[30/8/22] add router /admin/delete-permanently:id

Author: ockibagusp

controllers/admin_controller.go

@@ -3,6 +3,7 @@ package controllers
 import (
 	"fmt"
 	"net/http"
+	"strconv"
 
 	"github.com/labstack/echo/v4"
 	"github.com/ockibagusp/golang-website-example/middleware"
@@ -48,28 +49,28 @@ func (controller *Controller) DeletePermanently(c echo.Context) error {
 	)
 
 	if c.QueryParam("admin") == "all" {
-		log.Infof(`for GET to admin delete permanently: admin models.User{}.FindAll(db, "admin")`)
+		log.Infof(`for GET to admin delete permanently: admin models.User{}.FindDeleteAll(db, "admin")`)
 		typing = "Admin"
-		users, err = models.User{}.FindAll(controller.DB, "admin")
+		users, err = models.User{}.FindDeleteAll(controller.DB, "admin")
 	} else if c.QueryParam("user") == "all" {
-		log.Infof(`for GET to admin delete permanently: user models.User{}.FindAll(db, "user")`)
+		log.Infof(`for GET to admin delete permanently: user models.User{}.FindDeleteAll(db, "user")`)
 		typing = "User"
-		users, err = models.User{}.FindAll(controller.DB, "user")
+		users, err = models.User{}.FindDeleteAll(controller.DB, "user")
 	} else {
-		log.Infof(`for GET to admin delete permanently: models.User{}.FindAll(db) or models.User{}.FindAll(db, "all")`)
+		log.Infof(`for GET to admin delete permanently: models.User{}.FindDeleteAll(db) or models.User{}.FindDeleteAll(db, "all")`)
 		typing = "All"
 		// models.User{} or (models.User{}) or var user models.User or user := models.User{}
-		users, err = models.User{}.FindAll(controller.DB)
+		users, err = models.User{}.FindDeleteAll(controller.DB)
 	}
 
 	if err != nil {
-		log.Warnf("for GET to admin delete permanently without models.User{}.FindAll() errors: `%v`", err)
+		log.Warnf("for GET to admin delete permanently without models.User{}.FindDeleteAll() errors: `%v`", err)
 		log.Warn("END request method GET for admin delete permanently: [-]failure")
 		// HTTP response status: 404 Not Found
 		return c.HTML(http.StatusNotFound, err.Error())
 	}
 
-	log.Info("END request method GET for users: [+]success")
+	log.Info("END request method GET to admin delete permanently: [+]success")
 	return c.Render(http.StatusOK, "admin/admin-delete-permanently.html", echo.Map{
 		"name":    fmt.Sprintf("Users: %v", typing),
 		"nav":     "users", // (?)
@@ -90,3 +91,62 @@ func (controller *Controller) DeletePermanently(c echo.Context) error {
 		"users": users,
 	})
 }
+
+/*
+ * Delete Permanently By ID
+ *
+ * @target: [Admin] Delete Permanently By ID
+ * @method: GET
+ * @route: /admin/delete-permanently/:id
+ */
+func (controller *Controller) DeletePermanentlyByID(c echo.Context) error {
+	session, _ := middleware.GetAuth(c)
+	log := log.WithFields(log.Fields{
+		"username": session.Values["username"],
+		"route":    c.Path(),
+	})
+	log.Info("START request method GET for admin delete permanently by id")
+
+	is_auth_type := session.Values["is_auth_type"]
+	if is_auth_type == -1 {
+		log.Warn("for GET to admin delete permanently by id without no-session [@route: /login]")
+		middleware.SetFlashError(c, "login process failed!")
+		log.Warn("END request method GET for admin delete permanently by id: [-]failure")
+		return c.Redirect(http.StatusFound, "/login")
+	}
+
+	id, _ := strconv.Atoi(c.Param("id"))
+
+	// why?
+	// delete permanently not for admin
+	if id == 1 {
+		log.Warn("END request method GET for admin delete permanently by id [admin]: [-]failure")
+		// HTTP response status: 403 Forbidden
+		return c.HTML(http.StatusForbidden, "403 Forbidden")
+	}
+
+	if !middleware.IsAdmin(is_auth_type) {
+		log.Warn("END request method GET for admin delete permanently by id: [-]failure")
+		// HTTP response status: 404 Not Found
+		return c.HTML(http.StatusNotFound, "404 Not Found")
+	}
+
+	user, err := (models.User{}).UnscopedFirstUserByID(controller.DB, id)
+	if err != nil {
+		log.Warnf("for GET to admin delete permanently by id without models.User{}.FirstByID() errors: `%v`", err)
+		log.Warn("END request method GET for admin delete permanently by id: [-]failure")
+		// HTTP response status: 404 Not Found
+		return c.HTML(http.StatusNotFound, err.Error())
+	}
+
+	if err := user.DeletePermanently(controller.DB, id); err != nil {
+		log.Warnf("for GET to admin delete permanently by id without models.User{}.Delete() errors: `%v`", err)
+		log.Warn("END request method GET for admin delete permanently by id: [-]failure")
+		// HTTP response status: 403 Forbidden
+		return c.HTML(http.StatusForbidden, err.Error())
+	}
+
+	// delete permanently admin
+	log.Info("END request method GET for admin delete permanently by id: [+]success")
+	return c.Redirect(http.StatusMovedPermanently, "/admin/delete-permanently")
+}

models/user.go

@@ -80,14 +80,27 @@ func (user User) Save(db *gorm.DB) (*User, error) {
 // User: FirstUserByID
 func (user User) FirstUserByID(db *gorm.DB, id int) (*User, error) {
 	err := db.First(&user, id).Error
+
+	return isFirstUserByID(&user, err)
+}
+
+// User: UnscopedFirstUserByID
+func (user User) UnscopedFirstUserByID(db *gorm.DB, id int) (*User, error) {
+	err := db.Unscoped().First(&user, id).Error
+
+	return isFirstUserByID(&user, err)
+}
+
+// User: isFirstUserByID
+func isFirstUserByID(user *User, err error) (*User, error) {
 	if err != nil {
 		if errors.Is(err, gorm.ErrRecordNotFound) {
 			return nil, errors.New("User Not Found")
 		}
 		return nil, err
 	}
 
-	return &user, nil
+	return user, nil
 }
 
 // User: FirstByIDAndUsername
@@ -178,6 +191,52 @@ func (user User) Delete(db *gorm.DB, id int) error {
 	return nil
 }
 
+// User: FindDeleteAll(db, admin_or_user={admin, user})
+func (user User) FindDeleteAll(db *gorm.DB, admin_or_user ...string) ([]User, error) {
+	users := []User{}
+
+	var err error
+
+	// same,
+	// if len(admin_or_user) == 0 || len(admin_or_user) == 1 && admin_or_user[0] == "all" {...}
+	if user.isAll(&admin_or_user) {
+		// Limit: 25 ?
+		err = db.Limit(25).Unscoped().Where("deleted_at is not null").Find(&users).Error
+	} else if user.isAdmin(&admin_or_user) {
+		err = db.Limit(25).Unscoped().Where("is_admin = 1 AND deleted_at is not null").Find(&users).Error
+	} else if user.isUser(&admin_or_user) {
+		err = db.Limit(25).Unscoped().Where("is_admin = 0 AND deleted_at is not null").Find(&users).Error
+	} else { // admin_or_user agrs [2,..]=string
+		return nil, errors.New(`models.User{}.FindDeleteAll: admin_or_user agrs [2]{"admin", "user"}=string`)
+	}
+
+	if err != nil {
+		return nil, err
+	}
+
+	return users, nil
+}
+
+// User: Delete Permanently
+func (user User) DeletePermanently(db *gorm.DB, id int) error {
+	tx := db.Begin()
+	var count int64
+	// if tx.Unscoped().Select("id").First(&user).Error != nil {}
+	if tx.Unscoped().Select("id").First(&user).Count(&count); count != 1 {
+		tx.Rollback()
+		return errors.New("User Not Found")
+	}
+
+	// if tx.Unscoped().Delete(&user, id).Error != nil {}
+	if err := tx.Unscoped().Delete(&user, id).Error; err != nil {
+		tx.Rollback()
+		return err
+	}
+	tx.Commit()
+
+	return nil
+}
+
 // is? all, admin or user?
 func (User) isAll(admin_or_user *[]string) bool {
 	return len(*admin_or_user) == 0 || len(*admin_or_user) == 1 && (*admin_or_user)[0] == "all"

router/router.go

@@ -69,6 +69,8 @@ func New(controllers *controllers.Controller) (router *echo.Echo) {
 	// admin
 	router.GET("/admin/delete-permanently", controllers.DeletePermanently).
 		Name = "/admin/delete-permanently get"
+	router.GET("/admin/delete-permanently/:id", controllers.DeletePermanentlyByID).
+		Name = "/admin/delete-permanently:id get"
 
 	return
 }