summaryrefslogtreecommitdiffhomepage
path: root/cloud/app/src/context/auth.ts
diff options
context:
space:
mode:
authorDax Raad <[email protected]>2025-08-29 11:58:17 -0400
committerDax Raad <[email protected]>2025-08-29 11:58:17 -0400
commit4496cd4b64e51805b790728e67a018791e731cd6 (patch)
treee85cedfa322bd98e1f1443a725cb0dcd820891ac /cloud/app/src/context/auth.ts
parent7f5e5fccc8d9248871d59e5adbfe52a7d307d09a (diff)
downloadopencode-4496cd4b64e51805b790728e67a018791e731cd6.tar.gz
opencode-4496cd4b64e51805b790728e67a018791e731cd6.zip
ignore: cloud solid fixes
Diffstat (limited to 'cloud/app/src/context/auth.ts')
-rw-r--r--cloud/app/src/context/auth.ts78
1 files changed, 78 insertions, 0 deletions
diff --git a/cloud/app/src/context/auth.ts b/cloud/app/src/context/auth.ts
new file mode 100644
index 000000000..9a5606a44
--- /dev/null
+++ b/cloud/app/src/context/auth.ts
@@ -0,0 +1,78 @@
+import { getRequestEvent } from "solid-js/web"
+import { and, Database, eq, inArray } from "@opencode/cloud-core/drizzle/index.js"
+import { WorkspaceTable } from "@opencode/cloud-core/schema/workspace.sql.js"
+import { UserTable } from "@opencode/cloud-core/schema/user.sql.js"
+import { query, redirect } from "@solidjs/router"
+import { AccountTable } from "@opencode/cloud-core/schema/account.sql.js"
+import { Actor } from "@opencode/cloud-core/actor.js"
+
+import { createClient } from "@openauthjs/openauth/client"
+import { useAuthSession } from "./auth.session"
+
+export const AuthClient = createClient({
+ clientID: "app",
+ issuer: import.meta.env.VITE_AUTH_URL,
+})
+
+export const getActor = query(async (): Promise<Actor.Info> => {
+ "use server"
+ const evt = getRequestEvent()
+ const url = new URL(evt!.request.headers.get("referer") ?? evt!.request.url)
+ const auth = await useAuthSession()
+ const splits = url.pathname.split("/").filter(Boolean)
+ if (splits[0] !== "workspace") {
+ if (auth.data.current) {
+ const current = auth.data.account[auth.data.current]
+ return {
+ type: "account",
+ properties: {
+ email: current.email,
+ accountID: current.id,
+ },
+ }
+ }
+ if (Object.keys(auth.data.account ?? {}).length > 0) {
+ const current = Object.values(auth.data.account)[0]
+ await auth.update((val) => ({
+ ...val,
+ current: current.id,
+ }))
+ return {
+ type: "account",
+ properties: {
+ email: current.email,
+ accountID: current.id,
+ },
+ }
+ }
+ return {
+ type: "public",
+ properties: {},
+ }
+ }
+ const workspaceHint = splits[1]
+ const accounts = Object.keys(auth.data.account)
+ const result = await Database.transaction(async (tx) => {
+ return await tx
+ .select({
+ user: UserTable,
+ })
+ .from(AccountTable)
+ .innerJoin(UserTable, and(eq(UserTable.email, AccountTable.email)))
+ .innerJoin(WorkspaceTable, eq(WorkspaceTable.id, UserTable.workspaceID))
+ .where(and(inArray(AccountTable.id, accounts), eq(WorkspaceTable.id, workspaceHint)))
+ .limit(1)
+ .execute()
+ .then((x) => x[0])
+ })
+ if (result) {
+ return {
+ type: "user",
+ properties: {
+ userID: result.user.id,
+ workspaceID: result.user.workspaceID,
+ },
+ }
+ }
+ throw redirect("/auth/authorize")
+}, "actor")