updated code

2024-09-25 16:33:41 +05:30
parent 49f5eb0883
commit cfdb872f49
4 changed files with 25 additions and 4 deletions
--- a/src/main/java/net/gepafin/tendermanagement/web/rest/api/FormApi.java
+++ b/src/main/java/net/gepafin/tendermanagement/web/rest/api/FormApi.java
@@ -49,6 +49,7 @@ public interface FormApi {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @PutMapping(value = "/{formId}",
            produces = { "application/json" })
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<FormResponseBean>> updateForm(HttpServletRequest request,
            @Parameter(description = "The form ID", required = true) @PathVariable("formId") Long formId,
            @Parameter(description = "form request object", required = true) @Valid @RequestBody FormRequest formRequest,@Parameter(description = "force delete flow ",required = true)@RequestParam(value = "forceDeleteFlow",required = true)Boolean forceDeleteFlow);
@@ -78,6 +79,7 @@ public interface FormApi {
                    @ApiResponse(responseCode = "400", description = "Bad Request", content = @Content(mediaType = MediaType.APPLICATION_JSON_VALUE, examples = {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @DeleteMapping(value = "/{formId}")
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<Void>> deleteForm(HttpServletRequest request,
            @Parameter(description = "The form ID", required = true) @PathVariable("formId") Long formId);

--- a/src/main/java/net/gepafin/tendermanagement/web/rest/api/FormFieldApi.java
+++ b/src/main/java/net/gepafin/tendermanagement/web/rest/api/FormFieldApi.java
@@ -13,6 +13,7 @@ import net.gepafin.tendermanagement.model.util.Response;
 import net.gepafin.tendermanagement.web.rest.api.errors.ErrorConstants;
 import org.springframework.http.MediaType;
 import org.springframework.http.ResponseEntity;
+import org.springframework.security.access.prepost.PreAuthorize;
 import org.springframework.web.bind.annotation.*;

 import java.util.List;
@@ -30,6 +31,7 @@ public interface FormFieldApi {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) }))
            })
    @PostMapping(value = "", produces = MediaType.APPLICATION_JSON_VALUE, consumes = MediaType.APPLICATION_JSON_VALUE)
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    public ResponseEntity<Response<FormFieldResponseBean>> createFormField(HttpServletRequest request,
                                                                      @Parameter(description = "form field request object", required = true)
                                                                 @Valid @RequestBody FormFieldRequest formFieldRequest);
@@ -46,6 +48,7 @@ public interface FormFieldApi {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @PutMapping(value = "/{formFieldId}",
            produces = { "application/json" })
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<FormFieldResponseBean>> updateFormField(HttpServletRequest request,
                                                          @Parameter(description = "The form field ID", required = true) @PathVariable("formFieldId") Long formFieldId,
                                                          @Parameter(description = "form  field request object", required = true) @Valid @RequestBody FormFieldRequest formFieldRequest);
@@ -61,6 +64,7 @@ public interface FormFieldApi {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @GetMapping(value = "/{formFieldId}",
            produces = { "application/json" })
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<FormFieldResponseBean>> getFormFieldById(HttpServletRequest request,
                                                           @Parameter(description = "The form field ID", required = true) @PathVariable("formFieldId") Long formFieldId);

@@ -75,6 +79,7 @@ public interface FormFieldApi {
                    @ApiResponse(responseCode = "400", description = "Bad Request", content = @Content(mediaType = MediaType.APPLICATION_JSON_VALUE, examples = {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @DeleteMapping(value = "/{formFieldId}")
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<Void>> deleteForm(HttpServletRequest request,
                                              @Parameter(description = "The form field ID", required = true) @PathVariable("formFieldId") Long formFieldId);

@@ -89,6 +94,7 @@ public interface FormFieldApi {
                            @ExampleObject(value = ErrorConstants.BADREQUEST_ERROR_EXAMPLE) })) })
    @GetMapping(value = "",
            produces = { "application/json" })
+    @PreAuthorize("hasRole('ROLE_SUPER_ADMIN')")
    ResponseEntity<Response<List<FormFieldResponseBean>>> getAllFormField(HttpServletRequest request);

 }