fix(users): solve problems with update partials

Author: sergio11

src/main/java/config/SecurityWebApplicationInitializer.java

@@ -11,6 +11,4 @@
  *
  * @author sergio
  */
-public class SecurityWebApplicationInitializer extends AbstractSecurityWebApplicationInitializer {
-    
-}
+public class SecurityWebApplicationInitializer extends AbstractSecurityWebApplicationInitializer {}

src/main/java/controllers/admin/SelfUserController.java

@@ -0,0 +1,99 @@
+/*
+ * To change this license header, choose License Headers in Project Properties.
+ * To change this template file, choose Tools | Templates
+ * and open the template in the editor.
+ */
+package controllers.admin;
+
+import exceptions.UserAlredyExistsException;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Locale;
+import models.User;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.support.ReloadableResourceBundleMessageSource;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.validation.BindingResult;
+import org.springframework.validation.annotation.Validated;
+import org.springframework.web.bind.WebDataBinder;
+import org.springframework.web.bind.annotation.InitBinder;
+import org.springframework.web.bind.annotation.ModelAttribute;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.SessionAttributes;
+import org.springframework.web.bind.support.SessionStatus;
+import org.springframework.web.servlet.mvc.support.RedirectAttributes;
+import services.UserService;
+import services.security.CurrentUser;
+
+/**
+ *
+ * @author sergio
+ */
+@Controller
+@RequestMapping("/admin/users/self")
+@SessionAttributes({SelfUserController.ATTRIBUTE_NAME})
+public class SelfUserController {
+    
+    private static Logger logger = LoggerFactory.getLogger(SelfUserController.class);
+    
+    public static final String ATTRIBUTE_NAME = "user";
+    public static final String BINDING_RESULT_NAME = "org.springframework.validation.BindingResult." + ATTRIBUTE_NAME;
+    
+    @Autowired
+    private UserService userService;
+    @Autowired
+    private ReloadableResourceBundleMessageSource messageSource;
+    
+
+    @InitBinder
+    void allowFields(WebDataBinder webDataBinder){
+        webDataBinder.setAllowedFields("username", "email", "fullName");
+    }
+    
+    @RequestMapping(method = RequestMethod.GET)
+    public String self(@CurrentUser User user, Model model) {
+
+        /* if "fresh" GET (ie, not redirect w validation errors): */
+        if(!model.containsAttribute(BINDING_RESULT_NAME)) {
+            model.addAttribute(ATTRIBUTE_NAME, user);
+        }
+        return "admin/user/self";
+    }
+    
+    @RequestMapping(method = RequestMethod.POST)
+    public String self(
+        // @ModelAttribute will load User from session but also set values from the form post
+       @Validated(User.UserUpdate.class) @ModelAttribute(ATTRIBUTE_NAME) User user,
+       BindingResult bindingResult, 
+       RedirectAttributes redirectAttributes,
+       // SessionStatus lets you clear your SessionAttributes
+       SessionStatus sessionStatus
+    ){
+        
+        logger.info("Usuario a actualizar: " + user.toString());
+        if(!bindingResult.hasErrors()) {
+            try {
+                userService.update(user);
+            } catch(UserAlredyExistsException e){
+                bindingResult.rejectValue("email", "user.exists");
+            }
+        }
+        
+        if(bindingResult.hasErrors()) {
+            //put the validation errors in Flash session and redirect to self
+            redirectAttributes.addFlashAttribute(BINDING_RESULT_NAME, bindingResult);
+            return "redirect:/admin/users/self";
+        }
+        
+        sessionStatus.setComplete(); //remove user from session
+
+        List<String> successMessages = new ArrayList();
+        successMessages.add(messageSource.getMessage("message.profile.save.success", new Object[]{ }, Locale.getDefault()));
+        redirectAttributes.addFlashAttribute("successFlashMessages", successMessages);
+        return "redirect:/admin/users/self";
+    }
+}

src/main/java/controllers/admin/SignupController.java

@@ -26,6 +26,7 @@
 import services.UserService;
 import java.util.List;
 import java.util.ArrayList;
+import org.springframework.validation.annotation.Validated;
 /**
  *
  * @author sergio
@@ -50,7 +51,7 @@ public String showSignupForm(Model model){
     }
 
     @PostMapping("/signup")
-    public String processSignup(@ModelAttribute @Valid User user, Errors errors, RedirectAttributes model){
+    public String processSignup(@Validated(User.UserCreation.class) @ModelAttribute User user, Errors errors, RedirectAttributes model){
         String viewName = "admin/signup";
         if(!errors.hasErrors()){
             try {

src/main/java/controllers/admin/UsersController.java

@@ -5,24 +5,14 @@
  */
 package controllers.admin;
 
-import exceptions.UserAlredyExistsException;
-import java.util.ArrayList;
 import java.util.List;
-import java.util.Locale;
-import javax.validation.Valid;
 import models.User;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.support.ReloadableResourceBundleMessageSource;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
-import org.springframework.validation.Errors;
 import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.ModelAttribute;
-import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.servlet.mvc.support.RedirectAttributes;
 import services.UserService;
-import services.security.CurrentUser;
 
 /**
  *
@@ -34,31 +24,6 @@ public class UsersController {
 
     @Autowired
     private UserService userService;
-    @Autowired
-    private ReloadableResourceBundleMessageSource messageSource;
-    
-    @GetMapping("/self")
-    public String self(@CurrentUser User activeUser, Model model){
-        model.addAttribute("user", activeUser);
-        return "admin/user/self";
-    }
-    
-    @PostMapping("/self")
-    public String self(@ModelAttribute @Valid User user, Errors errors, RedirectAttributes model){
-        String viewName = "admin/user/self";
-        if(!errors.hasErrors()){
-            try{
-                userService.update(user);
-                List<String> successMessages = new ArrayList();
-                successMessages.add(messageSource.getMessage("message.profile.save.success", new Object[]{ }, Locale.getDefault()));
-                model.addFlashAttribute("successFlashMessages", successMessages);
-                viewName = "redirect:/admin/user/self";
-            }catch(UserAlredyExistsException e){
-                errors.rejectValue("email", "user.exists");
-            }
-        }
-        return viewName;
-    }
 
     @GetMapping("/all")
     public String all(Model model){

src/main/java/handlers/CustomLoginSuccessHandler.java

@@ -56,5 +56,4 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
             super.onAuthenticationSuccess(request, response, authentication);
         }
     }
-    
 }

src/main/java/models/User.java

@@ -28,37 +28,42 @@
 @Table(name = "users")
 @FieldMatch(first = "passwordClear", second = "confirmPassword", message = "{user.pass.not.match}")
 public class User implements Serializable, UserDetails {
+    
+    /* Marker interface for grouping validations to be applied at the time of creating a (new) user. */
+    public interface UserCreation{}
+    /* Marker interface for grouping validations to be applied at the time of updating a (existing) user. */
+    public interface UserUpdate{}
 
     @Id
     @GeneratedValue(strategy = GenerationType.IDENTITY)
     private Long id;
 
-    @NotBlank(message="{user.username.notnull}")
-    @Size(min=5, max=15, message="{user.username.size}")
+    @NotBlank(message="{user.username.notnull}", groups={ UserCreation.class, UserUpdate.class })
+    @Size(min=5, max=15, message="{user.username.size}", groups={ UserCreation.class, UserUpdate.class })
     @Column(nullable = false, length = 30, unique = true)
     private String username;
 
-    @NotBlank(message="{user.pass.notnull}")
-    @Size(min=8, max=25, message="{user.pass.size}")
+    @NotBlank(message="{user.pass.notnull}", groups={ UserCreation.class })
+    @Size(min=8, max=25, message="{user.pass.size}", groups={ UserCreation.class })
     @Transient
     private String passwordClear;
 
-    @NotBlank(message="{user.confirm.pass.notnull}")
+    @NotBlank(message="{user.confirm.pass.notnull}", groups={ UserCreation.class })
     @Transient
     private String confirmPassword;
 
     @Column(length = 60)
     private String password;
 
-    @NotBlank(message="{user.email.notnull}")
-    @Email(message="{user.email.invalid}")
+    @NotBlank(message="{user.email.notnull}", groups={ UserCreation.class, UserUpdate.class })
+    @Email(message="{user.email.invalid}", groups={ UserCreation.class, UserUpdate.class })
     @Column(nullable = false, length = 90, unique = true)
     private String email;
 
     private Boolean enabled = true;
 
-    @NotBlank(message="{user.fullname.notnull}")
-    @Size(min=8, max=25, message="{user.fullname.size}")
+    @NotBlank(message="{user.fullname.notnull}", groups={ UserCreation.class, UserUpdate.class })
+    @Size(min=8, max=25, message="{user.fullname.size}", groups={ UserCreation.class, UserUpdate.class })
     @Column(length = 100)
     private String fullName;
 
@@ -75,6 +80,7 @@ public class User implements Serializable, UserDetails {
       joinColumns=@JoinColumn(name="USER_ID", referencedColumnName="ID"),
       inverseJoinColumns=@JoinColumn(name="ROLE_ID", referencedColumnName="ID"))
     private Set<Role> roles = new HashSet();
+   
 
     public User() {}
 

src/main/java/repositories/UserRepository.java

@@ -13,6 +13,8 @@ public interface UserRepository extends JpaRepository<User, Long> {
     User findByUsername(String username);
     @Query("SELECT COUNT(u.id) FROM User u WHERE u.email=:email OR u.username=:username")
     Long existsUserWithEmailOrUsername(@Param("email") String email, @Param("username") String username);
+    @Query("SELECT COUNT(u.id) FROM User u WHERE u.id!=:id AND (u.email=:email OR u.username=:username)")
+    Long existsUserWithEmailOrUsernameAndNotId(@Param("email") String email, @Param("username") String username, @Param("id") Long id);
     @Modifying(clearAutomatically = true)
     @Query("update User user set user.lastLoginAccess =:lastLoginAccess where user.username =:username")
     @Transactional

src/main/java/services/UserServiceImpl.java

@@ -23,6 +23,7 @@
  * @author sergio
  */
 @Service
+@Transactional
 public class UserServiceImpl implements UserService {
 
     private static Logger logger = LoggerFactory.getLogger(UserServiceImpl.class);
@@ -31,7 +32,6 @@ public class UserServiceImpl implements UserService {
     @Autowired
     private PasswordEncoder passwordEncoder;
 
-    @Transactional
     @Override
     public void create(User user) throws UserAlredyExistsException {
         logger.debug("Registrando nuevo usuario: " + user.getUsername());
@@ -42,10 +42,9 @@ public void create(User user) throws UserAlredyExistsException {
         userRepository.save(user);
     }
 
-    @Transactional
     @Override
     public void update(User user) throws UserAlredyExistsException {
-        if (userRepository.existsUserWithEmailOrUsername(user.getEmail(), user.getUsername()) > 0){   
+        if (userRepository.existsUserWithEmailOrUsernameAndNotId(user.getEmail(), user.getUsername(), user.getId()) > 0){   
             throw new UserAlredyExistsException(user.getEmail(), user.getUsername());
         }
         userRepository.save(user);

src/main/webapp/WEB-INF/templates/admin/fragment/alerts.html

@@ -11,5 +11,10 @@
                 <li th:each="err: ${#fields.errors('*')}" th:text="${err}">Input is incorrect</li>
             </ul>
         </div>
+        <div th:fragment="flash-message" th:if="${not #lists.isEmpty(successFlashMessages)}" class="alert alert-success">
+            <ul>
+                <li th:each="message:${successFlashMessages}" th:text="${message}"></li>
+            </ul>
+        </div>
     </body>
 </html>

src/main/webapp/WEB-INF/templates/admin/fragment/post.html

@@ -8,6 +8,7 @@
     <body>
         <form th:fragment="form(target, delete)" accept-charset="UTF-8" enctype="multipart/form-data" id="postForm" name="postForm" method="post" action="#" th:action="${target}" th:object="${post}">
             <th:block th:replace="admin/fragment/alerts::form-errors"></th:block>
+            <th:block th:replace="admin/fragment/alerts::flash-message"></th:block>
             <div class="row control-group">
                 <div class="form-group col-xs-12 floating-label-form-group controls">
                     <label th:text="#{form.post.title.label}">Title</label>