fix totem API issues

tollsimy · tollsimy · commit e7504d88204c · 2025-06-12T15:41:05.000+02:00
diff --git a/src/dao/totem.go b/src/dao/totem.go
@@ -6,11 +6,13 @@ import (
 	"context"
 	"database/sql"
 	"errors"
+	"strings"
 	"time"
 )
 
 var (
-	ErrTotemNotFound = errors.New("totem not found")
+	ErrTotemNotFound      = errors.New("totem not found")
+	ErrTotemAlreadyExists = errors.New("totem already exists")
 )
 
 type TotemDao struct {
@@ -23,7 +25,7 @@ func NewTotemDao() *TotemDao {
 	}
 }
 
-func (td *TotemDao) GetTotemById(ctx context.Context, id int64) (error, api.TotemResponse) {
+func (td *TotemDao) GetTotemById(ctx context.Context, id string) (error, api.TotemResponse) {
 	query := `
         SELECT id, zone_id, latitude, longitude, registration_time 
         FROM totems 
@@ -68,5 +70,69 @@ func (td *TotemDao) AddTotem(ctx context.Context, config api.TotemRequest) error
 		config.Longitude,
 	)
 
+	if err != nil {
+		if strings.Contains(err.Error(), "duplicate key value violates unique constraint") {
+			return ErrTotemAlreadyExists
+		}
+	}
 	return err
 }
+
+func (td *TotemDao) GetTotems(ctx context.Context, limit int, offset int) ([]api.TotemResponse, error) {
+	query := `
+				SELECT id, zone_id, latitude, longitude, registration_time 
+				FROM totems
+				LIMIT $1 OFFSET $2
+		`
+
+	rows, err := td.db.Query(ctx, query, limit, offset)
+	if err != nil {
+		return nil, err
+	}
+	defer rows.Close()
+
+	var totems []api.TotemResponse
+
+	for rows.Next() {
+		var totem api.TotemResponse
+		var registrationTime time.Time
+
+		if err := rows.Scan(
+			&totem.Id,
+			&totem.ZoneId,
+			&totem.Latitude,
+			&totem.Longitude,
+			&registrationTime,
+		); err != nil {
+			return nil, err
+		}
+
+		totem.RegistrationTime = registrationTime
+		totems = append(totems, totem)
+	}
+
+	if err := rows.Err(); err != nil {
+		return nil, err
+	}
+
+	return totems, nil
+}
+
+func (td *TotemDao) DeleteTotemById(ctx context.Context, id string) error {
+	query := `
+				DELETE FROM totems 
+				WHERE id = $1
+		`
+
+	result, err := td.db.Exec(ctx, query, id)
+	if err != nil {
+		return err
+	}
+
+	rowsAffected := result.RowsAffected()
+	if rowsAffected == 0 {
+		return ErrTotemNotFound
+	}
+
+	return nil
+}
diff --git a/src/handlers/fine.go b/src/handlers/fine.go
@@ -48,6 +48,22 @@ func (fh *FineHandlers) GetCarFines(c *gin.Context, plate string) {
 	c.JSON(http.StatusOK, fines)
 }
 
+func (fh *FineHandlers) GetZoneFines(c *gin.Context, zoneId int64, params api.GetZoneFinesParams) {
+	username, role, err := auth.GetPermissions(c)
+	if err != nil {
+		return
+	}
+	zh := NewZoneHandler()
+	isAdmin, errAdmin := zh.isZoneAdmin(c, zoneId, username)
+	isController, errController := zh.isZoneController(c, zoneId, username)
+	if role != "superuser" && !isAdmin && !isController && errAdmin != nil && errController != nil {
+		return
+	}
+
+	fines := fh.dao.GetZoneFines(c.Request.Context(), zoneId, *params.Limit, *params.Offset)
+	c.JSON(http.StatusOK, fines)
+}
+
 func (fh *FineHandlers) CreateZoneFine(c *gin.Context, zoneId int64) {
 	username, role, err := auth.GetPermissions(c)
 	if err != nil {
@@ -56,7 +72,7 @@ func (fh *FineHandlers) CreateZoneFine(c *gin.Context, zoneId int64) {
 	zh := NewZoneHandler()
 	isAdmin, errAdmin := zh.isZoneAdmin(c, zoneId, username)
 	isController, errController := zh.isZoneController(c, zoneId, username)
-	if role != "superuser" || !isAdmin || !isController || errAdmin != nil || errController != nil {
+	if role != "superuser" && !isAdmin && !isController && errAdmin != nil && errController != nil {
 		return
 	}
 
@@ -172,19 +188,3 @@ func (fh *FineHandlers) PayFine(c *gin.Context, id int64) {
 
 	c.JSON(http.StatusOK, gin.H{"message": "fine paid successfully"})
 }
-
-func (fh *FineHandlers) GetZoneFines(c *gin.Context, zoneId int64, params api.GetZoneFinesParams) {
-	username, role, err := auth.GetPermissions(c)
-	if err != nil {
-		return
-	}
-	zh := NewZoneHandler()
-	isAdmin, errAdmin := zh.isZoneAdmin(c, zoneId, username)
-	isController, errController := zh.isZoneController(c, zoneId, username)
-	if role != "superuser" || !isAdmin || !isController || errAdmin != nil || errController != nil {
-		return
-	}
-
-	fines := fh.dao.GetZoneFines(c.Request.Context(), zoneId, *params.Limit, *params.Offset)
-	c.JSON(http.StatusOK, fines)
-}
diff --git a/src/handlers/ticket.go b/src/handlers/ticket.go
@@ -79,6 +79,38 @@ func (th *TicketHandlers) GetTicketById(c *gin.Context, id int64) {
 	c.JSON(http.StatusOK, ticket)
 }
 
+func (fh *FineHandlers) GetZoneTickets(c *gin.Context, zoneId int64, params api.GetZoneTicketsParams) {
+	username, role, err := auth.GetPermissions(c)
+	if err != nil {
+		return
+	}
+	zh := NewZoneHandler()
+	isAdmin, errAdmin := zh.isZoneAdmin(c, zoneId, username)
+	isController, errController := zh.isZoneController(c, zoneId, username)
+
+	if role != "superuser" && (errAdmin != nil || !isAdmin) && (errController != nil || !isController) {
+		c.JSON(http.StatusForbidden, gin.H{"error": "forbidden"})
+		return
+	}
+
+	tickets, err := fh.dao.GetZoneTickets(c.Request.Context(), zoneId, *params.Limit, *params.Offset)
+	if err != nil {
+		if errors.Is(err, dao.ErrZoneNotFound) {
+			c.JSON(http.StatusNotFound, gin.H{"error": "zone not found"})
+			return
+		}
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to get zone tickets"})
+		return
+	}
+
+	if tickets == nil {
+		c.JSON(http.StatusOK, []interface{}{})
+		return
+	}
+
+	c.JSON(http.StatusOK, tickets)
+}
+
 func (th *TicketHandlers) CreateZoneTicket(c *gin.Context, zoneId int64) {
 	var ticketRequest api.TicketRequest
 	if err := c.ShouldBindJSON(&ticketRequest); err != nil {
@@ -197,35 +229,3 @@ func (th *TicketHandlers) DeleteTicketById(c *gin.Context, id int64) {
 
 	c.JSON(http.StatusOK, gin.H{"message": "ticket deleted successfully"})
 }
-
-func (fh *FineHandlers) GetZoneTickets(c *gin.Context, zoneId int64, params api.GetZoneTicketsParams) {
-	username, role, err := auth.GetPermissions(c)
-	if err != nil {
-		return
-	}
-	zh := NewZoneHandler()
-	isAdmin, errAdmin := zh.isZoneAdmin(c, zoneId, username)
-	isController, errController := zh.isZoneController(c, zoneId, username)
-
-	if role != "superuser" && (errAdmin != nil || !isAdmin) && (errController != nil || !isController) {
-		c.JSON(http.StatusForbidden, gin.H{"error": "forbidden"})
-		return
-	}
-
-	tickets, err := fh.dao.GetZoneTickets(c.Request.Context(), zoneId, *params.Limit, *params.Offset)
-	if err != nil {
-		if errors.Is(err, dao.ErrZoneNotFound) {
-			c.JSON(http.StatusNotFound, gin.H{"error": "zone not found"})
-			return
-		}
-		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to get zone tickets"})
-		return
-	}
-
-	if tickets == nil {
-		c.JSON(http.StatusOK, []interface{}{})
-		return
-	}
-
-	c.JSON(http.StatusOK, tickets)
-}
diff --git a/src/handlers/totem.go b/src/handlers/totem.go
@@ -5,7 +5,6 @@ import (
 	"OPP/backend/auth"
 	"OPP/backend/dao"
 	"net/http"
-	"strconv"
 
 	"github.com/gin-gonic/gin"
 )
@@ -20,12 +19,7 @@ func NewTotemHandler() *TotemHandlers {
 	}
 }
 
-func (th *TotemHandlers) GetTotemConfig(c *gin.Context, params api.GetTotemConfigParams) {
-	id, err := strconv.ParseInt(params.Id, 10, 64)
-	if err != nil || id <= 0 {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid totem ID"})
-		return
-	}
+func (th *TotemHandlers) GetTotemConfig(c *gin.Context, id string) {
 	err, totemConfig := th.dao.GetTotemById(c.Request.Context(), id)
 	if err != nil {
 		if err == dao.ErrTotemNotFound {
@@ -51,9 +45,68 @@ func (th *TotemHandlers) RegisterTotem(c *gin.Context) {
 		return
 	}
 
+	// Check if zone exists
+	_, err := dao.NewZoneDao().GetZoneById(c.Request.Context(), totemRequest.ZoneId)
+	if err != nil {
+		if err == dao.ErrZoneNotFound {
+			c.JSON(http.StatusNotFound, gin.H{"error": "zone not found"})
+			return
+		}
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to check if zone exists"})
+		return
+	}
+
 	if err := th.dao.AddTotem(c.Request.Context(), totemRequest); err != nil {
+		if err == dao.ErrTotemAlreadyExists {
+			c.JSON(http.StatusConflict, gin.H{"error": "totem already exists"})
+			return
+		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to register totem"})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"message": "totem registered successfully"})
 }
+
+func (th *TotemHandlers) GetAllTotems(c *gin.Context, params api.GetAllTotemsParams) {
+	totems, err := th.dao.GetTotems(c.Request.Context(), *params.Limit, *params.Offset)
+	if err != nil {
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to get totems"})
+		return
+	}
+	c.JSON(http.StatusOK, totems)
+}
+
+func (th *TotemHandlers) DeleteTotemById(c *gin.Context, id string) {
+	username, role, err := auth.GetPermissions(c)
+	if err != nil {
+		return
+	}
+
+	// Get totem by ID
+	err, totem := th.dao.GetTotemById(c.Request.Context(), id)
+	if err != nil {
+		if err == dao.ErrTotemNotFound {
+			c.JSON(http.StatusNotFound, gin.H{"error": "totem not found"})
+			return
+		}
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to get totem"})
+		return
+	}
+	isZoneAdmin, err := NewZoneHandler().isZoneAdmin(c, totem.ZoneId, username)
+
+	if role != "superuser" && !isZoneAdmin {
+		c.JSON(http.StatusForbidden, gin.H{"forbidden": "you do not have permission to delete this totem"})
+		return
+	}
+
+	err = th.dao.DeleteTotemById(c.Request.Context(), id)
+	if err != nil {
+		if err == dao.ErrTotemNotFound {
+			c.JSON(http.StatusNotFound, gin.H{"error": "totem not found"})
+			return
+		}
+		c.JSON(http.StatusInternalServerError, gin.H{"error": "failed to delete totem"})
+		return
+	}
+	c.JSON(http.StatusOK, gin.H{"message": "totem deleted successfully"})
+}
diff --git a/src/handlers/zone.go b/src/handlers/zone.go
@@ -126,7 +126,7 @@ func (zh *ZoneHandlers) UpdateZoneById(c *gin.Context, id int64) {
 		return
 	}
 	isAdmin, err := zh.isZoneAdmin(c, id, username)
-	if role != "admin" || !isAdmin || err != nil {
+	if role != "superuser" && (!isAdmin || err != nil) {
 		return
 	}
 
@@ -159,7 +159,7 @@ func (zh *ZoneHandlers) DeleteZoneById(c *gin.Context, id int64) {
 		return
 	}
 	isAdmin, err := zh.isZoneAdmin(c, id, username)
-	if role != "superuser" || !isAdmin || err != nil {
+	if role != "superuser" && (!isAdmin || err != nil) {
 		return
 	}
 
@@ -207,7 +207,7 @@ func (zh *ZoneHandlers) GetZoneUsers(c *gin.Context, id int64) {
 	}
 
 	isAdmin, err := zh.isZoneAdmin(c, id, username)
-	if role != "superuser" || !isAdmin || err != nil {
+	if role != "superuser" && (!isAdmin || err != nil) {
 		return
 	}
 
@@ -260,7 +260,7 @@ func (zh *ZoneHandlers) AddZoneUserRole(c *gin.Context, id int64) {
 		}
 	} else if request.Role == "controller" {
 		isAdmin, err := zh.isZoneAdmin(c, id, username)
-		if role != "superuser" && (!isAdmin || err != nil) || err != nil {
+		if role != "superuser" && (!isAdmin || err != nil) {
 			return
 		}
 	}
@@ -288,7 +288,7 @@ func (zh *ZoneHandlers) RemoveZoneUserRole(c *gin.Context, id int64, username st
 		return
 	}
 	isAdmin, err := zh.isZoneAdmin(c, id, username)
-	if role != "superuser" || !isAdmin || err != nil {
+	if role != "superuser" && (!isAdmin || err != nil) {
 		return
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -126,7 +126,7 @@ func (zh ZoneHandlers) UpdateZoneById(c gin.Context, id int64) {`
`126`	`126`	`return`
`127`	`127`	`}`
`128`	`128`	`isAdmin, err := zh.isZoneAdmin(c, id, username)`
`129`		`- if role != "admin" \|\| !isAdmin \|\| err != nil {`
	`129`	`+ if role != "superuser" && (!isAdmin \|\| err != nil) {`
`130`	`130`	`return`
`131`	`131`	`}`
`132`	`132`
`@@ -159,7 +159,7 @@ func (zh ZoneHandlers) DeleteZoneById(c gin.Context, id int64) {`
`159`	`159`	`return`
`160`	`160`	`}`
`161`	`161`	`isAdmin, err := zh.isZoneAdmin(c, id, username)`
`162`		`- if role != "superuser" \|\| !isAdmin \|\| err != nil {`
	`162`	`+ if role != "superuser" && (!isAdmin \|\| err != nil) {`
`163`	`163`	`return`
`164`	`164`	`}`
`165`	`165`
`@@ -207,7 +207,7 @@ func (zh ZoneHandlers) GetZoneUsers(c gin.Context, id int64) {`
`207`	`207`	`}`
`208`	`208`
`209`	`209`	`isAdmin, err := zh.isZoneAdmin(c, id, username)`
`210`		`- if role != "superuser" \|\| !isAdmin \|\| err != nil {`
	`210`	`+ if role != "superuser" && (!isAdmin \|\| err != nil) {`
`211`	`211`	`return`
`212`	`212`	`}`
`213`	`213`
`@@ -260,7 +260,7 @@ func (zh ZoneHandlers) AddZoneUserRole(c gin.Context, id int64) {`
`260`	`260`	`}`
`261`	`261`	`} else if request.Role == "controller" {`
`262`	`262`	`isAdmin, err := zh.isZoneAdmin(c, id, username)`
`263`		`- if role != "superuser" && (!isAdmin \|\| err != nil) \|\| err != nil {`
	`263`	`+ if role != "superuser" && (!isAdmin \|\| err != nil) {`
`264`	`264`	`return`
`265`	`265`	`}`
`266`	`266`	`}`
`@@ -288,7 +288,7 @@ func (zh ZoneHandlers) RemoveZoneUserRole(c gin.Context, id int64, username st`
`288`	`288`	`return`
`289`	`289`	`}`
`290`	`290`	`isAdmin, err := zh.isZoneAdmin(c, id, username)`
`291`		`- if role != "superuser" \|\| !isAdmin \|\| err != nil {`
	`291`	`+ if role != "superuser" && (!isAdmin \|\| err != nil) {`
`292`	`292`	`return`
`293`	`293`	`}`
`294`	`294`