PersonalSchedulesController.java
package edu.ucsb.cs156.courses.controllers;
import edu.ucsb.cs156.courses.entities.PersonalSchedule;
import edu.ucsb.cs156.courses.entities.User;
import edu.ucsb.cs156.courses.errors.EntityNotFoundException;
import edu.ucsb.cs156.courses.models.CurrentUser;
import edu.ucsb.cs156.courses.repositories.PersonalScheduleRepository;
import io.swagger.v3.oas.annotations.Operation;
import io.swagger.v3.oas.annotations.Parameter;
import io.swagger.v3.oas.annotations.tags.Tag;
import java.util.Optional;
import javax.validation.Valid;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.DeleteMapping;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.PutMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.RestController;
@Tag(name = "PersonalSchedules")
@RequestMapping("/api/personalschedules")
@RestController
@Slf4j
public class PersonalSchedulesController extends ApiController {
@Autowired PersonalScheduleRepository personalscheduleRepository;
@Operation(summary = "List all personal schedules")
@PreAuthorize("hasRole('ROLE_ADMIN')")
@GetMapping("/admin/all")
public Iterable<PersonalSchedule> allUsersSchedules() {
Iterable<PersonalSchedule> personalschedules = personalscheduleRepository.findAll();
return personalschedules;
}
@Operation(summary = "List this user's personal schedules")
@PreAuthorize("hasRole('ROLE_USER')")
@GetMapping("/all")
public Iterable<PersonalSchedule> thisUsersSchedules() {
CurrentUser currentUser = getCurrentUser();
Iterable<PersonalSchedule> personalschedules =
personalscheduleRepository.findAllByUserId(currentUser.getUser().getId());
return personalschedules;
}
@Operation(summary = "Get a single personal schedule (if it belongs to current user)")
@PreAuthorize("hasRole('ROLE_USER')")
@GetMapping("")
public PersonalSchedule getScheduleById(@Parameter(name = "id") @RequestParam Long id) {
User currentUser = getCurrentUser().getUser();
PersonalSchedule personalschedule =
personalscheduleRepository
.findByIdAndUser(id, currentUser)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
return personalschedule;
}
@Operation(summary = "Get a single personal schedule (no matter who it belongs to, admin only)")
@PreAuthorize("hasRole('ROLE_ADMIN')")
@GetMapping("/admin")
public PersonalSchedule getScheduleById_admin(@Parameter(name = "id") @RequestParam Long id) {
PersonalSchedule personalschedule =
personalscheduleRepository
.findById(id)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
return personalschedule;
}
@Operation(summary = "Create a new personal schedule")
@PreAuthorize("hasRole('ROLE_USER')")
@PostMapping("/post")
public PersonalSchedule postSchedule(
@Parameter(name = "name") @RequestParam String name,
@Parameter(name = "description") @RequestParam String description,
@Parameter(name = "quarter") @RequestParam String quarter) {
CurrentUser currentUser = getCurrentUser();
log.info("currentUser={}", currentUser);
// Checks length of name parameter (length should be 15 chars or less, nonzero)
if (name.length() > 15) {
throw new IllegalArgumentException("name parameter restricted to 15 chars or less");
}
PersonalSchedule personalschedule = new PersonalSchedule();
personalschedule.setUser(currentUser.getUser());
personalschedule.setName(name);
personalschedule.setDescription(description);
personalschedule.setQuarter(quarter);
Optional<PersonalSchedule> existCheck =
personalscheduleRepository.findByUserAndNameAndQuarter(
currentUser.getUser(), name, quarter);
if (existCheck.isPresent()) {
throw new IllegalArgumentException(
"A personal schedule with that name already exists in that quarter");
}
PersonalSchedule savedPersonalSchedule = personalscheduleRepository.save(personalschedule);
return savedPersonalSchedule;
}
@Operation(summary = "Delete a personal schedule owned by this user")
@PreAuthorize("hasRole('ROLE_USER')")
@DeleteMapping("")
public Object deleteSchedule(@Parameter(name = "id") @RequestParam Long id) {
User currentUser = getCurrentUser().getUser();
PersonalSchedule personalschedule =
personalscheduleRepository
.findByIdAndUser(id, currentUser)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
personalscheduleRepository.delete(personalschedule);
return genericMessage("PersonalSchedule with id %s deleted".formatted(id));
}
@Operation(summary = "Delete another user's personal schedule")
@PreAuthorize("hasRole('ROLE_ADMIN')")
@DeleteMapping("/admin")
public Object deleteSchedule_Admin(@Parameter(name = "id") @RequestParam Long id) {
PersonalSchedule personalschedule =
personalscheduleRepository
.findById(id)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
personalscheduleRepository.delete(personalschedule);
return genericMessage("PersonalSchedule with id %s deleted".formatted(id));
}
@Operation(summary = "Update a single personal schedule (if it belongs to current user)")
@PreAuthorize("hasRole('ROLE_USER')")
@PutMapping("")
public PersonalSchedule putScheduleById(
@Parameter(name = "id") @RequestParam Long id,
@RequestBody @Valid PersonalSchedule incomingSchedule) {
User currentUser = getCurrentUser().getUser();
PersonalSchedule personalschedule =
personalscheduleRepository
.findByIdAndUser(id, currentUser)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
personalschedule.setName(incomingSchedule.getName());
personalschedule.setDescription(incomingSchedule.getDescription());
personalschedule.setQuarter(incomingSchedule.getQuarter());
personalscheduleRepository.save(personalschedule);
return personalschedule;
}
@Operation(
summary =
"Update a single Schedule (regardless of ownership, admin only, can't change ownership)")
@PreAuthorize("hasRole('ROLE_ADMIN')")
@PutMapping("/admin")
public PersonalSchedule putScheduleById_admin(
@Parameter(name = "id") @RequestParam Long id,
@RequestBody @Valid PersonalSchedule incomingSchedule) {
PersonalSchedule personalschedule =
personalscheduleRepository
.findById(id)
.orElseThrow(() -> new EntityNotFoundException(PersonalSchedule.class, id));
personalschedule.setName(incomingSchedule.getName());
personalschedule.setDescription(incomingSchedule.getDescription());
personalschedule.setQuarter(incomingSchedule.getQuarter());
personalscheduleRepository.save(personalschedule);
return personalschedule;
}
}