Fixes #95

📊 Add Analytics Endpoints with Role-Based Access Control

Overview

This PR introduces new analytics endpoints to LibraryMan-API, providing valuable insights into library operations. The feature is specifically designed for administrators and librarians to track and analyze library usage patterns.

🚀 New Features

• Added role-based access control for analytics endpoints
• Restricted access to ADMIN and LIBRARIAN roles only
• Enhanced security configuration in WebConfiguration.java

🔒 Security Updates

.requestMatchers("/api/analytics/**").hasAnyRole("ADMIN", "LIBRARIAN")

🎯 Why This Matters

• Better Insights: Administrators and librarians can now make data-driven decisions
• Enhanced Security: Role-based access ensures data privacy
• Operational Efficiency: Easy access to important metrics for authorized personnel

🧪 Testing Checklist
Please verify the following scenarios:

• Analytics endpoints are accessible with ADMIN role
• Analytics endpoints are accessible with LIBRARIAN role
• Analytics endpoints are NOT accessible with USER role
• Existing endpoints continue to work as expected
• JWT authentication works correctly with new endpoints

📝 Example Usage

# Access analytics endpoint (requires ADMIN or LIBRARIAN token)
GET /api/analytics/books
Authorization: Bearer <your-jwt-token>

🔍 Review Focus Areas

1. Security configuration in WebConfiguration.java
2. Role-based access implementation
3. Integration with existing JWT authentication
4. Error handling for unauthorized access

📚 Documentation Updates

• Updated API documentation to include new analytics endpoints
• Added role requirements in security documentation
• Included usage examples for new endpoints

🤝 Testing Instructions

1. Clone the branch
2. Run the application
3. Test with different user roles:

# Login as ADMIN
POST /api/login
{
  "username": "admin",
  "password": "admin_password"
}

# Try accessing analytics
GET /api/analytics/books

🔄 Dependencies

• No new dependencies added
• Utilizes existing Spring Security configuration

⚠️ Important Notes

• This feature requires proper role configuration in the user database
• Existing ADMIN and LIBRARIAN accounts will automatically have access
• Remember to update environment variables if necessary

🌟 Future Enhancements

• Add more detailed analytics endpoints
• Implement data visualization endpoints
• Add customizable reporting periods
• Include export functionality for analytics data

🐛 Known Issues

• None at this time

📋 Checklist

• Code follows project style guidelines
• Added necessary documentation
• Updated API documentation
• Added/updated tests
• All tests passing
• No new warnings
• Security review completed

💡 Questions or suggestions? Feel free to comment below!

🙏 Thank you for reviewing this PR. Your feedback is valuable and appreciated!