ACN-Coding-Test · fiq265 · Nov 6, 2022 · Nov 6, 2022 · Nov 6, 2022 · Nov 7, 2022
diff --git a/app/Helpers/GeneralHelper.php b/app/Helpers/GeneralHelper.php
@@ -0,0 +1,12 @@
+<?php
+
+use Illuminate\Support\Facades\Auth;
+
+if (! function_exists('getRole')) {
+
+    function getRole()
+    {
+        return Auth::user()->role;
+    }
+
+}
diff --git a/app/Http/Controllers/Api/AuthController.php b/app/Http/Controllers/Api/AuthController.php
@@ -0,0 +1,86 @@
+<?php
+
+namespace App\Http\Controllers\Api;
+
+use App\Http\Requests\RegisterUserRequest;
+use App\Http\Requests\LoginUserRequest;
+use App\Http\Controllers\Controller;
+use Illuminate\Support\Facades\Hash;
+use Illuminate\Http\Request;
+use App\Models\User;
+use Exception;
+use Auth;
+use DB;
+
+class AuthController extends Controller
+{
+    public function register(RegisterUserRequest $request)
+    { 
+        DB::beginTransaction();
+
+        $roles = ['ADMIN', 'PRODUCT_OWNER', 'MEMBER'];
+
+        try {
+
+            if(in_array($request->role, $roles) == false){
+                return response()->json([
+                    'status' => 401,
+                    'message' => 'Only ADMIN, PRODUCT_OWNER and MEMBER role are allowed',
+                ], 401);
+            }
+
+            $user = User::create([
+                'username'  => $request->username,
+                'password'  => Hash::make($request->password),
+                'role'      => $request->role
+            ]);
+
+            DB::commit();
+
+            return response()->json([
+                'status'    => 200,
+                'message'   => 'User Successfully Created',
+                'token'     => $user->createToken($request->username)->plainTextToken
+            ], 200);
+
+        } catch (Exception $e) {
+
+            DB::rollBack();
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+
+    public function login(LoginUserRequest $request)
+    {
+        try {
+
+            if(!Auth::attempt($request->only(['username', 'password']))){
+                return response()->json([
+                    'status' => 401,
+                    'message' => 'Username & Password does not match with our record.',
+                ], 401);
+            }
+
+            $user = User::where('username', $request->username)->first();
+
+            return response()->json([
+                'status' => 200,
+                'message' => 'User Successfully Logged In',
+                'token' => $user->createToken($request->username)->plainTextToken
+            ], 200);
+
+        } catch (Exception $e) {
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+}
diff --git a/app/Http/Controllers/Api/ProjectController.php b/app/Http/Controllers/Api/ProjectController.php
@@ -0,0 +1,182 @@
+<?php
+
+namespace App\Http\Controllers\Api;
+
+use App\Http\Requests\UpdateProjectRequest;
+use App\Http\Requests\StoreProjectRequest;
+use App\Http\Controllers\Controller;
+use Illuminate\Http\Request;
+use App\Models\Project;
+use App\Models\Task;
+use Exception;
+use Auth;
+use DB;
+
+class ProjectController extends Controller
+{
+    public function index(Request $request)
+    {
+        try {
+
+            $search = $request->q ?? null;
+            $pageIndex = $request->pageIndex ?? 0;
+            $pageSize = $request->pageSize ?? 3;
+            $sortBy = $request->sortBy ?? 'name';
+            $sortDirection = $request->sortDirection ?? 'ASC';
+
+            $projects = Project::where( 'name', 'LIKE', '%' . $search . '%' )
+                            ->skip($pageIndex*$pageSize)
+                            ->take($pageSize)
+                            ->orderBy($sortBy, $sortDirection)
+                            ->get();
+
+            return response()->json([
+                'status' => 200,
+                'message' => 'Project List Successfully Retrieved',
+                'data' => $projects->toArray()
+            ], 200);
+
+        } catch (Exception $e) {
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+
+    public function store(StoreProjectRequest $request)
+    {
+        DB::beginTransaction();
+
+        try {
+
+            if(getRole() != 'PRODUCT_OWNER'){
+                return response()->json([
+                    'status' => 401,
+                    'message' => 'you do not have permission to access this API',
+                ], 401);
+            }
+
+            $project = Project::create([
+                'name' => $request->name,
+            ]);
+
+            DB::commit();
+
+            return response()->json([
+                'status'    => 200,
+                'message'   => 'Project Successfully Created',
+                'data'      => $project->toArray()
+            ], 200);
+
+        } catch (Exception $e) {
+
+            DB::rollBack();
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+
+    public function show(Project $project)
+    {
+        try { 
+
+            return response()->json([
+                'status' => 200,
+                'message' => 'Project Successfully Retrieved',
+                'data' => $project->toArray()
+            ], 200);
+
+        } catch (Exception $e) {
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+
+    public function update(UpdateProjectRequest $request, Project $project)
+    { 
+        DB::beginTransaction();
+
+        try {
+
+            if(getRole() != 'PRODUCT_OWNER'){
+                return response()->json([
+                    'status' => 401,
+                    'message' => 'you do not have permission to access this API',
+                ], 401);
+            }
+
+            $project->name = $request->name;
+            $project->save();
+
+            DB::commit();
+
+            return response()->json([
+                'status'    => 200,
+                'message'   => 'Project Successfully Updated',
+            ], 200);
+
+        } catch (Exception $e) {
+
+            DB::rollBack();
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+
+    public function destroy(Project $project)
+    {
+        DB::beginTransaction();
+
+        try {
+
+            if(getRole() != 'PRODUCT_OWNER'){
+                return response()->json([
+                    'status' => 401,
+                    'message' => 'you do not have permission to access this API',
+                ], 401);
+            }
+
+            $tasks = Task::where('project_id', $project->id)->get();
+
+            if(!empty($tasks->toArray())){
+                foreach($tasks as $task){
+                    $task->delete();
+                }  
+            }
+
+            $project->delete();
+
+            DB::commit();
+
+            return response()->json([
+                'status'    => 200,
+                'message'   => 'Project Successfully Deleted',
+            ], 200);
+
+        } catch (Exception $e) {
+
+            DB::rollBack();
+
+            return response()->json([
+                'status' => 500,
+                'message' => $e->getMessage()
+            ], 500);
+
+        }
+    }
+}