dimanche

Author: begarco

build.gradle

@@ -47,7 +47,7 @@ dependencies {
     compile "org.hibernate:hibernate-ehcache:5.1.2.Final"
 
     // secu
-    compile "org.grails.plugins:spring-security-core:3.1.1"
+    // compile "org.grails.plugins:spring-security-core:3.1.1"
 
     // feature flipping
     //compile "org.grails.plugins:feature-switch:0.7"

grails-app/conf/application.groovy

@@ -16,8 +16,9 @@ grails.plugin.springsecurity.controllerAnnotations.staticRules = [
 	[pattern: '/profile/**',     access: ['permitAll']],
 	[pattern: '/logout/**',      access: ['permitAll']],
 	[pattern: '/comMessage/**',  access: ['permitAll']],
+	[pattern: '/myMessage/**', access: ['permitAll']],
     [pattern: '/answerMessage/**',   access: ['permitAll']],
-    [pattern: '/questionMessage/**', access: ['permitAll']],
+	[pattern: '/questionMessage/**', access: ['permitAll']],
 	[pattern: '/user/**',        access: ['permitAll']],
 	[pattern: '/index.gsp',      access: ['permitAll']],
 	[pattern: '/shutdown',       access: ['permitAll']],

grails-app/controllers/ovh/garcon/tasko/AnswerMessageController.groovy

@@ -23,7 +23,11 @@ class AnswerMessageController {
 
     static allowedMethods = [save: "POST", update: "PUT", delete: "DELETE"]
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    def show(AnswerMessage message) {
+        respond message
+    }
+
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     @Transactional
     def save(AnswerMessage answerMessage) {
 
@@ -52,12 +56,12 @@ class AnswerMessageController {
         }
     }
 
-    @Secured(['ROLE_USER','ROLE_ADMIN'])
+    //@Secured(['ROLE_USER','ROLE_ADMIN'])
     def edit(AnswerMessage answerMessage) {
         respond answerMessage
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     @Transactional
     def update(AnswerMessage answerMessage) {
         if (answerMessage == null) {
@@ -97,7 +101,7 @@ class AnswerMessageController {
      * Add a new answer
      * @return
      */
-    @Secured(['ROLE_USER','ROLE_ADMIN'])
+    //@Secured(['ROLE_USER','ROLE_ADMIN'])
     @Transactional
     def add(){
         AnswerMessage item = new AnswerMessage(

grails-app/controllers/ovh/garcon/tasko/ComMessageController.groovy

@@ -26,13 +26,16 @@ class ComMessageController {
 
     static allowedMethods = [save: "POST", update: "PUT", delete: "DELETE"]
 
+    def show(ComMessage message) {
+        respond message
+    }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     def create() {
         respond new ComMessage(params)
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     @Transactional
     def save(ComMessage comMessage) {
         if (comMessage == null) {
@@ -70,7 +73,7 @@ class ComMessageController {
         }
     }
 
-    @Secured(['ROLE_USER','ROLE_ADMIN'])
+    //@Secured(['ROLE_USER','ROLE_ADMIN'])
     @Transactional
     def add(){
         ComMessage com = new ComMessage(

grails-app/controllers/ovh/garcon/tasko/MyMessageController.groovy

@@ -26,7 +26,11 @@ class MyMessageController {
 
     static allowedMethods = [save: "POST", update: "PUT", delete: "DELETE"]
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    def show(MyMessage message) {
+        respond message
+    }
+
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     @Transactional
     def save(MyMessage myMessage) {
 
@@ -55,7 +59,7 @@ class MyMessageController {
         }
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     def edit(MyMessage myMessage) {
         respond myMessage
     }
@@ -91,7 +95,7 @@ class MyMessageController {
      * Modify the value of a message for gamification
      * @return
      */
-    @Secured(['ROLE_USER','ROLE_ADMIN'])
+    //@Secured(['ROLE_USER','ROLE_ADMIN'])
     @Transactional
     def vote(){
         MyMessage item = MyMessage.get(params.mId as Integer)

grails-app/controllers/ovh/garcon/tasko/ProfileController.groovy

@@ -20,6 +20,10 @@ class ProfileController {
 
     static allowedMethods = [save: "POST", update: "PUT", delete: "DELETE"]
 
+    def show(Profile profile) {
+        respond profile
+    }
+
     @Transactional
     def save(Profile profile) {
         if (profile == null) {
@@ -45,7 +49,7 @@ class ProfileController {
         }
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     def edit(Profile profile) {
         respond profile
     }

grails-app/controllers/ovh/garcon/tasko/QuestionController.groovy

@@ -37,12 +37,12 @@ class QuestionController {
         respond question
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     def create() {
         respond new Question(question: new QuestionMessage())
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     @Transactional
     def save(Question question) {
 
@@ -74,7 +74,7 @@ class QuestionController {
         }
     }
 
-    @Secured(['ROLE_USER', 'ROLE_ADMIN'])
+    //@Secured(['ROLE_USER', 'ROLE_ADMIN'])
     def edit(Question question) {
         respond question
     }
@@ -126,7 +126,7 @@ class QuestionController {
         }
     }
 
-    @Secured(['ROLE_USER','ROLE_ADMIN'])
+    //@Secured(['ROLE_USER','ROLE_ADMIN'])
     @Transactional
     def solve(){
         Question item = Question.get(params.qId as Integer)

grails-app/controllers/ovh/garcon/tasko/QuestionMessageController.groovy

@@ -1,5 +1,7 @@
 package ovh.garcon.tasko
 
+import grails.web.Controller
+
 /**
  * @author Benoît Garçon
  * @date Jan-2017
@@ -12,6 +14,7 @@ import grails.transaction.Transactional
  * Manage message for questions
  */
 @Transactional(readOnly = true)
+@Controller
 class QuestionMessageController {
 
     static responseFormats = ['json', 'xml']
@@ -22,6 +25,10 @@ class QuestionMessageController {
         respond new QuestionMessage(params)
     }
 
+    def show(QuestionMessage message) {
+        respond message
+    }
+
     @Transactional
     def save(QuestionMessage questionMessage) {
         if (questionMessage == null) {

grails-app/controllers/ovh/garcon/tasko/UserController.groovy

@@ -111,7 +111,7 @@ class UserController {
      * @param user
      * @return
      */
-    @Secured(['ROLE_ADMIN'])
+    //@Secured(['ROLE_ADMIN'])
     @Transactional
     def ban(User user){
 

grails-app/init/taskoverflow/BootStrap.groovy

@@ -14,6 +14,7 @@ class BootStrap {
             def returnArray = [:]
             returnArray['id'] = it.id
             returnArray['question'] = it.question
+            returnArray['value'] = it.getValue()
             returnArray['title'] = it.title
             returnArray['isSolved'] = it.isSolved
             returnArray['user'] = it.user
@@ -22,10 +23,72 @@ class BootStrap {
             return returnArray
         }
 
+        JSON.registerObjectMarshaller(Tag) {
+            def returnArray = [:]
+            returnArray['id'] = it.id
+            returnArray['label'] = it.label
+            returnArray['questions'] = it.questions.collect{ [id: it.id, title: it.title] }
+
+            return returnArray
+        }
+
+        JSON.registerObjectMarshaller(Badge) {
+            def returnArray = [:]
+            returnArray['id'] = it.id
+            returnArray['label'] = it.label
+            returnArray['description'] = it.description
+            returnArray['value'] = it.value
+            returnArray['users'] = it.users.collect{ [id: it.id, username: it.username] }
+
+            return returnArray
+        }
+
+        JSON.registerObjectMarshaller(User) {
+            def returnArray = [:]
+            returnArray['id'] = it.id
+            returnArray['accountExpired'] = it.accountExpired
+            returnArray['accountLocked'] = it.accountLocked
+            returnArray['enabled'] = it.enabled
+            returnArray['messages'] = it.messages
+            returnArray['passwordExpired'] = it.passwordExpired
+            returnArray['profil'] = it.profil
+            returnArray['questions'] = it.questions
+            returnArray['username'] = it.username
+            returnArray['badges'] = it.badges
+            returnArray['reputation'] = it.getReputation()
+
+            return returnArray
+        }
+
+        JSON.registerObjectMarshaller(Profile) {
+            def returnArray = [:]
+            returnArray['id'] = it.id
+            returnArray['email'] = it.email
+            returnArray['firstname'] = it.firstname
+            returnArray['lastname'] = it.lastname
+            returnArray['image'] = it.image
+            returnArray['userid'] = it.user.id
+            returnArray['username'] = it.user.username
+
+            return returnArray
+        }
+
+        JSON.registerObjectMarshaller(MyMessage) {
+            def returnArray = [:]
+            returnArray['id'] = it.id
+            returnArray['content'] = it.content
+            returnArray['date'] = it.date.format('dd/MM/yyyy HH:mm')
+            returnArray['userid'] = it.user.id
+            returnArray['username'] = it.user.username
+            returnArray['value'] = it.value
+
+            return returnArray
+        }
+
         //definition of badges
-        def badgeSuperman = new Badge(label: "Superman", description: "badges.superman.desc", value: 10, users: []).save(failOnError: true)
-        def badgeHercule = new Badge(label: "Hercule", description: "badges.hercule.desc", value: 4, users: []).save(failOnError: true)
-        def badgeOne = new Badge(label: "N°1", description: "badges.nbone.desc", value: 4, users: []).save(failOnError: true)
+        def badgeSuperman = new Badge(label: "Superman", description: "badges_superman_desc", value: 10, users: []).save(failOnError: true)
+        def badgeHercule = new Badge(label: "Hercule", description: "badges_hercule_desc", value: 4, users: []).save(failOnError: true)
+        def badgeOne = new Badge(label: "N°1", description: "badges_nbone_desc", value: 4, users: []).save(failOnError: true)
 
         // security roles definition
         def userRole = Role.findByAuthority('ROLE_USER') ?: new Role(authority: 'ROLE_USER').save(failOnError: true)