use go context instead of garilla

* refactor(keys): use subst in sql

* project_vault_token

* refactor(project): add project service

* refactor(api): use helpers context

* feat(api): use builtin context

* feat: remove gorilla/context

* feat(project): add unit tests for project service

* test: fix test

Author: fiftin

api/api_test.go

@@ -2,8 +2,6 @@ package api
 
 import (
 	"github.com/semaphoreui/semaphore/util"
-	//_ "github.com/snikch/goodman/hooks"
-	//_ "github.com/snikch/goodman/transaction"
 	"net/http"
 	"net/http/httptest"
 	"testing"
@@ -17,7 +15,7 @@ func TestApiPing(t *testing.T) {
 	req, _ := http.NewRequest("GET", "/api/ping", nil)
 	rr := httptest.NewRecorder()
 
-	r := Route()
+	r := Route(nil, nil)
 
 	r.ServeHTTP(rr, req)
 

api/apps.go

@@ -4,7 +4,6 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
-	"github.com/gorilla/context"
 	"github.com/semaphoreui/semaphore/api/helpers"
 	"github.com/semaphoreui/semaphore/db"
 	"github.com/semaphoreui/semaphore/util"
@@ -80,7 +79,7 @@ func appMiddleware(next http.Handler) http.Handler {
 			return
 		}
 
-		context.Set(r, "app_id", appID)
+		r = helpers.SetContextValue(r, "app_id", appID)
 		next.ServeHTTP(w, r)
 	})
 }
@@ -110,7 +109,7 @@ func getApps(w http.ResponseWriter, r *http.Request) {
 }
 
 func getApp(w http.ResponseWriter, r *http.Request) {
-	appID := context.Get(r, "app_id").(string)
+	appID := helpers.GetFromContext(r, "app_id").(string)
 
 	app, ok := util.Config.Apps[appID]
 	if !ok {
@@ -122,7 +121,7 @@ func getApp(w http.ResponseWriter, r *http.Request) {
 }
 
 func deleteApp(w http.ResponseWriter, r *http.Request) {
-	appID := context.Get(r, "app_id").(string)
+	appID := helpers.GetFromContext(r, "app_id").(string)
 
 	store := helpers.Store(r)
 
@@ -161,7 +160,7 @@ func setAppOption(store db.Store, appID string, field string, val any) error {
 }
 
 func setApp(w http.ResponseWriter, r *http.Request) {
-	appID := context.Get(r, "app_id").(string)
+	appID := helpers.GetFromContext(r, "app_id").(string)
 
 	store := helpers.Store(r)
 
@@ -206,7 +205,7 @@ func setApp(w http.ResponseWriter, r *http.Request) {
 }
 
 func setAppActive(w http.ResponseWriter, r *http.Request) {
-	appID := context.Get(r, "app_id").(string)
+	appID := helpers.GetFromContext(r, "app_id").(string)
 
 	store := helpers.Store(r)
 

api/auth.go

@@ -2,7 +2,6 @@ package api
 
 import (
 	"errors"
-	"github.com/gorilla/context"
 	"github.com/pquerna/otp"
 	"github.com/semaphoreui/semaphore/api/helpers"
 	"github.com/semaphoreui/semaphore/db"
@@ -207,9 +206,11 @@ func verifySession(w http.ResponseWriter, r *http.Request) {
 	}
 }
 
-func authenticationHandler(w http.ResponseWriter, r *http.Request) bool {
+func authenticationHandler(w http.ResponseWriter, r *http.Request) (ok bool, req *http.Request) {
 	var userID int
 
+	req = r
+
 	authHeader := strings.ToLower(r.Header.Get("authorization"))
 
 	if len(authHeader) > 0 && strings.Contains(authHeader, "bearer") {
@@ -221,29 +222,29 @@ func authenticationHandler(w http.ResponseWriter, r *http.Request) bool {
 			}
 
 			w.WriteHeader(http.StatusUnauthorized)
-			return false
+			return
 		}
 
 		userID = token.UserID
 	} else {
-		session, ok := getSession(r)
+		session, found := getSession(r)
 
-		if !ok {
+		if !found {
 			w.WriteHeader(http.StatusUnauthorized)
-			return false
+			return
 		}
 
 		if !session.IsVerified() {
 			helpers.WriteErrorStatus(w, "TOTP_REQUIRED", http.StatusUnauthorized)
-			return false
+			return
 		}
 
 		userID = session.UserID
 
 		if err := helpers.Store(r).TouchSession(userID, session.ID); err != nil {
 			log.Error(err)
 			w.WriteHeader(http.StatusUnauthorized)
-			return false
+			return
 		}
 	}
 
@@ -254,17 +255,18 @@ func authenticationHandler(w http.ResponseWriter, r *http.Request) bool {
 			log.Error(err)
 		}
 		w.WriteHeader(http.StatusUnauthorized)
-		return false
+		return
 	}
 
-	context.Set(r, "user", &user)
-	return true
+	ok = true
+	req = helpers.SetContextValue(r, "user", &user)
+	return
 }
 
 // nolint: gocyclo
 func authentication(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		ok := authenticationHandler(w, r)
+		ok, r := authenticationHandler(w, r)
 		if ok {
 			next.ServeHTTP(w, r)
 		}
@@ -279,7 +281,7 @@ func authenticationWithStore(next http.Handler) http.Handler {
 		var ok bool
 
 		db.StoreSession(store, r.URL.String(), func() {
-			ok = authenticationHandler(w, r)
+			ok, r = authenticationHandler(w, r)
 		})
 
 		if ok {
@@ -290,7 +292,7 @@ func authenticationWithStore(next http.Handler) http.Handler {
 
 func adminMiddleware(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		user := context.Get(r, "user").(*db.User)
+		user := helpers.GetFromContext(r, "user").(*db.User)
 
 		if !user.Admin {
 			w.WriteHeader(http.StatusForbidden)

api/cache.go

@@ -1,7 +1,6 @@
 package api
 
 import (
-	"github.com/gorilla/context"
 	"github.com/semaphoreui/semaphore/api/helpers"
 	"github.com/semaphoreui/semaphore/db"
 	"github.com/semaphoreui/semaphore/util"
@@ -10,7 +9,7 @@ import (
 )
 
 func clearCache(w http.ResponseWriter, r *http.Request) {
-	currentUser := context.Get(r, "user").(*db.User)
+	currentUser := helpers.GetFromContext(r, "user").(*db.User)
 
 	if !currentUser.Admin {
 		helpers.WriteJSON(w, http.StatusForbidden, map[string]string{

api/debug/gc.go

@@ -3,12 +3,9 @@ package debug
 import (
 	"net/http"
 	"runtime"
-
-	"github.com/gorilla/context"
 )
 
 func GC(w http.ResponseWriter, r *http.Request) {
-	context.Purge(600)
 	runtime.GC()
 	w.WriteHeader(http.StatusNoContent)
 }

api/events.go

@@ -4,14 +4,12 @@ import (
 	"github.com/semaphoreui/semaphore/api/helpers"
 	"github.com/semaphoreui/semaphore/db"
 	"net/http"
-
-	"github.com/gorilla/context"
 )
 
 // nolint: gocyclo
 func getEvents(w http.ResponseWriter, r *http.Request, limit int) {
-	user := context.Get(r, "user").(*db.User)
-	projectObj, exists := context.GetOk(r, "project")
+	user := helpers.GetFromContext(r, "user").(*db.User)
+	projectObj, exists := helpers.GetOkFromContext(r, "project")
 
 	var err error
 	var events []db.Event

api/helpers/context.go

@@ -1,12 +1,27 @@
 package helpers
 
 import (
+	"context"
 	"net/http"
 
-	"github.com/gorilla/context"
 	"github.com/semaphoreui/semaphore/db"
 )
 
+func GetFromContext(r *http.Request, key string) any {
+	return r.Context().Value(key)
+}
+
+func GetOkFromContext(r *http.Request, key string) (res any, ok bool) {
+	res = r.Context().Value(key)
+	return res, res != nil
+}
+
+func SetContextValue(r *http.Request, key string, value any) *http.Request {
+	ctx := r.Context()
+	ctx = context.WithValue(ctx, key, value)
+	return r.WithContext(ctx)
+}
+
 func UserFromContext(r *http.Request) *db.User {
-	return context.Get(r, "user").(*db.User)
+	return GetFromContext(r, "user").(*db.User)
 }