RoleController.java
4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
package etunicorn.controller;
import etunicorn.RestrictedTo;
import etunicorn.entity.Permission;
import etunicorn.entity.Role;
import etunicorn.generated.model.UpdateRoleByIdRequest;
import etunicorn.generated.model.UpdateRoleRequest;
import etunicorn.repository.PermissionRepository;
import etunicorn.repository.RoleRepository;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.dao.DataIntegrityViolationException;
import org.springframework.http.HttpStatus;
import org.springframework.http.ResponseEntity;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RestController;
import javax.validation.Valid;
import java.util.List;
/**
* etunicorn-server
* Copyright © 2017 Le Club Info Polytech Lille
* Tous droits réservés
*/
@RestController
public class RoleController extends BaseController implements etunicorn.generated.RoleController {
@Autowired
private RoleRepository roleRepository;
@Autowired
private PermissionRepository permissionRepository;
@Override
public ResponseEntity<?> getRole() {
return new ResponseEntity<List>((List) roleRepository.findAll(), HttpStatus.OK);
}
@Override
@RestrictedTo("ROLE_ADD")
public ResponseEntity<?> updateRole(@Valid @RequestBody UpdateRoleRequest updateRoleRequest) {
Role oldRole = roleRepository.findByNom(updateRoleRequest.getNom());
Role role = new Role();
role.setNom(updateRoleRequest.getNom());
try {
roleRepository.save(role);
} catch (DataIntegrityViolationException e) {
return generateError(HttpStatus.CONFLICT, "Un rôle avec le même nom existe déjà");
}
return new ResponseEntity<Object>(role, HttpStatus.CREATED);
}
@Override
@RestrictedTo("ROLE_DELETE")
public ResponseEntity<?> deleteRoleById(@PathVariable String nomRole) {
Role role = roleRepository.findByNom(nomRole);
if (role == null) {
return generateError(HttpStatus.NOT_FOUND, "Rôle introuvable");
}
roleRepository.delete(role);
return new ResponseEntity<Object>(HttpStatus.NO_CONTENT);
}
@Override
@RestrictedTo("ROLE_PERMISSION_ADD")
public ResponseEntity<?> updateRoleById(@PathVariable String nomRole, @Valid @RequestBody UpdateRoleByIdRequest updateRoleByIdRequest) {
Role role = roleRepository.findByNom(nomRole);
if (role == null) {
return generateError(HttpStatus.NOT_FOUND, "Rôle introuvable");
}
Permission permission = permissionRepository.findByNom(updateRoleByIdRequest.getNom());
if (permission == null) {
return generateError(HttpStatus.NOT_FOUND, "Permission introuvable");
}
role.addPermission(permission);
try {
roleRepository.save(role);
} catch (DataIntegrityViolationException e) {
// Si la permission était déjà là, on fait rien
}
return new ResponseEntity<Object>(role, HttpStatus.ACCEPTED);
}
@Override
@RestrictedTo("ROLE_PERMISSION_REMOVE")
public ResponseEntity<?> deleteRoleByNomPermission(@PathVariable String nomPermission, @PathVariable String nomRole) {
Role role = roleRepository.findByNom(nomRole);
if (role == null) {
return generateError(HttpStatus.NOT_FOUND, "Rôle introuvable");
}
Permission permission = permissionRepository.findByNom(nomPermission);
if (permission == null) {
return new ResponseEntity<Object>("Permission inconnue", HttpStatus.NOT_FOUND);
}
role.delPermission(permission);
roleRepository.save(role);
return new ResponseEntity<Object>(role, HttpStatus.ACCEPTED);
}
@Override
@RestrictedTo("ROLE_PERMISSION_LIST")
public ResponseEntity<?> getPermission() {
return new ResponseEntity<List>((List) permissionRepository.findAll(), HttpStatus.OK);
}
}