backend/src/main/java/ovh/herisson/Clyde/EndPoints/CourseController.java

package ovh.herisson.Clyde.EndPoints;

import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.*;
import ovh.herisson.Clyde.Responses.UnauthorizedResponse;
import ovh.herisson.Clyde.Services.AuthenticatorService;
import ovh.herisson.Clyde.Services.CourseService;
import ovh.herisson.Clyde.Services.ProtectionService;
import ovh.herisson.Clyde.Services.TeacherCourseService;
import ovh.herisson.Clyde.Tables.Course;
import ovh.herisson.Clyde.Tables.Role;

import java.util.ArrayList;
import java.util.HashMap;
import java.util.Map;

@RestController
@CrossOrigin(originPatterns = "*", allowCredentials = "true")
public class CourseController {

    private final CourseService courseServ;

    private final TeacherCourseService teacherCourseServ;

    private final AuthenticatorService authServ;

    public CourseController(CourseService courseServ, TeacherCourseService teacherCourseServ, AuthenticatorService authServ) {
        this.courseServ = courseServ;
        this.teacherCourseServ = teacherCourseServ;
        this.authServ = authServ;
    }

    @GetMapping("/course/{id}")
    public ResponseEntity<HashMap<String,Object>> getCourse(@RequestHeader("Authorization") String token, @PathVariable long id){
        if (authServ.getUserFromToken(token) == null)
            return new UnauthorizedResponse<>(null);

        Course foundCourse = courseServ.findById(id);

        if (foundCourse == null)
            return new ResponseEntity<>(HttpStatus.BAD_REQUEST);

        return new ResponseEntity<>(ProtectionService.courseWithoutPassword(foundCourse), HttpStatus.OK);
    }

    @GetMapping("/courses")
    public ResponseEntity<Iterable<HashMap<String,Object>>> getAllCourses(@RequestHeader("Authorization") String token){
        if (authServ.isNotIn(new Role[]{Role.Admin,Role.Secretary},token))
            return new UnauthorizedResponse<>(null);

        Iterable<Course> courses = courseServ.findAll();
        ArrayList<HashMap<String,Object>> coursesWithoutPassword = new ArrayList<>();

        for (Course course: courses){
            coursesWithoutPassword.add(ProtectionService.courseWithoutPassword(course));
        }

        return new ResponseEntity<>(coursesWithoutPassword,HttpStatus.OK);
    }


    @PostMapping("/course")
    public ResponseEntity<Map<String ,Object>> postCourse(@RequestHeader("Authorization") String token,
                                             @RequestBody Course course)
    {

        if (authServ.isNotIn(new Role[]{Role.Secretary,Role.Admin},token))
            return new UnauthorizedResponse<>(null);

        Course createdCourse = courseServ.save(course);
        if (createdCourse == null)
            return new ResponseEntity<>(null,HttpStatus.BAD_REQUEST);

        return new ResponseEntity<>(ProtectionService.courseWithoutPassword(createdCourse), HttpStatus.CREATED);
    }


    @PatchMapping("/course/{id}")
    public ResponseEntity<Course> patchCourse(@RequestHeader("Authorization") String token,
                                              @RequestBody Map<String,Object> updates,
                                              @PathVariable long id)
    {

        if (authServ.isNotIn(new Role[]{Role.Admin,Role.Teacher,Role.Secretary}, token))
            return new UnauthorizedResponse<>(null);


        if (!courseServ.modifyData(id, updates, authServ.getUserFromToken(token).getRole()))
            return new ResponseEntity<>(HttpStatus.BAD_REQUEST);

        return new ResponseEntity<>(HttpStatus.OK);
    }

    @PostMapping("/course/{id}")
    public ResponseEntity<String> postTeachers(@RequestHeader("Authorization") String token,
                                               @RequestBody Iterable<Long> teacherIds,
                                               @PathVariable Long id)
    {

        if (authServ.isNotIn(new Role[]{Role.Admin,Role.Secretary}, token))
            return new UnauthorizedResponse<>(null);


        if (!teacherCourseServ.saveAll(teacherIds,courseServ.findById(id)))
            return new ResponseEntity<>(HttpStatus.BAD_REQUEST);

        return new ResponseEntity<>(HttpStatus.OK);
    }
}
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`package ovh.herisson.Clyde.EndPoints;`

			`import org.springframework.http.HttpStatus;`
			`import org.springframework.http.ResponseEntity;`
			`import org.springframework.web.bind.annotation.*;`
			`import ovh.herisson.Clyde.Responses.UnauthorizedResponse;`
			`import ovh.herisson.Clyde.Services.AuthenticatorService;`
			`import ovh.herisson.Clyde.Services.CourseService;`
moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`import ovh.herisson.Clyde.Services.ProtectionService;`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`import ovh.herisson.Clyde.Services.TeacherCourseService;`
			`import ovh.herisson.Clyde.Tables.Course;`
			`import ovh.herisson.Clyde.Tables.Role;`
protected course'owner password 2024-03-17 02:45:49 +01:00
moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`import java.util.ArrayList;`
protected course'owner password 2024-03-17 02:45:49 +01:00			`import java.util.HashMap;`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`import java.util.Map;`

			`@RestController`
			`@CrossOrigin(originPatterns = "*", allowCredentials = "true")`
			`public class CourseController {`

			`private final CourseService courseServ;`

			`private final TeacherCourseService teacherCourseServ;`

			`private final AuthenticatorService authServ;`

			`public CourseController(CourseService courseServ, TeacherCourseService teacherCourseServ, AuthenticatorService authServ) {`
			`this.courseServ = courseServ;`
			`this.teacherCourseServ = teacherCourseServ;`
			`this.authServ = authServ;`
			`}`

			`@GetMapping("/course/{id}")`
protected course'owner password 2024-03-17 02:45:49 +01:00			`public ResponseEntity<HashMap<String,Object>> getCourse(@RequestHeader("Authorization") String token, @PathVariable long id){`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`if (authServ.getUserFromToken(token) == null)`
			`return new UnauthorizedResponse<>(null);`

cleaned all controllers 2024-03-16 19:13:57 +01:00			`Course foundCourse = courseServ.findById(id);`

			`if (foundCourse == null)`
			`return new ResponseEntity<>(HttpStatus.BAD_REQUEST);`

moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`return new ResponseEntity<>(ProtectionService.courseWithoutPassword(foundCourse), HttpStatus.OK);`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`}`

added security to the post of course and GET /courses 2024-03-17 02:15:08 +01:00			`@GetMapping("/courses")`
moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`public ResponseEntity<Iterable<HashMap<String,Object>>> getAllCourses(@RequestHeader("Authorization") String token){`
added security to the post of course and GET /courses 2024-03-17 02:15:08 +01:00			`if (authServ.isNotIn(new Role[]{Role.Admin,Role.Secretary},token))`
			`return new UnauthorizedResponse<>(null);`

moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`Iterable<Course> courses = courseServ.findAll();`
			`ArrayList<HashMap<String,Object>> coursesWithoutPassword = new ArrayList<>();`
added security to the post of course and GET /courses 2024-03-17 02:15:08 +01:00
moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`for (Course course: courses){`
			`coursesWithoutPassword.add(ProtectionService.courseWithoutPassword(course));`
			`}`

			`return new ResponseEntity<>(coursesWithoutPassword,HttpStatus.OK);`
added security to the post of course and GET /courses 2024-03-17 02:15:08 +01:00			`}`

Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00
			`@PostMapping("/course")`
moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`public ResponseEntity<Map<String ,Object>> postCourse(@RequestHeader("Authorization") String token,`
cleaned all controllers 2024-03-16 19:13:57 +01:00			`@RequestBody Course course)`
			`{`

cleaned the services 2024-03-16 20:25:35 +01:00			`if (authServ.isNotIn(new Role[]{Role.Secretary,Role.Admin},token))`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`return new UnauthorizedResponse<>(null);`

added security to the post of course and GET /courses 2024-03-17 02:15:08 +01:00			`Course createdCourse = courseServ.save(course);`
			`if (createdCourse == null)`
			`return new ResponseEntity<>(null,HttpStatus.BAD_REQUEST);`

moved portective method to Static ProtectiveService 2024-03-17 03:06:19 +01:00			`return new ResponseEntity<>(ProtectionService.courseWithoutPassword(createdCourse), HttpStatus.CREATED);`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`}`


			`@PatchMapping("/course/{id}")`
			`public ResponseEntity<Course> patchCourse(@RequestHeader("Authorization") String token,`
			`@RequestBody Map<String,Object> updates,`
			`@PathVariable long id)`
			`{`

cleaned the services 2024-03-16 20:25:35 +01:00			`if (authServ.isNotIn(new Role[]{Role.Admin,Role.Teacher,Role.Secretary}, token))`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`return new UnauthorizedResponse<>(null);`

cleaned all controllers 2024-03-16 19:13:57 +01:00
cleaned the services 2024-03-16 20:25:35 +01:00
			`if (!courseServ.modifyData(id, updates, authServ.getUserFromToken(token).getRole()))`
cleaned all controllers 2024-03-16 19:13:57 +01:00			`return new ResponseEntity<>(HttpStatus.BAD_REQUEST);`

cleaned the services 2024-03-16 20:25:35 +01:00			`return new ResponseEntity<>(HttpStatus.OK);`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`}`

			`@PostMapping("/course/{id}")`
			`public ResponseEntity<String> postTeachers(@RequestHeader("Authorization") String token,`
			`@RequestBody Iterable<Long> teacherIds,`
			`@PathVariable Long id)`
			`{`
cleaned all controllers 2024-03-16 19:13:57 +01:00
cleaned the services 2024-03-16 20:25:35 +01:00			`if (authServ.isNotIn(new Role[]{Role.Admin,Role.Secretary}, token))`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00			`return new UnauthorizedResponse<>(null);`


cleaned all controllers 2024-03-16 19:13:57 +01:00			`if (!teacherCourseServ.saveAll(teacherIds,courseServ.findById(id)))`
			`return new ResponseEntity<>(HttpStatus.BAD_REQUEST);`
Max/Backend/CoursesEndpoints (#129) PLZ FIX Reviewed-on: https://git.herisson.ovh/PGL/Clyde/pulls/129 Reviewed-by: Wal <karpinskiwal@gmail.com> Reviewed-by: Debucquoy Anthony <d.tonitch@gmail.com> Co-authored-by: Bartha Maxime <231026@umons.ac.be> Co-committed-by: Bartha Maxime <231026@umons.ac.be> 2024-03-16 17:17:07 +01:00
			`return new ResponseEntity<>(HttpStatus.OK);`
			`}`
			`}`