The goal of the new package registry is to eventually replace the packages site. For the first release, however, we just want to do the minimum amount of work that gets us somewhere.
We'll start with a barebones web api, to be communicated with through the compiler. Serving actual users via the browser will come later.
The goal is to be able to do the following operations:
- Register a new user, or login
- Register a publishing identity (
gren-langis a publishing identity,me@example.comis a user) - Add or remove additional users to a publishing identity
- Permissions in a publishing identity (only download, publish new packages, user admin)
- Publish new packages/versions
- Revoke a package/version (the name/version is still registered, but the actual content is removed).
- Ask which version is latest for a given compiler version, and which was the previous version related to some version number.
Account creation or login is handled via an email magic link. The client recieves a random token that they can use to exhange into a proper login token, but the endpoint doing the exhange will only respond once the user has clicked on a link they receive by e-mail. This means we need some email sending provider (thinking Postmark).
Once you have a login token (stored somewhere on disk. $HOME/.gren/user?) you can create publishing identities and manage users connected to that identity.
Users in an identity can be allowed to:
- Download private packages only (might want to add a
privatefield togren.json) - The above + publish new packages or versions of packages
- The above + add, remove and modify permissions on users
Publishing a package/versions is just the matter of uploading a bundle (compiler's next branch currently creates those), if you have the permissions.
Publishing a package should tell packages.gren-lang.org to update.
As much code as possible should be written in Gren, with as few dependencies as possible. Start by persisting the registry via filesystem on disk. Once task ports land (25S?), switch to sqlite via ports with litestream for backups.
This project uses devbox.
You can run the server with devbox services up
To run in the background, run devbox services up -b and stop with devbox services stop
Run tests with devbox run test
- Refresh tokens?
- Prevent spamming endpoints? (e.g. bots flooding system with spam users or publishing identities)
- User Authentication API (in progress - see below)
- Package search
- Package docs
- Avoid ambiguous type names (e.g.
TaskvsInit.Task) - Enable links to specific sections
- Avoid ambiguous section anchors (e.g. focus section vs function)
- Package doc search
- Avoid ambiguous type names (e.g.
Goals:
- Create and authenticate users from CLI on the command line.
- Verify user identity using email.
Auth flow:
- CLI posts email address to the server (IN PROGRESS)
- server finds or creates row in
usertable - server creates new row in
sessiontable with:validation_tokenfor unique url for user to validate their email address and get avalidation_codefetch_session_tokenfor unique url for cli to fetch session (along withvalidation_code)
- server emails validation link with
validation_token(postmark) - server returns fetch session link with
fetch_session_token
- server finds or creates row in
- User follows email validation link to get a validation code.
- User enters validation code on the CLI, where it was prompting/waiting for it.
- CLI posts to the fetch link with the validation code.
- Server creates and returns a session token.
- CLI saves token on disk to use for authenticated requests.
Benefits:
- Not saving or requiring passwords.
- CLI auth tightly coupled to email validation.
- Can't get session token without fetch token/link from the cli initiation and the validation code.
- Can't get the validation code without validation token/link from the email.
- CLI auth loosely coupled to where you check your email (clicking validation link in email gives you a code that can be manually entered on the cli)