Phraseanet/lib/Alchemy/Phrasea/Controller/Prod/Story.php

<?php

/*
 * This file is part of Phraseanet
 *
 * (c) 2005-2013 Alchemy
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

namespace Alchemy\Phrasea\Controller\Prod;

use Alchemy\Phrasea\Controller\Exception as ControllerException;
use Alchemy\Phrasea\Controller\RecordsRequest;
use Silex\Application;
use Silex\ControllerProviderInterface;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;

/**
 *
 * @license     http://opensource.org/licenses/gpl-3.0 GPLv3
 * @link        www.phraseanet.com
 */
class Story implements ControllerProviderInterface
{

    public function connect(Application $app)
    {
        $controllers = $app['controllers_factory'];

        $controllers->before(function(Request $request) use ($app) {
            $app['firewall']->requireAuthentication();
        });

        $controllers->get('/create/', function(Application $app) {
            return $app['twig']->render('prod/Story/Create.html.twig', array());
        });

        $controllers->post('/', function(Application $app, Request $request) {
            /* @var $request \Symfony\Component\HttpFoundation\Request */
            $collection = \collection::get_from_base_id($app, $request->request->get('base_id'));

            if (!$app['authentication']->getUser()->ACL()->has_right_on_base($collection->get_base_id(), 'canaddrecord')) {
                throw new \Exception_Forbidden('You can not create a story on this collection');
            }

            $Story = \record_adapter::createStory($app, $collection);

            $records = RecordsRequest::fromRequest($app, $request, true);

            foreach ($records as $record) {
                if ($Story->hasChild($record)) {
                    continue;
                }

                $Story->appendChild($record);
            }

            $metadatas = array();

            foreach ($collection->get_databox()->get_meta_structure() as $meta) {
                if ($meta->get_thumbtitle()) {
                    $value = $request->request->get('name');
                } else {
                    continue;
                }

                $metadatas[] = array(
                    'meta_struct_id' => $meta->get_id()
                    , 'meta_id'        => null
                    , 'value'          => $value
                );

                break;
            }

            $Story->set_metadatas($metadatas)->rebuild_subdefs();

            $StoryWZ = new \Entities\StoryWZ();
            $StoryWZ->setUser($app['authentication']->getUser());
            $StoryWZ->setRecord($Story);

            $app['EM']->persist($StoryWZ);

            $app['EM']->flush();

            if ($request->getRequestFormat() == 'json') {
                $data = array(
                    'success'  => true
                    , 'message'  => _('Story created')
                    , 'WorkZone' => $StoryWZ->getId()
                    , 'story'    => array(
                        'sbas_id'   => $Story->get_sbas_id(),
                        'record_id' => $Story->get_record_id(),
                    )
                );

                return $app->json($data);
            } else {
                return $app->redirect(sprintf('/%d/', $StoryWZ->getId()));
            }
        });

        $controllers->get('/{sbas_id}/{record_id}/', function(Application $app, $sbas_id, $record_id) {
            $Story = new \record_adapter($app, $sbas_id, $record_id);

            $html = $app['twig']->render('prod/WorkZone/Story.html.twig', array('Story' => $Story));

            return new Response($html);
        })->assert('sbas_id', '\d+')->assert('record_id', '\d+');

        $controllers->post('/{sbas_id}/{record_id}/addElements/', function(Application $app, Request $request, $sbas_id, $record_id) {
            $Story = new \record_adapter($app, $sbas_id, $record_id);

            if (!$app['authentication']->getUser()->ACL()->has_right_on_base($Story->get_base_id(), 'canmodifrecord'))
                throw new \Exception_Forbidden('You can not add document to this Story');

            $n = 0;

            $records = RecordsRequest::fromRequest($app, $request, true);

            foreach ($records as $record) {
                if ($Story->hasChild($record)) {
                    continue;
                }

                $Story->appendChild($record);
                $n++;
            }

            $data = array(
                'success' => true
                , 'message' => sprintf(_('%d records added'), $n)
            );

            if ($request->getRequestFormat() == 'json') {
                return $app->json($data);
            } else {
                return $app->redirect('/');
            }
        })->assert('sbas_id', '\d+')->assert('record_id', '\d+');

        $controllers->post('/{sbas_id}/{record_id}/delete/{child_sbas_id}/{child_record_id}/', function(Application $app, Request $request, $sbas_id, $record_id, $child_sbas_id, $child_record_id) {
            $Story = new \record_adapter($app, $sbas_id, $record_id);

            $record = new \record_adapter($app, $child_sbas_id, $child_record_id);

            if (!$app['authentication']->getUser()->ACL()->has_right_on_base($Story->get_base_id(), 'canmodifrecord'))
                throw new \Exception_Forbidden('You can not add document to this Story');

            $Story->removeChild($record);

            $data = array(
                'success' => true
                , 'message' => _('Record removed from story')
            );

            if ($request->getRequestFormat() == 'json') {
                return $app->json($data);
            } else {
                return $app->redirect('/');
            }
        })
            ->assert('sbas_id', '\d+')
            ->assert('record_id', '\d+')
            ->assert('child_sbas_id', '\d+')
            ->assert('child_record_id', '\d+');

        /**
         * Get the Basket reorder form
         */
        $controllers->get('/{sbas_id}/{record_id}/reorder/', function(Application $app, $sbas_id, $record_id) {
            $story = new \record_adapter($app, $sbas_id, $record_id);

            if (!$story->is_grouping()) {
                throw new \Exception('This is not a story');
            }

            return new Response(
                    $app['twig']->render(
                        'prod/Story/Reorder.html.twig'
                        , array('story' => $story)
                    )
            );
        })
            ->assert('sbas_id', '\d+')
            ->assert('record_id', '\d+');

        $controllers->post('/{sbas_id}/{record_id}/reorder/', function(Application $app, $sbas_id, $record_id) {
            $ret = array('success' => false, 'message' => _('An error occured'));
            try {

                $story = new \record_adapter($app, $sbas_id, $record_id);

                if (!$story->is_grouping()) {
                    throw new \Exception('This is not a story');
                }

                if (!$app['authentication']->getUser()->ACL()->has_right_on_base($story->get_base_id(), 'canmodifrecord')) {
                    throw new ControllerException(_('You can not edit this story'));
                }

                $sql = 'UPDATE regroup SET ord = :ord
              WHERE rid_parent = :parent_id AND rid_child = :children_id';
                $stmt = $story->get_databox()->get_connection()->prepare($sql);

                foreach ($app['request']->request->get('element') as $record_id => $ord) {
                    $params = array(
                        ':ord'         => $ord,
                        ':parent_id'   => $story->get_record_id(),
                        ':children_id' => $record_id
                    );
                    $stmt->execute($params);
                }

                $stmt->closeCursor();

                $ret = array('success' => true, 'message' => _('Story updated'));
            } catch (ControllerException $e) {
                $ret = array('success' => false, 'message' => $e->getMessage());
            } catch (\Exception $e) {

            }

            return $app->json($ret);
        })
            ->assert('sbas_id', '\d+')
            ->assert('record_id', '\d+');

        return $controllers;
    }
}