Fix edit user roles and and submit button and add better styling

Author: Leo7Deng

backend/circles/handler.go

@@ -85,6 +85,17 @@ func GetInviteUsersHandler(w http.ResponseWriter, r *http.Request) {
 	json.NewEncoder(w).Encode(users)
 }
 
+func EditUsersHandler(w http.ResponseWriter, r *http.Request) {
+	switch r.Method {
+	case "POST":
+		GetEditUsersHandler(w, r)
+	case "PUT":
+		UpdateEditUsersHandler(w, r)
+	default:
+		http.Error(w, "Method not allowed", http.StatusMethodNotAllowed)
+	}
+}
+
 func GetEditUsersHandler(w http.ResponseWriter, r *http.Request) {
 	userID := r.Context().Value(middleware.UserIDKey).(string)
 	type Circle struct {
@@ -98,19 +109,48 @@ func GetEditUsersHandler(w http.ResponseWriter, r *http.Request) {
 		json.NewEncoder(w).Encode("HTTP 400 bad request")
 		return
 	}
-	fmt.Println("Circle ID EDIT: " + circle.ID + " USER ID: " + userID)
-	users, err := postgres.GetInviteUsersInCircle(userID, circle.ID)
+	users, err := postgres.GetExistingUsersInCircle(userID, circle.ID)
 	if err != nil {
 		fmt.Printf("Failed to get users in circle\n")
 		w.WriteHeader(http.StatusInternalServerError)
 		json.NewEncoder(w).Encode("Failed to get users in circle")
 		return
 	}
-	fmt.Printf("Users in circle: %v\n", users)
 	w.WriteHeader(http.StatusOK)
 	json.NewEncoder(w).Encode(users)
 }
 
+func UpdateEditUsersHandler(w http.ResponseWriter, r *http.Request) {
+	userID := r.Context().Value(middleware.UserIDKey).(string)
+	type EditData struct {
+		ID     string `json:"circle_id"`
+		UserID []struct {
+			ID   string `json:"id"`
+			Role string `json:"role"`
+		} `json:"users"`
+	}
+	var circle EditData
+	err := json.NewDecoder(r.Body).Decode(&circle)
+	if err != nil {
+		fmt.Printf("HTTP 400 bad request\n")
+		w.WriteHeader(http.StatusBadRequest)
+		json.NewEncoder(w).Encode("HTTP 400 bad request")
+		return
+	}
+	for _, user := range circle.UserID {
+		fmt.Println("Circle ID EDIT: " + circle.ID + " USER ID: " + userID + " EDIT USER ID: " + user.ID + " ROLE: " + user.Role)
+		err = postgres.EditRoleInCircle(circle.ID, user.ID, user.Role)
+	}
+	if err != nil {
+		fmt.Printf("Failed to edit users in circle\n")
+		w.WriteHeader(http.StatusInternalServerError)
+		json.NewEncoder(w).Encode("Failed to edit users in circle")
+		return
+	}
+	w.WriteHeader(http.StatusOK)
+	json.NewEncoder(w).Encode("Users edited in circle")
+}
+
 func CreateCircleHandler(w http.ResponseWriter, r *http.Request, hub *websockets.Hub) {
 	var createCircleData models.CreateCircleData
 	err := json.NewDecoder(r.Body).Decode(&createCircleData)

backend/main.go

@@ -87,7 +87,7 @@ func main() {
 	mux.Handle("/api/circles/edit", middleware.AddCorsHeaders(
 		middleware.AuthMiddleware(
 			http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-				circles.GetEditUsersHandler(w, r)
+				circles.EditUsersHandler(w, r)
 			}),
 		),
 	))

backend/middleware/middleware.go

@@ -17,7 +17,7 @@ func AddCorsHeaders(handler http.HandlerFunc) http.HandlerFunc {
 			w.Header().Set("Access-Control-Allow-Origin", "https://leo7deng.github.io")
 		}
 		w.Header().Set("Access-Control-Allow-Credentials", "true")
-		w.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, DELETE, GET")
+		w.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, DELETE, GET, PUT")
 		w.Header().Set("Access-Control-Allow-Headers", "Content-Type, Authorization")
 		// Handle preflight OPTIONS requests
 		if r.Method == "OPTIONS" {

backend/models/user.go

@@ -10,8 +10,9 @@ type User struct {
 }
 
 type UserRole struct {
-	User User
-	Role string
+	UserID string `json:"id"`
+	Username string `json:"username"`
+	Role string `json:"role"`
 }
 
 type RegisterData struct {

backend/postgres/circles_repo.go

@@ -3,9 +3,10 @@ package postgres
 import (
 	"context"
 	"fmt"
-	"github.com/Leo7Deng/ChatApp/models"
 	"os"
 	"time"
+
+	"github.com/Leo7Deng/ChatApp/models"
 )
 
 func GetUserCircles(userID string) ([]models.Circle, error) {
@@ -221,17 +222,76 @@ func GetInviteUsersInCircle(userID string, circleID string) ([]models.User, erro
 	return users, nil
 }
 
-func GetExistingUsersInCircle(circleID string) ([]models.UserRole, error) {
+func EditRoleInCircle(circleID string, targetUserID string, role string) error {
+	ctx := context.Background()
+	conn, err := pool.Acquire(ctx)
+	if err != nil {
+		fmt.Fprintf(os.Stderr, "Unable to acquire a connection from the pool: %v\n", err)
+	}
+	defer conn.Release()
+
+	err = conn.QueryRow(
+		ctx,
+		`
+		UPDATE users_circles
+		SET role = $1
+		WHERE user_id = $2 AND circle_id = $3
+		RETURNING role;
+		`,
+		role,
+		targetUserID,
+		circleID,
+	).Scan(&role)
+	if err != nil {
+		fmt.Fprintf(os.Stderr, "Unable to query PSQL: %v\n", err)
+		return err
+	}
+	fmt.Printf("Role updated: %v\n", role)
+	return nil
+}
+
+
+func GetRoleInCircle(userID string, circleID string) (string, error) {
+	var role string
+	err := pool.QueryRow(
+		context.Background(),
+		`
+		SELECT role
+		FROM users_circles
+		WHERE user_id = $1 AND circle_id = $2;
+		`,
+		userID,
+		circleID,
+	).Scan(&role)
+	if err != nil {
+		fmt.Fprintf(os.Stderr, "Unable to query PSQL: %v\n", err)
+		return "", err
+	}
+	return role, nil
+}
+
+func GetExistingUsersInCircle(userID string, circleID string) ([]models.UserRole, error) {
+	requestingRole, err := GetRoleInCircle(userID, circleID)
+	if err != nil {
+		fmt.Fprintf(os.Stderr, "Unable to get role in circle: %v\n", err)
+		return nil, err
+	}
+	if requestingRole != "admin" {
+		fmt.Fprintf(os.Stderr, "User is not admin of circle\n")
+		return nil, fmt.Errorf("permission error")
+	}
+
 	var users []models.UserRole
 	rows, err := pool.Query(
 		context.Background(),
 		`
 		SELECT u.id, u.username, uc.role
 		FROM users u
 		INNER JOIN users_circles uc ON u.id = uc.user_id
-		WHERE uc.circle_id = $1
+		WHERE u.id != $1 AND uc.circle_id = $2
 		ORDER BY u.username ASC;
 		`,
+		userID,
 		circleID,
 	)
 	if err != nil {
@@ -242,7 +302,7 @@ func GetExistingUsersInCircle(circleID string) ([]models.UserRole, error) {
 
 	for rows.Next() {
 		var user models.UserRole
-		err = rows.Scan(&user.User.ID, &user.User.Username, &user.Role)
+		err = rows.Scan(&user.UserID, &user.Username, &user.Role)
 		if err != nil {
 			fmt.Fprintf(os.Stderr, "Unable to scan row: %v\n", err)
 			return nil, err

frontend/app/components/Dashboard.css

@@ -19,10 +19,13 @@
 }
 
 .modal {
-    width: 35vw;
+    width: 24rem;
     max-height: 50vh;
     background: white;
     border-radius: 10px;
+    padding: 2rem;
+    padding-top: 1rem;
+    padding-bottom: 1rem;
 }
 
 .chat-container {

frontend/app/components/EditModal.css

@@ -44,4 +44,9 @@
     width: 5rem;
     padding: 0.25rem;
     padding-left: 0.5rem;
+}
+
+.username {
+    width: 5rem;
+    overflow: scroll;
 }

frontend/app/components/EditModal.tsx

@@ -18,11 +18,10 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
     const [users, setUsers] = useState<EditUser[]>([]);
 
     useEffect(() => {
-        async function fetchInviteUsers() {
+        async function fetchEditUsers() {
             const token = await getAccessToken();
             const headers = {
                 'Authorization': `Bearer ${token}`,
-                'Content-Type': 'application/json'
             };
             const body = {
                 circle_id: circleId,
@@ -38,11 +37,10 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
                         console.log("Error:", data);
                     } else {
                         console.log("Data:", data);
-                        // Initialize each user with a default role of "member"
                         const mappedUsers = data.map((user: any) => ({
                             id: user.id,
                             username: user.username,
-                            role: 'member'
+                            role: user.role,
                         }));
                         setUsers(mappedUsers);
                     }
@@ -51,10 +49,9 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
                     console.log(error);
                 });
         }
-        fetchInviteUsers();
+        fetchEditUsers();
     }, [circleId, getAccessToken]);
 
-    // Update the role for the specified user
     const handleRoleChange = (userId: string, newRole: string) => {
         setUsers(prevUsers => 
             prevUsers.map(user => 
@@ -68,16 +65,14 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
         const token = await getAccessToken();
         const headers = {
             'Authorization': `Bearer ${token}`,
-            'Content-Type': 'application/json'
         };
-        // Send each user's id and the chosen role
         const body = {
             circle_id: circleId,
             users: users.map(user => ({ id: user.id, role: user.role })),
         };
         console.log(body);
-        fetch('http://localhost:8000/api/circles/edit/add', {
-            method: 'POST',
+        fetch('http://localhost:8000/api/circles/edit', {
+            method: 'PUT',
             headers: headers,
             body: JSON.stringify(body),
         })
@@ -98,7 +93,7 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
     if (!isOpen) return null;
 
     return (
-        <div className="mx-auto max-w-screen-xl px-4 py-2 sm:px-6 lg:px-8 relative z-10 focus:outline-none">
+        <div className="mx-auto max-w-screen-xl relative z-10 focus:outline-none">
             <form action="#" className="mx-auto mb-4 mt-6 max-w-md space-y-4" onSubmit={handleSubmit}>
                 <div>
                     <div className="search w-full relative rounded-md">
@@ -120,12 +115,12 @@ function EditModal({ isOpen, setOpen, circleId }: InviteModalProps) {
                         <ul>
                             {users.length === 0 && (
                                 <li className="user-item flex items-center gap-2">
-                                    <p className="font-medium text-sm text-gray-500">No users found</p>
+                                    <p className="font-medium text-sm text-gray-500">You don't have admin access to this circle</p>
                                 </li>
                             )}
                             {users.length != 0 && users.map(user => (
                                 <li key={user.id} className="user-item flex items-center gap-2">
-                                    <p className="font-medium text-sm text-gray-500">{user.username}</p>
+                                    <p className="font-medium text-sm text-gray-500 username">{user.username}</p>
                                     <select
                                         value={user.role}
                                         onChange={(e) => handleRoleChange(user.id, e.target.value)}

frontend/app/components/InviteModal.tsx

@@ -101,7 +101,7 @@ function InviteModal({ isOpen, setOpen, circleId }: InviteModalProps) {
     if (!isOpen) return null;
 
     return (
-        <div className="mx-auto max-w-screen-xl px-4 py-2 sm:px-6 lg:px-8 relative z-10 focus:outline-none">
+        <div className="mx-auto max-w-screen-xl relative z-10 focus:outline-none">
             <form action="#" className="mx-auto mb-4 mt-6 max-w-md space-y-4" onSubmit={handleSubmit}>
                 <div>
                     <div className="search w-full relative rounded-md">