From bd4bb52b9c8f6e18a9761e661bc7612d45679ac5 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Mon, 22 Jul 2019 14:37:32 -0400
Subject: [PATCH 01/12] Hide Public blog option on single-user instances

---
 templates/user/collection.tmpl | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/templates/user/collection.tmpl b/templates/user/collection.tmpl
index 08e8886..8af3bda 100644
--- a/templates/user/collection.tmpl
+++ b/templates/user/collection.tmpl
@@ -58,6 +58,7 @@
 					</label>
 					<p>A password is required to read this blog.</p>
 				</li>
+				{{if not .SingleUser}}
 				<li>
 					<label class="option-text{{if not .LocalTimeline}} disabled{{end}}"><input type="radio" name="visibility" id="visibility-public" value="1" {{if .IsPublic}}checked="checked"{{end}} {{if not .LocalTimeline}}disabled="disabled"{{end}} />
 						Public
@@ -65,6 +66,7 @@
 					{{if .LocalTimeline}}<p>This blog is displayed on the public <a href="/read">reader</a>, and is visible to {{if .Private}}any registered user on this instance{{else}}anyone with its link{{end}}.</p>
 					{{else}}<p>The public reader is currently turned off for this community.</p>{{end}}
 				</li>
+				{{end}}
 			</ul>
 		</div>
 	</div>

From 3129b837f17a75383ca789b1285098d7fd78b96c Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Mon, 22 Jul 2019 14:40:10 -0400
Subject: [PATCH 02/12] Hide footer links to About and Privacy pages when
 single-user

Previously, these links showed up on user backend pages on a single-user
instance, despite them not working / only being applicable on multi-user
instances.
---
 templates/user/include/footer.tmpl | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/templates/user/include/footer.tmpl b/templates/user/include/footer.tmpl
index 36a69fa..572d9d6 100644
--- a/templates/user/include/footer.tmpl
+++ b/templates/user/include/footer.tmpl
@@ -8,10 +8,10 @@
 		<hr />
 		<nav>
 			<a class="home" href="/">{{.SiteName}}</a>
-			<a href="/about">about</a>
+			{{if not .SingleUser}}<a href="/about">about</a>{{end}}
 			{{if and (not .SingleUser) .LocalTimeline}}<a href="/read">reader</a>{{end}}
 			<a href="https://writefreely.org/guide/{{.OfficialVersion}}" target="guide">writer's guide</a>
-			<a href="/privacy">privacy</a>
+			{{if not .SingleUser}}<a href="/privacy">privacy</a>{{end}}
 			<a href="https://writefreely.org">writefreely {{.Version}}</a>
 		</nav>
 	</footer>

From a48b746706830c62321f738f526165beae2aac3d Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Mon, 22 Jul 2019 14:47:39 -0400
Subject: [PATCH 03/12] Fix empty Drafts page for single-user instances

- This removes copy mentioning the Blogs page, which isn't used on
  single-user instances
- This fixes the "Start writing" link, which on a single-user instance
  would've gone to the blog index, rather than the editor
---
 templates/user/articles.tmpl | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/templates/user/articles.tmpl b/templates/user/articles.tmpl
index 4956301..67d3e0b 100644
--- a/templates/user/articles.tmpl
+++ b/templates/user/articles.tmpl
@@ -34,8 +34,8 @@
 		{{if .Summary}}<p>{{.Summary}}</p>{{end}}
 	</div>{{end}}
 </div>{{ else }}<div id="no-posts-published"><p>You haven't saved any drafts yet.</p>
-	<p>They'll show up here once you do. Find your blog posts from the <a href="/me/c/">Blogs</a> page.</p>
-	<p class="text-cta"><a href="/">Start writing</a></p></div>{{ end }}
+	<p>They'll show up here once you do. {{if not .SingleUser}}Find your blog posts from the <a href="/me/c/">Blogs</a> page.{{end}}</p>
+	<p class="text-cta"><a href="{{if .SingleUser}}/me/new{{else}}/{{end}}">Start writing</a></p></div>{{ end }}
 
 <div id="moving"></div>
 

From a75b45f060473b41d7fbd1c181d1919885cad0bf Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 31 Jul 2019 22:18:40 -0400
Subject: [PATCH 04/12] Support configuring default collection visibility

This adds a new `default_visibility` config value that lets an instance
admin set the visibility of newly created collections.

Ref T675
---
 account.go       |  2 +-
 app.go           |  4 ++--
 collections.go   | 49 ++++++++++++++++++++++++++++++++++++------------
 config/config.go |  3 +++
 database.go      |  6 +++---
 5 files changed, 46 insertions(+), 18 deletions(-)

diff --git a/account.go b/account.go
index d8ea0df..a0fffc7 100644
--- a/account.go
+++ b/account.go
@@ -163,7 +163,7 @@ func signupWithRegistration(app *App, signup userRegistration, w http.ResponseWr
 	}
 
 	// Create actual user
-	if err := app.db.CreateUser(u, desiredUsername); err != nil {
+	if err := app.db.CreateUser(app, u, desiredUsername); err != nil {
 		return nil, err
 	}
 
diff --git a/app.go b/app.go
index 79b7145..f0816ec 100644
--- a/app.go
+++ b/app.go
@@ -507,7 +507,7 @@ func DoConfig(app *App, configSections string) {
 
 		// Create blog
 		log.Info("Creating user %s...\n", u.Username)
-		err = app.db.CreateUser(u, app.cfg.App.SiteName)
+		err = app.db.CreateUser(app, u, app.cfg.App.SiteName)
 		if err != nil {
 			log.Error("Unable to create user: %s", err)
 			os.Exit(1)
@@ -702,7 +702,7 @@ func CreateUser(apper Apper, username, password string, isAdmin bool) error {
 		userType = "admin"
 	}
 	log.Info("Creating %s %s...", userType, usernameDesc)
-	err = apper.App().db.CreateUser(u, desiredUsername)
+	err = apper.App().db.CreateUser(apper.App(), u, desiredUsername)
 	if err != nil {
 		return fmt.Errorf("Unable to create user: %s", err)
 	}
diff --git a/collections.go b/collections.go
index 1a8ceca..27f740a 100644
--- a/collections.go
+++ b/collections.go
@@ -31,6 +31,7 @@ import (
 	"github.com/writeas/web-core/log"
 	waposts "github.com/writeas/web-core/posts"
 	"github.com/writeas/writefreely/author"
+	"github.com/writeas/writefreely/config"
 	"github.com/writeas/writefreely/page"
 )
 
@@ -126,6 +127,21 @@ const (
 	CollProtected
 )
 
+var collVisibilityStrings = map[string]collVisibility{
+	"unlisted":  CollUnlisted,
+	"public":    CollPublic,
+	"private":   CollPrivate,
+	"protected": CollProtected,
+}
+
+func defaultVisibility(cfg *config.Config) collVisibility {
+	vis, ok := collVisibilityStrings[cfg.App.DefaultVisibility]
+	if !ok {
+		vis = CollUnlisted
+	}
+	return vis
+}
+
 func (cf *CollectionFormat) Ascending() bool {
 	return cf.Format == "novel"
 }
@@ -358,35 +374,44 @@ func newCollection(app *App, w http.ResponseWriter, r *http.Request) error {
 		return impart.HTTPError{http.StatusBadRequest, fmt.Sprintf("Parameter(s) %srequired.", missingParams)}
 	}
 
+	var userID int64
 	if reqJSON && !c.Web {
 		accessToken = r.Header.Get("Authorization")
 		if accessToken == "" {
 			return ErrNoAccessToken
 		}
+		userID = app.db.GetUserID(accessToken)
+		if userID == -1 {
+			return ErrBadAccessToken
+		}
 	} else {
 		u = getUserSession(app, r)
 		if u == nil {
 			return ErrNotLoggedIn
 		}
+		userID = u.ID
 	}
 
 	if !author.IsValidUsername(app.cfg, c.Alias) {
 		return impart.HTTPError{http.StatusPreconditionFailed, "Collection alias isn't valid."}
 	}
 
-	var coll *Collection
-	var err error
-	if accessToken != "" {
-		coll, err = app.db.CreateCollectionFromToken(c.Alias, c.Title, accessToken)
+	coll, err := app.db.CreateCollection(c.Alias, c.Title, userID)
+	if err != nil {
+		// TODO: handle this
+		return err
+	}
+
+	// Set visibility to configured default
+	vis := defaultVisibility(app.cfg)
+	if vis != CollUnlisted {
+		visInt := int(vis)
+		err = app.db.UpdateCollection(&SubmittedCollection{
+			OwnerID:    uint64(userID),
+			Visibility: &visInt,
+		}, coll.Alias)
 		if err != nil {
-			// TODO: handle this
-			return err
-		}
-	} else {
-		coll, err = app.db.CreateCollection(c.Alias, c.Title, u.ID)
-		if err != nil {
-			// TODO: handle this
-			return err
+			log.Error("Unable to set default visibility: %s", err)
 		}
 	}
 
diff --git a/config/config.go b/config/config.go
index 8009208..369015a 100644
--- a/config/config.go
+++ b/config/config.go
@@ -83,6 +83,9 @@ type (
 		// Additional functions
 		LocalTimeline bool   `ini:"local_timeline"`
 		UserInvites   string `ini:"user_invites"`
+
+		// Defaults
+		DefaultVisibility string `ini:"default_visibility"`
 	}
 
 	// Config holds the complete configuration for running a writefreely instance
diff --git a/database.go b/database.go
index 1ea9872..e439070 100644
--- a/database.go
+++ b/database.go
@@ -44,7 +44,7 @@ var (
 )
 
 type writestore interface {
-	CreateUser(*User, string) error
+	CreateUser(*App, *User, string) error
 	UpdateUserEmail(keys *key.Keychain, userID int64, email string) error
 	UpdateEncryptedUserEmail(int64, []byte) error
 	GetUserByID(int64) (*User, error)
@@ -162,7 +162,7 @@ func (db *datastore) dateSub(l int, unit string) string {
 	return fmt.Sprintf("DATE_SUB(NOW(), INTERVAL %d %s)", l, unit)
 }
 
-func (db *datastore) CreateUser(u *User, collectionTitle string) error {
+func (db *datastore) CreateUser(app *App, u *User, collectionTitle string) error {
 	if db.PostIDExists(u.Username) {
 		return impart.HTTPError{http.StatusConflict, "Invalid collection name."}
 	}
@@ -196,7 +196,7 @@ func (db *datastore) CreateUser(u *User, collectionTitle string) error {
 	if collectionTitle == "" {
 		collectionTitle = u.Username
 	}
-	res, err = t.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", u.Username, collectionTitle, "", CollUnlisted, u.ID, 0)
+	res, err = t.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", u.Username, collectionTitle, "", defaultVisibility(app.cfg), u.ID, 0)
 	if err != nil {
 		t.Rollback()
 		if db.isDuplicateKeyErr(err) {

From 569bc792d0414a45016de61f25f1e879aba07a08 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 31 Jul 2019 22:20:00 -0400
Subject: [PATCH 05/12] Enable changing default_visibility from Admin dash

Ref T675
---
 admin.go                  | 1 +
 templates/user/admin.tmpl | 8 ++++++++
 2 files changed, 9 insertions(+)

diff --git a/admin.go b/admin.go
index 99e1672..fe19ad5 100644
--- a/admin.go
+++ b/admin.go
@@ -391,6 +391,7 @@ func handleAdminUpdateConfig(apper Apper, u *User, w http.ResponseWriter, r *htt
 	if apper.App().cfg.App.UserInvites == "none" {
 		apper.App().cfg.App.UserInvites = ""
 	}
+	apper.App().cfg.App.DefaultVisibility = r.FormValue("default_visibility")
 
 	m := "?cm=Configuration+saved."
 	err = apper.SaveConfig(apper.App().cfg)
diff --git a/templates/user/admin.tmpl b/templates/user/admin.tmpl
index 90b5d70..3cb81be 100644
--- a/templates/user/admin.tmpl
+++ b/templates/user/admin.tmpl
@@ -95,6 +95,14 @@ p.docs {
 					<option value="admin" {{if eq .Config.UserInvites "admin"}}selected="selected"{{end}}>Admins</option>
 				</select>
 			</dd>
+			<dt{{if .Config.SingleUser}} class="invisible"{{end}}><label for="default_visibility">Default blog visibility</label></dt>
+			<dd{{if .Config.SingleUser}} class="invisible"{{end}}>
+				<select name="default_visibility" id="default_visibility">
+					<option value="unlisted" {{if eq .Config.DefaultVisibility "unlisted"}}selected="selected"{{end}}>Unlisted</option>
+					<option value="public" {{if eq .Config.DefaultVisibility "public"}}selected="selected"{{end}}>Public</option>
+					<option value="private" {{if eq .Config.DefaultVisibility "private"}}selected="selected"{{end}}>Private</option>
+				</select>
+			</dd>
 		</dl>
 		<input type="submit" value="Save Configuration" />
 	</div>

From 73ec3e3016bb81bddca21840559335efb320bebe Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 31 Jul 2019 22:53:10 -0400
Subject: [PATCH 06/12] Support toning down WriteFreely promotion

This adds a new `wf_modesty` config option that removes the copious
mentions of WriteFreely in places like the About page and site
footers.

WriteFreely remains boastful and bumptious by default; but enabling
the modesty option will tone it down and likely lead to less confusion
among average users.

Ref T676
---
 config/config.go                   |  1 +
 pages/about.tmpl                   |  2 ++
 templates/include/footer.tmpl      | 20 ++++++++++++++------
 templates/user/include/footer.tmpl |  4 ++++
 4 files changed, 21 insertions(+), 6 deletions(-)

diff --git a/config/config.go b/config/config.go
index 8009208..46b3e19 100644
--- a/config/config.go
+++ b/config/config.go
@@ -66,6 +66,7 @@ type (
 		JSDisabled bool   `ini:"disable_js"`
 		WebFonts   bool   `ini:"webfonts"`
 		Landing    string `ini:"landing"`
+		WFModesty  bool   `ini:"wf_modesty"`
 
 		// Users
 		SingleUser       bool `ini:"single_user"`
diff --git a/pages/about.tmpl b/pages/about.tmpl
index 0fae12b..7c502dc 100644
--- a/pages/about.tmpl
+++ b/pages/about.tmpl
@@ -12,6 +12,7 @@
 			<p><em>{{.SiteName}}</em> is home to <strong>{{largeNumFmt .AboutStats.NumPosts}}</strong> {{pluralize "article" "articles" .AboutStats.NumPosts}} across <strong>{{largeNumFmt .AboutStats.NumBlogs}}</strong> {{pluralize "blog" "blogs" .AboutStats.NumBlogs}}.</p>
 		{{end}}
 
+		{{if not .WFModesty}}
 		<h2 style="margin-top:2em">About WriteFreely</h2>
 		<p><a href="https://writefreely.org">WriteFreely</a> is a self-hosted, decentralized blogging platform for publishing beautiful, simple blogs.</p>
 		<p>It lets you publish a single blog, or host a community of writers who can create multiple blogs under one account. You can also enable federation, which allows people in the fediverse to follow your blog, bookmark your posts, and share them with others.</p>
@@ -23,5 +24,6 @@
 				<p><a href="https://writefreely.org">WriteFreely</a></p>
 			</div>
 		</div>
+		{{end}}
 	</div>
 {{end}}
diff --git a/templates/include/footer.tmpl b/templates/include/footer.tmpl
index 32a7e68..16434b9 100644
--- a/templates/include/footer.tmpl
+++ b/templates/include/footer.tmpl
@@ -1,13 +1,21 @@
 {{define "footer"}}
-		<footer{{if not .SingleUser}} class="contain-me"{{end}}>
+		<footer{{if not (or .SingleUser .WFModesty)}} class="contain-me"{{end}}>
 			<hr />
-			{{if .SingleUser}}
+			{{if or .SingleUser .WFModesty}}
 			<nav>
 				<a class="home" href="/">{{.SiteName}}</a>
-				<a href="https://writefreely.org/guide/{{.OfficialVersion}}" target="guide">writer's guide</a>
-				<a href="https://developers.write.as/" title="Build on WriteFreely with our open developer API.">developers</a>
-				<a href="https://github.com/writeas/writefreely">source code</a>
-				<a href="https://writefreely.org">writefreely {{.Version}}</a>
+				{{if not .SingleUser}}
+					<a href="/about">about</a>
+					{{if .LocalTimeline}}<a href="/read">reader</a>{{end}}
+					{{if .Username}}<a href="https://writefreely.org/guide/{{.OfficialVersion}}" target="guide">writer's guide</a>{{end}}
+					<a href="/privacy">privacy</a>
+					<p style="font-size: 0.9em">powered by <a href="https://writefreely.org">writefreely</a></p>
+				{{else}}
+					<a href="https://writefreely.org/guide/{{.OfficialVersion}}" target="guide">writer's guide</a>
+					<a href="https://developers.write.as/" title="Build on WriteFreely with our open developer API.">developers</a>
+					<a href="https://github.com/writeas/writefreely">source code</a>
+					<a href="https://writefreely.org">writefreely {{.Version}}</a>
+				{{end}}
 			</nav>
 			{{else}}
 			<div class="marketing-section">
diff --git a/templates/user/include/footer.tmpl b/templates/user/include/footer.tmpl
index 36a69fa..a2b2f06 100644
--- a/templates/user/include/footer.tmpl
+++ b/templates/user/include/footer.tmpl
@@ -12,7 +12,11 @@
 			{{if and (not .SingleUser) .LocalTimeline}}<a href="/read">reader</a>{{end}}
 			<a href="https://writefreely.org/guide/{{.OfficialVersion}}" target="guide">writer's guide</a>
 			<a href="/privacy">privacy</a>
+			{{if .WFModesty}}
+			<p style="font-size: 0.9em">powered by <a href="https://writefreely.org">writefreely</a></p>
+			{{else}}
 			<a href="https://writefreely.org">writefreely {{.Version}}</a>
+			{{end}}
 		</nav>
 	</footer>
 

From 0bd61da3f6d9ba515310b061a855a45585d9e133 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Thu, 1 Aug 2019 22:04:09 -0400
Subject: [PATCH 07/12] Link to writefreely.org in default About text

---
 pages.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pages.go b/pages.go
index e10227f..405b34f 100644
--- a/pages.go
+++ b/pages.go
@@ -65,9 +65,9 @@ func defaultPrivacyTitle() sql.NullString {
 
 func defaultAboutPage(cfg *config.Config) string {
 	if cfg.App.Federation {
-		return `_` + cfg.App.SiteName + `_ is an interconnected place for you to write and publish, powered by WriteFreely and ActivityPub.`
+		return `_` + cfg.App.SiteName + `_ is an interconnected place for you to write and publish, powered by [WriteFreely](https://writefreely.org) and ActivityPub.`
 	}
-	return `_` + cfg.App.SiteName + `_ is a place for you to write and publish, powered by WriteFreely.`
+	return `_` + cfg.App.SiteName + `_ is a place for you to write and publish, powered by [WriteFreely](https://writefreely.org).`
 }
 
 func defaultPrivacyPolicy(cfg *config.Config) string {

From 603a52dc46fcdbecf7b3124fabaf8f74aa35b89a Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Mon, 5 Aug 2019 10:25:58 -0400
Subject: [PATCH 08/12] Fall back to default template on bad editor config

Ref T677
---
 pad.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/pad.go b/pad.go
index 037a1f3..1545b4f 100644
--- a/pad.go
+++ b/pad.go
@@ -60,6 +60,10 @@ func handleViewPad(app *App, w http.ResponseWriter, r *http.Request) error {
 
 	if action == "" && slug == "" {
 		// Not editing any post; simply render the Pad
+		if templates[padTmpl] == nil {
+			log.Info("No template '%s' found. Falling back to default 'pad' template.", padTmpl)
+			padTmpl = "pad"
+		}
 		if err = templates[padTmpl].ExecuteTemplate(w, "pad", appData); err != nil {
 			log.Error("Unable to execute template: %v", err)
 		}

From f6dc07850ba95c2ee8e1c42db4372962c70cda16 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 7 Aug 2019 15:47:49 -0400
Subject: [PATCH 09/12] Fix pinned post URL on single-user instances

Previously, the URL of the dynamically-added pinned post on a
single-user instance would include the username, causing the link to go
to a non-existent page. This fixes that.
---
 templates/collection-tags.tmpl | 2 +-
 templates/collection.tmpl      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/templates/collection-tags.tmpl b/templates/collection-tags.tmpl
index 6849fee..7cad3b7 100644
--- a/templates/collection-tags.tmpl
+++ b/templates/collection-tags.tmpl
@@ -141,7 +141,7 @@ function pinPost(e, postID, slug, title) {
 		var $header = document.getElementsByTagName('header')[0];
 		var $pinnedNavs = $header.getElementsByTagName('nav');
 		// Add link to nav
-		var link = '<a class="pinned" href="/{{.Alias}}/'+slug+'">'+title+'</a>';
+		var link = '<a class="pinned" href="{{if not .SingleUser}}/{{.Alias}}/{{end}}'+slug+'">'+title+'</a>';
 		if ($pinnedNavs.length == 0) {
 			$header.insertAdjacentHTML("beforeend", '<nav>'+link+'</nav>');
 		} else {
diff --git a/templates/collection.tmpl b/templates/collection.tmpl
index 18942a9..6623a2e 100644
--- a/templates/collection.tmpl
+++ b/templates/collection.tmpl
@@ -176,7 +176,7 @@ function pinPost(e, postID, slug, title) {
 		var $header = document.getElementsByTagName('header')[0];
 		var $pinnedNavs = $header.getElementsByTagName('nav');
 		// Add link to nav
-		var link = '<a class="pinned" href="/{{.Alias}}/'+slug+'">'+title+'</a>';
+		var link = '<a class="pinned" href="{{if not .SingleUser}}/{{.Alias}}/{{end}}'+slug+'">'+title+'</a>';
 		if ($pinnedNavs.length == 0) {
 			$header.insertAdjacentHTML("beforeend", '<nav>'+link+'</nav>');
 		} else {

From df078c569dc6d2c495caee182f8691d820b3f8da Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 7 Aug 2019 16:16:25 -0400
Subject: [PATCH 10/12] Accept config.Config in datastore.CreateUser()

instead of App

Ref T675
---
 account.go  | 2 +-
 app.go      | 4 ++--
 database.go | 7 ++++---
 3 files changed, 7 insertions(+), 6 deletions(-)

diff --git a/account.go b/account.go
index a0fffc7..1cf259b 100644
--- a/account.go
+++ b/account.go
@@ -163,7 +163,7 @@ func signupWithRegistration(app *App, signup userRegistration, w http.ResponseWr
 	}
 
 	// Create actual user
-	if err := app.db.CreateUser(app, u, desiredUsername); err != nil {
+	if err := app.db.CreateUser(app.cfg, u, desiredUsername); err != nil {
 		return nil, err
 	}
 
diff --git a/app.go b/app.go
index f0816ec..5fa2a02 100644
--- a/app.go
+++ b/app.go
@@ -507,7 +507,7 @@ func DoConfig(app *App, configSections string) {
 
 		// Create blog
 		log.Info("Creating user %s...\n", u.Username)
-		err = app.db.CreateUser(app, u, app.cfg.App.SiteName)
+		err = app.db.CreateUser(app.cfg, u, app.cfg.App.SiteName)
 		if err != nil {
 			log.Error("Unable to create user: %s", err)
 			os.Exit(1)
@@ -702,7 +702,7 @@ func CreateUser(apper Apper, username, password string, isAdmin bool) error {
 		userType = "admin"
 	}
 	log.Info("Creating %s %s...", userType, usernameDesc)
-	err = apper.App().db.CreateUser(apper.App(), u, desiredUsername)
+	err = apper.App().db.CreateUser(apper.App().Config(), u, desiredUsername)
 	if err != nil {
 		return fmt.Errorf("Unable to create user: %s", err)
 	}
diff --git a/database.go b/database.go
index e439070..1212130 100644
--- a/database.go
+++ b/database.go
@@ -29,6 +29,7 @@ import (
 	"github.com/writeas/web-core/log"
 	"github.com/writeas/web-core/query"
 	"github.com/writeas/writefreely/author"
+	"github.com/writeas/writefreely/config"
 	"github.com/writeas/writefreely/key"
 )
 
@@ -44,7 +45,7 @@ var (
 )
 
 type writestore interface {
-	CreateUser(*App, *User, string) error
+	CreateUser(*config.Config, *User, string) error
 	UpdateUserEmail(keys *key.Keychain, userID int64, email string) error
 	UpdateEncryptedUserEmail(int64, []byte) error
 	GetUserByID(int64) (*User, error)
@@ -162,7 +163,7 @@ func (db *datastore) dateSub(l int, unit string) string {
 	return fmt.Sprintf("DATE_SUB(NOW(), INTERVAL %d %s)", l, unit)
 }
 
-func (db *datastore) CreateUser(app *App, u *User, collectionTitle string) error {
+func (db *datastore) CreateUser(cfg *config.Config, u *User, collectionTitle string) error {
 	if db.PostIDExists(u.Username) {
 		return impart.HTTPError{http.StatusConflict, "Invalid collection name."}
 	}
@@ -196,7 +197,7 @@ func (db *datastore) CreateUser(app *App, u *User, collectionTitle string) error
 	if collectionTitle == "" {
 		collectionTitle = u.Username
 	}
-	res, err = t.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", u.Username, collectionTitle, "", defaultVisibility(app.cfg), u.ID, 0)
+	res, err = t.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", u.Username, collectionTitle, "", defaultVisibility(cfg), u.ID, 0)
 	if err != nil {
 		t.Rollback()
 		if db.isDuplicateKeyErr(err) {

From afadf6fdf64d59760b6e3f747347fdcc8f7de5fe Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 7 Aug 2019 16:20:32 -0400
Subject: [PATCH 11/12] Set default visibility in datastore.CreateCollection

instead of updating it later. This is more correct behavior, prevents an
additional query, and ensures that potential collection-creation when
claiming posts also respects the default (which it didn't before).

Ref T675
---
 collections.go | 15 +--------------
 database.go    | 18 +++++++++---------
 posts.go       |  2 +-
 3 files changed, 11 insertions(+), 24 deletions(-)

diff --git a/collections.go b/collections.go
index 27f740a..12acb07 100644
--- a/collections.go
+++ b/collections.go
@@ -396,25 +396,12 @@ func newCollection(app *App, w http.ResponseWriter, r *http.Request) error {
 		return impart.HTTPError{http.StatusPreconditionFailed, "Collection alias isn't valid."}
 	}
 
-	coll, err := app.db.CreateCollection(c.Alias, c.Title, userID)
+	coll, err := app.db.CreateCollection(app.cfg, c.Alias, c.Title, userID)
 	if err != nil {
 		// TODO: handle this
 		return err
 	}
 
-	// Set visibility to configured default
-	vis := defaultVisibility(app.cfg)
-	if vis != CollUnlisted {
-		visInt := int(vis)
-		err = app.db.UpdateCollection(&SubmittedCollection{
-			OwnerID:    uint64(userID),
-			Visibility: &visInt,
-		}, coll.Alias)
-		if err != nil {
-			log.Error("Unable to set default visibility: %s", err)
-		}
-	}
-
 	res := &CollectionObj{Collection: *coll}
 
 	if reqJSON {
diff --git a/database.go b/database.go
index 1212130..ea562b3 100644
--- a/database.go
+++ b/database.go
@@ -83,8 +83,8 @@ type writestore interface {
 	GetOwnedPost(id string, ownerID int64) (*PublicPost, error)
 	GetPostProperty(id string, collectionID int64, property string) (interface{}, error)
 
-	CreateCollectionFromToken(string, string, string) (*Collection, error)
-	CreateCollection(string, string, int64) (*Collection, error)
+	CreateCollectionFromToken(*config.Config, string, string, string) (*Collection, error)
+	CreateCollection(*config.Config, string, string, int64) (*Collection, error)
 	GetCollectionBy(condition string, value interface{}) (*Collection, error)
 	GetCollection(alias string) (*Collection, error)
 	GetCollectionForPad(alias string) (*Collection, error)
@@ -103,7 +103,7 @@ type writestore interface {
 	CanCollect(cpr *ClaimPostRequest, userID int64) bool
 	AttemptClaim(p *ClaimPostRequest, query string, params []interface{}, slugIdx int) (sql.Result, error)
 	DispersePosts(userID int64, postIDs []string) (*[]ClaimPostResult, error)
-	ClaimPosts(userID int64, collAlias string, posts *[]ClaimPostRequest) (*[]ClaimPostResult, error)
+	ClaimPosts(cfg *config.Config, userID int64, collAlias string, posts *[]ClaimPostRequest) (*[]ClaimPostResult, error)
 
 	GetPostsCount(c *CollectionObj, includeFuture bool)
 	GetPosts(c *Collection, page int, includeFuture, forceRecentFirst, includePinned bool) (*[]PublicPost, error)
@@ -239,13 +239,13 @@ func (db *datastore) UpdateEncryptedUserEmail(userID int64, encEmail []byte) err
 	return nil
 }
 
-func (db *datastore) CreateCollectionFromToken(alias, title, accessToken string) (*Collection, error) {
+func (db *datastore) CreateCollectionFromToken(cfg *config.Config, alias, title, accessToken string) (*Collection, error) {
 	userID := db.GetUserID(accessToken)
 	if userID == -1 {
 		return nil, ErrBadAccessToken
 	}
 
-	return db.CreateCollection(alias, title, userID)
+	return db.CreateCollection(cfg, alias, title, userID)
 }
 
 func (db *datastore) GetUserCollectionCount(userID int64) (uint64, error) {
@@ -262,13 +262,13 @@ func (db *datastore) GetUserCollectionCount(userID int64) (uint64, error) {
 	return collCount, nil
 }
 
-func (db *datastore) CreateCollection(alias, title string, userID int64) (*Collection, error) {
+func (db *datastore) CreateCollection(cfg *config.Config, alias, title string, userID int64) (*Collection, error) {
 	if db.PostIDExists(alias) {
 		return nil, impart.HTTPError{http.StatusConflict, "Invalid collection name."}
 	}
 
 	// All good, so create new collection
-	res, err := db.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", alias, title, "", CollUnlisted, userID, 0)
+	res, err := db.Exec("INSERT INTO collections (alias, title, description, privacy, owner_id, view_count) VALUES (?, ?, ?, ?, ?, ?)", alias, title, "", defaultVisibility(cfg), userID, 0)
 	if err != nil {
 		if db.isDuplicateKeyErr(err) {
 			return nil, impart.HTTPError{http.StatusConflict, "Collection already exists."}
@@ -1325,7 +1325,7 @@ func (db *datastore) DispersePosts(userID int64, postIDs []string) (*[]ClaimPost
 	return &res, nil
 }
 
-func (db *datastore) ClaimPosts(userID int64, collAlias string, posts *[]ClaimPostRequest) (*[]ClaimPostResult, error) {
+func (db *datastore) ClaimPosts(cfg *config.Config, userID int64, collAlias string, posts *[]ClaimPostRequest) (*[]ClaimPostResult, error) {
 	postClaimReqs := map[string]bool{}
 	res := []ClaimPostResult{}
 	postCollAlias := collAlias
@@ -1382,7 +1382,7 @@ func (db *datastore) ClaimPosts(userID int64, collAlias string, posts *[]ClaimPo
 				// This is a new collection
 				// TODO: consider removing this. This seriously complicates this
 				// method and adds another (unnecessary?) logic path.
-				coll, err = db.CreateCollection(postCollAlias, "", userID)
+				coll, err = db.CreateCollection(cfg, postCollAlias, "", userID)
 				if err != nil {
 					if err, ok := err.(impart.HTTPError); ok {
 						r.Code = err.Status
diff --git a/posts.go b/posts.go
index 07902ce..6e4f49e 100644
--- a/posts.go
+++ b/posts.go
@@ -869,7 +869,7 @@ func addPost(app *App, w http.ResponseWriter, r *http.Request) error {
 	collAlias := vars["alias"]
 
 	// Update all given posts
-	res, err := app.db.ClaimPosts(ownerID, collAlias, claims)
+	res, err := app.db.ClaimPosts(app.cfg, ownerID, collAlias, claims)
 	if err != nil {
 		return err
 	}

From f8d57d9e75f16479c9e05407e0ff7a9d2aac0642 Mon Sep 17 00:00:00 2001
From: Matt Baer <matt@write.as>
Date: Wed, 7 Aug 2019 16:22:35 -0400
Subject: [PATCH 12/12] Return correct `public` state on collection creation

(in returned JSON data)

Ref T675
---
 database.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/database.go b/database.go
index ea562b3..0150a41 100644
--- a/database.go
+++ b/database.go
@@ -282,6 +282,7 @@ func (db *datastore) CreateCollection(cfg *config.Config, alias, title string, u
 		Title:       title,
 		OwnerID:     userID,
 		PublicOwner: false,
+		Public:      defaultVisibility(cfg) == CollPublic,
 	}
 
 	c.ID, err = res.LastInsertId()