79 lines
3.8 KiB
Java
Executable File
79 lines
3.8 KiB
Java
Executable File
package com.plannaplan.controllers;
|
|
|
|
import java.util.List;
|
|
import java.util.Optional;
|
|
|
|
import com.plannaplan.App;
|
|
import com.plannaplan.entities.User;
|
|
import com.plannaplan.responses.mappers.UserResponseMappers;
|
|
import com.plannaplan.responses.models.UserResponse;
|
|
import com.plannaplan.services.UserService;
|
|
import com.plannaplan.types.UserRoles;
|
|
|
|
import org.springframework.beans.factory.annotation.Autowired;
|
|
import org.springframework.http.HttpStatus;
|
|
import org.springframework.http.ResponseEntity;
|
|
import org.springframework.security.access.prepost.PreAuthorize;
|
|
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
|
|
import org.springframework.web.bind.annotation.CrossOrigin;
|
|
import org.springframework.web.bind.annotation.RestController;
|
|
|
|
import io.swagger.annotations.Api;
|
|
import io.swagger.annotations.ApiOperation;
|
|
import io.swagger.annotations.ApiParam;
|
|
|
|
import org.springframework.web.bind.annotation.GetMapping;
|
|
import org.springframework.web.bind.annotation.PostMapping;
|
|
import org.springframework.web.bind.annotation.RequestMapping;
|
|
import org.springframework.web.bind.annotation.RequestParam;
|
|
|
|
@RestController
|
|
@CrossOrigin
|
|
@RequestMapping("/api/" + App.API_VERSION + "/users")
|
|
@EnableGlobalMethodSecurity(prePostEnabled = true)
|
|
@Api(tags = { "Users" }, value = "Users", description = "Endpoints to deal with users.")
|
|
public class UsersController {
|
|
@Autowired
|
|
private UserService userService;
|
|
|
|
@GetMapping("/student/search")
|
|
@PreAuthorize("hasRole('ROLE_DEANERY')")
|
|
@ApiOperation(value = "Serch for user by providing query. If query is empty it will return all students. You need token with DEANERY role to call this")
|
|
public ResponseEntity<List<UserResponse>> searchForStudent(
|
|
@RequestParam("query") @ApiParam(value = "Query to filter all students. If empty will match everyone") String query) {
|
|
final List<User> searches = this.userService.searchForStudents(query);
|
|
final List<UserResponse> response = UserResponseMappers.mapToDefaultResponse(searches);
|
|
return new ResponseEntity<>(response, HttpStatus.OK);
|
|
}
|
|
|
|
@GetMapping("/students")
|
|
@PreAuthorize("hasRole('ROLE_DEANERY')")
|
|
@ApiOperation(value = "Gets all students. You need token with DEANERY role to call this")
|
|
public ResponseEntity<List<UserResponse>> getAllStudents() {
|
|
final List<User> searches = this.userService.getAllStudents();
|
|
final List<UserResponse> response = UserResponseMappers.mapToDefaultResponse(searches);
|
|
return new ResponseEntity<>(response, HttpStatus.OK);
|
|
}
|
|
|
|
@PostMapping(path = "/admin")
|
|
@PreAuthorize("hasRole('ROLE_ADMIN')")
|
|
@ApiOperation(value = "Adds new admin user.")
|
|
public ResponseEntity<String> addAdmin(@RequestParam("authority") @ApiParam(value = "USOS ID or E-mail. If user does not exist it should be USOS ID") String authority) {
|
|
final Optional<User> userResponse = this.userService.getByAuthority(authority);
|
|
final User user = userResponse.orElseGet(() -> new User(null, null, null, authority, UserRoles.ADMIN));
|
|
user.setRole(UserRoles.ADMIN);
|
|
this.userService.save(user);
|
|
return new ResponseEntity<>("Success", HttpStatus.OK);
|
|
}
|
|
|
|
@PostMapping(path = "/deanery")
|
|
@PreAuthorize("hasRole('ROLE_ADMIN')")
|
|
@ApiOperation(value = "Adds new deanery user.")
|
|
public ResponseEntity<String> addDeanery(@RequestParam("authority") @ApiParam(value = "USOS ID or E-mail. If user does not exist it should be USOS ID") String authority) {
|
|
final Optional<User> userResponse = this.userService.getByAuthority(authority);
|
|
final User user = userResponse.orElseGet(() -> new User(null, null, null, authority, UserRoles.DEANERY));
|
|
user.setRole(UserRoles.DEANERY);
|
|
this.userService.save(user);
|
|
return new ResponseEntity<>("Success", HttpStatus.OK);
|
|
}
|
|
} |