NimaBoscarino · Millington-Holi7 · Jul 23, 2024 · Jul 24, 2024 · Jul 24, 2024 · Jul 24, 2024
diff --git a/.ruby-version b/.ruby-version
@@ -0,0 +1 @@
+3.2.2
diff --git a/Gemfile b/Gemfile
@@ -15,6 +15,8 @@ gem "pg", "~> 1.1"
 # Use the Puma web server [https://github.com/puma/puma]
 gem "puma", ">= 5.0"
 
+gem 'rack-cors'
+
 # Use JavaScript with ESM import maps [https://github.com/rails/importmap-rails]
 # gem "importmap-rails"
 
@@ -34,7 +36,7 @@ gem "puma", ">= 5.0"
 # gem "kredis"
 
 # Use Active Model has_secure_password [https://guides.rubyonrails.org/active_model_basics.html#securepassword]
-# gem "bcrypt", "~> 3.1.7"
+gem "bcrypt", "~> 3.1.7"
 
 # Windows does not include zoneinfo files, so bundle the tzinfo-data gem
 gem "tzinfo-data", platforms: [:mingw, :mswin, :x64_mingw, :jruby]

diff --git a/Gemfile.lock b/Gemfile.lock
@@ -77,6 +77,7 @@ GEM
     addressable (2.8.5)
       public_suffix (>= 2.0.2, < 6.0)
     base64 (0.2.0)
+    bcrypt (3.1.20)
     bigdecimal (3.1.4)
     bootsnap (1.17.0)
       msgpack (~> 1.2)
@@ -132,6 +133,8 @@ GEM
     net-smtp (0.4.0)
       net-protocol
     nio4r (2.5.9)
+    nokogiri (1.15.4-arm64-darwin)
+      racc (~> 1.4)
     nokogiri (1.15.4-x86_64-linux)
       racc (~> 1.4)
     pg (1.5.4)
@@ -142,6 +145,8 @@ GEM
       nio4r (~> 2.0)
     racc (1.7.3)
     rack (3.0.8)
+    rack-cors (2.0.2)
+      rack (>= 2.0.0)
     rack-session (2.0.0)
       rack (>= 3.0.0)
     rack-test (2.1.0)
@@ -214,14 +219,17 @@ GEM
     zeitwerk (2.6.12)
 
 PLATFORMS
+  arm64-darwin-23
   x86_64-linux
 
 DEPENDENCIES
+  bcrypt (~> 3.1.7)
   bootsnap (~> 1.17.0)
   capybara
   debug
   pg (~> 1.1)
   puma (>= 5.0)
+  rack-cors
   rails (~> 7.1.1)
   selenium-webdriver
   spring

diff --git a/app/controllers/api/book_statuses_controller.rb b/app/controllers/api/book_statuses_controller.rb
@@ -0,0 +1,43 @@
+module Api
+  class BookStatusesController < ApplicationController
+    def index
+      @book_statuses = BookStatus.all
+      render json: @book_statuses
+    end
+
+    def show
+      @book_status = BookStatus.find(params[:id])
+      render json: @book_status
+    end
+
+    def create
+      @book_status = BookStatus.new(book_status_params)
+      if @book_status.save
+        render json: @book_status, status: :created
+      else
+        render json: @book_status.errors, status: :unprocessable_entity
+      end
+    end
+
+    def update
+      @book_status = BookStatus.find(params[:id])
+      if @book_status.update(book_status_params)
+        render json: @book_status
+      else
+        render json: @book_status.errors, status: :unprocessable_entity
+      end
+    end
+
+    def destroy
+      @book_status = BookStatus.find(params[:id])
+      @book_status.destroy
+      head :no_content
+    end
+
+    private
+
+    def book_status_params
+      params.require(:book_status).permit(:status, :fave_books, :book_id, :user_id)
+    end
+  end
+end
diff --git a/app/controllers/api/friends_controller.rb b/app/controllers/api/friends_controller.rb
@@ -0,0 +1,55 @@
+module Api
+  class FriendsController < ApplicationController
+    def index
+      @friends = Friend.all
+      render json: @friends
+    end
+
+    def show
+        @friend = Friend.find(params[:id])
+        render json: @friend
+    end
+
+    def followers
+        @followers = User.joins("JOIN friends ON friends.follower_id = users.id")
+                         .where("friends.following_id = ?", params[:id])
+        render json: @followers
+    end
+
+    def following
+        @following = User.joins("JOIN friends ON friends.following_id = users.id")
+                         .where("friends.following_id = ?", params[:id])
+        render json: @following
+    end
+
+    def create
+      @friend = Friend.new(friend_params)
+      if @friend.save
+        render json: @friend, status: :created
+      else
+        render json: @friend.errors, status: :unprocessable_entity
+      end
+    end
+
+    def update
+      @friend = Friend.find(params[:id])
+      if @friend.update(friend_params)
+        render json: @friend
+      else
+        render json: @friend.errors, status: :unprocessable_entity
+      end
+    end
+
+    def destroy
+      @friend = Friend.find(params[:id])
+      @friend.destroy
+      head :no_content
+    end
+
+    private
+
+    def friend_params
+      params.require(:friend).permit(:follower_id, :following_id)
+    end
+  end
+end
diff --git a/app/controllers/api/posts_controller.rb b/app/controllers/api/posts_controller.rb
@@ -0,0 +1,45 @@
+module Api
+  class PostsController < ApplicationController
+    def index
+      @posts = Post.includes(:user).all
+      render json: @posts.to_json(include: :user)
+    end
+
+    def show
+      @post = Post.includes(:user).find(params[:id])
+      render json: @post.to_json(include: :user)
+    end
+
+    def create
+      @post = Post.new(post_params)
+      if @post.save
+        render json: @post, status: :created
+      else
+        render json: @post.errors, status: :unprocessable_entity
+      end
+    end
+
+    def update
+      @post = Post.find(params[:id])
+      if @post.update(post_params)
+        render json: @post
+      else
+        render json: @post.errors, status: :unprocessable_entity
+      end
+    end
+
+    def destroy
+      @post = Post.find(params[:id])
+      @post.destroy
+      head :no_content
+    end
+
+    private
+
+    def post_params
+      params.require(:post).permit(:rating, :review, :time_spent, :book_id, :user_id)
+    end
+  end
+end
+
+# find out how to return the related records
diff --git a/app/controllers/api/sessions_controller.rb b/app/controllers/api/sessions_controller.rb
@@ -0,0 +1,17 @@
+class Api::SessionsController < ApplicationController
+    def create
+      user = User.authenticate_with_credentials(params[:email], params[:password])
+    user = current_user
+      if user
+        session[:user_id] = user.id
+        render json: { notice: 'Logged in successfully' }, status: :ok
+      else
+        render json: { alert: 'Invalid email or password' }, status: :unauthorized
+      end
+    end
+
+    def destroy
+      session[:user_id] = nil
+      render json: { notice: 'Logged out successfully' }, status: :ok
+    end
+end
diff --git a/app/controllers/api/users_controller.rb b/app/controllers/api/users_controller.rb
@@ -0,0 +1,48 @@
+module Api
+  class UsersController < ApplicationController
+    def index
+      @users = User.includes(:posts).all
+      render json: @users.to_json(include: :posts)
+    end
+
+    def show
+      @user = User.includes(:posts).find(params[:id])
+      render json: @user.to_json(include: :posts)
+    end
+
+    def new
+        @user = User.new
+    end
+
+    def create
+      @user = User.new(user_params)
+      if @user.save
+        session[:user_id] = @user.id
+        render json: @user, status: :created
+      else
+        render json: @user.errors, status: :unprocessable_entity
+      end
+    end
+
+    def update
+      @user = User.find(params[:id])
+      if @user.update(user_params)
+        render json: @user
+      else
+        render json: @user.errors, status: :unprocessable_entity
+      end
+    end
+
+    def destroy
+      @user = User.find(params[:id])
+      @user.destroy
+      head :no_content
+    end
+
+    private
+
+    def user_params
+      params.require(:user).permit(:name, :email, :password, :password_confirmation) #removed awards, followers and following
+    end
+  end
+end
diff --git a/app/models/book_status.rb b/app/models/book_status.rb
@@ -0,0 +1,6 @@
+class BookStatus < ApplicationRecord
+  belongs_to :user
+
+  validates :status, presence: true
+  validates :book_id, presence: true
+end
diff --git a/app/models/friend.rb b/app/models/friend.rb
@@ -0,0 +1,7 @@
+class Friend < ApplicationRecord
+  belongs_to :follower, class_name: 'User'
+  belongs_to :following, class_name: 'User'
+
+  validates :follower_id, presence: true
+  validates :following_id, presence: true
+end
diff --git a/app/models/post.rb b/app/models/post.rb
@@ -0,0 +1,6 @@
+class Post < ApplicationRecord
+  belongs_to :user
+
+  validates :rating, presence: true, inclusion: { in: 1..5 }
+  validates :book_id, presence: true
+end
diff --git a/app/models/user.rb b/app/models/user.rb
@@ -0,0 +1,21 @@
+class User < ApplicationRecord
+  has_secure_password
+  has_many :posts
+  has_many :book_statuses
+  has_many :followed_friends, class_name: 'Friend', foreign_key: 'follower_id'
+  has_many :following_friends, class_name: 'Friend', foreign_key: 'following_id'
+
+  validates :name, presence: true
+  validates :email, presence: true, uniqueness: { case_sensitive: false }
+  validates :password, presence: true, length: { minimum: 6 }, allow_nil: true
+
+  def self.authenticate_with_credentials(email, password)
+      normalized_email = email.strip.downcase
+      user = User.find_by(email: normalized_email)
+      if user
+          user
+      else
+          nil
+      end
+  end
+end
diff --git a/client/.env.example b/client/.env.example