ZDDC
89c5ec064d
Listings now filter both '.' and '_' prefixes: - '.' entries: excluded from listings AND 404 on direct HTTP access (existing behavior). For invisible side-state like .devshell. - '_' entries: excluded from listings only — direct URL access still works. For operator scaffolding like install.zip's _template/ directory of bootstrap stubs that should be reachable but should not appear in the project picker. Filter applied at both listing entry points: ServeProjectList (the project picker JSON at GET / Accept: application/json) and the generic listing/FromDirEntries (used by ServeDirectory for sub-directory browse listings). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
67 lines
1.9 KiB
Go
67 lines
1.9 KiB
Go
package handler
|
|
|
|
import (
|
|
"encoding/json"
|
|
"log/slog"
|
|
"net/http"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
|
|
"codeberg.org/VARASYS/ZDDC/zddc/internal/config"
|
|
"codeberg.org/VARASYS/ZDDC/zddc/internal/zddc"
|
|
)
|
|
|
|
// ProjectInfo is a single entry in the project list response.
|
|
type ProjectInfo struct {
|
|
Name string `json:"name"`
|
|
URL string `json:"url"`
|
|
}
|
|
|
|
// ServeProjectList handles GET / with Accept: application/json.
|
|
// It returns all top-level directories under cfg.Root that the requesting
|
|
// user has access to, as a JSON array of ProjectInfo.
|
|
func ServeProjectList(cfg config.Config, w http.ResponseWriter, r *http.Request) {
|
|
email := EmailFromContext(r)
|
|
|
|
entries, err := os.ReadDir(cfg.Root)
|
|
if err != nil {
|
|
slog.Error("reading root directory", "err", err)
|
|
http.Error(w, "Internal Server Error", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
var projects []ProjectInfo
|
|
for _, entry := range entries {
|
|
if !entry.IsDir() {
|
|
continue
|
|
}
|
|
name := entry.Name()
|
|
// Skip hidden directories. Both '.' and '_' are reserved prefixes:
|
|
// '.' for system/internal state (matches the listing-pipeline filter
|
|
// and the dispatch dot-prefix guard); '_' for operator-managed
|
|
// scaffolding like install.zip's _template/ directory that should
|
|
// be reachable by direct URL but not appear in the project picker.
|
|
if strings.HasPrefix(name, ".") || strings.HasPrefix(name, "_") {
|
|
continue
|
|
}
|
|
absPath := filepath.Join(cfg.Root, name)
|
|
chain, err := zddc.EffectivePolicy(cfg.Root, absPath)
|
|
if err != nil {
|
|
slog.Warn("ACL policy error", "path", absPath, "err", err)
|
|
}
|
|
if !zddc.AllowedWithChain(chain, email) {
|
|
continue
|
|
}
|
|
projects = append(projects, ProjectInfo{
|
|
Name: name,
|
|
URL: "/" + name + "/",
|
|
})
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
w.Header().Set("Cache-Control", "no-cache")
|
|
if err := json.NewEncoder(w).Encode(projects); err != nil {
|
|
slog.Error("encoding project list", "err", err)
|
|
}
|
|
}
|