Changeset 775e15e

Timestamp:

09/17/22 01:23:47 (20 months ago)

Author:

Marko <Marko@…>

Branches:

master

Children:

7e88e46

Parents:

e5b84dc

Message:

Added more controllers

Location:

phonelux-backend/src/main/java

Files:

• .DS_Store (modified) ( previous)
• finki/it/.DS_Store (added)
• finki/it/phoneluxbackend/.DS_Store (added)
• finki/it/phoneluxbackend/controllers/AuthContextController.java (added)
• finki/it/phoneluxbackend/controllers/PhoneController.java (modified) (2 diffs)
• finki/it/phoneluxbackend/controllers/PhoneOfferController.java (modified) (2 diffs)
• finki/it/phoneluxbackend/controllers/SuperAdminController.java (added)
• finki/it/phoneluxbackend/controllers/UserController.java (added)
• finki/it/phoneluxbackend/entities/User.java (modified) (4 diffs)
• finki/it/phoneluxbackend/security/CustomAuthenticationFilter.java (modified) (1 diff)
• finki/it/phoneluxbackend/security/configs/WebSecurityConfig.java (modified) (1 diff)
• finki/it/phoneluxbackend/services/PhoneOfferService.java (modified) (2 diffs)
• finki/it/phoneluxbackend/services/UserService.java (modified) (4 diffs)

phonelux-backend/src/main/java/finki/it/phoneluxbackend/controllers/PhoneController.java

@@ -18 +18 @@
 public class PhoneController {
     private final PhoneService phoneService;
-    private final PhoneOfferService phoneOfferService;
 
-//     handle request parameters for filtering phones
     @GetMapping(path = "/phones")
     public List<Phone> getPhones(@RequestParam(name = "shops", required = false) String shops,
@@ -42 +40 @@
     }
 
-    @GetMapping(path = "/shops")
-    public List<String> getShops(){
-        return phoneOfferService.getShops();
-    }
-
-    @GetMapping(path = "/lowestPrice")
-    public int getLowestPrice()
-    {
-        return phoneOfferService.getLowestPrice();
-    }
-
-    @GetMapping(path = "/highestPrice")
-    public int getHighestPrice()
-    {
-        return phoneOfferService.getHighestPrice();
-    }
-
-
 }

phonelux-backend/src/main/java/finki/it/phoneluxbackend/controllers/PhoneOfferController.java

@@ -18 +18 @@
 public class PhoneOfferController {
     private final PhoneOfferService phoneOfferService;
-    private final PhoneService phoneService;
 
     @GetMapping(path = "/phones/offers/{phoneId}")
@@ -30 +29 @@
     }
 
+    @GetMapping(path = "/phoneoffer/{offerId}/cheaperoffers")
+    public List<PhoneOffer> getCheaperOffers(@PathVariable("offerId") Long offerId){
+        return phoneOfferService.getCheaperOffers(offerId);
+    }
+
+    @GetMapping(path = "/shops")
+    public List<String> getShops(){
+        return phoneOfferService.getShops();
+    }
+
+    @GetMapping(path = "/lowestPrice")
+    public int getLowestPrice()
+    {
+        return phoneOfferService.getLowestPrice();
+    }
+
+    @GetMapping(path = "/highestPrice")
+    public int getHighestPrice()
+    {
+        return phoneOfferService.getHighestPrice();
+    }
+
 }

phonelux-backend/src/main/java/finki/it/phoneluxbackend/entities/User.java

@@ -1 +1 @@
 package finki.it.phoneluxbackend.entities;
 
+import com.fasterxml.jackson.annotation.JsonIgnore;
 import finki.it.phoneluxbackend.data.UserRole;
 import lombok.*;
@@ -15 +16 @@
 @Getter
 @Setter
+@ToString
 @EqualsAndHashCode
 @NoArgsConstructor
@@ -48 +50 @@
             inverseJoinColumns = @JoinColumn(name = "offer_id")
     )
+    @JsonIgnore
     private List<PhoneOffer> favouriteOffers = new ArrayList<PhoneOffer>();
 
@@ -55 +58 @@
         this.email = email;
         this.password = password;
+        this.userRole = userRole;
+    }
+
+    public User(Long id, String firstName, UserRole userRole) {
+        this.id = id;
+        this.firstName = firstName;
+        this.userRole = userRole;
+    }
+
+    public User(Long id, String firstName, String lastName, String email, UserRole userRole) {
+        this.id = id;
+        this.firstName = firstName;
+        this.lastName = lastName;
+        this.email = email;
         this.userRole = userRole;
     }

phonelux-backend/src/main/java/finki/it/phoneluxbackend/security/CustomAuthenticationFilter.java

@@ -50 +50 @@
                 .withClaim("role", user.getAuthorities().stream()
                         .map(GrantedAuthority::getAuthority).collect(Collectors.toList()))
+                .withClaim("name", user.getFirstName())
+                .withClaim("id", user.getId())
                 .sign(algorithm);
 
-//        String refresh_token = JWT.create()
-//                .withSubject(user.getEmail())
-//                .withExpiresAt(new Date(System.currentTimeMillis() + 30 * 60 * 1000))
-//                .withIssuer(request.getRequestURL().toString())
-//                .withClaim("role",user.getAuthorities().stream()
-//                        .map(GrantedAuthority::getAuthority).collect(Collectors.toList()))
-//                .sign(algorithm);
 
-
-        Map<String,String> tokens = new HashMap<>();
-        tokens.put("access_token",access_token);
-//        tokens.put("refresh_token",refresh_token);
+        Map<String,String> authInfo = new HashMap<>();
+        authInfo.put("access_token",access_token);
         response.setContentType(APPLICATION_JSON_VALUE);
-        new ObjectMapper().writeValue(response.getOutputStream(),tokens);
+        new ObjectMapper().writeValue(response.getOutputStream(),authInfo);
     }
 }

phonelux-backend/src/main/java/finki/it/phoneluxbackend/security/configs/WebSecurityConfig.java

@@ -29 +29 @@
     @Override
     protected void configure(HttpSecurity http) throws Exception {
-//        http
-//                .csrf().disable()
-//                .authorizeRequests()
-//                .antMatchers("/registration/**")
-//                .permitAll()
-//                .anyRequest()
-//                .authenticated().and()
-//                .formLogin();
+
 
         http.csrf().disable();
         http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS);
-//        http.authorizeRequests().antMatchers(GET,"/phones").hasAnyAuthority("USER");
-        http.authorizeRequests().anyRequest().permitAll();
+
+        http.authorizeRequests()
+                .and()
+                .authorizeRequests()
+                .antMatchers("/user/**")
+                .hasAnyAuthority("USER","ADMIN", "SUPERADMIN")
+                .and()
+                .authorizeRequests()
+                .antMatchers("/management/**")
+                .hasAnyAuthority("SUPERADMIN")
+                .anyRequest().permitAll();
+
+
+
         http.addFilter(new CustomAuthenticationFilter(authenticationManagerBean()));
         http.addFilterBefore(new CustomAuthorizationFilter(), UsernamePasswordAuthenticationFilter.class);

phonelux-backend/src/main/java/finki/it/phoneluxbackend/services/PhoneOfferService.java

@@ -9 +9 @@
 import java.util.Comparator;
 import java.util.List;
+import java.util.Objects;
 import java.util.stream.Collectors;
 
@@ -60 +61 @@
     }
 
+    public List<PhoneOffer> getCheaperOffers(Long offerId) {
+        boolean exists = phoneOfferRepository.existsById(offerId);
+
+        if(!exists)
+            throw new IllegalStateException("Phone offer with id "+offerId+" does not exist");
+
+        PhoneOffer offer = phoneOfferRepository.findById(offerId).get();
+
+        return phoneOfferRepository.findAll()
+                .stream().filter(phoneOffer ->
+                        Objects.equals(phoneOffer.getPhone().getModel(), offer.getPhone().getModel())
+                                && phoneOffer.getPrice() < offer.getPrice())
+                .sorted(Comparator.comparing(PhoneOffer::getPrice).reversed())
+                .collect(Collectors.toList());
+    }
 }

phonelux-backend/src/main/java/finki/it/phoneluxbackend/services/UserService.java

@@ -1 +1 @@
 package finki.it.phoneluxbackend.services;
 
-
+import com.auth0.jwt.JWT;
+import com.auth0.jwt.JWTVerifier;
+import com.auth0.jwt.algorithms.Algorithm;
+import com.auth0.jwt.interfaces.DecodedJWT;
+import finki.it.phoneluxbackend.data.UserRole;
+import finki.it.phoneluxbackend.entities.PhoneOffer;
 import finki.it.phoneluxbackend.entities.User;
+import finki.it.phoneluxbackend.repositories.PhoneOfferRepository;
 import finki.it.phoneluxbackend.repositories.UserRepository;
 import finki.it.phoneluxbackend.entities.ConfirmationToken;
 import lombok.AllArgsConstructor;
-
 import org.springframework.http.ResponseEntity;
 import org.springframework.security.core.userdetails.UserDetails;
@@ -16 +21 @@
 import java.time.LocalDateTime;
 
+import java.util.Comparator;
+import java.util.List;
 import java.util.UUID;
+import java.util.stream.Collectors;
 
 @Service
@@ -22 +30 @@
 public class UserService implements UserDetailsService {
     private final UserRepository userRepository;
+    private final PhoneOfferRepository phoneOfferRepository;
     private final BCryptPasswordEncoder bCryptPasswordEncoder;
     private final ConfirmationTokenService confirmationTokenService;
@@ -68 +77 @@
 
 
+    public User getUserFromToken(String token) {
+        Algorithm algorithm = Algorithm.HMAC256("secret".getBytes());
+        JWTVerifier verifier = JWT.require(algorithm).build();
+        DecodedJWT decodedJWT = verifier.verify(token);
+        String email = decodedJWT.getSubject();
+        UserRole role = UserRole.valueOf(decodedJWT.getClaim("role").asArray(String.class)[0]);
+        String name = decodedJWT.getClaim("name").as(String.class);
+        Long id = decodedJWT.getClaim("id").as(Long.class);
+
+        return new User(id,name,role);
+    }
+
+    public List<PhoneOffer> getFavouriteOffersForUser(Long userId) {
+        boolean exists = userRepository.existsById(userId);
+        if(!exists)
+            throw new IllegalStateException("User with id "+userId+" does not exist");
+
+        return userRepository.findById(userId).get().getFavouriteOffers();
+    }
+
+    public ResponseEntity<Object> editOfferForUser(Long userId, Long offerId, String option) {
+        boolean userExists = userRepository.existsById(userId);
+        if (!userExists)
+        {
+            return ResponseEntity.badRequest().body("User with id "+userId+" doesn't exist");
+        }
+
+        boolean offerExists = phoneOfferRepository.existsById(offerId);
+
+        if (!offerExists)
+        {
+            return ResponseEntity.badRequest().body("Offer with id "+offerId+" doesn't exist");
+        }
+
+        User user = userRepository.findById(userId).get();
+        PhoneOffer phoneOffer = phoneOfferRepository.findById(offerId).get();
+
+        if(option.equals("add")) {
+            user.getFavouriteOffers().add(phoneOffer);
+        }
+        else{
+            user.getFavouriteOffers().remove(phoneOffer);
+        }
+
+        userRepository.save(user);
+
+        return ResponseEntity.ok().build();
+    }
+
+    public List<User> getUsers(String searchValue) {
+        List<User> users = userRepository.findAll().stream()
+                .filter(user -> user.getUserRole() != UserRole.SUPERADMIN && user.getEnabled())
+                .map(user -> new User(user.getId(),user.getFirstName(),
+                        user.getLastName(),user.getEmail(),user.getUserRole()))
+                .collect(Collectors.toList());
+
+        if(searchValue != null)
+        {
+            users = users.stream()
+                    .filter(user -> user.getEmail().toLowerCase().contains(searchValue.stripIndent().toLowerCase())
+                    || user.getFirstName().toLowerCase().contains(searchValue.stripIndent().toLowerCase()))
+                    .collect(Collectors.toList());
+        }
+
+        return users.stream()
+                .sorted(Comparator.comparing(User::getId))
+                .collect(Collectors.toList());
+
+    }
+
+    public ResponseEntity<Object> giveAdminRoleToUser(Long userId) {
+        boolean userExists = userRepository.existsById(userId);
+        if (!userExists)
+        {
+            return ResponseEntity.badRequest().body("User with id "+userId+" doesn't exist");
+        }
+
+        User user = userRepository.findById(userId).get();
+
+        user.setUserRole(UserRole.ADMIN);
+        userRepository.save(user);
+
+        return ResponseEntity.ok().build();
+    }
+
+    public ResponseEntity<Object> removeAdminRoleFromUser(Long userId) {
+        boolean userExists = userRepository.existsById(userId);
+        if (!userExists)
+        {
+            return ResponseEntity.badRequest().body("User with id "+userId+" doesn't exist");
+        }
+
+        User user = userRepository.findById(userId).get();
+
+        user.setUserRole(UserRole.USER);
+        userRepository.save(user);
+        return ResponseEntity.ok().build();
+    }
 }