Package com.denimgroup.threadfix.webapp.controller

Source Code of com.denimgroup.threadfix.webapp.controller.EditSurveyController

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
////////////////////////////////////////////////////////////////////////
//
//     Copyright (c) 2009-2014 Denim Group, Ltd.
//
//     The contents of this file are subject to the Mozilla Public License
//     Version 2.0 (the "License"); you may not use this file except in
//     compliance with the License. You may obtain a copy of the License at
//     http://www.mozilla.org/MPL/
//
//     Software distributed under the License is distributed on an "AS IS"
//     basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
//     License for the specific language governing rights and limitations
//     under the License.
//
//     The Original Code is ThreadFix.
//
//     The Initial Developer of the Original Code is Denim Group, Ltd.
//     Portions created by Denim Group, Ltd. are Copyright (C)
//     Denim Group, Ltd. All Rights Reserved.
//
//     Contributor(s): Denim Group, Ltd.
//
////////////////////////////////////////////////////////////////////////
package com.denimgroup.threadfix.webapp.controller;

import com.denimgroup.threadfix.data.entities.Permission;
import com.denimgroup.threadfix.data.entities.SurveyAnswer;
import com.denimgroup.threadfix.data.entities.SurveyRanking;
import com.denimgroup.threadfix.data.entities.SurveyResult;
import com.denimgroup.threadfix.logging.SanitizedLogger;
import com.denimgroup.threadfix.service.SurveyService;
import com.denimgroup.threadfix.service.util.PermissionUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.context.SecurityContextHolder;
import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.ui.ModelMap;
import org.springframework.web.bind.annotation.*;
import org.springframework.web.servlet.ModelAndView;

@Controller
@RequestMapping("/organizations/{orgId}/surveys/{resultId}/edit")
@SessionAttributes("surveyResult")
public class EditSurveyController {

    @Autowired
  private SurveyService surveyService = null;

  private final SanitizedLogger log = new SanitizedLogger(EditSurveyController.class);

  @RequestMapping(method = RequestMethod.GET)
  public ModelAndView setupForm(@PathVariable("orgId") int orgId,
      @PathVariable("resultId") int resultId) {
   
    if (!PermissionUtils.isAuthorized(Permission.READ_ACCESS, orgId, null)) {
      return new ModelAndView("403");
    }
   
    SurveyResult surveyResult = surveyService.loadSurveyResult(resultId);
   
    if (surveyResult == null) {
      log.warn(ResourceNotFoundException.getLogMessage("SurveyResult", resultId));
      throw new ResourceNotFoundException();
    }
   
    ModelAndView mav = new ModelAndView("surveys/form");
    mav.addObject(surveyResult);
    return mav;
  }

  @RequestMapping(params = "surveys/save", method = RequestMethod.POST)
  public String saveResults(@PathVariable("orgId") int orgId,
      @ModelAttribute SurveyResult surveyResult, ModelMap model) {
   
    if (!PermissionUtils.isAuthorized(Permission.READ_ACCESS, orgId, null)) {
      return "403";
    }
   
    if (surveyResult.isSubmitted()) {
      log.error("Cannot save already submitted survey");
      return "redirect:/organizations/" + orgId + "/surveys/" + surveyResult.getId();
    }

    if (surveyResult.getSurveyAnswers() != null) {
      for (SurveyAnswer answer : surveyResult.getSurveyAnswers()) {
        answer.setSurveyResult(surveyResult);
      }
    }

    if (surveyResult.getSurveyRankings() != null) {
      for (SurveyRanking ranking : surveyResult.getSurveyRankings()) {
        ranking.setSurveyResult(surveyResult);
      }
    }

    String userName = SecurityContextHolder.getContext().getAuthentication().getName();
    surveyResult.setUser(userName);
    surveyService.saveOrUpdateResult(surveyResult);

    model.addAttribute("saveConfirm", true);
    return "surveys/form";
  }

  @RequestMapping(method = RequestMethod.POST)
  public String submitResults(@PathVariable("orgId") int orgId,
      @ModelAttribute SurveyResult surveyResult, Model model) {
   
    if (!PermissionUtils.isAuthorized(Permission.READ_ACCESS, orgId, null)) {
      return "403";
    }
   
    if (surveyResult.isSubmitted()) {
      log.error("Cannot save already submitted survey");
      return "redirect:/organizations/" + orgId + "/surveys/" + surveyResult.getId();
    }

    surveyResult.calculateRankings();
    surveyService.saveOrUpdateResult(surveyResult);

    return "redirect:/organizations/" + String.valueOf(orgId);
  }
}
TOP

Related Classes of com.denimgroup.threadfix.webapp.controller.EditSurveyController

  • com.denimgroup.threadfix.data.entities.SurveyResult
  • org.springframework.web.servlet.ModelAndView
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.