Fisa-Tech · Aurelien861 · Jan 28, 2025 · Jan 28, 2025
diff --git a/src/main/java/org/blueline/api/controller/UserController.java b/src/main/java/org/blueline/api/controller/UserController.java
@@ -21,6 +21,8 @@
 import org.springframework.validation.annotation.Validated;
 import org.springframework.web.bind.annotation.*;
 
+import java.util.List;
+
 @RestController
 @RequestMapping("/api/users")
 @RequiredArgsConstructor
@@ -76,6 +78,20 @@ public ResponseEntity<UserDto> getMe(Authentication authentication) {
         return new ResponseEntity<>(userService.getMe(authentication), HttpStatus.OK);
     }
 
+    @GetMapping()
+    @Operation(
+            summary = "Get all users",
+            description = "The user must be authenticated and admin",
+            responses = {
+                    @ApiResponse(responseCode = "200", description = "User found"),
+                    @ApiResponse(responseCode = "401", description = "Unauthorized", content = @Content(schema = @Schema(implementation = ExceptionDto.class)))
+            },
+            security = @SecurityRequirement(name = "bearerAuth")
+    )
+    public ResponseEntity<List<UserDto>> getAll(Authentication authentication) {
+        return new ResponseEntity<>(userService.getAll(authentication), HttpStatus.OK);
+    }
+
     @PutMapping("/me")
     @Operation(
             summary = "Update the authenticated user",

diff --git a/src/main/java/org/blueline/api/service/UserService.java b/src/main/java/org/blueline/api/service/UserService.java
@@ -2,6 +2,7 @@
 
 import lombok.RequiredArgsConstructor;
 import org.blueline.api.exception.ConflictException;
+import org.blueline.api.exception.UnauthorizedException;
 import org.blueline.api.model.User;
 import org.blueline.api.model.dto.UserDto;
 import org.blueline.api.repository.UserRepository;
@@ -11,6 +12,7 @@
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.stereotype.Service;
 
+import java.util.List;
 import java.util.Random;
 
 @Service
@@ -69,5 +71,15 @@ public static String generateUniqueFriendCode(long number) {
         return hashids.encode(number);
     }
 
+    public List<UserDto> getAll(Authentication authentication) {
+        User user = authService.authenticate(authentication);
+
+        if(!user.isAdmin()) {
+            throw new UnauthorizedException("You do not have permission get all users");
+        }
+        return userRepository.findAll().stream()
+                .map(u -> modelMapper.map(u, UserDto.class))
+                .toList();
+    }
 }
 
diff --git a/target/classes/org/blueline/api/controller/UserController.class b/target/classes/org/blueline/api/controller/UserController.class
diff --git a/target/classes/org/blueline/api/service/UserService.class b/target/classes/org/blueline/api/service/UserService.class