Compare commits
14 Commits
refactor
...
8f04ac7ae8
| Author | SHA1 | Date | |
|---|---|---|---|
| 8f04ac7ae8 | |||
| 56919ab412 | |||
| e3408d1566 | |||
| eea38d578b | |||
| 031c1cea2a | |||
| 154617ce88 | |||
| 35e7350962 | |||
| 37d275d537 | |||
| 3796afb712 | |||
| e05faab31e | |||
| d5b6d6357e | |||
| 0531f868d0 | |||
| de1dcf7673 | |||
| e062d9254f |
@@ -18,18 +18,12 @@ dependencies {
|
||||
runtimeOnly 'mysql:mysql-connector-java'
|
||||
testImplementation 'org.springframework.boot:spring-boot-starter-test'
|
||||
|
||||
// Spring security
|
||||
//implementation 'org.springframework.boot:spring-boot-starter-security'
|
||||
//implementation 'org.springframework.security:spring-security-test'
|
||||
|
||||
// JSON web token
|
||||
implementation 'io.jsonwebtoken:jjwt-api:0.11.2'
|
||||
runtimeOnly 'io.jsonwebtoken:jjwt-impl:0.11.2',
|
||||
// Uncomment the next line if you want to use RSASSA-PSS (PS256, PS384, PS512) algorithms:
|
||||
//'org.bouncycastle:bcprov-jdk15on:1.60',
|
||||
'io.jsonwebtoken:jjwt-jackson:0.11.2' // or 'io.jsonwebtoken:jjwt-gson:0.11.2' for gson
|
||||
'io.jsonwebtoken:jjwt-jackson:0.11.2'
|
||||
}
|
||||
|
||||
test {
|
||||
useJUnitPlatform()
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,18 @@
|
||||
package com.vpr.server.controller;
|
||||
|
||||
import com.vpr.server.data.User;
|
||||
import com.vpr.server.repository.UserRepository;
|
||||
import org.springframework.beans.factory.annotation.Autowired;
|
||||
import org.springframework.stereotype.Controller;
|
||||
import org.springframework.web.bind.annotation.RequestMapping;
|
||||
|
||||
public class AuthController {
|
||||
|
||||
public User getAuthUserFromHeader(String authorizationHeader, UserRepository userRepository){
|
||||
String[] splitAuthHeader = authorizationHeader.split("\\s");
|
||||
if(splitAuthHeader.length == 2){
|
||||
return userRepository.findByToken(splitAuthHeader[1]);
|
||||
}
|
||||
return null;
|
||||
}
|
||||
}
|
||||
@@ -3,20 +3,19 @@ package com.vpr.server.controller;
|
||||
import com.vpr.server.data.Event;
|
||||
import com.vpr.server.data.User;
|
||||
import com.vpr.server.data.UserEvent;
|
||||
import com.vpr.server.dao.interfaces.EventDAO;
|
||||
import com.vpr.server.json.JSONMapper;
|
||||
import com.vpr.server.json.Validator;
|
||||
import com.vpr.server.repository.EventRepository;
|
||||
import com.vpr.server.repository.UserEventRepository;
|
||||
import com.vpr.server.repository.UserRepository;
|
||||
import org.springframework.beans.factory.annotation.Autowired;
|
||||
import org.springframework.http.HttpStatus;
|
||||
import org.springframework.http.ResponseEntity;
|
||||
import org.springframework.stereotype.Controller;
|
||||
import org.springframework.web.bind.annotation.PostMapping;
|
||||
import org.springframework.web.bind.annotation.RequestMapping;
|
||||
import org.springframework.web.bind.annotation.RequestParam;
|
||||
import org.springframework.web.bind.annotation.ResponseBody;
|
||||
import org.springframework.web.server.ResponseStatusException;
|
||||
import org.springframework.web.bind.annotation.*;
|
||||
|
||||
import java.sql.Time;
|
||||
import java.text.SimpleDateFormat;
|
||||
import java.util.List;
|
||||
|
||||
@Controller
|
||||
@RequestMapping(path = "/event")
|
||||
@@ -28,90 +27,144 @@ public class EventController {
|
||||
@Autowired
|
||||
private UserEventRepository userEventRepository;
|
||||
|
||||
@Autowired
|
||||
private EventDAO eventDAO;
|
||||
|
||||
/******************
|
||||
* POST-ENDPOINTS *
|
||||
******************/
|
||||
|
||||
@PostMapping(path = "/add")
|
||||
public @ResponseBody
|
||||
String addEvent(
|
||||
@RequestParam Integer userId,
|
||||
ResponseEntity<String> addEvent(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam long userId,
|
||||
@RequestParam String date,
|
||||
@RequestParam String name,
|
||||
@RequestParam String start,
|
||||
@RequestParam String end,
|
||||
@RequestParam Integer prority,
|
||||
@RequestParam Integer priority,
|
||||
@RequestParam Boolean isFullDay,
|
||||
@RequestParam Boolean isPrivate
|
||||
) {
|
||||
String errorString = "";
|
||||
|
||||
Event event = new Event();
|
||||
|
||||
System.out.println(name.length() + ". name " + name);
|
||||
if (name.length() > 3) {
|
||||
event.setName(name);
|
||||
} else {
|
||||
System.out.println("NAME IST ZU KURZ");
|
||||
throw new ResponseStatusException(HttpStatus.BAD_REQUEST, "Format nicht korrekt");
|
||||
User authUser = userRepository.findByToken(authorizationHeader.split("\\s")[1]);
|
||||
if (authUser == null || (!authUser.isAdmin() && authUser.getId() != userId)) {
|
||||
return new ResponseEntity<>("Du hast keine Rechte um den Termin zu erstellen", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
try {
|
||||
SimpleDateFormat simpleDateFormat = new SimpleDateFormat("hh:mm");
|
||||
long ms = simpleDateFormat.parse(start).getTime();
|
||||
event.setStart(new Time(ms));
|
||||
} catch (Exception e) {
|
||||
event.setStart(null);
|
||||
}
|
||||
ResponseEntity<String> BAD_REQUEST = createEventAndUserEvent(userId, date, name, start, end, priority, isFullDay, isPrivate);
|
||||
if (BAD_REQUEST != null) return BAD_REQUEST;
|
||||
|
||||
try {
|
||||
SimpleDateFormat simpleDateFormat = new SimpleDateFormat("hh:mm");
|
||||
long ms = simpleDateFormat.parse(end).getTime();
|
||||
event.setEnd(new Time(ms));
|
||||
} catch (Exception e) {
|
||||
event.setEnd(null);
|
||||
}
|
||||
|
||||
event.setPriority(prority);
|
||||
event.setFullDay(isFullDay);
|
||||
event.setPrivate(isPrivate);
|
||||
|
||||
UserEvent userEvent = new UserEvent();
|
||||
|
||||
try {
|
||||
System.out.println("date " + date);
|
||||
SimpleDateFormat simpleDateFormat = new SimpleDateFormat("yyyy-MM-dd");
|
||||
userEvent.setDate(new java.sql.Date(simpleDateFormat.parse(date).getTime()));
|
||||
} catch (Exception e) {
|
||||
System.out.println("DATE FORMAT NOT CORRECT");
|
||||
throw new ResponseStatusException(HttpStatus.BAD_REQUEST, "Format nicht korrekt");
|
||||
}
|
||||
|
||||
userEvent.setEvent(event);
|
||||
long uId = Long.valueOf(userId);
|
||||
User user = userRepository.findById(uId);
|
||||
userEvent.setUser(user);
|
||||
|
||||
System.out.println(userEvent);
|
||||
System.out.println(user);
|
||||
|
||||
eventRepository.save(event);
|
||||
userEventRepository.save(userEvent);
|
||||
return "";
|
||||
return new ResponseEntity<>("", HttpStatus.OK);
|
||||
}
|
||||
|
||||
@PostMapping(path = "/del")
|
||||
public @ResponseBody
|
||||
String addEvent(@RequestParam Integer eventId) {
|
||||
eventRepository.deleteUserEventsById(Long.valueOf(eventId));
|
||||
eventRepository.deleteById(Long.valueOf(eventId));
|
||||
return "Deleted";
|
||||
ResponseEntity<String> delEvent(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam long eventId,
|
||||
@RequestParam long userId,
|
||||
@RequestParam String date
|
||||
) {
|
||||
User authUser = userRepository.findByToken(authorizationHeader.split("\\s")[1]);
|
||||
if (authUser == null || (!authUser.isAdmin() && authUser.getId() != userId)) {
|
||||
return new ResponseEntity<>("Du hast keine Rechte um den Termin zu löschen", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
eventRepository.deleteUserEventsById(userId, eventId, date);
|
||||
if(eventDAO.getAllEventsWithId(eventId).size() == 0){
|
||||
eventRepository.deleteById(eventId);
|
||||
}
|
||||
|
||||
return new ResponseEntity<>("", HttpStatus.OK);
|
||||
}
|
||||
|
||||
|
||||
@PostMapping(path = "/all")
|
||||
public @ResponseBody
|
||||
Object[] getAllEvents(@RequestParam long userId) {
|
||||
return eventRepository.findAllVisibleByUserId(userId);
|
||||
ResponseEntity<String> getAllEvents(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam String startDate,
|
||||
@RequestParam String endDate
|
||||
) {
|
||||
User authUser = userRepository.findByToken(authorizationHeader.split("\\s")[1]);
|
||||
if (authUser == null) {
|
||||
return new ResponseEntity<>("Bitte erneut einloggen", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
List<Event> eventList = eventDAO.getAllEventsInTimespan(authUser.getId(), startDate, endDate);
|
||||
|
||||
return new ResponseEntity<>(JSONMapper.eventListToJSON(eventList), HttpStatus.OK);
|
||||
}
|
||||
|
||||
|
||||
@PostMapping(path = "/edit")
|
||||
public @ResponseBody
|
||||
ResponseEntity<String> editEvent(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam Long eventId,
|
||||
@RequestParam Long userId,
|
||||
@RequestParam String date,
|
||||
@RequestParam String newDate,
|
||||
@RequestParam String newName,
|
||||
@RequestParam String newStart,
|
||||
@RequestParam String newEnd,
|
||||
@RequestParam Integer newPriority,
|
||||
@RequestParam Boolean newIsFullDay,
|
||||
@RequestParam Boolean newIsPrivate
|
||||
) {
|
||||
User authUser = userRepository.findByToken(authorizationHeader.split("\\s")[1]);
|
||||
if (authUser == null || (!authUser.isAdmin() && authUser.getId() != userId)) {
|
||||
return new ResponseEntity<>("Du hast keine Rechte um den Termin zu bearbeiten", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
List<Event> eventList = eventDAO.getAllEventsWithIdAndDate(userId, eventId, date);
|
||||
|
||||
if (eventList == null || eventList.size() == 0) {
|
||||
return new ResponseEntity<>("Der Termin exestiert nicht in der Datenbank", HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
if (eventList.size() > 1) {
|
||||
return new ResponseEntity<>("Drr Termin ist doppelt vorhanden. (Um das zu lösen versuche den Termin zu löschen und erneut zu erstellen)", HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
|
||||
eventRepository.deleteUserEventsById(userId, eventId, date);
|
||||
if(eventDAO.getAllEventsWithId(eventId).size() == 0){
|
||||
eventRepository.deleteById(eventId);
|
||||
}
|
||||
|
||||
ResponseEntity<String> BAD_REQUEST = createEventAndUserEvent(userId, newDate, newName, newStart, newEnd, newPriority, newIsFullDay, newIsPrivate);
|
||||
if (BAD_REQUEST != null) return BAD_REQUEST;
|
||||
|
||||
return new ResponseEntity<>("", HttpStatus.OK);
|
||||
}
|
||||
|
||||
private ResponseEntity<String> createEventAndUserEvent(long userId, String date, String name, String start, String end, Integer priority, Boolean isFullDay, Boolean isPrivate) {
|
||||
User user = userRepository.findById(userId);
|
||||
if(user == null){
|
||||
return new ResponseEntity<>("UserId nicht korrekt", HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
|
||||
try {
|
||||
Event event = new Event();
|
||||
|
||||
event.setName(Validator.ValidateEventName(name));
|
||||
event.setStart(Validator.ValidateEventTime(start));
|
||||
event.setEnd(Validator.ValidateEventTime(end));
|
||||
event.setPriority(priority);
|
||||
event.setFullDay(isFullDay);
|
||||
event.setPrivate(isPrivate);
|
||||
|
||||
UserEvent userEvent = new UserEvent();
|
||||
|
||||
userEvent.setDate(Validator.ValidateEventDate(date));
|
||||
userEvent.setEvent(event);
|
||||
userEvent.setUser(user);
|
||||
|
||||
eventRepository.save(event);
|
||||
userEventRepository.save(userEvent);
|
||||
}catch (IllegalArgumentException exception){
|
||||
return new ResponseEntity<>(exception.getMessage(), HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
return null;
|
||||
}
|
||||
}
|
||||
|
||||
@@ -33,4 +33,10 @@ public class MainController {
|
||||
public String statusTest(){
|
||||
throw new ResponseStatusException(HttpStatus.I_AM_A_TEAPOT, "TestTestTest");
|
||||
}
|
||||
|
||||
@PostMapping(path = "/header-test")
|
||||
public ResponseEntity<String> headerTest(@RequestHeader("Authorization") String authorizationHeader){
|
||||
System.out.println("authorizationHeader: " + authorizationHeader);
|
||||
return new ResponseEntity<>(authorizationHeader, HttpStatus.OK);
|
||||
}
|
||||
}
|
||||
@@ -1,24 +1,36 @@
|
||||
package com.vpr.server.controller;
|
||||
|
||||
import com.vpr.server.dao.interfaces.UserDAO;
|
||||
import com.vpr.server.data.Event;
|
||||
import com.vpr.server.data.User;
|
||||
import com.vpr.server.json.JSONMapper;
|
||||
import com.vpr.server.repository.UserRepository;
|
||||
import com.vpr.server.security.Hasher;
|
||||
import com.vpr.server.security.Token;
|
||||
import org.springframework.beans.factory.annotation.Autowired;
|
||||
import org.springframework.http.HttpStatus;
|
||||
import org.springframework.http.ResponseEntity;
|
||||
import org.springframework.stereotype.Controller;
|
||||
import org.springframework.web.bind.annotation.*;
|
||||
import org.springframework.web.server.ResponseStatusException;
|
||||
|
||||
import java.security.NoSuchAlgorithmException;
|
||||
import java.security.spec.InvalidKeySpecException;
|
||||
import java.util.Arrays;
|
||||
import java.util.List;
|
||||
|
||||
@Controller
|
||||
@RequestMapping(path = "/user")
|
||||
public class UserController {
|
||||
@Autowired
|
||||
private UserRepository userRepository;
|
||||
@Autowired
|
||||
private UserDAO userDAO;
|
||||
|
||||
private final AuthController authController;
|
||||
|
||||
public UserController() {
|
||||
this.authController = new AuthController();
|
||||
}
|
||||
|
||||
/******************
|
||||
* POST-ENDPOINTS *
|
||||
@@ -26,47 +38,57 @@ public class UserController {
|
||||
|
||||
@PostMapping(path = "/add")
|
||||
public @ResponseBody
|
||||
String addNewUser(
|
||||
ResponseEntity<String> addNewUser(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam String name,
|
||||
@RequestParam String forename,
|
||||
@RequestParam String login,
|
||||
@RequestParam String password,
|
||||
@RequestParam String isAdmin
|
||||
@RequestParam Boolean isAdmin
|
||||
) {
|
||||
User authUser = authController.getAuthUserFromHeader(authorizationHeader, userRepository);
|
||||
if(authUser == null || !authUser.isAdmin()){
|
||||
return new ResponseEntity<>( "Du hast keine Rechte um einen User an zu legen", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
if(userRepository.findByLogin(login) != null){
|
||||
return new ResponseEntity<>( "Login exestiert bereits", HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
|
||||
byte[] salt = Hasher.GenerateSalt();
|
||||
byte[] hash;
|
||||
try {
|
||||
hash = Hasher.HashPassword(password, salt);
|
||||
} catch (NoSuchAlgorithmException | InvalidKeySpecException e) {
|
||||
e.printStackTrace();
|
||||
throw new ResponseStatusException(HttpStatus.INTERNAL_SERVER_ERROR, "Fehler beim hashen");
|
||||
return new ResponseEntity<>( "Fehler beim hashen", HttpStatus.INTERNAL_SERVER_ERROR);
|
||||
}
|
||||
|
||||
User user = new User();
|
||||
|
||||
// TODO set correct token and password
|
||||
user.setName(name);
|
||||
user.setForename(forename);
|
||||
user.setLogin(login);
|
||||
user.setPassword(hash);
|
||||
user.setSalt(salt);
|
||||
user.setToken("test");
|
||||
user.setAdmin(isAdmin.equals("1"));
|
||||
user.setToken("");
|
||||
user.setAdmin(isAdmin);
|
||||
|
||||
userRepository.save(user);
|
||||
return "" + user.getId();
|
||||
return new ResponseEntity<>( "" + user.getId(), HttpStatus.OK);
|
||||
}
|
||||
|
||||
@PostMapping(path = "/login")
|
||||
public @ResponseBody
|
||||
String login(
|
||||
ResponseEntity<String> login(
|
||||
@RequestParam String login,
|
||||
@RequestParam String password
|
||||
) {
|
||||
System.out.println("LOGIN");
|
||||
System.out.println(login + " tries to login.");
|
||||
User user = userRepository.findByLogin(login);
|
||||
if (user == null) {
|
||||
throw new ResponseStatusException(HttpStatus.UNAUTHORIZED, "Falscher login");
|
||||
System.out.println("Login for " + login + " failed.");
|
||||
return new ResponseEntity<>( "Falscher login", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
byte[] salt = user.getSalt();
|
||||
@@ -75,26 +97,52 @@ public class UserController {
|
||||
hash = Hasher.HashPassword(password, salt);
|
||||
} catch (NoSuchAlgorithmException | InvalidKeySpecException e) {
|
||||
e.printStackTrace();
|
||||
throw new ResponseStatusException(HttpStatus.INTERNAL_SERVER_ERROR, "Fehler beim hashen");
|
||||
return new ResponseEntity<>( "Fehler beim hashen", HttpStatus.INTERNAL_SERVER_ERROR);
|
||||
}
|
||||
|
||||
if (Arrays.equals(user.getPassword(), hash)) {
|
||||
String token = Token.Generate(user.getLogin());
|
||||
user.setToken(token);
|
||||
userRepository.save(user);
|
||||
|
||||
System.out.println(user.getLogin() + " is now logged in.");
|
||||
System.out.println(Token.Generate(user.getLogin()));
|
||||
System.out.println(Token.Verify(Token.Generate(user.getLogin()), user.getLogin()));
|
||||
return "" + user.getId();
|
||||
|
||||
return new ResponseEntity<>( token + " " + user.getId(), HttpStatus.OK);
|
||||
}
|
||||
System.out.println(user.getLogin() + " failed to logged in.");
|
||||
System.out.println("entered : " + javax.xml.bind.DatatypeConverter.printHexBinary(hash));
|
||||
System.out.println("required: " + javax.xml.bind.DatatypeConverter.printHexBinary(user.getPassword()));
|
||||
|
||||
throw new ResponseStatusException(HttpStatus.UNAUTHORIZED, "Falscher login");
|
||||
return new ResponseEntity<>( "Falscher login", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
|
||||
@PostMapping(path = "/login-with-token")
|
||||
public @ResponseBody ResponseEntity<String> loginWithToken(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam long userId
|
||||
){
|
||||
User authUser = authController.getAuthUserFromHeader(authorizationHeader, userRepository);
|
||||
if(authUser == null || authUser.getId() != userId){
|
||||
return new ResponseEntity<>( "Falscher auth-token", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
return new ResponseEntity<>("", HttpStatus.OK);
|
||||
}
|
||||
|
||||
@PostMapping(path = "/del")
|
||||
public @ResponseBody String deleteUser(@RequestParam Integer userId) {
|
||||
userRepository.deleteById(Long.valueOf(userId));
|
||||
return "Deleted";
|
||||
public @ResponseBody ResponseEntity<String> deleteUser(
|
||||
@RequestHeader("Authorization") String authorizationHeader,
|
||||
@RequestParam long userId
|
||||
) {
|
||||
User authUser = authController.getAuthUserFromHeader(authorizationHeader, userRepository);
|
||||
if(authUser == null || !authUser.isAdmin()){
|
||||
return new ResponseEntity<>( "Du hast keine Rechte um den Termin zu löschen", HttpStatus.UNAUTHORIZED);
|
||||
}
|
||||
User user = userRepository.findById(userId);
|
||||
if(user == null){
|
||||
return new ResponseEntity<>( "User nicht in der Datenbank vorhanden", HttpStatus.BAD_REQUEST);
|
||||
}
|
||||
return new ResponseEntity<>( "", HttpStatus.OK);
|
||||
}
|
||||
|
||||
/*****************
|
||||
@@ -103,7 +151,9 @@ public class UserController {
|
||||
|
||||
@GetMapping(path = "/all")
|
||||
public @ResponseBody
|
||||
Object[] getAllUsers() {
|
||||
return userRepository.findAllUsernames();
|
||||
ResponseEntity<String> getAllUser() {
|
||||
List<User> userList = userDAO.getAllUser();
|
||||
|
||||
return new ResponseEntity<>(JSONMapper.userListToJSON(userList), HttpStatus.OK);
|
||||
}
|
||||
}
|
||||
|
||||
@@ -0,0 +1,48 @@
|
||||
package com.vpr.server.dao.implementation;
|
||||
|
||||
import com.vpr.server.dao.interfaces.EventDAO;
|
||||
import com.vpr.server.data.Event;
|
||||
import org.springframework.stereotype.Repository;
|
||||
|
||||
import javax.persistence.EntityManager;
|
||||
import javax.persistence.PersistenceContext;
|
||||
import javax.transaction.Transactional;
|
||||
import java.util.List;
|
||||
|
||||
@Repository
|
||||
@Transactional
|
||||
public class EventDAOImplementation implements EventDAO {
|
||||
|
||||
@PersistenceContext
|
||||
private EntityManager manager;
|
||||
|
||||
@Override
|
||||
public List<Event> getAllEvents() {
|
||||
return manager.createNamedQuery("getAllEvents", Event.class).getResultList();
|
||||
}
|
||||
|
||||
@Override
|
||||
public List<Event> getAllEventsWithId(long eventId) {
|
||||
return manager.createNamedQuery("getAllEventsWithId", Event.class)
|
||||
.setParameter("eventId", eventId)
|
||||
.getResultList();
|
||||
}
|
||||
|
||||
@Override
|
||||
public List<Event> getAllEventsInTimespan(long userId, String startDate, String endDate) {
|
||||
return manager.createNamedQuery("getAllEventsInTimespan", Event.class)
|
||||
.setParameter("userId", userId)
|
||||
.setParameter("startDate", startDate)
|
||||
.setParameter("endDate", endDate)
|
||||
.getResultList();
|
||||
}
|
||||
|
||||
@Override
|
||||
public List<Event> getAllEventsWithIdAndDate(long userId, long eventId, String date) {
|
||||
return manager.createNamedQuery("getAllEventsWithIdAndDate", Event.class)
|
||||
.setParameter("userId", userId)
|
||||
.setParameter("eventId", eventId)
|
||||
.setParameter("date", date)
|
||||
.getResultList();
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,24 @@
|
||||
package com.vpr.server.dao.implementation;
|
||||
|
||||
import com.vpr.server.dao.interfaces.UserDAO;
|
||||
import com.vpr.server.data.Event;
|
||||
import com.vpr.server.data.User;
|
||||
import org.springframework.stereotype.Repository;
|
||||
|
||||
import javax.persistence.EntityManager;
|
||||
import javax.persistence.PersistenceContext;
|
||||
import javax.transaction.Transactional;
|
||||
import java.util.List;
|
||||
|
||||
@Repository
|
||||
@Transactional
|
||||
public class UserDAOImplementation implements UserDAO {
|
||||
|
||||
@PersistenceContext
|
||||
private EntityManager manager;
|
||||
|
||||
@Override
|
||||
public List<User> getAllUser() {
|
||||
return manager.createNamedQuery("getAllUser", User.class).getResultList();
|
||||
}
|
||||
}
|
||||
@@ -0,0 +1,16 @@
|
||||
package com.vpr.server.dao.interfaces;
|
||||
|
||||
import com.vpr.server.data.Event;
|
||||
|
||||
import java.util.List;
|
||||
|
||||
public interface EventDAO {
|
||||
|
||||
List<Event> getAllEvents();
|
||||
|
||||
List<Event> getAllEventsInTimespan(long userId, String startDate, String endDate);
|
||||
|
||||
List<Event> getAllEventsWithIdAndDate(long userId, long eventId, String date);
|
||||
|
||||
List<Event> getAllEventsWithId(long eventId);
|
||||
}
|
||||
@@ -0,0 +1,9 @@
|
||||
package com.vpr.server.dao.interfaces;
|
||||
|
||||
import com.vpr.server.data.User;
|
||||
|
||||
import java.util.List;
|
||||
|
||||
public interface UserDAO {
|
||||
List<User> getAllUser();
|
||||
}
|
||||
@@ -1,33 +1,73 @@
|
||||
package com.vpr.server.data;
|
||||
|
||||
import javax.persistence.*;
|
||||
import java.io.Serializable;
|
||||
import java.sql.Time;
|
||||
import java.util.List;
|
||||
|
||||
// @Entity creates a table out of this class with Hibernate
|
||||
@Entity(name = "Event")
|
||||
public class Event {
|
||||
@Entity(name = "Event") // @Entity creates a table out of this class with Hibernate
|
||||
@Table(name = "event")
|
||||
@NamedNativeQueries({
|
||||
@NamedNativeQuery(
|
||||
name = "getAllEvents",
|
||||
query = "SELECT * FROM event",
|
||||
resultClass = Event.class
|
||||
),
|
||||
@NamedNativeQuery(
|
||||
name = "getAllEventsInTimespan",
|
||||
query = "SELECT * " +
|
||||
"FROM event e " +
|
||||
"INNER JOIN user_event ue " +
|
||||
"ON e.id = ue.event_id " +
|
||||
"WHERE (ue.user_id = :userId OR e.is_private = 0) " +
|
||||
"AND ue.date >= :startDate " +
|
||||
"AND ue.date < :endDate " +
|
||||
"ORDER BY ue.date, e.priority DESC, e.start",
|
||||
resultClass = Event.class
|
||||
),
|
||||
@NamedNativeQuery(
|
||||
name = "getAllEventsWithIdAndDate",
|
||||
query = "SELECT * " +
|
||||
"FROM event e " +
|
||||
"INNER JOIN user_event ue " +
|
||||
"ON e.id = ue.event_id " +
|
||||
"WHERE ue.user_id = :userId " +
|
||||
"AND ue.event_id = :eventId " +
|
||||
"AND ue.date = :date",
|
||||
resultClass = Event.class
|
||||
),
|
||||
@NamedNativeQuery(
|
||||
name = "getAllEventsWithId",
|
||||
query = "SELECT * " +
|
||||
"FROM event e " +
|
||||
"INNER JOIN user_event ue " +
|
||||
"ON e.id = ue.event_id " +
|
||||
"WHERE ue.event_id = :eventId",
|
||||
resultClass = Event.class
|
||||
)
|
||||
})
|
||||
public class Event implements Serializable {
|
||||
// Generate the primary key
|
||||
@Id
|
||||
@GeneratedValue(strategy=GenerationType.IDENTITY)
|
||||
@GeneratedValue(strategy = GenerationType.IDENTITY)
|
||||
private long id;
|
||||
|
||||
@Column(name="name", nullable=false)
|
||||
@Column(name = "name", nullable = false)
|
||||
private String name;
|
||||
|
||||
@Column(name="priority", nullable=false)
|
||||
@Column(name = "priority", nullable = false)
|
||||
private Integer priority;
|
||||
|
||||
@Column(name="is_full_day", nullable=false)
|
||||
@Column(name = "is_full_day", nullable = false)
|
||||
private boolean isFullDay;
|
||||
|
||||
@Column(name="is_private", nullable=false)
|
||||
@Column(name = "is_private", nullable = false)
|
||||
private boolean isPrivate;
|
||||
|
||||
@Column(name="start")
|
||||
@Column(name = "start")
|
||||
private Time start;
|
||||
|
||||
@Column(name="end")
|
||||
@Column(name = "end")
|
||||
private Time end;
|
||||
|
||||
@OneToMany(mappedBy = "event")
|
||||
|
||||
@@ -4,7 +4,15 @@ import javax.persistence.*;
|
||||
import java.util.List;
|
||||
|
||||
// @Entity creates a table out of this class with Hibernate
|
||||
@Entity
|
||||
@Entity(name = "User")
|
||||
@Table(name = "user")
|
||||
@NamedNativeQueries({
|
||||
@NamedNativeQuery(
|
||||
name = "getAllUser",
|
||||
query = "SELECT * FROM user",
|
||||
resultClass = User.class
|
||||
)
|
||||
})
|
||||
public class User {
|
||||
// Generate the primary key
|
||||
@Id
|
||||
|
||||
80
server/src/main/java/com/vpr/server/json/JSONMapper.java
Normal file
80
server/src/main/java/com/vpr/server/json/JSONMapper.java
Normal file
@@ -0,0 +1,80 @@
|
||||
package com.vpr.server.json;
|
||||
|
||||
import com.vpr.server.data.Event;
|
||||
import com.vpr.server.data.User;
|
||||
import com.vpr.server.data.UserEvent;
|
||||
|
||||
import java.sql.Time;
|
||||
|
||||
import java.util.ArrayList;
|
||||
import java.util.List;
|
||||
|
||||
public class JSONMapper {
|
||||
|
||||
public static String userToJSON(User user) {
|
||||
return "{" +
|
||||
"\"userId\": " + user.getId() + ", " +
|
||||
"\"forename\": \"" + user.getForename() + "\", " +
|
||||
"\"name\": \"" + user.getName() + "\", " +
|
||||
"\"login\": \"" + user.getLogin() + "\"," +
|
||||
"\"isAdmin\": " + user.isAdmin() +
|
||||
"}";
|
||||
}
|
||||
|
||||
public static String userListToJSON(List<User> userList) {
|
||||
StringBuilder userListJSON = new StringBuilder();
|
||||
for (User user : userList) {
|
||||
userListJSON.append(", ");
|
||||
userListJSON.append(userToJSON(user));
|
||||
}
|
||||
userListJSON.delete(0, 2);
|
||||
|
||||
return "[" + userListJSON + "]";
|
||||
}
|
||||
|
||||
public static List<String> eventToJSON(Event event) {
|
||||
List<String> eventListJSON = new ArrayList<>();
|
||||
|
||||
for (UserEvent userEvent : event.getUserEvent()) {
|
||||
|
||||
String eventJSON = "{" +
|
||||
"\"ownerId\": " + userEvent.getUser().getId() + ", " +
|
||||
"\"ownerName\": \"" + userEvent.getUser().getForename() + " " + userEvent.getUser().getName() + "\", " +
|
||||
"\"date\": \"" + userEvent.getDate() + "\", " +
|
||||
"\"id\": " + event.getId() + "," +
|
||||
"\"name\": \"" + event.getName() + "\"," +
|
||||
"\"priority\": " + event.getPriority() + "," +
|
||||
"\"fullDay\": " + event.isFullDay() + "," +
|
||||
"\"private\": " + event.isPrivate() + "," +
|
||||
"\"start\": " + timeToJSON(event.getStart()) + "," +
|
||||
"\"end\": " + timeToJSON(event.getEnd()) +
|
||||
"}";
|
||||
|
||||
eventListJSON.add(eventJSON);
|
||||
}
|
||||
|
||||
return eventListJSON;
|
||||
}
|
||||
|
||||
public static String eventListToJSON(List<Event> eventList) {
|
||||
StringBuilder eventListJSON = new StringBuilder();
|
||||
for (Event event : eventList) {
|
||||
List<String> eventsJSON = eventToJSON(event);
|
||||
for (String eventJSON : eventsJSON) {
|
||||
eventListJSON.append(", ");
|
||||
eventListJSON.append(eventJSON);
|
||||
}
|
||||
}
|
||||
eventListJSON.delete(0, 2);
|
||||
|
||||
return "[" + eventListJSON + "]";
|
||||
}
|
||||
|
||||
public static String timeToJSON(Time time) {
|
||||
if (time == null) {
|
||||
return "null";
|
||||
}
|
||||
|
||||
return "\"" + time + "\"";
|
||||
}
|
||||
}
|
||||
47
server/src/main/java/com/vpr/server/json/Validator.java
Normal file
47
server/src/main/java/com/vpr/server/json/Validator.java
Normal file
@@ -0,0 +1,47 @@
|
||||
package com.vpr.server.json;
|
||||
|
||||
import com.vpr.server.data.UserEvent;
|
||||
import org.springframework.http.HttpStatus;
|
||||
import org.springframework.http.ResponseEntity;
|
||||
|
||||
import java.sql.Date;
|
||||
import java.sql.Time;
|
||||
import java.text.SimpleDateFormat;
|
||||
import java.util.regex.Matcher;
|
||||
import java.util.regex.Pattern;
|
||||
|
||||
public class Validator {
|
||||
public static String ValidateEventName(String name) throws IllegalArgumentException {
|
||||
if (name.length() < 3) {
|
||||
System.out.println("NAME TO SHORT");
|
||||
throw new IllegalArgumentException("Der Name ist zu kurz");
|
||||
}
|
||||
Pattern pattern = Pattern.compile("[A-Za-z\u00e4\u00f6\u00fc\u00c4\u00d6\u00dc\u00df0-9 =!?+*/$.:,;_<>()-]*");
|
||||
Matcher matcher = pattern.matcher(name);
|
||||
if(!matcher.matches()){
|
||||
System.out.println("NAME HAS ILLEGALCHARS");
|
||||
throw new IllegalArgumentException("Der Name enthält nicht erlaubte Zeichen");
|
||||
}
|
||||
return name;
|
||||
}
|
||||
|
||||
public static Time ValidateEventTime(String time) throws IllegalArgumentException {
|
||||
try {
|
||||
SimpleDateFormat simpleDateFormat = new SimpleDateFormat("hh:mm");
|
||||
long ms = simpleDateFormat.parse(time).getTime();
|
||||
return new Time(ms);
|
||||
} catch (Exception e) {
|
||||
return null;
|
||||
}
|
||||
}
|
||||
|
||||
public static Date ValidateEventDate(String date) throws IllegalArgumentException {
|
||||
try {
|
||||
SimpleDateFormat simpleDateFormat = new SimpleDateFormat("yyyy-MM-dd");
|
||||
return new Date(simpleDateFormat.parse(date).getTime());
|
||||
} catch (Exception e) {
|
||||
System.out.println("DATE FORMAT NOT CORRECT");
|
||||
throw new IllegalArgumentException("Datumformat nicht korrekt");
|
||||
}
|
||||
}
|
||||
}
|
||||
@@ -1,17 +1,25 @@
|
||||
package com.vpr.server.repository;
|
||||
|
||||
import com.vpr.server.data.Event;
|
||||
import com.vpr.server.data.UserEvent;
|
||||
import org.springframework.data.jpa.repository.Modifying;
|
||||
import org.springframework.data.jpa.repository.Query;
|
||||
import org.springframework.data.repository.CrudRepository;
|
||||
|
||||
import javax.persistence.ColumnResult;
|
||||
import javax.persistence.ConstructorResult;
|
||||
import javax.persistence.NamedNativeQuery;
|
||||
import javax.persistence.SqlResultSetMapping;
|
||||
import javax.transaction.Transactional;
|
||||
import java.util.List;
|
||||
import java.util.Optional;
|
||||
|
||||
// This will be AUTO IMPLEMENTED by Spring into a Bean called eventRepository
|
||||
// CRUD refers Create, Read, Update, Delete
|
||||
|
||||
public interface EventRepository extends CrudRepository<Event, Integer> {
|
||||
@Query(value = "SELECT e.id AS eid, e.name AS ename, e.start, e.end, e.priority , e.is_full_day, " +
|
||||
@Query(
|
||||
value = "SELECT e.id AS eid, e.name AS ename, e.start, e.end, e.priority , e.is_full_day, " +
|
||||
"ue.date, " +
|
||||
"u.id AS uid, u.forename, u.name AS uname " +
|
||||
"FROM event e " +
|
||||
@@ -21,27 +29,53 @@ public interface EventRepository extends CrudRepository<Event, Integer> {
|
||||
"ON ue.user_id = u.id " +
|
||||
"WHERE u.id = ?1 " +
|
||||
"OR e.is_private = 0",
|
||||
nativeQuery = true)
|
||||
nativeQuery = true
|
||||
)
|
||||
Object[] findAllVisibleByUserId(long id);
|
||||
|
||||
@Query(value = "SELECT * " +
|
||||
@Query(
|
||||
value = "SELECT * " +
|
||||
"FROM event e " +
|
||||
"INNER JOIN user_event ue " +
|
||||
"ON e.id = ue.event_id " +
|
||||
"WHERE ue.user_id = ?1",
|
||||
nativeQuery = true)
|
||||
nativeQuery = true
|
||||
)
|
||||
Object[] findAllByUserId(long id);
|
||||
|
||||
|
||||
@Query(
|
||||
value = "SELECT ue.user_id as userId, ue.event_id as eventId, ue.date as date " +
|
||||
"FROM event e " +
|
||||
"INNER JOIN user_event ue " +
|
||||
"ON e.id = ue.event_id " +
|
||||
"WHERE ue.event_id = ?1 " +
|
||||
"AND ue.user_id = ?2 " +
|
||||
"AND ue.date = ?3",
|
||||
nativeQuery = true
|
||||
)
|
||||
UserEventInterface findUserEventByEventIdUserIdAndDate(long eventId, long userId, String date);
|
||||
|
||||
interface UserEventInterface{
|
||||
long getEventId();
|
||||
long getUserId();
|
||||
long getDate();
|
||||
}
|
||||
|
||||
@Modifying
|
||||
@Transactional
|
||||
@Query(value = "DELETE ue FROM user_event ue WHERE ue.event_id = ?1",
|
||||
nativeQuery = true)
|
||||
void deleteUserEventsById(long id);
|
||||
@Query(
|
||||
value = "DELETE ue FROM user_event ue WHERE ue.event_id = :eventId AND ue.user_id = :userId AND ue.date = :date",
|
||||
nativeQuery = true
|
||||
)
|
||||
void deleteUserEventsById(long userId, long eventId, String date);
|
||||
|
||||
|
||||
@Modifying
|
||||
@Transactional
|
||||
@Query(value = "DELETE e FROM event e WHERE e.id = ?1",
|
||||
nativeQuery = true)
|
||||
@Query(
|
||||
value = "DELETE e FROM event e WHERE e.id = ?1",
|
||||
nativeQuery = true
|
||||
)
|
||||
void deleteById(long id);
|
||||
}
|
||||
@@ -20,4 +20,6 @@ public interface UserRepository extends CrudRepository<User, Integer> {
|
||||
User findByLoginAndPassword(String login, byte[] password);
|
||||
|
||||
void deleteById(long id);
|
||||
|
||||
User findByToken(String token);
|
||||
}
|
||||
Reference in New Issue
Block a user