ShoppingCart changed with customer authentication

Author: manirDev

src/main/java/com/manir/springbootecommercerestapi/controller/AuthController.java

@@ -54,7 +54,7 @@ public ResponseEntity<?> registerUser(@RequestBody SignUpDto signUpDto){
         if (userRepository.existsByEmail(signUpDto.getEmail())){
             return new ResponseEntity<>("Email already exists", HttpStatus.BAD_REQUEST);
         }
-        SignUpDto registeredUser = userRegisterService.registerUser(signUpDto);
+        userRegisterService.registerUser(signUpDto);
         return new ResponseEntity<>("User is successfully registered", HttpStatus.OK);
     }
 

src/main/java/com/manir/springbootecommercerestapi/controller/ShoppingCartController.java

@@ -1,16 +1,22 @@
 package com.manir.springbootecommercerestapi.controller;
 
-import com.manir.springbootecommercerestapi.dto.CartItemDto;
+import com.manir.springbootecommercerestapi.exception.EcommerceApiException;
+import com.manir.springbootecommercerestapi.model.User;
+import com.manir.springbootecommercerestapi.repository.UserRepository;
 import com.manir.springbootecommercerestapi.response.CartItemResponse;
 import com.manir.springbootecommercerestapi.service.ShoppingCartService;
 import com.manir.springbootecommercerestapi.utils.isAuthenticatedAsAdminOrUser;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
-import org.springframework.security.access.prepost.PreAuthorize;
+import org.springframework.security.authentication.AnonymousAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
 import org.springframework.web.bind.annotation.*;
 
 import javax.annotation.Resource;
-import java.util.List;
 
 @RestController
 @RequestMapping("api/v1/cart")
@@ -19,43 +25,75 @@ public class ShoppingCartController {
     @Resource
     private ShoppingCartService shoppingCartService;
 
+    @Autowired
+    private UserRepository userRepository;
+
+
     //find by customer api
     @isAuthenticatedAsAdminOrUser
-    @GetMapping("/findByCustomer/{customerId}")
-    public CartItemResponse findByCustomerId(@PathVariable Long customerId){
-        CartItemResponse responseCartItems = shoppingCartService.findByCustomerId(customerId);
+    @GetMapping("/findByCustomer")
+    public CartItemResponse findByCustomerId(@AuthenticationPrincipal Authentication authentication){
+        authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (!(authentication instanceof AnonymousAuthenticationToken)) {
+            String currentUserEmail = authentication.getName();
+            //System.out.println("Name:" + currentUserEmail);
+            User customer = userRepository.findByEmail(currentUserEmail).orElseThrow(()-> new UsernameNotFoundException("Customer not found"));
+            CartItemResponse responseCartItems = shoppingCartService.findByCustomer(customer);
+            return responseCartItems;
+
+        }else{
+            throw new EcommerceApiException("User not authenticated", HttpStatus.BAD_REQUEST);
+        }
 
-        return responseCartItems;
     }
 
     //add item to the cart api
     @isAuthenticatedAsAdminOrUser
-    @PostMapping("/addItem/{customerId}/{productId}/{quantity}")
-    public ResponseEntity<CartItemResponse> addCartItem(@PathVariable Long customerId,
+    @PostMapping("/addItem/{productId}/{quantity}")
+    public ResponseEntity<CartItemResponse> addCartItem(@AuthenticationPrincipal Authentication authentication,
                                                         @PathVariable Long productId,
                                                         @PathVariable Integer quantity){
-        CartItemResponse responseCartItem = shoppingCartService.addCartItem(customerId, productId, quantity);
-
-        return new ResponseEntity<>(responseCartItem, HttpStatus.CREATED);
+        authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (!(authentication instanceof AnonymousAuthenticationToken)){
+            String currentUserEmail = authentication.getName();
+            User customer = userRepository.findByEmail(currentUserEmail).orElseThrow(() -> new UsernameNotFoundException("Customer not found"));
+            CartItemResponse responseCartItem = shoppingCartService.addCartItem(customer, productId, quantity);
+            return new ResponseEntity<>(responseCartItem, HttpStatus.CREATED);
+        }else {
+            throw new EcommerceApiException("User not authenticated", HttpStatus.BAD_REQUEST);
+        }
     }
 
     //update item quantity api
     @isAuthenticatedAsAdminOrUser
-    @PutMapping("/updateItemQuantity/{customerId}/{productId}/{quantity}")
-    public ResponseEntity<CartItemResponse> updateItemQuantity(@PathVariable Long customerId,
+    @PutMapping("/updateItemQuantity/{productId}/{quantity}")
+    public ResponseEntity<CartItemResponse> updateItemQuantity(@AuthenticationPrincipal Authentication authentication,
                                                                @PathVariable Long productId,
                                                                @PathVariable Integer quantity){
-
-        CartItemResponse responseCartItem = shoppingCartService.updateItemQuantity(customerId, productId, quantity);
-
-        return  new ResponseEntity<>(responseCartItem, HttpStatus.OK);
+        authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (!(authentication instanceof AnonymousAuthenticationToken)){
+            String currentUserEmail = authentication.getName();
+            User customer = userRepository.findByEmail(currentUserEmail).orElseThrow(() -> new UsernameNotFoundException("Customer Not found"));
+            CartItemResponse responseCartItem = shoppingCartService.updateItemQuantity(customer, productId, quantity);
+            return  new ResponseEntity<>(responseCartItem, HttpStatus.OK);
+        }else{
+            throw new EcommerceApiException("User not authenticated", HttpStatus.BAD_REQUEST);
+        }
     }
 
     //delete item product api
     @isAuthenticatedAsAdminOrUser
-    @DeleteMapping("/deleteItemProduct/{customerId}/{productId}")
-    public ResponseEntity<String> deleteItemProduct(@PathVariable Long customerId, @PathVariable Long productId){
-        shoppingCartService.deleteItemProduct(customerId, productId);
-        return ResponseEntity.ok("Product with id = " + productId +" is deleted successfully from your shopping cart");
+    @DeleteMapping("/deleteItemProduct/{productId}")
+    public ResponseEntity<String> deleteItemProduct(@AuthenticationPrincipal Authentication authentication,
+                                                    @PathVariable Long productId){
+        authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (!(authentication instanceof AnonymousAuthenticationToken)){
+            String currentUserEmail = authentication.getName();
+            User customer = userRepository.findByEmail(currentUserEmail).orElseThrow(() -> new UsernameNotFoundException("Customer Not found"));
+            shoppingCartService.deleteItemProduct(customer, productId);
+            return ResponseEntity.ok("Product with id = " + productId +" is deleted successfully from your shopping cart");
+        }else{
+            throw new EcommerceApiException("User not authenticated", HttpStatus.BAD_REQUEST);
+        }
     }
 }

src/main/java/com/manir/springbootecommercerestapi/dto/OrderDto.java

@@ -0,0 +1,15 @@
+package com.manir.springbootecommercerestapi.dto;
+
+import lombok.Data;
+
+@Data
+public class OrderDto {
+    private Long id;
+    private String name;
+    private String email;
+    private String phone;
+    private String address;
+    private double totalPrice;
+    private String note;
+    private  String status;
+}

src/main/java/com/manir/springbootecommercerestapi/model/Order.java

@@ -0,0 +1,37 @@
+package com.manir.springbootecommercerestapi.model;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import javax.persistence.*;
+import java.util.Set;
+
+@AllArgsConstructor
+@NoArgsConstructor
+@Data
+@Entity
+@Table(name = "orders")
+public class Order {
+    @Id
+    @GeneratedValue(strategy = GenerationType.IDENTITY)
+    private Long id;
+    private String name;
+    private String email;
+    private String phone;
+    private String address;
+    private double totalPrice;
+    private String note;
+    private  String status;
+
+    //relation with user
+    @ManyToOne()
+    @JoinColumn(name = "customer_id")
+    private User customer;
+
+    //relation with order_products
+    @OneToMany(cascade = CascadeType.ALL,
+            fetch = FetchType.LAZY, orphanRemoval = true,
+            mappedBy = "order")
+    private Set<OrderProducts> orderProducts;
+}

src/main/java/com/manir/springbootecommercerestapi/model/OrderProducts.java

@@ -0,0 +1,38 @@
+package com.manir.springbootecommercerestapi.model;
+
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+
+import javax.persistence.*;
+
+@AllArgsConstructor
+@NoArgsConstructor
+@Data
+@Entity
+@Table(name = "order_products")
+public class OrderProducts {
+    @Id
+    @GeneratedValue(strategy = GenerationType.IDENTITY)
+    private Long id;
+    private double productPrice;
+    private Integer productQuantity;
+    private double totalPrice;
+    private String note;
+    private String status;
+
+    //relation with user
+    @ManyToOne()
+    @JoinColumn(name = "customer_id")
+    private User customer;
+
+    //relation with product
+    @ManyToOne()
+    @JoinColumn(name = "product_id")
+    private Product product;
+
+    //relation with order
+    @ManyToOne()
+    @JoinColumn(name = "order_id")
+    private Order order;
+}

src/main/java/com/manir/springbootecommercerestapi/model/Product.java

@@ -54,4 +54,10 @@ public class Product {
     //relation to cart item
     @OneToMany(mappedBy = "product", cascade = CascadeType.ALL, orphanRemoval = true)
     private Set<CartItem> cartItems;
+
+    //relation with order_products
+    @OneToMany(cascade = CascadeType.ALL,
+            fetch = FetchType.LAZY, orphanRemoval = true,
+            mappedBy = "product")
+    private Set<OrderProducts> orderProducts;
 }

src/main/java/com/manir/springbootecommercerestapi/model/User.java

@@ -31,4 +31,16 @@ public class User {
                joinColumns = @JoinColumn(name = "user_id", referencedColumnName = "id"),
                inverseJoinColumns = @JoinColumn(name = "role_id", referencedColumnName = "id"))
     private Set<Role> roles;
+
+    //relation with order
+    @OneToMany(cascade = CascadeType.ALL,
+            fetch = FetchType.LAZY, orphanRemoval = true,
+            mappedBy = "customer")
+    private Set<Order> orders;
+
+    //relation with order_product
+    @OneToMany(cascade = CascadeType.ALL,
+            fetch = FetchType.LAZY, orphanRemoval = true,
+            mappedBy = "customer")
+    private Set<OrderProducts> orderProducts;
  }

src/main/java/com/manir/springbootecommercerestapi/repository/CartItemRepository.java

@@ -1,6 +1,8 @@
 package com.manir.springbootecommercerestapi.repository;
 
 import com.manir.springbootecommercerestapi.model.CartItem;
+import com.manir.springbootecommercerestapi.model.Product;
+import com.manir.springbootecommercerestapi.model.User;
 import org.springframework.data.jpa.repository.JpaRepository;
 import org.springframework.data.jpa.repository.Modifying;
 import org.springframework.data.jpa.repository.Query;
@@ -9,16 +11,16 @@
 
 public interface CartItemRepository extends JpaRepository<CartItem, Long> {
 
-    List<CartItem> findByCustomerId(Long customerId);
+    List<CartItem> findByCustomer(User customer);
 
     //CartItem findByCustomerAndProduct(User customer, Product product);
-    CartItem findByCustomerIdAndProductId(Long customerId, Long productId);
+    CartItem findByCustomerAndProduct(User customer, Product product);
 
     @Query("UPDATE CartItem c SET c.quantity = ?3 WHERE c.product.id = ?2 AND c.customer.id = ?1")
     void updateItemQuantity(Long customerId, Long productId, Integer quantity);
 
     @Query("DELETE FROM CartItem c WHERE c.customer.id = ?1 AND c.product.id = ?2")
     @Modifying
-    void deleteByCustomerIdAndProductId(Long customerId, Long productId);
+    void deleteByCustomerAndProduct(Long customerId, Long productId);
 
 }

src/main/java/com/manir/springbootecommercerestapi/security/CustomUserDetails.java

@@ -0,0 +1,53 @@
+package com.manir.springbootecommercerestapi.security;
+
+import com.manir.springbootecommercerestapi.model.User;
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
+
+import java.util.Collection;
+
+@Data
+@AllArgsConstructor
+@NoArgsConstructor
+public class CustomUserDetails implements UserDetails {
+    private User user;
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return null;
+    }
+
+    @Override
+    public String getPassword() {
+        return null;
+    }
+
+    @Override
+    public String getUsername() {
+        return user.getEmail();
+    }
+
+    @Override
+    public boolean isAccountNonExpired() {
+        return false;
+    }
+
+    @Override
+    public boolean isAccountNonLocked() {
+        return false;
+    }
+
+    @Override
+    public boolean isCredentialsNonExpired() {
+        return false;
+    }
+
+    @Override
+    public boolean isEnabled() {
+        return false;
+    }
+
+
+}

src/main/java/com/manir/springbootecommercerestapi/service/Impl/ShoppingCartServiceImpl.java

@@ -38,9 +38,9 @@ public class ShoppingCartServiceImpl implements ShoppingCartService {
     @Resource
     private CommonService commonService;
     @Override
-    public CartItemResponse findByCustomerId(Long customerId) {
+    public CartItemResponse findByCustomer(User customer) {
 
-        List<CartItem> cartItems = cartItemRepository.findByCustomerId(customerId);
+        List<CartItem> cartItems = cartItemRepository.findByCustomer(customer);
 
         if (cartItems.size() == 0){
             throw new EcommerceApiException("User has no product in cart item", HttpStatus.BAD_REQUEST);
@@ -58,18 +58,17 @@ public CartItemResponse findByCustomerId(Long customerId) {
     }
 
     @Override
-    public CartItemResponse addCartItem(Long customerId, Long productId, Integer quantity) {
+    public CartItemResponse addCartItem(User customer, Long productId, Integer quantity) {
         Integer addedQuantity = quantity;
-        User user = findCustomerById(customerId);
         Product product = findProductById(productId);
 
-        CartItem cartItem = cartItemRepository.findByCustomerIdAndProductId(customerId, productId);
+        CartItem cartItem = cartItemRepository.findByCustomerAndProduct(customer, product);
         if(cartItem != null){
             addedQuantity = cartItem.getQuantity() + quantity;
             cartItem.setQuantity(addedQuantity);
         }else {
             cartItem = new CartItem();
-            cartItem.setCustomer(user);
+            cartItem.setCustomer(customer);
             cartItem.setProduct(product);
             cartItem.setQuantity(quantity);
         }
@@ -82,9 +81,9 @@ public CartItemResponse addCartItem(Long customerId, Long productId, Integer qua
     }
 
     @Override
-    public CartItemResponse updateItemQuantity(Long customerId, Long productId, Integer quantity) {
-
-        CartItem cartItem = cartItemRepository.findByCustomerIdAndProductId(customerId, productId);
+    public CartItemResponse updateItemQuantity(User customer, Long productId, Integer quantity) {
+        Product product = findProductById(productId);
+        CartItem cartItem = cartItemRepository.findByCustomerAndProduct(customer, product);
         if (cartItem == null){
             throw new EcommerceApiException("Product is not in the cart item", HttpStatus.BAD_REQUEST);
         }
@@ -98,13 +97,13 @@ public CartItemResponse updateItemQuantity(Long customerId, Long productId, Inte
 
     @Override
     @Transactional
-    public void deleteItemProduct(Long customerId, Long productId) {
-
-        CartItem cartItem = cartItemRepository.findByCustomerIdAndProductId(customerId, productId);
+    public void deleteItemProduct(User customer, Long productId) {
+        Product product = findProductById(productId);
+        CartItem cartItem = cartItemRepository.findByCustomerAndProduct(customer, product);
         if (cartItem == null){
             throw new EcommerceApiException("Product is not in the cart item", HttpStatus.BAD_REQUEST);
         }
-        cartItemRepository.deleteByCustomerIdAndProductId(customerId, productId);
+        cartItemRepository.deleteByCustomerAndProduct(customer.getId(), productId);
     }
 
     //map to dto