allow sharing ownership via api

withinboredom · withinboredom · commit 6b19f592eb22 · 2025-07-29T14:18:35.000+02:00
Signed-off-by: Robert Landers &lt;landers.robert@gmail.com&gt;
diff --git a/cli/auth/keys.go b/cli/auth/keys.go
@@ -35,6 +35,11 @@ func DecorateContextWithUser(ctx context.Context, user *User) context.Context {
 	return context.WithValue(ctx, appcontext.CurrentUserKey, user)
 }
 
+func GetUserFromContext(ctx context.Context) *User {
+	user, _ := ctx.Value(appcontext.CurrentUserKey).(*User)
+	return user
+}
+
 // ExtractUser extracts user information from the Authorization token in the HTTP request header.
 // It returns the user and a boolean indicating if the extraction was successful.
 //
diff --git a/cli/lib/api.go b/cli/lib/api.go
@@ -315,6 +315,46 @@ func Startup(ctx context.Context, js jetstream.JetStream, logger *zap.Logger, po
 		}
 	}
 
+	// POST /resource/{id}/share: share ownership of the resource with another user
+	r.HandleFunc("/resource/{id}/share/{userid}", func(writer http.ResponseWriter, request *http.Request) {
+		if stop := handleCors(writer, request); stop {
+			return
+		}
+
+		if request.Method != "POST" {
+			http.Error(writer, "Method Not Allowed", http.StatusMethodNotAllowed)
+			return
+		}
+
+		ctx := getCorrelationId(ctx, &request.Header, nil)
+		logRequest(logger, request, ctx)
+
+		vars := mux.Vars(request)
+		id := &glue.StateId{
+			Id: strings.TrimSpace(vars["id"]),
+		}
+
+		// verify the user is authorized to access the resource
+		ctx, done := authorize(writer, request, config, ctx, rm, id, logger, true, auth.Owner)
+		if done {
+			return
+		}
+
+		r, err := rm.DiscoverResource(ctx, id, logger, true)
+		if err != nil {
+			logger.Error("Failed to discover resource", zap.Error(err))
+			http.Error(writer, "Not Found", http.StatusNotFound)
+		}
+
+		newUser := strings.TrimSpace(vars["userid"])
+
+		err = r.ShareOwnership(auth.UserId(newUser), auth.GetUserFromContext(ctx), true)
+		if err != nil {
+			logger.Error("Failed to share ownership", zap.Error(err))
+			http.Error(writer, "Internal Server Error", http.StatusInternalServerError)
+		}
+	})
+
 	// GET /entity/{name}/{id}
 	// get an entity state and status
 	// PUT /entity/{name}/{id}
diff --git a/src/DurableClient.php b/src/DurableClient.php
@@ -1,4 +1,5 @@
 <?php
+
 /*
  * Copyright ©2024 Robert Landers
  *
@@ -141,4 +142,9 @@ public function deleteEntity(EntityId $entityId): void
     {
         $this->entityClient->deleteEntity($entityId);
     }
+
+    public function shareOwnership(EntityId|OrchestrationInstance $resource, string $with): void
+    {
+        $this->entityClient->shareOwnership($resource, $with);
+    }
 }
diff --git a/src/EntityClientInterface.php b/src/EntityClientInterface.php
@@ -27,6 +27,7 @@
 use Bottledcode\DurablePhp\Search\EntityFilter;
 use Bottledcode\DurablePhp\State\EntityId;
 use Bottledcode\DurablePhp\State\EntityState;
+use Bottledcode\DurablePhp\State\OrchestrationInstance;
 use Closure;
 use DateTimeImmutable;
 use Generator;
@@ -80,4 +81,6 @@ public function getEntitySnapshot(EntityId $entityId): ?EntityState;
      * Deletes an entity
      */
     public function deleteEntity(EntityId $entityId): void;
+
+    public function shareOwnership(EntityId|OrchestrationInstance $resource, string $with): void;
 }
diff --git a/src/RemoteEntityClient.php b/src/RemoteEntityClient.php
@@ -31,6 +31,8 @@
 use Bottledcode\DurablePhp\Search\EntityFilter;
 use Bottledcode\DurablePhp\State\EntityId;
 use Bottledcode\DurablePhp\State\EntityState;
+use Bottledcode\DurablePhp\State\Ids\StateId;
+use Bottledcode\DurablePhp\State\OrchestrationInstance;
 use Bottledcode\DurablePhp\State\Serializer;
 use Closure;
 use DateTimeImmutable;
@@ -158,4 +160,17 @@ public function deleteEntity(EntityId $entityId): void
             throw new Exception('Failed to delete entity');
         }
     }
+
+    public function shareOwnership(EntityId|OrchestrationInstance $resource, string $with): void
+    {
+        $id = $resource instanceof EntityId ? StateId::fromEntityId($resource) : StateId::fromInstance($resource);
+        $req = new Request("{$this->apiHost}/resource/{$id}/share/{$with}", 'POST');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to share ownership');
+        }
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`	`1`	`<?php`
	`2`	`+`
`2`	`3`	`/*`
`3`	`4`	`* Copyright ©2024 Robert Landers`
`4`	`5`	`*`
`@@ -141,4 +142,9 @@ public function deleteEntity(EntityId $entityId): void`
`141`	`142`	`{`
`142`	`143`	`$this->entityClient->deleteEntity($entityId);`
`143`	`144`	`}`
	`145`	`+`
	`146`	`+ public function shareOwnership(EntityId\|OrchestrationInstance $resource, string $with): void`
	`147`	`+ {`
	`148`	`+ $this->entityClient->shareOwnership($resource, $with);`
	`149`	`+ }`
`144`	`150`	`}`