diff --git a/src/main/java/com/guams/review/ReViewApplication.java b/src/main/java/com/guams/review/ReViewApplication.java index 496fcac..65140ca 100644 --- a/src/main/java/com/guams/review/ReViewApplication.java +++ b/src/main/java/com/guams/review/ReViewApplication.java @@ -2,9 +2,10 @@ package com.guams.review; import org.springframework.boot.SpringApplication; import org.springframework.boot.autoconfigure.SpringBootApplication; +import org.springframework.data.jdbc.repository.config.EnableJdbcRepositories; -import java.util.List; +@EnableJdbcRepositories @SpringBootApplication public class ReViewApplication { diff --git a/src/main/java/com/guams/review/configuration/SpringSecurityConfig.java b/src/main/java/com/guams/review/configuration/SpringSecurityConfig.java index 9273709..2c0bad3 100644 --- a/src/main/java/com/guams/review/configuration/SpringSecurityConfig.java +++ b/src/main/java/com/guams/review/configuration/SpringSecurityConfig.java @@ -52,10 +52,11 @@ public class SpringSecurityConfig { @Bean public CorsConfigurationSource corsConfigurationSource() { CorsConfiguration configuration = new CorsConfiguration(); - configuration.setAllowedOrigins(List.of("http://localhost:4200")); // N'autorise que localhost:4200 - configuration.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE")); // Spécifie les méthodes autorisées - configuration.setAllowedHeaders(List.of("Authorization", "Content-Type")); // Limite les en-têtes autorisés - configuration.setAllowCredentials(true); // Autorise l'utilisation des cookies ou des tokens +// configuration.setAllowedOrigins(List.of("http://192.168.1.35:4200")); + configuration.setAllowedOrigins(List.of("http://localhost:4200")); + configuration.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE")); // Méthodes HTTP autorisées + configuration.setAllowedHeaders(List.of("Authorization", "Content-Type")); // En-têtes autorisés + configuration.setAllowCredentials(true); // Permet l'utilisation des cookies ou des tokens configuration.setMaxAge(3600L); // Cache la configuration CORS pendant 1 heure UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource(); diff --git a/src/main/java/com/guams/review/controller/AuthorController.java b/src/main/java/com/guams/review/controller/AuthorController.java index 4203302..61a3419 100644 --- a/src/main/java/com/guams/review/controller/AuthorController.java +++ b/src/main/java/com/guams/review/controller/AuthorController.java @@ -54,22 +54,12 @@ public class AuthorController { @PutMapping("/{id}") public ReturnableAuthor updateUser(@PathVariable UUID id, @RequestBody Author updatedAuthor, Authentication authentication) { Author authorToUpdate = authorService.verifyIfUserIsAuthorized(authentication, id); - if (passwordEncoder.matches(updatedAuthor.getPassword(), authorToUpdate.getPassword())) { - return authorService.insert(updatedAuthor - .setId(authorToUpdate.getId()) - .setRole(authorToUpdate.getRole()) - .setPassword(authorToUpdate.getPassword())); - } else { - throw new UnauthorizedExecption("You are not authorized to update this author"); - } + return authorService.insert(updatedAuthor + .setId(authorToUpdate.getId()) + .setRole(authorToUpdate.getRole()) + .setPassword(passwordEncoder.encode(updatedAuthor.getPassword()))); } -// @PutMapping("/{id}/password") -// public void changePassword(@PathVariable UUID id, @RequestBody Author updatedAuthor, Authentication authentication) { -// Author authorToUpdate = authorService.verifyIfUserIsAuthorized(authentication, id); -// if (passwordEncoder.matches(updatedAuthor.getPassword(), authorToUpdate.getPassword())) {} -// } - @PutMapping(value = "{id}/avatar", consumes = {MediaType.MULTIPART_FORM_DATA_VALUE}) public Author updateUserAvatar(@PathVariable UUID id, @RequestPart MultipartFile avatar, Authentication authentication) throws IOException { Author authorToUpdate = authorService.verifyIfUserIsAuthorized(authentication, id);