hazza/Phraseanet
1
0
Fork 0
mirror of https://github.com/alchemy-fr/Phraseanet.git synced 2025-10-07 10:04:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
80d5c400bda3ff76959eca14c5ea2b50455bd969
Phraseanet/lib/Alchemy/Phrasea/PhraseanetService/Controller/PSExposeController.php
Aina Sitraka 80d5c400bd PHRAS-4069: Prod - expose-cli - search publication and parent publication (#4515) 
* expose cli fix parent publication

* translate and yarn.lock file

* some css fix

* expose search publication title filter

* display nb items

* trigger only from more than 3 character

* do not display publication in to his parent list

* trigger search publication on empty search
2024-06-06 18:24:18 +02:00

1641 lines
59 KiB
PHP
Raw Blame History

<?php
namespace Alchemy\Phrasea\PhraseanetService\Controller;
use Alchemy\Phrasea\Application as PhraseaApplication;
use Alchemy\Phrasea\Authentication\Provider\Openid;
use Alchemy\Phrasea\Authentication\ProvidersCollection;
use Alchemy\Phrasea\Controller\Controller;
use Alchemy\Phrasea\Utilities\NetworkProxiesConfiguration;
use Alchemy\Phrasea\WorkerManager\Event\ExposeUploadEvent;
use Alchemy\Phrasea\WorkerManager\Event\WorkerEvents;
use GuzzleHttp\Client;
use Symfony\Component\EventDispatcher\EventDispatcherInterface;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Session\Session;
class PSExposeController extends Controller
{
/**
* Set access token on session 'password_access_token_' + expose_name
* Save also login on session 'expose_connected_login_' + expose_name
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function authenticateAction(PhraseaApplication $app, Request $request)
{
if (!$this->isCrsfValid($request, 'prodExposeLogin')) {
return $this->app->json(['success' => false , 'error_description' => 'invalid csrf form']);
}
$exposeConfiguration = $app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
$exposeConfiguration = $exposeConfiguration[$request->request->get('exposeName')];
if ($exposeConfiguration == null) {
return $this->app->json([
'success' => false,
'error_description' => 'Please, set configuration in admin!'
]);
}
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
$oauthClient = $proxyConfig->getClientWithOptions($clientOptions);
try {
$response = $this->getTokenByPassword($oauthClient, $exposeConfiguration, $request->request->get('auth-username'), $request->request->get('auth-password'));
} catch(\Exception $e) {
return $this->app->json([
'success' => false,
'error_description' => $e->getMessage()
]);
}
if ($response->getStatusCode() !== 200) {
try {
$b = json_decode($response->getBody()->getContents(),true);
$message = $b['error_description'];
} catch (\Exception $e) {
$message = 'Error with status code: ' . $response->getStatusCode();
}
return $this->app->json([
'success' => false,
'error_description' => $message
]);
}
$tokenBody = $response->getBody()->getContents();
$tokenBody = json_decode($tokenBody,true);
$session = $this->getSession();
$passSessionName = $this->getPassSessionName($request->request->get('exposeName'));
if (isset($tokenBody['refresh_expires_in'])) {
$passSessionNameValue = [
'access_token' => $tokenBody['access_token'],
'expires_at' => time() + $tokenBody['expires_in'],
'refresh_token' => $tokenBody['refresh_token'],
'refresh_expires_at' => time() + $tokenBody['refresh_expires_in']
];
} else {
$passSessionNameValue = [
'access_token' => $tokenBody['access_token'],
'expires_at' => time() + $tokenBody['expires_in'],
];
}
$session->set($passSessionName, $passSessionNameValue);
$loginSessionName = $this->getLoginSessionName($request->request->get('exposeName'));
$session->set($loginSessionName, $request->request->get('auth-username'));
return $this->app->json([
'success' => true,
'exposeName' => $request->request->get('exposeName'),
'exposeLogin' => $request->request->get('auth-username')
]);
}
public function logoutAction(PhraseaApplication $app, Request $request)
{
$session = $this->getSession();
$loginSessionName = $this->getLoginSessionName($request->get('exposeName'));
$passSessionName = $this->getPassSessionName($request->get('exposeName'));
$session->remove($loginSessionName);
$session->remove($passSessionName);
return $app->json([
'success' => true
]);
}
/**
* Add update or delete access control entry (ACE) for a publication
* "action" param value : "update" or "delete"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function updatePublicationPermissionAction(PhraseaApplication $app, Request $request)
{
$exposeClient = $this->getExposeClient($request->get('exposeName'));
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$accessToken = $this->getAndSaveToken($request->get('exposeName'));
try {
$guzzleParams = [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
],
'json' => $request->get('jsonData')
];
if ($request->get('action') == 'delete') {
$response = $exposeClient->delete('/permissions/ace', $guzzleParams);
$message = 'Permission successfully deleted!';
} else {
$response = $exposeClient->put('/permissions/ace', $guzzleParams);
$message = 'Permission successfully updated!';
}
} catch(\Exception $e) {
return $this->app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($response->getStatusCode() !== 200) {
return $this->app->json([
'success' => false,
'message' => 'Status code: '. $response->getStatusCode()
]);
}
return $this->app->json([
'success' => true,
'message' => $message
]);
}
/**
* Get list of publication
* Use param "format=json" to retrieve a json
*
* @param PhraseaApplication $app
* @param Request $request
* @return string|\Symfony\Component\HttpFoundation\JsonResponse
*/
public function listPublicationAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$page = empty($request->get('page')) ? 1 : $request->get('page');
$title = urlencode($request->get('title'));
if ($exposeName == null) {
return $app->json([
'twig' => $this->render("prod/WorkZone/ExposeList.html.twig", [
'publications' => [],
]),
'previousPage' => false,
'nextPage' => false
]);
}
$exposeConfiguration = $app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
$exposeConfiguration = $exposeConfiguration[$exposeName];
// it's the entry point on expose cli
// so initiate session here
$session = $this->getSession();
$passSessionName = $this->getPassSessionName($exposeName);
$accessToken = $this->getAndSaveToken($exposeName);
if ((!$session->has($passSessionName) || empty($accessToken)) && $exposeConfiguration['connection_kind'] == 'password' && $request->get('format') != 'json') {
$this->setSessionFormToken('prodExposeLogin');
return $app->json([
'twig' => $this->render("prod/WorkZone/ExposeOauthLogin.html.twig", [
'exposeName' => $exposeName
]),
'previousPage' => false,
'nextPage' => false
]);
}
if ($exposeConfiguration == null ) {
return $app->json([
'twig' => $this->render("prod/WorkZone/ExposeList.html.twig", [
'publications' => [],
]),
'previousPage' => false,
'nextPage' => false
]);
}
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'base_uri' => $exposeConfiguration['expose_base_uri'],
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
$exposeClient = $proxyConfig->getClientWithOptions($clientOptions);
try {
$uri = '/publications?flatten=true&order[createdAt]=desc&page=' . $page . '&title=' . $title;
if ($request->get('mine') && $exposeConfiguration['connection_kind'] === 'password') {
$uri .= '&mine=true';
}
if ($request->get('editable')) {
$uri .= '&editable=true';
}
$response = $exposeClient->get($uri, [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
]
]);
if ($response->getStatusCode() == 200) {
$body = @json_decode($response->getBody()->getContents(),true);
if (!isset($body['hydra:member']) || !isset($body['@id'])) {
throw new \Exception("index undefined on response body!");
}
$publications = $body['hydra:member'];
$basePath = $body['@id'];
$totalItems = $body['hydra:totalItems'];
$nbPage = ceil($totalItems / 30);
$previousPage = false;
$nextPage = false;
if ($page < $nbPage) {
$nextPage = true;
}
if ($page > 1) {
$previousPage = true;
}
} else {
throw new \Exception("Error with status code : " . $response->getStatusCode());
}
} catch(\Exception $e) {
return $app->json([
'success' => false,
'publications' => [],
'basePath' => [],
'error' => $e->getMessage()
]);
}
$exposeFrontBasePath = \p4string::addEndSlash($exposeConfiguration['expose_front_uri']);
if ($request->get('format') == 'pub-list') {
$publicationsList = [];
$excludePublication = $request->get('exclude');
$key = 0;
foreach ($publications as $publication) {
if ($excludePublication != $publication['id']) {
$publicationsList[$key]['id'] = $basePath . '/' . $publication['id'];
$publicationsList[$key]['text'] = $publication['title'];
$key++;
}
}
$pagination = ['more' => false];
if ($nextPage) {
$pagination = ['more' => true];
}
return $app->json([
'publications' => $publicationsList,
'basePath' => $basePath,
'pagination' => $pagination
]);
}
$this->setSessionFormToken('prodExposeEdit');
$exposeListTwig = $this->render("prod/WorkZone/ExposeList.html.twig", [
'publications' => $publications,
'exposeFrontBasePath' => $exposeFrontBasePath
]);
// not called on june 2021
if ($request->get('format') == 'twig') {
return $exposeListTwig;
}
return $app->json([
'twig' => $exposeListTwig,
'exposeName' => $exposeName,
'exposeLogin' => $session->get($this->getLoginSessionName($exposeName)),
'basePath' => $basePath,
'previousPage' => $previousPage,
'nextPage' => $nextPage,
'nbItems' => count($publications) . ' / ' . $totalItems
]);
}
/**
* Require params "exposeName" and "publicationId"
* optional param "onlyAssets" equal to 1 to return only assets list
*
* @param PhraseaApplication $app
* @param Request $request
* @return string
*/
public function getPublicationAction(PhraseaApplication $app, Request $request)
{
$exposeConfiguration = $app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
$exposeConfiguration = $exposeConfiguration[$request->get('exposeName')];
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'base_uri' => $exposeConfiguration['expose_base_uri'],
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
$exposeClient = $proxyConfig->getClientWithOptions($clientOptions);
$accessToken = $this->getAndSaveToken($request->get('exposeName'));
$publication = [];
try {
$resPublication = $exposeClient->get('/publications/' . $request->get('publicationId') , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
]
]);
} catch(\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resPublication->getStatusCode() != 200) {
return $app->json([
'success' => false,
'message' => "An error occurred when getting publication: status-code " . $resPublication->getStatusCode()
]);
}
if ($resPublication->getStatusCode() == 200) {
$publication = json_decode($resPublication->getBody()->getContents(),true);
}
if ($request->get('onlyAssets')) {
return $this->render("prod/WorkZone/ExposePublicationAssets.html.twig", [
'assets' => $publication['assets'],
'publicationId' => $publication['id']
]);
}
list($permissions, $listUsers, $listGroups) = $this->getPermissions($exposeClient, $request->get('publicationId'), $accessToken);
return $this->render("prod/WorkZone/ExposeEdit.html.twig", [
'timezone' => $request->get('timezone'),
'publication' => $publication,
'exposeName' => $request->get('exposeName'),
'permissions' => $permissions,
'listUsers' => $listUsers,
'listGroups' => $listGroups
]);
}
/**
* Require params "exposeName" and "slug"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function checkPublicationSlugAction(PhraseaApplication $app, Request $request)
{
$exposeClient = $this->getExposeClient($request->get('exposeName'));
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$accessToken = $this->getAndSaveToken($request->get('exposeName'));
try {
$resAvailability = $exposeClient->get('/publications/slug-availability/' . $request->get('slug') , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
]
]);
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resAvailability->getStatusCode() != 200) {
return $app->json([
'success' => false,
'message' => "An error occurred when checking slug availability : " . $resAvailability->getStatusCode()
]);
}
return $app->json([
'success' => true,
'isAvailable' => json_decode($resAvailability->getBody()->getContents()),
'message' => ''
]);
}
/**
* @param PhraseaApplication $app
* @param Request $request
* @return string
*/
public function listPublicationPermissionAction(PhraseaApplication $app, Request $request)
{
$exposeConfiguration = $app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
$exposeConfiguration = $exposeConfiguration[$request->get('exposeName')];
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'base_uri' => $exposeConfiguration['expose_base_uri'],
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
$exposeClient = $proxyConfig->getClientWithOptions($clientOptions);
$accessToken = $this->getAndSaveToken($request->get('exposeName'));
list($permissions, $listUsers, $listGroups) = $this->getPermissions($exposeClient, $request->get('publicationId'), $accessToken);
return $this->render("prod/WorkZone/ExposePermission.html.twig", [
'permissions' => $permissions,
'listUsers' => $listUsers,
'listGroups' => $listGroups
]);
}
/**
* Require params "exposeName" and "publicationId"
* optionnal param "page"
*
* @param PhraseaApplication $app
* @param Request $request
* @return string|\Symfony\Component\HttpFoundation\JsonResponse
*/
public function getPublicationAssetsAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$exposeConfiguration = $this->getExposeConfiguration($exposeName);
$page = $request->get('page')?:1;
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$accessToken = $this->getAndSaveToken($exposeName);
try {
$resPublication = $exposeClient->get('/publications/' . $request->get('publicationId') . '/assets?page=' . $page , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
]
]);
} catch(\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resPublication->getStatusCode() != 200) {
return $app->json([
'success' => false,
'message' => "An error occurred when getting publication assets: status-code " . $resPublication->getStatusCode()
]);
}
$assets = [];
$totalItems = 0;
if ($resPublication->getStatusCode() == 200) {
$body = json_decode($resPublication->getBody()->getContents(),true);
$assets = $body['hydra:member'];
if (!empty($assets) && isset($assets[0]['asset'])) {
// expose v1 BC: flatten assets
$assets = array_map(function (array $pubAsset): array {
return $pubAsset['asset'];
}, $assets);
}
$totalItems = $body['hydra:totalItems'];
}
$exposeFrontBasePath = \p4string::addEndSlash($exposeConfiguration['expose_front_uri']);
return $this->render('prod/WorkZone/ExposePublicationAssets.html.twig', [
'assets' => $assets,
'publicationId' => $request->get('publicationId'),
'capabilitiesDelete' => $request->get('capabilitiesDelete'),
'capabilitiesEdit' => $request->get('capabilitiesEdit'),
'enabled' => $request->get('enabled'),
'childrenCount' => $request->get('childrenCount'),
'totalItems' => $totalItems,
'page' => $page,
'exposeFrontBasePath' => $exposeFrontBasePath
]);
}
/**
* Require params "exposeName"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function listProfileAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
if ( $exposeName == null) {
return $app->json([
'profiles' => [],
'basePath' => []
]);
}
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$accessToken = $this->getAndSaveToken($exposeName);
$profiles = [];
$basePath = '';
try {
$resProfile = $exposeClient->get('/publication-profiles' , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
]
]);
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resProfile->getStatusCode() != 200) {
return $app->json([
'success' => false,
'message' => "An error occurred when getting publication: status-code " . $resProfile->getStatusCode()
]);
}
if ($resProfile->getStatusCode() == 200) {
$body = json_decode($resProfile->getBody()->getContents(),true);
$profiles = $body['hydra:member'];
$basePath = $body['@id'];
}
return $app->json([
'profiles' => $profiles,
'basePath' => $basePath
]);
}
/**
* Create a publication
* Require params "exposeName" and "publicationData"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function createPublicationAction(PhraseaApplication $app, Request $request)
{
if (!$this->isCrsfValid($request, 'prodExposeNew')) {
return $this->app->json(['success' => false , 'message' => 'invalid crsf token form']);
}
$exposeName = $request->get('exposeName');
if ( $exposeName == null) {
return $app->json([
'success' => false,
'message' => "ExposeName required, select one!"
]);
}
$exposeConfiguration = $app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
$exposeConfiguration = $exposeConfiguration[$exposeName];
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'base_uri' => $exposeConfiguration['expose_base_uri'],
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
$exposeClient = $proxyConfig->getClientWithOptions($clientOptions);
try {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->postPublication($exposeClient, $accessToken, json_decode($request->get('publicationData'), true));
if ($response->getStatusCode() == 401) {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->postPublication($exposeClient, $accessToken, json_decode($request->get('publicationData'), true));
}
if ($response->getStatusCode() !== 201) {
return $app->json([
'success' => false,
'message' => "An error occurred when creating publication: status-code " . $response->getStatusCode()
]);
}
$publicationsResponse = json_decode($response->getBody(),true);
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => "An error occurred when creating publication!"
]);
}
$path = empty($publicationsResponse['slug']) ? $publicationsResponse['id'] : $publicationsResponse['slug'] ;
$url = \p4string::addEndSlash($exposeConfiguration['expose_front_uri']) . $path;
$link = "<a style='color:blue;' target='_blank' href='" . $url . "'>" . $url . "</a>";
return $app->json([
'success' => true,
'message' => "Publication successfully created!",
'link' => $link
]);
}
/**
* Update a publication
* Require params "exposeName" and "publicationId"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function updatePublicationAction(PhraseaApplication $app, Request $request)
{
if (!$this->isCrsfValid($request, 'prodExposeEdit')) {
return $this->app->json(['success' => false , 'message' => 'invalid crsf token form']);
}
$exposeName = $request->get('exposeName');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
try {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->putPublication($exposeClient, $request->get('publicationId'), $accessToken, json_decode($request->get('publicationData'), true));
if ($response->getStatusCode() == 401) {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->putPublication($exposeClient, $request->get('publicationId'), $accessToken, json_decode($request->get('publicationData'), true));
}
if ($response->getStatusCode() !== 200) {
return $app->json([
'success' => false,
'message' => "An error occurred when updating publication: status-code " . $response->getStatusCode()
]);
}
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => "An error occurred when updating publication! ". $e->getMessage()
]);
}
return $app->json([
'success' => true,
'message' => "Publication successfully updated!"
]);
}
/**
* Update assets positions
* Require params "exposeName", "publicationId" and "order" of the assets
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function updatePublicationAssetsOrderAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
try {
$accessToken = $this->getAndSaveToken($exposeName);
$exposeClient->post(sprintf('/publications/%s/sort-assets', $request->get('publicationId', [])), [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
],
'json' => [
'order' => $request->get('order', []),
],
]);
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => "An error occurred when updating assets order! ". $e->getMessage()
]);
}
return $app->json([
'success' => true,
'message' => "Assets order successfully updated!"
]);
}
/**
* Delete a Publication
* require params "exposeName" and "publicationId"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function deletePublicationAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
try {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->removePublication($exposeClient, $request->get('publicationId'), $accessToken);
if ($response->getStatusCode() == 401) {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->removePublication($exposeClient, $request->get('publicationId'), $accessToken);
}
if ($response->getStatusCode() !== 204) {
return $app->json([
'success' => false,
'message' => "An error occurred when deleting publication: status-code " . $response->getStatusCode()
]);
}
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => "An error occurred when deleting publication!"
]);
}
return $app->json([
'success' => true,
'message' => "Publication successfully deleted!"
]);
}
/**
* Delete asset from publication
* require params "exposeName" ,"publicationId" and "assetId"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function deletePublicationAssetAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
try {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->removeAssetPublication($exposeClient, $request->get('publicationId'), $request->get('assetId'), $accessToken);
if ($response->getStatusCode() == 401) {
$accessToken = $this->getAndSaveToken($exposeName);
$response = $this->removeAssetPublication($exposeClient, $request->get('publicationId'), $request->get('assetId'), $accessToken);
}
if ($response->getStatusCode() !== 204) {
return $app->json([
'success' => false,
'message' => "An error occurred when deleting asset: status-code " . $response->getStatusCode()
]);
}
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => "An error occurred when deleting asset!"
]);
}
return $app->json([
'success' => true,
'message' => "Asset successfully removed from publication!"
]);
}
/**
* Add assets in a publication
* Require params "lst" , "exposeName" and "publicationId"
* "lst" is a list of record as "baseId_recordId"
*
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function addPublicationAssetsAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$publicationId = $request->get('publicationId');
$lst = $request->get('lst');
if ($publicationId == null) {
return $app->json([
'success' => false,
'message' => 'Need to give publicationId to add asset in publication!'
]);
}
$config = $this->getExposeConfiguration($exposeName);
// used to set or refresh token session
$accessToken = $this->getAndSaveToken($exposeName);
if (empty($accessToken)) {
return $app->json([
'success' => false,
'message' => "Do not have access token!"
]);
}
$withProviderName = false;
try {
$providerId = $this->getSession()->get('auth_provider.id');
$provider = $this->getAuthenticationProviders()->get($providerId);
if (($provider->getType() == 'Openid' || $provider->getType() == 'PsAuth') && $config['auth_provider_name'] == $providerId) {
$withProviderName = true;
}
} catch (\Exception $e){
// provider not found
}
$accessTokenInfo = [];
if ($withProviderName || $config['connection_kind'] == 'password') {
$accessTokenInfo = $this->getSession()->get($this->getPassSessionName($exposeName));
} elseif($config['connection_kind'] == 'client_credentials') {
$accessTokenInfo = $this->getSession()->get($this->getCredentialSessionName($exposeName));
}
$this->getEventDispatcher()->dispatch(WorkerEvents::EXPOSE_UPLOAD_ASSETS, new ExposeUploadEvent($lst, $exposeName, $publicationId, $accessTokenInfo));
return $app->json([
'success' => true,
'message' => " Record (s) to be added to the publication!"
]);
}
/**
* @param PhraseaApplication $app
* @param Request $request
* @return string
*/
public function getDataboxesFieldAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$profile = $request->get('profile');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$exposeMappingName = $this->getExposeMappingName('field');
$fields = [];
$fieldMapping = [];
try {
$clientAnnotationProfile = $this->getClientAnnotationProfile($exposeClient, $exposeName, $profile);
$fieldMapping = !empty($clientAnnotationProfile[$exposeMappingName]) ? $clientAnnotationProfile[$exposeMappingName] : [];
$actualFieldsList = !empty($fieldMapping['fields']) ? $fieldMapping['fields'] : [];
$fields = ($profile != null) ? $this->getFields($actualFieldsList) : [];
} catch (\Exception $e) {
}
// send geoloc and send vtt checked by default if not setting
return $this->render('prod/WorkZone/ExposeFieldList.html.twig', [
'fields' => $fields,
'sendGeolocField' => isset($fieldMapping['sendGeolocField']) ? $fieldMapping['sendGeolocField'] : null,
'sendVttField' => isset($fieldMapping['sendVttField']) ? $fieldMapping['sendVttField'] : null,
]);
}
public function getSubdefsListAction(PhraseaApplication $app, Request $request)
{
$exposeName = $request->get('exposeName');
$profile = $request->get('profile');
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
try {
$clientAnnotationProfile = $this->getClientAnnotationProfile($exposeClient, $exposeName, $profile);
} catch(\Exception $e) {
}
$exposeMappingName = $this->getExposeMappingName('subdef');
$actualSubdefMapping = !empty($clientAnnotationProfile[$exposeMappingName]) ? $clientAnnotationProfile[$exposeMappingName] : [];
$databoxes = empty($profile)? [] : $this->getApplicationBox()->get_databoxes();
return $this->render('prod/WorkZone/ExposeSubdefList.html.twig', [
'databoxes' => $databoxes,
'actualSubdefMapping' => $actualSubdefMapping
]);
}
public function getFieldMappingAction(PhraseaApplication $app, Request $request)
{
$this->setSessionFormToken('prodExposeFieldMapping');
$this->setSessionFormToken('prodExposeSubdefMapping');
return $this->render('prod/WorkZone/ExposeFieldMapping.html.twig', [
'exposeName' => $request->get('exposeName')
]);
}
/**
* @param PhraseaApplication $app
* @param Request $request
* @return \Symfony\Component\HttpFoundation\JsonResponse
*/
public function saveFieldMappingAction(PhraseaApplication $app, Request $request)
{
if (!$this->isCrsfValid($request, 'prodExposeFieldMapping')) {
return $this->app->json(['success' => false , 'message' => 'invalid crsf token form'], 403);
}
$exposeName = $request->get('exposeName');
$profile = $request->request->get('profile');
$sendGeolocField = !empty($request->request->get('sendGeolocField')) ? array_keys($request->request->get('sendGeolocField')): [];
$sendVttField = !empty($request->request->get('sendVttField')) ? array_keys($request->request->get('sendVttField')) : [];
$fields = ($request->request->get('fields') === null) ? null : $request->request->get('fields');
$fieldMapping = [
'sendGeolocField' => $sendGeolocField,
'sendVttField' => $sendVttField,
'fields' => $fields
];
$fieldMapping = [
$this->getExposeMappingName('field') => $fieldMapping
];
if ($exposeName == null || $profile == null) {
return $app->json([
'success' => false,
'message' => "Choose an expose and a profile !"
]);
}
$exposeClient = $this->getExposeClient($exposeName);
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$clientAnnotationProfile = [];
try {
// get the actual value and merge it with the new one before save
$clientAnnotationProfile = $this->getClientAnnotationProfile($exposeClient, $exposeName, $profile);
} catch (\Exception $e) {
}
$annotationValues = array_merge($clientAnnotationProfile, $fieldMapping);
$accessToken = $this->getAndSaveToken($exposeName);
try {
// save field mapping in the selected profile
$resProfile = $exposeClient->put($profile , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
],
'json' => [
'clientAnnotations' => json_encode($annotationValues)
]
]);
} catch(\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resProfile->getStatusCode() !== 200) {
return $app->json([
'success' => false,
'message' => "Error when saving mapping with status code: " . $resProfile->getStatusCode()
]);
}
return $app->json([
'success' => true,
'clientAnnotations' => $annotationValues
]);
}
public function saveSubdefMappingAction(PhraseaApplication $app, Request $request)
{
if (!$this->isCrsfValid($request, 'prodExposeSubdefMapping')) {
return $this->app->json(['success' => false , 'message' => 'invalid crsf token form'], 403);
}
$exposeName = $request->get('exposeName');
$profile = $request->request->get('profile');
$exposeClient = $this->getExposeClient($exposeName);
$subdefs = $request->request->get('subdefs');
if ($exposeClient == null) {
return $app->json([
'success' => false,
'message' => "Expose configuration not set!"
]);
}
$subdefs = [
$this->getExposeMappingName('subdef') => $subdefs
];
try {
// get the actual value and merge it with the new one before save
$clientAnnotationProfile = $this->getClientAnnotationProfile($exposeClient, $exposeName, $profile);
$annotationValues = array_merge($clientAnnotationProfile, $subdefs);
$accessToken = $this->getAndSaveToken($exposeName);
// save subdef mapping in the selected profile
$resProfile = $exposeClient->put($profile , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
'Content-Type' => 'application/json'
],
'json' => [
'clientAnnotations' => json_encode($annotationValues)
]
]);
} catch (\Exception $e) {
return $app->json([
'success' => false,
'message' => $e->getMessage()
]);
}
if ($resProfile->getStatusCode() !== 200) {
return $app->json([
'success' => false,
'message' => "Error when saving mapping with status code: " . $resProfile->getStatusCode()
]);
}
return $app->json([
'success' => true,
'clientAnnotations' => $subdefs
]);
}
/**
* Get client annotation from the expose profile
*
* @param Client $exposeClient
* @param $exposeName
* @param $profileRoute
* @return array|mixed
*/
private function getClientAnnotationProfile(Client $exposeClient, $exposeName, $profileRoute)
{
$accessToken = $this->getAndSaveToken($exposeName);
$resProfile = $exposeClient->get($profileRoute , [
'headers' => [
'Authorization' => 'Bearer '. $accessToken,
]
]);
$actualFieldsList = [];
if ($resProfile->getStatusCode() == 200) {
$actualFieldsList = json_decode($resProfile->getBody()->getContents(),true);
$actualFieldsList = (!empty($actualFieldsList['clientAnnotations'])) ? json_decode($actualFieldsList['clientAnnotations'], true) : [];
}
return $actualFieldsList;
}
/**
* field | subdef context
* @param $mappingContext
*
* @return string
*/
private function getExposeMappingName($mappingContext)
{
$instanceId = $this->app['conf']->get(['main', 'instance_id']);
return $instanceId . '_' . $mappingContext . '_mapping';
}
/**
* get list of field in databoxes
*
* @return array
*/
private function getFields($actualFieldsList)
{
$databoxes = $this->getApplicationBox()->get_databoxes();
$fieldFromProfile = [];
foreach ($actualFieldsList as $key => $value) {
$t = explode('_', $key);
$oldFieldMapping = false;
if (count($t) == 2) {
$id = $key;
} else {
$oldFieldMapping = true;
$t = explode('_', $value);
$id = $value;
}
$databox = $this->getApplicationBox()->get_databox($t[0]);
$viewName = $t[0]. ':::' .$databox->get_viewname();
$name = $databox->get_meta_structure()->get_element($t[1])->get_label($this->app['locale']);
$fieldFromProfile[$viewName][$t[1]]['id'] = $id;
$fieldFromProfile[$viewName][$t[1]]['name'] = $name;
$fieldFromProfile[$viewName][$t[1]]['exposeSideName'] = ($oldFieldMapping) ? $name : $value;
$fieldFromProfile[$viewName][$t[1]]['checked'] = true;
}
$fields = $fieldFromProfile;
foreach ($databoxes as $databox) {
$viewName = $databox->get_sbas_id().':::'.$databox->get_viewname();
foreach ($databox->get_meta_structure() as $meta) {
if (!empty($fields[$viewName][$meta->get_id()]) && in_array($databox->get_sbas_id().'_'.$meta->get_id(), $fields[$viewName][$meta->get_id()])) {
continue;
}
// get databoxID_metaID for the checkbox name
$fields[$viewName][$meta->get_id()]['id'] = $databox->get_sbas_id().'_'.$meta->get_id();
$fields[$viewName][$meta->get_id()]['name'] = $meta->get_label($this->app['locale']);
$fields[$viewName][$meta->get_id()]['exposeSideName'] = $meta->get_label($this->app['locale']);;
}
}
return $fields;
}
/**
* @param Client $exposeClient
* @param $publicationId
* @param $accessToken
* @return array
*/
private function getPermissions(Client $exposeClient, $publicationId, $accessToken)
{
$permissions = [];
$listUsers = [];
$listGroups = [];
$resPermission = $exposeClient->get('/permissions/aces?objectType=publication&objectId=' . $publicationId, [
'headers' => [
'Authorization' => 'Bearer '. $accessToken
]
]);
if ($resPermission->getStatusCode() == 200) {
$permissions = json_decode($resPermission->getBody()->getContents(),true);
}
$resUsers = $exposeClient->get('/permissions/users', [
'headers' => [
'Authorization' => 'Bearer '. $accessToken
]
]);
if ($resUsers->getStatusCode() == 200) {
$listUsers = json_decode($resUsers->getBody()->getContents(),true);
}
$resGroups = $exposeClient->get('/permissions/groups', [
'headers' => [
'Authorization' => 'Bearer '. $accessToken
]
]);
if ($resGroups->getStatusCode() == 200) {
$listGroups = json_decode($resGroups->getBody()->getContents(),true);
}
foreach ($permissions as &$permission) {
if ($permission['userType'] == 'user' && !empty($listUsers)) {
$key = array_search($permission['userId'], array_column($listUsers, 'id'));
$permission = array_merge($permission, $listUsers[$key]);
$listUsers[$key]['selected'] = true;
} elseif ($permission['userType'] == 'group' && !empty($listGroups)) {
$key = array_search($permission['userId'], array_column($listGroups, 'id'));
$permission = array_merge($permission, $listGroups[$key]);
$listGroups[$key]['selected'] = true;
}
}
return [
$permissions,
$listUsers,
$listGroups
];
}
/**
* Get password session name
*
* @param $exposeName
* @return string
*/
private function getPassSessionName($exposeName)
{
$expose_name = str_replace(' ', '_', $exposeName);
return 'password_access_token_' . $expose_name;
}
private function getCredentialSessionName($exposeName)
{
$expose_name = str_replace(' ', '_', $exposeName);
return 'credential_access_token_' . $expose_name;
}
/**
* Get login session name
*
* @param $exposeName
* @return string
*/
private function getLoginSessionName($exposeName)
{
$expose_name = str_replace(' ', '_', $exposeName);
return 'expose_connected_login_'.$expose_name;
}
/**
* Get Token and save in session
* @param $exposeName
*
* @return mixed
*/
private function getAndSaveToken($exposeName)
{
$config = $this->getExposeConfiguration($exposeName);
$session = $this->getSession();
$passSessionName = $this->getPassSessionName($exposeName);
$providerId = $session->get('auth_provider.id');
$withProviderName = false;
$accessToken = '';
if ($providerId != null ) {
try {
$provider = $this->getAuthenticationProviders()->get($providerId);
// class name
if (($provider->getType() == 'Openid' || $provider->getType() == 'PsAuth') && $config['auth_provider_name'] == $providerId) {
$withProviderName = true;
$tokenInfo = $session->get($passSessionName);
if (is_array($tokenInfo) && $tokenInfo['expires_at'] > time()) {
$accessToken = $tokenInfo['access_token'];
} elseif (empty($tokenInfo) || (is_array($tokenInfo) && $tokenInfo['expires_at'] <= time() && isset($tokenInfo['refresh_expires_at']) && $tokenInfo['refresh_expires_at'] > time())) {
/** @var $provider Openid */
$provider->getAccessToken(true); // update token info
$tokenInfo = $session->get('provider.token_info');
$passSessionNameValue = [
'access_token' => $tokenInfo['access_token'],
'expires_at' => time() + $tokenInfo['expires_in'],
'refresh_token' => $tokenInfo['refresh_token'],
'refresh_expires_at' => time() + $tokenInfo['refresh_expires_in'],
'providerId' => $providerId
];
$session->set($passSessionName, $passSessionNameValue);
$session->set($this->getLoginSessionName($exposeName), $provider->getUserName());
$accessToken = $tokenInfo['access_token'];
} else {
throw new \Exception("can not have a refresh token");
}
}
} catch(\Exception $e) {
}
}
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$oauthClient = $proxyConfig->getClientWithOptions([
'verify' => $config['verify_ssl'],
]);
$credentialSessionName = $this->getCredentialSessionName($exposeName);
if (!$withProviderName && $session->has($passSessionName)) {
if ($config['connection_kind'] == 'password') {
$tokenInfo = $session->get($passSessionName);
if (is_array($tokenInfo) && $tokenInfo['expires_at'] > time()) {
$accessToken = $tokenInfo['access_token'];
} elseif (is_array($tokenInfo) && $tokenInfo['expires_at'] <= time() && isset($tokenInfo['refresh_expires_at']) && $tokenInfo['refresh_expires_at'] > time()) {
$resToken = $this->refreshToken($oauthClient, $config, $tokenInfo['refresh_token']);
if ($resToken->getStatusCode() !== 200) {
throw new \Exception("Error when get refresh token with status code: " . $resToken->getStatusCode());
}
$refreshtokenBody = $resToken->getBody()->getContents();
$refreshtokenBody = json_decode($refreshtokenBody,true);
if (isset($refreshtokenBody['refresh_expires_in'])) {
$passSessionNameValue = [
'access_token' => $refreshtokenBody['access_token'],
'expires_at' => time() + $refreshtokenBody['expires_in'],
'refresh_token'=> $refreshtokenBody['refresh_token'],
'refresh_expires_at' => time() + $refreshtokenBody['refresh_expires_in']
];
} else {
$passSessionNameValue = [
'access_token' => $refreshtokenBody['access_token'],
'expires_at' => time() + $refreshtokenBody['expires_in'],
];
}
$session->set($passSessionName, $passSessionNameValue);
$accessToken = $refreshtokenBody['access_token'];
} else {
$session->remove($passSessionName);
throw new \Exception("can not have a refresh token");
}
} elseif ($config['connection_kind'] == 'client_credentials') {
if ($session->has($credentialSessionName)) {
$tokenInfoCredential = $session->get($credentialSessionName);
if (!isset($tokenInfoCredential['expires_at'])) {
$accessToken = $tokenInfoCredential['access_token'];
} elseif (is_array($tokenInfoCredential) && $tokenInfoCredential['expires_at'] > time()) {
$accessToken = $tokenInfoCredential['access_token'];
} else {
$accessToken = $this->getTokenByCredential($oauthClient, $config, $credentialSessionName);
}
} else {
$accessToken = $this->getTokenByCredential($oauthClient, $config, $credentialSessionName);
}
}
}
return $accessToken;
}
private function getTokenByCredential(Client $oauthClient, array $exposeConfiguration, $credentialSessionName)
{
$session = $this->getSession();
$response = $oauthClient->post($exposeConfiguration['oauth_token_uri'] , [
'form_params' => [
'client_id' => $exposeConfiguration['expose_client_id'],
'client_secret' => $exposeConfiguration['expose_client_secret'],
'grant_type' => 'client_credentials',
]
]);
if ($response->getStatusCode() !== 200) {
throw new \Exception("Error when get credential token with status code: " . $response->getStatusCode());
}
$tokenBody = $response->getBody()->getContents();
$tokenBody = json_decode($tokenBody,true);
$credentialSessionNameValue = [
'access_token' => $tokenBody['access_token'],
'expires_at' => time() + $tokenBody['expires_in'],
];
$session->set($credentialSessionName, $credentialSessionNameValue);
return $tokenBody['access_token'];
}
private function getTokenByPassword(Client $oauthClient, array $exposeConfiguration, $username, $password)
{
return $oauthClient->post($exposeConfiguration['oauth_token_uri'], [
'form_params' => [
'client_id' => $exposeConfiguration['auth_client_id'],
'client_secret' => $exposeConfiguration['auth_client_secret'],
'grant_type' => 'password',
'username' => $username,
'password' => $password
]
]);
}
private function refreshToken(Client $oauthClient, array $exposeConfiguration, $refreshToken)
{
return $oauthClient->post($exposeConfiguration['oauth_token_uri'], [
'form_params' => [
'client_id' => $exposeConfiguration['auth_client_id'],
'client_secret' => $exposeConfiguration['auth_client_secret'],
'grant_type' => 'refresh_token',
'refresh_token' => $refreshToken
]
]);
}
private function postPublication(Client $exposeClient, $token, $publicationData)
{
return $exposeClient->post('/publications', [
'headers' => [
'Authorization' => 'Bearer '. $token,
'Content-Type' => 'application/json'
],
'json' => $publicationData
]);
}
private function putPublication(Client $exposeClient, $publicationId, $token, $publicationData)
{
return $exposeClient->put('/publications/' . $publicationId, [
'headers' => [
'Authorization' => 'Bearer '. $token,
'Content-Type' => 'application/json'
],
'json' => $publicationData
]);
}
private function removePublication(Client $exposeClient, $publicationId, $token)
{
return $exposeClient->delete('/publications/' . $publicationId, [
'headers' => [
'Authorization' => 'Bearer '. $token
]
]);
}
private function removeAssetPublication(Client $exposeClient, $publicationId, $assetId, $token)
{
return $exposeClient->delete('/assets/'. $assetId, [
'headers' => [
'Authorization' => 'Bearer '. $token
]
]);
}
/**
* @param $exposeName
* @return Client|null
*/
private function getExposeClient($exposeName)
{
$exposeConfiguration = $this->getExposeConfiguration($exposeName);
if ($exposeConfiguration === null) {
return null;
}
$proxyConfig = new NetworkProxiesConfiguration($this->app['conf']);
$clientOptions = [
'base_uri' => $exposeConfiguration['expose_base_uri'],
'http_errors' => false,
'verify' => $exposeConfiguration['verify_ssl']
];
return $proxyConfig->getClientWithOptions($clientOptions);
}
/**
* @param $exposeName
* @return array|null
*/
private function getExposeConfiguration($exposeName)
{
$exposeConfiguration = $this->app['conf']->get(['phraseanet-service', 'expose-service', 'exposes'], []);
try {
$exposeConfiguration = $exposeConfiguration[$exposeName];
} catch (\Exception $e) {
return null;
}
return $exposeConfiguration;
}
/**
* @return EventDispatcherInterface
*/
private function getEventDispatcher()
{
return $this->app['dispatcher'];
}
/**
* @return Session
*/
private function getSession()
{
return $this->app['session'];
}
/**
* @return ProvidersCollection
*/
private function getAuthenticationProviders()
{
return $this->app['authentication.providers'];
}
}
Reference in New Issue View Git Blame Copy Permalink