Add custom field controllers

santiagolizardo · santiagolizardo · commit 599c7fdc5135 · 2024-08-26T21:42:50.000+01:00
diff --git a/database/01-schema.sql b/database/01-schema.sql
@@ -1,5 +1,4 @@
-USE
-reconmap;
+USE reconmap;
 
 SET
 FOREIGN_KEY_CHECKS = 0;
@@ -450,6 +449,24 @@ CREATE TABLE report_configuration
     FOREIGN KEY (project_id) REFERENCES project (id) ON DELETE CASCADE
 ) ENGINE = InnoDB;
 
+DROP TABLE IF EXISTS custom_field;
+
+CREATE TABLE custom_field (
+    id INT UNSIGNED NOT NULL AUTO_INCREMENT,
+    insert_ts   TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    update_ts   TIMESTAMP NULL ON UPDATE CURRENT_TIMESTAMP,
+    parent_type ENUM ('vulnerability') NOT NULL,
+    name VARCHAR(100) NOT NULL,
+    label VARCHAR(100) NOT NULL,
+    kind ENUM('text', 'number') NOT NULL,
+    config JSON NOT NULL,
+
+    PRIMARY KEY (id),
+    UNIQUE KEY(parent_type, name)
+) ENGINE = InnoDB;
+
+# INSERT INTO custom_field (parent_type, name, label, kind, config) VALUES ('vulnerability', 'cost_pounds', 'Cost in pounds', 'text', '{}');
+
 DROP TABLE IF EXISTS document;
 
 CREATE TABLE document
@@ -507,8 +524,7 @@ CREATE TABLE attachment
 
 DROP FUNCTION IF EXISTS PARENT_CHILD_NAME;
 
-DELIMITER
-$$
+DELIMITER $$
 
 CREATE FUNCTION PARENT_CHILD_NAME(
     parent_name VARCHAR (100),
diff --git a/src/ApiRouter.php b/src/ApiRouter.php
@@ -22,6 +22,7 @@
     Controllers\ProjectCategories\ProjectCategoriesRouter,
     Controllers\Projects\ProjectsRouter,
     Controllers\Reports\ReportsRouter,
+    Controllers\System\CustomFields\CustomFieldsRouter,
     Controllers\System\SystemRouter,
     Controllers\Targets\TargetsRouter,
     Controllers\Tasks\TasksRouter,
@@ -55,6 +56,7 @@ class ApiRouter extends Router
         ProjectCategoriesRouter::class,
         ReportsRouter::class,
         SystemRouter::class,
+        CustomFieldsRouter::class,
         TargetsRouter::class,
         TasksRouter::class,
         UsersRouter::class,
diff --git a/src/Controllers/System/CustomFields/CreateCustomFieldController.php b/src/Controllers/System/CustomFields/CreateCustomFieldController.php
@@ -0,0 +1,25 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Controllers\System\CustomFields;
+
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+use Reconmap\Controllers\Controller;
+use Reconmap\Models\CustomField;
+use Reconmap\Repositories\CustomFieldRepository;
+
+class CreateCustomFieldController extends Controller
+{
+    public function __construct(private readonly CustomFieldRepository $clientContactRepository)
+    {
+    }
+
+    public function __invoke(ServerRequestInterface $request, array $args): ResponseInterface
+    {
+        /** @var CustomField $customField */
+        $customField = $this->getJsonBodyDecodedAsClass($request, new CustomField());
+        $this->clientContactRepository->insert($customField);
+
+        return $this->createStatusCreatedResponse($customField);
+    }
+}
diff --git a/src/Controllers/System/CustomFields/CustomFieldsRouter.php b/src/Controllers/System/CustomFields/CustomFieldsRouter.php
@@ -0,0 +1,16 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Controllers\System\CustomFields;
+
+use League\Route\RouteCollectionInterface;
+
+class CustomFieldsRouter
+{
+
+    public function mapRoutes(RouteCollectionInterface $router): void
+    {
+        $router->get('/system/custom-fields', GetCustomFieldsController::class);
+        $router->post('/system/custom-fields', CreateCustomFieldController::class);
+        $router->delete('/system/custom-fields/{fieldId:number}', DeleteCustomFieldController::class);
+    }
+}
diff --git a/src/Controllers/System/CustomFields/DeleteCustomFieldController.php b/src/Controllers/System/CustomFields/DeleteCustomFieldController.php
@@ -0,0 +1,28 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Controllers\System\CustomFields;
+
+use Reconmap\Controllers\DeleteEntityController;
+use Reconmap\Models\AuditActions\ContactAuditActions;
+use Reconmap\Repositories\CustomFieldRepository;
+use Reconmap\Services\ActivityPublisherService;
+use Reconmap\Services\Security\AuthorisationService;
+
+class DeleteCustomFieldController extends DeleteEntityController
+{
+    public function __construct(
+        AuthorisationService     $authorisationService,
+        ActivityPublisherService $activityPublisherService,
+        CustomFieldRepository    $repository,
+    )
+    {
+        parent::__construct(
+            $authorisationService,
+            $activityPublisherService,
+            $repository,
+            'custom_field',
+            ContactAuditActions::DELETED,
+            'fieldId'
+        );
+    }
+}
diff --git a/src/Controllers/System/CustomFields/GetCustomFieldsController.php b/src/Controllers/System/CustomFields/GetCustomFieldsController.php
@@ -0,0 +1,27 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Controllers\System\CustomFields;
+
+use Override;
+use Psr\Http\Message\ResponseInterface;
+use Reconmap\Controllers\ControllerV2;
+use Reconmap\Http\ApplicationRequest;
+use Reconmap\Repositories\CustomFieldRepository;
+
+class GetCustomFieldsController extends ControllerV2
+{
+    public function __construct(private readonly CustomFieldRepository $customFieldRepository)
+    {
+    }
+
+    #[Override]
+    protected function process(ApplicationRequest $request): ResponseInterface
+    {
+        $fields = $this->customFieldRepository->findAll();
+
+        $response = $this->createOkResponse();
+        $response->getBody()->write(json_encode($fields));
+
+        return $response;
+    }
+}
diff --git a/src/Database/CommandTestDataGenerator.php b/src/Database/CommandTestDataGenerator.php
@@ -7,9 +7,9 @@
 use Reconmap\Models\Command;
 use Reconmap\Repositories\CommandRepository;
 
-class CommandTestDataGenerator
+readonly class CommandTestDataGenerator
 {
-    public function __construct(private readonly CommandRepository $commandRepository)
+    public function __construct(private CommandRepository $commandRepository)
     {
 
     }
diff --git a/src/Database/ConnectionFactory.php b/src/Database/ConnectionFactory.php
@@ -9,8 +9,7 @@ class ConnectionFactory
 
     static public function createConnection(ApplicationConfig $config): \mysqli
     {
-        $driver = new \mysqli_driver();
-        $driver->report_mode = MYSQLI_REPORT_ALL ^ MYSQLI_REPORT_INDEX;
+        mysqli_report(MYSQLI_REPORT_ALL ^ MYSQLI_REPORT_INDEX);
 
         $dbSettings = $config->getSettings('database');
         $conn = new \mysqli;
diff --git a/src/Database/UserTestDataGenerator.php b/src/Database/UserTestDataGenerator.php
@@ -5,9 +5,9 @@
 use Reconmap\Models\User;
 use Reconmap\Repositories\UserRepository;
 
-class UserTestDataGenerator
+readonly class UserTestDataGenerator
 {
-    public function __construct(private readonly UserRepository $userRepository)
+    public function __construct(private UserRepository $userRepository)
     {
     }
 
diff --git a/src/Http/CorsResponseDecorator.php b/src/Http/CorsResponseDecorator.php
@@ -7,10 +7,10 @@
 use Psr\Http\Message\ServerRequestInterface;
 use Reconmap\Services\ApplicationConfig;
 
-class CorsResponseDecorator
+readonly class CorsResponseDecorator
 {
-    public function __construct(private readonly Logger $logger,
-                                private readonly ApplicationConfig $config)
+    public function __construct(private Logger            $logger,
+                                private ApplicationConfig $config)
     {
     }
 
diff --git a/src/Models/CustomField.php b/src/Models/CustomField.php
@@ -0,0 +1,16 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Models;
+
+/**
+ * Autogenerated file, do not edit manually. @see https://github.com/reconmap/model-definitions
+ */
+class CustomField {
+
+	public ?int $id;
+	public ?string $parent_type;
+	public ?string $name;
+	public ?string $label;
+	public ?string $kind;
+	public ?string $config;
+}
diff --git a/src/Repositories/AttachmentRepository.php b/src/Repositories/AttachmentRepository.php
@@ -8,9 +8,9 @@
 
 class AttachmentRepository extends MysqlRepository
 {
-    private const TABLE_NAME = 'attachment';
+    private const string TABLE_NAME = 'attachment';
 
-    public const UPDATABLE_COLUMNS_TYPES = [
+    public const array UPDATABLE_COLUMNS_TYPES = [
         "submitter_uid" => "i",
         "client_file_name" => "s",
         "file_hash" => "s",
diff --git a/src/Repositories/CustomFieldRepository.php b/src/Repositories/CustomFieldRepository.php
@@ -0,0 +1,85 @@
+<?php declare(strict_types=1);
+
+namespace Reconmap\Repositories;
+
+use Ponup\SqlBuilders\SelectQueryBuilder;
+use Reconmap\Models\CustomField;
+
+class CustomFieldRepository extends MysqlRepository implements Deletable
+{
+    public const array UPDATABLE_COLUMNS_TYPES = [
+        'parent_type' => 's',
+        'name' => 's',
+        'label' => 's',
+        'kind' => 's',
+        'config' => 's',
+    ];
+
+    public function findByParentId(string $parentType, ?int $parentId): array
+    {
+        $queryBuilder = $this->getBaseSelectQueryBuilder();
+        if (is_null($parentId)) {
+            $queryBuilder->setWhere('n.parent_type = ? AND n.parent_id IS NULL');
+        } else {
+            $queryBuilder->setWhere('n.parent_type = ? AND n.parent_id = ?');
+        }
+
+        $stmt = $this->db->prepare($queryBuilder->toSql());
+        if (is_null($parentId)) {
+            $stmt->bind_param('s', $parentType);
+        } else {
+            $stmt->bind_param('si', $parentType, $parentId);
+        }
+        $stmt->execute();
+        $result = $stmt->get_result();
+        $documents = $result->fetch_all(MYSQLI_ASSOC);
+        $stmt->close();
+
+        return $documents;
+    }
+
+    public function findById(int $id): ?array
+    {
+        $queryBuilder = $this->getBaseSelectQueryBuilder();
+        $queryBuilder->setWhere('n.id = ?');
+        $stmt = $this->db->prepare($queryBuilder->toSql());
+        $stmt->bind_param('i', $id);
+        $stmt->execute();
+        $result = $stmt->get_result();
+        $document = $result->fetch_assoc();
+        $stmt->close();
+
+        return $document;
+    }
+
+    public function deleteById(int $id): bool
+    {
+        return $this->deleteByTableId('custom_field', $id);
+    }
+
+    public function insert(CustomField $customField): bool
+    {
+        $stmt = $this->db->prepare('INSERT INTO custom_field (parent_type, name, label, kind, config) VALUES (?, ?, ?, ?, ?)');
+        return $stmt->execute([$customField->parent_type, $customField->name, $customField->label, $customField->kind, $customField->config]);
+    }
+
+    protected function getBaseSelectQueryBuilder(): SelectQueryBuilder
+    {
+        $queryBuilder = new SelectQueryBuilder('custom_field AS cf');
+        $queryBuilder->setOrderBy('cf.insert_ts DESC');
+
+        return $queryBuilder;
+    }
+
+    public function findAll(): array
+    {
+        $sql = $this->getBaseSelectQueryBuilder()->toSql();
+        $resultSet = $this->db->query($sql);
+        return $resultSet->fetch_all(MYSQLI_ASSOC);
+    }
+
+    public function updateById(int $id, array $newColumnValues): bool
+    {
+        return $this->updateByTableId('custom_field', $id, $newColumnValues);
+    }
+}
diff --git a/src/Repositories/MysqlRepository.php b/src/Repositories/MysqlRepository.php
@@ -4,7 +4,6 @@
 
 use Monolog\Logger;
 use Ponup\SqlBuilders\DeleteQueryBuilder;
-use Ponup\SqlBuilders\QueryBuilder;
 use Ponup\SqlBuilders\SearchCriteria;
 use Ponup\SqlBuilders\SelectQueryBuilder;
 use Ponup\SqlBuilders\UpdateQueryBuilder;
@@ -117,7 +116,7 @@ protected function searchAll(SelectQueryBuilder $queryBuilder, SearchCriteria $s
         return $result->fetch_all(MYSQLI_ASSOC);
     }
 
-    protected function countSearchResults(QueryBuilder $queryBuilder, SearchCriteria $searchCriteria): int
+    protected function countSearchResults(SelectQueryBuilder $queryBuilder, SearchCriteria $searchCriteria): int
     {
         $queryBuilder->setColumns('COUNT(*) AS total');
         $results = $this->searchAll($queryBuilder, $searchCriteria);
diff --git a/src/Services/ObjectCaster.php b/src/Services/ObjectCaster.php
@@ -10,13 +10,11 @@ static final public function cast(object $destObject, object $sourceObject): obj
         $destRef = new \ReflectionObject($destObject);
         $sourceProps = $sourceRef->getProperties();
         foreach ($sourceProps as $sourceProp) {
-            $sourceProp->setAccessible(true);
             $propName = $sourceProp->getName();
             if ($sourceProp->isInitialized($sourceObject)) {
                 $propValue = $sourceProp->getValue($sourceObject);
                 if ($destRef->hasProperty($propName)) {
                     $propDest = $destRef->getProperty($propName);
-                    $propDest->setAccessible(true);
                     $propDest->setValue($destObject, $propValue);
                 } else {
                     $destObject->$propName = $propValue;
diff --git a/tests/Controllers/Auth/LoginControllerTest.php b/tests/Controllers/Auth/LoginControllerTest.php
@@ -2,7 +2,6 @@
 
 namespace Reconmap\Controllers\Auth;
 
-use League\Container\Container;
 use PHPUnit\Framework\TestCase;
 use Psr\Http\Message\ServerRequestInterface;
 use Reconmap\ConsecutiveParamsTrait;
@@ -12,6 +11,7 @@
 use Reconmap\Services\JwtPayloadCreator;
 use Reconmap\Services\RedisServer;
 use Reconmap\Services\Security\AuthorisationService;
+use Symfony\Component\DependencyInjection\Container;
 use Symfony\Component\HttpFoundation\Response;
 
 class LoginControllerTest extends TestCase
@@ -62,7 +62,6 @@ public function testLogin()
         $mockRedisServer = $this->createMock(RedisServer::class);
 
         $controller = new LoginController($mockUserRepository, $mockAuditLogService, $mockRedisServer);
-        $controller->setContainer($mockContainer);
         $response = $controller($mockServerRequestInterface, []);
 
         $this->assertEquals(Response::HTTP_OK, $response->getStatusCode());
diff --git a/tests/Controllers/Auth/LogoutControllerTest.php b/tests/Controllers/Auth/LogoutControllerTest.php

Original file line number	Diff line number	Diff line change
`@@ -7,9 +7,9 @@`
`7`	`7`	`use Reconmap\Models\Command;`
`8`	`8`	`use Reconmap\Repositories\CommandRepository;`
`9`	`9`
`10`		`-class CommandTestDataGenerator`
	`10`	`+readonly class CommandTestDataGenerator`
`11`	`11`	`{`
`12`		`- public function __construct(private readonly CommandRepository $commandRepository)`
	`12`	`+ public function __construct(private CommandRepository $commandRepository)`
`13`	`13`	`{`
`14`	`14`
`15`	`15`	`}`
Original file line number	Diff line number	Diff line change
`@@ -9,8 +9,7 @@ class ConnectionFactory`
`9`	`9`
`10`	`10`	`static public function createConnection(ApplicationConfig $config): \mysqli`
`11`	`11`	`{`
`12`		`- $driver = new \mysqli_driver();`
`13`		`- $driver->report_mode = MYSQLI_REPORT_ALL ^ MYSQLI_REPORT_INDEX;`
	`12`	`+ mysqli_report(MYSQLI_REPORT_ALL ^ MYSQLI_REPORT_INDEX);`
`14`	`13`
`15`	`14`	`$dbSettings = $config->getSettings('database');`
`16`	`15`	`$conn = new \mysqli;`
Original file line number	Diff line number	Diff line change
`@@ -5,9 +5,9 @@`
`5`	`5`	`use Reconmap\Models\User;`
`6`	`6`	`use Reconmap\Repositories\UserRepository;`
`7`	`7`
`8`		`-class UserTestDataGenerator`
	`8`	`+readonly class UserTestDataGenerator`
`9`	`9`	`{`
`10`		`- public function __construct(private readonly UserRepository $userRepository)`
	`10`	`+ public function __construct(private UserRepository $userRepository)`
`11`	`11`	`{`
`12`	`12`	`}`
`13`	`13`
Original file line number	Diff line number	Diff line change
`@@ -7,10 +7,10 @@`
`7`	`7`	`use Psr\Http\Message\ServerRequestInterface;`
`8`	`8`	`use Reconmap\Services\ApplicationConfig;`
`9`	`9`
`10`		`-class CorsResponseDecorator`
	`10`	`+readonly class CorsResponseDecorator`
`11`	`11`	`{`
`12`		`- public function __construct(private readonly Logger $logger,`
`13`		`- private readonly ApplicationConfig $config)`
	`12`	`+ public function __construct(private Logger $logger,`
	`13`	`+ private ApplicationConfig $config)`
`14`	`14`	`{`
`15`	`15`	`}`
`16`	`16`
Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,6 @@`
`4`	`4`
`5`	`5`	`use Monolog\Logger;`
`6`	`6`	`use Ponup\SqlBuilders\DeleteQueryBuilder;`
`7`		`-use Ponup\SqlBuilders\QueryBuilder;`
`8`	`7`	`use Ponup\SqlBuilders\SearchCriteria;`
`9`	`8`	`use Ponup\SqlBuilders\SelectQueryBuilder;`
`10`	`9`	`use Ponup\SqlBuilders\UpdateQueryBuilder;`
`@@ -117,7 +116,7 @@ protected function searchAll(SelectQueryBuilder $queryBuilder, SearchCriteria $s`
`117`	`116`	`return $result->fetch_all(MYSQLI_ASSOC);`
`118`	`117`	`}`
`119`	`118`
`120`		`- protected function countSearchResults(QueryBuilder $queryBuilder, SearchCriteria $searchCriteria): int`
	`119`	`+ protected function countSearchResults(SelectQueryBuilder $queryBuilder, SearchCriteria $searchCriteria): int`
`121`	`120`	`{`
`122`	`121`	`$queryBuilder->setColumns('COUNT(*) AS total');`
`123`	`122`	`$results = $this->searchAll($queryBuilder, $searchCriteria);`