refactor(signserver): replace raw SQL with repository interfaces

Extract all direct database access into three repository interfaces (SignUserRepo, SignCharacterRepo, SignSessionRepo) matching the pattern established in channelserver. This surfaces 9 previously silenced errors that are now logged with structured context, and makes the sign server testable with mock repos instead of go-sqlmock. Security fix: GetFriends now uses parameterized ANY($1) queries instead of string-concatenated WHERE clauses (SQL injection vector).
2026-03-26 17:43:21 +01:00 · 2026-02-22 16:30:24 +01:00
parent 53b5bb3b96
commit b3f75232a3
11 changed files with 1193 additions and 435 deletions
--- a/server/signserver/repo_interfaces.go
+++ b/server/signserver/repo_interfaces.go
@@ -0,0 +1,66 @@
+package signserver
+
+import "time"
+
+// Repository interfaces decouple sign server business logic from concrete
+// PostgreSQL implementations, enabling mock/stub injection for unit tests.
+
+// character represents a player character record from the characters table.
+type character struct {
+	ID             uint32 `db:"id"`
+	IsFemale       bool   `db:"is_female"`
+	IsNewCharacter bool   `db:"is_new_character"`
+	Name           string `db:"name"`
+	UnkDescString  string `db:"unk_desc_string"`
+	HR             uint16 `db:"hr"`
+	GR             uint16 `db:"gr"`
+	WeaponType     uint16 `db:"weapon_type"`
+	LastLogin      uint32 `db:"last_login"`
+}
+
+// members represents a friend or guildmate entry used in the sign response.
+type members struct {
+	CID  uint32 // Local character ID
+	ID   uint32 `db:"id"`
+	Name string `db:"name"`
+}
+
+// SignUserRepo defines the contract for user-related data access (users, bans tables).
+type SignUserRepo interface {
+	GetCredentials(username string) (uid uint32, passwordHash string, err error)
+	Register(username, passwordHash string, returnExpires time.Time) (uint32, error)
+	GetRights(uid uint32) (uint32, error)
+	GetLastCharacter(uid uint32) (uint32, error)
+	GetLastLogin(uid uint32) (time.Time, error)
+	GetReturnExpiry(uid uint32) (time.Time, error)
+	UpdateReturnExpiry(uid uint32, expiry time.Time) error
+	UpdateLastLogin(uid uint32, loginTime time.Time) error
+	CountPermanentBans(uid uint32) (int, error)
+	CountActiveBans(uid uint32) (int, error)
+	GetByWiiUKey(wiiuKey string) (uint32, error)
+	GetByPSNID(psnID string) (uint32, error)
+	CountByPSNID(psnID string) (int, error)
+	GetPSNIDForUsername(username string) (string, error)
+	SetPSNID(username, psnID string) error
+	GetPSNIDForUser(uid uint32) (string, error)
+}
+
+// SignCharacterRepo defines the contract for character data access.
+type SignCharacterRepo interface {
+	CountNewCharacters(uid uint32) (int, error)
+	CreateCharacter(uid uint32, lastLogin uint32) error
+	GetForUser(uid uint32) ([]character, error)
+	IsNewCharacter(cid int) (bool, error)
+	HardDelete(cid int) error
+	SoftDelete(cid int) error
+	GetFriends(charID uint32) ([]members, error)
+	GetGuildmates(charID uint32) ([]members, error)
+}
+
+// SignSessionRepo defines the contract for sign session/token data access.
+type SignSessionRepo interface {
+	RegisterUID(uid uint32, token string) (tokenID uint32, err error)
+	RegisterPSN(psnID, token string) (tokenID uint32, err error)
+	Validate(token string, tokenID uint32) (bool, error)
+	GetPSNIDByToken(token string) (string, error)
+}