feat: implement PDS & User ID lookup

Author: Preloading

bluesky/auth.go

@@ -0,0 +1,174 @@
+package blueskyapi
+
+import (
+	"bytes"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"io"
+	"net"
+	"net/http"
+	"regexp"
+	"strings"
+)
+
+type DIDDoc struct {
+	// yes i know this isn't all of the fields, but it's good enuff
+	Service []struct {
+		ID              string `json:"id"`
+		Type            string `json:"type"`
+		ServiceEndpoint string `json:"serviceEndpoint"`
+	} `json:"service"`
+}
+
+func Authenticate(username, password string) (*AuthResponse, *string, error) {
+	_, userPDS, err := GetUserAuthData(username)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	url := *userPDS + "/xrpc/com.atproto.server.createSession"
+
+	authReq := AuthRequest{
+		Identifier: username,
+		Password:   password,
+	}
+
+	reqBody, err := json.Marshal(authReq)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	resp, err := SendRequest(nil, http.MethodPost, url, bytes.NewBuffer(reqBody))
+	if err != nil {
+		return nil, nil, err
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		bodyBytes, _ := io.ReadAll(resp.Body)
+		bodyString := string(bodyBytes)
+		fmt.Println("Response Status:", resp.StatusCode)
+		fmt.Println("Response Body:", bodyString)
+		return nil, nil, errors.New("authentication failed")
+	}
+
+	var authResp AuthResponse
+	if err := json.NewDecoder(resp.Body).Decode(&authResp); err != nil {
+		return nil, nil, err
+	}
+
+	return &authResp, userPDS, nil
+}
+
+// TODO: This looks like it's a bsky.social specific endpoint, can we get the user's server?
+func RefreshToken(pds string, refreshToken string) (*AuthResponse, error) {
+	url := "https://bsky.social/xrpc/com.atproto.server.refreshSession"
+
+	resp, err := SendRequest(&refreshToken, http.MethodPost, url, nil)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		bodyBytes, _ := io.ReadAll(resp.Body)
+		bodyString := string(bodyBytes)
+		fmt.Println("Response Status:", resp.StatusCode)
+		fmt.Println("Response Body:", bodyString)
+		return nil, errors.New("reauth failed")
+	}
+
+	var authResp AuthResponse
+	if err := json.NewDecoder(resp.Body).Decode(&authResp); err != nil {
+		return nil, err
+	}
+
+	return &authResp, nil
+}
+
+// This function is to get: the user DID and the user's PDS this should **ONLY** be used during authentication.
+//
+// @results: userDID, userPDS, error
+func GetUserAuthData(handle string) (*string, *string, error) {
+	// thank you https://discord.com/channels/1097580399187738645/1097580399187738648/1318477650485973004 (ducky.ws) on https://discord.gg/zYvmrHAr8M for explaining this to me
+
+	// Validate our handle
+	if !regexp.MustCompile(`^([a-zA-Z0-9-]+\.)+[a-zA-Z]{2,}$`).MatchString(handle) {
+		return nil, nil, errors.New("invalid handle")
+	}
+	userDID := ""
+
+	// Get the handle's DID
+
+	// Get DID thru .well-known, since this is what the most common handle PDS, bsky.social uses.
+	wellKnownDIDResp, err := http.Get(fmt.Sprintf("https://%s/.well-known/atproto-did", handle))
+	if err == nil {
+		bodyBytes, _ := io.ReadAll(wellKnownDIDResp.Body)
+		bodyString := string(bodyBytes)
+
+		if regexp.MustCompile(`^did:[a-z]+:[a-zA-Z0-9._:%-]*[a-zA-Z0-9._-]$`).MatchString(bodyString) {
+			userDID = bodyString
+		}
+		wellKnownDIDResp.Body.Close()
+	}
+	if userDID == "" {
+		// Get DID through _atproto DNS records
+		txts, err := net.LookupTXT(fmt.Sprintf("_atproto.%s", handle))
+		if err == nil {
+			for _, txt := range txts {
+				if regexp.MustCompile(`^did=did:[a-z]+:[a-zA-Z0-9._:%-]*[a-zA-Z0-9._-]$`).MatchString(txt) {
+					userDID = txt[4:] // Extract the DID without the 'did=' prefix
+					break
+				}
+			}
+		}
+	}
+
+	if userDID == "" {
+		return nil, nil, errors.New("user does not exist")
+	}
+
+	// Get the user's PDS
+
+	// we must do different things depending on the DID type.
+	didDocReqUrl := ""
+	switch strings.Split(userDID, ":")[1] {
+	case "plc":
+		// https://plc.directory/did:plc:<id>
+		didDocReqUrl = fmt.Sprintf("https://plc.directory/%s", userDID)
+	case "web":
+		didDocReqUrl = fmt.Sprintf("https://%s/.well-known/did.json", strings.Split(userDID, ":")[2])
+	}
+
+	// get the DID doc
+	didDocReq, err := http.Get(didDocReqUrl)
+	if err != nil {
+		return nil, nil, errors.New("could not find PDS")
+	}
+	bodyBytes, err := io.ReadAll(didDocReq.Body)
+	if err != nil {
+		return nil, nil, err
+	}
+	var userDIDDoc DIDDoc
+	err = json.Unmarshal(bodyBytes, &userDIDDoc)
+	didDocReq.Body.Close()
+	if err != nil {
+		return nil, nil, errors.New("could not find PDS")
+	}
+
+	// get the user's PDS
+	userPDS := ""
+	for _, service := range userDIDDoc.Service {
+		if service.ID == "#atproto_pds" {
+			userPDS = service.ServiceEndpoint
+			break
+		}
+	}
+	if userPDS == "" {
+		return nil, nil, errors.New("could not find PDS")
+	}
+
+	// and finally, return our data
+	return &userDID, &userPDS, nil
+}

bluesky/blueskyapi.go

@@ -280,67 +280,6 @@ func SendRequest(token *string, method string, url string, body io.Reader) (*htt
 	return resp, nil
 }
 
-func Authenticate(username, password string) (*AuthResponse, error) {
-	url := "https://bsky.social/xrpc/com.atproto.server.createSession"
-
-	authReq := AuthRequest{
-		Identifier: username,
-		Password:   password,
-	}
-
-	reqBody, err := json.Marshal(authReq)
-	if err != nil {
-		return nil, err
-	}
-
-	resp, err := SendRequest(nil, http.MethodPost, url, bytes.NewBuffer(reqBody))
-	if err != nil {
-		return nil, err
-	}
-	defer resp.Body.Close()
-
-	if resp.StatusCode != http.StatusOK {
-		bodyBytes, _ := io.ReadAll(resp.Body)
-		bodyString := string(bodyBytes)
-		fmt.Println("Response Status:", resp.StatusCode)
-		fmt.Println("Response Body:", bodyString)
-		return nil, errors.New("authentication failed")
-	}
-
-	var authResp AuthResponse
-	if err := json.NewDecoder(resp.Body).Decode(&authResp); err != nil {
-		return nil, err
-	}
-
-	return &authResp, nil
-}
-
-// TODO: This looks like it's a bsky.social specific endpoint, can we get the user's server?
-func RefreshToken(refreshToken string) (*AuthResponse, error) {
-	url := "https://bsky.social/xrpc/com.atproto.server.refreshSession"
-
-	resp, err := SendRequest(&refreshToken, http.MethodPost, url, nil)
-	if err != nil {
-		return nil, err
-	}
-	defer resp.Body.Close()
-
-	if resp.StatusCode != http.StatusOK {
-		bodyBytes, _ := io.ReadAll(resp.Body)
-		bodyString := string(bodyBytes)
-		fmt.Println("Response Status:", resp.StatusCode)
-		fmt.Println("Response Body:", bodyString)
-		return nil, errors.New("reauth failed")
-	}
-
-	var authResp AuthResponse
-	if err := json.NewDecoder(resp.Body).Decode(&authResp); err != nil {
-		return nil, err
-	}
-
-	return &authResp, nil
-}
-
 func GetUserInfo(token string, screen_name string) (*bridge.TwitterUser, error) {
 	if user, found := userCache.Get(screen_name); found {
 		return &user, nil

db_controller/db_controller.go

@@ -2,7 +2,6 @@ package db_controller
 
 import (
 	"fmt"
-	"math/big"
 	"os"
 	"path/filepath"
 
@@ -44,6 +43,7 @@ import (
 // Token represents the schema for the tokens table
 type Token struct {
 	UserDid               string  `gorm:"type:string;primaryKey;not null"`
+	UserPDS               string  `gorm:"type:string;not null"`
 	TokenUUID             string  `gorm:"type:string;primaryKey;not null"`
 	EncryptedAccessToken  string  `gorm:"type:string;not null"`
 	EncryptedRefreshToken string  `gorm:"type:string;not null"`
@@ -94,26 +94,16 @@ func InitDB() {
 // Returns:
 // - The UUID of the stored token.
 // - An error if the operation fails.
-func StoreToken(did string, accessToken string, refreshToken string, encryptionKey string, accessExpiry float64, refreshExpiry float64) (*string, error) {
-	// Check if token exists for this DID
-	var existingToken Token
-	result := db.Where("user_did = ?", did).First(&existingToken)
-
-	var tokenUUID string
-	if result.Error == nil {
-		// Token exists, use existing UUID
-		tokenUUID = existingToken.TokenUUID
-	} else {
-		// Generate new UUID for new token
-		uuid, err := uuid.NewRandom()
-		if err != nil {
-			return nil, err
-		}
-		tokenUUID = uuid.String()
+func StoreToken(did string, pds string, accessToken string, refreshToken string, encryptionKey string, accessExpiry float64, refreshExpiry float64) (*string, error) {
+	// Check if token exists for this DID.
+	// Generate new UUID for new token
+	uuid, err := uuid.NewRandom()
+	if err != nil {
+		return nil, err
 	}
 
 	// Update or create token
-	finalUUID, err := UpdateToken(tokenUUID, did, accessToken, refreshToken, encryptionKey, accessExpiry, refreshExpiry)
+	finalUUID, err := UpdateToken(uuid.String(), did, accessToken, refreshToken, encryptionKey, accessExpiry, refreshExpiry)
 	if err != nil {
 		return nil, err
 	}
@@ -156,83 +146,24 @@ func UpdateToken(uuid string, did string, accessToken string, refreshToken strin
 	return &token.TokenUUID, nil
 }
 
-func GetToken(did string, tokenUUID string, encryptionKey string) (*string, *string, *float64, *float64, error) {
+// GetToken retrieves account data from the database
+// @results: accessToken, refreshToken, accessExpiry, refreshExpiry, pds, error
+
+func GetToken(did string, tokenUUID string, encryptionKey string) (*string, *string, *float64, *float64, *string, error) {
 	var token Token
 	if err := db.Where("user_did = ? AND token_uuid = ?", did, tokenUUID).First(&token).Error; err != nil {
-		return nil, nil, nil, nil, err
+		return nil, nil, nil, nil, nil, err
 	}
 
 	accessToken, err := bridge.Decrypt(token.EncryptedAccessToken, encryptionKey)
 	if err != nil {
-		return nil, nil, nil, nil, err
+		return nil, nil, nil, nil, nil, err
 	}
 
 	refreshToken, err := bridge.Decrypt(token.EncryptedRefreshToken, encryptionKey)
 	if err != nil {
-		return nil, nil, nil, nil, err
-	}
-
-	return &accessToken, &refreshToken, &token.AccessExpiry, &token.RefreshExpiry, nil
-}
-
-// SetTimelineContext stores or updates the message context in the database.
-// Parameters:
-// - did: The decentralized identifier of the user.
-// - tokenUUID: The UUID of the token.
-// - lastMessageId: The ID of the last message.
-// - timelineContext: The context of the timeline.
-// - encryptionKey: The key used to encrypt the context.
-func SetTimelineContext(did string, tokenUUID string, lastMessageId big.Int, timelineContext string, encryptionKey string) error {
-	fmt.Println("Last Message ID: " + lastMessageId.String())
-	fmt.Println("Decoded ID: " + bridge.TwitterIDToBlueSky(lastMessageId))
-	encryptedLastMessageId, err := bridge.Encrypt(lastMessageId.String(), encryptionKey)
-	if err != nil {
-		return err
-	}
-
-	encryptedTimelineContext, err := bridge.Encrypt(timelineContext, encryptionKey)
-	if err != nil {
-		return err
-	}
-
-	messageContext := MessageContext{
-		UserDid:         did,
-		TokenUUID:       tokenUUID,
-		LastMessageId:   encryptedLastMessageId,
-		TimelineContext: encryptedTimelineContext,
-	}
-
-	if err := db.Where("user_did = ? AND token_uuid = ?", did, tokenUUID).Assign(&messageContext).FirstOrCreate(&messageContext).Error; err != nil {
-		return err
-	}
-
-	return nil
-}
-
-// GetMessageContext retrieves the message context from the database.
-// Parameters:
-// - did: The decentralized identifier of the user.
-// - tokenUUID: The UUID of the token.
-// - message_id: The ID of the last message.
-// - encryptionKey: The key used to decrypt the context.
-// Returns:
-// - The timeline context.
-// - An error if the operation fails.
-func GetTimelineContext(did string, tokenUUID string, message_id big.Int, encryptionKey string) (*string, error) {
-	encryptedLastMessageId, err := bridge.Encrypt(message_id.String(), encryptionKey)
-	if err != nil {
-		return nil, err
-	}
-
-	var messageContext MessageContext
-	if err := db.Where("user_did = ? AND token_uuid = ? AND message_id = ?", did, tokenUUID, encryptedLastMessageId).First(&messageContext).Error; err != nil {
-		return nil, err
-	}
-
-	timelineContext, err := bridge.Decrypt(messageContext.TimelineContext, encryptionKey)
-	if err != nil {
-		return nil, err
+		return nil, nil, nil, nil, nil, err
 	}
 
-	return &timelineContext, nil
+	return &accessToken, &refreshToken, &token.AccessExpiry, &token.RefreshExpiry, &token.UserPDS, nil
 }