Merge pull request #198 from CodeForPhilly/update_check_crud_operations

Updated endpoints for eligibility checks to include working and published data model

Author: Michael-Dratch

builder-api/.gitignore

@@ -44,4 +44,10 @@ nb-configuration.xml
 # TLS Certificates
 .certs/
 
-config/
+config/
+
+# Service account crdentials
+src/main/resources/benefit-decision-toolkit*.json
+
+# Temp
+src/main/resources/properties-test.txt

builder-api/src/main/java/org/acme/auth/AuthUtils.java

@@ -1,9 +1,10 @@
 package org.acme.auth;
 
 import io.quarkus.security.identity.SecurityIdentity;
+import org.eclipse.microprofile.jwt.JsonWebToken;
 
 public class AuthUtils {
     public static String getUserId(SecurityIdentity identity){
-        return identity.getPrincipal().getName();
+        return ((JsonWebToken)identity.getPrincipal()).getClaim("user_id");
     }
 }

builder-api/src/main/java/org/acme/constants/CheckStatus.java

@@ -0,0 +1,18 @@
+package org.acme.constants;
+
+import org.apache.hc.client5.http.impl.auth.AuthCacheKeeper;
+
+public enum CheckStatus {
+    WORKING('W'),
+    PUBLISHED('P');
+
+    private final char code;
+
+    CheckStatus(char code) {
+        this.code = code;
+    }
+
+    public char getCode() {
+        return code;
+    }
+}

builder-api/src/main/java/org/acme/constants/CollectionNames.java

@@ -1,8 +1,11 @@
 package org.acme.constants;
 
 public class CollectionNames {
-    public static final String SCREENER_COLLECTION = "screener";
-    public static final String DMN_MODEL_COLLECTION = "dmn_model";
-    public static final String ELIGIBILITY_CHECK_COLLECTION = "eligibilityCheck";
+    public static final String WORKING_SCREENER_COLLECTION = "workingScreener";
+    public static final String PUBLISHED_SCREENER_COLLECTION = "publishedScreener";
+    public static final String WORKING_CUSTOM_CHECK_COLLECTION = "workingCustomCheck";
+    public static final String PUBLISHED_CUSTOM_CHECK_COLLECTION = "publishedCustomCheck";
     public static final String BENEFIT_COLLECTION = "benefit";
+    public static final String PUBLIC_BENEFIT_COLLECTION = "publicBenefit";
+    public static final String PUBLIC_CHECK_COLLECTION = "publicCheck";
 }

builder-api/src/main/java/org/acme/controller/DecisionResource.java

@@ -11,7 +11,6 @@
 import org.acme.auth.AuthUtils;
 import org.acme.enums.OptionalBoolean;
 import org.acme.model.domain.Benefit;
-import org.acme.model.domain.CheckConfig;
 import org.acme.model.domain.EligibilityCheck;
 import org.acme.model.domain.Screener;
 import org.acme.persistence.BenefitRepository;
@@ -55,7 +54,7 @@ public Response evaluateScreener(
             return Response.status(Response.Status.UNAUTHORIZED).build();
         }
 
-        Optional<Screener> screenerOpt = screenerRepository.getScreener(screenerId);
+        Optional<Screener> screenerOpt = screenerRepository.getWorkingScreener(screenerId);
         if (screenerOpt.isEmpty()){
             return Response.status(Response.Status.NOT_FOUND).build();
         }
@@ -130,53 +129,64 @@ public Response evaluateBenefit(
     private Map<String, Object> evaluateBenefitDmn(Benefit benefit, Map<String, Object> inputData) throws Exception {
         List<EligibilityCheck> checks = eligibilityCheckRepository.getChecksInBenefit(benefit);
 
-        List<OptionalBoolean> checkResultsList = new ArrayList<>();
-        Map<String, Object> checkResults = new HashMap<>();
-        for (EligibilityCheck check : checks) {
-            Optional<CheckConfig> matchingCheckConfig = benefit.getChecks().stream().filter(
-                checkConfig -> checkConfig.getCheckId().equals(check.getId())
-            ).findFirst();
-            if (matchingCheckConfig.isEmpty()) {
-                throw new Exception("Could not find CheckConfig for check " + check.getId());
-            }
-
-            String dmnFilepath = storageService.getCheckDmnModelPath(
-                check.getModule(), check.getId(), check.getVersion()
-            );
-            String dmnModelName = check.getId();
-
-            OptionalBoolean result = dmnService.evaluateSimpleDmn(
-                dmnFilepath, dmnModelName, inputData, matchingCheckConfig.get().getParameters()
-            );
-            checkResultsList.add(result);
-            checkResults.put(check.getId(), Map.of("name", check.getName(),"result", result));
-        }
-
-        // Determine overall Benefit result
-        Boolean allChecksTrue = checkResultsList.stream().allMatch(result -> result == OptionalBoolean.TRUE);
-        Boolean anyChecksFalse = checkResultsList.stream().anyMatch(result -> result == OptionalBoolean.FALSE);
-        Log.info("All True: " + allChecksTrue + " Any False: " + anyChecksFalse);
-
-        OptionalBoolean benefitResult;
-        if (allChecksTrue) {
-            benefitResult = OptionalBoolean.TRUE;
-        } else if (anyChecksFalse) {
-            benefitResult = OptionalBoolean.FALSE;
+        if (benefit.getPublic()){
+            // Public benefit, call the Library API to evaluate
+            Map<String, Object> result = new HashMap<>();
+            return result;
         } else {
-            benefitResult = OptionalBoolean.UNABLE_TO_DETERMINE;
+            // Custom benefit, evaluate here in the web app api (as opposed to calling the library api for evaluation)
+            List<OptionalBoolean> checkResultsList = new ArrayList<>();
+            Map<String, Object> checkResults = new HashMap<>();
+
+            Map<String, Object> result = new HashMap<>();
+            return result;
+            //TODO: update implementation here
+//            for (EligibilityCheck check : checks) {
+//                Optional<CheckConfig> matchingCheckConfig = benefit.getChecks().stream().filter(
+//                        checkConfig -> checkConfig.getCheckId().equals(check.getId())
+//                ).findFirst();
+//                if (matchingCheckConfig.isEmpty()) {
+//                    throw new Exception("Could not find CheckConfig for check " + check.getId());
+//                }
+//
+//                String dmnFilepath = storageService.getCheckDmnModelPath(
+//                        check.getModule(), check.getId(), check.getVersion()
+//                );
+//                String dmnModelName = check.getId();
+//
+//                OptionalBoolean result = dmnService.evaluateSimpleDmn(
+//                        dmnFilepath, dmnModelName, inputData, matchingCheckConfig.get().getParameters()
+//                );
+//                checkResultsList.add(result);
+//                checkResults.put(check.getId(), Map.of("name", check.getName(), "result", result));
+//            }
+//
+//            // Determine overall Benefit result
+//            Boolean allChecksTrue = checkResultsList.stream().allMatch(result -> result == OptionalBoolean.TRUE);
+//            Boolean anyChecksFalse = checkResultsList.stream().anyMatch(result -> result == OptionalBoolean.FALSE);
+//            Log.info("All True: " + allChecksTrue + " Any False: " + anyChecksFalse);
+//
+//            OptionalBoolean benefitResult;
+//            if (allChecksTrue) {
+//                benefitResult = OptionalBoolean.TRUE;
+//            } else if (anyChecksFalse) {
+//                benefitResult = OptionalBoolean.FALSE;
+//            } else {
+//                benefitResult = OptionalBoolean.UNABLE_TO_DETERMINE;
+//            }
+//
+//            return new HashMap<String, Object>(
+//                    Map.of(
+//                            "name", benefit.getName(),
+//                            "result", benefitResult,
+//                            "check_results", checkResults
+//                    )
+//            );
         }
-
-        return new HashMap<String, Object>(
-            Map.of(
-                "name", benefit.getName(),
-                "result", benefitResult,
-                "check_results", checkResults
-            )
-        );
     }
 
     private boolean isUserAuthorizedToAccessScreenerByScreenerId(String userId, String screenerId) {
-        Optional<Screener> screenerOpt = screenerRepository.getScreenerMetaDataOnly(screenerId);
+        Optional<Screener> screenerOpt = screenerRepository.getWorkingScreenerMetaDataOnly(screenerId);
         if (screenerOpt.isEmpty()){
             return false;
         }

builder-api/src/main/java/org/acme/controller/EligibilityCheckResource.java

@@ -8,11 +8,13 @@
 import jakarta.ws.rs.core.MediaType;
 import jakarta.ws.rs.core.Response;
 import org.acme.auth.AuthUtils;
+import org.acme.constants.CheckStatus;
 import org.acme.model.domain.EligibilityCheck;
 import org.acme.model.dto.SaveDmnRequest;
 import org.acme.persistence.EligibilityCheckRepository;
 import org.acme.persistence.StorageService;
 
+import java.util.ArrayList;
 import java.util.List;
 import java.util.Map;
 import java.util.Optional;
@@ -27,27 +29,27 @@ public class EligibilityCheckResource {
     StorageService storageService;
 
     @GET
-    @Path("/check")
-    public Response getAllChecks(@Context SecurityIdentity identity) {
+    @Path("/checks")
+    public Response getPublicChecks(@Context SecurityIdentity identity) {
         String userId = AuthUtils.getUserId(identity);
         if (userId == null) {
             return Response.status(Response.Status.UNAUTHORIZED).build();
         }
         Log.info("Fetching all eligibility checks. User:  " + userId);
-        List<EligibilityCheck> checks = eligibilityCheckRepository.getAllPublicChecks();
+        List<EligibilityCheck> checks = eligibilityCheckRepository.getPublicChecks();
 
         return Response.ok(checks, MediaType.APPLICATION_JSON).build();
     }
 
     @GET
-    @Path("/check/{checkId}")
-    public Response getCheck(@Context SecurityIdentity identity, @PathParam("checkId") String checkId) {
+    @Path("/checks/{checkId}")
+    public Response getPublicCheck(@Context SecurityIdentity identity, @PathParam("checkId") String checkId) {
         String userId = AuthUtils.getUserId(identity);
         if (userId == null){
             return Response.status(Response.Status.UNAUTHORIZED).build();
         }
         Log.info("Fetching all eligibility checks. User:  " + userId);
-        Optional<EligibilityCheck> checkOpt = eligibilityCheckRepository.getCheck(checkId);
+        Optional<EligibilityCheck> checkOpt = eligibilityCheckRepository.getPublicCheck(checkId);
 
         if (checkOpt.isEmpty()){
             return Response.status(Response.Status.NOT_FOUND).build();
@@ -61,21 +63,19 @@ public Response getCheck(@Context SecurityIdentity identity, @PathParam("checkId
         return Response.ok(check, MediaType.APPLICATION_JSON).build();
     }
 
-    // Utility endpoint to create an Eligibility check
-    // In the future seperate endpoints will need to be created for publishing public checks and creating private checks
+    // Utility endpoint, public checks come from the Library API schema and shouldn't usually be created through the app
     @POST
-    @Path("/check")
-    public Response createCheck(@Context SecurityIdentity identity,
+    @Path("/checks")
+    public Response createPublicCheck(@Context SecurityIdentity identity,
                                 EligibilityCheck newCheck) {
         String userId = AuthUtils.getUserId(identity);
 
         //TODO: Add validations for user provided data
         newCheck.setOwnerId(userId);
-        newCheck.setPublic(true); // By default all created checks are public
-        newCheck.setVersion("1");
+        newCheck.setPublic(true);
+        newCheck.setVersion(1);
         try {
-            String checkId = eligibilityCheckRepository.saveNewCheck(newCheck);
-            newCheck.setId(checkId);
+            String checkId = eligibilityCheckRepository.savePublicCheck(newCheck);
             return Response.ok(newCheck, MediaType.APPLICATION_JSON).build();
         } catch (Exception e){
             return  Response.status(Response.Status.INTERNAL_SERVER_ERROR)
@@ -84,15 +84,17 @@ public Response createCheck(@Context SecurityIdentity identity,
         }
     }
 
+    // Utility endpoint, public checks are static and come from the library api schema
+    // and usually should not be updated through the app
     @PUT
-    @Path("/check")
-    public Response updateCheck(@Context SecurityIdentity identity,
+    @Path("/checks")
+    public Response updatePublicCheck(@Context SecurityIdentity identity,
                                 EligibilityCheck updateCheck){
         String userId = AuthUtils.getUserId(identity);
 
         // TODO: Add authorization to update check
         try {
-            eligibilityCheckRepository.updateCheck(updateCheck);
+            eligibilityCheckRepository.savePublicCheck(updateCheck);
             return Response.ok().entity(updateCheck).build();
         } catch (Exception e){
             return Response.status(Response.Status.INTERNAL_SERVER_ERROR)
@@ -114,7 +116,7 @@ public Response updateCheckDmn(@Context SecurityIdentity identity, SaveDmnReques
         }
 
         String userId = AuthUtils.getUserId(identity);
-        Optional<EligibilityCheck> checkOpt = eligibilityCheckRepository.getCheck(checkId);
+        Optional<EligibilityCheck> checkOpt = eligibilityCheckRepository.getWorkingCustomCheck(userId, checkId);
         if (checkOpt.isEmpty()){
             return Response.status(Response.Status.NOT_FOUND).build();
         }
@@ -132,7 +134,7 @@ public Response updateCheckDmn(@Context SecurityIdentity identity, SaveDmnReques
                     .build();
         }
         try {
-            String filePath = storageService.getCheckDmnModelPath(check.getModule(), check.getId(), check.getVersion());
+            String filePath = storageService.getCheckDmnModelPath(userId, checkId);
             storageService.writeStringToStorage(filePath, dmnModel, "application/xml");
             Log.info("Saved DMN model of check " + checkId + " to storage");
 
@@ -145,4 +147,100 @@ public Response updateCheckDmn(@Context SecurityIdentity identity, SaveDmnReques
             return Response.status(Response.Status.INTERNAL_SERVER_ERROR).build();
         }
     }
+
+    // By default, returns the most recent versions of all published checks owned by the calling user
+    // If the query parameter 'working' is set to true,
+    // then all the working check objects owned by the user are returned
+    @GET
+    @Path("/custom-checks")
+    public Response getCustomChecks(@Context SecurityIdentity identity, @QueryParam("working") Boolean working) {
+        String userId = AuthUtils.getUserId(identity);
+        if (userId == null) {
+            return Response.status(Response.Status.UNAUTHORIZED).build();
+        }
+
+        List<EligibilityCheck> checks;
+
+        if (working != null && working){
+            Log.info("Fetching all working custom checks. User:  " + userId);
+            checks = eligibilityCheckRepository.getWorkingCustomChecks(userId);
+        } else {
+            Log.info("Fetching all published custom checks. User:  " + userId);
+            checks = eligibilityCheckRepository.getPublishedCustomChecks(userId);
+        }
+
+        return Response.ok(checks, MediaType.APPLICATION_JSON).build();
+    }
+
+    @GET
+    @Path("/custom-checks/{checkId}")
+    public Response getCustomCheck(@Context SecurityIdentity identity, @PathParam("checkId") String checkId) {
+        String userId = AuthUtils.getUserId(identity);
+        if (userId == null) {
+            return Response.status(Response.Status.UNAUTHORIZED).build();
+        }
+
+        char statusIndicator = (checkId != null && !checkId.isEmpty())
+                ? checkId.charAt(0)
+                : '\0';
+
+        Optional<EligibilityCheck> checkOpt;
+
+        if (statusIndicator == CheckStatus.WORKING.getCode()){
+            Log.info("Fetching working custom check: " + checkId + " User:  " + userId);
+            checkOpt = eligibilityCheckRepository.getWorkingCustomCheck(userId, checkId);
+        } else {
+            Log.info("Fetching published custom check: " + checkId + " User:  " + userId);
+            checkOpt = eligibilityCheckRepository.getPublishedCustomCheck(userId, checkId);
+        }
+
+        if (checkOpt.isEmpty()){
+            return Response.status(Response.Status.NOT_FOUND).build();
+        }
+
+        EligibilityCheck check = checkOpt.get();
+
+        if (!check.getPublic() && !check.getOwnerId().equals(userId)){
+            return Response.status(Response.Status.UNAUTHORIZED).build();
+        }
+        return Response.ok(check, MediaType.APPLICATION_JSON).build();
+    }
+
+    @POST
+    @Path("/custom-checks")
+    public Response createCustomCheck(@Context SecurityIdentity identity,
+                                EligibilityCheck newCheck) {
+        String userId = AuthUtils.getUserId(identity);
+
+        //TODO: Add validations for user provided data
+        newCheck.setOwnerId(userId);
+        newCheck.setPublic(false);
+        newCheck.setVersion(1);
+        newCheck.setPublished(false);
+        try {
+            eligibilityCheckRepository.saveWorkingCustomCheck(newCheck);
+            return Response.ok(newCheck, MediaType.APPLICATION_JSON).build();
+        } catch (Exception e){
+            return  Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(Map.of("error", "Could not save Check"))
+                    .build();
+        }
+    }
+
+    @PUT
+    @Path("/custom-checks")
+    public Response updateCustomCheck(@Context SecurityIdentity identity,
+                                EligibilityCheck updateCheck){
+        String userId = AuthUtils.getUserId(identity);
+
+        // TODO: Add authorization to update check
+        try {
+            eligibilityCheckRepository.updateWorkingCustomCheck(updateCheck);
+            return Response.ok().entity(updateCheck).build();
+        } catch (Exception e){
+            return Response.status(Response.Status.INTERNAL_SERVER_ERROR)
+                    .entity(Map.of("error", "could not update Check"))
+                    .build();
+        }
+    }
 }