Zapis danych z formularza - oddzielne parametry

PC30-SklepSpring/src/main/java/sklep/controller/ProductController.java

@@ -9,6 +9,7 @@ import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.ResponseBody;
 
@@ -89,6 +90,24 @@ public class ProductController {
     	// W tej metodzie wyświetlamy pusty formularz
         return "product_form";
     }
+    
+    @PostMapping({"/{id}/edit", "/new"})
+    // Ta metoda zapisuje dane przysłane z formularza obojętnie, czy to było edit, czy new
+    public String saveProduct(Integer productId, String productName, BigDecimal price, BigDecimal vat, String description,
+            Model model) {
+    	Product product = new Product();
+        product.setProductId(productId);
+        product.setProductName(productName);
+        product.setPrice(price);
+        product.setVat(vat);
+        product.setDescription(description);
+        System.out.println("id przed zapisem: " + product.getProductId());
+        productRepository.save(product);
+        System.out.println("id po zapisie: " + product.getProductId());
+        model.addAttribute("product", product);
+
+    	return "product_form";
+    }
 	
     @GetMapping(path="/{id}/photo", produces="image/jpeg")
     @ResponseBody

PC30-SklepSpring/src/main/java/sklep/security/SecurityConfig.java

@@ -10,7 +10,9 @@ public class SecurityConfig {
 
 	@Bean
 	SecurityFilterChain configHttpSecurity(HttpSecurity httpSecurity) throws Exception {
-		httpSecurity.authorizeHttpRequests(authz -> authz.anyRequest().permitAll());
+		httpSecurity
+			.authorizeHttpRequests(authz -> authz.anyRequest().permitAll())
+			.csrf(authz -> authz.disable());
 
 		return httpSecurity.build();
 	}