at-container-registry/pkg/appview/storage/context.go

package storage

import (
	"atcr.io/pkg/appview/readme"
	"atcr.io/pkg/atproto"
	"atcr.io/pkg/auth"
	"atcr.io/pkg/auth/oauth"
)

// HoldDIDLookup interface for querying and updating hold DIDs in manifests
type HoldDIDLookup interface {
	GetLatestHoldDIDForRepo(did, repository string) (string, error)
	UpdateManifestHoldDID(did, oldHoldDID, newHoldDID string) (int64, error)
}

// RegistryContext bundles all the context needed for registry operations
// This includes both per-request data (DID, hold) and shared services
type RegistryContext struct {
	// Per-request identity and routing information
	// Owner = the user whose repository is being accessed
	// Puller = the authenticated user making the request (from JWT Subject)
	DID               string          // Owner's DID - whose repo is being accessed (e.g., "did:plc:abc123")
	Handle            string          // Owner's handle (e.g., "alice.bsky.social")
	HoldDID           string          // Hold service DID (e.g., "did:web:hold01.atcr.io")
	PDSEndpoint       string          // Owner's PDS endpoint URL
	Repository        string          // Image repository name (e.g., "debian")
	ServiceToken      string          // Service token for hold authentication (from puller's PDS)
	ATProtoClient     *atproto.Client // Authenticated ATProto client for the owner
	AuthMethod        string          // Auth method used ("oauth" or "app_password")
	PullerDID         string          // Puller's DID - who is making the request (from JWT Subject)
	PullerPDSEndpoint string          // Puller's PDS endpoint URL

	// Shared services (same for all requests)
	Database      HoldDIDLookup       // Database for hold DID lookups
	Authorizer    auth.HoldAuthorizer // Hold access authorization
	Refresher     *oauth.Refresher    // OAuth session manager
	ReadmeFetcher *readme.Fetcher     // README fetcher for repo pages
}