Merge pull request #10 from Invoices-Manager/dev_01

Schecher1 · web-flow · commit 2662915b0895 · 2023-09-07T18:42:21.000+02:00
Dev 01
diff --git a/Controllers/v01/InvoiceController.cs b/Controllers/v01/InvoiceController.cs
@@ -136,9 +136,9 @@ public async Task<IActionResult> Add([FromBody] InvoiceWrapperModel wrapper)
                 if (newInvoice.Id != 0)
                     return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "You are not allowed to set the Id!", new Dictionary<string, object> { { "id", newInvoice.Id } }));
 
-                //check if the user already set an file id
-                if (!string.IsNullOrEmpty(newInvoice.FileID))
-                    return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "You are not allowed to set the FileID!", new Dictionary<string, object> { { "fileId", newInvoice.FileID } }));
+                //check if the user has set a file id
+                if (String.IsNullOrWhiteSpace(newInvoice.FileID))
+                    return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "You have to set an File Id!", new Dictionary<string, object> { { "fileId", newInvoice.FileID } }));
 
                 //check if the enums are valid
                 if (!Enum.IsDefined(typeof(ImportanceStateEnum), newInvoice.ImportanceState))
@@ -166,33 +166,22 @@ public async Task<IActionResult> Add([FromBody] InvoiceWrapperModel wrapper)
                 if (invoiceFileInfo.Length > 32 * 1024 * 1024)
                     return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "The file is too big (32 mb)"));
 
-                //get the file id
-                var fileId = Security.FileHasher.GetMd5Hash(invoiceFileInfo.FullName);
-
                 //check if the file id already exist
-                if (user.Invoices.Any(x => x.FileID == fileId))
+                if (user.Invoices.Any(x => x.FileID == newInvoice.FileID))
                     return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "The file already exist"));
 
-                //check if the file id is valid
-                if (string.IsNullOrEmpty(fileId))
-                    return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "The file id is not valid"));
-
                 //move the file to the new path
-                FileCore.MoveInvoiceFile_IntoUserFolder(invoiceFileInfo.FullName, fileId, user);
+                FileCore.MoveInvoiceFile_IntoUserFolder(invoiceFileInfo.FullName, newInvoice.FileID, user);
 
                 //set the creation date
                 newInvoice.CaptureDate = DateTime.Now;
 
-                //set the file id
-                newInvoice.FileID = fileId;
-
                 //add the invoices to the db
                 user.Invoices.Add(newInvoice);
                 await _db.SaveChangesAsync();
 
                 //return the invoices
                 return new CreatedAtActionResult("Get", "Invoice", new { id = newInvoice.Id }, ResponseMgr.CreateResponse(201, traceId, "Invoice created successfully", new Dictionary<string, object> { { "invoice", newInvoice } }));
-
             }
         }
 
@@ -240,6 +229,10 @@ public async Task<IActionResult> Edit([FromBody] InvoiceModel editInvoice)
                 //get the invoice id
                 int index = user.Invoices.FindIndex(x => x.Id == editInvoice.Id);
 
+                //check if the file id was manipulated
+                if (user.Invoices[index].FileID != editInvoice.FileID)
+                    return new BadRequestObjectResult(ResponseMgr.CreateResponse(400, traceId, "The file id was manipulated", new Dictionary<string, object> { { "fileId", editInvoice.FileID } }));
+
                 //create a new invoice and delete the old one
                 editInvoice.Id = user.Invoices[index].Id;
                 editInvoice.FileID = user.Invoices[index].FileID;
diff --git a/Invoices-Manager-API.csproj b/Invoices-Manager-API.csproj
@@ -5,8 +5,8 @@
     <Nullable>enable</Nullable>
     <ImplicitUsings>enable</ImplicitUsings>
     <RootNamespace>Invoices_Manager_API</RootNamespace>
-    <FileVersion>1.0.3.2</FileVersion>
-    <AssemblyVersion>1.0.3.2</AssemblyVersion>
+    <FileVersion>1.0.3.3</FileVersion>
+    <AssemblyVersion>1.0.3.3</AssemblyVersion>
     <UserSecretsId>8e8f9154-9968-4e4a-81e6-a05431d2d71a</UserSecretsId>
     <DockerDefaultTargetOS>Linux</DockerDefaultTargetOS>
     <DockerfileContext>.</DockerfileContext>
diff --git a/Models/InvoiceModel.cs b/Models/InvoiceModel.cs
@@ -34,6 +34,7 @@ public string TagsAsString
 
         [Required(ErrorMessage = "PaidState is missing!")]
         public PaidStateEnum PaidState { get; set; } = default!;  // { Paid , Unpaid,  NoInvoice }
-        public double MoneyTotal { get; set; }
+        
+        public  string? MoneyTotal { get; set; }
     }
 }
diff --git a/Models/UserModel.cs b/Models/UserModel.cs
@@ -22,7 +22,7 @@ public class UserModel
         public string LastName { get; set; } = default!;
 
         [Required(ErrorMessage = "Email is missing!")]
-        [EmailAddress(ErrorMessage = "Invalid Email Address")]
+        [RegularExpression(@"^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$", ErrorMessage = "Invalid email format")]
         public string Email { get; set; } = default!;
 
         [NotMapped]
diff --git a/README.md b/README.md
@@ -77,14 +77,25 @@ Press [here](https://github.com/Invoices-Manager/Invoices-Manager-API/blob/maste
 ### Z = Minor version (small updates)
 ### W = Revision version (bug fixes)
 
+## v1.0.4.0
+- The money total is now a string instant of a double (for the encryption)
+- The Postman is updated belong to the new changes
+- The API Doc is updated belong to the new changes
+
+        !!! THAT MEANS YOU HAVE TO DO STEP 13. and 14. FROM THE LIST ABOVE, IF YOU UPDATE UR API  !!!
+    !!! name the migrations something with "version1040" but not "firstInit", because this migration already exists. !!!
+
 ## v1.0.3.2 (HOTFIX)
 -Tokens are no longer hashed, because it broked the logic for "DeleteOldTokens"  
 -Hasher class was deleted, is no longer needed  
 -The table "logins" has changed (CreationDate is useless, is already in the token)  
-  
+
         !!! THAT MEANS YOU HAVE TO DO STEP 13. and 14. FROM THE LIST ABOVE, IF YOU UPDATE UR API  !!!
     !!! name the migrations something with "version1032" but not "firstInit", because this migration already exists. !!!
 
+## v1.0.3.3
+- FIX: The API needs a FileID from the client and should not create it by itself
+
 ## v1.0.3.1
 - The Salt will be send at the who am i query
 
diff --git a/Resources/ApiDoc_V01/Invoice/DEL__Invoice.md b/Resources/ApiDoc_V01/Invoice/DEL__Invoice.md
@@ -56,7 +56,7 @@ Content-Type: application/json*
             "importanceState": 1,
             "moneyState": 1,
             "paidState": 1,
-            "moneyTotal": 10000
+            "moneyTotal": "10000"
         }
     }
 }
diff --git a/Resources/ApiDoc_V01/Invoice/GET__Invoice.md b/Resources/ApiDoc_V01/Invoice/GET__Invoice.md
@@ -57,7 +57,7 @@ Content-Type: application/json*
                 "importanceState": 1,
                 "moneyState": 1,
                 "paidState": 1,
-                "moneyTotal": 100
+                "moneyTotal": "100"
             },
             "base64": "SGFsbG8="
         }
diff --git a/Resources/ApiDoc_V01/Invoice/GET__Invoice_GetAll.md b/Resources/ApiDoc_V01/Invoice/GET__Invoice_GetAll.md
@@ -57,7 +57,7 @@ Content-Type: application/json*
                 "importanceState": 1,
                 "moneyState": 1,
                 "paidState": 1,
-                "moneyTotal": 100
+                "moneyTotal": "100"
             }
         ]
     }
diff --git a/Resources/ApiDoc_V01/Invoice/POST__Invoice.md b/Resources/ApiDoc_V01/Invoice/POST__Invoice.md
@@ -22,6 +22,8 @@
 ```json
 {
   "NewInvoice": {
+     //no matter what, best a hash from the file, and no special characters
+    "fileId": "asd435fgddxf34456456fgdh",
     "CaptureDate": "2022-01-01T00:00:00Z",
     "ExhibitionDate": "2022-01-01T00:00:00Z",
     "Reference": "Ref-123",
@@ -35,7 +37,7 @@
     "ImportanceState": 1,
     "MoneyState": 1,
     "PaidState": 1,
-    "MoneyTotal": 100.00
+    "MoneyTotal": "100.00"
   },
   "InvoiceFileBase64": "SGFsbG8="
 }
@@ -72,7 +74,7 @@ Content-Type: application/json*
             "importanceState": 1,
             "moneyState": 1,
             "paidState": 1,
-            "moneyTotal": 100
+            "moneyTotal": "100"
         }
     }
 }
diff --git a/Resources/ApiDoc_V01/Invoice/PUT__Invoice.md b/Resources/ApiDoc_V01/Invoice/PUT__Invoice.md
@@ -36,7 +36,7 @@
     "importanceState": 1,
     "moneyState": 1,
     "paidState": 1,
-    "moneyTotal": 10000
+    "moneyTotal": "10000"
 }
 ```
 
@@ -71,7 +71,7 @@ Content-Type: application/json*
             "importanceState": 1,
             "moneyState": 1,
             "paidState": 1,
-            "moneyTotal": 10000
+            "moneyTotal": "10000"
         }
     }
 }
diff --git a/Resources/Invoices-Manager-API-v01.postman_collection.json b/Resources/Invoices-Manager-API-v01.postman_collection.json
@@ -134,7 +134,7 @@
 						],
 						"body": {
 							"mode": "raw",
-							"raw": "{\r\n  \"NewInvoice\": {\r\n    \"CaptureDate\": \"2022-01-01T00:00:00Z\",\r\n    \"ExhibitionDate\": \"2022-01-01T00:00:00Z\",\r\n    \"Reference\": \"Ref-123\",\r\n    \"DocumentType\": \"PDF\",\r\n    \"Organization\": \"ABC Inc.\",\r\n    \"InvoiceNumber\": \"INV-123\",\r\n    \"Tags\": [\r\n      \"Tag1\",\r\n      \"Tag2\"\r\n    ],\r\n    \"ImportanceState\": 1,\r\n    \"MoneyState\": 1,\r\n    \"PaidState\": 1,\r\n    \"MoneyTotal\": 100.00\r\n  },\r\n  \"InvoiceFileBase64\": \"SGFsbG8=\"\r\n}",
+							"raw": "{\r\n  \"NewInvoice\": {\r\n      //no matter what, best a hash from the file, and no special characters\r\n    \"fileId\": \"asd435fgddxf34456456fgdh\",\r\n    \"CaptureDate\": \"2022-01-01T00:00:00Z\",\r\n    \"ExhibitionDate\": \"2022-01-01T00:00:00Z\",\r\n    \"Reference\": \"Ref-123\",\r\n    \"DocumentType\": \"PDF\",\r\n    \"Organization\": \"ABC Inc.\",\r\n    \"InvoiceNumber\": \"INV-123\",\r\n    \"Tags\": [\r\n      \"Tag1\",\r\n      \"Tag2\"\r\n    ],\r\n    \"ImportanceState\": 1,\r\n    \"MoneyState\": 1,\r\n    \"PaidState\": 1,\r\n    \"MoneyTotal\": \"100.00\"\r\n  },\r\n  \"InvoiceFileBase64\": \"SGFsbG8=\"\r\n}",
 							"options": {
 								"raw": {
 									"language": "json"
@@ -168,7 +168,7 @@
 						],
 						"body": {
 							"mode": "raw",
-							"raw": "{\r\n    \"id\": 4,\r\n    \"captureDate\": \"2023-04-28T19:21:14.4365823+02:00\",\r\n    \"exhibitionDate\": \"2022-01-01T00:00:00Z\",\r\n    \"reference\": \"Ref-123\",\r\n    \"documentType\": \"PDF\",\r\n    \"organization\": \"ABC Inc.\",\r\n    \"invoiceNumber\": \"INV-123\",\r\n    \"tags\": [\r\n        \"Tag1\",\r\n        \"Tag22222\"\r\n    ],\r\n    \"tagsAsString\": \"Tag1;Tag2\",\r\n    \"importanceState\": 1,\r\n    \"moneyState\": 1,\r\n    \"paidState\": 1,\r\n    \"moneyTotal\": 10000\r\n}",
+							"raw": "{\r\n    \"id\": 2,\r\n    \"captureDate\": \"2023-04-28T19:21:14.4365823+02:00\",\r\n    \"exhibitionDate\": \"2022-01-01T00:00:00Z\",\r\n    \"reference\": \"Ref-123\",\r\n    \"documentType\": \"PDF\",\r\n    \"organization\": \"ABC Inc.\",\r\n    \"invoiceNumber\": \"INV-123\",\r\n    \"tags\": [\r\n        \"Tag1\",\r\n        \"Tag22222\"\r\n    ],\r\n    \"tagsAsString\": \"Tag1;Tag2\",\r\n    \"importanceState\": 1,\r\n    \"moneyState\": 1,\r\n    \"paidState\": 1,\r\n    \"moneyTotal\": \"10000\"\r\n}",
 							"options": {
 								"raw": {
 									"language": "json"
@@ -488,18 +488,15 @@
 				},
 				{
 					"name": "Login",
-					"protocolProfileBehavior": {
-						"disableBodyPruning": true
-					},
 					"request": {
 						"auth": {
 							"type": "noauth"
 						},
-						"method": "GET",
+						"method": "POST",
 						"header": [],
 						"body": {
 							"mode": "raw",
-							"raw": "{\r\n    \"username\": \"UserNames\",\r\n    \"password\": \"UserPassword\"\r\n}",
+							"raw": "{\r\n    \"username\": \"UserName\",\r\n    \"password\": \"UserPassword\"\r\n}",
 							"options": {
 								"raw": {
 									"language": "json"

Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@ public string TagsAsString`
`34`	`34`
`35`	`35`	`[Required(ErrorMessage = "PaidState is missing!")]`
`36`	`36`	`public PaidStateEnum PaidState { get; set; } = default!; // { Paid , Unpaid, NoInvoice }`
`37`		`- public double MoneyTotal { get; set; }`
	`37`	`+`
	`38`	`+ public string? MoneyTotal { get; set; }`
`38`	`39`	`}`
`39`	`40`	`}`
Original file line number	Diff line number	Diff line change
`@@ -56,7 +56,7 @@ Content-Type: application/json*`
`56`	`56`	`"importanceState": 1,`
`57`	`57`	`"moneyState": 1,`
`58`	`58`	`"paidState": 1,`
`59`		`- "moneyTotal": 10000`
	`59`	`+ "moneyTotal": "10000"`
`60`	`60`	`}`
`61`	`61`	`}`
`62`	`62`	`}`
Original file line number	Diff line number	Diff line change
`@@ -57,7 +57,7 @@ Content-Type: application/json*`
`57`	`57`	`"importanceState": 1,`
`58`	`58`	`"moneyState": 1,`
`59`	`59`	`"paidState": 1,`
`60`		`- "moneyTotal": 100`
	`60`	`+ "moneyTotal": "100"`
`61`	`61`	`},`
`62`	`62`	`"base64": "SGFsbG8="`
`63`	`63`	`}`
Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,8 @@`
`22`	`22`	```json
`23`	`23`	`{`
`24`	`24`	`"NewInvoice": {`
	`25`	`+ //no matter what, best a hash from the file, and no special characters`
	`26`	`+ "fileId": "asd435fgddxf34456456fgdh",`
`25`	`27`	`"CaptureDate": "2022-01-01T00:00:00Z",`
`26`	`28`	`"ExhibitionDate": "2022-01-01T00:00:00Z",`
`27`	`29`	`"Reference": "Ref-123",`
`@@ -35,7 +37,7 @@`
`35`	`37`	`"ImportanceState": 1,`
`36`	`38`	`"MoneyState": 1,`
`37`	`39`	`"PaidState": 1,`
`38`		`- "MoneyTotal": 100.00`
	`40`	`+ "MoneyTotal": "100.00"`
`39`	`41`	`},`
`40`	`42`	`"InvoiceFileBase64": "SGFsbG8="`
`41`	`43`	`}`
`@@ -72,7 +74,7 @@ Content-Type: application/json*`
`72`	`74`	`"importanceState": 1,`
`73`	`75`	`"moneyState": 1,`
`74`	`76`	`"paidState": 1,`
`75`		`- "moneyTotal": 100`
	`77`	`+ "moneyTotal": "100"`
`76`	`78`	`}`
`77`	`79`	`}`
`78`	`80`	`}`
Original file line number	Diff line number	Diff line change
`@@ -36,7 +36,7 @@`
`36`	`36`	`"importanceState": 1,`
`37`	`37`	`"moneyState": 1,`
`38`	`38`	`"paidState": 1,`
`39`		`- "moneyTotal": 10000`
	`39`	`+ "moneyTotal": "10000"`
`40`	`40`	`}`
`41`	`41`	```
`42`	`42`
`@@ -71,7 +71,7 @@ Content-Type: application/json*`
`71`	`71`	`"importanceState": 1,`
`72`	`72`	`"moneyState": 1,`
`73`	`73`	`"paidState": 1,`
`74`		`- "moneyTotal": 10000`
	`74`	`+ "moneyTotal": "10000"`
`75`	`75`	`}`
`76`	`76`	`}`
`77`	`77`	`}`