* remove moderationRepo from commentHandler

eltouma · eltouma · commit cca626a80cae · 2026-06-15T18:46:45.000+02:00
* add msg to prevent users to set their email address public
* prevent header injection
diff --git a/src/comment_handler.go b/src/comment_handler.go
@@ -14,16 +14,14 @@ type CommentHandler struct {
 	recordRepo          RecordRepository
 	adminRepo           AdminRepository
 	notificationService *NotificationService
-	moderationRepo      ModerationRepository
 }
 
-func NewCommentHandler(commentRepo CommentRepository, recordRepo RecordRepository, adminRepo AdminRepository, notificationService *NotificationService, moderationRepo ModerationRepository) *CommentHandler {
+func NewCommentHandler(commentRepo CommentRepository, recordRepo RecordRepository, adminRepo AdminRepository, notificationService *NotificationService) *CommentHandler {
 	return &CommentHandler{
 		commentRepo:         commentRepo,
 		recordRepo:          recordRepo,
 		adminRepo:           adminRepo,
 		notificationService: notificationService,
-		moderationRepo:      moderationRepo,
 	}
 }
 
diff --git a/src/email_sender.go b/src/email_sender.go
@@ -5,6 +5,7 @@ import (
 	"net"
 	"net/smtp"
 	"os"
+    "strings"
 )
 
 type EmailSender struct {
@@ -26,13 +27,17 @@ func NewEmailSender() *EmailSender {
 }
 
 func (e *EmailSender) Send(to string, subject string, body string) error {
+    // Sanitize 'to' to prevent header injection
+    if strings.ContainsAny(to, "\r\n") {
+        return fmt.Errorf("email sender: recipient address contains invalid CRLF characters")
+    }
 	var smtpAddr = net.JoinHostPort(e.smtpHost, e.smtpPort)
 
 	auth := smtp.PlainAuth("", e.smtpUsername, e.smtpPassword, e.smtpHost)
 	recipients := []string{to}
 	msg := []byte(
 		"From: " + e.smtpFromAddress + "\r\n" +
-			"To: " + to + "\r\n" +
+			"To: " + to +
 			"Subject: " + subject + "\r\n" +
 			"MIME-Version: 1.0\r\n" +
 			"Content-Type: text/plain; charset=\"UTF-8\"\r\n" +
diff --git a/src/main.go b/src/main.go
@@ -477,7 +477,7 @@ func main() {
 	emailWorker := NewEmailWorker(emailQueueRepo, emailSender, orcidService)
 	moderationRepo := NewPostgresModerationRepository(db, categoryRepo, rorRepo)
 	moderationHandler := NewModerationHandler(moderationRepo, adminRepo, notificationService, recordRepo)
-	commentHandler := NewCommentHandler(commentRepo, recordRepo, adminRepo, notificationService, moderationRepo)
+	commentHandler := NewCommentHandler(commentRepo, recordRepo, adminRepo, notificationService)
 
 	// Initialize ROR handler with name cache
 	rorHandler := NewRorHandler()
diff --git a/src/record_repository.go b/src/record_repository.go
@@ -1097,8 +1097,8 @@ func (r *PostgresRecordRepository) IncrementDownloadCount(ctx context.Context, i
 func (r *PostgresRecordRepository) GetOwnerOrcid(ctx context.Context, recordID string) (string, error) {
 	var uploaderOrcid string
 	err := r.db.QueryRowContext(ctx, "SELECT uploader_orcid FROM records WHERE id = $1", recordID).Scan(&uploaderOrcid)
-	if err != nil {
-		return "", err
+	if err == sql.ErrNoRows {
+		return "", ErrRecordNotFound
 	}
 	return uploaderOrcid, nil
 }
diff --git a/src/sql/014_add_email_queue.up.sql b/src/sql/014_add_email_queue.up.sql
@@ -1,7 +1,7 @@
 -- Queue of email notifications to be sent for record and comment moderation events
 CREATE TABLE IF NOT EXISTS email_queue (
     id INTEGER       GENERATED ALWAYS AS IDENTITY PRIMARY KEY,
-    record_id UUID NOT NULL REFERENCES records(id),
+    record_id UUID NOT NULL REFERENCES records(id) ON DELETE CASCADE,
     comment_id BIGINT REFERENCES comments(id) ON DELETE SET NULL,
     recipient_orcid orcid_type NOT NULL,
     subject TEXT NOT NULL,
diff --git a/src/templates/browse.html b/src/templates/browse.html
@@ -2,7 +2,7 @@
 
 {{ define "content" }}
 <div class="mt-4 alert alert-info alert-dismissible" role="alert">
-  Welcome to the template sharing site, this is still in <b>Beta mode</b>. For more informations, please see the <a href="/about">About</a> page.<br>Thank you for helping us to test so that we can open the site.
+  Welcome to the template sharing site, this is still in <b>Beta mode</b>. For more informations, please see the <a href="/about">About</a> page.<br>Please note that we does not store your email address. To receive notifications, please make sure your email address is set as <b>public</b> on orcid.org<br><br>Thank you for helping us to test so that we can open the site.
 </div>
 <div class="row">
 <h2 class="col-md-12">Browse entries</h2>

Original file line number	Diff line number	Diff line change
`@@ -14,16 +14,14 @@ type CommentHandler struct {`
`14`	`14`	`recordRepo RecordRepository`
`15`	`15`	`adminRepo AdminRepository`
`16`	`16`	`notificationService *NotificationService`
`17`		`- moderationRepo ModerationRepository`
`18`	`17`	`}`
`19`	`18`
`20`		`-func NewCommentHandler(commentRepo CommentRepository, recordRepo RecordRepository, adminRepo AdminRepository, notificationService NotificationService, moderationRepo ModerationRepository) CommentHandler {`
	`19`	`+func NewCommentHandler(commentRepo CommentRepository, recordRepo RecordRepository, adminRepo AdminRepository, notificationService NotificationService) CommentHandler {`
`21`	`20`	`return &CommentHandler{`
`22`	`21`	`commentRepo: commentRepo,`
`23`	`22`	`recordRepo: recordRepo,`
`24`	`23`	`adminRepo: adminRepo,`
`25`	`24`	`notificationService: notificationService,`
`26`		`- moderationRepo: moderationRepo,`
`27`	`25`	`}`
`28`	`26`	`}`
`29`	`27`
Original file line number	Diff line number	Diff line change
`@@ -1097,8 +1097,8 @@ func (r *PostgresRecordRepository) IncrementDownloadCount(ctx context.Context, i`
`1097`	`1097`	`func (r *PostgresRecordRepository) GetOwnerOrcid(ctx context.Context, recordID string) (string, error) {`
`1098`	`1098`	`var uploaderOrcid string`
`1099`	`1099`	`err := r.db.QueryRowContext(ctx, "SELECT uploader_orcid FROM records WHERE id = $1", recordID).Scan(&uploaderOrcid)`
`1100`		`- if err != nil {`
`1101`		`- return "", err`
	`1100`	`+ if err == sql.ErrNoRows {`
	`1101`	`+ return "", ErrRecordNotFound`
`1102`	`1102`	`}`
`1103`	`1103`	`return uploaderOrcid, nil`
`1104`	`1104`	`}`