alchemistkay/guestguard
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
dc840bfc14c84500ba50e23ae5b9840e8a7177ab
guestguard/cmd/api/main.go
T
Kwaku Danso e5b187c575 feat(tier2): event branding + UX polish — Block D 
Backend
- Migration 0010 adds event_branding (one row per event; all fields
  nullable so a brand-new event renders with defaults)
- BrandingRepo with COALESCE/NULLIF upsert semantics: nil pointer
  preserves the existing value, "" clears the field to NULL
- internal/uploads package: ImageStore interface + LocalFSStore (dev),
  pure-stdlib decode + re-encode that strips EXIF and rejects anything
  that isn't valid JPEG/PNG. Size cap 2 MB, random 16-byte filenames
- GET /events/{id}/branding (viewer+) returns the row plus the
  AllowedFonts list so the frontend picker stays in sync
- PUT /events/{id}/branding (editor+) validates hex colours, font
  allowlist, and refuses image URLs whose path doesn't start with
  /uploads/ (blocks arbitrary-origin <img> smuggling on guest pages)
- POST /uploads/image (authed) → fresh CDN URL; GET /uploads/{file}
  serves with year-long cache (immutable random names)
- GET /access/{token} now embeds the host's branding so the RSVP page
  can render in their colours/font with their logo + cover
- docker-compose mounts a named volume for uploads
- Custom-domain sub-block deferred to Tier 3 per the plan

Frontend
- BrandingCard.vue: colour pickers, font dropdown, logo + cover upload
  with progressive disclosure, live preview pane that re-renders on
  every keystroke
- RSVP page applies branding via CSS vars at the section root, so
  primary colour theme + font cascade through every child card. Cover
  image renders as a banner above the form; logo lands in the header
- Submit button background switches to var(--brand-primary) when set
- Mounted on the event detail page below the guests block

Plus the small UX fixes from the e2e walkthrough:
- Nav: dropped the top-level "Events" link; the logo doubles as the
  home affordance (→ /dashboard when signed in, → / otherwise). Account
  + Billing + Sign out live under a profile dropdown (avatar with
  initials, opens on click, closes on outside-click / Esc / route nav)
- Renamed "Back to dashboard" → "Back to events" across event detail,
  billing, account, and new-event pages

Tests
- TestBrandingGetReturnsDefaults / TestBrandingPutPersists /
  TestBrandingPutRejectsBadInputs / TestUploadAndServeImage /
  TestUploadRejectsNonImage — all pass
- Domain tests for IsValidHexColor + IsAllowedFont
- Full integration suite green (176s)

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-18 12:04:09 +01:00

266 lines
7.0 KiB
Go
Raw Blame History

package main
import (
"context"
"encoding/json"
"errors"
"log/slog"
"net/http"
"os"
"os/signal"
"syscall"
"time"
"github.com/redis/go-redis/v9"
"github.com/alchemistkay/guestguard/internal/api"
"github.com/alchemistkay/guestguard/internal/auth"
"github.com/alchemistkay/guestguard/internal/billing"
"github.com/alchemistkay/guestguard/internal/config"
"github.com/alchemistkay/guestguard/internal/fraud"
"github.com/alchemistkay/guestguard/internal/natspub"
"github.com/alchemistkay/guestguard/internal/notification"
"github.com/alchemistkay/guestguard/internal/storage"
)
func main() {
if err := run(); err != nil {
slog.Error("fatal", "err", err)
os.Exit(1)
}
}
func run() error {
cfg, err := config.Load()
if err != nil {
return err
}
logger := newLogger(cfg.Env)
slog.SetDefault(logger)
rootCtx, stop := signal.NotifyContext(context.Background(), syscall.SIGINT, syscall.SIGTERM)
defer stop()
logger.Info("connecting to database")
db, err := storage.NewDB(rootCtx, cfg.DatabaseURL)
if err != nil {
return err
}
defer db.Close()
logger.Info("running migrations")
if err := db.Migrate(rootCtx); err != nil {
return err
}
logger.Info("connecting to nats", "url", cfg.NATSURL)
natsClient, err := natspub.Connect(rootCtx, cfg.NATSURL, logger)
if err != nil {
return err
}
defer natsClient.Close()
logger.Info("connecting to redis", "addr", cfg.RedisAddr)
rdb := redis.NewClient(&redis.Options{Addr: cfg.RedisAddr})
if err := rdb.Ping(rootCtx).Err(); err != nil {
logger.Warn("redis ping failed — rate limits + lockout disabled", "err", err)
_ = rdb.Close()
rdb = nil
} else {
defer rdb.Close()
}
logger.Info("dialing fraud engine", "addr", cfg.FraudGRPCAddr)
fraudClient, err := fraud.Dial(rootCtx, cfg.FraudGRPCAddr, cfg.FraudGRPCTimeout, logger)
if err != nil {
return err
}
defer fraudClient.Close()
hub := api.NewHub(logger)
accessLogs := storage.NewAccessLogRepo(db)
fraudSub, err := natspub.NewFraudScoredSubscriber(
rootCtx, natsClient, "core-api-fraud-scored",
func(ctx context.Context, evt natspub.FraudScored) error {
if err := accessLogs.ApplyScore(ctx, storage.ApplyScoreParams{
AccessLogID: evt.AccessLogID,
Score: evt.Score,
Reasons: evt.Reasons,
Flagged: evt.Score >= 60,
}); err != nil {
return err
}
payload, _ := json.Marshal(evt)
hub.Broadcast(api.WSEvent{
Type: "fraud.scored",
EventID: evt.EventID,
Payload: payload,
})
return nil
},
logger,
)
if err != nil {
return err
}
fraudConsumeCtx, err := fraudSub.Start(rootCtx)
if err != nil {
return err
}
defer fraudConsumeCtx.Stop()
rsvpSub, err := natspub.NewRSVPConfirmedSubscriber(
rootCtx, natsClient, "core-api-rsvp-confirmed-ws",
func(ctx context.Context, evt natspub.RSVPConfirmed) error {
payload, _ := json.Marshal(evt)
hub.Broadcast(api.WSEvent{
Type: "rsvp.confirmed",
EventID: evt.EventID,
Payload: payload,
})
return nil
},
logger,
)
if err != nil {
return err
}
rsvpConsumeCtx, err := rsvpSub.Start(rootCtx)
if err != nil {
return err
}
defer rsvpConsumeCtx.Stop()
// Notification senders. If SES creds are configured, route auth +
// guest emails through SES. Otherwise the log stub keeps the dev flow
// (verification link in API logs) intact.
tpls, err := notification.NewTemplates()
if err != nil {
return err
}
suppressions := notification.NewSuppressionRepo(db)
notifRepo := notification.NewRepo(db)
unsubSigner := notification.NewUnsubscribeSigner(cfg.UnsubscribeSecret)
emailSenderCombined, backend, err := notification.PickEmailSender(rootCtx, notification.EmailSenderConfig{
Resend: notification.ResendConfig{
APIKey: cfg.ResendAPIKey,
FromEmail: cfg.ResendFromEmail,
FromName: cfg.ResendFromName,
},
SMTP: notification.SMTPConfig{
Host: cfg.SMTPHost,
Port: cfg.SMTPPort,
Username: cfg.SMTPUsername,
Password: cfg.SMTPPassword,
FromEmail: cfg.SMTPFromEmail,
FromName: cfg.SMTPFromName,
TLS: cfg.SMTPTLS,
},
SES: notification.SESConfig{
Region: cfg.SESRegion,
FromEmail: cfg.SESFromEmail,
FromName: cfg.SESFromName,
ConfigurationSet: cfg.SESConfigurationSet,
PublicBaseURL: cfg.PublicBaseURL,
},
}, tpls, logger)
if err != nil {
return err
}
logger.Info("email backend selected", "backend", backend)
var emailSender auth.EmailSender = emailSenderCombined
stripeClient, err := billing.NewClient(billing.Config{
SecretKey: cfg.StripeSecretKey,
WebhookSecret: cfg.StripeWebhookSecret,
PriceProMonthly: cfg.StripePricePro,
PriceBusiness: cfg.StripePriceBusiness,
})
if err != nil {
return err
}
if stripeClient != nil && stripeClient.Enabled() {
logger.Info("billing enabled via stripe")
} else {
logger.Info("billing disabled — free tier limits apply to all users")
}
apiSrv, err := api.NewServer(api.ServerDeps{
Logger: logger,
DB: db,
Hub: hub,
AccessPublisher: natsClient,
RSVPPublisher: natsClient,
InvitationPublisher: natsClient,
FraudScorer: fraudClient,
TokenTTL: cfg.TokenTTL,
JWTSecret: cfg.JWTSecret,
JWTIssuer: cfg.JWTIssuer,
AccessTokenTTL: cfg.AccessTokenTTL,
RefreshTokenTTL: cfg.RefreshTokenTTL,
EmailVerificationTTL: cfg.EmailVerificationTTL,
PasswordResetTTL: cfg.PasswordResetTTL,
PublicBaseURL: cfg.PublicBaseURL,
RefreshCookieDomain: cfg.RefreshCookieDomain,
RefreshCookieSecure: cfg.RefreshCookieSecure,
Redis: rdb,
EmailSender: emailSender,
NotificationRepo: notifRepo,
SuppressionRepo: suppressions,
UnsubscribeSigner: unsubSigner,
StripeClient: stripeClient,
UploadsDir: cfg.UploadsDir,
UploadsPublicURL: cfg.UploadsPublicURL,
})
if err != nil {
return err
}
srv := &http.Server{
Addr: cfg.HTTPAddr,
Handler: apiSrv.Handler(),
ReadHeaderTimeout: 5 * time.Second,
ReadTimeout: 30 * time.Second,
WriteTimeout: 0, // 0 lets WS connections live; per-request handlers still bound by their own ctx
IdleTimeout: 60 * time.Second,
}
errCh := make(chan error, 1)
go func() {
logger.Info("http server starting", "addr", cfg.HTTPAddr, "env", cfg.Env)
if err := srv.ListenAndServe(); err != nil && !errors.Is(err, http.ErrServerClosed) {
errCh <- err
}
close(errCh)
}()
select {
case <-rootCtx.Done():
logger.Info("shutdown signal received")
case err := <-errCh:
if err != nil {
return err
}
}
shutdownCtx, cancel := context.WithTimeout(context.Background(), cfg.ShutdownTimeout)
defer cancel()
if err := srv.Shutdown(shutdownCtx); err != nil {
logger.Error("graceful shutdown failed", "err", err)
return err
}
logger.Info("shutdown complete")
return nil
}
func newLogger(env string) *slog.Logger {
level := slog.LevelInfo
if env == "development" {
level = slog.LevelDebug
}
return slog.New(slog.NewJSONHandler(os.Stdout, &slog.HandlerOptions{Level: level}))
}
Reference in New Issue View Git Blame Copy Permalink