AclSidRelatedController.java

/*
 * Copyright 2022 Global Crop Diversity Trust
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.gringlobal.api.v2.impl;

import com.querydsl.core.types.dsl.BooleanExpression;
import io.swagger.v3.oas.annotations.tags.Tag;
import org.apache.commons.lang3.StringUtils;
import org.genesys.blocks.oauth.model.QOAuthClient;
import org.genesys.blocks.oauth.persistence.OAuthClientRepository;
import org.genesys.blocks.security.model.AclSid;
import org.genesys.blocks.security.persistence.AclSidPersistence;
import org.gringlobal.api.ApiBaseController;
import org.gringlobal.api.Pagination;
import org.gringlobal.api.model.AclSidDTO;
import org.gringlobal.api.v2.mapper.MapstructMapper;
import org.gringlobal.model.QSysGroup;
import org.gringlobal.model.QSysUser;
import org.gringlobal.persistence.SysGroupRepository;
import org.gringlobal.persistence.SysUserRepository;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.domain.Sort;
import org.springframework.http.MediaType;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.transaction.annotation.Transactional;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.RestController;

import java.util.ArrayList;
import java.util.List;
import java.util.stream.Collectors;

@RestController("aclSidRelatedApi2")
@RequestMapping(AclSidRelatedController.API_URL)
@PreAuthorize("isAuthenticated()")
@Tag(name = "AclSid")
public class AclSidRelatedController {

	/** The Constant API_URL. */
	public static final String API_URL = ApiBaseController.APIv2_BASE + "/aclsid";

	@Autowired
	private SysUserRepository userRepository;

	@Autowired
	private SysGroupRepository groupRepository;

	@Autowired
	private OAuthClientRepository oAuthClientRepository;
	
	@Autowired
	private MapstructMapper mapstructMapper;

	@Autowired
	private AclSidPersistence aclSidPersistence;

	/**
	 * Auto-complete AclSid by SysUser and OAuth-client.
	 *
	 * @param term the search term
	 */
	@GetMapping(value = "/autocomplete", produces = MediaType.APPLICATION_JSON_VALUE)
	@Transactional(readOnly = true)
	public List<AclSidDTO> autocompleteAclSid(@RequestParam(value = "term", defaultValue = "") final String term) {
		List<AclSid> aclSids = new ArrayList<>();
		var termForSearch = StringUtils.stripToEmpty(term);

		BooleanExpression sysUserExpression = QSysUser.sysUser.username.containsIgnoreCase(termForSearch)
			.or(QSysUser.sysUser.cooperator().email.containsIgnoreCase(termForSearch))
			.or(QSysUser.sysUser.cooperator().firstName.containsIgnoreCase(termForSearch))
			.or(QSysUser.sysUser.cooperator().lastName.containsIgnoreCase(termForSearch));
		var users = userRepository.findAll(
			sysUserExpression,
			Pagination.toPageRequest(15, Sort.by(Sort.Direction.ASC, "cooperator.firstName", "cooperator.lastName", "username"))).getContent();
		users.forEach(user -> {
			if (user.getCooperator() != null) {
				user.getCooperator().getId();
			}
		});
		aclSids.addAll(users);

		BooleanExpression sysGroupExpression = QSysGroup.sysGroup.groupTag.containsIgnoreCase(termForSearch);
		aclSids.addAll(groupRepository.findAll(sysGroupExpression, Pagination.toPageRequest(10, Sort.by(Sort.Direction.ASC, "groupTag"))).getContent());

		BooleanExpression oAuthClientExpression = QOAuthClient.oAuthClient.title.containsIgnoreCase(termForSearch).or(QOAuthClient.oAuthClient.clientId.containsIgnoreCase(termForSearch));
		aclSids.addAll(oAuthClientRepository.findAll(oAuthClientExpression, Pagination.toPageRequest(10, Sort.by(Sort.Direction.ASC, "clientId"))).getContent());

		// Include authority SIDs (ROLE_USER, etc.)
		var roles = aclSidPersistence.listAuthoritySids().stream().filter(authority -> authority.getSid().startsWith("ROLE_") && StringUtils.containsIgnoreCase(authority.getSid().substring("ROLE_".length()), termForSearch)).collect(Collectors.toList());
		// System.err.println("Including in " + aclSids + " roles " + roles);
		aclSids.addAll(roles);

		// return mapstructMapper.map(aclSids.stream().distinct().collect(Collectors.toList()), mapstructMapper::mapInfo);
		return mapstructMapper.map(aclSids, mapstructMapper::map);
	}
}
Created with JaCoCo 0.8.12.202403310830