cell.go
3.64 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
package endpoints
import (
"classroom/functions"
"classroom/models"
"database/sql"
"fmt"
"net/http"
"strconv"
"strings"
"github.com/julienschmidt/httprouter"
)
// GET /timetables/<file_id>/<sheet_id>/cell
func (e *Endpoints) CellGet(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
// Get user email
var email string
if _email, ok := r.Header["X-User-Email"]; ok {
email = _email[0]
} else {
functions.ResponseError(w, 401, "X-User-Email 헤더를 보내세요.")
return
}
// Get Path Parameters
fileID := ps.ByName("file_id")
sheetID := ps.ByName("sheet_id")
// Get Query Parameters
qp := r.URL.Query()
var cellColumn string
var cellStart int
var cellEnd int
var err error
if _cellColumn, ok := qp["column"]; ok {
cellColumn = strings.ToUpper(_cellColumn[0])
} else {
functions.ResponseError(w, 400, "column 파라미터를 보내세요.")
return
}
if _cellStart, ok := qp["start"]; ok {
cellStart, err = strconv.Atoi(_cellStart[0])
if err != nil {
functions.ResponseError(w, 400, "start 파라미터를 보내세요.")
return
}
}
if _cellEnd, ok := qp["end"]; ok {
cellEnd, err = strconv.Atoi(_cellEnd[0])
if err != nil {
functions.ResponseError(w, 400, "end 파라미터를 보내세요.")
return
}
}
// Check Permission
var _timetable, _email string
timetable := fmt.Sprintf("%s,%s", fileID, sheetID)
row := e.DB.QueryRow(`
SELECT a.timetable_id, u.email
FROM allowlist AS a, users AS u
WHERE a.timetable_id=?
AND a.user_id=u.id;
`, timetable)
if err := row.Scan(&_timetable, &_email); err != nil {
if err == sql.ErrNoRows {
functions.ResponseError(w, 404, "존재하지 않은 timetable.")
return
}
}
if _email != email {
functions.ResponseError(w, 403, "timetable 접근 권한 부족")
return
}
// Result Resp
resp := models.CellGetResponse{}
resp.Cells = []models.CellItem{}
// Querying
rows, err := e.DB.Query(`
SELECT u.email, u.id, t.cell_column, t.cell_start, t.cell_end, t.lecture, t.professor, t.transaction_id, t.created_at, t.capacity
FROM transactions AS t, users AS u
WHERE t.user_id=u.id
AND u.email=?
AND t.transaction_type=1
AND t.timetable_id=?
AND t.cell_column=?;`, email, timetable, cellColumn)
if err != nil {
if err == sql.ErrNoRows {
resp.CellsCount = 0
functions.ResponseOK(w, "success", resp)
return
}
functions.ResponseError(w, 500, err.Error())
return
}
defer rows.Close()
cells := []models.CellTransactionModel{}
for rows.Next() {
temp := models.CellTransactionModel{}
err := rows.Scan(&temp.UserEmail, &temp.UserID, &temp.CellColumn, &temp.CellStart, &temp.CellEnd, &temp.Lecture, &temp.Professor, &temp.TransactionID, &temp.CreatedAt, &temp.Capacity)
if err != nil {
continue
}
cells = append(cells, temp)
}
// Compare
for i := cellStart; i <= cellEnd; i++ {
isInRange := false
for _, cell := range cells {
if functions.InRange(i, cell.CellStart, cell.CellEnd) {
temp := models.CellItem{}
temp.Cell = fmt.Sprintf("%s%d", cellColumn, i)
temp.IsReserved = true
temp.UserEmail = cell.UserEmail
temp.UserID = cell.UserID
temp.Lecture = cell.Lecture
temp.Professor = cell.Professor
temp.TransactionID = cell.TransactionID
temp.CreatedAt = functions.ToKST(cell.CreatedAt)
temp.Capacity = cell.Capacity
resp.Cells = append(resp.Cells, temp)
isInRange = true
break
}
}
if !isInRange {
temp := models.CellItem{}
temp.Cell = fmt.Sprintf("%s%d", cellColumn, i)
temp.IsReserved = false
resp.Cells = append(resp.Cells, temp)
}
}
// Struct for response
resp.CellsCount = len(resp.Cells)
functions.ResponseOK(w, "success", resp)
}