package com.covas.Resources; import java.nio.charset.StandardCharsets; import java.time.LocalDateTime; import java.util.List; import java.util.UUID; import javax.annotation.security.RolesAllowed; import javax.inject.Inject; import javax.transaction.Transactional; import javax.ws.rs.core.SecurityContext; import javax.ws.rs.Consumes; import javax.ws.rs.CookieParam; import javax.ws.rs.DELETE; import javax.ws.rs.GET; import javax.ws.rs.PATCH; import javax.ws.rs.PUT; import javax.ws.rs.Path; import javax.ws.rs.PathParam; import javax.ws.rs.Produces; import javax.ws.rs.QueryParam; import javax.ws.rs.core.Context; import javax.ws.rs.core.MediaType; import javax.ws.rs.core.Response; import com.covas.Entity.BlacklistEntity; import com.covas.Entity.UsersEntity; import io.quarkus.panache.common.Page; import org.bson.types.ObjectId; import org.eclipse.microprofile.jwt.Claims; import org.eclipse.microprofile.jwt.JsonWebToken; import org.jboss.logging.Logger; import org.postgresql.shaded.com.ongres.scram.common.bouncycastle.base64.Base64; @Produces(MediaType.APPLICATION_JSON) @Path("blacklist") public class BlacklistRessources { private static final Logger LOGGER = Logger.getLogger(UsersRessources.class); @Inject JsonWebToken jwt; /// Function private Boolean checkUserCookie(String userCookie, UsersEntity users) { if ((userCookie == null) || (users == null)) { return false; } String name = new String(Base64.decode(userCookie), StandardCharsets.UTF_8); if (!name.equals(users.pseudo) && (users.status != 1)) { return false; } return true; } private Response.Status getResponseCheck(SecurityContext ctx, String userCookie, UsersEntity users) { if (!ctx.getUserPrincipal().getName().equals(jwt.getName())) { return Response.Status.INTERNAL_SERVER_ERROR; } if (!checkUserCookie(userCookie, users)) { return Response.Status.FORBIDDEN; } return Response.Status.OK; } /// Appel HTTP /// GET @GET @RolesAllowed("Admin") public Response getBlacklist(@CookieParam("user") String userCookie, @Context SecurityContext ctx, @QueryParam("page") Integer page, @QueryParam("nbPages") Integer nbPages) { if(nbPages == null){ nbPages = 20; } if(page == null){ page = 0; } UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status statusHttp = getResponseCheck(ctx, userCookie, user); Response responseHttp = Response.status(statusHttp).build(); if (statusHttp.equals(Response.Status.OK)) { List listBlacklist = BlacklistEntity.findAll().page(Page.of(page, nbPages)).list(); responseHttp = Response.ok(listBlacklist).build(); } return responseHttp; } @GET @RolesAllowed("Admin") @Path("count") public Response getCount(@CookieParam("user") String userCookie, @Context SecurityContext ctx){ UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); Response responseHttp = Response.status(status).build(); if (status.equals(Response.Status.OK)){ responseHttp = Response.ok(BlacklistEntity.count()).build(); } return responseHttp; } @GET @RolesAllowed("Admin") @Path("{id}") public Response getSingleBlacklist(@PathParam("id") String id, @CookieParam("user") String userCookie, @Context SecurityContext ctx) { UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); Response responseHttp = Response.status(status).build(); if (status.equals(Response.Status.OK)) { BlacklistEntity blacklist = BlacklistEntity.findById(new ObjectId(id)); responseHttp = Response.status(Response.Status.NOT_FOUND).build(); if (blacklist != null) { responseHttp = Response.ok(blacklist).build(); } } return responseHttp; } @GET @RolesAllowed("Admin") @Path("/user/{id}") public Response getSingleBlacklistbyOwner(@PathParam("id") String id, @CookieParam("user") String userCookie, @Context SecurityContext ctx) { UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); Response responseHttp = Response.status(status).build(); if (status.equals(Response.Status.OK)) { BlacklistEntity blacklist = BlacklistEntity.find("owner", id).firstResult(); responseHttp = Response.status(Response.Status.NOT_FOUND).build(); if (blacklist != null) { responseHttp = Response.ok(blacklist).build(); } } return responseHttp; } // PUT @PUT @Consumes(MediaType.APPLICATION_JSON) @RolesAllowed({"Admin", "User"}) @Path("{id}") @Transactional public Response createBlacklist(@Context SecurityContext ctx, @CookieParam("user") String userCookie, @PathParam("id") String id, BlacklistEntity blacklist) { UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); BlacklistEntity newBlacklist = new BlacklistEntity(); if (status.equals(Response.Status.OK)) { newBlacklist.owner = blacklist.owner; newBlacklist.blocked = blacklist.blocked; newBlacklist.created_at = LocalDateTime.now(); newBlacklist.updated_at = LocalDateTime.now(); newBlacklist.persist(); status = Response.Status.CREATED; } return Response.status(status).entity(newBlacklist).build(); } // DELETE @DELETE @Path("{id}") @RolesAllowed({"Admin", "User"}) @Transactional public Response changeStatusSingleBlacklistToDelete(@Context SecurityContext ctx, @CookieParam("user") String userCookie, @PathParam("id") String id) { UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); if (status.equals(Response.Status.OK)) { BlacklistEntity singleBlacklist = BlacklistEntity.find("id", new ObjectId(id)).firstResult(); if (singleBlacklist == null) { status = Response.Status.NOT_FOUND; } else { singleBlacklist.status = -1; singleBlacklist.updated_at = LocalDateTime.now(); singleBlacklist.deleted_at = LocalDateTime.now(); singleBlacklist.persist(); } } return Response.status(status).build(); } // PATCH @PATCH @RolesAllowed({"Admin", "User"}) @Consumes(MediaType.APPLICATION_JSON) @Transactional @Path("{id}") public Response updateBlacklist(@Context SecurityContext ctx, @CookieParam("user") String userCookie, BlacklistEntity blacklist, @PathParam("id") String id) { UUID kid = UUID.fromString(jwt.getClaim(Claims.kid)); UsersEntity user = UsersEntity.findById(kid); Response.Status status = getResponseCheck(ctx, userCookie, user); if (status.equals(Response.Status.OK)) { BlacklistEntity blacklistOrig = BlacklistEntity.findById(new ObjectId(id)); if (blacklistOrig == null) { status = Response.Status.NOT_FOUND; } else { blacklistOrig.owner = blacklist.owner; blacklistOrig.blocked = blacklist.blocked; blacklistOrig.updated_at = LocalDateTime.now(); if(blacklist.status == 1){ blacklistOrig.deleted_at = null; blacklistOrig.status = 1; } blacklistOrig.persist(); } } return Response.status(status).build(); } }