fix docs

Author: RA341

devU-api/src/entities/attendence/attendance.router.ts

@@ -8,14 +8,14 @@ import AttendanceController from './attendance.controller'
 const Router = express.Router({ mergeParams: true })
 
 /**
- //
+ * @swagger
  * tags:
- * name: Attendance
- * description: Attendance session management and submission
+ *  name: Attendance
+ *  description: Attendance session management and submission
  */
 
 /**
- // //
+ * @swagger
  * components:
  *   schemas:
  *     AttendanceSessionResponse:
@@ -50,12 +50,9 @@ const Router = express.Router({ mergeParams: true })
  *     AttendanceRequest:
  *       type: object
  *       required:
- *         - courseId
  *         - timeLimitSeconds
  *         - maxTries
  *       properties:
- *         courseId:
- *           type: integer
  *         timeLimitSeconds:
  *           type: integer
  *         maxTries:
@@ -68,6 +65,7 @@ const Router = express.Router({ mergeParams: true })
  *         attendanceCode:
  *           type: string
  *           description: The code submitted by the student.
+ *
  *     AttendanceSubmissionResponse:
  *       type: object
  *       properties:
@@ -77,13 +75,46 @@ const Router = express.Router({ mergeParams: true })
  *         triesLeft:
  *           type: integer
  *           description: Number of attempts made (including this one). Placeholder - logic might differ.
+ *
+ *     AttendanceSubmission:
+ *       type: object
+ *       properties:
+ *         id:
+ *           type: integer
+ *           description: Unique identifier for this submission record.
+ *           example: 543
+ *         sessionId:
+ *           type: integer
+ *           description: The ID of the attendance session this submission belongs to.
+ *           example: 101
+ *         success:
+ *           type: boolean
+ *           description: Whether this specific submission attempt was successful (code matched the session's code at the time).
+ *           example: true
+ *         submittedAt:
+ *           type: string
+ *           format: date-time
+ *           description: The exact time the submission was recorded by the system.
+ *           example: "2025-04-21T11:20:05.123Z" # Example timestamp
+ *         submission:
+ *           type: string
+ *           description: The actual code string submitted by the user.
+ *           example: "ABCD12"
+ *       required:
+ *         - id
+ *         - sessionId
+ *         - success
+ *         - submittedAt
+ *         - submission
  */
 
 /**
- //
+ * @swagger
  * /attendance/course/{courseId}:
  *   get:
- *     summary: Retrieve all active attendance sessions for a specific course (Requires course editing privileges)
+ *     summary: Retrieve all active attendance sessions for a specific course
+ *     tags:
+ *       - Attendance
  *     parameters:
  *       - name: courseId
  *         in: path
@@ -113,41 +144,75 @@ Router.get(
   AttendanceController.getSessionsByCourse,
 )
 
-Router.get(
-  '/:id/results',
-  isAuthorized('courseEdit'),
-  asInt('id'),
-  AttendanceController.getAllSubmissions,
-)
-
-
 /**
- //
- * /attendance/{id}:
+ * @swagger
+ * /attendance/{id}/results:
  *   get:
- *     summary: Retrieve a specific attendance session by its ID (Requires course editing privileges)
+ *     summary: Retrieve all submissions for a specific attendance session
+ *     tags:
+ *       - Attendance
  *     parameters:
  *       - name: id
  *         in: path
  *         required: true
- *         description: Unique ID of the attendance session
+ *         description: ID of the attendance session to retrieve results for
  *         schema:
  *           type: integer
  *     responses:
  *       '200':
- *         description: Details of the attendance session.
+ *         description: A list of all submission records for the specified attendance session.
  *         content:
  *           application/json:
  *             schema:
- *               $ref: '#/components/schemas/AttendanceSessionResponse' # Use a serialized response schema
+ *               type: array
+ *               items:
+ *                 $ref: '#/components/schemas/AttendanceSubmission'
  *       '400':
- *         description: Invalid ID supplied.
+ *         description: Invalid session ID supplied (e.g., not an integer).
  *       '401':
- *         description: Unauthorized.
+ *         description: Unauthorized (User is not logged in).
  *       '403':
  *         description: Forbidden (User lacks 'courseEdit' permission).
  *       '404':
- *         description: Attendance session not found.
+ *         description: Attendance session with the specified ID not found.
+ * */
+Router.get(
+  '/:id/results',
+  isAuthorized('courseEdit'),
+  asInt('id'),
+  AttendanceController.getAllSubmissions,
+)
+
+
+/**
+ @swagger
+ * /attendance/{id}:
+  *   get:
+  *     summary: Retrieve a specific attendance session by its ID
+  *     tags:
+  *       - Attendance
+  *     parameters:
+  *       - name: id
+  *         in: path
+  *         required: true
+  *         description: Unique ID of the attendance session
+  *         schema:
+  *           type: integer
+  *     responses:
+  *       '200':
+  *         description: Details of the attendance session.
+  *         content:
+  *           application/json:
+  *             schema:
+  *               $ref: '#/components/schemas/AttendanceSessionResponse' # Use a serialized response schema
+  *       '400':
+  *         description: Invalid ID supplied.
+  *       '401':
+  *         description: Unauthorized.
+  *       '403':
+  *         description: Forbidden (User lacks 'courseEdit' permission).
+  *       '404':
+  *         description: Attendance session not found.
  */
 Router.get(
   '/:id',
@@ -156,31 +221,33 @@ Router.get(
   AttendanceController.getSessionById,
 )
 /**
- //
+ @swagger
  * /attendance:
- *   post:
- *     summary: Create a new attendance session (Requires course editing privileges)
- *     requestBody:
- *       required: true
- *       content:
- *         application/json:
- *           schema:
- *             $ref: '#/components/schemas/AttendanceRequest'
- *     responses:
- *       '201':
- *         description: Attendance session created successfully.
- *         content:
- *           application/json:
- *             schema:
- *               $ref: '#/components/schemas/AttendanceSessionResponse'
- *       '400':
- *         description: Invalid request body or input data.
- *       '401':
- *         description: Unauthorized (Not logged in).
- *       '403':
- *         description: Forbidden (User lacks 'courseEdit' permission).
- *       '500':
- *         description: Server error during session creation.
+  *   post:
+  *     summary: Create a new attendance session
+  *     tags:
+  *       - Attendance
+  *     requestBody:
+  *       required: true
+  *       content:
+  *         application/json:
+  *           schema:
+  *             $ref: '#/components/schemas/AttendanceRequest'
+  *     responses:
+  *       '201':
+  *         description: Attendance session created successfully.
+  *         content:
+  *           application/json:
+  *             schema:
+  *               $ref: '#/components/schemas/AttendanceSessionResponse'
+  *       '400':
+  *         description: Invalid request body or input data.
+  *       '401':
+  *         description: Unauthorized (Not logged in).
+  *       '403':
+  *         description: Forbidden (User lacks 'courseEdit' permission).
+  *       '500':
+  *         description: Server error during session creation.
  */
 
 Router.post(
@@ -191,10 +258,12 @@ Router.post(
 )
 
 /**
- //
+ * @swagger
  * /attendance/{sessionId}/submit:
  *   post:
- *     summary: Submit an attendance code for a student (Requires permission to create self-submissions)
+ *     summary: Submit an attendance code for a student
+ *     tags:
+ *       - Attendance
  *     parameters:
  *       - name: sessionId
  *         in: path
@@ -226,35 +295,37 @@ Router.post(
  * */
 Router.post(
   '/:sessionId/submit',
-  isAuthorized('submissionCreateAll'),
+  isAuthorized('submissionCreateSelf'),
   asInt('sessionId'),
   validateAttendanceSubmission,
   AttendanceController.submitAttendance,
 )
 
 /**
- //
+ @swagger
  * /attendance/{id}:
- *   delete:
- *     summary: Delete (soft delete) an attendance session (Requires course editing privileges)
- *     parameters:
- *       - name: id
- *         in: path
- *         required: true
- *         description: ID of the attendance session to delete
- *         schema:
- *           type: integer
- *     responses:
- *       '204':
- *         description: Session deleted successfully (No Content).
- *       '400':
- *         description: Invalid ID supplied.
- *       '401':
- *         description: Unauthorized.
- *       '403':
- *         description: Forbidden (User lacks 'courseEdit' permission).
- *       '404':
- *         description: Attendance session not found.
+  *   delete:
+  *     summary: Delete (soft delete) an attendance session
+  *     tags:
+  *       - Attendance
+  *     parameters:
+  *       - name: id
+  *         in: path
+  *         required: true
+  *         description: ID of the attendance session to delete
+  *         schema:
+  *           type: integer
+  *     responses:
+  *       '204':
+  *         description: Session deleted successfully (No Content).
+  *       '400':
+  *         description: Invalid ID supplied.
+  *       '401':
+  *         description: Unauthorized.
+  *       '403':
+  *         description: Forbidden (User lacks 'courseEdit' permission).
+  *       '404':
+  *         description: Attendance session not found.
  */
 Router.delete(
   '/:id',