ApplicationMembershipController.java
package access.api;
import access.exception.NotFoundException;
import access.model.*;
import access.repository.ApplicationMembershipRepository;
import access.repository.ApplicationRepository;
import access.repository.OrganizationMembershipRepository;
import access.repository.UserRepository;
import access.request.ApplicationMembershipForm;
import io.swagger.v3.oas.annotations.security.SecurityRequirement;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.http.ResponseEntity;
import org.springframework.transaction.annotation.Transactional;
import org.springframework.web.bind.annotation.*;
import java.util.Map;
import java.util.Set;
import static access.SwaggerOpenIdConfig.API_TOKENS_SCHEME_NAME;
import static access.SwaggerOpenIdConfig.OPEN_ID_SCHEME_NAME;
import static access.api.Results.deleteResult;
@RestController
@RequestMapping(value = {"/api/v1/application_memberships"}, produces = MediaType.APPLICATION_JSON_VALUE)
@Transactional
@SecurityRequirement(name = OPEN_ID_SCHEME_NAME, scopes = {"openid"})
@SecurityRequirement(name = API_TOKENS_SCHEME_NAME)
public class ApplicationMembershipController implements UserAccessRights {
private static final Log LOG = LogFactory.getLog(ApplicationMembershipController.class);
private final ApplicationRepository applicationRepository;
private final ApplicationMembershipRepository applicationMembershipRepository;
private final OrganizationMembershipRepository organizationMembershipRepository;
private final UserRepository userRepository;
public ApplicationMembershipController(ApplicationRepository applicationRepository,
ApplicationMembershipRepository applicationMembershipRepository,
OrganizationMembershipRepository organizationMembershipRepository,
UserRepository userRepository) {
this.applicationRepository = applicationRepository;
this.applicationMembershipRepository = applicationMembershipRepository;
this.organizationMembershipRepository = organizationMembershipRepository;
this.userRepository = userRepository;
}
@PostMapping({"", "/"})
public ResponseEntity<ApplicationMembership> create(
User user, @RequestBody ApplicationMembershipForm applicationMembershipForm) {
LOG.debug("/create");
Application application = this.applicationRepository.findById(applicationMembershipForm.getApplicationId())
.orElseThrow(() -> new NotFoundException("Application not found"));
user = reinitializeUser(user ,userRepository);
confirmApplicationWriteAccess(user, application, Authority.MEMBER);
if (!application.getOrganization().getId().equals(applicationMembershipForm.getOrganizationId())) {
throw new NotFoundException("Organization not found");
}
OrganizationMembership organizationMembership = this.organizationMembershipRepository.findById(applicationMembershipForm.getOrganizationMembershipId())
.orElseThrow(() -> new NotFoundException("OrganizationMembership not found"));
ApplicationMembership applicationMembership = new ApplicationMembership(application, organizationMembership);
applicationMembership = applicationMembershipRepository.save(applicationMembership);
return ResponseEntity.status(HttpStatus.CREATED).body(applicationMembership);
}
@DeleteMapping({"/{membership_id}"})
public ResponseEntity<Map<String, Object>> delete(User user, @PathVariable("membership_id") Long membershipId) {
LOG.debug("/delete");
ApplicationMembership applicationMembership = this.applicationMembershipRepository.findById(membershipId)
.orElseThrow(() -> new NotFoundException("ApplicationMembership not found"));
user = reinitializeUser(user ,userRepository);
confirmOrganizationMembership(user, applicationMembership.getOrganizationMembership().getOrganization(), Authority.GUEST);
applicationMembershipRepository.delete(applicationMembership);
return deleteResult();
}
}