Add tests and fix implementation

montesmoci · montesmoci · commit 32d62f2c05bc · 2024-04-23T13:41:22.000-05:00
Signed-off-by: montesm &lt;montesm@objectcomputing.com&gt;
diff --git a/UnityAuth/src/main/java/io/unityfoundation/auth/AuthController.java b/UnityAuth/src/main/java/io/unityfoundation/auth/AuthController.java
@@ -105,27 +105,30 @@ public HttpResponse<HasPermissionResponse> hasPermission(@Body HasPermissionRequ
   }
 
   @Get("/roles")
-  public HttpResponse<?> getRoles() {
-    return HttpResponse.ok(roleRepo.findAll());
+  public HttpResponse<List<RoleDTO>> getRoles() {
+    return HttpResponse.ok(roleRepo.findAll().stream()
+            .map(role -> new RoleDTO(role.getId(), role.getName(), role.getDescription()))
+            .toList());
   }
 
   @Get("/tenants")
-  public HttpResponse<?> getTenants(Authentication authentication) {
+  public HttpResponse<List<TenantDTO>> getTenants(Authentication authentication) {
 
     String authenticatedUserEmail = authentication.getName();
 
-    if(userRepo.existsByEmailAndRoleEqualsUnityAdmin(authenticatedUserEmail)) {
-      return HttpResponse.ok(tenantRepo.findAll());
-    }
+    List<Tenant> tenants = userRepo.existsByEmailAndRoleEqualsUnityAdmin(authenticatedUserEmail) ?
+            tenantRepo.findAll() : tenantRepo.findAllByUserEmail(authenticatedUserEmail);
 
-    return HttpResponse.ok(tenantRepo.findAllByUserEmail(authenticatedUserEmail));
+    return HttpResponse.ok(tenants.stream()
+            .map(tenant -> new TenantDTO(tenant.getId(), tenant.getName()))
+            .toList());
   }
 
   @Get("/tenants/{id}/users")
   public HttpResponse<List<UserResponse>> getTenantUsers(@PathVariable Long id, Authentication authentication) {
 
     // reject if the declared tenant does not exist
-    if (tenantRepo.existsById(id)) {
+    if (!tenantRepo.existsById(id)) {
       return HttpResponse.badRequest();
     }
 
@@ -185,25 +188,33 @@ private HttpResponse<HasPermissionResponse> createHasPermissionResponse(boolean
     return HttpResponse.ok(new HasPermissionResponse(hasPermission, userEmail, message, permissions));
   }
 
+  @Serdeable
+  public record TenantDTO(
+      Long id,
+      String name
+  ) {}
+
+  @Serdeable
+  public record RoleDTO(
+      Long id,
+      String name,
+      String description
+  ) {}
+
   @Serdeable
   public record HasPermissionResponse(
       boolean hasPermission,
       @Nullable String userEmail,
       @Nullable String errorMessage,
       List<String> permissions
-  ) {
-
-  }
+  ) {}
 
   @Introspected
   public record TenantPermission(
       long tenantId,
       String permissionName,
       PermissionScope permissionScope
-
-  ) {
-
-  }
+  ) {}
 
 
   public sealed interface UserPermissionsResponse {
@@ -215,8 +226,6 @@ record Failure(String errorMessage) implements  UserPermissionsResponse {}
 
   @Serdeable
   public record UserPermissionsRequest(@NotNull Long tenantId,
-                                       @NotNull Long serviceId) {
-
-  }
+                                       @NotNull Long serviceId) {}
 
 }
diff --git a/UnityAuth/src/main/java/io/unityfoundation/auth/NullOrNotBlank.java b/UnityAuth/src/main/java/io/unityfoundation/auth/NullOrNotBlank.java
@@ -0,0 +1,21 @@
+package io.unityfoundation.auth;
+
+import jakarta.validation.Constraint;
+import jakarta.validation.Payload;
+
+import java.lang.annotation.Documented;
+import java.lang.annotation.ElementType;
+import java.lang.annotation.Retention;
+import java.lang.annotation.Target;
+
+import static java.lang.annotation.RetentionPolicy.RUNTIME;
+
+@Target({ElementType.FIELD})
+@Retention(RUNTIME)
+@Documented
+@Constraint(validatedBy = NullOrNotBlankValidator.class)
+public @interface NullOrNotBlank {
+    String message() default "{javax.validation.constraints.NullOrNotBlank.message}";
+    Class<?>[] groups() default { };
+    Class<? extends Payload>[] payload() default {};
+}
diff --git a/UnityAuth/src/main/java/io/unityfoundation/auth/NullOrNotBlankValidator.java b/UnityAuth/src/main/java/io/unityfoundation/auth/NullOrNotBlankValidator.java
@@ -0,0 +1,12 @@
+package io.unityfoundation.auth;
+
+import jakarta.validation.ConstraintValidator;
+import jakarta.validation.ConstraintValidatorContext;
+
+public class NullOrNotBlankValidator implements ConstraintValidator<NullOrNotBlank, String> {
+
+    @Override
+    public boolean isValid(String value, ConstraintValidatorContext context) {
+        return value == null || !value.trim().isEmpty();
+    }
+}
diff --git a/UnityAuth/src/main/java/io/unityfoundation/auth/UserController.java b/UnityAuth/src/main/java/io/unityfoundation/auth/UserController.java
@@ -3,6 +3,7 @@
 import io.micronaut.http.HttpResponse;
 import io.micronaut.http.HttpStatus;
 import io.micronaut.http.annotation.*;
+import io.micronaut.http.exceptions.HttpStatusException;
 import io.micronaut.security.annotation.Secured;
 import io.micronaut.security.authentication.Authentication;
 import io.micronaut.security.rules.SecurityRule;
@@ -24,22 +25,24 @@ public class UserController {
     private final UserRepo userRepo;
     private final TenantRepo tenantRepo;
     private final RoleRepo roleRepo;
+    private final PasswordEncoder passwordEncoder;
 
-    public UserController(UserRepo userRepo, TenantRepo tenantRepo, RoleRepo roleRepo) {
+    public UserController(UserRepo userRepo, TenantRepo tenantRepo, RoleRepo roleRepo, PasswordEncoder passwordEncoder) {
         this.userRepo = userRepo;
         this.tenantRepo = tenantRepo;
         this.roleRepo = roleRepo;
+        this.passwordEncoder = passwordEncoder;
     }
 
     @Post
-    public HttpResponse<?> createUser(@Body AddUserRequest requestDTO,
+    public HttpResponse<UserResponse> createUser(@Body AddUserRequest requestDTO,
                                                  Authentication authentication) {
 
         Long requestTenantId = requestDTO.tenantId();
 
         // reject if the declared tenant does not exist
-        if (tenantRepo.existsById(requestTenantId)) {
-            return HttpResponse.notFound("Tenant does not exist");
+        if (!tenantRepo.existsById(requestTenantId)) {
+            throw new HttpStatusException(HttpStatus.NOT_FOUND, "Tenant not found");
         }
 
         Role unityAdministrator = roleRepo.findByName("Unity Administrator");
@@ -62,7 +65,7 @@ public HttpResponse<?> createUser(@Body AddUserRequest requestDTO,
 
         // reject if new user already exists under a tenant
         if (userRepo.existsByEmailAndTenantId(requestDTO.email(), requestTenantId)) {
-            return HttpResponse.badRequest("User already exists under declared tenant.");
+            throw new HttpStatusException(HttpStatus.BAD_REQUEST, "User already exists");
         }
 
         // if the new user exists, create a new user-role entry
@@ -72,9 +75,9 @@ public HttpResponse<?> createUser(@Body AddUserRequest requestDTO,
         if (userOptional.isEmpty()) {
             User newUser = new User();
             newUser.setEmail(requestDTO.email());
-            newUser.setPassword(requestDTO.password());
-            newUser.setFirstName(requestDTO.firstName);
-            newUser.setLastName(requestDTO.lastName);
+            newUser.setPassword(passwordEncoder.encode(requestDTO.password()));
+            newUser.setFirstName(requestDTO.firstName());
+            newUser.setLastName(requestDTO.lastName());
             newUser.setStatus(User.UserStatus.ENABLED);
             user = userRepo.save(newUser);
         } else {
@@ -91,18 +94,18 @@ public HttpResponse<?> createUser(@Body AddUserRequest requestDTO,
     }
 
     @Patch("{id}/roles")
-    public HttpResponse<?> updateUserRoles(@PathVariable Long id, @Body UpdateUserRolesRequest requestDTO,
+    public HttpResponse<UserResponse> updateUserRoles(@PathVariable Long id, @Body UpdateUserRolesRequest requestDTO,
                                                 Authentication authentication) {
         Long requestTenantId = requestDTO.tenantId();
 
         // reject if the declared tenant does not exist
-        if (tenantRepo.existsById(requestTenantId)) {
-            return HttpResponse.notFound("Tenant does not exist");
+        if (!tenantRepo.existsById(requestTenantId)) {
+            throw new HttpStatusException(HttpStatus.NOT_FOUND, "Tenant not found");
         }
 
         Optional<User> userOptional = userRepo.findById(id);
         if (userOptional.isEmpty()) {
-            return HttpResponse.notFound("User not found.");
+            throw new HttpStatusException(HttpStatus.NOT_FOUND, "User not found");
         }
 
         User user = userOptional.get();
@@ -126,7 +129,6 @@ public HttpResponse<?> updateUserRoles(@PathVariable Long id, @Body UpdateUserRo
 
         applyRolesPatch(rolesIntersection, requestTenantId, user.getId());
 
-        // return updated user
         return HttpResponse.created(new UserResponse(user.getId(),
                 user.getEmail(),
                 user.getFirstName(),
@@ -150,17 +152,17 @@ public void applyRolesPatch(List<Long> requestRoles, Long requestTenantId, Long
     }
 
     @Patch("{id}")
-    public HttpResponse<?> selfPatch(@PathVariable Long id, @Body UpdateSelfRequest requestDTO,
+    public HttpResponse<UserResponse> selfPatch(@PathVariable Long id, @Body UpdateSelfRequest requestDTO,
                                                 Authentication authentication) {
 
         Optional<User> userOptional = userRepo.findByEmail(authentication.getName());
         if (userOptional.isEmpty()) {
-            return HttpResponse.notFound("User not found.");
+            throw new HttpStatusException(HttpStatus.NOT_FOUND, "User not found");
         }
 
         User user = userOptional.get();
         if (!Objects.equals(user.getId(), id)) {
-            return HttpResponse.badRequest("User id mismatch.");
+            throw new HttpStatusException(HttpStatus.BAD_REQUEST, "User id mismatch.");
         }
 
         if (requestDTO.firstName != null) {
@@ -170,10 +172,10 @@ public HttpResponse<?> selfPatch(@PathVariable Long id, @Body UpdateSelfRequest
             user.setLastName(requestDTO.lastName);
         }
         if (requestDTO.password != null) {
-            user.setPassword(requestDTO.password);
+            user.setPassword(passwordEncoder.encode(requestDTO.password()));
         }
 
-        User saved = userRepo.save(user);
+        User saved = userRepo.update(user);
         return HttpResponse.ok(new UserResponse(saved.getId(), saved.getEmail(), saved.getFirstName(), saved.getLastName(),
                 userRepo.getUserRolesByUserId(saved.getId())));
     }
@@ -196,8 +198,8 @@ public record AddUserRequest(
 
     @Serdeable
     public record UpdateSelfRequest(
-            @NotBlank String firstName,
-            @NotBlank String lastName,
-            @NotBlank String password) {
+            @NullOrNotBlank String firstName,
+            @NullOrNotBlank String lastName,
+            @NullOrNotBlank String password) {
     }
 }
diff --git a/UnityAuth/src/test/java/io/unityfoundation/UnityIamTest.java b/UnityAuth/src/test/java/io/unityfoundation/UnityIamTest.java
diff --git a/UnityAuth/src/test/resources/db/migration/afterMigrate.sql b/UnityAuth/src/test/resources/db/migration/afterMigrate.sql
