updated endpoints so update now gives name instead of id, updated DTOs to not return id

Stianforren · Stianforren · commit 5f623690be55 · 2025-09-22T10:28:10.000+02:00
diff --git a/api.tests/PostEndpointTests/UpdatePostTests.cs b/api.tests/PostEndpointTests/UpdatePostTests.cs
@@ -85,8 +85,6 @@ public async Task UpdatePostPassesTest()
             Assert.That(updatedResult, Is.Not.Null, "Update Failed");
             Assert.That(patchResponse.StatusCode, Is.EqualTo(System.Net.HttpStatusCode.OK));
             Assert.That(updatedResult!.Data.Body, Is.EqualTo(newBody));
-            Assert.That(updatedResult!.Data.Id, Is.EqualTo(1));
-            Assert.That(updatedResult!.Data.AuthorId, Is.EqualTo(1));
         }
     }
 }
diff --git a/exercise.wwwapi/DTOs/Posts/GetPosts/CommentDTO.cs b/exercise.wwwapi/DTOs/Posts/GetPosts/CommentDTO.cs
@@ -4,26 +4,24 @@ namespace exercise.wwwapi.DTOs.Posts.GetPosts
 {
     public class CommentDTO
     {
-        public int Id { get; set; }
-        public int UserId { get; set; }
-        public string Body { get; set; } = string.Empty;
-        public DateTime CreatedAt { get; set; }
         public string? firstName { get; set; }
         public string? lastName { get; set; }
-        public CommentDTO()
-        {
-        }
+        public string Body { get; set; } = string.Empty;
+        public DateTime CreatedAt { get; set; }
+        public DateTime? UpdatedAt { get; set; }
+        public string? UpdatedBy { get; set; }
+        public CommentDTO() { }
         public CommentDTO(Comment model)
         {
-            Id = model.Id;
-            UserId = model.UserId;
             Body = model.Body;
             CreatedAt = model.CreatedAt;
             if (model.User != null)
             {
                 firstName = model.User.FirstName;
                 lastName = model.User.LastName;
             }
+            UpdatedAt = model.UpdatedAt;
+            UpdatedBy = model.UpdatedBy;
         }
     }
 }
diff --git a/exercise.wwwapi/DTOs/Posts/GetPosts/PostDTO.cs b/exercise.wwwapi/DTOs/Posts/GetPosts/PostDTO.cs
@@ -5,29 +5,26 @@ namespace exercise.wwwapi.DTOs.Posts.GetPosts
 {
     public class PostDTO
     {
-        public int Id { get; set; }
-        public int AuthorId { get; set; }
         public string Firstname { get; set; }
         public string Lastname { get; set; }
         public string Body { get; set; } = string.Empty;
         public DateTime CreatedAt { get; set; }
+        public DateTime? UpdatedAt { get; set; }
+        public string? UpdatedBy { get; set; }
         public List<CommentDTO> Comments { get; set; } = new List<CommentDTO>();
         public List<LikeDTO> Likes { get; set; } = new List<LikeDTO>();
 
-        public PostDTO()
-        {
-            
-        }
+        public PostDTO() { }
         public PostDTO(Post model)
         {
-            Id = model.Id;
-            AuthorId = model.AuthorId;
-            Body = model.Body;
-            CreatedAt = model.CreatedAt;
             Firstname = model.Author.FirstName;
             Lastname = model.Author.LastName;
+            Body = model.Body;
+            CreatedAt = model.CreatedAt;
             Comments = model.Comments.Select(c => new CommentDTO(c)).ToList();
             Likes = model.Likes.Select(l => new LikeDTO(l)).ToList();
+            UpdatedAt = model.UpdatedAt;
+            UpdatedBy = model.UpdatedBy;
         }
     }
 }
diff --git a/exercise.wwwapi/DTOs/Posts/UpdatePost/UpdatePostSuccessDTO.cs b/exercise.wwwapi/DTOs/Posts/UpdatePost/UpdatePostSuccessDTO.cs
@@ -4,12 +4,6 @@ namespace exercise.wwwapi.DTOs.Posts.UpdatePost
 {
     public class UpdatePostSuccessDTO
     {
-        [JsonPropertyName("id")]
-        public int Id { get; set; }
-
-        [JsonPropertyName("author_id")]
-        public int AuthorId { get; set; }
-
         [JsonPropertyName("body")]
         public string Body { get; set; }
 
@@ -19,6 +13,6 @@ public class UpdatePostSuccessDTO
         [JsonPropertyName("created_at")]
         public DateTime CreatedAt { get; set; }
         public DateTime? UpdatedAt { get; set; }
-        public int? UpdatedById { get; set; }
+        public string? UpdatedBy { get; set; }
     }
 }
diff --git a/exercise.wwwapi/Endpoints/CommentEndpoints.cs b/exercise.wwwapi/Endpoints/CommentEndpoints.cs
@@ -119,6 +119,7 @@ public static async Task<IResult> UpdateComment(
         {
             return Results.Unauthorized();
         }
+        var userClaimName = claimsPrincipal.Identity?.Name;
 
         var comment = await commentRepository.GetByIdWithIncludes(c => c.Include(u => u.User), id);
 
@@ -127,12 +128,14 @@ public static async Task<IResult> UpdateComment(
             return TypedResults.NotFound();
         }
 
-        if (comment.UserId != userIdClaim)
+        if (comment.UserId == userIdClaim || claimsPrincipal.IsInRole("Teacher"))
         {
-            return Results.Unauthorized();
+            comment.UpdatedAt = DateTime.UtcNow;
+            comment.UpdatedBy = userClaimName;
         }
+        else { return Results.Unauthorized(); }
 
-        var validation = await validator.ValidateAsync(request);
+            var validation = await validator.ValidateAsync(request);
         if (!validation.IsValid)
         {
             var failureDto = new UpdateCommentFailureDTO();
diff --git a/exercise.wwwapi/Endpoints/PostEndpoints.cs b/exercise.wwwapi/Endpoints/PostEndpoints.cs
@@ -4,6 +4,7 @@
 using exercise.wwwapi.DTOs.Posts.GetPosts;
 using exercise.wwwapi.DTOs.Posts.UpdatePost;
 using exercise.wwwapi.Helpers;
+using exercise.wwwapi.Models;
 using exercise.wwwapi.Repository;
 using FluentValidation;
 using Microsoft.AspNetCore.Authorization;
@@ -71,8 +72,6 @@ public static async Task<IResult> CreatePost(
         {
             Posts = new PostDTO
             {
-                Id = post.Id,
-                AuthorId = post.AuthorId,
                 Body = post.Body,
                 CreatedAt = post.CreatedAt
             }
@@ -132,33 +131,23 @@ public static async Task<IResult> UpdatePost(IRepository<Post> postRepository, i
         {
             return Results.Unauthorized();
         }
+        var userClaimName = claimsPrincipal.Identity?.Name;
 
         var post = await postRepository.GetByIdWithIncludes(p => p.Include(a => a.Author)
-                                                                  .Include(c => c.Comments)
-                                                                  .Include(l => l.Likes), id);
+                                                                    .Include(c => c.Comments)
+                                                                      .Include(l => l.Likes), id);
 
         if (post == null)
         {
             return TypedResults.NotFound();
         }
 
-        if (post.AuthorId != userIdClaim)
-        {
-            if (claimsPrincipal.IsInRole("Teacher"))
-            {
-                post.UpdatedAt = DateTime.UtcNow;
-                post.UpdatedById = userIdClaim;
-            }
-            else
-            { 
-                return Results.Unauthorized();
-            }
-        }
-        else
+        if (post.AuthorId == userIdClaim || claimsPrincipal.IsInRole("Teacher"))
         {
             post.UpdatedAt = DateTime.UtcNow;
-            post.UpdatedById = userIdClaim;
+            post.UpdatedBy = userClaimName;
         }
+        else { return Results.Unauthorized(); }
 
         var validation = await validator.ValidateAsync(request);
         if (!validation.IsValid)
@@ -188,12 +177,10 @@ public static async Task<IResult> UpdatePost(IRepository<Post> postRepository, i
             Status = "success",
             Data = new UpdatePostSuccessDTO
             {
-                Id = post.Id,
-                AuthorId = post.AuthorId,
                 Body = post.Body,
                 CreatedAt = post.CreatedAt,
                 UpdatedAt = post.UpdatedAt,
-                UpdatedById = post.UpdatedById
+                UpdatedBy = post.UpdatedBy
                
             }
         };
@@ -237,8 +224,8 @@ public static async Task<IResult> DeletePost(IRepository<Post> postRepository, i
             Status = "success",
             Data = new PostDTO
             {
-                Id = post.Id,
-                AuthorId = post.AuthorId,
+                //Id = post.Id,
+                //AuthorId = post.AuthorId,
                 Body = post.Body,
                 CreatedAt = post.CreatedAt
             }
diff --git a/exercise.wwwapi/Models/Comment.cs b/exercise.wwwapi/Models/Comment.cs
@@ -26,6 +26,8 @@ public class Comment : IEntity
 
     [Column("created_at")]
     public DateTime CreatedAt { get; set; }
+    public DateTime? UpdatedAt { get; set; }
+    public string? UpdatedBy { get; set; }
 
     [JsonIgnore]
     public Post Post { get; set; }
diff --git a/exercise.wwwapi/Models/Post.cs b/exercise.wwwapi/Models/Post.cs
@@ -24,7 +24,7 @@ public class Post : IEntity
     public DateTime CreatedAt { get; set; }
 
     public DateTime? UpdatedAt { get; set; }
-    public int? UpdatedById { get; set; }
+    public string? UpdatedBy { get; set; }
 
     public User Author { get; set; }
     public ICollection<Comment> Comments { get; set; } = new List<Comment>();

Original file line number	Diff line number	Diff line change
`@@ -85,8 +85,6 @@ public async Task UpdatePostPassesTest()`
`85`	`85`	`Assert.That(updatedResult, Is.Not.Null, "Update Failed");`
`86`	`86`	`Assert.That(patchResponse.StatusCode, Is.EqualTo(System.Net.HttpStatusCode.OK));`
`87`	`87`	`Assert.That(updatedResult!.Data.Body, Is.EqualTo(newBody));`
`88`		`- Assert.That(updatedResult!.Data.Id, Is.EqualTo(1));`
`89`		`- Assert.That(updatedResult!.Data.AuthorId, Is.EqualTo(1));`
`90`	`88`	`}`
`91`	`89`	`}`
`92`	`90`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,26 +4,24 @@ namespace exercise.wwwapi.DTOs.Posts.GetPosts`
`4`	`4`	`{`
`5`	`5`	`public class CommentDTO`
`6`	`6`	`{`
`7`		`- public int Id { get; set; }`
`8`		`- public int UserId { get; set; }`
`9`		`- public string Body { get; set; } = string.Empty;`
`10`		`- public DateTime CreatedAt { get; set; }`
`11`	`7`	`public string? firstName { get; set; }`
`12`	`8`	`public string? lastName { get; set; }`
`13`		`- public CommentDTO()`
`14`		`- {`
`15`		`- }`
	`9`	`+ public string Body { get; set; } = string.Empty;`
	`10`	`+ public DateTime CreatedAt { get; set; }`
	`11`	`+ public DateTime? UpdatedAt { get; set; }`
	`12`	`+ public string? UpdatedBy { get; set; }`
	`13`	`+ public CommentDTO() { }`
`16`	`14`	`public CommentDTO(Comment model)`
`17`	`15`	`{`
`18`		`- Id = model.Id;`
`19`		`- UserId = model.UserId;`
`20`	`16`	`Body = model.Body;`
`21`	`17`	`CreatedAt = model.CreatedAt;`
`22`	`18`	`if (model.User != null)`
`23`	`19`	`{`
`24`	`20`	`firstName = model.User.FirstName;`
`25`	`21`	`lastName = model.User.LastName;`
`26`	`22`	`}`
	`23`	`+ UpdatedAt = model.UpdatedAt;`
	`24`	`+ UpdatedBy = model.UpdatedBy;`
`27`	`25`	`}`
`28`	`26`	`}`
`29`	`27`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,12 +4,6 @@ namespace exercise.wwwapi.DTOs.Posts.UpdatePost`
`4`	`4`	`{`
`5`	`5`	`public class UpdatePostSuccessDTO`
`6`	`6`	`{`
`7`		`- [JsonPropertyName("id")]`
`8`		`- public int Id { get; set; }`
`9`		`-`
`10`		`- [JsonPropertyName("author_id")]`
`11`		`- public int AuthorId { get; set; }`
`12`		`-`
`13`	`7`	`[JsonPropertyName("body")]`
`14`	`8`	`public string Body { get; set; }`
`15`	`9`
`@@ -19,6 +13,6 @@ public class UpdatePostSuccessDTO`
`19`	`13`	`[JsonPropertyName("created_at")]`
`20`	`14`	`public DateTime CreatedAt { get; set; }`
`21`	`15`	`public DateTime? UpdatedAt { get; set; }`
`22`		`- public int? UpdatedById { get; set; }`
	`16`	`+ public string? UpdatedBy { get; set; }`
`23`	`17`	`}`
`24`	`18`	`}`
Original file line number	Diff line number	Diff line change
`@@ -119,6 +119,7 @@ public static async Task<IResult> UpdateComment(`
`119`	`119`	`{`
`120`	`120`	`return Results.Unauthorized();`
`121`	`121`	`}`
	`122`	`+ var userClaimName = claimsPrincipal.Identity?.Name;`
`122`	`123`
`123`	`124`	`var comment = await commentRepository.GetByIdWithIncludes(c => c.Include(u => u.User), id);`
`124`	`125`
`@@ -127,12 +128,14 @@ public static async Task<IResult> UpdateComment(`
`127`	`128`	`return TypedResults.NotFound();`
`128`	`129`	`}`
`129`	`130`
`130`		`- if (comment.UserId != userIdClaim)`
	`131`	`+ if (comment.UserId == userIdClaim \|\| claimsPrincipal.IsInRole("Teacher"))`
`131`	`132`	`{`
`132`		`- return Results.Unauthorized();`
	`133`	`+ comment.UpdatedAt = DateTime.UtcNow;`
	`134`	`+ comment.UpdatedBy = userClaimName;`
`133`	`135`	`}`
	`136`	`+ else { return Results.Unauthorized(); }`
`134`	`137`
`135`		`- var validation = await validator.ValidateAsync(request);`
	`138`	`+ var validation = await validator.ValidateAsync(request);`
`136`	`139`	`if (!validation.IsValid)`
`137`	`140`	`{`
`138`	`141`	`var failureDto = new UpdateCommentFailureDTO();`