From 07c1d43fce1932317e9d8a9232490ccce1f253f0 Mon Sep 17 00:00:00 2001
From: crupest <crupest@outlook.com>
Date: Fri, 8 Apr 2022 17:02:44 +0800
Subject: ...

---
 .../Timeline/Controllers/TimelineV2Controller.cs   | 108 ++++++++++++++++++++-
 1 file changed, 103 insertions(+), 5 deletions(-)

(limited to 'BackEnd/Timeline/Controllers/TimelineV2Controller.cs')

diff --git a/BackEnd/Timeline/Controllers/TimelineV2Controller.cs b/BackEnd/Timeline/Controllers/TimelineV2Controller.cs
index 7543c2a8..c82fde2b 100644
--- a/BackEnd/Timeline/Controllers/TimelineV2Controller.cs
+++ b/BackEnd/Timeline/Controllers/TimelineV2Controller.cs
@@ -1,10 +1,12 @@
-using System;
-using System.Threading.Tasks;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
-using Timeline.Entities;
 using Timeline.Models.Http;
+using Timeline.Models.Validation;
 using Timeline.Services.Mapper;
 using Timeline.Services.Timeline;
+using Timeline.Services.User;
 
 namespace Timeline.Controllers
 {
@@ -13,21 +15,117 @@ namespace Timeline.Controllers
     public class TimelineV2Controller : MyControllerBase
     {
         private ITimelineService _timelineService;
+        private IGenericMapper _mapper;
         private TimelineMapper _timelineMapper;
+        private IUserService _userService;
 
-        public TimelineV2Controller(ITimelineService timelineService, TimelineMapper timelineMapper)
+        public TimelineV2Controller(ITimelineService timelineService, IGenericMapper mapper, TimelineMapper timelineMapper, IUserService userService)
         {
             _timelineService = timelineService;
+            _mapper = mapper;
             _timelineMapper = timelineMapper;
+            _userService = userService;
         }
 
         [HttpGet("{owner}/{timeline}")]
-        public async Task<ActionResult<HttpTimeline>> Get([FromRoute] string owner, [FromRoute] string timeline)
+        public async Task<ActionResult<HttpTimeline>> GetAsync([FromRoute][Username] string owner, [FromRoute][TimelineName] string timeline)
         {
             var timelineId = await _timelineService.GetTimelineIdAsync(owner, timeline);
             var t = await _timelineService.GetTimelineAsync(timelineId);
             return await _timelineMapper.MapAsync(t, Url, User);
         }
+
+        [HttpPatch("{owner}/{timeline}")]
+        [Authorize]
+        [ProducesResponseType(StatusCodes.Status200OK)]
+        [ProducesResponseType(StatusCodes.Status401Unauthorized)]
+        [ProducesResponseType(StatusCodes.Status403Forbidden)]
+        [ProducesResponseType(StatusCodes.Status404NotFound)]
+        [ProducesResponseType(StatusCodes.Status422UnprocessableEntity)]
+        public async Task<ActionResult<HttpTimeline>> PatchAsync([FromRoute][Username] string owner, [FromRoute][TimelineName] string timeline, [FromBody] HttpTimelinePatchRequest body)
+        {
+            var timelineId = await _timelineService.GetTimelineIdAsync(owner, timeline);
+            if (!UserHasPermission(UserPermission.AllTimelineManagement) && !await _timelineService.HasManagePermissionAsync(timelineId, GetAuthUserId()))
+            {
+                return Forbid();
+            }
+            await _timelineService.ChangePropertyAsync(timelineId, _mapper.AutoMapperMap<TimelineChangePropertyParams>(body));
+            var t = await _timelineService.GetTimelineAsync(timelineId);
+            return await _timelineMapper.MapAsync(t, Url, User);
+        }
+
+        [HttpDelete("{owner}/{timeline}")]
+        [Authorize]
+        [ProducesResponseType(StatusCodes.Status204NoContent)]
+        [ProducesResponseType(StatusCodes.Status401Unauthorized)]
+        [ProducesResponseType(StatusCodes.Status403Forbidden)]
+        [ProducesResponseType(StatusCodes.Status404NotFound)]
+        [ProducesResponseType(StatusCodes.Status422UnprocessableEntity)]
+        public async Task<ActionResult> DeleteAsync([FromRoute][Username] string owner, [FromRoute][TimelineName] string timeline)
+        {
+            var timelineId = await _timelineService.GetTimelineIdAsync(owner, timeline);
+            if (!UserHasPermission(UserPermission.AllTimelineManagement) && !await _timelineService.HasManagePermissionAsync(timelineId, GetAuthUserId()))
+            {
+                return Forbid();
+            }
+            await _timelineService.DeleteTimelineAsync(timelineId);
+            return NoContent();
+        }
+
+        [HttpPut("{owner}/{timeline}/members/{member}")]
+        [Authorize]
+        [ProducesResponseType(StatusCodes.Status204NoContent)]
+        [ProducesResponseType(StatusCodes.Status401Unauthorized)]
+        [ProducesResponseType(StatusCodes.Status403Forbidden)]
+        [ProducesResponseType(StatusCodes.Status404NotFound)]
+        [ProducesResponseType(StatusCodes.Status422UnprocessableEntity)]
+        public async Task<ActionResult> MemberPutAsync([FromRoute][Username] string owner, [FromRoute][TimelineName] string timeline, [FromRoute][Username] string member)
+        {
+            var timelineId = await _timelineService.GetTimelineIdAsync(owner, timeline);
+            if (!UserHasPermission(UserPermission.AllTimelineManagement) && !await _timelineService.HasManagePermissionAsync(timelineId, GetAuthUserId()))
+            {
+                return Forbid();
+            }
+
+            var userId = await _userService.GetUserIdByUsernameAsync(member);
+            await _timelineService.AddMemberAsync(timelineId, userId);
+            return NoContent();
+        }
+
+        [HttpDelete("{owner}/{timeline}/members/{member}")]
+        [Authorize]
+        [ProducesResponseType(StatusCodes.Status204NoContent)]
+        [ProducesResponseType(StatusCodes.Status401Unauthorized)]
+        [ProducesResponseType(StatusCodes.Status403Forbidden)]
+        [ProducesResponseType(StatusCodes.Status404NotFound)]
+        [ProducesResponseType(StatusCodes.Status422UnprocessableEntity)]
+        public async Task<ActionResult> MemberDeleteAsync([FromRoute][Username] string owner, [FromRoute][TimelineName] string timeline, [FromRoute][Username] string member)
+        {
+            var timelineId = await _timelineService.GetTimelineIdAsync(owner, timeline);
+            if (!UserHasPermission(UserPermission.AllTimelineManagement) && !await _timelineService.HasManagePermissionAsync(timelineId, GetAuthUserId()))
+            {
+                return Forbid();
+            }
+
+            var userId = await _userService.GetUserIdByUsernameAsync(member);
+            await _timelineService.RemoveMemberAsync(timelineId, userId);
+            return NoContent();
+        }
+
+        [HttpPost]
+        [Authorize]
+        [ProducesResponseType(StatusCodes.Status201Created)]
+        [ProducesResponseType(StatusCodes.Status400BadRequest)]
+        [ProducesResponseType(StatusCodes.Status401Unauthorized)]
+        [ProducesResponseType(StatusCodes.Status422UnprocessableEntity)]
+        public async Task<ActionResult<HttpTimeline>> TimelineCreate([FromBody] HttpTimelineCreateRequest body)
+        {
+            var authUserId = GetAuthUserId();
+            var authUser = await _userService.GetUserAsync(authUserId);
+            var timeline = await _timelineService.CreateTimelineAsync(authUserId, body.Name);
+            var result = await _timelineMapper.MapAsync(timeline, Url, User);
+            return CreatedAtAction(nameof(GetAsync), new { owner = authUser.Username, timeline = body.Name }, result);
+        }
     }
 }
 
-- 
cgit v1.2.3