108 lines
2.8 KiB
Go
108 lines
2.8 KiB
Go
package report
|
|
|
|
import (
|
|
"encoding/json"
|
|
"net/http"
|
|
"strconv"
|
|
|
|
"epigas.gitea.cloud/RiskRancher/core/pkg/auth"
|
|
domain2 "epigas.gitea.cloud/RiskRancher/core/pkg/domain"
|
|
)
|
|
|
|
func (h *Handler) HandleSaveDraft(w http.ResponseWriter, r *http.Request) {
|
|
reportID := r.PathValue("id")
|
|
|
|
var draft domain2.DraftTicket
|
|
if err := json.NewDecoder(r.Body).Decode(&draft); err != nil {
|
|
http.Error(w, "Invalid JSON", http.StatusBadRequest)
|
|
return
|
|
}
|
|
draft.ReportID = reportID
|
|
|
|
if err := h.Store.SaveDraft(r.Context(), draft); err != nil {
|
|
http.Error(w, "DB Error: "+err.Error(), http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
w.WriteHeader(http.StatusCreated)
|
|
}
|
|
|
|
func (h *Handler) HandleGetDrafts(w http.ResponseWriter, r *http.Request) {
|
|
reportID := r.PathValue("id")
|
|
|
|
drafts, err := h.Store.GetDraftsByReport(r.Context(), reportID)
|
|
if err != nil {
|
|
http.Error(w, "Failed to get drafts", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
json.NewEncoder(w).Encode(drafts)
|
|
}
|
|
|
|
func (h *Handler) HandleDeleteDraft(w http.ResponseWriter, r *http.Request) {
|
|
draftID := r.PathValue("draft_id")
|
|
|
|
if err := h.Store.DeleteDraft(r.Context(), draftID); err != nil {
|
|
http.Error(w, "Failed to delete draft", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
w.WriteHeader(http.StatusOK)
|
|
}
|
|
|
|
func (h *Handler) HandlePromoteDrafts(w http.ResponseWriter, r *http.Request) {
|
|
reportIDStr := r.PathValue("id")
|
|
if reportIDStr == "" {
|
|
http.Error(w, "Invalid Report ID", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
userIDVal := r.Context().Value(auth.UserIDKey)
|
|
if userIDVal == nil {
|
|
http.Error(w, "Unauthorized", http.StatusUnauthorized)
|
|
return
|
|
}
|
|
|
|
user, err := h.Store.GetUserByID(r.Context(), userIDVal.(int))
|
|
if err != nil {
|
|
http.Error(w, "Failed to identify user", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
analystEmail := user.Email
|
|
|
|
var payload []domain2.Ticket
|
|
if err := json.NewDecoder(r.Body).Decode(&payload); err != nil {
|
|
http.Error(w, "Invalid JSON payload", http.StatusBadRequest)
|
|
return
|
|
}
|
|
if err := h.Store.PromotePentestDrafts(r.Context(), reportIDStr, analystEmail, payload); err != nil {
|
|
http.Error(w, "Database error during promotion: "+err.Error(), http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
w.WriteHeader(http.StatusCreated)
|
|
}
|
|
|
|
func (h *Handler) HandleUpdateDraft(w http.ResponseWriter, r *http.Request) {
|
|
idStr := r.PathValue("id")
|
|
draftID, err := strconv.Atoi(idStr)
|
|
if err != nil {
|
|
http.Error(w, "Invalid draft ID", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
var payload domain2.Ticket
|
|
if err := json.NewDecoder(r.Body).Decode(&payload); err != nil {
|
|
http.Error(w, "Invalid JSON", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
if err := h.Store.UpdateDraft(r.Context(), draftID, payload); err != nil {
|
|
http.Error(w, "Failed to auto-save draft", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
w.WriteHeader(http.StatusOK)
|
|
}
|