@RequestMapping(value = "supervised/facilities", method = RequestMethod.GET) @PreAuthorize("@permissionEvaluator.hasPermission(principal,'MANAGE_EQUIPMENT_INVENTORY')") public ResponseEntity<ModelMap> getFacilities( @RequestParam("programId") Long programId, HttpServletRequest request) { ModelMap modelMap = new ModelMap(); Long userId = loggedInUserId(request); List<Facility> facilities = facilityService.getUserSupervisedFacilities(userId, programId, MANAGE_EQUIPMENT_INVENTORY); modelMap.put(FACILITIES, facilities); return new ResponseEntity<>(modelMap, HttpStatus.OK); }