added public profile

Author: nevzattalhaozcan

internal/handlers/server.go

@@ -163,6 +163,8 @@ func (s *Server) setupRoutes() {
 		protected.GET("/profile", userHandler.GetProfile)
 		protected.GET("/users/:id", middleware.AuthorizeSelf(), userHandler.GetUser)
 		protected.GET("/users", middleware.RestrictToRoles("admin", "superuser"), userHandler.GetAllUsers)
+		protected.GET("/users/search", userHandler.SearchUsers)
+		protected.GET("/users/:id/profile", userHandler.GetPublicProfile)
 		protected.PUT("/users/:id", middleware.AuthorizeSelf(), userHandler.UpdateUser)
 		protected.DELETE("/users/:id", middleware.AuthorizeSelf(), userHandler.DeleteUser)
 		protected.PATCH("/users/:id/password", userHandler.PatchPassword)

internal/handlers/user.go

@@ -379,3 +379,77 @@ func (h *UserHandler) PatchAccount(c *gin.Context) {
 		"user":    user,
 	})
 }
+
+// @Summary Get public user profile
+// @Description Get public profile information for any user (no sensitive data)
+// @Tags Users
+// @Produce json
+// @Param id path int true "User ID"
+// @Success 200 {object} map[string]interface{} "Public profile retrieved successfully"
+// @Failure 400 {object} map[string]string "Bad request"
+// @Failure 404 {object} map[string]string "User not found"
+// @Router /api/v1/users/{id}/profile [get]
+func (h *UserHandler) GetPublicProfile(c *gin.Context) {
+    idParam := c.Param("id")
+    userID, err := strconv.ParseUint(idParam, 10, 32)
+    if err != nil {
+        c.JSON(http.StatusBadRequest, gin.H{"error": "invalid user ID"})
+        return
+    }
+
+    var viewerID *uint
+    if rawViewerID, exists := c.Get("user_id"); exists {
+        if vID, ok := rawViewerID.(uint); ok {
+            viewerID = &vID
+        }
+    }
+
+    profile, err := h.userService.GetPublicUserProfile(uint(userID), viewerID)
+    if err != nil {
+        c.JSON(http.StatusNotFound, gin.H{"error": err.Error()})
+        return
+    }
+
+    stats, _ := h.userService.GetUserProfileStats(uint(userID))
+
+    c.Header("Cache-Control", "public, max-age=300") // Cache for 5 minutes
+    c.JSON(http.StatusOK, gin.H{
+        "profile": profile,
+        "stats":   stats,
+    })
+}
+
+// @Summary Search users
+// @Description Search for users by username or name
+// @Tags Users
+// @Produce json
+// @Param q query string true "Search query"
+// @Param limit query int false "Maximum results" default(20)
+// @Success 200 {object} map[string]interface{} "Search results"
+// @Failure 400 {object} map[string]string "Bad request"
+// @Router /api/v1/users/search [get]
+func (h *UserHandler) SearchUsers(c *gin.Context) {
+    query := c.Query("q")
+    if query == "" || len(query) < 2 {
+        c.JSON(http.StatusBadRequest, gin.H{"error": "query must be at least 2 characters"})
+        return
+    }
+
+    limit, _ := strconv.Atoi(c.DefaultQuery("limit", "20"))
+    if limit > 50 {
+        limit = 50
+    }
+
+    profiles, err := h.userService.SearchPublicUsers(query, limit)
+    if err != nil {
+        c.JSON(http.StatusInternalServerError, gin.H{"error": "search failed"})
+        return
+    }
+
+    c.Header("Cache-Control", "public, max-age=300")
+    c.JSON(http.StatusOK, gin.H{
+        "users": profiles,
+        "count": len(profiles),
+        "query": query,
+    })
+}

internal/models/user.go

@@ -39,6 +39,27 @@ type User struct {
 	DeletedAt gorm.DeletedAt `json:"-" gorm:"index"`
 }
 
+type PublicUserProfile struct {
+	ID             uint           `json:"id"`
+    Username       string         `json:"username"`
+    FirstName      string         `json:"first_name"`
+    LastName       string         `json:"last_name"`
+    AvatarURL      *string        `json:"avatar_url"`
+    Location       *string        `json:"location"`
+    FavoriteGenres pq.StringArray `json:"favorite_genres"`
+    Bio            *string        `json:"bio"`
+    BooksRead      int            `json:"books_read"`
+    Badges         pq.StringArray `json:"badges"`
+    IsOnline       bool           `json:"is_online"`
+    LastSeen       *time.Time     `json:"last_seen,omitempty"`
+    JoinedAt       time.Time      `json:"joined_at"`
+
+    TotalPosts     int `json:"total_posts"`
+    TotalComments  int `json:"total_comments"`
+    ClubsCount     int `json:"clubs_count"`
+    ReadingStreak  int `json:"reading_streak,omitempty"`
+}
+
 type UserResponse struct {
 	ID        uint   `json:"id"`
 	Username  string `json:"username"`
@@ -164,3 +185,21 @@ type ErrorResponse struct {
 type SuccessResponse struct {
 	Message string `json:"message"`
 }
+
+func (u *User) ToPublicProfile() PublicUserProfile {
+    return PublicUserProfile{
+        ID:             u.ID,
+        Username:       u.Username,
+        FirstName:      u.FirstName,
+        LastName:       u.LastName,
+        AvatarURL:      u.AvatarURL,
+        Location:       u.Location,
+        FavoriteGenres: u.FavoriteGenres,
+        Bio:            u.Bio,
+        BooksRead:      u.BooksRead,
+        Badges:         u.Badges,
+        IsOnline:       u.IsOnline,
+        LastSeen:       u.LastSeen,
+        JoinedAt:       u.CreatedAt,
+    }
+}

internal/repository/interfaces.go

@@ -10,6 +10,7 @@ type UserRepository interface {
 	Update(user *models.User) error
 	Delete(id uint) error
 	List(limit, offset int) ([]*models.User, error)
+	SearchByUsernameOrName(query string, limit int) ([]*models.User, error)
 	GetByEmailIncludingDeleted(email string) (*models.User, error)
 	GetByUsernameIncludingDeleted(username string) (*models.User, error)
 }

internal/repository/mocks/mock_repositories.go

@@ -77,4 +77,20 @@ func (r *userRepository) List(limit, offset int) ([]*models.User, error) {
 		return nil, err
 	}
 	return users, nil
+}
+
+func (r *userRepository) SearchByUsernameOrName(query string, limit int) ([]*models.User, error) {
+    var users []*models.User
+    
+    err := r.db.Where("is_active = ?", true).
+        Where("LOWER(username) LIKE LOWER(?) OR LOWER(first_name) LIKE LOWER(?) OR LOWER(last_name) LIKE LOWER(?)", 
+            "%"+query+"%", "%"+query+"%", "%"+query+"%").
+        Limit(limit).
+        Find(&users).Error
+    
+    if err != nil {
+        return nil, err
+    }
+    
+    return users, nil
 }

internal/repository/user.go

@@ -240,3 +240,7 @@ func (r *cachedUserRepository) Delete(id uint) error {
 func (r *cachedUserRepository) List(limit, offset int) ([]*models.User, error) {
 	return r.base.List(limit, offset)
 }
+
+func (r *cachedUserRepository) SearchByUsernameOrName(query string, limit int) ([]*models.User, error) {
+	return r.base.SearchByUsernameOrName(query, limit)
+}

internal/repository/user_cache.go

@@ -13,7 +13,7 @@ import (
 
 type UserService struct {
 	userRepo repository.UserRepository
-	config  *config.Config
+	config   *config.Config
 }
 
 func NewUserService(userRepo repository.UserRepository, config *config.Config) *UserService {
@@ -44,18 +44,18 @@ func (s *UserService) Register(req *models.RegisterRequest) (*models.UserRespons
 	}
 
 	user := &models.User{
-		Username: req.Username,
-		Email:    req.Email,
-		PasswordHash: hashedPassword,
-		FirstName: req.FirstName,
-		LastName:  req.LastName,
-		IsActive: true,
-		Role: req.Role,
-		AvatarURL: &req.AvatarURL,
-		Location: &req.Location,
+		Username:       req.Username,
+		Email:          req.Email,
+		PasswordHash:   hashedPassword,
+		FirstName:      req.FirstName,
+		LastName:       req.LastName,
+		IsActive:       true,
+		Role:           req.Role,
+		AvatarURL:      &req.AvatarURL,
+		Location:       &req.Location,
 		FavoriteGenres: req.FavoriteGenres,
-		Bio: &req.Bio,
-		ReadingGoal: req.ReadingGoal,
+		Bio:            &req.Bio,
+		ReadingGoal:    req.ReadingGoal,
 	}
 
 	if err := s.userRepo.Create(user); err != nil {
@@ -85,9 +85,9 @@ func (s *UserService) Login(req *models.LoginRequest) (string, *models.UserRespo
 
 	token, err := utils.GenerateJWT(
 		user.ID,
-		user.Email, 
-		user.Role, 
-		s.config.JWT.Secret, 
+		user.Email,
+		user.Role,
+		s.config.JWT.Secret,
 		s.config.JWT.ExpirationHours,
 	)
 	if err != nil {
@@ -112,6 +112,69 @@ func (s *UserService) GetUserByID(id uint) (*models.UserResponse, error) {
 	return &response, nil
 }
 
+func (s *UserService) GetPublicUserProfile(userID uint, viewerID *uint) (*models.PublicUserProfile, error) {
+	user, err := s.userRepo.GetByID(userID)
+	if err != nil {
+		if errors.Is(err, gorm.ErrRecordNotFound) {
+			return nil, errors.New("user not found")
+		}
+		return nil, err
+	}
+
+	if !user.IsActive {
+		return nil, errors.New("user profile is not available")
+	}
+
+	profile := user.ToPublicProfile()
+
+	profile.TotalPosts = len(user.Posts)
+	profile.TotalComments = len(user.Comments)
+	profile.ClubsCount = len(user.ClubMemberships)
+
+	return &profile, nil
+}
+
+func (s *UserService) GetUserProfileStats(userID uint) (map[string]interface{}, error) {
+	user, err := s.userRepo.GetByID(userID)
+	if err != nil {
+		if errors.Is(err, gorm.ErrRecordNotFound) {
+			return nil, errors.New("user not found")
+		}
+		return nil, err
+	}
+
+	stats := map[string]interface{}{
+		"total_posts":    len(user.Posts),
+		"total_comments": len(user.Comments),
+		"clubs_joined":   len(user.ClubMemberships),
+		"books_read":     user.BooksRead,
+		"profile_views":  0,
+		"member_since":   user.CreatedAt.Format("January 2006"),
+	}
+
+	return stats, nil
+}
+
+func (s *UserService) SearchPublicUsers(query string, limit int) ([]models.PublicUserProfile, error) {
+	if limit <= 0 || limit > 50 {
+		limit = 20
+	}
+
+	users, err := s.userRepo.SearchByUsernameOrName(query, limit)
+	if err != nil {
+		return nil, err
+	}
+
+	var profiles []models.PublicUserProfile
+	for _, user := range users {
+		if user.IsActive {
+			profiles = append(profiles, user.ToPublicProfile())
+		}
+	}
+
+	return profiles, nil
+}
+
 func (s *UserService) GetAllUsers() ([]models.UserResponse, error) {
 	users, err := s.userRepo.List(50, 0)
 	if err != nil {
@@ -216,7 +279,7 @@ func (s *UserService) DeleteUser(id uint) error {
 	if err := s.userRepo.Update(user); err != nil {
 		return errors.New("failed to deactivate user")
 	}
-	
+
 	err = s.userRepo.Delete(id)
 	if err != nil {
 		return err
@@ -340,4 +403,4 @@ func (s *UserService) UpdateAccount(id uint, req *models.UpdateAccountRequest) (
 
 	response := user.ToResponse()
 	return &response, nil
-}
+}