mirror of
https://github.com/alchemy-fr/Phraseanet.git
synced 2025-10-12 12:33:26 +00:00
949bf06cac
Conflicts: CHANGELOG.md bin/console bin/developer bin/setup bower.json composer.json composer.lock features/bootstrap/FeatureContext.php features/bootstrap/GuiContext.php lib/Alchemy/Phrasea/Authentication/Token/TokenValidator.php lib/Alchemy/Phrasea/Command/BuildMissingSubdefs.php lib/Alchemy/Phrasea/Command/CreateCollection.php lib/Alchemy/Phrasea/Command/Developer/JavascriptBuilder.php lib/Alchemy/Phrasea/Controller/Admin/Collection.php lib/Alchemy/Phrasea/Controller/Admin/Databoxes.php lib/Alchemy/Phrasea/Controller/Admin/TaskManager.php lib/Alchemy/Phrasea/Controller/Api/V1.php lib/Alchemy/Phrasea/Controller/Client/Baskets.php lib/Alchemy/Phrasea/Controller/Client/Root.php lib/Alchemy/Phrasea/Controller/Prod/Basket.php lib/Alchemy/Phrasea/Controller/Prod/Export.php lib/Alchemy/Phrasea/Controller/Prod/Property.php lib/Alchemy/Phrasea/Controller/Prod/Records.php lib/Alchemy/Phrasea/Controller/Prod/Tools.php lib/Alchemy/Phrasea/Controller/Prod/Upload.php lib/Alchemy/Phrasea/Controller/Root/Login.php lib/Alchemy/Phrasea/Controller/Thesaurus/Thesaurus.php lib/Alchemy/Phrasea/Core/Event/ApiLoadEndEvent.php lib/Alchemy/Phrasea/Core/Event/ApiLoadStartEvent.php lib/Alchemy/Phrasea/Core/Provider/TaskManagerServiceProvider.php lib/Alchemy/Phrasea/Core/Version.php lib/Alchemy/Phrasea/Exception/XMLParseErrorException.php lib/Alchemy/Phrasea/Helper/DatabaseHelper.php lib/Alchemy/Phrasea/Helper/User/Edit.php lib/Alchemy/Phrasea/SearchEngine/Phrasea/PhraseaEngine.php lib/Alchemy/Phrasea/SearchEngine/SearchEngineOptions.php lib/Doctrine/Entities/AuthFailure.php lib/Doctrine/Entities/Basket.php lib/Doctrine/Entities/BasketElement.php lib/Doctrine/Entities/LazaretAttribute.php lib/Doctrine/Entities/LazaretCheck.php lib/Doctrine/Entities/LazaretFile.php lib/Doctrine/Entities/LazaretSession.php lib/Doctrine/Entities/Session.php lib/Doctrine/Entities/SessionModule.php lib/Doctrine/Entities/StoryWZ.php lib/Doctrine/Entities/UsrList.php lib/Doctrine/Entities/UsrListEntry.php lib/Doctrine/Entities/UsrListOwner.php lib/Doctrine/Entities/ValidationData.php lib/Doctrine/Entities/ValidationParticipant.php lib/Doctrine/Entities/ValidationSession.php lib/Doctrine/Logger/MonologSQLLogger.php lib/Doctrine/Repositories/BasketRepository.php lib/Doctrine/Repositories/ValidationParticipantRepository.php lib/Doctrine/Types/Binary.php lib/Doctrine/Types/Blob.php lib/Doctrine/Types/Enum.php lib/Doctrine/Types/LongBlob.php lib/Doctrine/Types/VarBinary.php lib/classes/API/OAuth2/Account.php lib/classes/API/OAuth2/Application.php lib/classes/API/OAuth2/Application/OfficePlugin.php lib/classes/API/OAuth2/AuthCode.php lib/classes/API/OAuth2/RefreshToken.php lib/classes/API/OAuth2/Token.php lib/classes/API/V1/Abstract.php lib/classes/API/V1/Interface.php lib/classes/API/V1/adapter.php lib/classes/API/V1/exception/abstract.php lib/classes/API/V1/exception/badrequest.php lib/classes/API/V1/exception/forbidden.php lib/classes/API/V1/exception/internalservererror.php lib/classes/API/V1/exception/maintenance.php lib/classes/API/V1/exception/methodnotallowed.php lib/classes/API/V1/exception/notfound.php lib/classes/API/V1/exception/unauthorized.php lib/classes/API/V1/result.php lib/classes/Exception/Feed/EntryNotFound.php lib/classes/Exception/Feed/ItemNotFound.php lib/classes/Exception/Feed/PublisherNotFound.php lib/classes/Feed/Abstract.php lib/classes/Feed/Adapter.php lib/classes/Feed/Aggregate.php lib/classes/Feed/Collection.php lib/classes/Feed/CollectionInterface.php lib/classes/Feed/Entry/Adapter.php lib/classes/Feed/Entry/Collection.php lib/classes/Feed/Entry/CollectionInterface.php lib/classes/Feed/Entry/Interface.php lib/classes/Feed/Entry/Item.php lib/classes/Feed/Entry/ItemInterface.php lib/classes/Feed/Interface.php lib/classes/Feed/Link.php lib/classes/Feed/LinkInterface.php lib/classes/Feed/Publisher/Adapter.php lib/classes/Feed/Publisher/Interface.php lib/classes/Feed/Token.php lib/classes/Feed/TokenAggregate.php lib/classes/Feed/XML/Abstract.php lib/classes/Feed/XML/Atom.php lib/classes/Feed/XML/Cooliris.php lib/classes/Feed/XML/Interface.php lib/classes/Feed/XML/RSS.php lib/classes/Feed/XML/RSS/Image.php lib/classes/Feed/XML/RSS/ImageInterface.php lib/classes/User/Adapter.php lib/classes/User/Interface.php lib/classes/appbox/register.php lib/classes/connection.php lib/classes/connection/abstract.php lib/classes/connection/interface.php lib/classes/connection/pdo.php lib/classes/connection/pdoStatementDebugger.php lib/classes/deprecated/countries.php lib/classes/deprecated/inscript.api.php lib/classes/eventsmanager/event/test.php lib/classes/ftpclient.php lib/classes/http/request.php lib/classes/media/subdef.php lib/classes/module/console/schedulerStart.php lib/classes/module/console/schedulerState.php lib/classes/module/console/schedulerStop.php lib/classes/module/console/taskState.php lib/classes/module/console/tasklist.php lib/classes/module/console/taskrun.php lib/classes/patch/320alpha4b.php lib/classes/patch/3715alpha1a.php lib/classes/patch/379alpha1a.php lib/classes/patch/380alpha10a.php lib/classes/patch/380alpha11a.php lib/classes/patch/380alpha13a.php lib/classes/patch/380alpha14a.php lib/classes/patch/380alpha15a.php lib/classes/patch/380alpha16a.php lib/classes/patch/380alpha17a.php lib/classes/patch/380alpha18a.php lib/classes/patch/380alpha3a.php lib/classes/patch/380alpha4a.php lib/classes/patch/380alpha6a.php lib/classes/patch/380alpha8a.php lib/classes/patch/380alpha9a.php lib/classes/patch/381alpha1b.php lib/classes/patch/381alpha2a.php lib/classes/patch/381alpha3a.php lib/classes/patch/381alpha4a.php lib/classes/patch/383alpha1a.php lib/classes/patch/383alpha2a.php lib/classes/patch/383alpha3a.php lib/classes/patch/383alpha4a.php lib/classes/record/adapter.php lib/classes/record/preview.php lib/classes/recordutils.php lib/classes/recordutils/audio.php lib/classes/recordutils/document.php lib/classes/recordutils/map.php lib/classes/recordutils/video.php lib/classes/registry.php lib/classes/registryInterface.php lib/classes/set/order.php lib/classes/system/url.php lib/classes/task/Scheduler.php lib/classes/task/appboxAbstract.php lib/classes/task/databoxAbstract.php lib/classes/task/manager.php lib/classes/task/period/RecordMover.php lib/classes/task/period/apibridge.php lib/classes/task/period/apiwebhooks.php lib/classes/task/period/archive.php lib/classes/task/period/cindexer.php lib/classes/task/period/emptyColl.php lib/classes/task/period/ftp.php lib/classes/task/period/ftpPull.php lib/classes/task/period/subdef.php lib/classes/task/period/test.php lib/classes/task/period/writemeta.php lib/conf.d/PhraseaFixture/AbstractWZ.php lib/conf.d/PhraseaFixture/Basket/LoadFiveBaskets.php lib/conf.d/PhraseaFixture/Basket/LoadOneBasket.php lib/conf.d/PhraseaFixture/Basket/LoadOneBasketEnv.php lib/conf.d/PhraseaFixture/Lazaret/LoadOneFile.php lib/conf.d/PhraseaFixture/Story/LoadOneStory.php lib/conf.d/PhraseaFixture/UsrLists/ListAbstract.php lib/conf.d/PhraseaFixture/UsrLists/UsrList.php lib/conf.d/PhraseaFixture/UsrLists/UsrListEntry.php lib/conf.d/PhraseaFixture/UsrLists/UsrListOwner.php lib/conf.d/PhraseaFixture/ValidationParticipant/LoadOneParticipant.php lib/conf.d/PhraseaFixture/ValidationParticipant/LoadParticipantWithSession.php lib/conf.d/PhraseaFixture/ValidationSession/LoadOneValidationSession.php templates/web/admin/collection/collection.html.twig templates/web/common/dialog_export.html.twig templates/web/common/menubar.html.twig templates/web/prod/actions/Tools/index.html.twig templates/web/prod/index.html.twig templates/web/prod/upload/upload-flash.html.twig templates/web/prod/upload/upload.html.twig templates/web/report/report_layout_child.html.twig templates/web/setup/step2.html.twig templates/web/thesaurus/new-synonym-dialog.html.twig templates/web/thesaurus/properties.html.twig templates/web/thesaurus/search.html.twig tests/Alchemy/Tests/Phrasea/Application/ApiAbstract.php tests/Alchemy/Tests/Phrasea/Cache/FactoryTest.php tests/Alchemy/Tests/Phrasea/Controller/Admin/AdminCollectionTest.php tests/Alchemy/Tests/Phrasea/Controller/Client/RootTest.php
546 lines
18 KiB
PHP
546 lines
18 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of Phraseanet
|
|
*
|
|
* (c) 2005-2015 Alchemy
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Alchemy\Phrasea\Controller\Prod;
|
|
|
|
use Alchemy\Phrasea\Model\Entities\UsrList;
|
|
use Alchemy\Phrasea\Model\Entities\UsrListEntry;
|
|
use Alchemy\Phrasea\Model\Entities\UsrListOwner;
|
|
use Silex\Application;
|
|
use Silex\ControllerProviderInterface;
|
|
use Alchemy\Phrasea\Controller\Exception as ControllerException;
|
|
use Symfony\Component\HttpFoundation\Request;
|
|
use Doctrine\Common\Collections\ArrayCollection;
|
|
use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
|
|
|
|
class UsrLists implements ControllerProviderInterface
|
|
{
|
|
public function connect(Application $app)
|
|
{
|
|
$app['controller.prod.usr-lists'] = $this;
|
|
|
|
$controllers = $app['controllers_factory'];
|
|
|
|
$app['firewall']->addMandatoryAuthentication($controllers);
|
|
|
|
$controllers->get('/all/', 'controller.prod.usr-lists:getAll')
|
|
->bind('prod_lists_all');
|
|
|
|
$controllers->post('/list/', 'controller.prod.usr-lists:createList')
|
|
->bind('prod_lists_list');
|
|
|
|
$controllers->get('/list/{list_id}/', 'controller.prod.usr-lists:displayList')
|
|
->assert('list_id', '\d+');
|
|
|
|
$controllers->post('/list/{list_id}/update/', 'controller.prod.usr-lists:updateList')
|
|
->bind('prod_lists_list_update')
|
|
->assert('list_id', '\d+');
|
|
|
|
$controllers->post('/list/{list_id}/delete/', 'controller.prod.usr-lists:removeList')
|
|
->assert('list_id', '\d+');
|
|
|
|
$controllers->post('/list/{list_id}/remove/{usr_id}/', 'controller.prod.usr-lists:removeUser')
|
|
->assert('list_id', '\d+')
|
|
->assert('usr_id', '\d+');
|
|
|
|
$controllers->post('/list/{list_id}/add/', 'controller.prod.usr-lists:addUsers')
|
|
->assert('list_id', '\d+');
|
|
|
|
$controllers->get('/list/{list_id}/share/', 'controller.prod.usr-lists:displayShares')
|
|
->assert('list_id', '\d+')
|
|
->bind('prod_lists_list_share');
|
|
|
|
$controllers->post('/list/{list_id}/share/{usr_id}/', 'controller.prod.usr-lists:shareWithUser')
|
|
->assert('list_id', '\d+')
|
|
->assert('usr_id', '\d+');
|
|
|
|
$controllers->post('/list/{list_id}/unshare/{usr_id}/', 'controller.prod.usr-lists:unshareWithUser')
|
|
->assert('list_id', '\d+')
|
|
->assert('usr_id', '\d+');
|
|
|
|
return $controllers;
|
|
}
|
|
|
|
public function getAll(Application $app, Request $request)
|
|
{
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => ''
|
|
, 'result' => null
|
|
];
|
|
|
|
$lists = new ArrayCollection();
|
|
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$lists = $repository->findUserLists($app['authentication']->getUser());
|
|
|
|
$result = [];
|
|
|
|
foreach ($lists as $list) {
|
|
$owners = $entries = [];
|
|
|
|
foreach ($list->getOwners() as $owner) {
|
|
$owners[] = [
|
|
'usr_id' => $owner->getUser()->getId(),
|
|
'display_name' => $owner->getUser()->getDisplayName(),
|
|
'position' => $owner->getUser()->getActivity(),
|
|
'job' => $owner->getUser()->getJob(),
|
|
'company' => $owner->getUser()->getCompany(),
|
|
'email' => $owner->getUser()->getEmail(),
|
|
'role' => $owner->getRole()
|
|
];
|
|
}
|
|
|
|
foreach ($list->getEntries() as $entry) {
|
|
$entries[] = [
|
|
'usr_id' => $entry->getUser()->getId(),
|
|
'display_name' => $entry->getUser()->getDisplayName(),
|
|
'position' => $entry->getUser()->getActivity(),
|
|
'job' => $entry->getUser()->getJob(),
|
|
'company' => $entry->getUser()->getCompany(),
|
|
'email' => $entry->getUser()->getEmail(),
|
|
];
|
|
}
|
|
|
|
/* @var $list UsrList */
|
|
$result[] = [
|
|
'name' => $list->getName(),
|
|
'created' => $list->getCreated()->format(DATE_ATOM),
|
|
'updated' => $list->getUpdated()->format(DATE_ATOM),
|
|
'owners' => $owners,
|
|
'users' => $entries
|
|
];
|
|
}
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => ''
|
|
, 'result' => $result
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
}
|
|
|
|
if ($request->getRequestFormat() == 'json') {
|
|
return $app->json($datas);
|
|
}
|
|
|
|
return $app['twig']->render('prod/actions/Feedback/lists-all.html.twig', ['lists' => $lists]);
|
|
}
|
|
|
|
public function createList(Application $app)
|
|
{
|
|
$request = $app['request'];
|
|
|
|
$list_name = $request->request->get('name');
|
|
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to create list %name%', ['%name%' => $list_name])
|
|
, 'list_id' => null
|
|
];
|
|
|
|
try {
|
|
if (!$list_name) {
|
|
throw new ControllerException($app->trans('List name is required'));
|
|
}
|
|
|
|
$List = new UsrList();
|
|
|
|
$Owner = new UsrListOwner();
|
|
$Owner->setRole(UsrListOwner::ROLE_ADMIN);
|
|
$Owner->setUser($app['authentication']->getUser());
|
|
$Owner->setList($List);
|
|
|
|
$List->setName($list_name);
|
|
$List->addOwner($Owner);
|
|
|
|
$app['EM']->persist($Owner);
|
|
$app['EM']->persist($List);
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('List %name% has been created', ['%name%' => $list_name])
|
|
, 'list_id' => $List->getId()
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function displayList(Application $app, Request $request, $list_id)
|
|
{
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
|
|
$entries = new ArrayCollection();
|
|
$owners = new ArrayCollection();
|
|
|
|
foreach ($list->getOwners() as $owner) {
|
|
$owners[] = [
|
|
'usr_id' => $owner->getUser()->getId(),
|
|
'display_name' => $owner->getUser()->getDisplayName(),
|
|
'position' => $owner->getUser()->getActivity(),
|
|
'job' => $owner->getUser()->getJob(),
|
|
'company' => $owner->getUser()->getCompany(),
|
|
'email' => $owner->getUser()->getEmail(),
|
|
'role' => $owner->getRole()
|
|
];
|
|
}
|
|
|
|
foreach ($list->getEntries() as $entry) {
|
|
$entries[] = [
|
|
'usr_id' => $entry->getUser()->getId(),
|
|
'display_name' => $entry->getUser()->getDisplayName(),
|
|
'position' => $entry->getUser()->getActivity(),
|
|
'job' => $entry->getUser()->getJob(),
|
|
'company' => $entry->getUser()->getCompany(),
|
|
'email' => $entry->getUser()->getEmail(),
|
|
];
|
|
}
|
|
|
|
return $app->json([
|
|
'result' => [
|
|
'id' => $list->getId(),
|
|
'name' => $list->getName(),
|
|
'created' => $list->getCreated()->format(DATE_ATOM),
|
|
'updated' => $list->getUpdated()->format(DATE_ATOM),
|
|
'owners' => $owners,
|
|
'users' => $entries
|
|
]
|
|
]);
|
|
}
|
|
|
|
public function updateList(Application $app, $list_id)
|
|
{
|
|
$request = $app['request'];
|
|
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to update list')
|
|
];
|
|
|
|
try {
|
|
$list_name = $request->request->get('name');
|
|
|
|
if (!$list_name) {
|
|
throw new ControllerException($app->trans('List name is required'));
|
|
}
|
|
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
|
|
if ($list->getOwner($app['authentication']->getUser(), $app)->getRole() < UsrListOwner::ROLE_EDITOR) {
|
|
throw new ControllerException($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$list->setName($list_name);
|
|
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('List has been updated')
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function removeList(Application $app, $list_id)
|
|
{
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_ADMIN) {
|
|
throw new ControllerException($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$app['EM']->remove($list);
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('List has been deleted')
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to delete list')
|
|
];
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function removeUser(Application $app, $list_id, $usr_id)
|
|
{
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
/* @var $list UsrList */
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_EDITOR) {
|
|
throw new ControllerException($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$entry_repository = $app['repo.usr-list-entries'];
|
|
|
|
$user_entry = $entry_repository->findEntryByListAndUsrId($list, $usr_id);
|
|
|
|
$app['EM']->remove($user_entry);
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('Entry removed from list')
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
$datas = [
|
|
'success' => false,
|
|
'message' => $app->trans('Unable to remove entry from list'),
|
|
];
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function addUsers(Application $app, Request $request, $list_id)
|
|
{
|
|
try {
|
|
if (!is_array($request->request->get('usr_ids'))) {
|
|
throw new ControllerException('Invalid or missing parameter usr_ids');
|
|
}
|
|
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
/* @var $list UsrList */
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_EDITOR) {
|
|
throw new ControllerException($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$inserted_usr_ids = [];
|
|
|
|
foreach ($request->request->get('usr_ids') as $usr_id) {
|
|
$user_entry = $app['repo.users']->find($usr_id);
|
|
|
|
if ($list->has($user_entry))
|
|
continue;
|
|
|
|
$entry = new UsrListEntry();
|
|
$entry->setUser($user_entry);
|
|
$entry->setList($list);
|
|
|
|
$list->addEntrie($entry);
|
|
|
|
$app['EM']->persist($entry);
|
|
|
|
$inserted_usr_ids[] = $user_entry->getId();
|
|
}
|
|
|
|
$app['EM']->flush();
|
|
|
|
if (count($inserted_usr_ids) > 1) {
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('%quantity% Users added to list', ['%quantity%' => count($inserted_usr_ids)])
|
|
, 'result' => $inserted_usr_ids
|
|
];
|
|
} else {
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('%quantity% User added to list', ['%quantity%' => count($inserted_usr_ids)])
|
|
, 'result' => $inserted_usr_ids
|
|
];
|
|
}
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to add usr to list')
|
|
];
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function displayShares(Application $app, Request $request, $list_id)
|
|
{
|
|
$list = null;
|
|
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
/* @var $list UsrList */
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_ADMIN) {
|
|
$list = null;
|
|
throw new \Exception($app->trans('You are not authorized to do this'));
|
|
}
|
|
} catch (\Exception $e) {
|
|
|
|
}
|
|
|
|
return $app['twig']->render('prod/actions/Feedback/List-Share.html.twig', ['list' => $list]);
|
|
}
|
|
|
|
public function shareWithUser(Application $app, $list_id, $usr_id)
|
|
{
|
|
$availableRoles = [
|
|
UsrListOwner::ROLE_USER,
|
|
UsrListOwner::ROLE_EDITOR,
|
|
UsrListOwner::ROLE_ADMIN,
|
|
];
|
|
|
|
if (!$app['request']->request->get('role'))
|
|
throw new BadRequestHttpException('Missing role parameter');
|
|
elseif (!in_array($app['request']->request->get('role'), $availableRoles))
|
|
throw new BadRequestHttpException('Role is invalid');
|
|
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
/* @var $list UsrList */
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_EDITOR) {
|
|
throw new ControllerException($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$new_owner = $app['repo.users']->find($usr_id);
|
|
|
|
if ($list->hasAccess($new_owner)) {
|
|
if ($new_owner->getId() == $app['authentication']->getUser()->getId()) {
|
|
throw new ControllerException('You can not downgrade your Admin right');
|
|
}
|
|
|
|
$owner = $list->getOwner($new_owner);
|
|
} else {
|
|
$owner = new UsrListOwner();
|
|
$owner->setList($list);
|
|
$owner->setUser($new_owner);
|
|
|
|
$list->addOwner($owner);
|
|
|
|
$app['EM']->persist($owner);
|
|
}
|
|
|
|
$role = $app['request']->request->get('role');
|
|
|
|
$owner->setRole($role);
|
|
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('List shared to user')
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to share the list with the usr')
|
|
];
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
|
|
public function unshareWithUser(Application $app, $list_id, $usr_id)
|
|
{
|
|
try {
|
|
$repository = $app['repo.usr-lists'];
|
|
|
|
$list = $repository->findUserListByUserAndId($app['authentication']->getUser(), $list_id);
|
|
/* @var $list UsrList */
|
|
|
|
if ($list->getOwner($app['authentication']->getUser())->getRole() < UsrListOwner::ROLE_ADMIN) {
|
|
throw new \Exception($app->trans('You are not authorized to do this'));
|
|
}
|
|
|
|
$owners_repository = $app['repo.usr-list-owners'];
|
|
|
|
$owner = $owners_repository->findByListAndUsrId($list, $usr_id);
|
|
|
|
$app['EM']->remove($owner);
|
|
$app['EM']->flush();
|
|
|
|
$datas = [
|
|
'success' => true
|
|
, 'message' => $app->trans('Owner removed from list')
|
|
];
|
|
} catch (ControllerException $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $e->getMessage()
|
|
];
|
|
} catch (\Exception $e) {
|
|
$datas = [
|
|
'success' => false
|
|
, 'message' => $app->trans('Unable to remove usr from list')
|
|
];
|
|
}
|
|
|
|
return $app->json($datas);
|
|
}
|
|
}
|