| | | 1 | | using FAU.Logica.DTOs; |
| | | 2 | | using FAU.Logica.Services; |
| | | 3 | | using Microsoft.AspNetCore.Authorization; |
| | | 4 | | using Microsoft.AspNetCore.Mvc; |
| | | 5 | | |
| | | 6 | | namespace FAU.API.Controllers; |
| | | 7 | | |
| | | 8 | | /// <summary> |
| | | 9 | | /// Gestión de usuarios del sistema |
| | | 10 | | /// </summary> |
| | | 11 | | [ApiController] |
| | | 12 | | [Route("api/[controller]")] |
| | | 13 | | [Authorize(Roles = "Administrador")] |
| | | 14 | | public class UsuariosController : ControllerBase |
| | | 15 | | { |
| | | 16 | | private readonly IUsuarioService _usuarioService; |
| | | 17 | | private readonly ILogger<UsuariosController> _logger; |
| | | 18 | | |
| | 15 | 19 | | public UsuariosController( |
| | 15 | 20 | | IUsuarioService usuarioService, |
| | 15 | 21 | | ILogger<UsuariosController> logger) |
| | | 22 | | { |
| | 15 | 23 | | _usuarioService = usuarioService; |
| | 15 | 24 | | _logger = logger; |
| | 15 | 25 | | } |
| | | 26 | | |
| | | 27 | | /// <summary> |
| | | 28 | | /// Listar usuarios con filtros y paginación |
| | | 29 | | /// GET /api/usuarios?rolId=&estado=&q=&page=1&pageSize=25 |
| | | 30 | | /// </summary> |
| | | 31 | | [HttpGet] |
| | | 32 | | public async Task<IActionResult> GetUsuarios( |
| | | 33 | | [FromQuery] long? rolId, |
| | | 34 | | [FromQuery] string? estado, |
| | | 35 | | [FromQuery] string? q, |
| | | 36 | | [FromQuery] int page = 1, |
| | | 37 | | [FromQuery] int pageSize = 25) |
| | | 38 | | { |
| | | 39 | | try |
| | | 40 | | { |
| | | 41 | | // Validación de parámetros |
| | 4 | 42 | | if (page < 1) page = 1; |
| | 4 | 43 | | if (pageSize < 1) pageSize = 25; |
| | 4 | 44 | | if (pageSize > 100) pageSize = 100; // Límite máximo |
| | | 45 | | |
| | 4 | 46 | | var usuarios = await _usuarioService.GetAllAsync(); |
| | | 47 | | |
| | | 48 | | // Aplicar filtros |
| | 3 | 49 | | var query = usuarios.AsQueryable(); |
| | | 50 | | |
| | 3 | 51 | | if (rolId.HasValue) |
| | | 52 | | { |
| | 1 | 53 | | query = query.Where(u => u.Roles.Any(r => r.Id == rolId.Value)); |
| | | 54 | | } |
| | | 55 | | |
| | 3 | 56 | | if (!string.IsNullOrWhiteSpace(estado)) |
| | | 57 | | { |
| | 0 | 58 | | query = query.Where(u => u.Estado.Equals(estado, StringComparison.OrdinalIgnoreCase)); |
| | | 59 | | } |
| | | 60 | | |
| | 3 | 61 | | if (!string.IsNullOrWhiteSpace(q)) |
| | | 62 | | { |
| | 0 | 63 | | var searchTerm = q.ToLower(); |
| | 0 | 64 | | query = query.Where(u => |
| | 0 | 65 | | u.Username.ToLower().Contains(searchTerm) || |
| | 0 | 66 | | (u.Persona != null && ( |
| | 0 | 67 | | u.Persona.Nombre.ToLower().Contains(searchTerm) || |
| | 0 | 68 | | u.Persona.Apellido.ToLower().Contains(searchTerm) || |
| | 0 | 69 | | (u.Persona.Email != null && u.Persona.Email.ToLower().Contains(searchTerm)) |
| | 0 | 70 | | )) |
| | 0 | 71 | | ); |
| | | 72 | | } |
| | | 73 | | |
| | 3 | 74 | | var total = query.Count(); |
| | | 75 | | |
| | | 76 | | // Paginación |
| | 3 | 77 | | var usuariosPaginados = query |
| | 3 | 78 | | .Skip((page - 1) * pageSize) |
| | 3 | 79 | | .Take(pageSize) |
| | 3 | 80 | | .ToList() |
| | 13 | 81 | | .Select(u => new |
| | 13 | 82 | | { |
| | 13 | 83 | | id = u.Id, |
| | 13 | 84 | | usuario = u.Username, |
| | 13 | 85 | | nombre = u.Persona != null ? $"{u.Persona.Nombre} {u.Persona.Apellido}" : "", |
| | 13 | 86 | | email = u.Persona?.Email ?? "", |
| | 13 | 87 | | rol = u.Roles.FirstOrDefault()?.Nombre ?? "", |
| | 13 | 88 | | estado = u.Estado, |
| | 13 | 89 | | ultimoAcceso = u.FechaActualizacion |
| | 13 | 90 | | }) |
| | 3 | 91 | | .ToList(); |
| | | 92 | | |
| | 3 | 93 | | var response = new |
| | 3 | 94 | | { |
| | 3 | 95 | | items = usuariosPaginados, |
| | 3 | 96 | | total = total, |
| | 3 | 97 | | page = page, |
| | 3 | 98 | | pageSize = pageSize, |
| | 3 | 99 | | totalPages = (int)Math.Ceiling((double)total / pageSize) |
| | 3 | 100 | | }; |
| | | 101 | | |
| | 3 | 102 | | return Ok(ApiResponse<object>.SuccessResult(response)); |
| | | 103 | | } |
| | 1 | 104 | | catch (Exception ex) |
| | | 105 | | { |
| | 1 | 106 | | _logger.LogError(ex, "Error al obtener usuarios"); |
| | 1 | 107 | | return StatusCode(500, ApiResponse<string>.ErrorResult("Error interno del servidor")); |
| | | 108 | | } |
| | 4 | 109 | | } |
| | | 110 | | |
| | | 111 | | /// <summary> |
| | | 112 | | /// Obtener detalle de usuario por ID |
| | | 113 | | /// GET /api/usuarios/{id} |
| | | 114 | | /// </summary> |
| | | 115 | | [HttpGet("{id}")] |
| | | 116 | | public async Task<IActionResult> GetUsuario(long id) |
| | | 117 | | { |
| | | 118 | | try |
| | | 119 | | { |
| | 3 | 120 | | var usuario = await _usuarioService.GetByIdAsync(id); |
| | | 121 | | |
| | 2 | 122 | | if (usuario == null) |
| | | 123 | | { |
| | 1 | 124 | | return NotFound(ApiResponse<string>.ErrorResult("Usuario no encontrado")); |
| | | 125 | | } |
| | | 126 | | |
| | 1 | 127 | | var response = new |
| | 1 | 128 | | { |
| | 1 | 129 | | id = usuario.Id, |
| | 1 | 130 | | usuario = usuario.Username, |
| | 1 | 131 | | nombre = usuario.Persona != null ? $"{usuario.Persona.Nombre} {usuario.Persona.Apellido}" : "", |
| | 1 | 132 | | email = usuario.Persona?.Email ?? "", |
| | 1 | 133 | | rolId = usuario.Roles.FirstOrDefault()?.Id, |
| | 1 | 134 | | estado = usuario.Estado |
| | 1 | 135 | | }; |
| | | 136 | | |
| | 1 | 137 | | return Ok(ApiResponse<object>.SuccessResult(response)); |
| | | 138 | | } |
| | 1 | 139 | | catch (Exception ex) |
| | | 140 | | { |
| | 1 | 141 | | _logger.LogError(ex, "Error al obtener usuario {Id}", id); |
| | 1 | 142 | | return StatusCode(500, ApiResponse<string>.ErrorResult("Error interno del servidor")); |
| | | 143 | | } |
| | 3 | 144 | | } |
| | | 145 | | |
| | | 146 | | /// <summary> |
| | | 147 | | /// Crear usuario con contraseña temporal |
| | | 148 | | /// POST /api/usuarios |
| | | 149 | | /// </summary> |
| | | 150 | | [HttpPost] |
| | | 151 | | public async Task<IActionResult> CreateUsuario([FromBody] CreateUsuarioRequest request) |
| | | 152 | | { |
| | | 153 | | try |
| | | 154 | | { |
| | | 155 | | // Validaciones |
| | 3 | 156 | | if (string.IsNullOrWhiteSpace(request.Username)) |
| | | 157 | | { |
| | 1 | 158 | | return BadRequest(ApiResponse<string>.ErrorResult("El nombre de usuario es requerido")); |
| | | 159 | | } |
| | | 160 | | |
| | 2 | 161 | | if (string.IsNullOrWhiteSpace(request.Password)) |
| | | 162 | | { |
| | 0 | 163 | | return BadRequest(ApiResponse<string>.ErrorResult("La contraseña es requerida")); |
| | | 164 | | } |
| | | 165 | | |
| | 2 | 166 | | var (success, usuario, error) = await _usuarioService.CreateAsync( |
| | 2 | 167 | | request.Username, |
| | 2 | 168 | | request.Password, |
| | 2 | 169 | | request.PersonaId); |
| | | 170 | | |
| | 2 | 171 | | if (!success) |
| | | 172 | | { |
| | 1 | 173 | | if (error?.Contains("ya existe") == true || error?.Contains("ya está en uso") == true) |
| | | 174 | | { |
| | 1 | 175 | | return Conflict(ApiResponse<string>.ErrorResult(error)); |
| | | 176 | | } |
| | 0 | 177 | | return BadRequest(ApiResponse<string>.ErrorResult(error ?? "Error al crear usuario")); |
| | | 178 | | } |
| | | 179 | | |
| | | 180 | | // Asignar roles si se especificaron |
| | 1 | 181 | | if (request.RolesIds != null && request.RolesIds.Any()) |
| | | 182 | | { |
| | 4 | 183 | | foreach (var rolId in request.RolesIds) |
| | | 184 | | { |
| | 1 | 185 | | await _usuarioService.AsignarRolAsync(usuario!.Id, rolId); |
| | | 186 | | } |
| | | 187 | | } |
| | | 188 | | |
| | 1 | 189 | | var response = new |
| | 1 | 190 | | { |
| | 1 | 191 | | id = usuario!.Id, |
| | 1 | 192 | | creado = true |
| | 1 | 193 | | }; |
| | | 194 | | |
| | 1 | 195 | | return CreatedAtAction( |
| | 1 | 196 | | nameof(GetUsuario), |
| | 1 | 197 | | new { id = usuario.Id }, |
| | 1 | 198 | | ApiResponse<object>.SuccessResult(response, "Usuario creado exitosamente")); |
| | | 199 | | } |
| | 0 | 200 | | catch (Exception ex) |
| | | 201 | | { |
| | 0 | 202 | | _logger.LogError(ex, "Error al crear usuario"); |
| | 0 | 203 | | return StatusCode(500, ApiResponse<string>.ErrorResult("Error interno del servidor")); |
| | | 204 | | } |
| | 3 | 205 | | } |
| | | 206 | | |
| | | 207 | | /// <summary> |
| | | 208 | | /// Editar usuario (incluye activar/bloquear mediante campo estado) |
| | | 209 | | /// PUT /api/usuarios/{id} |
| | | 210 | | /// </summary> |
| | | 211 | | [HttpPut("{id}")] |
| | | 212 | | public async Task<IActionResult> UpdateUsuario(long id, [FromBody] UpdateUsuarioRequest request) |
| | | 213 | | { |
| | | 214 | | try |
| | | 215 | | { |
| | 2 | 216 | | var usuario = await _usuarioService.GetByIdAsync(id); |
| | 2 | 217 | | if (usuario == null) |
| | | 218 | | { |
| | 1 | 219 | | return NotFound(ApiResponse<string>.ErrorResult("Usuario no encontrado")); |
| | | 220 | | } |
| | | 221 | | |
| | | 222 | | // Actualizar datos de persona si se proporcionan |
| | 1 | 223 | | if (usuario.Persona != null) |
| | | 224 | | { |
| | 1 | 225 | | if (!string.IsNullOrWhiteSpace(request.Nombre)) |
| | | 226 | | { |
| | | 227 | | // Asumiendo que nombre viene como "Nombre Apellido" |
| | 1 | 228 | | var nombres = request.Nombre.Split(' ', 2); |
| | 1 | 229 | | usuario.Persona.Nombre = nombres[0]; |
| | 1 | 230 | | if (nombres.Length > 1) |
| | | 231 | | { |
| | 1 | 232 | | usuario.Persona.Apellido = nombres[1]; |
| | | 233 | | } |
| | | 234 | | } |
| | | 235 | | |
| | 1 | 236 | | if (!string.IsNullOrWhiteSpace(request.Email)) |
| | | 237 | | { |
| | 1 | 238 | | usuario.Persona.Email = request.Email; |
| | | 239 | | } |
| | | 240 | | } |
| | | 241 | | |
| | | 242 | | // Cambiar rol si se especifica |
| | 1 | 243 | | if (request.RolId.HasValue) |
| | | 244 | | { |
| | | 245 | | // Remover roles actuales |
| | 0 | 246 | | var rolesActuales = usuario.Roles.ToList(); |
| | 0 | 247 | | foreach (var rol in rolesActuales) |
| | | 248 | | { |
| | 0 | 249 | | await _usuarioService.RemoverRolAsync(id, rol.Id); |
| | | 250 | | } |
| | | 251 | | |
| | | 252 | | // Asignar nuevo rol |
| | 0 | 253 | | var (successRol, errorRol) = await _usuarioService.AsignarRolAsync(id, request.RolId.Value); |
| | 0 | 254 | | if (!successRol) |
| | | 255 | | { |
| | 0 | 256 | | return BadRequest(ApiResponse<string>.ErrorResult(errorRol ?? "Error al asignar rol")); |
| | | 257 | | } |
| | | 258 | | } |
| | | 259 | | |
| | | 260 | | // Cambiar estado si se especifica |
| | 1 | 261 | | if (!string.IsNullOrWhiteSpace(request.Estado)) |
| | | 262 | | { |
| | 1 | 263 | | var (successEstado, errorEstado) = await _usuarioService.CambiarEstadoAsync(id, request.Estado); |
| | 1 | 264 | | if (!successEstado) |
| | | 265 | | { |
| | 0 | 266 | | return BadRequest(ApiResponse<string>.ErrorResult(errorEstado ?? "Error al cambiar estado")); |
| | | 267 | | } |
| | | 268 | | } |
| | | 269 | | |
| | 1 | 270 | | var response = new |
| | 1 | 271 | | { |
| | 1 | 272 | | actualizado = true |
| | 1 | 273 | | }; |
| | | 274 | | |
| | 1 | 275 | | return Ok(ApiResponse<object>.SuccessResult(response, "Usuario actualizado exitosamente")); |
| | | 276 | | } |
| | 0 | 277 | | catch (Exception ex) |
| | | 278 | | { |
| | 0 | 279 | | _logger.LogError(ex, "Error al actualizar usuario {Id}", id); |
| | 0 | 280 | | return StatusCode(500, ApiResponse<string>.ErrorResult("Error interno del servidor")); |
| | | 281 | | } |
| | 2 | 282 | | } |
| | | 283 | | |
| | | 284 | | /// <summary> |
| | | 285 | | /// Cambiar contraseña de usuario (también para reset) |
| | | 286 | | /// PATCH /api/usuarios/{id}/password |
| | | 287 | | /// </summary> |
| | | 288 | | [HttpPatch("{id}/password")] |
| | | 289 | | public async Task<IActionResult> CambiarPassword(long id, [FromBody] CambiarPasswordRequest request) |
| | | 290 | | { |
| | | 291 | | try |
| | | 292 | | { |
| | 3 | 293 | | if (string.IsNullOrWhiteSpace(request.NuevaPassword)) |
| | | 294 | | { |
| | 1 | 295 | | return BadRequest(ApiResponse<string>.ErrorResult("La nueva contraseña es requerida")); |
| | | 296 | | } |
| | | 297 | | |
| | 2 | 298 | | var (success, error) = await _usuarioService.CambiarPasswordAsync(id, request.NuevaPassword); |
| | | 299 | | |
| | 2 | 300 | | if (!success) |
| | | 301 | | { |
| | 1 | 302 | | if (error?.Contains("no encontrado") == true) |
| | | 303 | | { |
| | 1 | 304 | | return NotFound(ApiResponse<string>.ErrorResult(error)); |
| | | 305 | | } |
| | 0 | 306 | | return BadRequest(ApiResponse<string>.ErrorResult(error ?? "Error al cambiar contraseña")); |
| | | 307 | | } |
| | | 308 | | |
| | 1 | 309 | | var response = new |
| | 1 | 310 | | { |
| | 1 | 311 | | actualizado = true |
| | 1 | 312 | | }; |
| | | 313 | | |
| | 1 | 314 | | return Ok(ApiResponse<object>.SuccessResult(response, "Contraseña actualizada exitosamente")); |
| | | 315 | | } |
| | 0 | 316 | | catch (Exception ex) |
| | | 317 | | { |
| | 0 | 318 | | _logger.LogError(ex, "Error al cambiar contraseña del usuario {Id}", id); |
| | 0 | 319 | | return StatusCode(500, ApiResponse<string>.ErrorResult("Error interno del servidor")); |
| | | 320 | | } |
| | 3 | 321 | | } |
| | | 322 | | } |
| | | 323 | | |