Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Change document and link id in request #815

Merged
merged 12 commits into from
Dec 4, 2024
Merged

Change document and link id in request #815

Show file tree
Hide file tree
Changes from 10 commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
5a4c814
refactor: document id as object instead of String
GtanSndil Nov 25, 2024
d3a0c04
refactor: documentId for delete document
GtanSndil Nov 25, 2024
5301e5e
refactor: improve display error message when document Id does not exist
GtanSndil Nov 25, 2024
2125a6a
Update DocumentsResources.java
GtanSndil Nov 25, 2024
148a1e7
refactor:delete document and delete link
GtanSndil Nov 26, 2024
438bd52
refactor: PUT /link/id
GtanSndil Nov 26, 2024
7dd4cdc
refactor:add sanitize
GtanSndil Nov 26, 2024
a72fceb
test: add new tests for documents services
GtanSndil Nov 27, 2024
416e1c3
tests: clean codeLists tests
GtanSndil Nov 27, 2024
46cee5d
fix:
GtanSndil Dec 2, 2024
f2d79d7
refactor: place of constant
GtanSndil Dec 3, 2024
cbedd3d
refactor
GtanSndil Dec 4, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions src/main/java/fr/insee/rmes/bauhaus_services/Constants.java
View file
Open in desktop
GtanSndil marked this conversation as resolved.
Show resolved Hide resolved
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@

public class Constants {

public static final String TYPE_STRING = "String";
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Peux tu ajouter cette constant dans le bon block ? Je crois que c'est rangé par ordre alphabétique.

/*A*/
public static final String ACCRUAL_PERIODICITY_LIST ="accrualPeriodicityList";
public static final String ALT_LABEL_LG1 = "altLabelLg1";
Expand Down
2 changes: 1 addition & 1 deletion ...va/fr/insee/rmes/bauhaus_services/operations/documentations/documents/DocumentsUtils.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -340,7 +340,7 @@ public JSONObject getDocument(String id, boolean isLink) throws RmesException {

if (jsonDocs.isNull(Constants.URI)) {
logger.error("Error with the document {}. It looks like it does not have an uri", id);
throw new RmesNotFoundException(ErrorCodes.DOCUMENT_UNKNOWN_ID, "Cannot find " + (isLink ? "Link" : "Document") + " with id: ", id);
throw new RmesNotFoundException(ErrorCodes.DOCUMENT_UNKNOWN_ID, "Cannot find " + (isLink ? "Link" : "Document") + " with id : " + id, id);
}
formatDateInJsonObject(jsonDocs);
jsonDocs.put("sims", this.getSimsByDocument(id, isLink));
Expand Down
23 changes: 23 additions & 0 deletions src/main/java/fr/insee/rmes/config/swagger/model/operations/documentation/DocumentId.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
package fr.insee.rmes.config.swagger.model.operations.documentation;

public class DocumentId {
private String id;

public DocumentId(String id) {
this.id = id;
}

public String getDocumentId() {
return id;
}

public String getString() {
if (id != null && !id.isEmpty()) {
return id;
}
else{
return null; //without this it might cause some trouble to test with new DocumentID(null)
}
}

}
76 changes: 64 additions & 12 deletions src/main/java/fr/insee/rmes/webservice/operations/DocumentsResources.java
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@

import fr.insee.rmes.bauhaus_services.Constants;
import fr.insee.rmes.bauhaus_services.DocumentsService;
import fr.insee.rmes.config.swagger.model.operations.documentation.DocumentId;
import fr.insee.rmes.exceptions.RmesException;
import fr.insee.rmes.model.operations.documentations.Document;
import io.swagger.v3.oas.annotations.Operation;
Expand Down Expand Up @@ -107,15 +108,28 @@ public ResponseEntity<String> setDocument(
@PutMapping("/document/{id}")
@Operation(operationId = "setDocumentById", summary = "Update document ")
public ResponseEntity<String> setDocument(
@Parameter(description = "Id", required = true) @PathVariable(Constants.ID) String id,
@Parameter(description = Constants.DOCUMENT, required = true, schema = @Schema(implementation = Document.class)) @RequestBody String body) throws RmesException {
documentsService.setDocument(id, body);
@Parameter(
description = "Id",
required = true,
schema = @Schema (type=Constants.TYPE_STRING)
)
@PathVariable(Constants.ID) DocumentId id,
@Parameter(
description = Constants.DOCUMENT,
required = true,
schema = @Schema(implementation = Document.class)
)
@RequestBody String body) throws RmesException {
String documentIdString = (id.getDocumentId() != null) ? sanitizeDocumentId(id.getDocumentId()) : null;
documentsService.setDocument(documentIdString, body);
logger.info("Update document : {}", id);
return ResponseEntity.ok(id);
return ResponseEntity.ok(documentIdString);
}


@PreAuthorize("hasAnyRole(T(fr.insee.rmes.config.auth.roles.Roles).ADMIN "


@PreAuthorize("hasAnyRole(T(fr.insee.rmes.config.auth.roles.Roles).ADMIN "
+ ", T(fr.insee.rmes.config.auth.roles.Roles).INDICATOR_CONTRIBUTOR "
+ ", T(fr.insee.rmes.config.auth.roles.Roles).SERIES_CONTRIBUTOR)")
@Operation(operationId = "changeDocument", summary = "Change document file")
Expand All @@ -140,8 +154,15 @@ public ResponseEntity<String> changeDocument(
+ ", T(fr.insee.rmes.config.auth.roles.Roles).SERIES_CONTRIBUTOR)")
@DeleteMapping("/document/{id}")
@Operation(operationId = "deleteDocument", summary = "Delete a document")
public ResponseEntity<Object> deleteDocument(@PathVariable(Constants.ID) String id) throws RmesException {
return ResponseEntity.status(documentsService.deleteDocument(id)).body(id);
public ResponseEntity<Object> deleteDocument(
@Parameter(
required = true,
schema = @Schema (type=Constants.TYPE_STRING)
)
@PathVariable(Constants.ID) DocumentId id)
throws RmesException {
String documentIdString = (id.getDocumentId() != null) ? sanitizeDocumentId(id.getDocumentId()) : null;
return ResponseEntity.status(documentsService.deleteDocument(documentIdString)).body(documentIdString);
}


Expand Down Expand Up @@ -176,17 +197,48 @@ public ResponseEntity<Object> setLink(
@PutMapping("/link/{id}")
@Operation(operationId = "setLinkById", summary = "Update link")
public ResponseEntity<Object> setLink(
@Parameter(description = "Id", required = true) @PathVariable(Constants.ID) String id,
@Parameter(description = "Link", required = true, schema = @Schema(implementation = Document.class)) @RequestBody String body) throws RmesException {
return ResponseEntity.ok(documentsService.setLink(id, body));
@Parameter(
description = "Id",
required = true,
schema = @Schema (type=Constants.TYPE_STRING)
)
@PathVariable(Constants.ID) DocumentId id,
@Parameter(
required = true,
schema = @Schema(implementation = Document.class)
)
@RequestBody String body
)
throws RmesException {
String documentIdString = (id.getDocumentId() != null) ? sanitizeDocumentId(id.getDocumentId()) : null;
return ResponseEntity.ok(documentsService.setLink(documentIdString, body));
}

@PreAuthorize("hasAnyRole(T(fr.insee.rmes.config.auth.roles.Roles).ADMIN "
+ ", T(fr.insee.rmes.config.auth.roles.Roles).INDICATOR_CONTRIBUTOR "
+ ", T(fr.insee.rmes.config.auth.roles.Roles).SERIES_CONTRIBUTOR)")
@DeleteMapping("/link/{id}")
@Operation(operationId = "deleteLink", summary = "Delete a link")
public ResponseEntity<Object> deleteLink(@PathVariable(Constants.ID) String id) throws RmesException {
return ResponseEntity.status(documentsService.deleteLink(id)).body(id);
public ResponseEntity<Object> deleteLink(
@Parameter(
required = true,
schema = @Schema (type=Constants.TYPE_STRING)
)
@PathVariable(Constants.ID) DocumentId id
) throws RmesException {
String documentIdString = (id.getDocumentId() != null) ? sanitizeDocumentId(id.getDocumentId()) : null;
return ResponseEntity.status(documentsService.deleteLink(documentIdString)).body(documentIdString);
}


// Méthode pour encoder et valider le DocumentID
private String sanitizeDocumentId(String documentIdString) {
if (documentIdString == null || documentIdString.isEmpty()) {
return null;
}
//on peut ajouter d'autres contrôles
return documentIdString.replaceAll("[/<>:\"]", "");
}


}
17 changes: 7 additions & 10 deletions src/test/java/fr/insee/rmes/integration/authorizations/TestCodeListsResourcesEnvProd.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,14 +1,15 @@
package fr.insee.rmes.integration.authorizations;

import fr.insee.rmes.bauhaus_services.CodeListService;
import fr.insee.rmes.bauhaus_services.OperationsDocumentationsService;
import fr.insee.rmes.bauhaus_services.StampAuthorizationChecker;
import fr.insee.rmes.config.Config;
import fr.insee.rmes.config.auth.UserProviderFromSecurityContext;
import fr.insee.rmes.config.auth.roles.Roles;
import fr.insee.rmes.config.auth.security.*;
import fr.insee.rmes.config.auth.security.BauhausMethodSecurityExpressionHandler;
import fr.insee.rmes.config.auth.security.CommonSecurityConfiguration;
import fr.insee.rmes.config.auth.security.DefaultSecurityContext;
import fr.insee.rmes.config.auth.security.OpenIDConnectSecurityContext;
import fr.insee.rmes.config.auth.user.Stamp;
import fr.insee.rmes.model.ValidationStatus;
import fr.insee.rmes.webservice.codesLists.CodeListsResources;
import org.junit.jupiter.api.Test;
import org.mockito.Mockito;
Expand All @@ -23,7 +24,6 @@
import java.util.List;

import static fr.insee.rmes.integration.authorizations.TokenForTestsConfiguration.*;
import static fr.insee.rmes.model.ValidationStatus.UNPUBLISHED;
import static org.mockito.ArgumentMatchers.anyString;
import static org.mockito.ArgumentMatchers.eq;
import static org.mockito.Mockito.when;
Expand Down Expand Up @@ -56,15 +56,12 @@ class TestCodeListsResourcesEnvProd {
@MockBean
private CodeListService codeListService;
@MockBean
protected OperationsDocumentationsService documentationsService;
@MockBean
StampAuthorizationChecker stampAuthorizationChecker;

private final String idep = "xxxxxx";
private final String timbre = "XX59-YYY";

int codesListId=10;
ValidationStatus status= UNPUBLISHED;

@Test
void putCodesListAdmin_ok() throws Exception {
Expand Down Expand Up @@ -143,7 +140,7 @@ void postCodesListAsCodesListContributor_ok() throws Exception {

@Test
void postCodesList_noAuth() throws Exception {
mvc.perform(put("/codeList/")
mvc.perform(post("/codeList/")
.contentType(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
.content("{\"id\": \"1\"}"))
Expand Down Expand Up @@ -233,7 +230,7 @@ void postCode_noAuth() throws Exception {

@Test
void postCodeAsNotCodesListContributor() throws Exception {
configureJwtDecoderMock(jwtDecoder, idep, timbre, List.of("mauvais rôle"));
configureJwtDecoderMock(jwtDecoder, idep, timbre, List.of("bad_role"));
mvc.perform(post("/codeList/detailed/1/codes").header("Authorization", "Bearer toto")
.contentType(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
Expand Down Expand Up @@ -274,7 +271,7 @@ void putCode_noAuth() throws Exception {

@Test
void putCodeAsNotCodesListContributor() throws Exception {
configureJwtDecoderMock(jwtDecoder, idep, timbre, List.of("mauvais rôle"));
configureJwtDecoderMock(jwtDecoder, idep, timbre, List.of("bad_role"));
mvc.perform(put("/codeList/detailed/1/codes/2").header("Authorization", "Bearer toto")
.contentType(MediaType.APPLICATION_JSON)
.accept(MediaType.APPLICATION_JSON)
Expand Down
Loading