sudo powers to do this",`
			`Status: http.StatusForbidden,`
			`}`
			`}`
			`request := email.Request{`
			`From: e.From,`
			`HTML: fmt.Sprintf("<html><p>%s</p></html>", e.Body),`
			`Sender: e.From,`
			`Subject: e.Subject,`
			`To: e.To,`
			`Text: e.Body,`
			`}`
			`resp, err := email.Send(ctx, request)`
			`if err != nil {`
			`log.Warn().Err(err).Msg("Failed to send email")`
			`} else {`
Fix email sending on the sudo page 2026-02-18 21:38:16 +00:00			`log.Info().Str("id", resp.ID).Str("to", e.To).Msg("Sent Email")`
Wire up sudo email form to send emails Probably. 2026-02-18 08:50:49 +00:00			`}`
			`return "/sudo", nil`
			`}`

Add simple example handler for admin functions 2026-02-18 08:02:32 +00:00			`type FormSMS struct {`
			Message string `schema:"smsMessage"`
			Phone string `schema:"smsPhone"`
			`}`

Massive rework of platform layer user/organization The goal of this rework is to make it so I can pass around platform.User instead of a pair of models.Organization and models.User. This is useful for reason I kind of forget now, but it started with working on notifications and ballooned massively from there into refactoring a number of things that were bugging me. This also includes a tiny amount of work on server-side events (SSE). * background stuff lives inside the platform now, which I need for having it push updates through SSE * userfile now lives in the platform, under file, so other platform functions can safely use it * oauth is broken into pieces and inside platform because other stuff was calling it already, but badly. * notifications go into the platform as well 2026-03-12 23:49:16 +00:00			`func postSudoSMS(ctx context.Context, r http.Request, u platform.User, sms FormSMS) (string, nhttp.ErrorWithStatus) {`
			`if !u.HasRoot() {`
Move handler objects to common location to share with RMO 2026-03-03 17:08:58 +00:00			`return "", &nhttp.ErrorWithStatus{`
Factor out common post parsing code for sms message 2026-02-18 08:09:53 +00:00			`Message: "You must have sudo powers to do this",`
			`Status: http.StatusForbidden,`
			`}`
Add simple example handler for admin functions 2026-02-18 08:02:32 +00:00			`}`
Actually send SMS on the test page 2026-02-18 08:28:19 +00:00			`id, err := text.SendText(ctx, config.VoipMSNumber, sms.Phone, sms.Message)`
			`if err != nil {`
			`log.Warn().Err(err).Msg("Failed to send SMS")`
			`} else {`
			`log.Info().Str("id", id).Msg("Sent SMS")`
			`}`
Factor out common post parsing code for sms message 2026-02-18 08:09:53 +00:00			`return "/sudo", nil`
Add simple example handler for admin functions 2026-02-18 08:02:32 +00:00			`}`
Wire up events for creating new public reports This involved moving a lot of stuff to the platform layer since I don't want event interfaces leaking out. Also this includes a fix to the user authentication which I had previously broken by making a platform-layer user object independent of the database layer. 2026-03-13 17:33:39 +00:00
			`type FormSSE struct {`
			OrganizationID int32 `schema:"organizationID"`
Allow sudo to send structured SSEs 2026-03-13 18:31:43 +00:00			Resource string `schema:"resource"`
			Type string `schema:"type"`
			URIPath string `schema:"uriPath"`
Wire up events for creating new public reports This involved moving a lot of stuff to the platform layer since I don't want event interfaces leaking out. Also this includes a fix to the user authentication which I had previously broken by making a platform-layer user object independent of the database layer. 2026-03-13 17:33:39 +00:00			`}`

			`func postSudoSSE(ctx context.Context, r http.Request, u platform.User, sse FormSSE) (string, nhttp.ErrorWithStatus) {`
			`if !u.HasRoot() {`
			`return "", &nhttp.ErrorWithStatus{`
			`Message: "You must have sudo powers to do this",`
			`Status: http.StatusForbidden,`
			`}`
			`}`
Allow sudo to send structured SSEs 2026-03-13 18:31:43 +00:00			`platform.SudoEvent(sse.OrganizationID, sse.Resource, sse.Type, sse.URIPath)`
Wire up events for creating new public reports This involved moving a lot of stuff to the platform layer since I don't want event interfaces leaking out. Also this includes a fix to the user authentication which I had previously broken by making a platform-layer user object independent of the database layer. 2026-03-13 17:33:39 +00:00			`return "/sudo", nil`
			`}`