Merge pull request #67 from TP-RENTPLACE/development

Development

Author: Kattsyn

.github/workflows/backend-ci-cd.yml

@@ -92,6 +92,38 @@ jobs:
     runs-on: ubuntu-latest
     needs: build-and-push-docker-image
     steps:
+      - name: Set up SSH key
+        run: |
+          mkdir -p ~/.ssh
+          echo "${{ secrets.SSH_PRIVATE_KEY }}" > ~/.ssh/id_rsa
+          chmod 600 ~/.ssh/id_rsa
+          eval $(ssh-agent -s)
+          ssh-keyscan -H ${{ secrets.SSH_HOST }} >> ~/.ssh/known_hosts
+      - name: List files
+        run: ls -la
+
+      - name: Create app.env file
+        run: |
+          echo "DB_NAME=${{ secrets.DB_NAME }}" >> .env
+          echo "DB_USER=${{ secrets.DB_USER }}" >> .env
+          echo "DB_PASSWORD=${{ secrets.DB_PASSWORD }}" >> .env
+          echo "JWT_SECRET_ACCESS=${{ secrets.JWT_SECRET_ACCESS }}" >> .env
+          echo "JWT_SECRET_REFRESH=${{ secrets.JWT_SECRET_REFRESH }}" >> .env
+          echo "JWT_EXPIRATION_TIME_IN_DAYS_REFRESH=${{ secrets.JWT_EXPIRATION_TIME_IN_DAYS_REFRESH }}" >> .env
+          echo "JWT_EXPIRATION_TIME_IN_MINUTES_ACCESS=${{ secrets.JWT_EXPIRATION_TIME_IN_MINUTES_ACCESS }}" >> .env
+          echo "MAIL_USERNAME=${{ secrets.MAIL_USERNAME }}" >> .env
+          echo "MAIL_PASSWORD =${{ secrets.MAIL_PASSWORD }}" >> .env
+          echo "COMMISSION_FOR_RENTER_IN_PERCENT=${{ secrets.COMMISSION_FOR_RENTER_IN_PERCENT }}" >> .env
+          echo "COMMISSION_FOR_OWNER_IN_PERCENT=${{ secrets.COMMISSION_FOR_OWNER_IN_PERCENT }}" >> .env
+          echo "OPENROUTER_API_URL=${{ secrets.OPENROUTER_API_URL }}" >> .env
+          echo "OPENROUTER_API_KEY=${{ secrets.OPENROUTER_API_KEY }}" >> .env
+          echo "OPENROUTER_API_MODEL=${{ secrets.OPENROUTER_API_MODEL }}" >> .env
+          echo "OPENROUTER_API_DEFAULT_SYSTEM_PROMPT=${{ secrets.OPENROUTER_API_DEFAULT_SYSTEM_PROMPT }}" >> .env
+
+      - name: Copy files to the server
+        run: |
+          eval $(ssh-agent -s)
+          scp ./.env ${{ secrets.SSH_USERNAME }}@${{ secrets.SSH_HOST }}:${{ secrets.APP_PATH }}/
       - name: SSH Execute Commands
         uses: appleboy/ssh-action@v1
         with:

rentplace/build.gradle

@@ -25,11 +25,15 @@ repositories {
 
 dependencies {
 	implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
+	implementation 'org.springframework.boot:spring-boot-starter-web'
+	implementation 'org.springframework.boot:spring-boot-starter-webflux'
 	runtimeOnly 'org.flywaydb:flyway-database-postgresql:11.2.0'
 	implementation 'org.flywaydb:flyway-core:11.2.0'
 	implementation 'org.springframework.boot:spring-boot-starter-web'
 	implementation 'org.mapstruct:mapstruct:1.5.5.Final'
 	implementation 'org.flywaydb:flyway-core'
+	implementation 'com.github.vladimir-bukhtoyarov:bucket4j-core:8.0.1'
+	implementation("commons-codec:commons-codec:1.17.2")
 
 	implementation("org.springframework.boot:spring-boot-starter-mail:3.4.3")
 
@@ -38,6 +42,7 @@ dependencies {
 	runtimeOnly("io.jsonwebtoken:jjwt-jackson:0.12.6")
 	runtimeOnly("io.jsonwebtoken:jjwt-impl:0.12.6")
 	implementation("io.jsonwebtoken:jjwt-api:0.12.6")
+	implementation("com.postmarkapp:postmark:1.11.1")
 
 	compileOnly 'org.projectlombok:lombok'
 	runtimeOnly 'org.postgresql:postgresql'

rentplace/src/main/java/kattsyn/dev/rentplace/aspects/LoggingAspect.java

@@ -0,0 +1,30 @@
+package kattsyn.dev.rentplace.aspects;
+
+import lombok.extern.slf4j.Slf4j;
+import org.aspectj.lang.ProceedingJoinPoint;
+import org.aspectj.lang.annotation.Around;
+import org.aspectj.lang.annotation.Aspect;
+import org.springframework.stereotype.Component;
+
+@Slf4j
+@Aspect
+@Component
+public class LoggingAspect {
+
+    @Around("execution(public * kattsyn.dev.rentplace.services..*(..))")
+    public Object logServiceMethods(ProceedingJoinPoint joinPoint) throws Throwable {
+        String methodName = joinPoint.getSignature().toShortString();
+        log.info("Вызов метода: {}", methodName);
+        long startTime = System.currentTimeMillis();
+        try {
+            Object result = joinPoint.proceed();
+            double elapsedTime = (double) (System.currentTimeMillis() - startTime) / 1000;
+            log.info("Метод {} выполнен успешно за {} с", methodName, elapsedTime);
+            return result;
+        } catch (Throwable ex) {
+            double elapsedTime = (double) (System.currentTimeMillis() - startTime) / 1000;
+            log.error("Метод {} завершился с ошибкой за {} с. Ошибка: {}", methodName, elapsedTime, ex.getMessage());
+            throw ex;
+        }
+    }
+}

rentplace/src/main/java/kattsyn/dev/rentplace/auth/JwtProvider.java

@@ -30,8 +30,8 @@ public class JwtProvider {
     public JwtProvider(
             @Value("${jwt.secret.access}") String jwtAccessSecret,
             @Value("${jwt.secret.refresh}") String jwtRefreshSecret,
-            @Value("${jwt.expiration_time_in_minutes.access}") int accessTokenExpTimeInMinutes,
-            @Value("${jwt.expiration_time_in_days.refresh}") int refreshTokenExpTimeInDays
+            @Value("${jwt.expiration-time-in-minutes.access}") int accessTokenExpTimeInMinutes,
+            @Value("${jwt.expiration-time-in-days.refresh}") int refreshTokenExpTimeInDays
     ) {
         this.jwtAccessSecret = Keys.hmacShaKeyFor(Decoders.BASE64.decode(jwtAccessSecret));
         this.jwtRefreshSecret = Keys.hmacShaKeyFor(Decoders.BASE64.decode(jwtRefreshSecret));

rentplace/src/main/java/kattsyn/dev/rentplace/configs/EmailRetryProperties.java

@@ -0,0 +1,11 @@
+package kattsyn.dev.rentplace.configs;
+
+import jakarta.validation.constraints.NotBlank;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+
+@ConfigurationProperties(prefix = "email.retry")
+public record EmailRetryProperties(
+        @NotBlank Integer maxAttempts,
+        @NotBlank Integer delayMs
+) {
+}

rentplace/src/main/java/kattsyn/dev/rentplace/configs/OpenRouterConfig.java

@@ -0,0 +1,21 @@
+package kattsyn.dev.rentplace.configs;
+
+import org.springframework.boot.context.properties.EnableConfigurationProperties;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpHeaders;
+import org.springframework.web.reactive.function.client.WebClient;
+
+@Configuration
+@EnableConfigurationProperties(OpenRouterProperties.class)
+public class OpenRouterConfig {
+
+    @Bean
+    public WebClient webClient(OpenRouterProperties props) {
+        return WebClient.builder()
+                .baseUrl(props.url())
+                .defaultHeader(HttpHeaders.AUTHORIZATION, "Bearer " + props.key())
+                .build();
+    }
+
+}

rentplace/src/main/java/kattsyn/dev/rentplace/configs/OpenRouterProperties.java

@@ -0,0 +1,12 @@
+package kattsyn.dev.rentplace.configs;
+
+import jakarta.validation.constraints.NotBlank;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+
+@ConfigurationProperties(prefix = "openrouter.api")
+public record OpenRouterProperties(
+        @NotBlank String url,
+        @NotBlank String key,
+        @NotBlank String defaultSystemPrompt,
+        @NotBlank String model) {
+}

rentplace/src/main/java/kattsyn/dev/rentplace/configs/SecurityConfig.java

@@ -9,7 +9,6 @@
 import org.springframework.http.HttpMethod;
 import org.springframework.http.HttpStatus;
 import org.springframework.security.authentication.AuthenticationManager;
-import org.springframework.security.config.Customizer;
 import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
 import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
@@ -19,6 +18,11 @@
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.HttpStatusEntryPoint;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.CorsConfigurationSource;
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
+
+import java.util.List;
 
 @Configuration
 @EnableWebSecurity
@@ -63,13 +67,14 @@ public void init() {
     @Bean
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         http
-                .cors(Customizer.withDefaults())
+                .cors(cors -> cors.configurationSource(corsConfigurationSource()))
                 .csrf(CsrfConfigurer::disable)
                 .sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
                 .authorizeHttpRequests(
                         authorize -> authorize
                                 .requestMatchers(PUBLIC_URLS).permitAll()
                                 .requestMatchers(HttpMethod.GET, PUBLIC_URLS_GET).permitAll()
+                                .requestMatchers(HttpMethod.POST, "/api/v1/properties/filtered/").permitAll()
                                 .requestMatchers(HttpMethod.DELETE, ADMIN_URLS).hasAuthority("ROLE_ADMIN")
                                 .requestMatchers(HttpMethod.POST, ADMIN_URLS).hasAuthority("ROLE_ADMIN")
                                 .requestMatchers(HttpMethod.PATCH, ADMIN_URLS).hasAuthority("ROLE_ADMIN")
@@ -82,6 +87,21 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         return http.build();
     }
 
+    @Bean
+    public CorsConfigurationSource corsConfigurationSource() {
+        CorsConfiguration config = new CorsConfiguration();
+        config.setAllowedOriginPatterns(List.of("*"));
+        config.setAllowedMethods(List.of("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"));
+        config.setAllowedHeaders(List.of("*"));
+        config.setExposedHeaders(List.of("Authorization", "Cache-Control", "Content-Type", "Set-Cookie", "User-Agent", "X-Forwarded-For"));
+        config.setAllowCredentials(true);
+        config.setMaxAge(3600L);
+
+        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
+        source.registerCorsConfiguration("/**", config);
+        return source;
+    }
+
     @Bean
     public AuthenticationManager authenticationManager(AuthenticationConfiguration configuration) throws Exception {
         return configuration.getAuthenticationManager();

rentplace/src/main/java/kattsyn/dev/rentplace/controllers/AiController.java

@@ -0,0 +1,48 @@
+package kattsyn.dev.rentplace.controllers;
+
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.responses.ApiResponse;
+import io.swagger.v3.oas.annotations.responses.ApiResponses;
+import io.swagger.v3.oas.annotations.security.SecurityRequirement;
+import io.swagger.v3.oas.annotations.tags.Tag;
+import jakarta.security.auth.message.AuthException;
+import jakarta.validation.Valid;
+import kattsyn.dev.rentplace.dtos.ai.GenerateDescriptionRequest;
+import kattsyn.dev.rentplace.dtos.ai.GenerateDescriptionResponse;
+import kattsyn.dev.rentplace.services.AiService;
+import lombok.RequiredArgsConstructor;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.*;
+
+@RestController
+@RequestMapping("${api.path}/ai")
+@RequiredArgsConstructor
+@Tag(name = "AI Controller", description = "Интеграция с OpenRouter для работы с LLM моделями")
+public class AiController {
+
+    private final AiService aiService;
+
+    @Operation(
+            summary = "Сгенерировать описание проекта",
+            description = "Принимает системный и пользовательский промпты, отсылает их в Open Router AI и возвращает сгенерированный текст."
+    )
+    @ApiResponses({
+            @ApiResponse(responseCode = "200", description = "Сгенерированное описание получено"),
+            @ApiResponse(responseCode = "400", description = "Неверные данные запроса"),
+            @ApiResponse(responseCode = "401", description = "Неавторизованный доступ"),
+            @ApiResponse(responseCode = "403", description = "Доступ запрещён"),
+            @ApiResponse(responseCode = "404", description = "Пользователь не найден"),
+            @ApiResponse(responseCode = "429", description = "Превышен лимит AI-запросов (10 в час)"),
+            @ApiResponse(responseCode = "500", description = "Внутренняя ошибка сервера")
+    })
+    @PostMapping(path = "/description", consumes = MediaType.MULTIPART_FORM_DATA_VALUE)
+    @SecurityRequirement(name = "JWT")
+    public ResponseEntity<GenerateDescriptionResponse> generateDescription(
+            @Valid @ModelAttribute GenerateDescriptionRequest request
+    ) throws AuthException {
+        GenerateDescriptionResponse response = new GenerateDescriptionResponse(aiService.generateDescription(request));
+        return ResponseEntity.ok(response);
+    }
+
+}

rentplace/src/main/java/kattsyn/dev/rentplace/controllers/AuthController.java

@@ -4,9 +4,15 @@
 import io.swagger.v3.oas.annotations.security.SecurityRequirement;
 import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.security.auth.message.AuthException;
-import kattsyn.dev.rentplace.dtos.*;
+import jakarta.servlet.http.HttpServletRequest;
+import kattsyn.dev.rentplace.dtos.requests.CodeRequest;
+import kattsyn.dev.rentplace.dtos.requests.JwtRequest;
+import kattsyn.dev.rentplace.dtos.requests.RefreshJwtRequest;
+import kattsyn.dev.rentplace.dtos.requests.RegisterRequest;
+import kattsyn.dev.rentplace.dtos.responses.CodeResponse;
+import kattsyn.dev.rentplace.dtos.responses.JwtResponse;
+import kattsyn.dev.rentplace.dtos.users.UserDTO;
 import kattsyn.dev.rentplace.services.AuthService;
-import kattsyn.dev.rentplace.services.VerificationCodeService;
 import lombok.RequiredArgsConstructor;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.*;
@@ -18,25 +24,26 @@
 public class AuthController {
 
     private final AuthService authService;
-    private final VerificationCodeService verificationCodeService;
 
     @PostMapping("/code-request")
     @Operation(
             summary = "Запросить код по почте",
             description = "Запрос на получение кода авторизации по почте"
     )
     public ResponseEntity<CodeResponse> requestCode(@RequestBody CodeRequest codeRequest) {
-        return ResponseEntity.ok(verificationCodeService.generateAndSendCode(codeRequest.getEmail()));
+        return ResponseEntity.ok(authService.getCodeResponse(codeRequest.getEmail()));
     }
 
     @Operation(
             summary = "Запрос на авторизацию",
             description = "Получает email и код с почты. Возвращает JWT токены"
     )
     @PostMapping("/login")
-    public ResponseEntity<JwtResponse> login(@RequestBody JwtRequest authRequest/*,
+    public ResponseEntity<JwtResponse> login(HttpServletRequest request, @RequestBody JwtRequest authRequest/*,
                                              HttpServletResponse response*/) throws AuthException {
-        JwtResponse tokens = authService.login(authRequest);
+
+
+        JwtResponse tokens = authService.login(authRequest, request);
 
         /*
         ResponseCookie refreshCookie = ResponseCookie.from("refreshToken", tokens.getRefreshToken())
@@ -67,14 +74,26 @@ public ResponseEntity<JwtResponse> login(@RequestBody JwtRequest authRequest/*,
                 .body(tokens);
     }
 
+    @Operation(
+            summary = "Запрос на авторизацию в админ-панель",
+            description = "Получает email и код с почты. Возвращает JWT токены. Пускает только администраторов."
+    )
+    @PostMapping("/admin/login")
+    public ResponseEntity<JwtResponse> adminLogin(@RequestBody JwtRequest authRequest, HttpServletRequest httpServletRequest/*,
+                                             HttpServletResponse response*/) throws AuthException {
+        JwtResponse tokens = authService.adminLogin(authRequest, httpServletRequest);
+        return ResponseEntity.ok()
+                .body(tokens);
+    }
+
     @Operation(
             summary = "Запрос на регистрацию",
             description = "Получает email и код с почты, а также имя и фамилию пользователя. Возвращает JWT токены"
     )
     @PostMapping("/register")
-    public ResponseEntity<JwtResponse> register(@RequestBody RegisterRequest registerRequest/*,
+    public ResponseEntity<JwtResponse> register(@RequestBody RegisterRequest registerRequest, HttpServletRequest httpServletRequest/*,
                                              HttpServletResponse response*/) throws AuthException {
-        JwtResponse tokens = authService.register(registerRequest);
+        JwtResponse tokens = authService.register(registerRequest, httpServletRequest);
 
         return ResponseEntity.ok()
                 .body(tokens);
@@ -92,14 +111,13 @@ public ResponseEntity<Void> checkCode(@RequestBody JwtRequest authRequest/*,
     }
 
 
-
     @Operation(
             summary = "Запрос на обновление AccessToken'а",
             description = "Получает RefreshToken, возвращает новый AccessToken"
     )
     @PostMapping("/token")
-    public ResponseEntity<JwtResponse> getNewAccessToken(@RequestBody RefreshJwtRequest request) {
-        final JwtResponse token = authService.getAccessToken(request.getRefreshToken());
+    public ResponseEntity<JwtResponse> getNewAccessToken(@RequestBody RefreshJwtRequest request, HttpServletRequest httpServletRequest) throws AuthException {
+        final JwtResponse token = authService.getAccessToken(request.getRefreshToken(), httpServletRequest);
         return ResponseEntity.ok(token);
     }
 
@@ -108,8 +126,8 @@ public ResponseEntity<JwtResponse> getNewAccessToken(@RequestBody RefreshJwtRequ
             description = "Принимает еще не истекший RefreshToken и возвращает новый, продленный."
     )
     @PostMapping("/refresh")
-    public ResponseEntity<JwtResponse> refresh(/*@CookieValue(name = "refreshToken") String refreshToken, HttpServletResponse response*/ @RequestBody RefreshJwtRequest request) throws AuthException {
-        JwtResponse jwtResponse = authService.refresh(request.getRefreshToken());
+    public ResponseEntity<JwtResponse> refresh(/*@CookieValue(name = "refreshToken") String refreshToken, HttpServletResponse response*/ @RequestBody RefreshJwtRequest refreshJwtRequest, HttpServletRequest request) throws AuthException {
+        JwtResponse jwtResponse = authService.refresh(refreshJwtRequest.getRefreshToken(), request);
 
         /*
         Cookie refreshCookie = new Cookie("refreshToken", jwtResponse.getRefreshToken());