ParadauxIO · ParadauxIO · Jul 6, 2025 · Jul 6, 2025 · Jul 6, 2025 · Jul 6, 2025
diff --git a/src/main/java/io/paradaux/api/config/WebConfig.java b/src/main/java/io/paradaux/api/config/WebConfig.java
@@ -0,0 +1,19 @@
+package io.paradaux.api.config;
+
+import io.paradaux.api.interceptors.ProtectedRouteInterceptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.InterceptorRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+public class WebConfig implements WebMvcConfigurer {
+
+    @Autowired
+    private ProtectedRouteInterceptor protectedRouteInterceptor;
+
+    @Override
+    public void addInterceptors(InterceptorRegistry registry) {
+        registry.addInterceptor(protectedRouteInterceptor);
+    }
+}
diff --git a/src/main/java/io/paradaux/api/controllers/IfumController.java b/src/main/java/io/paradaux/api/controllers/IfumController.java
@@ -1,10 +1,9 @@
 package io.paradaux.api.controllers;
 
+import io.paradaux.api.models.IfumVisit;
+import io.paradaux.api.models.annotations.ProtectedRoute;
 import io.paradaux.api.services.IfumService;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.bind.annotation.*;
 
 @RestController
 @RequestMapping("/api/ifum")
@@ -16,9 +15,10 @@ public IfumController(IfumService ifumService) {
         this.ifumService = ifumService;
     }
 
+    @ProtectedRoute
     @PostMapping("/visit")
-    public void insertVisit() {
-        ifumService.insertVisit();
+    public void insertVisit(@RequestBody IfumVisit visit) {
+        ifumService.insertVisit(visit);
     }
 
     @GetMapping("/visits")

diff --git a/src/main/java/io/paradaux/api/interceptors/ProtectedRouteInterceptor.java b/src/main/java/io/paradaux/api/interceptors/ProtectedRouteInterceptor.java
@@ -0,0 +1,38 @@
+package io.paradaux.api.interceptors;
+
+import io.paradaux.api.models.annotations.ProtectedRoute;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+import org.springframework.web.method.HandlerMethod;
+import org.springframework.web.servlet.HandlerInterceptor;
+
+@Component
+public class ProtectedRouteInterceptor implements HandlerInterceptor {
+
+    @Value("${api.secret}")
+    private String secret;
+
+    @Override
+    public boolean preHandle(HttpServletRequest request,
+                             HttpServletResponse response,
+                             Object handler) throws Exception {
+        if (handler instanceof HandlerMethod) {
+            HandlerMethod method = (HandlerMethod) handler;
+
+            boolean methodProtected = method.hasMethodAnnotation(ProtectedRoute.class);
+            boolean classProtected = method.getBeanType().isAnnotationPresent(ProtectedRoute.class);
+
+            if (methodProtected || classProtected) {
+                String secretHeader = request.getHeader("X-SECRET");
+                if (secretHeader == null || !secretHeader.equals(secret)) {
+                    response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+                    response.getWriter().write("Unauthorized: invalid or missing secret");
+                    return false;
+                }
+            }
+        }
+        return true;
+    }
+}
diff --git a/src/main/java/io/paradaux/api/mappers/IfumMapper.java b/src/main/java/io/paradaux/api/mappers/IfumMapper.java
@@ -1,10 +1,10 @@
 package io.paradaux.api.mappers;
 
+import io.paradaux.api.models.IfumVisit;
 import org.apache.ibatis.annotations.Mapper;
 
 @Mapper
 public interface IfumMapper {
-
-    void insertVisit();
+    void insertVisit(IfumVisit visit);
     Integer getVisitCount();
 }
diff --git a/src/main/java/io/paradaux/api/models/IfumVisit.java b/src/main/java/io/paradaux/api/models/IfumVisit.java
@@ -6,6 +6,8 @@
 
 @Data
 public class IfumVisit {
+    private String ipAddress;
+    private String userAgent;
     private int id;
     private Timestamp createdAt;
 }
diff --git a/src/main/java/io/paradaux/api/models/annotations/ProtectedRoute.java b/src/main/java/io/paradaux/api/models/annotations/ProtectedRoute.java
@@ -0,0 +1,9 @@
+package io.paradaux.api.models.annotations;
+
+import java.lang.annotation.*;
+
+@Target({ ElementType.METHOD, ElementType.TYPE })
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+public @interface ProtectedRoute {
+}
diff --git a/src/main/java/io/paradaux/api/services/IfumService.java b/src/main/java/io/paradaux/api/services/IfumService.java
@@ -1,10 +1,12 @@
 package io.paradaux.api.services;
 
+import io.paradaux.api.models.IfumVisit;
+
 public interface IfumService {
     /**
      * Inserts a new IfumVisit record into the database.
      */
-    void insertVisit();
+    void insertVisit(IfumVisit visit);
 
     /**
      * Retrieves the total count of IfumVisit records.

diff --git a/src/main/java/io/paradaux/api/services/impl/IfumServiceImpl.java b/src/main/java/io/paradaux/api/services/impl/IfumServiceImpl.java
@@ -1,6 +1,7 @@
 package io.paradaux.api.services.impl;
 
 import io.paradaux.api.mappers.IfumMapper;
+import io.paradaux.api.models.IfumVisit;
 import io.paradaux.api.services.IfumService;
 import org.springframework.stereotype.Service;
 
@@ -14,8 +15,8 @@ public IfumServiceImpl(IfumMapper ifumMapper) {
     }
 
     @Override
-    public void insertVisit() {
-        ifumMapper.insertVisit();
+    public void insertVisit(IfumVisit visit) {
+        ifumMapper.insertVisit(visit);
     }
 
     @Override

diff --git a/src/main/resources/application-dev.yml b/src/main/resources/application-dev.yml
@@ -2,4 +2,7 @@ spring:
   datasource:
     url: ${SPRING_DATASOURCE_URL}
     username: ${SPRING_DATASOURCE_USERNAME}
-    password: ${SPRING_DATASOURCE_PASSWORD}
+    password: ${SPRING_DATASOURCE_PASSWORD}
+
+api:
+  secret: ${API_SECRET}
diff --git a/src/main/resources/application-local.yml b/src/main/resources/application-local.yml
@@ -4,3 +4,6 @@ spring:
     username: postgres
     password: example
     driver-class-name: org.postgresql.Driver
+
+api:
+  secret: test
diff --git a/src/main/resources/application-prod.yml b/src/main/resources/application-prod.yml
@@ -2,4 +2,7 @@ spring:
   datasource:
     url: ${SPRING_DATASOURCE_URL}
     username: ${SPRING_DATASOURCE_USERNAME}
-    password: ${SPRING_DATASOURCE_PASSWORD}
+    password: ${SPRING_DATASOURCE_PASSWORD}
+
+api:
+  secret: ${API_SECRET}
diff --git a/src/main/resources/db/1.sql b/src/main/resources/db/1.sql
@@ -13,5 +13,7 @@ CREATE TABLE IF NOT EXISTS api.contact_form_responses
 CREATE SCHEMA IF NOT EXISTS ifum;
 CREATE TABLE IF NOT EXISTS ifum.visits (
     id         SERIAL PRIMARY KEY,
+    ip_address VARCHAR(45) UNIQUE NOT NULL,
+    user_agent TEXT NOT NULL,
     created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP
-);
+);
diff --git a/src/main/resources/mappers/IfumMapper.xml b/src/main/resources/mappers/IfumMapper.xml
@@ -9,8 +9,12 @@
         <result property="createdAt" column="created_at"/>
     </resultMap>
 
-    <insert id="insertVisit">
-        INSERT INTO ifum.visits DEFAULT VALUES
+    <insert id="insertVisit" parameterType="IfumVisit">
+        INSERT INTO ifum.visits (ip_address, user_agent)
+        SELECT #{ipAddress}, #{userAgent}
+        WHERE NOT EXISTS (
+            SELECT 1 FROM ifum.visits WHERE ip_address = #{ipAddress}
+        )
     </insert>
 
     <select id="getVisitCount" parameterType="int" resultType="Integer">