vuminh224/hackathon
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

athlete test

Browse Source
This commit is contained in:
tuanvu
2026-01-08 11:34:13 +01:00
parent 6c2ae936ac
commit f77b401628
2 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
back_end/src/main/java/hackathon/FrisbYEE/config/WebSecurityConfig.java
View File

@@ -26,7 +26,7 @@ public class WebSecurityConfig {
.cors(cors -> cors.configurationSource(corsConfigurationSource())) .cors(cors -> cors.configurationSource(corsConfigurationSource()))
.csrf(csrf -> csrf.disable()) .csrf(csrf -> csrf.disable())
.authorizeHttpRequests(auth -> auth .authorizeHttpRequests(auth -> auth
.requestMatchers(HttpMethod.OPTIONS, "/", "/public", "/coach/**").permitAll() // allow coach endpoints .requestMatchers(HttpMethod.OPTIONS, "/", "/public", "/coach/**","/athlete/**").permitAll() // allow coach endpoints
.requestMatchers("/admin/**").hasRole("admin") .requestMatchers("/admin/**").hasRole("admin")
.requestMatchers("/user/**").hasRole("user") .requestMatchers("/user/**").hasRole("user")
.anyRequest().authenticated()) .anyRequest().authenticated())

2
back_end/src/main/java/hackathon/FrisbYEE/rest/AthleteResource.java
View File

@@ -34,6 +34,7 @@ import io.swagger.v3.oas.annotations.responses.ApiResponses;
@RestController @RestController
@RequestMapping("/athlete") @RequestMapping("/athlete")
@CrossOrigin(origins = "http://localhost:3000")
public class AthleteResource { public class AthleteResource {
@Autowired @Autowired
private AthleteDAO athleteDAO; private AthleteDAO athleteDAO;
@@ -44,6 +45,7 @@ public class AthleteResource {
@ApiResponse(responseCode = "200", description = "Renvoie l'athlète créé", content = @Content(mediaType = "application/json", schema = @Schema(implementation = AthleteDTO.class))) @ApiResponse(responseCode = "200", description = "Renvoie l'athlète créé", content = @Content(mediaType = "application/json", schema = @Schema(implementation = AthleteDTO.class)))
}) })
@PostMapping("/create") @PostMapping("/create")
@PreAuthorize("hasRole('Admin') or hasRole('Coach') or hasRole('Athlete')")
public ResponseEntity<AthleteDTO> create(@RequestBody AthleteDTO dto) { public ResponseEntity<AthleteDTO> create(@RequestBody AthleteDTO dto) {
Athlete athlete = mapToEntity(dto); Athlete athlete = mapToEntity(dto);
athleteDAO.save(athlete); athleteDAO.save(athlete);