Spaces:

akborana4
/

pastebin

Sleeping

App Files Files Community

Akay Borana commited on Feb 24

Commit

421b222

0 Parent(s):

Initial upload

Browse files

Files changed (24) hide show

.gitattributes +35 -0
Dockerfile +53 -0
README.md +10 -0
config/config.go +36 -0
database/database.go +33 -0
go.mod +52 -0
go.sum +116 -0
handlers/auth.go +172 -0
handlers/paste.go +453 -0
handlers/user.go +108 -0
main.go +90 -0
middleware/auth.go +90 -0
models/paste.go +69 -0
models/user.go +13 -0
static/css/style.css +806 -0
static/js/app.js +170 -0
templates/dashboard.html +128 -0
templates/edit.html +58 -0
templates/error.html +29 -0
templates/index.html +128 -0
templates/login.html +77 -0
templates/profile.html +103 -0
templates/register.html +79 -0
templates/view.html +149 -0

.gitattributes ADDED Viewed

	@@ -0,0 +1,35 @@

+*.7z filter=lfs diff=lfs merge=lfs -text
+*.arrow filter=lfs diff=lfs merge=lfs -text
+*.bin filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.ckpt filter=lfs diff=lfs merge=lfs -text
+*.ftz filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.h5 filter=lfs diff=lfs merge=lfs -text
+*.joblib filter=lfs diff=lfs merge=lfs -text
+*.lfs.* filter=lfs diff=lfs merge=lfs -text
+*.mlmodel filter=lfs diff=lfs merge=lfs -text
+*.model filter=lfs diff=lfs merge=lfs -text
+*.msgpack filter=lfs diff=lfs merge=lfs -text
+*.npy filter=lfs diff=lfs merge=lfs -text
+*.npz filter=lfs diff=lfs merge=lfs -text
+*.onnx filter=lfs diff=lfs merge=lfs -text
+*.ot filter=lfs diff=lfs merge=lfs -text
+*.parquet filter=lfs diff=lfs merge=lfs -text
+*.pb filter=lfs diff=lfs merge=lfs -text
+*.pickle filter=lfs diff=lfs merge=lfs -text
+*.pkl filter=lfs diff=lfs merge=lfs -text
+*.pt filter=lfs diff=lfs merge=lfs -text
+*.pth filter=lfs diff=lfs merge=lfs -text
+*.rar filter=lfs diff=lfs merge=lfs -text
+*.safetensors filter=lfs diff=lfs merge=lfs -text
+saved_model/**/* filter=lfs diff=lfs merge=lfs -text
+*.tar.* filter=lfs diff=lfs merge=lfs -text
+*.tar filter=lfs diff=lfs merge=lfs -text
+*.tflite filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.wasm filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
+*tfevents* filter=lfs diff=lfs merge=lfs -text

Dockerfile ADDED Viewed

	@@ -0,0 +1,53 @@

+# Build stage
+FROM golang:1.25.3-alpine AS builder
+WORKDIR /build
+# Copy go mod files
+COPY go.mod go.sum ./
+RUN go mod download
+# Copy source code
+COPY . .
+# Build the binary
+RUN CGO_ENABLED=0 GOOS=linux go build -a -installsuffix cgo -o patbin .
+# Runtime stage
+FROM alpine:3.19
+WORKDIR /app
+# Install ca-certificates for HTTPS
+RUN apk --no-cache add ca-certificates tzdata
+# Create non-root user
+RUN adduser -D -g '' appuser
+# Copy binary from builder
+COPY --from=builder /build/patbin .
+# Copy static files and templates
+COPY --from=builder /build/static ./static
+COPY --from=builder /build/templates ./templates
+# Create data directory for SQLite
+RUN mkdir -p /app/data && chown -R appuser:appuser /app
+# Switch to non-root user
+USER appuser
+# Environment variables
+ENV PORT=7860
+ENV DB_PATH=/app/data/patbin.db
+ENV GIN_MODE=release
+# Expose port
+EXPOSE 7860
+# Health check
+HEALTHCHECK --interval=30s --timeout=3s --start-period=5s --retries=3 \
+    CMD wget --no-verbose --tries=1 --spider http://localhost:7860/ || exit 1
+# Run the binary
+CMD ["./patbin"]

README.md ADDED Viewed

	@@ -0,0 +1,10 @@

+---
+title: MyPasteBin
+emoji: 📈
+colorFrom: green
+colorTo: green
+sdk: docker
+pinned: false
+---
+Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference

config/config.go ADDED Viewed

	@@ -0,0 +1,36 @@

+package config
+import (
+	"os"
+)
+type Config struct {
+	Port       string
+	JWTSecret  string
+	DBPath     string
+	CookieName string
+}
+func Load() *Config {
+	port := os.Getenv("PORT")
+	if port == "" {
+		port = "8080"
+	}
+	jwtSecret := os.Getenv("JWT_SECRET")
+	if jwtSecret == "" {
+		jwtSecret = "patbin-super-secret-key-change-in-production"
+	}
+	dbPath := os.Getenv("DB_PATH")
+	if dbPath == "" {
+		dbPath = "patbin.db"
+	}
+	return &Config{
+		Port:       port,
+		JWTSecret:  jwtSecret,
+		DBPath:     dbPath,
+		CookieName: "patbin_token",
+	}
+}

database/database.go ADDED Viewed

	@@ -0,0 +1,33 @@

+package database
+import (
+	"patbin/models"
+	"github.com/glebarez/sqlite"
+	"gorm.io/gorm"
+	"gorm.io/gorm/logger"
+)
+var DB *gorm.DB
+func Init(dbPath string) error {
+	var err error
+	DB, err = gorm.Open(sqlite.Open(dbPath), &gorm.Config{
+		Logger: logger.Default.LogMode(logger.Silent),
+	})
+	if err != nil {
+		return err
+	}
+	// Auto migrate models
+	err = DB.AutoMigrate(&models.User{}, &models.Paste{})
+	if err != nil {
+		return err
+	}
+	return nil
+}
+func GetDB() *gorm.DB {
+	return DB
+}

go.mod ADDED Viewed

	@@ -0,0 +1,52 @@

+module patbin
+go 1.25.3
+require (
+	github.com/gin-gonic/gin v1.11.0
+	github.com/glebarez/sqlite v1.11.0
+	github.com/golang-jwt/jwt/v5 v5.3.0
+	golang.org/x/crypto v0.46.0
+	gorm.io/gorm v1.31.1
+)
+require (
+	github.com/bytedance/gopkg v0.1.3 // indirect
+	github.com/bytedance/sonic v1.14.2 // indirect
+	github.com/bytedance/sonic/loader v0.4.0 // indirect
+	github.com/cloudwego/base64x v0.1.6 // indirect
+	github.com/dustin/go-humanize v1.0.1 // indirect
+	github.com/gabriel-vasile/mimetype v1.4.12 // indirect
+	github.com/gin-contrib/sse v1.1.0 // indirect
+	github.com/glebarez/go-sqlite v1.21.2 // indirect
+	github.com/go-playground/locales v0.14.1 // indirect
+	github.com/go-playground/universal-translator v0.18.1 // indirect
+	github.com/go-playground/validator/v10 v10.30.1 // indirect
+	github.com/goccy/go-json v0.10.5 // indirect
+	github.com/goccy/go-yaml v1.19.1 // indirect
+	github.com/google/uuid v1.6.0 // indirect
+	github.com/jinzhu/inflection v1.0.0 // indirect
+	github.com/jinzhu/now v1.1.5 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/klauspost/cpuid/v2 v2.3.0 // indirect
+	github.com/leodido/go-urn v1.4.0 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
+	github.com/quic-go/qpack v0.6.0 // indirect
+	github.com/quic-go/quic-go v0.58.0 // indirect
+	github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect
+	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
+	github.com/ugorji/go/codec v1.3.1 // indirect
+	go.uber.org/mock v0.6.0 // indirect
+	golang.org/x/arch v0.23.0 // indirect
+	golang.org/x/net v0.48.0 // indirect
+	golang.org/x/sys v0.39.0 // indirect
+	golang.org/x/text v0.32.0 // indirect
+	google.golang.org/protobuf v1.36.11 // indirect
+	modernc.org/libc v1.22.5 // indirect
+	modernc.org/mathutil v1.5.0 // indirect
+	modernc.org/memory v1.5.0 // indirect
+	modernc.org/sqlite v1.23.1 // indirect
+)

go.sum ADDED Viewed

	@@ -0,0 +1,116 @@

+github.com/bytedance/gopkg v0.1.3 h1:TPBSwH8RsouGCBcMBktLt1AymVo2TVsBVCY4b6TnZ/M=
+github.com/bytedance/gopkg v0.1.3/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
+github.com/bytedance/sonic v1.14.2 h1:k1twIoe97C1DtYUo+fZQy865IuHia4PR5RPiuGPPIIE=
+github.com/bytedance/sonic v1.14.2/go.mod h1:T80iDELeHiHKSc0C9tubFygiuXoGzrkjKzX2quAx980=
+github.com/bytedance/sonic/loader v0.4.0 h1:olZ7lEqcxtZygCK9EKYKADnpQoYkRQxaeY2NYzevs+o=
+github.com/bytedance/sonic/loader v0.4.0/go.mod h1:AR4NYCk5DdzZizZ5djGqQ92eEhCCcdf5x77udYiSJRo=
+github.com/cloudwego/base64x v0.1.6 h1:t11wG9AECkCDk5fMSoxmufanudBtJ+/HemLstXDLI2M=
+github.com/cloudwego/base64x v0.1.6/go.mod h1:OFcloc187FXDaYHvrNIjxSe8ncn0OOM8gEHfghB2IPU=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
+github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
+github.com/gabriel-vasile/mimetype v1.4.12 h1:e9hWvmLYvtp846tLHam2o++qitpguFiYCKbn0w9jyqw=
+github.com/gabriel-vasile/mimetype v1.4.12/go.mod h1:d+9Oxyo1wTzWdyVUPMmXFvp4F9tea18J8ufA774AB3s=
+github.com/gin-contrib/sse v1.1.0 h1:n0w2GMuUpWDVp7qSpvze6fAu9iRxJY4Hmj6AmBOU05w=
+github.com/gin-contrib/sse v1.1.0/go.mod h1:hxRZ5gVpWMT7Z0B0gSNYqqsSCNIJMjzvm6fqCz9vjwM=
+github.com/gin-gonic/gin v1.11.0 h1:OW/6PLjyusp2PPXtyxKHU0RbX6I/l28FTdDlae5ueWk=
+github.com/gin-gonic/gin v1.11.0/go.mod h1:+iq/FyxlGzII0KHiBGjuNn4UNENUlKbGlNmc+W50Dls=
+github.com/glebarez/go-sqlite v1.21.2 h1:3a6LFC4sKahUunAmynQKLZceZCOzUthkRkEAl9gAXWo=
+github.com/glebarez/go-sqlite v1.21.2/go.mod h1:sfxdZyhQjTM2Wry3gVYWaW072Ri1WMdWJi0k6+3382k=
+github.com/glebarez/sqlite v1.11.0 h1:wSG0irqzP6VurnMEpFGer5Li19RpIRi2qvQz++w0GMw=
+github.com/glebarez/sqlite v1.11.0/go.mod h1:h8/o8j5wiAsqSPoWELDUdJXhjAhsVliSn7bWZjOhrgQ=
+github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
+github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
+github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
+github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
+github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
+github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
+github.com/go-playground/validator/v10 v10.30.1 h1:f3zDSN/zOma+w6+1Wswgd9fLkdwy06ntQJp0BBvFG0w=
+github.com/go-playground/validator/v10 v10.30.1/go.mod h1:oSuBIQzuJxL//3MelwSLD5hc2Tu889bF0Idm9Dg26cM=
+github.com/goccy/go-json v0.10.5 h1:Fq85nIqj+gXn/S5ahsiTlK3TmC85qgirsdTP/+DeaC4=
+github.com/goccy/go-json v0.10.5/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
+github.com/goccy/go-yaml v1.19.1 h1:3rG3+v8pkhRqoQ/88NYNMHYVGYztCOCIZ7UQhu7H+NE=
+github.com/goccy/go-yaml v1.19.1/go.mod h1:XBurs7gK8ATbW4ZPGKgcbrY1Br56PdM69F7LkFRi1kA=
+github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo=
+github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
+github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8=
+github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU=
+github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/pprof v0.0.0-20221118152302-e6195bd50e26 h1:Xim43kblpZXfIBQsbuBVKCudVG457BR2GZFIz3uw3hQ=
+github.com/google/pprof v0.0.0-20221118152302-e6195bd50e26/go.mod h1:dDKJzRmX4S37WGHujM7tX//fmj1uioxKzKxz3lo4HJo=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/jinzhu/inflection v1.0.0 h1:K317FqzuhWc8YvSVlFMCCUb36O/S9MCKRDI7QkRKD/E=
+github.com/jinzhu/inflection v1.0.0/go.mod h1:h+uFLlag+Qp1Va5pdKtLDYj+kHp5pxUVkryuEj+Srlc=
+github.com/jinzhu/now v1.1.5 h1:/o9tlHleP7gOFmsnYNz3RGnqzefHA47wQpKrrdTIwXQ=
+github.com/jinzhu/now v1.1.5/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
+github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
+github.com/klauspost/cpuid/v2 v2.3.0 h1:S4CRMLnYUhGeDFDqkGriYKdfoFlDnMtqTiI/sFzhA9Y=
+github.com/klauspost/cpuid/v2 v2.3.0/go.mod h1:hqwkgyIinND0mEev00jJYCxPNVRVXFQeu1XKlok6oO0=
+github.com/leodido/go-urn v1.4.0 h1:WT9HwE9SGECu3lg4d/dIA+jxlljEa1/ffXKmRjqdmIQ=
+github.com/leodido/go-urn v1.4.0/go.mod h1:bvxc+MVxLKB4z00jd1z+Dvzr47oO32F/QSNjSBOlFxI=
+github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
+github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
+github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
+github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
+github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
+github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
+github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
+github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/quic-go/qpack v0.6.0 h1:g7W+BMYynC1LbYLSqRt8PBg5Tgwxn214ZZR34VIOjz8=
+github.com/quic-go/qpack v0.6.0/go.mod h1:lUpLKChi8njB4ty2bFLX2x4gzDqXwUpaO1DP9qMDZII=
+github.com/quic-go/quic-go v0.58.0 h1:ggY2pvZaVdB9EyojxL1p+5mptkuHyX5MOSv4dgWF4Ug=
+github.com/quic-go/quic-go v0.58.0/go.mod h1:upnsH4Ju1YkqpLXC305eW3yDZ4NfnNbmQRCMWS58IKU=
+github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo=
+github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec h1:W09IVJc94icq4NjY3clb7Lk8O1qJ8BdBEF8z0ibU0rE=
+github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
+github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu7U=
+github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
+github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
+github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
+github.com/ugorji/go/codec v1.3.1 h1:waO7eEiFDwidsBN6agj1vJQ4AG7lh2yqXyOXqhgQuyY=
+github.com/ugorji/go/codec v1.3.1/go.mod h1:pRBVtBSKl77K30Bv8R2P+cLSGaTtex6fsA2Wjqmfxj4=
+go.uber.org/mock v0.6.0 h1:hyF9dfmbgIX5EfOdasqLsWD6xqpNZlXblLB/Dbnwv3Y=
+go.uber.org/mock v0.6.0/go.mod h1:KiVJ4BqZJaMj4svdfmHM0AUx4NJYO8ZNpPnZn1Z+BBU=
+golang.org/x/arch v0.23.0 h1:lKF64A2jF6Zd8L0knGltUnegD62JMFBiCPBmQpToHhg=
+golang.org/x/arch v0.23.0/go.mod h1:dNHoOeKiyja7GTvF9NJS1l3Z2yntpQNzgrjh1cU103A=
+golang.org/x/crypto v0.46.0 h1:cKRW/pmt1pKAfetfu+RCEvjvZkA9RimPbh7bhFjGVBU=
+golang.org/x/crypto v0.46.0/go.mod h1:Evb/oLKmMraqjZ2iQTwDwvCtJkczlDuTmdJXoZVzqU0=
+golang.org/x/net v0.48.0 h1:zyQRTTrjc33Lhh0fBgT/H3oZq9WuvRR5gPC70xpDiQU=
+golang.org/x/net v0.48.0/go.mod h1:+ndRgGjkh8FGtu1w1FGbEC31if4VrNVMuKTgcAAnQRY=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.39.0 h1:CvCKL8MeisomCi6qNZ+wbb0DN9E5AATixKsvNtMoMFk=
+golang.org/x/sys v0.39.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
+golang.org/x/text v0.32.0 h1:ZD01bjUt1FQ9WJ0ClOL5vxgxOI/sVCNgX1YtKwcY0mU=
+golang.org/x/text v0.32.0/go.mod h1:o/rUWzghvpD5TXrTIBuJU77MTaN0ljMWE47kxGJQ7jY=
+google.golang.org/protobuf v1.36.11 h1:fV6ZwhNocDyBLK0dj+fg8ektcVegBBuEolpbTQyBNVE=
+google.golang.org/protobuf v1.36.11/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gorm.io/gorm v1.31.1 h1:7CA8FTFz/gRfgqgpeKIBcervUn3xSyPUmr6B2WXJ7kg=
+gorm.io/gorm v1.31.1/go.mod h1:XyQVbO2k6YkOis7C2437jSit3SsDK72s7n7rsSHd+Gs=
+modernc.org/libc v1.22.5 h1:91BNch/e5B0uPbJFgqbxXuOnxBQjlS//icfQEGmvyjE=
+modernc.org/libc v1.22.5/go.mod h1:jj+Z7dTNX8fBScMVNRAYZ/jF91K8fdT2hYMThc3YjBY=
+modernc.org/mathutil v1.5.0 h1:rV0Ko/6SfM+8G+yKiyI830l3Wuz1zRutdslNoQ0kfiQ=
+modernc.org/mathutil v1.5.0/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
+modernc.org/memory v1.5.0 h1:N+/8c5rE6EqugZwHii4IFsaJ7MUhoWX07J5tC/iI5Ds=
+modernc.org/memory v1.5.0/go.mod h1:PkUhL0Mugw21sHPeskwZW4D6VscE/GQJOnIpCnW6pSU=
+modernc.org/sqlite v1.23.1 h1:nrSBg4aRQQwq59JpvGEQ15tNxoO5pX/kUjcRNwSAGQM=
+modernc.org/sqlite v1.23.1/go.mod h1:OrDj17Mggn6MhE+iPbBNf7RGKODDE9NFT0f3EwDzJqk=

handlers/auth.go ADDED Viewed

	@@ -0,0 +1,172 @@

+package handlers
+import (
+	"net/http"
+	"patbin/config"
+	"patbin/database"
+	"patbin/middleware"
+	"patbin/models"
+	"time"
+	"github.com/gin-gonic/gin"
+	"github.com/golang-jwt/jwt/v5"
+	"golang.org/x/crypto/bcrypt"
+)
+type AuthHandler struct {
+	cfg *config.Config
+}
+func NewAuthHandler(cfg *config.Config) *AuthHandler {
+	return &AuthHandler{cfg: cfg}
+}
+type RegisterRequest struct {
+	Username string `json:"username" binding:"required,min=3,max=50"`
+	Password string `json:"password" binding:"required,min=6"`
+}
+type LoginRequest struct {
+	Username string `json:"username" binding:"required"`
+	Password string `json:"password" binding:"required"`
+}
+// Register creates a new user account
+func (h *AuthHandler) Register(c *gin.Context) {
+	var req RegisterRequest
+	if err := c.ShouldBindJSON(&req); err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid request: " + err.Error()})
+		return
+	}
+	// Check if username exists
+	var existingUser models.User
+	if result := database.DB.Where("username = ?", req.Username).First(&existingUser); result.Error == nil {
+		c.JSON(http.StatusConflict, gin.H{"error": "Username already taken"})
+		return
+	}
+	// Hash password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(req.Password), bcrypt.DefaultCost)
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to process password"})
+		return
+	}
+	// Create user
+	user := models.User{
+		Username:  req.Username,
+		Password:  string(hashedPassword),
+		CreatedAt: time.Now(),
+	}
+	if result := database.DB.Create(&user); result.Error != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to create user"})
+		return
+	}
+	// Generate token
+	token, err := h.generateToken(user.ID, user.Username)
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to generate token"})
+		return
+	}
+	// Set cookie
+	c.SetCookie(h.cfg.CookieName, token, 60*60*24*7, "/", "", false, true)
+	c.JSON(http.StatusCreated, gin.H{
+		"message": "Registration successful",
+		"user":    user,
+		"token":   token,
+	})
+}
+// Login authenticates a user
+func (h *AuthHandler) Login(c *gin.Context) {
+	var req LoginRequest
+	if err := c.ShouldBindJSON(&req); err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid request"})
+		return
+	}
+	// Find user
+	var user models.User
+	if result := database.DB.Where("username = ?", req.Username).First(&user); result.Error != nil {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Invalid credentials"})
+		return
+	}
+	// Check password
+	if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(req.Password)); err != nil {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Invalid credentials"})
+		return
+	}
+	// Generate token
+	token, err := h.generateToken(user.ID, user.Username)
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to generate token"})
+		return
+	}
+	// Set cookie
+	c.SetCookie(h.cfg.CookieName, token, 60*60*24*7, "/", "", false, true)
+	c.JSON(http.StatusOK, gin.H{
+		"message": "Login successful",
+		"user":    user,
+		"token":   token,
+	})
+}
+// Logout clears the auth cookie
+func (h *AuthHandler) Logout(c *gin.Context) {
+	c.SetCookie(h.cfg.CookieName, "", -1, "/", "", false, true)
+	c.JSON(http.StatusOK, gin.H{"message": "Logged out successfully"})
+}
+// GetCurrentUser returns the current authenticated user
+func (h *AuthHandler) GetCurrentUser(c *gin.Context) {
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Not authenticated"})
+		return
+	}
+	var user models.User
+	if result := database.DB.First(&user, userID); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "User not found"})
+		return
+	}
+	c.JSON(http.StatusOK, user)
+}
+func (h *AuthHandler) generateToken(userID uint, username string) (string, error) {
+	claims := &middleware.Claims{
+		UserID:   userID,
+		Username: username,
+		RegisteredClaims: jwt.RegisteredClaims{
+			ExpiresAt: jwt.NewNumericDate(time.Now().Add(7 * 24 * time.Hour)),
+			IssuedAt:  jwt.NewNumericDate(time.Now()),
+		},
+	}
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	return token.SignedString([]byte(h.cfg.JWTSecret))
+}
+// LoginPage renders the login page
+func (h *AuthHandler) LoginPage(c *gin.Context) {
+	c.HTML(http.StatusOK, "login.html", gin.H{
+		"title": "Login - Patbin",
+	})
+}
+// RegisterPage renders the registration page
+func (h *AuthHandler) RegisterPage(c *gin.Context) {
+	c.HTML(http.StatusOK, "register.html", gin.H{
+		"title": "Register - Patbin",
+	})
+}

handlers/paste.go ADDED Viewed

	@@ -0,0 +1,453 @@

+package handlers
+import (
+	"crypto/rand"
+	"encoding/hex"
+	"net/http"
+	"patbin/database"
+	"patbin/middleware"
+	"patbin/models"
+	"strings"
+	"time"
+	"github.com/gin-gonic/gin"
+)
+type PasteHandler struct{}
+func NewPasteHandler() *PasteHandler {
+	return &PasteHandler{}
+}
+type CreatePasteRequest struct {
+	Title         string `json:"title"`
+	Content       string `json:"content" binding:"required"`
+	Language      string `json:"language"`
+	IsPublic      bool   `json:"is_public"`
+	ExpiresIn     string `json:"expires_in"` // "1h", "1d", "1w", "never"
+	BurnAfterRead bool   `json:"burn_after_read"`
+}
+type UpdatePasteRequest struct {
+	Title    string `json:"title"`
+	Content  string `json:"content"`
+	Language string `json:"language"`
+	IsPublic *bool  `json:"is_public"`
+}
+// generateID creates a random 8-character hex ID
+func generateID() string {
+	bytes := make([]byte, 4)
+	rand.Read(bytes)
+	return hex.EncodeToString(bytes)
+}
+// CreatePaste creates a new paste
+func (h *PasteHandler) CreatePaste(c *gin.Context) {
+	var req CreatePasteRequest
+	if err := c.ShouldBindJSON(&req); err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Content is required"})
+		return
+	}
+	const maxContentSize = 512 * 1024 // 512 KB
+	if len(req.Content) > maxContentSize {
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Content too large (max 512 KB)"})
+		return
+	}
+	var id string
+	for {
+		id = generateID()
+		var existing models.Paste
+		if result := database.DB.First(&existing, "id = ?", id); result.Error != nil {
+			break
+		}
+	}
+	paste := models.Paste{
+		ID:            id,
+		Title:         req.Title,
+		Content:       req.Content,
+		Language:      req.Language,
+		IsPublic:      req.IsPublic,
+		BurnAfterRead: req.BurnAfterRead,
+		CreatedAt:     time.Now(),
+		UpdatedAt:     time.Now(),
+	}
+	// Set user if authenticated
+	if userID, ok := middleware.GetUserID(c); ok {
+		paste.UserID = &userID
+	}
+	// Set expiration
+	if req.ExpiresIn != "" && req.ExpiresIn != "never" {
+		var duration time.Duration
+		switch req.ExpiresIn {
+		case "1h":
+			duration = time.Hour
+		case "1d":
+			duration = 24 * time.Hour
+		case "1w":
+			duration = 7 * 24 * time.Hour
+		case "1m":
+			duration = 30 * 24 * time.Hour
+		}
+		if duration > 0 {
+			expiresAt := time.Now().Add(duration)
+			paste.ExpiresAt = &expiresAt
+		}
+	}
+	if result := database.DB.Create(&paste); result.Error != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to create paste"})
+		return
+	}
+	c.JSON(http.StatusCreated, paste)
+}
+// GetPaste retrieves a paste by ID
+func (h *PasteHandler) GetPaste(c *gin.Context) {
+	id := c.Param("id")
+	// Remove extension if present
+	if idx := strings.LastIndex(id, "."); idx != -1 {
+		id = id[:idx]
+	}
+	var paste models.Paste
+	if result := database.DB.Preload("User").First(&paste, "id = ?", id); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste not found"})
+		return
+	}
+	// Check if expired
+	if paste.ExpiresAt != nil && paste.ExpiresAt.Before(time.Now()) {
+		database.DB.Delete(&paste)
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste has expired"})
+		return
+	}
+	// Check visibility
+	if !paste.IsPublic {
+		userID, authenticated := middleware.GetUserID(c)
+		if !authenticated || paste.UserID == nil || *paste.UserID != userID {
+			c.JSON(http.StatusForbidden, gin.H{"error": "This paste is private"})
+			return
+		}
+	}
+	// Handle burn after read
+	if paste.BurnAfterRead && paste.Views > 0 {
+		database.DB.Delete(&paste)
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste has been burned after reading"})
+		return
+	}
+	// Increment views
+	database.DB.Model(&paste).Update("views", paste.Views+1)
+	paste.Views++
+	c.JSON(http.StatusOK, paste)
+}
+// UpdatePaste updates an existing paste
+func (h *PasteHandler) UpdatePaste(c *gin.Context) {
+	id := c.Param("id")
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Authentication required"})
+		return
+	}
+	var paste models.Paste
+	if result := database.DB.First(&paste, "id = ?", id); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste not found"})
+		return
+	}
+	// Check ownership
+	if paste.UserID == nil || *paste.UserID != userID {
+		c.JSON(http.StatusForbidden, gin.H{"error": "You can only edit your own pastes"})
+		return
+	}
+	var req UpdatePasteRequest
+	if err := c.ShouldBindJSON(&req); err != nil {
+		c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid request"})
+		return
+	}
+	updates := map[string]interface{}{
+		"updated_at": time.Now(),
+	}
+	if req.Title != "" {
+		updates["title"] = req.Title
+	}
+	if req.Content != "" {
+		updates["content"] = req.Content
+	}
+	if req.Language != "" {
+		updates["language"] = req.Language
+	}
+	if req.IsPublic != nil {
+		updates["is_public"] = *req.IsPublic
+	}
+	if result := database.DB.Model(&paste).Updates(updates); result.Error != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to update paste"})
+		return
+	}
+	database.DB.First(&paste, "id = ?", id)
+	c.JSON(http.StatusOK, paste)
+}
+// DeletePaste deletes a paste
+func (h *PasteHandler) DeletePaste(c *gin.Context) {
+	id := c.Param("id")
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Authentication required"})
+		return
+	}
+	var paste models.Paste
+	if result := database.DB.First(&paste, "id = ?", id); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste not found"})
+		return
+	}
+	// Check ownership
+	if paste.UserID == nil || *paste.UserID != userID {
+		c.JSON(http.StatusForbidden, gin.H{"error": "You can only delete your own pastes"})
+		return
+	}
+	if result := database.DB.Delete(&paste); result.Error != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to delete paste"})
+		return
+	}
+	c.JSON(http.StatusOK, gin.H{"message": "Paste deleted successfully"})
+}
+// GetRawPaste returns the raw content of a paste
+func (h *PasteHandler) GetRawPaste(c *gin.Context) {
+	id := c.Param("id")
+	var paste models.Paste
+	if result := database.DB.First(&paste, "id = ?", id); result.Error != nil {
+		c.String(http.StatusNotFound, "Paste not found")
+		return
+	}
+	// Check if expired
+	if paste.ExpiresAt != nil && paste.ExpiresAt.Before(time.Now()) {
+		database.DB.Delete(&paste)
+		c.String(http.StatusNotFound, "Paste has expired")
+		return
+	}
+	// Check visibility
+	if !paste.IsPublic {
+		userID, authenticated := middleware.GetUserID(c)
+		if !authenticated || paste.UserID == nil || *paste.UserID != userID {
+			c.String(http.StatusForbidden, "This paste is private")
+			return
+		}
+	}
+	c.Header("Content-Type", "text/plain; charset=utf-8")
+	c.String(http.StatusOK, paste.Content)
+}
+// ForkPaste creates a copy of an existing paste
+func (h *PasteHandler) ForkPaste(c *gin.Context) {
+	id := c.Param("id")
+	var original models.Paste
+	if result := database.DB.First(&original, "id = ?", id); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "Paste not found"})
+		return
+	}
+	// Check visibility for forking
+	if !original.IsPublic {
+		userID, authenticated := middleware.GetUserID(c)
+		if !authenticated || original.UserID == nil || *original.UserID != userID {
+			c.JSON(http.StatusForbidden, gin.H{"error": "Cannot fork a private paste"})
+			return
+		}
+	}
+	// Generate new ID
+	var newID string
+	for {
+		newID = generateID()
+		var existing models.Paste
+		if result := database.DB.First(&existing, "id = ?", newID); result.Error != nil {
+			break
+		}
+	}
+	forked := models.Paste{
+		ID:        newID,
+		Title:     original.Title + " (Fork)",
+		Content:   original.Content,
+		Language:  original.Language,
+		IsPublic:  true,
+		CreatedAt: time.Now(),
+		UpdatedAt: time.Now(),
+	}
+	// Set user if authenticated
+	if userID, ok := middleware.GetUserID(c); ok {
+		forked.UserID = &userID
+	}
+	if result := database.DB.Create(&forked); result.Error != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to fork paste"})
+		return
+	}
+	c.JSON(http.StatusCreated, forked)
+}
+// ViewPastePage renders the paste view page
+func (h *PasteHandler) ViewPastePage(c *gin.Context) {
+	id := c.Param("id")
+	ext := ""
+	// Extract extension for syntax highlighting
+	if idx := strings.LastIndex(id, "."); idx != -1 {
+		ext = id[idx+1:]
+		id = id[:idx]
+	}
+	var paste models.Paste
+	if result := database.DB.Preload("User").First(&paste, "id = ?", id); result.Error != nil {
+		c.HTML(http.StatusNotFound, "error.html", gin.H{
+			"title":   "Not Found - Patbin",
+			"message": "Paste not found",
+		})
+		return
+	}
+	// Check if expired
+	if paste.ExpiresAt != nil && paste.ExpiresAt.Before(time.Now()) {
+		database.DB.Delete(&paste)
+		c.HTML(http.StatusNotFound, "error.html", gin.H{
+			"title":   "Expired - Patbin",
+			"message": "This paste has expired",
+		})
+		return
+	}
+	// Check visibility
+	if !paste.IsPublic {
+		userID, authenticated := middleware.GetUserID(c)
+		if !authenticated || paste.UserID == nil || *paste.UserID != userID {
+			c.HTML(http.StatusForbidden, "error.html", gin.H{
+				"title":   "Private - Patbin",
+				"message": "This paste is private",
+			})
+			return
+		}
+	}
+	// Handle burn after read
+	if paste.BurnAfterRead && paste.Views > 0 {
+		database.DB.Delete(&paste)
+		c.HTML(http.StatusNotFound, "error.html", gin.H{
+			"title":   "Burned - Patbin",
+			"message": "This paste has been burned after reading",
+		})
+		return
+	}
+	// Increment views
+	database.DB.Model(&paste).Update("views", paste.Views+1)
+	paste.Views++
+	// Determine language
+	language := paste.Language
+	if ext != "" {
+		language = models.GetLanguageFromExtension(ext)
+	}
+	if language == "" {
+		language = "plaintext"
+	}
+	// Count lines
+	lines := strings.Count(paste.Content, "\n") + 1
+	// Check if current user owns this paste
+	isOwner := false
+	if userID, ok := middleware.GetUserID(c); ok && paste.UserID != nil {
+		isOwner = *paste.UserID == userID
+	}
+	c.HTML(http.StatusOK, "view.html", gin.H{
+		"title":    paste.Title + " - Patbin",
+		"paste":    paste,
+		"language": language,
+		"lines":    lines,
+		"isOwner":  isOwner,
+		"ext":      ext,
+	})
+}
+// HomePage renders the home page with paste creation form
+func (h *PasteHandler) HomePage(c *gin.Context) {
+	c.HTML(http.StatusOK, "index.html", gin.H{
+		"title": "Patbin - Modern Pastebin",
+	})
+}
+// EditPastePage renders the paste edit page
+func (h *PasteHandler) EditPastePage(c *gin.Context) {
+	id := c.Param("id")
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.Redirect(http.StatusFound, "/login")
+		return
+	}
+	var paste models.Paste
+	if result := database.DB.First(&paste, "id = ?", id); result.Error != nil {
+		c.HTML(http.StatusNotFound, "error.html", gin.H{
+			"title":   "Not Found - Patbin",
+			"message": "Paste not found",
+		})
+		return
+	}
+	// Check ownership
+	if paste.UserID == nil || *paste.UserID != userID {
+		c.HTML(http.StatusForbidden, "error.html", gin.H{
+			"title":   "Forbidden - Patbin",
+			"message": "You can only edit your own pastes",
+		})
+		return
+	}
+	c.HTML(http.StatusOK, "edit.html", gin.H{
+		"title": "Edit - " + paste.Title,
+		"paste": paste,
+	})
+}
+// RecentPastes returns recent public pastes
+func (h *PasteHandler) RecentPastes(c *gin.Context) {
+	var pastes []models.Paste
+	database.DB.Where("is_public = ?", true).
+		Order("created_at DESC").
+		Limit(20).
+		Preload("User").
+		Find(&pastes)
+	c.JSON(http.StatusOK, pastes)
+}

handlers/user.go ADDED Viewed

	@@ -0,0 +1,108 @@

+package handlers
+import (
+	"net/http"
+	"patbin/database"
+	"patbin/middleware"
+	"patbin/models"
+	"github.com/gin-gonic/gin"
+)
+type UserHandler struct{}
+func NewUserHandler() *UserHandler {
+	return &UserHandler{}
+}
+// GetUserProfile returns a user's public pastes
+func (h *UserHandler) GetUserProfile(c *gin.Context) {
+	username := c.Param("username")
+	var user models.User
+	if result := database.DB.Where("username = ?", username).First(&user); result.Error != nil {
+		c.JSON(http.StatusNotFound, gin.H{"error": "User not found"})
+		return
+	}
+	var pastes []models.Paste
+	database.DB.Where("user_id = ? AND is_public = ?", user.ID, true).
+		Order("created_at DESC").
+		Find(&pastes)
+	c.JSON(http.StatusOK, gin.H{
+		"user":   user,
+		"pastes": pastes,
+	})
+}
+// GetUserProfilePage renders the user profile page
+func (h *UserHandler) GetUserProfilePage(c *gin.Context) {
+	username := c.Param("username")
+	var user models.User
+	if result := database.DB.Where("username = ?", username).First(&user); result.Error != nil {
+		c.HTML(http.StatusNotFound, "error.html", gin.H{
+			"title":   "Not Found - Patbin",
+			"message": "User not found",
+		})
+		return
+	}
+	var pastes []models.Paste
+	database.DB.Where("user_id = ? AND is_public = ?", user.ID, true).
+		Order("created_at DESC").
+		Find(&pastes)
+	c.HTML(http.StatusOK, "profile.html", gin.H{
+		"title":       user.Username + " - Patbin",
+		"profileUser": user,
+		"pastes":      pastes,
+	})
+}
+// GetDashboard returns the current user's dashboard with all their pastes
+func (h *UserHandler) GetDashboard(c *gin.Context) {
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.JSON(http.StatusUnauthorized, gin.H{"error": "Authentication required"})
+		return
+	}
+	var pastes []models.Paste
+	database.DB.Where("user_id = ?", userID).
+		Order("created_at DESC").
+		Find(&pastes)
+	c.JSON(http.StatusOK, gin.H{"pastes": pastes})
+}
+// GetDashboardPage renders the user's dashboard page
+func (h *UserHandler) GetDashboardPage(c *gin.Context) {
+	userID, ok := middleware.GetUserID(c)
+	if !ok {
+		c.Redirect(http.StatusFound, "/login")
+		return
+	}
+	username, _ := middleware.GetUsername(c)
+	var pastes []models.Paste
+	database.DB.Where("user_id = ?", userID).
+		Order("created_at DESC").
+		Find(&pastes)
+	// Count stats
+	var publicCount, privateCount int64
+	database.DB.Model(&models.Paste{}).Where("user_id = ? AND is_public = ?", userID, true).Count(&publicCount)
+	database.DB.Model(&models.Paste{}).Where("user_id = ? AND is_public = ?", userID, false).Count(&privateCount)
+	c.HTML(http.StatusOK, "dashboard.html", gin.H{
+		"title":        "Dashboard - Patbin",
+		"username":     username,
+		"pastes":       pastes,
+		"publicCount":  publicCount,
+		"privateCount": privateCount,
+		"totalCount":   len(pastes),
+	})
+}

main.go ADDED Viewed

	@@ -0,0 +1,90 @@

+package main
+import (
+	"fmt"
+	"html/template"
+	"log"
+	"patbin/config"
+	"patbin/database"
+	"patbin/handlers"
+	"patbin/middleware"
+	"time"
+	"github.com/gin-gonic/gin"
+)
+func main() {
+	cfg := config.Load()
+	if err := database.Init(cfg.DBPath); err != nil {
+		log.Fatal("Database init failed:", err)
+	}
+	gin.SetMode(gin.ReleaseMode)
+	r := gin.Default()
+	r.SetFuncMap(template.FuncMap{
+		"timeAgo": func(t time.Time) string {
+			diff := time.Since(t)
+			switch {
+			case diff < time.Minute:
+				return "just now"
+			case diff < time.Hour:
+				return fmt.Sprintf("%dm ago", int(diff.Minutes()))
+			case diff < 24*time.Hour:
+				return fmt.Sprintf("%dh ago", int(diff.Hours()))
+			case diff < 7*24*time.Hour:
+				return fmt.Sprintf("%dd ago", int(diff.Hours()/24))
+			default:
+				return t.Format("Jan 2, 2006")
+			}
+		},
+		"formatTime": func(t time.Time) string { return t.Format("Jan 2, 2006 at 3:04 PM") },
+		"add":        func(a, b int) int { return a + b },
+		"iterate": func(n int) []int {
+			r := make([]int, n)
+			for i := range r {
+				r[i] = i
+			}
+			return r
+		},
+	})
+	r.LoadHTMLGlob("templates/*")
+	r.Static("/static", "./static")
+	r.Use(middleware.AuthMiddleware(cfg))
+	authHandler := handlers.NewAuthHandler(cfg)
+	pasteHandler := handlers.NewPasteHandler()
+	userHandler := handlers.NewUserHandler()
+	r.GET("/", pasteHandler.HomePage)
+	r.GET("/login", authHandler.LoginPage)
+	r.GET("/register", authHandler.RegisterPage)
+	api := r.Group("/api")
+	{
+		api.POST("/auth/register", authHandler.Register)
+		api.POST("/auth/login", authHandler.Login)
+		api.POST("/auth/logout", authHandler.Logout)
+		api.GET("/auth/me", authHandler.GetCurrentUser)
+		api.POST("/paste", pasteHandler.CreatePaste)
+		api.GET("/paste/:id", pasteHandler.GetPaste)
+		api.PUT("/paste/:id", middleware.RequireAuth(), pasteHandler.UpdatePaste)
+		api.DELETE("/paste/:id", middleware.RequireAuth(), pasteHandler.DeletePaste)
+		api.POST("/paste/:id/fork", pasteHandler.ForkPaste)
+		api.GET("/pastes/recent", pasteHandler.RecentPastes)
+		api.GET("/user/:username", userHandler.GetUserProfile)
+		api.GET("/dashboard", middleware.RequireAuth(), userHandler.GetDashboard)
+	}
+	r.GET("/dashboard", middleware.RequireAuth(), userHandler.GetDashboardPage)
+	r.GET("/u/:username", userHandler.GetUserProfilePage)
+	r.GET("/:id/edit", middleware.RequireAuth(), pasteHandler.EditPastePage)
+	r.GET("/:id/raw", pasteHandler.GetRawPaste)
+	r.GET("/:id", pasteHandler.ViewPastePage)
+	log.Printf("🚀 Patbin running on http://localhost:%s", cfg.Port)
+	if err := r.Run(":" + cfg.Port); err != nil {
+		log.Fatal("Server failed:", err)
+	}
+}

middleware/auth.go ADDED Viewed

	@@ -0,0 +1,90 @@

+package middleware
+import (
+	"net/http"
+	"patbin/config"
+	"strings"
+	"github.com/gin-gonic/gin"
+	"github.com/golang-jwt/jwt/v5"
+)
+type Claims struct {
+	UserID   uint   `json:"user_id"`
+	Username string `json:"username"`
+	jwt.RegisteredClaims
+}
+// AuthMiddleware validates JWT token and sets user info in context
+func AuthMiddleware(cfg *config.Config) gin.HandlerFunc {
+	return func(c *gin.Context) {
+		// Try to get token from cookie first
+		tokenString, err := c.Cookie(cfg.CookieName)
+		if err != nil {
+			// Try Authorization header
+			authHeader := c.GetHeader("Authorization")
+			if authHeader != "" && strings.HasPrefix(authHeader, "Bearer ") {
+				tokenString = strings.TrimPrefix(authHeader, "Bearer ")
+			}
+		}
+		if tokenString == "" {
+			c.Next()
+			return
+		}
+		// Parse and validate token
+		claims := &Claims{}
+		token, err := jwt.ParseWithClaims(tokenString, claims, func(token *jwt.Token) (interface{}, error) {
+			return []byte(cfg.JWTSecret), nil
+		})
+		if err != nil || !token.Valid {
+			c.Next()
+			return
+		}
+		// Set user info in context
+		c.Set("user_id", claims.UserID)
+		c.Set("username", claims.Username)
+		c.Set("authenticated", true)
+		c.Next()
+	}
+}
+// RequireAuth ensures user is authenticated
+func RequireAuth() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		authenticated, exists := c.Get("authenticated")
+		if !exists || !authenticated.(bool) {
+			// Check if API request or web request
+			if strings.HasPrefix(c.Request.URL.Path, "/api/") {
+				c.JSON(http.StatusUnauthorized, gin.H{"error": "Authentication required"})
+			} else {
+				c.Redirect(http.StatusFound, "/login")
+			}
+			c.Abort()
+			return
+		}
+		c.Next()
+	}
+}
+// GetUserID returns the authenticated user ID from context
+func GetUserID(c *gin.Context) (uint, bool) {
+	userID, exists := c.Get("user_id")
+	if !exists {
+		return 0, false
+	}
+	return userID.(uint), true
+}
+// GetUsername returns the authenticated username from context
+func GetUsername(c *gin.Context) (string, bool) {
+	username, exists := c.Get("username")
+	if !exists {
+		return "", false
+	}
+	return username.(string), true
+}

models/paste.go ADDED Viewed

	@@ -0,0 +1,69 @@

+package models
+import (
+	"time"
+)
+type Paste struct {
+	ID            string     `gorm:"primaryKey;size:12" json:"id"`
+	Title         string     `gorm:"size:255" json:"title"`
+	Content       string     `gorm:"type:text;not null" json:"content"`
+	Language      string     `gorm:"size:50" json:"language"`
+	IsPublic      bool       `gorm:"default:true" json:"is_public"`
+	Views         int        `gorm:"default:0" json:"views"`
+	ExpiresAt     *time.Time `json:"expires_at,omitempty"`
+	BurnAfterRead bool       `gorm:"default:false" json:"burn_after_read"`
+	UserID        *uint      `gorm:"index" json:"user_id,omitempty"`
+	User          *User      `gorm:"constraint:OnDelete:SET NULL" json:"user,omitempty"`
+	CreatedAt     time.Time  `json:"created_at"`
+	UpdatedAt     time.Time  `json:"updated_at"`
+}
+// Language extension mappings
+var LanguageExtensions = map[string]string{
+	"go":         "go",
+	"py":         "python",
+	"python":     "python",
+	"js":         "javascript",
+	"javascript": "javascript",
+	"ts":         "typescript",
+	"typescript": "typescript",
+	"html":       "html",
+	"css":        "css",
+	"json":       "json",
+	"xml":        "xml",
+	"yaml":       "yaml",
+	"yml":        "yaml",
+	"md":         "markdown",
+	"markdown":   "markdown",
+	"sql":        "sql",
+	"sh":         "bash",
+	"bash":       "bash",
+	"c":          "c",
+	"cpp":        "cpp",
+	"h":          "c",
+	"hpp":        "cpp",
+	"java":       "java",
+	"rs":         "rust",
+	"rust":       "rust",
+	"rb":         "ruby",
+	"ruby":       "ruby",
+	"php":        "php",
+	"swift":      "swift",
+	"kt":         "kotlin",
+	"kotlin":     "kotlin",
+	"scala":      "scala",
+	"r":          "r",
+	"lua":        "lua",
+	"perl":       "perl",
+	"pl":         "perl",
+	"txt":        "plaintext",
+	"text":       "plaintext",
+}
+func GetLanguageFromExtension(ext string) string {
+	if lang, ok := LanguageExtensions[ext]; ok {
+		return lang
+	}
+	return "plaintext"
+}

models/user.go ADDED Viewed

	@@ -0,0 +1,13 @@

+package models
+import (
+	"time"
+)
+type User struct {
+	ID        uint      `gorm:"primaryKey" json:"id"`
+	Username  string    `gorm:"uniqueIndex;size:50;not null" json:"username"`
+	Password  string    `gorm:"not null" json:"-"`
+	CreatedAt time.Time `json:"created_at"`
+	Pastes    []Paste   `gorm:"foreignKey:UserID" json:"pastes,omitempty"`
+}

static/css/style.css ADDED Viewed

	@@ -0,0 +1,806 @@

+:root {
+    --bg-primary: #fafafa;
+    --bg-secondary: #f5f5f5;
+    --bg-tertiary: #e5e5e5;
+    --bg-code: #1c1c1c;
+    --text-primary: #171717;
+    --text-secondary: #525252;
+    --text-tertiary: #a3a3a3;
+    --accent: #f97316;
+    --accent-hover: #ea580c;
+    --accent-light: #fff7ed;
+    --border: #d4d4d4;
+    --success: #22c55e;
+    --warning: #f59e0b;
+    --error: #ef4444;
+    --shadow: 0 1px 3px rgb(0 0 0 / 0.1);
+    --radius: 4px;
+    --radius-lg: 8px;
+    --font-mono: 'JetBrains Mono', monospace;
+}
+[data-theme="dark"] {
+    --bg-primary: #111111;
+    --bg-secondary: #181818;
+    --bg-tertiary: #222222;
+    --bg-code: #111111;
+    --text-primary: #e5e5e5;
+    --text-secondary: #999999;
+    --text-tertiary: #555555;
+    --accent: #fb923c;
+    --accent-hover: #fdba74;
+    --accent-light: #2d1a0a;
+    --border: #2d2d2d;
+}
+*,
+*::before,
+*::after {
+    box-sizing: border-box;
+    margin: 0;
+    padding: 0;
+}
+::-webkit-scrollbar {
+    width: 10px;
+    height: 10px;
+}
+::-webkit-scrollbar-track {
+    background: var(--bg-secondary);
+}
+::-webkit-scrollbar-thumb {
+    background: var(--border);
+    border-radius: 5px;
+    border: 2px solid var(--bg-secondary);
+}
+::-webkit-scrollbar-thumb:hover {
+    background: var(--accent);
+}
+* {
+    scrollbar-width: thin;
+    scrollbar-color: var(--border) var(--bg-secondary);
+}
+html {
+    font-size: 16px;
+}
+body {
+    font-family: 'Inter', -apple-system, BlinkMacSystemFont, sans-serif;
+    background: var(--bg-primary);
+    color: var(--text-primary);
+    line-height: 1.5;
+    min-height: 100vh;
+}
+a {
+    color: var(--accent);
+    text-decoration: none;
+}
+a:hover {
+    color: var(--accent-hover);
+}
+.container {
+    max-width: 1400px;
+    margin: 0 auto;
+    padding: 0 12px;
+}
+.navbar {
+    background: var(--bg-secondary);
+    border-bottom: 1px solid var(--border);
+    padding: 8px 0;
+    position: sticky;
+    top: 0;
+    z-index: 100;
+}
+.navbar .container {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+}
+.logo {
+    font-size: 1.25rem;
+    font-weight: 700;
+    color: var(--accent);
+    display: flex;
+    align-items: center;
+    gap: 6px;
+}
+.logo svg {
+    width: 22px;
+    height: 22px;
+}
+.nav-links {
+    display: flex;
+    align-items: center;
+    gap: 6px;
+}
+.btn {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    gap: 4px;
+    padding: 6px 12px;
+    font-size: 13px;
+    font-weight: 500;
+    border-radius: var(--radius);
+    border: none;
+    cursor: pointer;
+    transition: all 0.15s;
+    text-decoration: none;
+}
+.btn-primary {
+    background: var(--accent);
+    color: #fff;
+}
+.btn-primary:hover {
+    background: var(--accent-hover);
+    color: #fff;
+}
+.btn-secondary {
+    background: var(--bg-tertiary);
+    color: var(--text-primary);
+    border: 1px solid var(--border);
+}
+.btn-secondary:hover {
+    background: var(--border);
+}
+.btn-ghost {
+    background: transparent;
+    color: var(--text-secondary);
+}
+.btn-ghost:hover {
+    background: var(--bg-tertiary);
+}
+.btn-danger {
+    background: var(--error);
+    color: #fff;
+}
+.btn-sm {
+    padding: 4px 8px;
+    font-size: 12px;
+}
+.btn-lg {
+    padding: 10px 20px;
+    font-size: 14px;
+}
+.form-group {
+    margin-bottom: 12px;
+}
+.form-label {
+    display: block;
+    font-size: 13px;
+    font-weight: 500;
+    margin-bottom: 4px;
+    color: var(--text-secondary);
+}
+.form-input,
+.form-textarea,
+.form-select {
+    width: 100%;
+    padding: 8px 10px;
+    font-size: 14px;
+    border: 1px solid var(--border);
+    border-radius: var(--radius);
+    background: var(--bg-primary);
+    color: var(--text-primary);
+}
+.form-input:focus,
+.form-textarea:focus,
+.form-select:focus {
+    outline: none;
+    border-color: var(--accent);
+}
+.form-textarea {
+    font-family: var(--font-mono);
+    font-size: 13px;
+    min-height: 60vh;
+    resize: vertical;
+}
+.form-row {
+    display: grid;
+    grid-template-columns: repeat(auto-fit, minmax(140px, 1fr));
+    gap: 12px;
+}
+.form-checkbox {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    cursor: pointer;
+}
+.form-checkbox input[type="checkbox"] {
+    -webkit-appearance: none;
+    appearance: none;
+    width: 18px;
+    height: 18px;
+    border: 2px solid var(--border);
+    border-radius: 4px;
+    background: var(--bg-primary);
+    cursor: pointer;
+    position: relative;
+}
+.form-checkbox input:checked {
+    background: var(--accent);
+    border-color: var(--accent);
+}
+.form-checkbox input:checked::after {
+    content: '';
+    position: absolute;
+    top: 2px;
+    left: 5px;
+    width: 4px;
+    height: 8px;
+    border: solid #fff;
+    border-width: 0 2px 2px 0;
+    transform: rotate(45deg);
+}
+.form-checkbox span {
+    font-size: 14px;
+}
+.card {
+    background: var(--bg-secondary);
+    border: 1px solid var(--border);
+    border-radius: var(--radius-lg);
+    padding: 16px;
+}
+.card-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    margin-bottom: 12px;
+    padding-bottom: 12px;
+    border-bottom: 1px solid var(--border);
+}
+.code-container {
+    background: var(--bg-secondary);
+    border: 1px solid var(--border);
+    border-radius: var(--radius-lg);
+    overflow: hidden;
+}
+[data-theme="dark"] .code-container {
+    background: var(--bg-code);
+}
+.code-header {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    flex-wrap: wrap;
+    gap: 8px;
+    padding: 8px 12px;
+    background: var(--bg-tertiary);
+    border-bottom: 1px solid var(--border);
+}
+[data-theme="dark"] .code-header {
+    background: rgba(0, 0, 0, 0.3);
+    border-color: var(--border);
+}
+.code-title {
+    font-size: 13px;
+    font-weight: 500;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+}
+.code-meta {
+    display: flex;
+    align-items: center;
+    gap: 12px;
+    font-size: 12px;
+    color: var(--text-tertiary);
+}
+.code-actions {
+    display: flex;
+    gap: 6px;
+    padding: 6px 12px;
+    background: var(--bg-tertiary);
+    flex-wrap: wrap;
+}
+[data-theme="dark"] .code-actions {
+    background: rgba(0, 0, 0, 0.2);
+}
+.code-body {
+    display: flex;
+    overflow-x: auto;
+}
+.code-body.wrap-text {
+    overflow-x: hidden;
+}
+.code-body.wrap-text .code-content {
+    overflow-x: hidden;
+    overflow-y: auto;
+}
+.code-body.wrap-text .code-content pre,
+.code-body.wrap-text .code-content code {
+    white-space: pre-wrap !important;
+    word-wrap: break-word !important;
+    overflow-wrap: break-word !important;
+}
+.line-numbers {
+    flex-shrink: 0;
+    padding: 10px 0;
+    text-align: right;
+    background: var(--bg-tertiary);
+    border-right: 1px solid var(--border);
+    user-select: none;
+}
+[data-theme="dark"] .line-numbers {
+    background: rgba(0, 0, 0, 0.2);
+}
+.line-numbers span {
+    display: block;
+    padding: 0 10px;
+    font-family: var(--font-mono);
+    font-size: 12px;
+    line-height: 1.5;
+    color: var(--text-tertiary);
+}
+.code-content {
+    flex: 1;
+    padding: 10px 12px;
+    overflow-x: auto;
+    background: var(--bg-primary);
+}
+[data-theme="dark"] .code-content {
+    background: transparent;
+}
+.code-content pre {
+    margin: 0;
+    font-family: var(--font-mono);
+    font-size: 13px;
+    line-height: 1.5;
+    color: var(--text-primary);
+    white-space: pre;
+}
+[data-theme="dark"] .code-content pre {
+    color: #c9d1d9;
+}
+.paste-list {
+    display: flex;
+    flex-direction: column;
+    gap: 8px;
+}
+.paste-item {
+    display: flex;
+    align-items: center;
+    gap: 12px;
+    padding: 10px;
+    background: var(--bg-secondary);
+    border: 1px solid var(--border);
+    border-radius: var(--radius);
+}
+.paste-item:hover {
+    border-color: var(--accent);
+}
+.paste-icon {
+    width: 36px;
+    height: 36px;
+    border-radius: var(--radius);
+    background: var(--accent-light);
+    color: var(--accent);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+}
+.paste-info {
+    flex: 1;
+    min-width: 0;
+}
+.paste-name {
+    font-weight: 500;
+    white-space: nowrap;
+    overflow: hidden;
+    text-overflow: ellipsis;
+}
+.paste-details {
+    font-size: 12px;
+    color: var(--text-tertiary);
+    display: flex;
+    flex-wrap: wrap;
+    gap: 6px;
+}
+.paste-badge {
+    padding: 2px 6px;
+    font-size: 11px;
+    font-weight: 500;
+    border-radius: 99px;
+    background: var(--bg-tertiary);
+}
+.paste-badge.public {
+    background: #dcfce7;
+    color: #166534;
+}
+[data-theme="dark"] .paste-badge.public {
+    background: #14532d;
+    color: #86efac;
+}
+.paste-badge.private {
+    background: #fef3c7;
+    color: #92400e;
+}
+[data-theme="dark"] .paste-badge.private {
+    background: #78350f;
+    color: #fcd34d;
+}
+.stats-grid {
+    display: grid;
+    grid-template-columns: repeat(auto-fit, minmax(100px, 1fr));
+    gap: 10px;
+    margin-bottom: 16px;
+}
+.stat-card {
+    background: var(--bg-tertiary);
+    border-radius: var(--radius);
+    padding: 12px;
+    text-align: center;
+}
+.stat-value {
+    font-size: 1.25rem;
+    font-weight: 700;
+    color: var(--accent);
+}
+.stat-label {
+    font-size: 12px;
+    color: var(--text-tertiary);
+}
+.theme-toggle {
+    background: var(--bg-tertiary);
+    border: 1px solid var(--border);
+    border-radius: var(--radius);
+    padding: 6px;
+    cursor: pointer;
+    display: flex;
+}
+.theme-toggle svg {
+    width: 18px;
+    height: 18px;
+    color: var(--text-secondary);
+}
+.theme-toggle .sun {
+    display: none;
+}
+[data-theme="dark"] .theme-toggle .sun {
+    display: block;
+}
+[data-theme="dark"] .theme-toggle .moon {
+    display: none;
+}
+.toast-container {
+    position: fixed;
+    bottom: 16px;
+    right: 16px;
+    z-index: 1000;
+    display: flex;
+    flex-direction: column;
+    gap: 6px;
+}
+.toast {
+    background: var(--bg-secondary);
+    border: 1px solid var(--border);
+    border-radius: var(--radius);
+    padding: 10px 14px;
+    box-shadow: var(--shadow);
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    animation: slideIn 0.3s;
+}
+.toast.success {
+    border-left: 3px solid var(--success);
+}
+.toast.error {
+    border-left: 3px solid var(--error);
+}
+@keyframes slideIn {
+    from {
+        opacity: 0;
+        transform: translateX(100%);
+    }
+    to {
+        opacity: 1;
+        transform: translateX(0);
+    }
+}
+.page {
+    padding: 16px 0;
+}
+.page-header {
+    margin-bottom: 16px;
+}
+.page-title {
+    font-size: 1.25rem;
+    font-weight: 600;
+}
+.page-subtitle {
+    color: var(--text-secondary);
+    font-size: 14px;
+}
+.auth-page {
+    min-height: calc(100vh - 50px);
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    padding: 20px;
+}
+.auth-card {
+    width: 100%;
+    max-width: 360px;
+}
+.auth-header {
+    text-align: center;
+    margin-bottom: 20px;
+}
+.auth-footer {
+    text-align: center;
+    margin-top: 16px;
+    font-size: 13px;
+    color: var(--text-secondary);
+}
+.error-page {
+    min-height: calc(100vh - 50px);
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+    justify-content: center;
+    text-align: center;
+    padding: 20px;
+}
+.error-code {
+    font-size: 4rem;
+    font-weight: 700;
+    color: var(--accent);
+    line-height: 1;
+}
+.error-message {
+    font-size: 1rem;
+    color: var(--text-secondary);
+    margin: 12px 0 20px;
+}
+@media (max-width: 768px) {
+    .container {
+        padding: 0 8px;
+    }
+    .code-header {
+        flex-direction: column;
+        align-items: flex-start;
+    }
+    .form-row {
+        grid-template-columns: 1fr;
+    }
+    .paste-item {
+        flex-direction: column;
+        align-items: flex-start;
+    }
+}
+.hidden {
+    display: none !important;
+}
+.flex {
+    display: flex;
+}
+.gap-2 {
+    gap: 8px;
+}
+.gap-3 {
+    gap: 12px;
+}
+.mt-2 {
+    margin-top: 8px;
+}
+.mt-3 {
+    margin-top: 12px;
+}
+.mt-4 {
+    margin-top: 16px;
+}
+.text-center {
+    text-align: center;
+}
+.text-sm {
+    font-size: 13px;
+}
+.text-muted {
+    color: var(--text-secondary);
+}
+.font-mono {
+    font-family: var(--font-mono);
+}
+code[class*="language-"],
+pre[class*="language-"] {
+    font-family: var(--font-mono);
+    font-size: 13px;
+    line-height: 1.5;
+    background: none;
+    color: var(--text-primary);
+}
+.token.comment,
+.token.prolog,
+.token.cdata {
+    color: #6b7280;
+}
+.token.punctuation {
+    color: #475569;
+}
+.token.property,
+.token.tag,
+.token.number,
+.token.constant,
+.token.symbol {
+    color: #d946ef;
+}
+.token.selector,
+.token.string,
+.token.char,
+.token.builtin {
+    color: #16a34a;
+}
+.token.operator,
+.token.url {
+    color: #0891b2;
+}
+.token.keyword {
+    color: #7c3aed;
+}
+.token.function,
+.token.class-name {
+    color: #ca8a04;
+}
+.token.regex,
+.token.variable {
+    color: #ea580c;
+}
+[data-theme="dark"] code[class*="language-"],
+[data-theme="dark"] pre[class*="language-"] {
+    color: #c9d1d9;
+}
+[data-theme="dark"] .token.punctuation {
+    color: #8b949e;
+}
+[data-theme="dark"] .token.property,
+[data-theme="dark"] .token.tag,
+[data-theme="dark"] .token.number,
+[data-theme="dark"] .token.constant {
+    color: #79c0ff;
+}
+[data-theme="dark"] .token.selector,
+[data-theme="dark"] .token.string,
+[data-theme="dark"] .token.char {
+    color: #a5d6ff;
+}
+[data-theme="dark"] .token.operator,
+[data-theme="dark"] .token.url {
+    color: #ffa657;
+}
+[data-theme="dark"] .token.keyword {
+    color: #ff7b72;
+}
+[data-theme="dark"] .token.function,
+[data-theme="dark"] .token.class-name {
+    color: #d2a8ff;
+}
+[data-theme="dark"] .token.regex,
+[data-theme="dark"] .token.variable {
+    color: #7ee787;
+}

static/js/app.js ADDED Viewed

	@@ -0,0 +1,170 @@

+const ThemeManager = {
+    init() {
+        const saved = localStorage.getItem('theme');
+        const prefersDark = window.matchMedia('(prefers-color-scheme: dark)').matches;
+        this.setTheme(saved || (prefersDark ? 'dark' : 'light'));
+        window.matchMedia('(prefers-color-scheme: dark)').addEventListener('change', e => {
+            if (!localStorage.getItem('theme')) this.setTheme(e.matches ? 'dark' : 'light');
+        });
+    },
+    setTheme(t) { document.documentElement.setAttribute('data-theme', t); localStorage.setItem('theme', t); },
+    toggle() { this.setTheme(document.documentElement.getAttribute('data-theme') === 'dark' ? 'light' : 'dark'); }
+};
+const Toast = {
+    container: null,
+    init() { this.container = document.createElement('div'); this.container.className = 'toast-container'; document.body.appendChild(this.container); },
+    show(msg, type = 'success', dur = 2500) {
+        const t = document.createElement('div');
+        t.className = `toast ${type}`;
+        t.innerHTML = `<svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">${type === 'success' ? '<path d="M20 6L9 17l-5-5"/>' : '<circle cx="12" cy="12" r="10"/><path d="M15 9l-6 6M9 9l6 6"/>'}</svg><span>${msg}</span>`;
+        this.container.appendChild(t);
+        setTimeout(() => { t.style.animation = 'slideIn 0.3s reverse'; setTimeout(() => t.remove(), 300); }, dur);
+    }
+};
+async function copyToClipboard(text, btn) {
+    try {
+        await navigator.clipboard.writeText(text);
+        Toast.show('Copied!');
+        if (btn) { const o = btn.innerHTML; btn.innerHTML = '✓ Copied'; setTimeout(() => btn.innerHTML = o, 1500); }
+    } catch { Toast.show('Copy failed', 'error'); }
+}
+function toggleWrap() {
+    const body = document.querySelector('.code-body');
+    const btn = document.getElementById('wrap-toggle');
+    if (!body) return;
+    body.classList.toggle('wrap-text');
+    const isWrapped = body.classList.contains('wrap-text');
+    localStorage.setItem('wrapText', isWrapped);
+    if (btn) btn.classList.toggle('btn-primary', isWrapped);
+}
+const API = {
+    async request(url, opts = {}) {
+        const r = await fetch(url, { headers: { 'Content-Type': 'application/json' }, credentials: 'same-origin', ...opts });
+        const d = await r.json();
+        if (!r.ok) throw new Error(d.error || 'Error');
+        return d;
+    },
+    createPaste: (d) => API.request('/api/paste', { method: 'POST', body: JSON.stringify(d) }),
+    updatePaste: (id, d) => API.request(`/api/paste/${id}`, { method: 'PUT', body: JSON.stringify(d) }),
+    deletePaste: (id) => API.request(`/api/paste/${id}`, { method: 'DELETE' }),
+    forkPaste: (id) => API.request(`/api/paste/${id}/fork`, { method: 'POST' }),
+    login: (u, p) => API.request('/api/auth/login', { method: 'POST', body: JSON.stringify({ username: u, password: p }) }),
+    register: (u, p) => API.request('/api/auth/register', { method: 'POST', body: JSON.stringify({ username: u, password: p }) }),
+    logout: () => API.request('/api/auth/logout', { method: 'POST' })
+};
+function setupPasteForm() {
+    const f = document.getElementById('paste-form');
+    if (!f) return;
+    f.addEventListener('submit', async e => {
+        e.preventDefault();
+        const btn = f.querySelector('button[type="submit"]');
+        try {
+            btn.disabled = true; btn.textContent = 'Creating...';
+            const paste = await API.createPaste({
+                title: f.title.value || 'Untitled', content: f.content.value, language: f.language.value,
+                is_public: f.is_public.checked, expires_in: f.expires_in?.value || 'never', burn_after_read: f.burn_after_read?.checked || false
+            });
+            window.location.href = `/${paste.id}`;
+        } catch (err) { Toast.show(err.message, 'error'); btn.disabled = false; btn.textContent = 'Create Paste'; }
+    });
+}
+function setupEditForm() {
+    const f = document.getElementById('edit-form');
+    if (!f) return;
+    f.addEventListener('submit', async e => {
+        e.preventDefault();
+        const btn = f.querySelector('button[type="submit"]');
+        try {
+            btn.disabled = true; btn.textContent = 'Saving...';
+            await API.updatePaste(f.dataset.pasteId, { title: f.title.value, content: f.content.value, language: f.language.value, is_public: f.is_public.checked });
+            Toast.show('Saved!'); setTimeout(() => window.location.href = `/${f.dataset.pasteId}`, 800);
+        } catch (err) { Toast.show(err.message, 'error'); btn.disabled = false; btn.textContent = 'Save'; }
+    });
+}
+function setupAuthForms() {
+    const login = document.getElementById('login-form');
+    const reg = document.getElementById('register-form');
+    if (login) login.addEventListener('submit', async e => {
+        e.preventDefault();
+        const btn = login.querySelector('button[type="submit"]');
+        try { btn.disabled = true; await API.login(login.username.value, login.password.value); window.location.href = '/dashboard'; }
+        catch (err) { Toast.show(err.message, 'error'); btn.disabled = false; }
+    });
+    if (reg) reg.addEventListener('submit', async e => {
+        e.preventDefault();
+        const btn = reg.querySelector('button[type="submit"]');
+        try { btn.disabled = true; await API.register(reg.username.value, reg.password.value); window.location.href = '/dashboard'; }
+        catch (err) { Toast.show(err.message, 'error'); btn.disabled = false; }
+    });
+}
+function setupDeleteButton() {
+    const btn = document.getElementById('delete-paste');
+    if (!btn) return;
+    btn.addEventListener('click', async () => {
+        if (!confirm('Delete this paste?')) return;
+        try { await API.deletePaste(btn.dataset.pasteId); Toast.show('Deleted!'); setTimeout(() => window.location.href = '/dashboard', 800); }
+        catch (err) { Toast.show(err.message, 'error'); }
+    });
+}
+function setupForkButton() {
+    const btn = document.getElementById('fork-paste');
+    if (!btn) return;
+    btn.addEventListener('click', async () => {
+        try { const f = await API.forkPaste(btn.dataset.pasteId); Toast.show('Forked!'); setTimeout(() => window.location.href = `/${f.id}`, 800); }
+        catch (err) { Toast.show(err.message, 'error'); }
+    });
+}
+function setupLogout() {
+    const btn = document.getElementById('logout-btn');
+    if (!btn) return;
+    btn.addEventListener('click', async e => { e.preventDefault(); try { await API.logout(); window.location.href = '/'; } catch { } });
+}
+function setupKeyboardShortcuts() {
+    document.addEventListener('keydown', e => {
+        if ((e.ctrlKey || e.metaKey) && e.key === 'Enter') {
+            const f = document.querySelector('#paste-form, #edit-form');
+            if (f) { e.preventDefault(); f.dispatchEvent(new Event('submit')); }
+        }
+        if ((e.ctrlKey || e.metaKey) && e.key === 's') {
+            const f = document.getElementById('edit-form');
+            if (f) { e.preventDefault(); f.dispatchEvent(new Event('submit')); }
+        }
+    });
+}
+function restoreWrapState() {
+    if (localStorage.getItem('wrapText') === 'true') {
+        const body = document.querySelector('.code-body');
+        const btn = document.getElementById('wrap-toggle');
+        if (body) body.classList.add('wrap-text');
+        if (btn) btn.classList.add('btn-primary');
+    }
+}
+document.addEventListener('DOMContentLoaded', () => {
+    ThemeManager.init();
+    Toast.init();
+    setupPasteForm();
+    setupEditForm();
+    setupAuthForms();
+    setupDeleteButton();
+    setupForkButton();
+    setupLogout();
+    setupKeyboardShortcuts();
+    restoreWrapState();
+});
+window.toggleTheme = () => ThemeManager.toggle();
+window.copyToClipboard = copyToClipboard;
+window.toggleWrap = toggleWrap;

templates/dashboard.html ADDED Viewed

	@@ -0,0 +1,128 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                    <polyline points="14 2 14 8 20 8"/>
+                    <line x1="16" y1="13" x2="8" y2="13"/>
+                    <line x1="16" y1="17" x2="8" y2="17"/>
+                    <polyline points="10 9 9 9 8 9"/>
+                </svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()" title="Toggle theme">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <circle cx="12" cy="12" r="5"/>
+                        <line x1="12" y1="1" x2="12" y2="3"/>
+                        <line x1="12" y1="21" x2="12" y2="23"/>
+                        <line x1="4.22" y1="4.22" x2="5.64" y2="5.64"/>
+                        <line x1="18.36" y1="18.36" x2="19.78" y2="19.78"/>
+                        <line x1="1" y1="12" x2="3" y2="12"/>
+                        <line x1="21" y1="12" x2="23" y2="12"/>
+                        <line x1="4.22" y1="19.78" x2="5.64" y2="18.36"/>
+                        <line x1="18.36" y1="5.64" x2="19.78" y2="4.22"/>
+                    </svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/>
+                    </svg>
+                </button>
+                <a href="/" class="btn btn-primary">
+                    <svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M12 5v14M5 12h14"/>
+                    </svg>
+                    New Paste
+                </a>
+                <a href="#" id="logout-btn" class="btn btn-secondary">Logout</a>
+            </div>
+        </div>
+    </nav>
+    <main class="page">
+        <div class="container">
+            <div class="page-header">
+                <h1 class="page-title">Dashboard</h1>
+                <p class="page-subtitle">Welcome back, {{.username}}</p>
+            </div>
+            <div class="stats-grid">
+                <div class="stat-card">
+                    <div class="stat-value">{{.totalCount}}</div>
+                    <div class="stat-label">Total Pastes</div>
+                </div>
+                <div class="stat-card">
+                    <div class="stat-value">{{.publicCount}}</div>
+                    <div class="stat-label">Public</div>
+                </div>
+                <div class="stat-card">
+                    <div class="stat-value">{{.privateCount}}</div>
+                    <div class="stat-label">Private</div>
+                </div>
+            </div>
+            <div class="card">
+                <div class="card-header">
+                    <h2 class="card-title">Your Pastes</h2>
+                    <a href="/" class="btn btn-primary btn-sm">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <path d="M12 5v14M5 12h14"/>
+                        </svg>
+                        New
+                    </a>
+                </div>
+                {{if .pastes}}
+                <div class="paste-list">
+                    {{range .pastes}}
+                    <a href="/{{.ID}}" class="paste-item">
+                        <div class="paste-icon">
+                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                                <polyline points="16 18 22 12 16 6"/>
+                                <polyline points="8 6 2 12 8 18"/>
+                            </svg>
+                        </div>
+                        <div class="paste-info">
+                            <div class="paste-name">{{if .Title}}{{.Title}}{{else}}Untitled{{end}}</div>
+                            <div class="paste-details">
+                                {{if .IsPublic}}
+                                <span class="paste-badge public">Public</span>
+                                {{else}}
+                                <span class="paste-badge private">Private</span>
+                                {{end}}
+                                <span>{{if .Language}}{{.Language}}{{else}}plain{{end}}</span>
+                                <span>{{.Views}} views</span>
+                                <span>{{formatTime .CreatedAt}}</span>
+                            </div>
+                        </div>
+                    </a>
+                    {{end}}
+                </div>
+                {{else}}
+                <div class="text-center text-muted" style="padding: 3rem 1rem;">
+                    <svg width="48" height="48" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="1.5" style="margin: 0 auto 1rem; opacity: 0.5;">
+                        <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                        <polyline points="14 2 14 8 20 8"/>
+                    </svg>
+                    <p>No pastes yet</p>
+                    <a href="/" class="btn btn-primary mt-3">Create your first paste</a>
+                </div>
+                {{end}}
+            </div>
+        </div>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/edit.html ADDED Viewed

	@@ -0,0 +1,58 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">Patbin</a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="5"/></svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/></svg>
+                </button>
+                <a href="/" class="btn btn-primary">New Paste</a>
+            </div>
+        </div>
+    </nav>
+    <main class="page">
+        <div class="container container-narrow">
+            <div class="page-header"><h1>Edit Paste</h1></div>
+            <form id="edit-form" class="card" data-paste-id="{{.paste.ID}}">
+                <div class="form-group">
+                    <label class="form-label" for="title">Title</label>
+                    <input type="text" id="title" name="title" class="form-input" value="{{.paste.Title}}">
+                </div>
+                <div class="form-group">
+                    <label class="form-label" for="content">Content</label>
+                    <textarea id="content" name="content" class="form-textarea" required>{{.paste.Content}}</textarea>
+                </div>
+                <div class="form-row">
+                    <div class="form-group">
+                        <label class="form-label" for="language">Language</label>
+                        <select id="language" name="language" class="form-select">
+                            <option value="">Auto-detect</option>
+                            <option value="go" {{if eq .paste.Language "go"}}selected{{end}}>Go</option>
+                            <option value="python" {{if eq .paste.Language "python"}}selected{{end}}>Python</option>
+                            <option value="javascript" {{if eq .paste.Language "javascript"}}selected{{end}}>JavaScript</option>
+                        </select>
+                    </div>
+                    <div class="form-group">
+                        <label class="form-checkbox"><input type="checkbox" name="is_public" {{if .paste.IsPublic}}checked{{end}}><span>Public</span></label>
+                    </div>
+                </div>
+                <div class="mt-4 flex gap-3">
+                    <button type="submit" class="btn btn-primary btn-lg" style="flex:1">Save</button>
+                    <a href="/{{.paste.ID}}" class="btn btn-secondary btn-lg">Cancel</a>
+                </div>
+            </form>
+        </div>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/error.html ADDED Viewed

	@@ -0,0 +1,29 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">Patbin</a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="5"/></svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/></svg>
+                </button>
+            </div>
+        </div>
+    </nav>
+    <main class="error-page">
+        <div class="error-code">{{if .code}}{{.code}}{{else}}404{{end}}</div>
+        <p class="error-message">{{.message}}</p>
+        <a href="/" class="btn btn-primary btn-lg">Go Home</a>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/index.html ADDED Viewed

	@@ -0,0 +1,128 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600&family=JetBrains+Mono&display=swap" rel="stylesheet">
+    <link href="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/themes/prism-tomorrow.min.css" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+    <style>
+        html,body{height:100%;margin:0}
+        body{display:flex;flex-direction:column}
+        .navbar{flex-shrink:0}
+        .editor-wrap{flex:1;display:flex;flex-direction:column;padding:8px;min-height:0;background:var(--bg-tertiary)}
+        .editor-box{flex:1;display:flex;flex-direction:column;border:1px solid var(--border);border-radius:8px;overflow:hidden;background:var(--bg-primary);min-height:0}
+        .editor-box:focus-within{border-color:var(--accent);box-shadow:0 0 0 2px var(--accent-light)}
+        .toolbar{display:flex;align-items:center;gap:6px;padding:6px 10px;background:var(--bg-secondary);border-bottom:1px solid var(--border);flex-wrap:wrap}
+        .t-input{border:none;background:transparent;font-size:14px;font-weight:500;color:var(--text-primary);padding:4px 0;flex:1;min-width:100px;outline:none}
+        .t-input::placeholder{color:var(--text-tertiary)}
+        .t-sel{background:var(--bg-primary);border:1px solid var(--border);border-radius:4px;padding:4px 6px;font-size:11px;color:var(--text-primary);cursor:pointer}
+        .t-sel:focus{outline:none;border-color:var(--accent)}
+        .t-sep{width:1px;height:18px;background:var(--border)}
+        .t-opt{display:flex;align-items:center;gap:4px;padding:4px 8px;font-size:11px;border:1px solid var(--border);border-radius:4px;background:var(--bg-primary);color:var(--text-secondary);cursor:pointer}
+        .t-opt:hover{color:var(--accent);border-color:var(--accent)}
+        .t-opt.on{background:var(--accent);border-color:var(--accent);color:#000}
+        .t-opt svg{width:12px;height:12px}
+        .t-btn{padding:5px 14px;font-size:12px;font-weight:600;border:1px solid var(--accent);border-radius:4px;background:var(--accent);color:#000;cursor:pointer;margin-left:auto}
+        .t-btn:hover{background:var(--accent-hover)}
+        .editor-main{flex:1;display:flex;min-height:0}
+        .gutter{width:36px;flex-shrink:0;padding:8px 0;background:var(--bg-secondary);border-right:1px solid var(--border);font:11px/1.75 'JetBrains Mono',monospace;color:var(--text-tertiary);text-align:right;overflow-y:auto;user-select:none}
+        .gutter div{padding-right:8px}
+        .code-area{flex:1;position:relative;display:flex;flex-direction:column;min-width:0}
+        .preview{position:absolute;top:0;left:0;right:0;bottom:0;padding:8px 10px;font:13px/1.75 'JetBrains Mono',monospace;overflow:auto;pointer-events:none;white-space:pre;tab-size:4}
+        .preview code{background:none!important;padding:0!important}
+        .code-ta{flex:1;border:none;resize:none;padding:8px 10px;font:13px/1.75 'JetBrains Mono',monospace;color:var(--text-primary);background:transparent;outline:none;overflow-y:auto;white-space:pre;tab-size:4;position:relative;z-index:1}
+        .code-ta::placeholder{color:var(--text-tertiary)}
+        .code-ta.hl{color:transparent;caret-color:var(--text-primary)}
+        .status{display:flex;align-items:center;gap:12px;padding:4px 10px;background:var(--bg-secondary);border-top:1px solid var(--border);font-size:10px;color:var(--text-tertiary)}
+        .status .a{color:var(--accent)}
+        .badge{padding:2px 6px;background:var(--accent-light);color:var(--accent);border-radius:3px;font-weight:500}
+        .k{background:var(--bg-tertiary);padding:1px 4px;border-radius:2px;font-family:var(--font-mono)}
+        @media(max-width:600px){.t-sep{display:none}.t-opt span{display:none}.t-sel{font-size:10px}}
+    </style>
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" style="width:20px;height:20px"><path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/><polyline points="14 2 14 8 20 8"/></svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()"><svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="5"/></svg><svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/></svg></button>
+                {{if .username}}<a href="/dashboard" class="btn btn-ghost btn-sm">Dashboard</a>{{else}}<a href="/login" class="btn btn-ghost btn-sm">Login</a>{{end}}
+            </div>
+        </div>
+    </nav>
+    <form id="paste-form" class="editor-wrap">
+        <div class="editor-box">
+            <div class="toolbar">
+                <input type="text" name="title" class="t-input" placeholder="Untitled" autocomplete="off">
+                <select name="language" class="t-sel" id="lang-select">
+                    <option value="">Language</option>
+                    <option value="javascript">JavaScript</option>
+                    <option value="typescript">TypeScript</option>
+                    <option value="python">Python</option>
+                    <option value="go">Go</option>
+                    <option value="rust">Rust</option>
+                    <option value="java">Java</option>
+                    <option value="c">C</option>
+                    <option value="cpp">C++</option>
+                    <option value="csharp">C#</option>
+                    <option value="php">PHP</option>
+                    <option value="ruby">Ruby</option>
+                    <option value="html">HTML</option>
+                    <option value="css">CSS</option>
+                    <option value="json">JSON</option>
+                    <option value="sql">SQL</option>
+                    <option value="bash">Bash</option>
+                </select>
+                <select name="expires_in" class="t-sel">
+                    <option value="never">Never</option>
+                    <option value="1h">1h</option>
+                    <option value="1d">1d</option>
+                    <option value="1w">1w</option>
+                </select>
+                <span class="t-sep"></span>
+                <button type="button" class="t-opt on" id="pub" onclick="toggleP()"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><circle cx="12" cy="12" r="10"/></svg><span>Public</span></button>
+                <button type="button" class="t-opt" id="burn" onclick="toggleB()"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2"><path d="M12 22C6 18 3 13 3 10c0-3 2-5 4-6s5 1 5 3c0-2 2.5-4 5-3s4 3 4 6c0 3-3 8-9 12z"/></svg><span>Burn</span></button>
+                <input type="hidden" name="is_public" id="is_public" value="true">
+                <input type="hidden" name="burn_after_read" id="burn_after_read" value="false">
+                <button type="submit" class="t-btn">Create</button>
+            </div>
+            <div class="editor-main">
+                <div class="gutter" id="gut"><div>1</div></div>
+                <div class="code-area">
+                    <div class="preview" id="pre"></div>
+                    <textarea name="content" class="code-ta" id="ed" placeholder="// Paste code here" required spellcheck="false"></textarea>
+                </div>
+            </div>
+            <div class="status">
+                <span id="ln">1 line</span>
+                <span id="ch">0 chars</span>
+                <span class="badge" id="lg">Plain</span>
+                <span style="flex:1"></span>
+                <span><span class="k">Tab</span> indent</span>
+                <span><span class="k">Ctrl+↵</span> create</span>
+            </div>
+        </div>
+    </form>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/prism.min.js"></script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/plugins/autoloader/prism-autoloader.min.js"></script>
+    <script src="/static/js/app.js"></script>
+    <script>
+        const ed=document.getElementById('ed'),gut=document.getElementById('gut'),pre=document.getElementById('pre'),ls=document.getElementById('lang-select'),lg=document.getElementById('lg');
+        function upd(){const n=ed.value.split('\n').length;gut.innerHTML=Array.from({length:n},(_,i)=>`<div>${i+1}</div>`).join('');document.getElementById('ln').textContent=n+(n===1?' line':' lines');document.getElementById('ch').textContent=ed.value.length+' chars';hl()}
+        function hl(){const l=ls.value,c=ed.value||' ';lg.textContent=ls.options[ls.selectedIndex].text.slice(0,10);if(l&&l!=='plaintext'&&Prism.languages[l]){pre.innerHTML=`<code class="language-${l}">${Prism.highlight(c,Prism.languages[l],l)}</code>`;ed.classList.add('hl')}else{pre.innerHTML='';ed.classList.remove('hl')}}
+        ed.addEventListener('input',upd);
+        ed.addEventListener('scroll',()=>{gut.scrollTop=ed.scrollTop;pre.scrollTop=ed.scrollTop;pre.scrollLeft=ed.scrollLeft});
+        ls.addEventListener('change',()=>{Prism.plugins.autoloader.loadLanguages([ls.value],hl);hl()});
+        function toggleP(){const b=document.getElementById('pub'),i=document.getElementById('is_public');b.classList.toggle('on');i.value=b.classList.contains('on');b.querySelector('span').textContent=b.classList.contains('on')?'Public':'Private'}
+        function toggleB(){const b=document.getElementById('burn'),i=document.getElementById('burn_after_read');b.classList.toggle('on');i.value=b.classList.contains('on')}
+        ed.addEventListener('keydown',e=>{if(e.key==='Tab'){e.preventDefault();const s=ed.selectionStart,n=ed.selectionEnd;ed.value=ed.value.substring(0,s)+'    '+ed.value.substring(n);ed.selectionStart=ed.selectionEnd=s+4;upd()}});
+        upd();
+    </script>
+</body>
+</html>

templates/login.html ADDED Viewed

	@@ -0,0 +1,77 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                    <polyline points="14 2 14 8 20 8"/>
+                    <line x1="16" y1="13" x2="8" y2="13"/>
+                    <line x1="16" y1="17" x2="8" y2="17"/>
+                    <polyline points="10 9 9 9 8 9"/>
+                </svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()" title="Toggle theme">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <circle cx="12" cy="12" r="5"/>
+                        <line x1="12" y1="1" x2="12" y2="3"/>
+                        <line x1="12" y1="21" x2="12" y2="23"/>
+                        <line x1="4.22" y1="4.22" x2="5.64" y2="5.64"/>
+                        <line x1="18.36" y1="18.36" x2="19.78" y2="19.78"/>
+                        <line x1="1" y1="12" x2="3" y2="12"/>
+                        <line x1="21" y1="12" x2="23" y2="12"/>
+                        <line x1="4.22" y1="19.78" x2="5.64" y2="18.36"/>
+                        <line x1="18.36" y1="5.64" x2="19.78" y2="4.22"/>
+                    </svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/>
+                    </svg>
+                </button>
+            </div>
+        </div>
+    </nav>
+    <main class="auth-page">
+        <div class="card auth-card">
+            <div class="auth-header">
+                <h1>Welcome back</h1>
+                <p class="text-muted">Sign in to your account</p>
+            </div>
+            <form id="login-form">
+                <div class="form-group">
+                    <label class="form-label" for="username">Username</label>
+                    <input type="text" id="username" name="username" class="form-input" placeholder="Enter username" required autocomplete="username">
+                </div>
+                <div class="form-group">
+                    <label class="form-label" for="password">Password</label>
+                    <input type="password" id="password" name="password" class="form-input" placeholder="Enter password" required autocomplete="current-password">
+                </div>
+                <div class="mt-4">
+                    <button type="submit" class="btn btn-primary btn-lg" style="width: 100%">Login</button>
+                </div>
+            </form>
+            <div class="auth-footer">
+                Don't have an account? <a href="/register">Sign up</a>
+            </div>
+        </div>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/profile.html ADDED Viewed

	@@ -0,0 +1,103 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                    <polyline points="14 2 14 8 20 8"/>
+                    <line x1="16" y1="13" x2="8" y2="13"/>
+                    <line x1="16" y1="17" x2="8" y2="17"/>
+                    <polyline points="10 9 9 9 8 9"/>
+                </svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()" title="Toggle theme">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <circle cx="12" cy="12" r="5"/>
+                        <line x1="12" y1="1" x2="12" y2="3"/>
+                        <line x1="12" y1="21" x2="12" y2="23"/>
+                        <line x1="4.22" y1="4.22" x2="5.64" y2="5.64"/>
+                        <line x1="18.36" y1="18.36" x2="19.78" y2="19.78"/>
+                        <line x1="1" y1="12" x2="3" y2="12"/>
+                        <line x1="21" y1="12" x2="23" y2="12"/>
+                        <line x1="4.22" y1="19.78" x2="5.64" y2="18.36"/>
+                        <line x1="18.36" y1="5.64" x2="19.78" y2="4.22"/>
+                    </svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/>
+                    </svg>
+                </button>
+                <a href="/" class="btn btn-primary">
+                    <svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M12 5v14M5 12h14"/>
+                    </svg>
+                    New Paste
+                </a>
+            </div>
+        </div>
+    </nav>
+    <main class="page">
+        <div class="container">
+            <div class="page-header">
+                <h1 class="page-title">
+                    <svg width="24" height="24" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" style="vertical-align: -4px; margin-right: 0.5rem;">
+                        <path d="M20 21v-2a4 4 0 0 0-4-4H8a4 4 0 0 0-4 4v2"/>
+                        <circle cx="12" cy="7" r="4"/>
+                    </svg>
+                    {{.profileUser.Username}}
+                </h1>
+                <p class="page-subtitle">Member since {{formatTime .profileUser.CreatedAt}}</p>
+            </div>
+            <div class="card">
+                <div class="card-header">
+                    <h2 class="card-title">Public Pastes</h2>
+                    <span class="text-muted">{{len .pastes}} pastes</span>
+                </div>
+                {{if .pastes}}
+                <div class="paste-list">
+                    {{range .pastes}}
+                    <a href="/{{.ID}}" class="paste-item">
+                        <div class="paste-icon">
+                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                                <polyline points="16 18 22 12 16 6"/>
+                                <polyline points="8 6 2 12 8 18"/>
+                            </svg>
+                        </div>
+                        <div class="paste-info">
+                            <div class="paste-name">{{if .Title}}{{.Title}}{{else}}Untitled{{end}}</div>
+                            <div class="paste-details">
+                                <span>{{if .Language}}{{.Language}}{{else}}plain{{end}}</span>
+                                <span>{{.Views}} views</span>
+                                <span>{{formatTime .CreatedAt}}</span>
+                            </div>
+                        </div>
+                    </a>
+                    {{end}}
+                </div>
+                {{else}}
+                <div class="text-center text-muted" style="padding: 3rem 1rem;">
+                    <p>No public pastes yet</p>
+                </div>
+                {{end}}
+            </div>
+        </div>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/register.html ADDED Viewed

	@@ -0,0 +1,79 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                    <polyline points="14 2 14 8 20 8"/>
+                    <line x1="16" y1="13" x2="8" y2="13"/>
+                    <line x1="16" y1="17" x2="8" y2="17"/>
+                    <polyline points="10 9 9 9 8 9"/>
+                </svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()" title="Toggle theme">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <circle cx="12" cy="12" r="5"/>
+                        <line x1="12" y1="1" x2="12" y2="3"/>
+                        <line x1="12" y1="21" x2="12" y2="23"/>
+                        <line x1="4.22" y1="4.22" x2="5.64" y2="5.64"/>
+                        <line x1="18.36" y1="18.36" x2="19.78" y2="19.78"/>
+                        <line x1="1" y1="12" x2="3" y2="12"/>
+                        <line x1="21" y1="12" x2="23" y2="12"/>
+                        <line x1="4.22" y1="19.78" x2="5.64" y2="18.36"/>
+                        <line x1="18.36" y1="5.64" x2="19.78" y2="4.22"/>
+                    </svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/>
+                    </svg>
+                </button>
+            </div>
+        </div>
+    </nav>
+    <main class="auth-page">
+        <div class="card auth-card">
+            <div class="auth-header">
+                <h1>Create account</h1>
+                <p class="text-muted">Join Patbin to manage your pastes</p>
+            </div>
+            <form id="register-form">
+                <div class="form-group">
+                    <label class="form-label" for="username">Username</label>
+                    <input type="text" id="username" name="username" class="form-input" placeholder="Choose a username" required minlength="3" maxlength="50" autocomplete="username">
+                    <small class="text-muted mt-1" style="display: block; font-size: 0.75rem;">3-50 characters</small>
+                </div>
+                <div class="form-group">
+                    <label class="form-label" for="password">Password</label>
+                    <input type="password" id="password" name="password" class="form-input" placeholder="Choose a password" required minlength="6" autocomplete="new-password">
+                    <small class="text-muted mt-1" style="display: block; font-size: 0.75rem;">Minimum 6 characters</small>
+                </div>
+                <div class="mt-4">
+                    <button type="submit" class="btn btn-primary btn-lg" style="width: 100%">Create Account</button>
+                </div>
+            </form>
+            <div class="auth-footer">
+                Already have an account? <a href="/login">Sign in</a>
+            </div>
+        </div>
+    </main>
+    <script src="/static/js/app.js"></script>
+</body>
+</html>

templates/view.html ADDED Viewed

	@@ -0,0 +1,149 @@

+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.title}}</title>
+    <meta name="description" content="{{if .paste.Title}}{{.paste.Title}}{{else}}Untitled{{end}} - View paste on Patbin">
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&family=JetBrains+Mono:wght@400;500&display=swap" rel="stylesheet">
+    <link href="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/themes/prism-tomorrow.min.css" rel="stylesheet">
+    <link href="/static/css/style.css" rel="stylesheet">
+</head>
+<body>
+    <nav class="navbar">
+        <div class="container">
+            <a href="/" class="logo">
+                <svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+                    <path d="M14 2H6a2 2 0 0 0-2 2v16a2 2 0 0 0 2 2h12a2 2 0 0 0 2-2V8z"/>
+                    <polyline points="14 2 14 8 20 8"/>
+                    <line x1="16" y1="13" x2="8" y2="13"/>
+                    <line x1="16" y1="17" x2="8" y2="17"/>
+                    <polyline points="10 9 9 9 8 9"/>
+                </svg>
+                Patbin
+            </a>
+            <div class="nav-links">
+                <button class="theme-toggle" onclick="toggleTheme()" title="Toggle theme">
+                    <svg class="sun" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <circle cx="12" cy="12" r="5"/>
+                        <line x1="12" y1="1" x2="12" y2="3"/>
+                        <line x1="12" y1="21" x2="12" y2="23"/>
+                        <line x1="4.22" y1="4.22" x2="5.64" y2="5.64"/>
+                        <line x1="18.36" y1="18.36" x2="19.78" y2="19.78"/>
+                        <line x1="1" y1="12" x2="3" y2="12"/>
+                        <line x1="21" y1="12" x2="23" y2="12"/>
+                        <line x1="4.22" y1="19.78" x2="5.64" y2="18.36"/>
+                        <line x1="18.36" y1="5.64" x2="19.78" y2="4.22"/>
+                    </svg>
+                    <svg class="moon" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M21 12.79A9 9 0 1 1 11.21 3 7 7 0 0 0 21 12.79z"/>
+                    </svg>
+                </button>
+                <a href="/" class="btn btn-primary">
+                    <svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                        <path d="M12 5v14M5 12h14"/>
+                    </svg>
+                    New Paste
+                </a>
+            </div>
+        </div>
+    </nav>
+    <main class="page">
+        <div class="container">
+            <div class="code-container">
+                <div class="code-header">
+                    <div class="code-title">
+                        <svg width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <polyline points="16 18 22 12 16 6"/>
+                            <polyline points="8 6 2 12 8 18"/>
+                        </svg>
+                        {{if .paste.Title}}{{.paste.Title}}{{else}}Untitled{{end}}
+                        {{if not .paste.IsPublic}}
+                        <span class="paste-badge private">
+                            <svg width="12" height="12" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                                <rect x="3" y="11" width="18" height="11" rx="2" ry="2"/>
+                                <path d="M7 11V7a5 5 0 0 1 10 0v4"/>
+                            </svg>
+                            Private
+                        </span>
+                        {{end}}
+                    </div>
+                    <div class="code-meta">
+                        <span title="Language">{{.language}}</span>
+                        <span title="Lines">{{.lines}} lines</span>
+                        <span title="Views">{{.paste.Views}} views</span>
+                        <span title="Created">{{formatTime .paste.CreatedAt}}</span>
+                        {{if .paste.User}}
+                        <a href="/u/{{.paste.User.Username}}" style="color: inherit">by {{.paste.User.Username}}</a>
+                        {{end}}
+                    </div>
+                </div>
+                <div class="code-actions">
+                    <button class="btn btn-secondary btn-sm" onclick="copyToClipboard(document.getElementById('paste-content').textContent, this)">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <rect x="9" y="9" width="13" height="13" rx="2" ry="2"/>
+                            <path d="M5 15H4a2 2 0 0 1-2-2V4a2 2 0 0 1 2-2h9a2 2 0 0 1 2 2v1"/>
+                        </svg>
+                        Copy
+                    </button>
+                    <button class="btn btn-secondary btn-sm" id="wrap-toggle" onclick="toggleWrap()">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <path d="M3 6h18M3 12h15a3 3 0 110 6h-6"/>
+                            <polyline points="10 15 7 18 10 21"/>
+                        </svg>
+                        Wrap
+                    </button>
+                    <a href="/{{.paste.ID}}/raw" class="btn btn-secondary btn-sm" target="_blank">Raw</a>
+                    <button class="btn btn-secondary btn-sm" id="fork-paste" data-paste-id="{{.paste.ID}}">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <circle cx="12" cy="18" r="3"/>
+                            <circle cx="6" cy="6" r="3"/>
+                            <circle cx="18" cy="6" r="3"/>
+                            <path d="M18 9v1a2 2 0 0 1-2 2H8a2 2 0 0 1-2-2V9"/>
+                            <path d="M12 12v3"/>
+                        </svg>
+                        Fork
+                    </button>
+                    {{if .isOwner}}
+                    <a href="/{{.paste.ID}}/edit" class="btn btn-secondary btn-sm">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <path d="M11 4H4a2 2 0 0 0-2 2v14a2 2 0 0 0 2 2h14a2 2 0 0 0 2-2v-7"/>
+                            <path d="M18.5 2.5a2.121 2.121 0 0 1 3 3L12 15l-4 1 1-4 9.5-9.5z"/>
+                        </svg>
+                        Edit
+                    </a>
+                    <button class="btn btn-danger btn-sm" id="delete-paste" data-paste-id="{{.paste.ID}}">
+                        <svg width="14" height="14" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2">
+                            <polyline points="3 6 5 6 21 6"/>
+                            <path d="M19 6v14a2 2 0 0 1-2 2H7a2 2 0 0 1-2-2V6m3 0V4a2 2 0 0 1 2-2h4a2 2 0 0 1 2 2v2"/>
+                        </svg>
+                        Delete
+                    </button>
+                    {{end}}
+                </div>
+                <div class="code-body">
+                    <div class="line-numbers">
+                        {{range $i := iterate .lines}}
+                        <span>{{add $i 1}}</span>
+                        {{end}}
+                    </div>
+                    <div class="code-content">
+                        <pre><code id="paste-content" class="language-{{.language}}">{{.paste.Content}}</code></pre>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </main>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/prism.min.js"></script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/prism/1.29.0/plugins/autoloader/prism-autoloader.min.js"></script>
+    <script src="/static/js/app.js"></script>
+    <script>
+        // Re-highlight after page load
+        Prism.highlightAll();
+    </script>
+</body>
+</html>