Api endpoints

Gemfile

@@ -44,13 +44,20 @@ gem 'tzinfo-data'
 # Reduces boot times through caching; required in config/boot.rb
 gem 'bootsnap', require: false
 
+gem 'devise'
+
+gem 'cancancan'
+
+gem 'jwt'
+
 # Use Sass to process CSS
 # gem "sassc-rails"
 
 # Use Active Storage variants [https://guides.rubyonrails.org/active_storage_overview.html#transforming-images]
 # gem "image_processing", "~> 1.2"
 
-gem 'ffi'
+gem 'ffi', github: 'ffi/ffi', submodules: true
+
 group :development, :test do
   # See https://guides.rubyonrails.org/debugging_rails_applications.html#debugging-with-the-debug-gem
   gem 'rails-controller-testing'

Gemfile.lock

@@ -1,3 +1,10 @@
+GIT
+  remote: https://github.com/ffi/ffi.git
+  revision: 07a1c0c028942f786b80f48206795a8fa6b0e8f5
+  submodules: true
+  specs:
+    ffi (1.15.5)
+
 GEM
   remote: https://rubygems.org/
   specs:
@@ -69,13 +76,15 @@ GEM
     addressable (2.8.0)
       public_suffix (>= 2.0.2, < 5.0)
     ast (2.4.2)
+    bcrypt (3.1.18)
     bindex (0.8.1)
     bootsnap (1.12.0)
       msgpack (~> 1.2)
     builder (3.2.4)
     bullet (7.0.2)
       activesupport (>= 3.0.0)
       uniform_notifier (~> 1.11)
+    cancancan (3.4.0)
     capybara (3.37.1)
       addressable
       matrix
@@ -88,11 +97,15 @@ GEM
     childprocess (4.1.0)
     concurrent-ruby (1.1.10)
     crass (1.0.6)
+    devise (4.8.1)
+      bcrypt (~> 3.0)
+      orm_adapter (~> 0.1)
+      railties (>= 4.1.0)
+      responders
+      warden (~> 1.2.3)
     diff-lcs (1.5.0)
     digest (3.1.0)
     erubi (1.10.0)
-    ffi (1.15.5)
-    ffi (1.15.5-x64-mingw-ucrt)
     globalid (1.0.0)
       activesupport (>= 5.0)
     i18n (1.12.0)
@@ -104,6 +117,7 @@ GEM
       actionview (>= 5.0.0)
       activesupport (>= 5.0.0)
     json (2.6.2)
+    jwt (2.4.1)
     loofah (2.18.0)
       crass (~> 1.0.2)
       nokogiri (>= 1.5.9)
@@ -134,8 +148,9 @@ GEM
       racc (~> 1.4)
     nokogiri (1.13.7-x64-mingw-ucrt)
       racc (~> 1.4)
-    nokogiri (1.13.7-x86_64-linux)
+    nokogiri (1.13.7-x86_64-darwin)
       racc (~> 1.4)
+    orm_adapter (0.5.0)
     parallel (1.22.1)
     parser (3.1.2.0)
       ast (~> 2.4.1)
@@ -181,6 +196,9 @@ GEM
     rainbow (3.1.1)
     rake (13.0.6)
     regexp_parser (2.5.0)
+    responders (3.0.1)
+      actionpack (>= 5.0)
+      railties (>= 5.0)
     rexml (3.2.5)
     rspec-core (3.11.0)
       rspec-support (~> 3.11.0)
@@ -240,6 +258,8 @@ GEM
       tzinfo (>= 1.0.0)
     unicode-display_width (2.2.0)
     uniform_notifier (1.16.0)
+    warden (1.2.9)
+      rack (>= 2.0.9)
     web-console (4.2.0)
       actionview (>= 6.0.0)
       activemodel (>= 6.0.0)
@@ -260,15 +280,18 @@ GEM
 PLATFORMS
   arm64-darwin-21
   x64-mingw-ucrt
-  x86_64-linux
+  x86_64-darwin-21
 
 DEPENDENCIES
   bootsnap
   bullet
+  cancancan
   capybara
-  ffi
+  devise
+  ffi!
   importmap-rails
   jbuilder
+  jwt
   pg (~> 1.1)
   puma (~> 5.0)
   rails (~> 7.0.3)

README.md

@@ -173,6 +173,12 @@ This project is build with:
 - Twitter: [@Evans_22J](https://twitter.com/Evans_22J)
 - LinkedIn: [@Evans Sitibekiso](https://www.linkedin.com/in/evans-sitibekiso/)
 
+👤 **Edward Odhiambo**
+
+- GitHub: [@whit3d](https://github.com/white3d)
+- Twitter: [@odhiambo_ed](https://twitter.com/odhiambo_ed)
+- LinkedIn: [Edward Odhiambo](https://www.linkedin.com/in/edward-odhiambo-6a462a21b/)
+
 ## 🤝 Contributor
 
 

app/assets/stylesheets/user_style.css

@@ -153,8 +153,6 @@ a {
   display: flex;
   justify-content: center;
   align-items: center;
-
-  /* text-align: center; */
 }
 
 .text-button {

app/controllers/api/v1/api_controller.rb

@@ -0,0 +1,10 @@
+class Api::V1::PostsController < ApplicationController
+  def index
+    @posts = Post.where(author_id: params[:author_id])
+    if @posts.empty?
+      json_response({ msg: 'no post or user found' }, 400)
+    else
+      render json: @posts
+    end
+  end
+end

app/controllers/api/v1/comments_controller.rb

@@ -0,0 +1,30 @@
+class Api::V1::CommentsController < ApplicationController
+  before_action :authorize_request
+  protect_from_forgery with: :null_session
+
+  def index
+    @comments = Comment.where(post_id: params[:post_id])
+
+    if @comments.empty?
+      json_response({ msg: 'No post, comments or user found' }, 400)
+    else
+      render json: @comments
+    end
+  end
+
+  def create
+    @comment = Comment.create(
+      text: comment_params[:text],
+      author_id: params[:author_id],
+      post_id: params[:post_id]
+    )
+
+    json_response(@comment, :created)
+  end
+
+  private
+
+  def comment_params
+    params.require(:comment).permit(:text)
+  end
+end

app/controllers/api/v1/posts_controller.rb

@@ -0,0 +1,11 @@
+class Api::V1::PostsController < ApplicationController
+  before_action :authorize_request
+  def index
+    @posts = Post.where(author_id: params[:author_id])
+    if @posts.empty?
+      json_response({ msg: 'no post or user found' }, 400)
+    else
+      render json: @posts
+    end
+  end
+end

app/controllers/api/v1/users_controller.rb

@@ -0,0 +1,7 @@
+class Api::V1::UsersController < ApplicationController
+  before_action :authorize_request
+  def index
+    @users = User.all
+    render json: @users, status: :ok
+  end
+end

app/controllers/application_controller.rb

@@ -1,5 +1,30 @@
 class ApplicationController < ActionController::Base
-  def current_user
-    User.first
+  include Response
+  include ExceptionHandler
+
+  before_action :authenticate_user!
+  protect_from_forgery with: :exception
+  before_action :update_allowed_parameters, if: :devise_controller?
+
+  protected
+
+  def update_allowed_parameters
+    devise_parameter_sanitizer.permit(:sign_up) do |field|
+      field.permit(:name, :photo, :bio, :posts_counter, :email, :password, :password_confirmation)
+    end
+  end
+
+  def authorize_request
+    header = request.headers['Auth']
+    header = header.split.last if header
+    begin
+      @decoded = JsonWebToken.decode(header)
+      p @decoded
+      @current_user = User.find(@decoded['id'])
+    rescue ActiveRecord::RecordNotFound => e
+      render json: { errors: e.message }, status: :unauthorized
+    rescue JWT::DecodeError => e
+      render json: { error: e.message }, status: :unauthorized
+    end
   end
 end

app/controllers/comments_controller.rb

@@ -1,4 +1,13 @@
 class CommentsController < ApplicationController
+  def index
+    @user = current_user
+    @comments = @user.comments
+
+    respond_to do |format|
+      format.json { render json: @comments }
+    end
+  end
+
   def new
     @comment = Comment.new
     @user = current_user
@@ -21,6 +30,12 @@ def create
     end
   end
 
+  def destroy
+    comment = Comment.find(params[:id])
+    comment.destroy
+    redirect_to user_post_url(current_user, comment.post), notice: 'Comment was successfully destroyed.'
+  end
+
   private
 
   def comment_params

app/controllers/concerns/exception_handler.rb

@@ -0,0 +1,14 @@
+module ExceptionHandler
+  # provides the more graceful `included` method
+  extend ActiveSupport::Concern
+
+  included do
+    rescue_from ActiveRecord::RecordNotFound do |e|
+      json_response({ message: e.message }, :not_found)
+    end
+
+    rescue_from ActiveRecord::RecordInvalid do |e|
+      json_response({ message: e.message }, :unprocessable_entity)
+    end
+  end
+end

app/controllers/concerns/response.rb

@@ -0,0 +1,5 @@
+module Response
+  def json_response(object, status = :ok)
+    render json: object, status:
+  end
+end