From e3f44ad101a6e286b442f16ce754d2d126e23776 Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Mon, 27 May 2024 00:54:43 -0300
Subject: [PATCH 1/8] Move repository visibility to danger zone in the settings
 area

Moved to danger zone because change the visibility is a
non-trivial decision, so that way the repo admin need
to go to the danger zone to change.
---
 options/locale/locale_en-US.ini      |  7 ++++
 routers/web/repo/setting/setting.go  | 20 ++++++++++
 templates/repo/settings/options.tmpl | 59 +++++++++++++++++++++-------
 3 files changed, 72 insertions(+), 14 deletions(-)

diff --git a/options/locale/locale_en-US.ini b/options/locale/locale_en-US.ini
index cca068a3a28c1..7d37e9843da9f 100644
--- a/options/locale/locale_en-US.ini
+++ b/options/locale/locale_en-US.ini
@@ -2465,6 +2465,13 @@ settings.thread_id = Thread ID
 settings.matrix.homeserver_url = Homeserver URL
 settings.matrix.room_id = Room ID
 settings.matrix.message_type = Message Type
+settings.visibility.private.button = Make Private
+settings.visibility.private.text = Making private the repo will do that only allowed members can see.
+settings.visibility.public.button = Make Public
+settings.visibility.public.text = Making public the repo will do that anyone can see.
+settings.visibility.success = Repository visibility changed.
+settings.visibility.error = An error occurred while trying to change the repo visibility.
+settings.visibility.fork_error = Can't change the visibility of a forked repo.
 settings.archive.button = Archive Repo
 settings.archive.header = Archive This Repo
 settings.archive.text = Archiving the repo will make it entirely read-only. It will be hidden from the dashboard. Nobody (not even you!) will be able to make new commits, or open any issues or pull requests.
diff --git a/routers/web/repo/setting/setting.go b/routers/web/repo/setting/setting.go
index 1e0349cdeec4a..1c06c227b5c45 100644
--- a/routers/web/repo/setting/setting.go
+++ b/routers/web/repo/setting/setting.go
@@ -940,6 +940,26 @@ func SettingsPost(ctx *context.Context) {
 		log.Trace("Repository was un-archived: %s/%s", ctx.Repo.Owner.Name, repo.Name)
 		ctx.Redirect(ctx.Repo.RepoLink + "/settings")
 
+	case "private", "public":
+		if repo.IsFork {
+			ctx.Flash.Error(ctx.Tr("repo.settings.visibility.fork_error"))
+			ctx.Redirect(ctx.Repo.RepoLink + "/settings")
+			return
+		}
+
+		repo.IsPrivate = !repo.IsPrivate
+		if err := repo_service.UpdateRepository(ctx, repo, true); err != nil {
+			log.Error("Tried to change the visibility of the repo: %s", err)
+			ctx.Flash.Error(ctx.Tr("repo.settings.visibility.error"))
+			ctx.Redirect(ctx.Repo.RepoLink + "/settings")
+			return
+		}
+
+		ctx.Flash.Success(ctx.Tr("repo.settings.visibility.success"))
+
+		log.Trace("Repository visibility changed: %s/%s", ctx.Repo.Owner.Name, repo.Name)
+		ctx.Redirect(ctx.Repo.RepoLink + "/settings")
+
 	default:
 		ctx.NotFound("", nil)
 	}
diff --git a/templates/repo/settings/options.tmpl b/templates/repo/settings/options.tmpl
index 4f98133df3679..b86eb4074e716 100644
--- a/templates/repo/settings/options.tmpl
+++ b/templates/repo/settings/options.tmpl
@@ -23,20 +23,6 @@
 						<label>{{ctx.Locale.Tr "repo.template_helper"}}</label>
 					</div>
 				</div>
-				{{if not .Repository.IsFork}}
-					<div class="inline field">
-						<label>{{ctx.Locale.Tr "repo.visibility"}}</label>
-						<div class="ui checkbox" {{if and (not .Repository.IsPrivate) (gt .Repository.NumStars 0)}}data-tooltip-content="{{ctx.Locale.Tr "repo.stars_remove_warning"}}"{{end}}>
-							{{if .IsAdmin}}
-								<input name="private" type="checkbox" {{if .Repository.IsPrivate}}checked{{end}}>
-							{{else}}
-								<input name="private" type="checkbox" {{if .Repository.IsPrivate}}checked{{end}}{{if and $.ForcePrivate .Repository.IsPrivate}} disabled{{end}}>
-								{{if and .Repository.IsPrivate $.ForcePrivate}}<input type="hidden" name="private" value="{{.Repository.IsPrivate}}">{{end}}
-							{{end}}
-							<label>{{ctx.Locale.Tr "repo.visibility_helper"}} {{if .Repository.NumForks}}<span class="text red">{{ctx.Locale.Tr "repo.visibility_fork_helper"}}</span>{{end}}</label>
-						</div>
-					</div>
-				{{end}}
 				<div class="field {{if .Err_Description}}error{{end}}">
 					<label for="description">{{ctx.Locale.Tr "repo.repo_desc"}}</label>
 					<textarea id="description" name="description" rows="2" maxlength="2048">{{.Repository.Description}}</textarea>
@@ -786,6 +772,27 @@
 		</h4>
 		<div class="ui attached error danger segment">
 			<div class="flex-list">
+				{{if not .Repository.IsFork}}
+					<div class="flex-item tw-items-center">
+						<div class="flex-item-main">
+							<div class="flex-item-title">{{ctx.Locale.Tr "repo.visibility"}}</div>
+							{{if .Repository.IsPrivate}}
+								<div class="flex-item-body">{{ctx.Locale.Tr "repo.settings.visibility.public.text"}}</div>
+							{{else}}
+								<div class="flex-item-body">{{ctx.Locale.Tr "repo.settings.visibility.private.text"}}</div>
+							{{end}}
+						</div>
+						<div class="flex-item-trailing">
+							<button class="ui basic red show-modal button" data-modal="#visibility-repo-modal">
+								{{if .Repository.IsPrivate}}
+									{{ctx.Locale.Tr "repo.settings.visibility.public.button"}}
+								{{else}}
+									{{ctx.Locale.Tr "repo.settings.visibility.private.button"}}
+								{{end}}
+							</button>
+						</div>
+					</div>
+				{{end}}
 				{{if .Repository.IsMirror}}
 					<div class="flex-item">
 						<div class="flex-item-main">
@@ -1012,6 +1019,30 @@
 		</div>
 	</div>
 
+	{{if not .Repository.IsFork}}
+		<div class="ui g-modal-confirm modal" id="visibility-repo-modal">
+			<div class="header">
+				{{ctx.Locale.Tr "repo.visibility"}}
+			</div>
+			<div class="content">
+				<p>
+					{{if .Repository.IsPrivate}}
+						{{ctx.Locale.Tr "repo.settings.visibility.public.text"}}
+					{{else}}
+						{{ctx.Locale.Tr "repo.settings.visibility.private.text"}}
+						{{if .Repository.NumForks}}<span class="text red">{{ctx.Locale.Tr "repo.visibility_fork_helper"}}</span>{{end}}
+					{{end}}
+				</p>
+			</div>
+			<form action="{{.Link}}" method="post">
+				{{.CsrfTokenHtml}}
+				<input type="hidden" name="action" value="{{if .Repository.IsPrivate}}public{{else}}private{{end}}">
+				<input type="hidden" name="repo_id" value="{{.Repository.ID}}">
+				{{template "base/modal_actions_confirm" .}}
+			</form>
+		</div>
+	{{end}}
+
 	{{if .Repository.UnitEnabled $.Context ctx.Consts.RepoUnitTypeWiki}}
 	<div class="ui small modal" id="delete-wiki-modal">
 		<div class="header">

From 39a75a62fc3693a2057c484dd08f44ca4083b01b Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Mon, 27 May 2024 22:08:19 -0300
Subject: [PATCH 2/8] Change private/public to visibility

---
 routers/web/repo/setting/setting.go  | 2 +-
 templates/repo/settings/options.tmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/routers/web/repo/setting/setting.go b/routers/web/repo/setting/setting.go
index 1c06c227b5c45..ab04701001cf6 100644
--- a/routers/web/repo/setting/setting.go
+++ b/routers/web/repo/setting/setting.go
@@ -940,7 +940,7 @@ func SettingsPost(ctx *context.Context) {
 		log.Trace("Repository was un-archived: %s/%s", ctx.Repo.Owner.Name, repo.Name)
 		ctx.Redirect(ctx.Repo.RepoLink + "/settings")
 
-	case "private", "public":
+	case "visibility":
 		if repo.IsFork {
 			ctx.Flash.Error(ctx.Tr("repo.settings.visibility.fork_error"))
 			ctx.Redirect(ctx.Repo.RepoLink + "/settings")
diff --git a/templates/repo/settings/options.tmpl b/templates/repo/settings/options.tmpl
index b86eb4074e716..fa8846077d810 100644
--- a/templates/repo/settings/options.tmpl
+++ b/templates/repo/settings/options.tmpl
@@ -1036,7 +1036,7 @@
 			</div>
 			<form action="{{.Link}}" method="post">
 				{{.CsrfTokenHtml}}
-				<input type="hidden" name="action" value="{{if .Repository.IsPrivate}}public{{else}}private{{end}}">
+				<input type="hidden" name="action" value="visibility">
 				<input type="hidden" name="repo_id" value="{{.Repository.ID}}">
 				{{template "base/modal_actions_confirm" .}}
 			</form>

From f938285c43acb9ffde9cd5d457fcb0ac5b2e0835 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?F=C3=A1bio=20Barkoski?=
 <65479069+fabiobarkoski@users.noreply.github.com>
Date: Tue, 28 May 2024 21:23:28 -0300
Subject: [PATCH 3/8] Apply suggestions from code review

Co-authored-by: Kemal Zebari <60799661+kemzeb@users.noreply.github.com>
---
 options/locale/locale_en-US.ini | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/options/locale/locale_en-US.ini b/options/locale/locale_en-US.ini
index 7d37e9843da9f..72c6bb476fd2a 100644
--- a/options/locale/locale_en-US.ini
+++ b/options/locale/locale_en-US.ini
@@ -2466,9 +2466,9 @@ settings.matrix.homeserver_url = Homeserver URL
 settings.matrix.room_id = Room ID
 settings.matrix.message_type = Message Type
 settings.visibility.private.button = Make Private
-settings.visibility.private.text = Making private the repo will do that only allowed members can see.
+settings.visibility.private.text = Changing the visibility to private will make the repo visible to only allowed members.
 settings.visibility.public.button = Make Public
-settings.visibility.public.text = Making public the repo will do that anyone can see.
+settings.visibility.public.text = Changing the visibility to public will make the repo visible to anyone.
 settings.visibility.success = Repository visibility changed.
 settings.visibility.error = An error occurred while trying to change the repo visibility.
 settings.visibility.fork_error = Can't change the visibility of a forked repo.

From 987f7341cdbd36ee6b81eff30a9b8d8084e16885 Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Tue, 28 May 2024 21:40:27 -0300
Subject: [PATCH 4/8] Increase private warning details

---
 options/locale/locale_en-US.ini | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/options/locale/locale_en-US.ini b/options/locale/locale_en-US.ini
index 72c6bb476fd2a..473b7650602e4 100644
--- a/options/locale/locale_en-US.ini
+++ b/options/locale/locale_en-US.ini
@@ -2466,7 +2466,7 @@ settings.matrix.homeserver_url = Homeserver URL
 settings.matrix.room_id = Room ID
 settings.matrix.message_type = Message Type
 settings.visibility.private.button = Make Private
-settings.visibility.private.text = Changing the visibility to private will make the repo visible to only allowed members.
+settings.visibility.private.text = Changing the visibility to private will not only make the repo visible to only allowed members but may remove the relation between it and forks, watchers, and stars.
 settings.visibility.public.button = Make Public
 settings.visibility.public.text = Changing the visibility to public will make the repo visible to anyone.
 settings.visibility.success = Repository visibility changed.

From d0a77f9501cfda523255141d1f4d0a6ef3be0227 Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Fri, 14 Jun 2024 00:07:11 -0300
Subject: [PATCH 5/8] Create functions in the service layer to change the
 visibility

---
 routers/web/repo/setting/setting.go | 11 +++++++++--
 services/repository/repository.go   | 25 +++++++++++++++++++++++++
 2 files changed, 34 insertions(+), 2 deletions(-)

diff --git a/routers/web/repo/setting/setting.go b/routers/web/repo/setting/setting.go
index ab04701001cf6..f8f5ec7c8df40 100644
--- a/routers/web/repo/setting/setting.go
+++ b/routers/web/repo/setting/setting.go
@@ -947,8 +947,15 @@ func SettingsPost(ctx *context.Context) {
 			return
 		}
 
-		repo.IsPrivate = !repo.IsPrivate
-		if err := repo_service.UpdateRepository(ctx, repo, true); err != nil {
+		var err error
+
+		if repo.IsPrivate {
+			err = repo_service.MakeRepoPublic(ctx, repo)
+		} else {
+			err = repo_service.MakeRepoPrivate(ctx, repo)
+		}
+
+		if err != nil {
 			log.Error("Tried to change the visibility of the repo: %s", err)
 			ctx.Flash.Error(ctx.Tr("repo.settings.visibility.error"))
 			ctx.Redirect(ctx.Repo.RepoLink + "/settings")
diff --git a/services/repository/repository.go b/services/repository/repository.go
index b7aac3cfe0d8e..c3d8d37a436f0 100644
--- a/services/repository/repository.go
+++ b/services/repository/repository.go
@@ -122,6 +122,31 @@ func UpdateRepository(ctx context.Context, repo *repo_model.Repository, visibili
 	return committer.Commit()
 }
 
+func UpdateRepositoryVisibility(ctx context.Context, repo *repo_model.Repository, IsPrivate bool) (err error) {
+	ctx, committer, err := db.TxContext(ctx)
+	if err != nil {
+		return err
+	}
+
+	defer committer.Close()
+
+	repo.IsPrivate = IsPrivate
+
+	if err = repo_module.UpdateRepository(ctx, repo, true); err != nil {
+		return fmt.Errorf("UpdateRepositoryVisibility: %w", err)
+	}
+
+	return committer.Commit()
+}
+
+func MakeRepoPublic(ctx context.Context, repo *repo_model.Repository) (err error) {
+	return UpdateRepositoryVisibility(ctx, repo, false)
+}
+
+func MakeRepoPrivate(ctx context.Context, repo *repo_model.Repository) (err error) {
+	return UpdateRepositoryVisibility(ctx, repo, true)
+}
+
 // LinkedRepository returns the linked repo if any
 func LinkedRepository(ctx context.Context, a *repo_model.Attachment) (*repo_model.Repository, unit.Type, error) {
 	if a.IssueID != 0 {

From b4c16e547a388520f2d2f93b79cdd9359a2bd82d Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Fri, 14 Jun 2024 00:08:45 -0300
Subject: [PATCH 6/8] Display warnings as bullet marks

---
 options/locale/locale_en-US.ini      |  5 +++++
 templates/repo/settings/options.tmpl | 14 +++++++++-----
 2 files changed, 14 insertions(+), 5 deletions(-)

diff --git a/options/locale/locale_en-US.ini b/options/locale/locale_en-US.ini
index 473b7650602e4..ea62400c89ea3 100644
--- a/options/locale/locale_en-US.ini
+++ b/options/locale/locale_en-US.ini
@@ -2467,8 +2467,13 @@ settings.matrix.room_id = Room ID
 settings.matrix.message_type = Message Type
 settings.visibility.private.button = Make Private
 settings.visibility.private.text = Changing the visibility to private will not only make the repo visible to only allowed members but may remove the relation between it and forks, watchers, and stars.
+settings.visibility.private.bullet_title = <strong>Changing the visibility to private will:</strong>
+settings.visibility.private.bullet_one = Make the repo visible to only allowed members.
+settings.visibility.private.bullet_two = May remove the relation between it and <strong>forks</strong>, <strong>watchers</strong>, and <strong>stars</strong>.
 settings.visibility.public.button = Make Public
 settings.visibility.public.text = Changing the visibility to public will make the repo visible to anyone.
+settings.visibility.public.bullet_title= <strong>Changing the visibility to public will:</strong>
+settings.visibility.public.bullet_one = Make the repo visible to anyone.
 settings.visibility.success = Repository visibility changed.
 settings.visibility.error = An error occurred while trying to change the repo visibility.
 settings.visibility.fork_error = Can't change the visibility of a forked repo.
diff --git a/templates/repo/settings/options.tmpl b/templates/repo/settings/options.tmpl
index fa8846077d810..f12bbbdf4a7f4 100644
--- a/templates/repo/settings/options.tmpl
+++ b/templates/repo/settings/options.tmpl
@@ -1025,14 +1025,18 @@
 				{{ctx.Locale.Tr "repo.visibility"}}
 			</div>
 			<div class="content">
-				<p>
 					{{if .Repository.IsPrivate}}
-						{{ctx.Locale.Tr "repo.settings.visibility.public.text"}}
+						<p>{{ctx.Locale.Tr "repo.settings.visibility.public.bullet_title"}}</p>
+						<ul>
+							<li>{{ctx.Locale.Tr "repo.settings.visibility.public.bullet_one"}}</li>
+						</ul>
 					{{else}}
-						{{ctx.Locale.Tr "repo.settings.visibility.private.text"}}
-						{{if .Repository.NumForks}}<span class="text red">{{ctx.Locale.Tr "repo.visibility_fork_helper"}}</span>{{end}}
+						<p>{{ctx.Locale.Tr "repo.settings.visibility.private.bullet_title"}}</p>
+						<ul>
+							<li>{{ctx.Locale.Tr "repo.settings.visibility.private.bullet_one"}}</li>
+							<li>{{ctx.Locale.Tr "repo.settings.visibility.private.bullet_two"}}{{if .Repository.NumForks}}<span class="text red">{{ctx.Locale.Tr "repo.visibility_fork_helper"}}</span>{{end}}</li>
+						</ul>
 					{{end}}
-				</p>
 			</div>
 			<form action="{{.Link}}" method="post">
 				{{.CsrfTokenHtml}}

From f4cca31d2bb6c385d0a10aa53f2c0005d084b0c4 Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Fri, 14 Jun 2024 00:21:50 -0300
Subject: [PATCH 7/8] fix lint

---
 services/repository/repository.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/services/repository/repository.go b/services/repository/repository.go
index c3d8d37a436f0..5306e7d45cce6 100644
--- a/services/repository/repository.go
+++ b/services/repository/repository.go
@@ -122,7 +122,7 @@ func UpdateRepository(ctx context.Context, repo *repo_model.Repository, visibili
 	return committer.Commit()
 }
 
-func UpdateRepositoryVisibility(ctx context.Context, repo *repo_model.Repository, IsPrivate bool) (err error) {
+func UpdateRepositoryVisibility(ctx context.Context, repo *repo_model.Repository, isPrivate bool) (err error) {
 	ctx, committer, err := db.TxContext(ctx)
 	if err != nil {
 		return err
@@ -130,7 +130,7 @@ func UpdateRepositoryVisibility(ctx context.Context, repo *repo_model.Repository
 
 	defer committer.Close()
 
-	repo.IsPrivate = IsPrivate
+	repo.IsPrivate = isPrivate
 
 	if err = repo_module.UpdateRepository(ctx, repo, true); err != nil {
 		return fmt.Errorf("UpdateRepositoryVisibility: %w", err)

From dbca558d70b7e3c4add69d626ae73a4b41e21634 Mon Sep 17 00:00:00 2001
From: fabiobarkoski <fabiobarkoskii@gmail.com>
Date: Thu, 8 Aug 2024 23:17:41 -0300
Subject: [PATCH 8/8] remove visibility interaction in update action

---
 routers/web/repo/setting/setting.go | 16 +++++++---------
 1 file changed, 7 insertions(+), 9 deletions(-)

diff --git a/routers/web/repo/setting/setting.go b/routers/web/repo/setting/setting.go
index f8f5ec7c8df40..3f9140857ad8a 100644
--- a/routers/web/repo/setting/setting.go
+++ b/routers/web/repo/setting/setting.go
@@ -170,15 +170,7 @@ func SettingsPost(ctx *context.Context) {
 			form.Private = repo.BaseRepo.IsPrivate || repo.BaseRepo.Owner.Visibility == structs.VisibleTypePrivate
 		}
 
-		visibilityChanged := repo.IsPrivate != form.Private
-		// when ForcePrivate enabled, you could change public repo to private, but only admin users can change private to public
-		if visibilityChanged && setting.Repository.ForcePrivate && !form.Private && !ctx.Doer.IsAdmin {
-			ctx.RenderWithErr(ctx.Tr("form.repository_force_private"), tplSettingsOptions, form)
-			return
-		}
-
-		repo.IsPrivate = form.Private
-		if err := repo_service.UpdateRepository(ctx, repo, visibilityChanged); err != nil {
+		if err := repo_service.UpdateRepository(ctx, repo, false); err != nil {
 			ctx.ServerError("UpdateRepository", err)
 			return
 		}
@@ -949,6 +941,12 @@ func SettingsPost(ctx *context.Context) {
 
 		var err error
 
+		// when ForcePrivate enabled, you could change public repo to private, but only admin users can change private to public
+		if setting.Repository.ForcePrivate && repo.IsPrivate && !ctx.Doer.IsAdmin {
+			ctx.RenderWithErr(ctx.Tr("form.repository_force_private"), tplSettingsOptions, form)
+			return
+		}
+
 		if repo.IsPrivate {
 			err = repo_service.MakeRepoPublic(ctx, repo)
 		} else {