sanitize and save URL slugs

.env

@@ -48,10 +48,6 @@ EMAIL_FROM=test@ma-al.com
 EMAIL_FROM_NAME=Gitea Manager
 EMAIL_ADMIN=goc_marek@ma-al.pl
 
-# STORAGE
-STORAGE_ROOT=./storage
-
-
 I18N_LANGS=en,pl,cs
 
 PDF_SERVER_URL=http://localhost:8000

.gitignore

@@ -5,6 +5,4 @@ bin/
 i18n/*.json
 *_templ.go
 tmp/main
-test.go
+test.go
-storage/*
-!storage/.gitkeep

app/config/config.go

@@ -2,10 +2,8 @@ package config
 
 import (
 	"fmt"
-	"log"
 	"log/slog"
 	"os"
-	"path/filepath"
 	"reflect"
 	"strconv"
 	"strings"
@@ -26,8 +24,7 @@ type Config struct {
 	GoogleTranslate GoogleTranslateConfig
 	Image           ImageConfig
 	Cors            CorsConfig
-	MeiliSearch     MeiliSearchConfig
+	MailiSearch     MeiliSearchConfig
-	Storage         StorageConfig
 }
 
 type I18n struct {
@@ -98,10 +95,6 @@ type EmailConfig struct {
 	Enabled      bool   `env:"EMAIL_ENABLED,false"`
 }
 
-type StorageConfig struct {
-	RootFolder string `env:"STORAGE_ROOT"`
-}
-
 type PdfPrinter struct {
 	ServerUrl string `env:"PDF_SERVER_URL,http://localhost:8000"`
 }
@@ -162,7 +155,7 @@ func load() *Config {
 
 	err = loadEnv(&cfg.OAuth.Google)
 	if err != nil {
-		slog.Error("not possible to load env variables for oauth google : ", err.Error(), "")
+		slog.Error("not possible to load env variables for outh google : ", err.Error(), "")
 	}
 
 	err = loadEnv(&cfg.App)
@@ -177,12 +170,12 @@ func load() *Config {
 
 	err = loadEnv(&cfg.I18n)
 	if err != nil {
-		slog.Error("not possible to load env variables for i18n : ", err.Error(), "")
+		slog.Error("not possible to load env variables for email : ", err.Error(), "")
 	}
 
 	err = loadEnv(&cfg.Pdf)
 	if err != nil {
-		slog.Error("not possible to load env variables for pdf : ", err.Error(), "")
+		slog.Error("not possible to load env variables for email : ", err.Error(), "")
 	}
 
 	err = loadEnv(&cfg.GoogleTranslate)
@@ -192,25 +185,19 @@ func load() *Config {
 
 	err = loadEnv(&cfg.Image)
 	if err != nil {
-		slog.Error("not possible to load env variables for image : ", err.Error(), "")
+		slog.Error("not possible to load env variables for google translate : ", err.Error(), "")
 	}
 
 	err = loadEnv(&cfg.Cors)
 	if err != nil {
-		slog.Error("not possible to load env variables for cors : ", err.Error(), "")
+		slog.Error("not possible to load env variables for google translate : ", err.Error(), "")
 	}
 
-	err = loadEnv(&cfg.MeiliSearch)
+	err = loadEnv(&cfg.MailiSearch)
 	if err != nil {
-		slog.Error("not possible to load env variables for meili search : ", err.Error(), "")
+		slog.Error("not possible to load env variables for google translate : ", err.Error(), "")
 	}
 
-	err = loadEnv(&cfg.Storage)
-	if err != nil {
-		slog.Error("not possible to load env variables for storage : ", err.Error(), "")
-	}
-	cfg.Storage.RootFolder = ResolveRelativePath(cfg.Storage.RootFolder)
-
 	return cfg
 }
 
@@ -321,22 +308,6 @@ func setValue(field reflect.Value, val string, key string) error {
 	return nil
 }
 
-func ResolveRelativePath(relativePath string) string {
-	// get working directory (where program was started)
-	wd, err := os.Getwd()
-	if err != nil {
-		log.Fatal(err)
-	}
-
-	// convert to absolute path
-	absPath := relativePath
-	if !filepath.IsAbs(absPath) {
-		absPath = filepath.Join(wd, absPath)
-	}
-
-	return filepath.Clean(absPath)
-}
-
 func parseEnvTag(tag string) (key string, def *string) {
 	if tag == "" {
 		return "", nil

app/delivery/middleware/auth.go

@@ -1,16 +1,13 @@
 package middleware
 
 import (
-	"encoding/base64"
 	"strconv"
 	"strings"
-	"time"
 
 	"git.ma-al.com/goc_daniel/b2b/app/config"
 	"git.ma-al.com/goc_daniel/b2b/app/model"
 	"git.ma-al.com/goc_daniel/b2b/app/service/authService"
 	constdata "git.ma-al.com/goc_daniel/b2b/app/utils/const_data"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/localeExtractor"
 
 	"github.com/gofiber/fiber/v3"
 )
@@ -118,14 +115,21 @@ func AuthMiddleware() fiber.Handler {
 // RequireAdmin creates admin-only middleware
 func RequireAdmin() fiber.Handler {
 	return func(c fiber.Ctx) error {
-		originalUserRole, ok := localeExtractor.GetOriginalUserRole(c)
+		user := c.Locals("user")
-		if !ok {
+		if user == nil {
 			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
 				"error": "not authenticated",
 			})
 		}
 
-		if originalUserRole != model.RoleAdmin {
+		userSession, ok := user.(*model.UserSession)
+		if !ok {
+			return c.Status(fiber.StatusInternalServerError).JSON(fiber.Map{
+				"error": "invalid user session",
+			})
+		}
+
+		if userSession.Role != model.RoleAdmin {
 			return c.Status(fiber.StatusForbidden).JSON(fiber.Map{
 				"error": "admin access required",
 			})
@@ -135,72 +139,6 @@ func RequireAdmin() fiber.Handler {
 	}
 }
 
-// Webdav
-func Webdav() fiber.Handler {
-	authService := authService.NewAuthService()
-
-	return func(c fiber.Ctx) error {
-		authHeader := c.Get("Authorization")
-		if authHeader == "" {
-			c.Set("WWW-Authenticate", `Basic realm="webdav"`)
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "authorization token required",
-			})
-		}
-
-		if !strings.HasPrefix(authHeader, "Basic ") {
-			c.Set("WWW-Authenticate", `Basic realm="webdav"`)
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "invalid authorization token",
-			})
-		}
-
-		encoded := strings.TrimPrefix(authHeader, "Basic ")
-		decoded, err := base64.StdEncoding.DecodeString(encoded)
-		if err != nil {
-			c.Set("WWW-Authenticate", `Basic realm="webdav"`)
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "invalid authorization token",
-			})
-		}
-
-		credentials := strings.SplitN(string(decoded), ":", 2)
-		rawToken := ""
-		if len(credentials) == 1 {
-			rawToken = credentials[0]
-		} else if len(credentials) == 2 {
-			rawToken = credentials[1]
-		}
-		if len(rawToken) != constdata.NBYTES_IN_WEBDAV_TOKEN*2 {
-			c.Set("WWW-Authenticate", `Basic realm="webdav"`)
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "invalid authorization token",
-			})
-		}
-
-		// we identify user based on this token.
-		user, err := authService.GetUserByWebdavToken(rawToken)
-		if err != nil {
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "user not found",
-			})
-		}
-
-		if user.WebdavExpires != nil && user.WebdavExpires.Before(time.Now()) {
-			return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
-				"error": "invalid or expired token",
-			})
-		}
-
-		var userLocale model.UserLocale
-		userLocale.OriginalUser = user
-		userLocale.User = user
-		c.Locals(constdata.USER_LOCALE, &userLocale)
-
-		return c.Next()
-	}
-}
-
 // GetConfig returns the app config
 func GetConfig() *config.Config {
 	return config.Get()

app/delivery/web/api/restricted/productTranslation.go

@@ -4,7 +4,6 @@ import (
 	"strconv"
 
 	"git.ma-al.com/goc_daniel/b2b/app/config"
-	"git.ma-al.com/goc_daniel/b2b/app/model"
 	"git.ma-al.com/goc_daniel/b2b/app/service/productTranslationService"
 	"git.ma-al.com/goc_daniel/b2b/app/utils/i18n"
 	"git.ma-al.com/goc_daniel/b2b/app/utils/localeExtractor"
@@ -80,12 +79,6 @@ func (h *ProductTranslationHandler) SaveProductDescription(c fiber.Ctx) error {
 			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrInvalidBody)))
 	}
 
-	userRole, ok := localeExtractor.GetOriginalUserRole(c)
-	if !ok || userRole != model.RoleAdmin {
-		return c.Status(responseErrors.GetErrorStatus(responseErrors.ErrAdminAccessRequired)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrAdminAccessRequired)))
-	}
-
 	productID_attribute := c.Query("productID")
 	productID, err := strconv.Atoi(productID_attribute)
 	if err != nil {
@@ -123,12 +116,6 @@ func (h *ProductTranslationHandler) TranslateProductDescription(c fiber.Ctx) err
 			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrInvalidBody)))
 	}
 
-	userRole, ok := localeExtractor.GetOriginalUserRole(c)
-	if !ok || userRole != model.RoleAdmin {
-		return c.Status(responseErrors.GetErrorStatus(responseErrors.ErrAdminAccessRequired)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrAdminAccessRequired)))
-	}
-
 	productID_attribute := c.Query("productID")
 	productID, err := strconv.Atoi(productID_attribute)
 	if err != nil {

app/delivery/web/api/restricted/search.go

@@ -4,7 +4,6 @@ import (
 	"encoding/json"
 	"fmt"
 
-	"git.ma-al.com/goc_daniel/b2b/app/model"
 	"git.ma-al.com/goc_daniel/b2b/app/service/meiliService"
 	searchservice "git.ma-al.com/goc_daniel/b2b/app/service/searchService"
 	"git.ma-al.com/goc_daniel/b2b/app/utils/i18n"
@@ -44,12 +43,6 @@ func (h *MeiliSearchHandler) CreateIndex(c fiber.Ctx) error {
 			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrBadAttribute)))
 	}
 
-	userRole, ok := localeExtractor.GetOriginalUserRole(c)
-	if !ok || userRole != model.RoleAdmin {
-		return c.Status(responseErrors.GetErrorStatus(responseErrors.ErrAdminAccessRequired)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrAdminAccessRequired)))
-	}
-
 	err := h.meiliService.CreateIndex(id_lang)
 	if err != nil {
 		fmt.Printf("CreateIndex error: %v\n", err)

app/delivery/web/api/restricted/storage.go

@@ -1,100 +0,0 @@
-package restricted
-
-import (
-	"strconv"
-
-	"git.ma-al.com/goc_daniel/b2b/app/config"
-	"git.ma-al.com/goc_daniel/b2b/app/model"
-	"git.ma-al.com/goc_daniel/b2b/app/service/storageService"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/i18n"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/localeExtractor"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/nullable"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/response"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/responseErrors"
-	"github.com/gofiber/fiber/v3"
-)
-
-type StorageHandler struct {
-	storageService *storageService.StorageService
-	config         *config.Config
-}
-
-func NewStorageHandler() *StorageHandler {
-	return &StorageHandler{
-		storageService: storageService.New(),
-		config:         config.Get(),
-	}
-}
-
-func StorageHandlerRoutes(r fiber.Router) fiber.Router {
-	handler := NewStorageHandler()
-
-	// for all users
-	r.Get("/list-content/*", handler.ListContent)
-	r.Get("/download-file/*", handler.DownloadFile)
-
-	// for admins only
-	r.Get("/create-new-webdav-token", handler.CreateNewWebdavToken)
-
-	return r
-}
-
-// accepted path looks like e.g. "/folder1/" or "folder1"
-func (h *StorageHandler) ListContent(c fiber.Ctx) error {
-	// relative path defaults to root directory
-	abs_path, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.Status(responseErrors.GetErrorStatus(err)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, err)))
-	}
-
-	entries_in_list, err := h.storageService.ListContent(abs_path)
-
-	if err != nil {
-		return c.Status(responseErrors.GetErrorStatus(err)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, err)))
-	}
-
-	return c.JSON(response.Make(entries_in_list, 0, i18n.T_(c, response.Message_OK)))
-}
-
-func (h *StorageHandler) DownloadFile(c fiber.Ctx) error {
-	abs_path, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.Status(responseErrors.GetErrorStatus(err)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, err)))
-	}
-
-	f, filename, filesize, err := h.storageService.DownloadFilePrep(abs_path)
-	if err != nil {
-		return c.Status(responseErrors.GetErrorStatus(err)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, err)))
-	}
-
-	c.Attachment(filename)
-	c.Set("Content-Length", strconv.FormatInt(filesize, 10))
-	c.Set("Content-Type", "application/octet-stream")
-	return c.SendStream(f, int(filesize))
-}
-
-func (h *StorageHandler) CreateNewWebdavToken(c fiber.Ctx) error {
-	userID, ok := localeExtractor.GetUserID(c)
-	if !ok {
-		return c.Status(responseErrors.GetErrorStatus(responseErrors.ErrInvalidBody)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrInvalidBody)))
-	}
-
-	userRole, ok := localeExtractor.GetOriginalUserRole(c)
-	if !ok || userRole != model.RoleAdmin {
-		return c.Status(responseErrors.GetErrorStatus(responseErrors.ErrAdminAccessRequired)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, responseErrors.ErrAdminAccessRequired)))
-	}
-
-	new_token, err := h.storageService.NewWebdavToken(userID)
-	if err != nil {
-		return c.Status(responseErrors.GetErrorStatus(err)).
-			JSON(response.Make(nullable.GetNil(""), 0, responseErrors.GetErrorCode(c, err)))
-	}
-
-	return c.JSON(response.Make(&new_token, 0, i18n.T_(c, response.Message_OK)))
-}

app/delivery/web/api/webdav/storage.go

@@ -1,198 +0,0 @@
-package webdav
-
-import (
-	"bytes"
-	"io"
-	"net/http"
-	"strconv"
-
-	"git.ma-al.com/goc_daniel/b2b/app/config"
-	"git.ma-al.com/goc_daniel/b2b/app/service/storageService"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/responseErrors"
-	"github.com/gofiber/fiber/v3"
-)
-
-type StorageHandler struct {
-	storageService *storageService.StorageService
-	config         *config.Config
-}
-
-func NewStorageHandler() *StorageHandler {
-	return &StorageHandler{
-		storageService: storageService.New(),
-		config:         config.Get(),
-	}
-}
-
-func StorageHandlerRoutes(r fiber.Router) fiber.Router {
-	handler := NewStorageHandler()
-
-	// for webdav use only
-	r.Get("/*", handler.Get)
-	r.Head("/*", handler.Get)
-	r.Put("/*", handler.Put)
-	r.Delete("/*", handler.Delete)
-	r.Add([]string{"MKCOL"}, "/*", handler.Mkcol)
-	r.Add([]string{"PROPFIND"}, "/*", handler.Propfind)
-	r.Add([]string{"PROPPATCH"}, "/*", handler.Proppatch)
-	r.Add([]string{"MOVE"}, "/*", handler.Move)
-	r.Add([]string{"COPY"}, "/*", handler.Copy)
-
-	return r
-}
-
-func (h *StorageHandler) Get(c fiber.Ctx) error {
-	// fmt.Println("GET")
-	absPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	info, err := h.storageService.EntryInfo(absPath)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	if info.IsDir() {
-		xml, err := h.storageService.Propfind(h.config.Storage.RootFolder, absPath, "1")
-		if err != nil {
-			return c.SendStatus(responseErrors.GetErrorStatus(err))
-		}
-
-		c.Set("Content-Type", `application/xml; charset="utf-8"`)
-		return c.Status(http.StatusMultiStatus).SendString(xml)
-
-	} else {
-		f, filename, filesize, err := h.storageService.DownloadFilePrep(absPath)
-		if err != nil {
-			return c.SendStatus(responseErrors.GetErrorStatus(err))
-		}
-
-		c.Attachment(filename)
-		c.Set("Content-Length", strconv.FormatInt(filesize, 10))
-		c.Set("Content-Type", "application/octet-stream")
-		return c.SendStream(f, int(filesize))
-	}
-}
-
-func (h *StorageHandler) Put(c fiber.Ctx) error {
-	// fmt.Println("PUT")
-	absPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	var src io.Reader
-	if bodyStream := c.Request().BodyStream(); bodyStream != nil {
-		defer c.Request().CloseBodyStream()
-		src = bodyStream
-	} else {
-		src = bytes.NewReader(c.Body())
-	}
-
-	err = h.storageService.Put(absPath, src)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	return c.SendStatus(http.StatusCreated)
-}
-
-func (h *StorageHandler) Delete(c fiber.Ctx) error {
-	// fmt.Println("DELETE")
-	absPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-	if absPath == h.config.Storage.RootFolder {
-		return c.SendStatus(responseErrors.GetErrorStatus(responseErrors.ErrAccessDenied))
-	}
-
-	err = h.storageService.Delete(absPath)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	return c.SendStatus(http.StatusNoContent)
-}
-
-func (h *StorageHandler) Mkcol(c fiber.Ctx) error {
-	// fmt.Println("Mkcol")
-	absPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	err = h.storageService.Mkcol(absPath)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	return c.SendStatus(http.StatusCreated)
-}
-
-func (h *StorageHandler) Propfind(c fiber.Ctx) error {
-	// fmt.Println("PROPFIND")
-	absPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	xml, err := h.storageService.Propfind(h.config.Storage.RootFolder, absPath, "1")
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	c.Set("Content-Type", `application/xml; charset="utf-8"`)
-	return c.Status(http.StatusMultiStatus).SendString(xml)
-}
-
-func (h *StorageHandler) Proppatch(c fiber.Ctx) error {
-	return c.SendStatus(http.StatusNotImplemented) // 501
-}
-
-func (h *StorageHandler) Move(c fiber.Ctx) error {
-	// fmt.Println("MOVE")
-	srcAbsPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	dest := c.Get("Destination")
-	if dest == "" {
-		return c.SendStatus(http.StatusBadRequest)
-	}
-	destAbsPath, err := h.storageService.ObtainDestPath(h.config.Storage.RootFolder, dest)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	err = h.storageService.Move(srcAbsPath, destAbsPath)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-	return c.SendStatus(http.StatusCreated)
-}
-
-func (h *StorageHandler) Copy(c fiber.Ctx) error {
-	// fmt.Println("COPY")
-	srcAbsPath, err := h.storageService.AbsPath(h.config.Storage.RootFolder, c.Params("*"))
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	dest := c.Get("Destination")
-	if dest == "" {
-		return c.SendStatus(http.StatusBadRequest)
-	}
-	destAbsPath, err := h.storageService.ObtainDestPath(h.config.Storage.RootFolder, dest)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-
-	err = h.storageService.Copy(srcAbsPath, destAbsPath)
-	if err != nil {
-		return c.SendStatus(responseErrors.GetErrorStatus(err))
-	}
-	return c.SendStatus(http.StatusCreated)
-}

app/delivery/web/init.go

@@ -14,7 +14,6 @@ import (
 	"git.ma-al.com/goc_daniel/b2b/app/delivery/web/api"
 	"git.ma-al.com/goc_daniel/b2b/app/delivery/web/api/public"
 	"git.ma-al.com/goc_daniel/b2b/app/delivery/web/api/restricted"
-	"git.ma-al.com/goc_daniel/b2b/app/delivery/web/api/webdav"
 	"git.ma-al.com/goc_daniel/b2b/app/delivery/web/general"
 
 	"github.com/gofiber/fiber/v3"
@@ -26,7 +25,6 @@ import (
 type Server struct {
 	app        *fiber.App
 	cfg        *config.Config
-	webdav     fiber.Router
 	api        fiber.Router
 	public     fiber.Router
 	restricted fiber.Router
@@ -44,23 +42,12 @@ func (s *Server) Cfg() *config.Config {
 
 // New creates a new server instance
 func New() *Server {
-	var s Server
+	return &Server{
-
+		app: fiber.New(fiber.Config{
-	app :=
+			ErrorHandler: customErrorHandler,
-		fiber.New(fiber.Config{
+		}),
-			ErrorHandler:      customErrorHandler,
+		cfg: config.Get(),
-			BodyLimit:         50 * 1024 * 1024, // 50 MB
+	}
-			StreamRequestBody: true,
-			RequestMethods: []string{
-				fiber.MethodGet, fiber.MethodHead, fiber.MethodPost, fiber.MethodPut,
-				fiber.MethodDelete, fiber.MethodConnect, fiber.MethodOptions,
-				fiber.MethodTrace, fiber.MethodPatch, "MKCOL", "PROPFIND", "PROPPATCH", "MOVE", "COPY",
-			},
-		})
-
-	s.app = app
-	s.cfg = config.Get()
-	return &s
 }
 
 // Setup configures the server with routes and middleware
@@ -89,8 +76,6 @@ func (s *Server) Setup() error {
 	s.public = s.api.Group("/public")
 	s.restricted = s.api.Group("/restricted")
 	s.restricted.Use(middleware.AuthMiddleware())
-	s.webdav = s.api.Group("/webdav")
-	s.webdav.Use(middleware.Webdav())
 
 	// initialize language endpoints (general)
 	api.NewLangHandler().InitLanguage(s.api, s.cfg)
@@ -130,12 +115,6 @@ func (s *Server) Setup() error {
 	carts := s.restricted.Group("/carts")
 	restricted.CartsHandlerRoutes(carts)
 
-	// storage (uses various authorization means)
-	restrictedStorage := s.restricted.Group("/storage")
-	webdavStorage := s.webdav.Group("/storage")
-	restricted.StorageHandlerRoutes(restrictedStorage)
-	webdav.StorageHandlerRoutes(webdavStorage)
-
 	s.api.All("*", func(c fiber.Ctx) error {
 		return c.SendStatus(fiber.StatusNotFound)
 	})

app/model/customer.go

@@ -23,8 +23,6 @@ type Customer struct {
 	EmailVerificationExpires *time.Time     `json:"-"`
 	PasswordResetToken       string         `gorm:"size:255" json:"-"`
 	PasswordResetExpires     *time.Time     `json:"-"`
-	WebdavToken              string         `gorm:"size:255" json:"-"`
-	WebdavExpires            *time.Time     `json:"-"`
 	LastPasswordResetRequest *time.Time     `json:"-"`
 	LastLoginAt              *time.Time     `json:"last_login_at,omitempty"`
 	LangID                   uint           `gorm:"default:2" json:"lang_id"`    // User's preferred language

app/model/entry.go

@@ -1,6 +0,0 @@
-package model
-
-type EntryInList struct {
-	Name     string
-	IsFolder bool
-}

app/model/productDescription.go

@@ -18,7 +18,7 @@ type ProductDescription struct {
 	AvailableLater   string `gorm:"column:available_later;type:varchar(255)" json:"available_later" form:"available_later"`
 	DeliveryInStock  string `gorm:"column:delivery_in_stock;type:varchar(255)" json:"delivery_in_stock" form:"delivery_in_stock"`
 	DeliveryOutStock string `gorm:"column:delivery_out_stock;type:varchar(255)" json:"delivery_out_stock" form:"delivery_out_stock"`
-	Usage            string `gorm:"column:_usage_;type:text" json:"usage" form:"usage"`
+	Usage            string `gorm:"column:usage;type:text" json:"usage" form:"usage"`
 
 	ImageLink        string `gorm:"column:image_link" json:"image_link"`
 	ExistsInDatabase bool   `gorm:"-" json:"exists_in_database"`

app/repos/productDescriptionRepo/productDescriptionRepo.go

@@ -52,7 +52,7 @@ func (r *ProductDescriptionRepo) GetProductDescription(productID uint, productid
 			`+dbmodel.PsProductLangCols.AvailableLater.TabCol()+` AS available_later,
 			`+dbmodel.PsProductLangCols.DeliveryInStock.TabCol()+` AS delivery_in_stock,
 			`+dbmodel.PsProductLangCols.DeliveryOutStock.TabCol()+` AS delivery_out_stock,
-			`+dbmodel.PsProductLangCols.Usage.TabCol()+` AS _usage_,
+			`+dbmodel.PsProductLangCols.Usage.TabCol()+` AS `+"`usage`"+`,
 			CONCAT(?, '/', `+dbmodel.PsImageShopCols.IDImage.TabCol()+`, '-large_default/', `+dbmodel.PsProductLangCols.LinkRewrite.TabCol()+`, '.webp') AS image_link
 		`, config.Get().Image.ImagePrefix).
 		Joins("JOIN " + dbmodel.TableNamePsImageShop +
@@ -74,10 +74,10 @@ func (r *ProductDescriptionRepo) GetProductDescription(productID uint, productid
 
 // If it doesn't exist, returns an error.
 func (r *ProductDescriptionRepo) CreateIfDoesNotExist(productID uint, productid_lang uint) error {
-	record := model.ProductDescription{
+	record := dbmodel.PsProductLang{
-		ProductID: productID,
+		IDProduct: int32(productID),
-		ShopID:    constdata.SHOP_ID,
+		IDShop:    int32(constdata.SHOP_ID),
-		LangID:    productid_lang,
+		IDLang:    int32(productid_lang),
 	}
 
 	err := db.Get().

app/repos/searchRepo/searchRepo.go

@@ -32,12 +32,12 @@ func New() UISearchRepo {
 }
 
 func (r *SearchRepo) Search(index string, body []byte) (*SearchProxyResponse, error) {
-	url := fmt.Sprintf("%s/indexes/%s/search", r.cfg.MeiliSearch.ServerURL, index)
+	url := fmt.Sprintf("%s/indexes/%s/search", r.cfg.MailiSearch.ServerURL, index)
 	return r.doRequest(http.MethodPost, url, body)
 }
 
 func (r *SearchRepo) GetIndexSettings(index string) (*SearchProxyResponse, error) {
-	url := fmt.Sprintf("%s/indexes/%s/settings", r.cfg.MeiliSearch.ServerURL, index)
+	url := fmt.Sprintf("%s/indexes/%s/settings", r.cfg.MailiSearch.ServerURL, index)
 	return r.doRequest(http.MethodGet, url, nil)
 }
 
@@ -55,8 +55,8 @@ func (r *SearchRepo) doRequest(method, url string, body []byte) (*SearchProxyRes
 	}
 
 	req.Header.Set("Content-Type", "application/json")
-	if r.cfg.MeiliSearch.ApiKey != "" {
+	if r.cfg.MailiSearch.ApiKey != "" {
-		req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", r.cfg.MeiliSearch.ApiKey))
+		req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", r.cfg.MailiSearch.ApiKey))
 	}
 
 	client := &http.Client{}

app/repos/storageRepo/storageRepo.go

@@ -1,178 +0,0 @@
-package storageRepo
-
-import (
-	"io"
-	"os"
-	"path/filepath"
-	"time"
-
-	"git.ma-al.com/goc_daniel/b2b/app/db"
-	"git.ma-al.com/goc_daniel/b2b/app/model"
-)
-
-type UIStorageRepo interface {
-	SaveWebdavToken(user_id uint, hash_token string, expires_at *time.Time) error
-	EntryInfo(abs_path string) (os.FileInfo, error)
-	ListContent(abs_path string) (*[]model.EntryInList, error)
-	OpenFile(abs_path string) (*os.File, error)
-	Put(abs_path string, src io.Reader) error
-	Delete(abs_path string) error
-	Mkcol(abs_path string) error
-	Move(src_abs_path string, dest_abs_path string) error
-	Copy(src_abs_path string, dest_abs_path string) error
-}
-
-type StorageRepo struct{}
-
-func New() UIStorageRepo {
-	return &StorageRepo{}
-}
-
-func (r *StorageRepo) SaveWebdavToken(user_id uint, hash_token string, expires_at *time.Time) error {
-	return db.DB.
-		Table("b2b_customers").
-		Where("id = ?", user_id).
-		Updates(map[string]interface{}{
-			"webdav_token":   hash_token,
-			"webdav_expires": expires_at,
-		}).
-		Error
-}
-
-func (r *StorageRepo) EntryInfo(abs_path string) (os.FileInfo, error) {
-	return os.Stat(abs_path)
-}
-
-func (r *StorageRepo) ListContent(abs_path string) (*[]model.EntryInList, error) {
-	entries, err := os.ReadDir(abs_path)
-	if err != nil {
-		return nil, err
-	}
-
-	var entries_in_list []model.EntryInList
-
-	for _, entry := range entries {
-		var next_entry_in_list model.EntryInList
-		next_entry_in_list.Name = entry.Name()
-		next_entry_in_list.IsFolder = entry.IsDir()
-
-		entries_in_list = append(entries_in_list, next_entry_in_list)
-	}
-
-	return &entries_in_list, nil
-}
-
-func (r *StorageRepo) OpenFile(abs_path string) (*os.File, error) {
-	return os.Open(abs_path)
-}
-
-func (r *StorageRepo) Put(abs_path string, src io.Reader) error {
-	// Write to a temp file in the same directory, then atomically rename.
-	tmp, err := os.CreateTemp(filepath.Dir(abs_path), ".put-*")
-	if err != nil {
-		return err
-	}
-	tmp_name := tmp.Name()
-	cleanup_tmp := true
-	defer func() {
-		_ = tmp.Close()
-		if cleanup_tmp {
-			_ = os.Remove(tmp_name)
-		}
-	}()
-
-	_, err = io.Copy(tmp, src)
-	if err != nil {
-		return err
-	}
-
-	err = tmp.Sync()
-	if err != nil {
-		return err
-	}
-	err = tmp.Close()
-	if err != nil {
-		return err
-	}
-
-	err = os.Chmod(tmp_name, 0o644)
-	if err != nil {
-		return err
-	}
-
-	err = os.Rename(tmp_name, abs_path)
-	if err != nil {
-		return err
-	}
-
-	cleanup_tmp = false
-	return nil
-}
-
-func (r *StorageRepo) Delete(abs_path string) error {
-	return os.RemoveAll(abs_path)
-}
-
-func (r *StorageRepo) Mkcol(abs_path string) error {
-	return os.Mkdir(abs_path, 0755)
-}
-
-func (r *StorageRepo) Move(src_abs_path string, dest_abs_path string) error {
-	return os.Rename(src_abs_path, dest_abs_path)
-}
-
-func (r *StorageRepo) Copy(src_abs_path string, dest_abs_path string) error {
-	info, err := os.Stat(src_abs_path)
-	if err != nil {
-		return err
-	}
-
-	if info.IsDir() {
-		return r.copyDir(src_abs_path, dest_abs_path)
-	} else {
-		return r.copyFile(src_abs_path, dest_abs_path)
-	}
-}
-
-func (r *StorageRepo) copyFile(src_abs_path string, dest_abs_path string) error {
-	f, err := os.Open(src_abs_path)
-	if err != nil {
-		return err
-	}
-	defer f.Close()
-
-	err = r.Put(dest_abs_path, f)
-	return err
-}
-
-func (r *StorageRepo) copyDir(src_abs_path string, dest_abs_path string) error {
-	if err := os.Mkdir(dest_abs_path, 0755); err != nil {
-		return err
-	}
-
-	entries, err := os.ReadDir(src_abs_path)
-	if err != nil {
-		return err
-	}
-
-	for _, entry := range entries {
-
-		entity_src_path := filepath.Join(src_abs_path, entry.Name())
-		entity_dst_Path := filepath.Join(dest_abs_path, entry.Name())
-
-		if entry.IsDir() {
-			err = r.copyDir(entity_src_path, entity_dst_Path)
-			if err != nil {
-				return err
-			}
-
-		} else {
-			err = r.copyFile(entity_src_path, entity_dst_Path)
-			if err != nil {
-				return err
-			}
-		}
-	}
-
-	return nil
-}

app/service/authService/auth.go

@@ -452,19 +452,6 @@ func (s *AuthService) GetUserByEmail(email string) (*model.Customer, error) {
 	return &user, nil
 }
 
-func (s *AuthService) GetUserByWebdavToken(rawToken string) (*model.Customer, error) {
-	tokenHash := hashToken(rawToken)
-
-	var user model.Customer
-	if err := s.db.Where("webdav_token = ?", tokenHash).First(&user).Error; err != nil {
-		if errors.Is(err, gorm.ErrRecordNotFound) {
-			return nil, responseErrors.ErrUserNotFound
-		}
-		return nil, fmt.Errorf("database error: %w", err)
-	}
-	return &user, nil
-}
-
 // createRefreshToken generates a random opaque token, stores its hash in the DB, and returns the raw token.
 func (s *AuthService) createRefreshToken(userID uint) (string, error) {
 	// Generate 32 random bytes → 64-char hex string

app/service/emailService/email.go

@@ -10,7 +10,6 @@ import (
 	"git.ma-al.com/goc_daniel/b2b/app/config"
 	"git.ma-al.com/goc_daniel/b2b/app/service/langsService"
 	"git.ma-al.com/goc_daniel/b2b/app/templ/emails"
-	constdata "git.ma-al.com/goc_daniel/b2b/app/utils/const_data"
 	"git.ma-al.com/goc_daniel/b2b/app/utils/i18n"
 	"git.ma-al.com/goc_daniel/b2b/app/view"
 )
@@ -134,6 +133,6 @@ func (s *EmailService) passwordResetEmailTemplate(name, resetURL string, langID
 // newUserAdminNotificationTemplate returns the HTML template for admin notification
 func (s *EmailService) newUserAdminNotificationTemplate(userEmail, userName, baseURL string) string {
 	buf := bytes.Buffer{}
-	emails.EmailAdminNotificationWrapper(view.EmailLayout[view.EmailAdminNotificationData]{LangID: constdata.ADMIN_NOTIFICATION_LANGUAGE, Data: view.EmailAdminNotificationData{UserEmail: userEmail, UserName: userName, BaseURL: baseURL}}).Render(context.Background(), &buf)
+	emails.EmailAdminNotificationWrapper(view.EmailLayout[view.EmailAdminNotificationData]{LangID: 2, Data: view.EmailAdminNotificationData{UserEmail: userEmail, UserName: userName, BaseURL: baseURL}}).Render(context.Background(), &buf)
 	return buf.String()
 }

app/service/meiliService/meiliService.go

@@ -27,8 +27,8 @@ type MeiliService struct {
 func New() *MeiliService {
 
 	client := meilisearch.New(
-		config.Get().MeiliSearch.ServerURL,
+		config.Get().MailiSearch.ServerURL,
-		meilisearch.WithAPIKey(config.Get().MeiliSearch.ApiKey),
+		meilisearch.WithAPIKey(config.Get().MailiSearch.ApiKey),
 	)
 
 	return &MeiliService{

app/service/productTranslationService/productTranslationService.go

@@ -89,13 +89,24 @@ func (s *ProductTranslationService) GetProductDescription(userID uint, productID
 // Updates relevant fields with the "updates" map
 func (s *ProductTranslationService) SaveProductDescription(userID uint, productID uint, productLangID uint, updates map[string]string) error {
 	// only some fields can be affected
-	allowedFields := []string{"description", "description_short", "meta_description", "meta_title", "name", "available_now", "available_later", "usage"}
+	allowedFields := []string{"description", "description_short", "link_rewrite", "meta_description", "meta_keywords", "meta_title", "name",
+		"available_now", "available_later", "delivery_in_stock", "delivery_out_stock", "usage"}
 	for key := range updates {
 		if !slices.Contains(allowedFields, key) {
 			return responseErrors.ErrBadField
 		}
 	}
 
+	if text, exists := updates["link_rewrite"]; exists {
+		// sanitize and check that link_rewrite is a valid url slug
+		sanitized := SanitizeSlug(text)
+		if !IsValidSlug(sanitized) {
+			return responseErrors.ErrInvalidURLSlug
+		}
+
+		updates["link_rewrite"] = sanitized
+	}
+
 	// check that fields description, description_short and usage, if they exist, have a valid html format
 	mustBeHTML := []string{"description", "description_short", "usage"}
 	for i := 0; i < len(mustBeHTML); i++ {
@@ -136,20 +147,28 @@ func (s *ProductTranslationService) TranslateProductDescription(userID uint, pro
 
 	fields := []*string{&productDescription.Description,
 		&productDescription.DescriptionShort,
+		&productDescription.LinkRewrite,
 		&productDescription.MetaDescription,
+		&productDescription.MetaKeywords,
 		&productDescription.MetaTitle,
 		&productDescription.Name,
 		&productDescription.AvailableNow,
 		&productDescription.AvailableLater,
+		&productDescription.DeliveryInStock,
+		&productDescription.DeliveryOutStock,
 		&productDescription.Usage,
 	}
 	keys := []string{"translation_of_product_description",
 		"translation_of_product_short_description",
+		"translation_of_product_url_link",
 		"translation_of_product_meta_description",
+		"translation_of_product_meta_keywords",
 		"translation_of_product_meta_title",
 		"translation_of_product_name",
-		"translation_of_product_available_now",
+		"translation_of_product_available_now_message",
-		"translation_of_product_available_later",
+		"translation_of_product_available_later_message",
+		"translation_of_product_delivery_in_stock_message",
+		"translation_of_product_delivery_out_stock_message",
 		"translation_of_product_usage",
 	}
 

app/service/productTranslationService/sanitizeURLSlug.go

@@ -0,0 +1,69 @@
+package productTranslationService
+
+import (
+	"strings"
+	"unicode"
+
+	constdata "git.ma-al.com/goc_daniel/b2b/app/utils/const_data"
+	"github.com/dlclark/regexp2"
+	"golang.org/x/text/runes"
+	"golang.org/x/text/transform"
+	"golang.org/x/text/unicode/norm"
+)
+
+func IsValidSlug(s string) bool {
+	var slug_regex2 = regexp2.MustCompile(constdata.SLUG_REGEX, regexp2.None)
+
+	ok, _ := slug_regex2.MatchString(s)
+	return ok
+}
+
+func SanitizeSlug(s string) string {
+	s = strings.TrimSpace(strings.ToLower(s))
+
+	// First apply explicit transliteration for language-specific letters.
+	s = transliterateWithTable(s)
+
+	// Then normalize and strip any remaining combining marks.
+	s = removeDiacritics(s)
+
+	// Replace all non-alphanumeric runs with "-"
+	var non_alphanum_regex2 = regexp2.MustCompile(constdata.NON_ALNUM_REGEX, regexp2.None)
+	s, _ = non_alphanum_regex2.Replace(s, "-", -1, -1)
+
+	// Collapse repeated "-" and trim edges
+	var multi_dash_regex2 = regexp2.MustCompile(constdata.MULTI_DASH_REGEX, regexp2.None)
+	s, _ = multi_dash_regex2.Replace(s, "-", -1, -1)
+
+	s = strings.Trim(s, "-")
+
+	return s
+}
+
+func transliterateWithTable(s string) string {
+	var b strings.Builder
+	b.Grow(len(s))
+
+	for _, r := range s {
+		if repl, ok := constdata.TRANSLITERATION_TABLE[r]; ok {
+			b.WriteString(repl)
+		} else {
+			b.WriteRune(r)
+		}
+	}
+
+	return b.String()
+}
+
+func removeDiacritics(s string) string {
+	t := transform.Chain(
+		norm.NFD,
+		runes.Remove(runes.In(unicode.Mn)),
+		norm.NFC,
+	)
+	out, _, err := transform.String(t, s)
+	if err != nil {
+		return s
+	}
+	return out
+}

app/service/storageService/storageService.go

@@ -1,283 +0,0 @@
-package storageService
-
-import (
-	"crypto/rand"
-	"crypto/sha256"
-	"encoding/hex"
-	"encoding/xml"
-	"io"
-	"net/http"
-	"net/url"
-	"os"
-	"path"
-	"path/filepath"
-	"strconv"
-	"strings"
-	"time"
-
-	"git.ma-al.com/goc_daniel/b2b/app/model"
-	"git.ma-al.com/goc_daniel/b2b/app/repos/storageRepo"
-	constdata "git.ma-al.com/goc_daniel/b2b/app/utils/const_data"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/responseErrors"
-)
-
-type StorageService struct {
-	storageRepo storageRepo.UIStorageRepo
-}
-
-func New() *StorageService {
-	return &StorageService{
-		storageRepo: storageRepo.New(),
-	}
-}
-
-func (s *StorageService) EntryInfo(abs_path string) (os.FileInfo, error) {
-	return s.storageRepo.EntryInfo(abs_path)
-}
-
-func (s *StorageService) NewWebdavToken(user_id uint) (string, error) {
-	b := make([]byte, constdata.NBYTES_IN_WEBDAV_TOKEN)
-
-	_, err := rand.Read(b)
-	if err != nil {
-		return "", err
-	}
-
-	raw_token := hex.EncodeToString(b)
-	hash_token_bytes := sha256.Sum256([]byte(raw_token))
-	hash_token := hex.EncodeToString(hash_token_bytes[:])
-	expires_at := time.Now().Add(24 * time.Hour)
-
-	return raw_token, s.storageRepo.SaveWebdavToken(user_id, hash_token, &expires_at)
-}
-
-func (s *StorageService) DownloadFilePrep(abs_path string) (*os.File, string, int64, error) {
-	info, err := s.storageRepo.EntryInfo(abs_path)
-	if err != nil || info.IsDir() {
-		return nil, "", 0, responseErrors.ErrFileDoesNotExist
-	}
-
-	f, err := s.storageRepo.OpenFile(abs_path)
-	if err != nil {
-		return nil, "", 0, err
-	}
-
-	return f, filepath.Base(abs_path), info.Size(), nil
-}
-
-func (s *StorageService) ListContent(abs_path string) (*[]model.EntryInList, error) {
-	info, err := s.storageRepo.EntryInfo(abs_path)
-	if err != nil || !info.IsDir() {
-		return nil, responseErrors.ErrFolderDoesNotExist
-	}
-
-	entries_in_list, err := s.storageRepo.ListContent(abs_path)
-	return entries_in_list, err
-}
-
-func (s *StorageService) Propfind(root string, abs_path string, depth string) (string, error) {
-	href := href(root, abs_path)
-
-	max_depth := 0
-	switch depth {
-	case "0":
-		max_depth = 0
-	case "1":
-		max_depth = 1
-	case "infinity":
-		max_depth = 32
-	default:
-		max_depth = 0
-	}
-
-	info, err := s.storageRepo.EntryInfo(abs_path)
-	if err != nil {
-		return "", err
-	}
-
-	xml := `<?xml version="1.0" encoding="utf-8"?>` +
-		`<D:multistatus xmlns:D="DAV:">`
-
-	if info.IsDir() {
-		href = ensureTrailingSlash(href)
-		next_xml, err := buildDirPropResponse(abs_path, href, info, max_depth)
-		if err != nil {
-			return "", err
-		}
-		xml += next_xml
-	} else {
-		xml += buildFilePropResponse(href, info)
-	}
-
-	xml += `</D:multistatus>`
-
-	return xml, nil
-}
-
-func (s *StorageService) Put(abs_path string, src io.Reader) error {
-	return s.storageRepo.Put(abs_path, src)
-}
-
-func (s *StorageService) Delete(abs_path string) error {
-	return s.storageRepo.Delete(abs_path)
-}
-
-func (s *StorageService) Mkcol(abs_path string) error {
-	_, err := s.storageRepo.EntryInfo(abs_path)
-	if err == nil {
-		return responseErrors.ErrNameTaken
-	} else if os.IsNotExist(err) {
-		return s.storageRepo.Mkcol(abs_path)
-	} else {
-		return err
-	}
-}
-
-func (s *StorageService) Move(src_abs_path string, dest_abs_path string) error {
-	return s.storageRepo.Move(src_abs_path, dest_abs_path)
-}
-
-func (s *StorageService) Copy(src_abs_path string, dest_abs_path string) error {
-	return s.storageRepo.Copy(src_abs_path, dest_abs_path)
-}
-
-func buildFilePropResponse(href string, info os.FileInfo) string {
-	name := info.Name()
-	return "" +
-		"<D:response>" +
-		"<D:href>" + xmlEscape(href) + "</D:href>" +
-		"<D:propstat>" +
-		"<D:prop>" +
-		"<D:displayname>" + xmlEscape(name) + "</D:displayname>" +
-		"<D:getcontentlength>" + strconv.FormatInt(info.Size(), 10) + "</D:getcontentlength>" +
-		"<D:getlastmodified>" + xmlEscape(info.ModTime().UTC().Format(http.TimeFormat)) + "</D:getlastmodified>" +
-		"<D:resourcetype/>" +
-		"</D:prop>" +
-		"<D:status>HTTP/1.1 200 OK</D:status>" +
-		"</D:propstat>" +
-		"</D:response>"
-}
-
-func buildDirPropResponse(abs_path string, href string, info os.FileInfo, max_depth int) (string, error) {
-	name := info.Name()
-
-	xml := "" +
-		"<D:response>" +
-		"<D:href>" + xmlEscape(ensureTrailingSlash(href)) + "</D:href>" +
-		"<D:propstat>" +
-		"<D:prop>" +
-		"<D:displayname>" + xmlEscape(name) + "</D:displayname>" +
-		"<D:resourcetype><D:collection/></D:resourcetype>" +
-		"<D:getlastmodified>" + xmlEscape(info.ModTime().UTC().Format(http.TimeFormat)) + "</D:getlastmodified>" +
-		"</D:prop>" +
-		"<D:status>HTTP/1.1 200 OK</D:status>" +
-		"</D:propstat>" +
-		"</D:response>"
-
-	if max_depth <= 0 {
-		return xml, nil
-	}
-
-	entries, err := os.ReadDir(abs_path)
-	if err != nil {
-		return "", err
-	}
-
-	for _, entry := range entries {
-		child_abs_path := filepath.Join(abs_path, entry.Name())
-		child_href := path.Join(href, entry.Name())
-
-		child_info, err := entry.Info()
-		if err != nil {
-			return "", err
-		}
-
-		var xml_next string
-		if entry.IsDir() {
-			xml_next, err = buildDirPropResponse(child_abs_path, ensureTrailingSlash(child_href), child_info, max_depth-1)
-		} else {
-			xml_next = buildFilePropResponse(child_href, child_info)
-		}
-
-		if err != nil {
-			return "", err
-		}
-		xml += xml_next
-	}
-
-	return xml, nil
-}
-
-func ensureTrailingSlash(s string) string {
-	if s == "/" {
-		return s
-	}
-	if !strings.HasSuffix(s, "/") {
-		return s + "/"
-	}
-	return s
-}
-
-func xmlEscape(s string) string {
-	var b strings.Builder
-	xml.EscapeText(&b, []byte(s))
-	return b.String()
-}
-
-// Returns href based on file's absolute path. Doesn't validate abs_path
-func href(root string, abs_path string) string {
-	rel, _ := filepath.Rel(root, abs_path)
-
-	if rel == "." {
-		return constdata.WEBDAV_HREF_ROOT + "/"
-	}
-
-	rel = filepath.ToSlash(rel)
-
-	parts := strings.Split(rel, "/")
-	for i, p := range parts {
-		parts[i] = url.PathEscape(p)
-	}
-
-	return strings.TrimRight(constdata.WEBDAV_HREF_ROOT, "/") + "/" + strings.Join(parts, "/")
-}
-
-// AbsPath extracts an absolute path and validates it
-func (s *StorageService) AbsPath(root string, relative_path string) (string, error) {
-	decoded, err := url.PathUnescape(relative_path)
-	if err != nil {
-		return "", err
-	}
-
-	clean_name := filepath.Clean(decoded)
-	full_path := filepath.Join(root, clean_name)
-
-	if full_path != root && !strings.HasPrefix(full_path, root+"/") {
-		return "", responseErrors.ErrAccessDenied
-	}
-
-	return full_path, nil
-}
-
-// ObtainDestPath extracts the absolute path based on URL absolute path
-func (s *StorageService) ObtainDestPath(root string, dest_path string) (string, error) {
-	idx := strings.Index(dest_path, constdata.WEBDAV_TRIMMED_ROOT)
-	if idx == -1 {
-		return "", responseErrors.ErrAccessDenied
-	}
-	prefix_removed := dest_path[idx+len(constdata.WEBDAV_TRIMMED_ROOT):]
-
-	decoded, err := url.PathUnescape(prefix_removed)
-	if err != nil {
-		return "", err
-	}
-
-	clean_dest_path := filepath.Clean(decoded)
-	if clean_dest_path == "" {
-		return root, nil
-	} else if strings.HasPrefix(clean_dest_path, "/") {
-		return root + "/" + strings.TrimPrefix(clean_dest_path, "/"), nil
-	} else {
-		return "", responseErrors.ErrAccessDenied
-	}
-}

app/utils/const_data/consts.go

@@ -4,7 +4,6 @@ package constdata
 const PASSWORD_VALIDATION_REGEX = `^(?=.*[a-z])(?=.*[A-Z])(?=.*\d).{10,}$`
 const SHOP_ID = 1
 const SHOP_DEFAULT_LANGUAGE = 1
-const ADMIN_NOTIFICATION_LANGUAGE = 2
 
 // CATEGORY_TREE_ROOT_ID corresponds to id_category in ps_category which has is_root_category=1
 const CATEGORY_TREE_ROOT_ID = 2
@@ -14,7 +13,27 @@ const DEFAULT_NEW_CART_NAME = "new cart"
 
 const USER_LOCALE = "user"
 
-// WEBDAV
+// Slug sanitization
-const NBYTES_IN_WEBDAV_TOKEN = 32
+const NON_ALNUM_REGEX = `[^a-z0-9]+`
-const WEBDAV_HREF_ROOT = "http://localhost:3000/api/v1/webdav/storage"
+const MULTI_DASH_REGEX = `-+`
-const WEBDAV_TRIMMED_ROOT = "localhost:3000/api/v1/webdav/storage"
+const SLUG_REGEX = `^[a-z0-9]+(?:-[a-z0-9]+)*$`
+
+// Currently supports only German+Polish specific cases
+var TRANSLITERATION_TABLE = map[rune]string{
+	// German
+	'ä': "ae",
+	'ö': "oe",
+	'ü': "ue",
+	'ß': "ss",
+
+	// Polish
+	'ą': "a",
+	'ć': "c",
+	'ę': "e",
+	'ł': "l",
+	'ń': "n",
+	'ó': "o",
+	'ś': "s",
+	'ż': "z",
+	'ź': "z",
+}

app/utils/i18n/i18n.go

@@ -8,7 +8,6 @@ import (
 	"sync"
 
 	"git.ma-al.com/goc_daniel/b2b/app/model"
-	"git.ma-al.com/goc_daniel/b2b/app/utils/localeExtractor"
 	"github.com/gofiber/fiber/v3"
 )
 
@@ -178,7 +177,7 @@ func (s *TranslationsStore) ReloadTranslations(translations []model.Translation)
 
 // T_ is meant to be used to translate error messages and other system communicates.
 func T_[T ~string](c fiber.Ctx, key T, params ...interface{}) string {
-	if langID, ok := localeExtractor.GetLangID(c); ok {
+	if langID, ok := c.Locals("langID").(uint); ok {
 		parts := strings.Split(string(key), ".")
 
 		if len(parts) >= 2 {

app/utils/localeExtractor/localeExtractor.go

@@ -21,11 +21,3 @@ func GetUserID(c fiber.Ctx) (uint, bool) {
 	}
 	return user_locale.User.ID, true
 }
-
-func GetOriginalUserRole(c fiber.Ctx) (model.CustomerRole, bool) {
-	user_locale, ok := c.Locals(constdata.USER_LOCALE).(*model.UserLocale)
-	if !ok || user_locale.OriginalUser == nil {
-		return "", false
-	}
-	return user_locale.OriginalUser.Role, true
-}

app/utils/responseErrors/responseErrors.go

@@ -9,14 +9,13 @@ import (
 
 var (
 	// Typed errors for request validation and authentication
-	ErrInvalidBody         = errors.New("invalid request body")
+	ErrInvalidBody      = errors.New("invalid request body")
-	ErrNotAuthenticated    = errors.New("not authenticated")
+	ErrNotAuthenticated = errors.New("not authenticated")
-	ErrUserNotFound        = errors.New("user not found")
+	ErrUserNotFound     = errors.New("user not found")
-	ErrUserInactive        = errors.New("user account is inactive")
+	ErrUserInactive     = errors.New("user account is inactive")
-	ErrInvalidToken        = errors.New("invalid token")
+	ErrInvalidToken     = errors.New("invalid token")
-	ErrTokenExpired        = errors.New("token has expired")
+	ErrTokenExpired     = errors.New("token has expired")
-	ErrTokenRequired       = errors.New("token is required")
+	ErrTokenRequired    = errors.New("token is required")
-	ErrAdminAccessRequired = errors.New("admin access is required")
 
 	// Typed errors for logging in and registering
 	ErrInvalidCredentials    = errors.New("invalid email or password")
@@ -43,6 +42,7 @@ var (
 	// Typed errors for product description handler
 	ErrBadAttribute   = errors.New("bad or missing attribute value in header")
 	ErrBadField       = errors.New("this field can not be updated")
+	ErrInvalidURLSlug = errors.New("URL slug does not obey the industry standard")
 	ErrInvalidXHTML   = errors.New("text is not in xhtml format")
 	ErrAIResponseFail = errors.New("AI responded with failure")
 	ErrAIBadOutput    = errors.New("AI response does not obey the format")
@@ -60,13 +60,6 @@ var (
 	ErrMaxAmtOfCartsReached              = errors.New("maximal amount of carts reached")
 	ErrUserHasNoSuchCart                 = errors.New("user does not have cart with given id")
 	ErrProductOrItsVariationDoesNotExist = errors.New("product or its variation with given ids does not exist")
-
-	// Typed errors for storage
-	ErrAccessDenied             = errors.New("access denied!")
-	ErrFolderDoesNotExist       = errors.New("folder does not exist")
-	ErrFileDoesNotExist         = errors.New("file does not exist")
-	ErrNameTaken                = errors.New("name taken")
-	ErrMissingFileFieldDocument = errors.New("missing file field 'document'")
 )
 
 // Error represents an error with HTTP status code
@@ -119,8 +112,6 @@ func GetErrorCode(c fiber.Ctx, err error) string {
 		return i18n.T_(c, "error.err_token_required")
 	case errors.Is(err, ErrRefreshTokenRequired):
 		return i18n.T_(c, "error.err_refresh_token_required")
-	case errors.Is(err, ErrAdminAccessRequired):
-		return i18n.T_(c, "error.err_admin_access_required")
 	case errors.Is(err, ErrBadLangID):
 		return i18n.T_(c, "error.err_bad_lang_id")
 	case errors.Is(err, ErrBadCountryID):
@@ -146,6 +137,8 @@ func GetErrorCode(c fiber.Ctx, err error) string {
 		return i18n.T_(c, "error.err_bad_attribute")
 	case errors.Is(err, ErrBadField):
 		return i18n.T_(c, "error.err_bad_field")
+	case errors.Is(err, ErrInvalidURLSlug):
+		return i18n.T_(c, "error.invalid_url_slug")
 	case errors.Is(err, ErrInvalidXHTML):
 		return i18n.T_(c, "error.err_invalid_html")
 	case errors.Is(err, ErrAIResponseFail):
@@ -172,17 +165,6 @@ func GetErrorCode(c fiber.Ctx, err error) string {
 	case errors.Is(err, ErrProductOrItsVariationDoesNotExist):
 		return i18n.T_(c, "error.product_or_its_variation_does_not_exist")
 
-	case errors.Is(err, ErrAccessDenied):
-		return i18n.T_(c, "error.access_denied")
-	case errors.Is(err, ErrFolderDoesNotExist):
-		return i18n.T_(c, "error.folder_does_not_exist")
-	case errors.Is(err, ErrFileDoesNotExist):
-		return i18n.T_(c, "error.file_does_not_exist")
-	case errors.Is(err, ErrNameTaken):
-		return i18n.T_(c, "error.name_taken")
-	case errors.Is(err, ErrMissingFileFieldDocument):
-		return i18n.T_(c, "error.missing_file_field_document")
-
 	default:
 		return i18n.T_(c, "error.err_internal_server_error")
 	}
@@ -205,7 +187,6 @@ func GetErrorStatus(err error) int {
 		errors.Is(err, ErrEmailPasswordRequired),
 		errors.Is(err, ErrTokenRequired),
 		errors.Is(err, ErrRefreshTokenRequired),
-		errors.Is(err, ErrAdminAccessRequired),
 		errors.Is(err, ErrBadLangID),
 		errors.Is(err, ErrBadCountryID),
 		errors.Is(err, ErrPasswordsDoNotMatch),
@@ -217,6 +198,7 @@ func GetErrorStatus(err error) int {
 		errors.Is(err, ErrInvalidPassword),
 		errors.Is(err, ErrBadAttribute),
 		errors.Is(err, ErrBadField),
+		errors.Is(err, ErrInvalidURLSlug),
 		errors.Is(err, ErrInvalidXHTML),
 		errors.Is(err, ErrBadPaging),
 		errors.Is(err, ErrNoRootFound),
@@ -225,12 +207,7 @@ func GetErrorStatus(err error) int {
 		errors.Is(err, ErrRootNeverReached),
 		errors.Is(err, ErrMaxAmtOfCartsReached),
 		errors.Is(err, ErrUserHasNoSuchCart),
-		errors.Is(err, ErrProductOrItsVariationDoesNotExist),
+		errors.Is(err, ErrProductOrItsVariationDoesNotExist):
-		errors.Is(err, ErrAccessDenied),
-		errors.Is(err, ErrFolderDoesNotExist),
-		errors.Is(err, ErrFileDoesNotExist),
-		errors.Is(err, ErrNameTaken),
-		errors.Is(err, ErrMissingFileFieldDocument):
 		return fiber.StatusBadRequest
 	case errors.Is(err, ErrEmailExists):
 		return fiber.StatusConflict

bruno/b2b-daniel/add-new-cart.yml

@@ -1,7 +1,7 @@
 info:
   name: add-new-cart
   type: http
-  seq: 1
+  seq: 11
 
 http:
   method: GET

bruno/b2b-daniel/add-product-to-cart (1).yml

@@ -1,7 +1,7 @@
 info:
   name: add-product-to-cart (1)
   type: http
-  seq: 1
+  seq: 16
 
 http:
   method: GET

bruno/b2b-daniel/add-product-to-cart.yml

@@ -1,7 +1,7 @@
 info:
   name: add-product-to-cart
   type: http
-  seq: 14
+  seq: 15
 
 http:
   method: GET

bruno/b2b-daniel/change-cart-name.yml

@@ -1,7 +1,7 @@
 info:
   name: change-cart-name
   type: http
-  seq: 1
+  seq: 12
 
 http:
   method: GET

bruno/b2b-daniel/create-index.yml

@@ -1,11 +1,11 @@
 info:
   name: create-index
   type: http
-  seq: 1
+  seq: 7
 
 http:
   method: GET
-  url: http://localhost:3000/api/v1/restricted/search/create-index
+  url: http://localhost:3000/api/v1/restricted/meili-search/create-index
   auth: inherit
 
 settings:

bruno/b2b-daniel/get-breadcrumb.yml

@@ -1,7 +1,7 @@
 info:
   name: get-breadcrumb
   type: http
-  seq: 1
+  seq: 18
 
 http:
   method: GET

bruno/b2b-daniel/get-category-tree.yml

@@ -1,7 +1,7 @@
 info:
   name: get-category-tree
   type: http
-  seq: 1
+  seq: 5
 
 http:
   method: GET

bruno/b2b-daniel/get-indexes.yml

@@ -1,7 +1,7 @@
 info:
   name: get-indexes
   type: http
-  seq: 1
+  seq: 9
 
 http:
   method: GET

bruno/b2b-daniel/get-product-description.yml

@@ -1,7 +1,7 @@
 info:
   name: get-product-description
   type: http
-  seq: 1
+  seq: 17
 
 http:
   method: GET

bruno/b2b-daniel/get_countries.yml

@@ -1,7 +1,7 @@
 info:
   name: get_countries
   type: http
-  seq: 1
+  seq: 4
 
 http:
   method: GET

bruno/b2b-daniel/list-users.yml

@@ -1,7 +1,7 @@
 info:
   name: list-users
   type: http
-  seq: 1
+  seq: 2
 
 http:
   method: GET

bruno/b2b-daniel/remove-index.yml

@@ -1,7 +1,7 @@
 info:
   name: remove-index
   type: http
-  seq: 1
+  seq: 8
 
 http:
   method: DELETE

bruno/b2b-daniel/retrieve-cart.yml

@@ -1,7 +1,7 @@
 info:
   name: retrieve-cart
   type: http
-  seq: 1
+  seq: 14
 
 http:
   method: GET

bruno/b2b-daniel/retrieve-carts-info.yml

@@ -1,7 +1,7 @@
 info:
   name: retrieve-carts-info
   type: http
-  seq: 1
+  seq: 13
 
 http:
   method: GET

bruno/b2b-daniel/search.yml

@@ -1,11 +1,11 @@
 info:
   name: search
   type: http
-  seq: 1
+  seq: 10
 
 http:
   method: GET
-  url: http://localhost:3000/api/v1/restricted/search/search?query=w&limit=4&id_category=0&price_lower_bound=60.0&price_upper_bound=70.0
+  url: http://localhost:3000/api/v1/restricted/meili-search/search?query=w&limit=4&id_category=0&price_lower_bound=60.0&price_upper_bound=70.0
   params:
     - name: query
       value: w

bruno/b2b-daniel/test.yml

@@ -1,11 +1,11 @@
 info:
   name: test
   type: http
-  seq: 1
+  seq: 6
 
 http:
   method: GET
-  url: http://localhost:3000/api/v1/restricted/search/test
+  url: http://localhost:3000/api/v1/restricted/meili-search/test
   auth: inherit
 
 settings:

bruno/b2b-daniel/translate-product-description.yml

@@ -1,7 +1,7 @@
 info:
   name: translate-product-description
   type: http
-  seq: 21
+  seq: 20
 
 http:
   method: GET

bruno/b2b-daniel/update-choice.yml

@@ -1,7 +1,7 @@
 info:
   name: update-choice
   type: http
-  seq: 1
+  seq: 3
 
 http:
   method: POST

bruno/b2b_daniel/auth/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: auth
-  type: folder
-  seq: 1
-
-request:
-  auth: inherit

bruno/b2b_daniel/carts/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: carts
-  type: folder
-  seq: 7
-
-request:
-  auth: inherit

bruno/b2b_daniel/langs-and-countries/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: langs-and-countries
-  type: folder
-  seq: 4
-
-request:
-  auth: inherit

bruno/b2b_daniel/list/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: list
-  type: folder
-  seq: 3
-
-request:
-  auth: inherit

bruno/b2b_daniel/menu/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: menu
-  type: folder
-  seq: 5
-
-request:
-  auth: inherit

bruno/b2b_daniel/product-translation/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: product-translation
-  type: folder
-  seq: 2
-
-request:
-  auth: inherit

bruno/b2b_daniel/product-translation/translate-product-description.yml

@@ -1,28 +0,0 @@
-info:
-  name: translate-product-description
-  type: http
-  seq: 24
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/product-translation/translate-product-description?productID=51&productFromLangID=2&productToLangID=3&model=Google
-  params:
-    - name: productID
-      value: "51"
-      type: query
-    - name: productFromLangID
-      value: "2"
-      type: query
-    - name: productToLangID
-      value: "3"
-      type: query
-    - name: model
-      value: Google
-      type: query
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/search/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: search
-  type: folder
-  seq: 6
-
-request:
-  auth: inherit

bruno/b2b_daniel/storage-old/copy.yml

@@ -1,19 +0,0 @@
-info:
-  name: copy
-  type: http
-  seq: 7
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/copy/folder1/test.txt?dest_path=/folder/a.txt
-  params:
-    - name: dest_path
-      value: /folder/a.txt
-      type: query
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/create-folder.yml

@@ -1,19 +0,0 @@
-info:
-  name: create-folder
-  type: http
-  seq: 1
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/create-folder?name=folder
-  params:
-    - name: name
-      value: folder
-      type: query
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/delete-file.yml

@@ -1,15 +0,0 @@
-info:
-  name: delete-file
-  type: http
-  seq: 1
-
-http:
-  method: DELETE
-  url: http://localhost:3000/api/v1/restricted/storage/delete-file/folder1/TODO.txt
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/delete-folder.yml

@@ -1,15 +0,0 @@
-info:
-  name: delete-folder
-  type: http
-  seq: 1
-
-http:
-  method: DELETE
-  url: http://localhost:3000/api/v1/restricted/storage/delete-folder/folder/
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/download-file.yml

@@ -1,15 +0,0 @@
-info:
-  name: download-file
-  type: http
-  seq: 1
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/download-file/folder1/test.xlsx
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: storage-old
-  type: folder
-  seq: 1
-
-request:
-  auth: inherit

bruno/b2b_daniel/storage-old/list-content.yml

@@ -1,15 +0,0 @@
-info:
-  name: list-content
-  type: http
-  seq: 1
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/list-content/folder1
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/move.yml

@@ -1,19 +0,0 @@
-info:
-  name: move
-  type: http
-  seq: 8
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/move/folder?dest_path=/folder1/test.txt
-  params:
-    - name: dest_path
-      value: /folder1/test.txt
-      type: query
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-old/upload-file.yml

@@ -1,22 +0,0 @@
-info:
-  name: upload-file
-  type: http
-  seq: 1
-
-http:
-  method: POST
-  url: http://localhost:3000/api/v1/restricted/storage/upload-file/folder1/
-  body:
-    type: multipart-form
-    data:
-      - name: document
-        type: file
-        value:
-          - /home/daniel/TODO.txt
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-restricted/create-new-webdav-token.yml

@@ -1,15 +0,0 @@
-info:
-  name: create-new-webdav-token
-  type: http
-  seq: 1
-
-http:
-  method: GET
-  url: http://localhost:3000/api/v1/restricted/storage/create-new-webdav-token
-  auth: inherit
-
-settings:
-  encodeUrl: true
-  timeout: 0
-  followRedirects: true
-  maxRedirects: 5

bruno/b2b_daniel/storage-restricted/folder.yml

@@ -1,7 +0,0 @@
-info:
-  name: storage-restricted
-  type: folder
-  seq: 9
-
-request:
-  auth: inherit

go.mod

@@ -36,8 +36,6 @@ require (
 	github.com/googleapis/enterprise-certificate-proxy v0.3.6 // indirect
 	github.com/googleapis/gax-go/v2 v2.15.0 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
-	github.com/mattn/go-runewidth v0.0.16 // indirect
-	github.com/rivo/uniseg v0.2.0 // indirect
 	github.com/spf13/pflag v1.0.6 // indirect
 	github.com/tidwall/gjson v1.18.0 // indirect
 	github.com/tidwall/match v1.1.1 // indirect
@@ -100,7 +98,7 @@ require (
 	github.com/valyala/fasthttp v1.69.0 // indirect
 	github.com/xanzy/ssh-agent v0.3.3 // indirect
 	github.com/xyproto/randomstring v1.2.0 // indirect
-	golang.org/x/net v0.52.0
+	golang.org/x/net v0.52.0 // indirect
 	golang.org/x/sync v0.20.0 // indirect
 	golang.org/x/sys v0.42.0 // indirect
 	golang.org/x/text v0.35.0 // indirect

go.sum

@@ -72,8 +72,6 @@ github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpvNJ1Y=
 github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg=
-github.com/gofiber/fiber/v2 v2.52.12 h1:0LdToKclcPOj8PktUdIKo9BUohjjwfnQl42Dhw8/WUw=
-github.com/gofiber/fiber/v2 v2.52.12/go.mod h1:YEcBbO/FB+5M1IZNBP9FO3J9281zgPAreiI1oqg8nDw=
 github.com/gofiber/fiber/v3 v3.1.0 h1:1p4I820pIa+FGxfwWuQZ5rAyX0WlGZbGT6Hnuxt6hKY=
 github.com/gofiber/fiber/v3 v3.1.0/go.mod h1:n2nYQovvL9z3Too/FGOfgtERjW3GQcAUqgfoezGBZdU=
 github.com/gofiber/schema v1.7.0 h1:yNM+FNRZjyYEli9Ey0AXRBrAY9jTnb+kmGs3lJGPvKg=
@@ -136,8 +134,6 @@ github.com/mattn/go-colorable v0.1.14 h1:9A9LHSqF/7dyVVX6g0U9cwm9pG3kP9gSzcuIPHP
 github.com/mattn/go-colorable v0.1.14/go.mod h1:6LmQG8QLFO4G5z1gPvYEzlUgJ2wF+stgPZH1UqBm1s8=
 github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
 github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
-github.com/mattn/go-runewidth v0.0.16 h1:E5ScNMtiwvlvB5paMFdw9p4kSQzbXFikJ5SQO6TULQc=
-github.com/mattn/go-runewidth v0.0.16/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w=
 github.com/mattn/go-sqlite3 v1.14.8/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU=
 github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o4kU=
 github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
@@ -158,8 +154,6 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/rivo/uniseg v0.2.0 h1:S1pD9weZBuJdFmowNwbpi7BJ8TNftyUImj/0WQi72jY=
-github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
 github.com/rogpeppe/go-internal v1.14.1 h1:UQB4HGPB6osV0SQTLymcB4TgvyWu6ZyliaW0tI/otEQ=
 github.com/rogpeppe/go-internal v1.14.1/go.mod h1:MaRKkUm5W0goXpeCfT7UZI6fk/L7L7so1lCWt35ZSgc=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=

i18n/migrations/20260302163122_create_tables.sql

@@ -69,8 +69,6 @@ CREATE TABLE IF NOT EXISTS b2b_customers (
   email_verification_expires      DATETIME(6) NULL,
   password_reset_token            VARCHAR(255) NULL,
   password_reset_expires          DATETIME(6) NULL,
-  webdav_token                    VARCHAR(255) NULL,
-  webdav_expires                  DATETIME(6) NULL,
   last_password_reset_request     DATETIME(6) NULL,
   last_login_at                   DATETIME(6) NULL,
   lang_id                         BIGINT NULL DEFAULT 2,
@@ -86,8 +84,6 @@ ON b2b_customers (email);
 CREATE INDEX IF NOT EXISTS idx_customers_deleted_at
 ON b2b_customers (deleted_at);
 
-CREATE INDEX IF NOT EXISTS idx_customers_webdav_token
-ON b2b_customers (webdav_token);
 
 -- customer_carts
 CREATE TABLE IF NOT EXISTS b2b_customer_carts (

storage/folder/a.txt

@@ -0,0 +1 @@
+This is a test.