aboutsummaryrefslogtreecommitdiff
path: root/src/Web/DevHive.Web/Controllers/PostController.cs
diff options
context:
space:
mode:
Diffstat (limited to 'src/Web/DevHive.Web/Controllers/PostController.cs')
-rw-r--r--src/Web/DevHive.Web/Controllers/PostController.cs123
1 files changed, 123 insertions, 0 deletions
diff --git a/src/Web/DevHive.Web/Controllers/PostController.cs b/src/Web/DevHive.Web/Controllers/PostController.cs
new file mode 100644
index 0000000..44b291d
--- /dev/null
+++ b/src/Web/DevHive.Web/Controllers/PostController.cs
@@ -0,0 +1,123 @@
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Mvc;
+using AutoMapper;
+using System;
+using DevHive.Web.Models.Post;
+using DevHive.Services.Models.Post;
+using Microsoft.AspNetCore.Authorization;
+using DevHive.Services.Interfaces;
+using DevHive.Common.Jwt.Interfaces;
+
+namespace DevHive.Web.Controllers
+{
+ /// <summary>
+ /// All endpoints for interacting with the post layer
+ /// </summary>
+ [ApiController]
+ [Route("/api/[controller]")]
+ [Authorize(Roles = "User,Admin")]
+ public class PostController
+ {
+ private readonly IPostService _postService;
+ private readonly IMapper _postMapper;
+ private readonly IJwtService _jwtService;
+
+ public PostController(IPostService postService, IMapper postMapper, IJwtService jwtService)
+ {
+ this._postService = postService;
+ this._postMapper = postMapper;
+ this._jwtService = jwtService;
+ }
+
+ #region Create
+ /// <summary>
+ /// Create a new post
+ /// </summary>
+ /// <param name="userId">The user's Id</param>
+ /// <param name="createPostWebModel">The new post's data</param>
+ /// <param name="authorization">JWT Bearer token</param>
+ /// <returns>New post's Id</returns>
+ [HttpPost]
+ public async Task<IActionResult> Create(Guid userId, [FromForm] CreatePostWebModel createPostWebModel, [FromHeader] string authorization)
+ {
+ if (!this._jwtService.ValidateToken(userId, authorization))
+ return new UnauthorizedResult();
+
+ CreatePostServiceModel createPostServiceModel =
+ this._postMapper.Map<CreatePostServiceModel>(createPostWebModel);
+ createPostServiceModel.CreatorId = userId;
+
+ Guid id = await this._postService.CreatePost(createPostServiceModel);
+
+ return id == Guid.Empty ?
+ new BadRequestObjectResult("Could not create post!") :
+ new OkObjectResult(new { Id = id });
+ }
+ #endregion
+
+ #region Read
+ /// <summary>
+ /// Query full post's data by it's Id
+ /// </summary>
+ /// <param name="id">The post's Id</param>
+ /// <returns>Full data model of the post</returns>
+ [HttpGet]
+ [AllowAnonymous]
+ public async Task<IActionResult> GetById(Guid id)
+ {
+ ReadPostServiceModel postServiceModel = await this._postService.GetPostById(id);
+ ReadPostWebModel postWebModel = this._postMapper.Map<ReadPostWebModel>(postServiceModel);
+
+ return new OkObjectResult(postWebModel);
+ }
+ #endregion
+
+ #region Update
+ /// <summary>
+ /// Update post's data. Creator only!
+ /// </summary>
+ /// <param name="userId">The post creator's Id</param>
+ /// <param name="updatePostWebModel">The new params of the post</param>
+ /// <param name="authorization">JWT Bearer token</param>
+ /// <returns>The post's Id</returns>
+ [HttpPut]
+ public async Task<IActionResult> Update(Guid userId, [FromForm] UpdatePostWebModel updatePostWebModel, [FromHeader] string authorization)
+ {
+ if (!this._jwtService.ValidateToken(userId, authorization))
+ return new UnauthorizedResult();
+
+ if (!await this._postService.ValidateJwtForPost(updatePostWebModel.PostId, authorization))
+ return new UnauthorizedResult();
+
+ UpdatePostServiceModel updatePostServiceModel =
+ this._postMapper.Map<UpdatePostServiceModel>(updatePostWebModel);
+ updatePostServiceModel.CreatorId = userId;
+
+ Guid id = await this._postService.UpdatePost(updatePostServiceModel);
+
+ return id == Guid.Empty ?
+ new BadRequestObjectResult("Could not update post!") :
+ new OkObjectResult(new { Id = id });
+ }
+ #endregion
+
+ #region Delete
+ /// <summary>
+ /// Delete a post. Creator only!
+ /// </summary>
+ /// <param name="postId">Post's Id</param>
+ /// <param name="authorization">JWT Bearer token</param>
+ /// <returns>Ok result</returns>
+ [HttpDelete]
+ public async Task<IActionResult> Delete(Guid postId, [FromHeader] string authorization)
+ {
+ if (!await this._postService.ValidateJwtForPost(postId, authorization))
+ return new UnauthorizedResult();
+
+ return await this._postService.DeletePost(postId) ?
+ new OkResult() :
+ new BadRequestObjectResult("Could not delete Post");
+ }
+ #endregion
+ }
+}
generated by cgit v1.2.3 (git 2.46.0) at 2026-03-16 07:33:36 +0000