OAuthManagementController.java

/*
 * Copyright 2025 Global Crop Diversity Trust
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.genesys.server.api.v2.impl;

import io.swagger.annotations.Api;
import org.genesys.server.api.ApiBaseController;
import org.genesys.server.api.FilteredPage;
import org.genesys.server.api.Pagination;
import org.genesys.server.api.v2.facade.OAuthClientApiService;
import org.genesys.server.api.v2.model.impl.OAuthClientDTO;
import org.genesys.server.service.ShortFilterService;
import org.genesys.server.service.filter.OAuthClientFilter;
import org.genesys.server.service.worker.ShortFilterProcessor;
import org.springdoc.api.annotations.ParameterObject;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.domain.Sort;
import org.springframework.http.HttpStatus;
import org.springframework.http.MediaType;
import org.springframework.http.ResponseEntity;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.DeleteMapping;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.ResponseBody;
import org.springframework.web.bind.annotation.RestController;

import java.io.IOException;

/**
 * Allow administrators to manage OAuth clients and keys.
 */
@RestController("oauthManagementApi2")
@PreAuthorize("hasRole('ADMINISTRATOR')")
@RequestMapping(OAuthManagementController.CONTROLLER_PATH)
@Api(tags = { "oauthManagement" })
public class OAuthManagementController extends ApiBaseController {
	public final static String CONTROLLER_PATH = ApiBaseController.APIv2_BASE + "/admin/oauth-clients";

	/**
	 * The short filter service.
	 */
	@Autowired
	protected ShortFilterProcessor shortFilterProcessor;

	@Autowired
	private OAuthClientApiService clientDetailsService;

	@PostMapping("/")
	public FilteredPage<OAuthClientDTO, OAuthClientFilter> listClients(@RequestParam(name = "f", required = false) String filterCode, @ParameterObject final Pagination page,
			@RequestBody(required = false) OAuthClientFilter filter) throws IOException {

		if (filterCode != null) {
			filter = shortFilterProcessor.filterByCode(filterCode, OAuthClientFilter.class);
		} else if (filter == null){
			filter = new OAuthClientFilter();
		}
		
		ShortFilterService.FilterInfo<OAuthClientFilter> filterInfo = shortFilterProcessor.processFilter(filterCode, filter, OAuthClientFilter.class);
		return new FilteredPage<>(filterInfo.filterCode, filterInfo.filter, clientDetailsService.listClientDetails(filterInfo.filter.buildPredicate(), page.toPageRequest(MAX_PAGE_SIZE, DEFAULT_PAGE_SIZE, Sort.Direction.ASC, "clientId")));
	}

	@PostMapping(value = "/save-client")
	public @ResponseBody OAuthClientDTO createClientEntry(@RequestBody OAuthClientDTO client) {
		OAuthClientDTO oauthClient = clientDetailsService.addClient(client);
		LOG.info("Created OAuth client with clientId={}", oauthClient.getClientId());

		return oauthClient;
	}

	@PostMapping(value = "/{clientId}/generate-secret")
	public String generateSecret(@PathVariable("clientId") String clientId) {
		return clientDetailsService.generateSecret(clientId);
	}

	@PostMapping(value = "/{clientId}/set-secret")
	public ResponseEntity<HttpStatus> setSecret(@PathVariable("clientId") String clientId, @RequestBody(required = true) String secret) {
		clientDetailsService.setSecret(clientId, secret);
		return ResponseEntity.ok().build();
	}

	@PostMapping(value = "/{clientId}/set-recaptcha-keys")
	public OAuthClientDTO setRecaptchaKeys(@PathVariable("clientId") String clientId, @RequestParam("privateKey") String privateKey,
			@RequestParam("publicKey") String publicKey) {

		return clientDetailsService.setRecaptchaKeys(clientId, privateKey, publicKey);
	}

	@PostMapping(value = "/{clientId}/remove-secret")
	public OAuthClientDTO removeSecret(@PathVariable("clientId") String clientId) {
		return clientDetailsService.removeSecret(clientId);
	}

	@DeleteMapping(value = "/{clientId}")
	public OAuthClientDTO deleteClient(@PathVariable("clientId") String clientId) {
		return clientDetailsService.deleteClient(clientId);
	}

	@PostMapping(value = "/save-client", consumes = { MediaType.APPLICATION_JSON_VALUE }, produces = { MediaType.APPLICATION_JSON_VALUE })
	public @ResponseBody OAuthClientDTO saveOAuthClient(@RequestBody OAuthClientDTO updates) {
		return clientDetailsService.saveOAuthClient(updates);
	}

	@GetMapping(value = "/{clientId}/details")
	public OAuthClientDTO clientDetailsInfo(@PathVariable("clientId") String clientId) {
		return clientDetailsService.clientDetailsInfo(clientId);
	}
}