[github/wallabag/wallabag.git] / src / Wallabag / ApiBundle / Controller / WallabagRestController.php

<?php

namespace Wallabag\ApiBundle\Controller;

use FOS\RestBundle\Controller\FOSRestController;
use Hateoas\Configuration\Route;
use Hateoas\Representation\Factory\PagerfantaFactory;
use Nelmio\ApiDocBundle\Annotation\ApiDoc;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
use Symfony\Component\Security\Core\Exception\AccessDeniedException;
use Wallabag\CoreBundle\Entity\Entry;
use Wallabag\CoreBundle\Entity\Tag;

class WallabagRestController extends FOSRestController
{
    private function validateAuthentication()
    {
        if (false === $this->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY')) {
            throw new AccessDeniedException();
        }
    }

    /**
     * Retrieve all entries. It could be filtered by many options.
     *
     * @ApiDoc(
     *       parameters={
     *          {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0, all entries by default", "description"="filter by archived status."},
     *          {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0, all entries by default", "description"="filter by starred status."},
     *          {"name"="sort", "dataType"="string", "required"=false, "format"="'created' or 'updated', default 'created'", "description"="sort entries by date."},
     *          {"name"="order", "dataType"="string", "required"=false, "format"="'asc' or 'desc', default 'desc'", "description"="order of sort."},
     *          {"name"="page", "dataType"="integer", "required"=false, "format"="default '1'", "description"="what page you want."},
     *          {"name"="perPage", "dataType"="integer", "required"=false, "format"="default'30'", "description"="results per page."},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="api,rest", "description"="a list of tags url encoded. Will returns entries that matches ALL tags."},
     *       }
     * )
     *
     * @return Response
     */
    public function getEntriesAction(Request $request)
    {
        $this->validateAuthentication();

        $isArchived = (null === $request->query->get('archive')) ? null : (bool) $request->query->get('archive');
        $isStarred = (null === $request->query->get('starred')) ? null : (bool) $request->query->get('starred');
        $sort = $request->query->get('sort', 'created');
        $order = $request->query->get('order', 'desc');
        $page = (int) $request->query->get('page', 1);
        $perPage = (int) $request->query->get('perPage', 30);

        $pager = $this->getDoctrine()
            ->getRepository('WallabagCoreBundle:Entry')
            ->findEntries($this->getUser()->getId(), $isArchived, $isStarred, $sort, $order);

        $pager->setCurrentPage($page);
        $pager->setMaxPerPage($perPage);

        $pagerfantaFactory = new PagerfantaFactory('page', 'perPage');
        $paginatedCollection = $pagerfantaFactory->createRepresentation(
            $pager,
            new Route('api_get_entries', [], UrlGeneratorInterface::ABSOLUTE_URL)
        );

        $json = $this->get('serializer')->serialize($paginatedCollection, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve a single entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Response
     */
    public function getEntryAction(Entry $entry)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Create an entry.
     *
     * @ApiDoc(
     *       parameters={
     *          {"name"="url", "dataType"="string", "required"=true, "format"="http://www.test.com/article.html", "description"="Url for the entry."},
     *          {"name"="title", "dataType"="string", "required"=false, "description"="Optional, we'll get the title from the page."},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *          {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="entry already starred"},
     *          {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="entry already archived"},
     *       }
     * )
     *
     * @return Response
     */
    public function postEntriesAction(Request $request)
    {
        $this->validateAuthentication();

        $url = $request->request->get('url');
        $title = $request->request->get('title');
        $isArchived = $request->request->get('archive');
        $isStarred = $request->request->get('starred');

        $entry = $this->get('wallabag_core.entry_repository')->findByUrlAndUserId($url, $this->getUser()->getId());

        if (false === $entry) {
            $entry = $this->get('wallabag_core.content_proxy')->updateEntry(
                new Entry($this->getUser()),
                $url
            );
        }

        if (!is_null($title)) {
            $entry->setTitle($title);
        }

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
        }

        if (!is_null($isStarred)) {
            $entry->setStarred((bool) $isStarred);
        }

        if (!is_null($isArchived)) {
            $entry->setArchived((bool) $isArchived);
        }

        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);

        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Change several properties of an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      },
     *      parameters={
     *          {"name"="title", "dataType"="string", "required"=false},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *          {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="archived the entry."},
     *          {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="starred the entry."},
     *      }
     * )
     *
     * @return Response
     */
    public function patchEntriesAction(Entry $entry, Request $request)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $title = $request->request->get('title');
        $isArchived = $request->request->get('archive');
        $isStarred = $request->request->get('starred');

        if (!is_null($title)) {
            $entry->setTitle($title);
        }

        if (!is_null($isArchived)) {
            $entry->setArchived((bool) $isArchived);
        }

        if (!is_null($isStarred)) {
            $entry->setStarred((bool) $isStarred);
        }

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
        }

        $em = $this->getDoctrine()->getManager();
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Delete **permanently** an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Response
     */
    public function deleteEntriesAction(Entry $entry)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $em = $this->getDoctrine()->getManager();
        $em->remove($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve all tags for an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Response
     */
    public function getEntriesTagsAction(Entry $entry)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $json = $this->get('serializer')->serialize($entry->getTags(), 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Add one or more tags to an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      },
     *      parameters={
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *       }
     * )
     *
     * @return Response
     */
    public function postEntriesTagsAction(Request $request, Entry $entry)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
        }

        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Permanently remove one tag for an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag ID"},
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Response
     */
    public function deleteEntriesTagsAction(Entry $entry, Tag $tag)
    {
        $this->validateAuthentication();
        $this->validateUserAccess($entry->getUser()->getId());

        $entry->removeTag($tag);
        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve all tags.
     *
     * @ApiDoc()
     *
     * @return Response
     */
    public function getTagsAction()
    {
        $this->validateAuthentication();

        $tags = $this->getDoctrine()
            ->getRepository('WallabagCoreBundle:Tag')
            ->findAllTags($this->getUser()->getId());

        $json = $this->get('serializer')->serialize($tags, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Permanently remove one tag from **every** entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag"}
     *      }
     * )
     *
     * @return Response
     */
    public function deleteTagAction(Tag $tag)
    {
        $this->validateAuthentication();

        $this->getDoctrine()
            ->getRepository('WallabagCoreBundle:Entry')
            ->removeTag($this->getUser()->getId(), $tag);

        $json = $this->get('serializer')->serialize($tag, 'json');

        return $this->renderJsonResponse($json);
    }
    /**
     * Retrieve version number.
     *
     * @ApiDoc()
     *
     * @return Response
     */
    public function getVersionAction()
    {
        $version = $this->container->getParameter('wallabag_core.version');

        $json = $this->get('serializer')->serialize($version, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Validate that the first id is equal to the second one.
     * If not, throw exception. It means a user try to access information from an other user.
     *
     * @param int $requestUserId User id from the requested source
     */
    private function validateUserAccess($requestUserId)
    {
        $user = $this->get('security.token_storage')->getToken()->getUser();
        if ($requestUserId != $user->getId()) {
            throw $this->createAccessDeniedException('Access forbidden. Entry user id: '.$requestUserId.', logged user id: '.$user->getId());
        }
    }

    /**
     * Send a JSON Response.
     * We don't use the Symfony JsonRespone, because it takes an array as parameter instead of a JSON string.
     *
     * @param string $json
     *
     * @return Response
     */
    private function renderJsonResponse($json)
    {
        return new Response($json, 200, ['application/json']);
    }
}
Commit	Line	Data
f8bf8952 NL	1	<?php
f8bf8952 NL	2
769e19dc	3	namespace Wallabag\ApiBundle\Controller;
f8bf8952	4
fcb1fba5	5	use FOS\RestBundle\Controller\FOSRestController;
619cc453 JB	6	use Hateoas\Configuration\Route;
619cc453 JB	7	use Hateoas\Representation\Factory\PagerfantaFactory;
f8bf8952	8	use Nelmio\ApiDocBundle\Annotation\ApiDoc;
27f15aa4	9	use Symfony\Component\HttpFoundation\Request;
b0cce9e6	10	use Symfony\Component\HttpFoundation\Response;
1d76102a	11	use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
b0b893ea	12	use Symfony\Component\Security\Core\Exception\AccessDeniedException;
be463487	13	use Wallabag\CoreBundle\Entity\Entry;
653e8be4	14	use Wallabag\CoreBundle\Entity\Tag;
f8bf8952	15
fcb1fba5	16	class WallabagRestController extends FOSRestController
f8bf8952	17	{
77273253 NL	18	private function validateAuthentication()
77273253 NL	19	{
18f8f32f	20	if (false === $this->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY')) {
77273253 NL	21	throw new AccessDeniedException();
	22	}
	23	}
	24
f8bf8952	25	/**
a8c90c5c	26	* Retrieve all entries. It could be filtered by many options.
f8bf8952 NL	27	*
f8bf8952 NL	28	* @ApiDoc(
a8c90c5c	29	* parameters={
189ef634 TC	30	* {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0, all entries by default", "description"="filter by archived status."},
189ef634 TC	31	* {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0, all entries by default", "description"="filter by starred status."},
a8c90c5c NL	32	* {"name"="sort", "dataType"="string", "required"=false, "format"="'created' or 'updated', default 'created'", "description"="sort entries by date."},
	33	* {"name"="order", "dataType"="string", "required"=false, "format"="'asc' or 'desc', default 'desc'", "description"="order of sort."},
	34	* {"name"="page", "dataType"="integer", "required"=false, "format"="default '1'", "description"="what page you want."},
	35	* {"name"="perPage", "dataType"="integer", "required"=false, "format"="default'30'", "description"="results per page."},
189ef634	36	* {"name"="tags", "dataType"="string", "required"=false, "format"="api,rest", "description"="a list of tags url encoded. Will returns entries that matches ALL tags."},
a8c90c5c	37	* }
f8bf8952	38	* )
4346a860	39	*
8eedc8cf	40	* @return Response
f8bf8952	41	*/
27f15aa4	42	public function getEntriesAction(Request $request)
f8bf8952	43	{
77273253 NL	44	$this->validateAuthentication();
77273253 NL	45
0135c98b NL	46	$isArchived = (null === $request->query->get('archive')) ? null : (bool) $request->query->get('archive');
0135c98b NL	47	$isStarred = (null === $request->query->get('starred')) ? null : (bool) $request->query->get('starred');
8ce32af6 JB	48	$sort = $request->query->get('sort', 'created');
	49	$order = $request->query->get('order', 'desc');
	50	$page = (int) $request->query->get('page', 1);
	51	$perPage = (int) $request->query->get('perPage', 30);
a8c90c5c	52
fc732227	53	$pager = $this->getDoctrine()
be463487	54	->getRepository('WallabagCoreBundle:Entry')
5c3ca4fe	55	->findEntries($this->getUser()->getId(), $isArchived, $isStarred, $sort, $order);
a8c90c5c	56
6e22bd73 WD	57	$pager->setCurrentPage($page);
	58	$pager->setMaxPerPage($perPage);
	59
8ce32af6	60	$pagerfantaFactory = new PagerfantaFactory('page', 'perPage');
6e22bd73 WD	61	$paginatedCollection = $pagerfantaFactory->createRepresentation(
6e22bd73 WD	62	$pager,
1d76102a	63	new Route('api_get_entries', [], UrlGeneratorInterface::ABSOLUTE_URL)
6e22bd73 WD	64	);
	65
	66	$json = $this->get('serializer')->serialize($paginatedCollection, 'json');
0f006880	67
769e19dc	68	return $this->renderJsonResponse($json);
f8bf8952 NL	69	}
	70
	71	/**
4346a860	72	* Retrieve a single entry.
f8bf8952 NL	73	*
	74	* @ApiDoc(
	75	* requirements={
	76	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	77	* }
	78	* )
4346a860	79	*
8eedc8cf	80	* @return Response
f8bf8952	81	*/
be463487	82	public function getEntryAction(Entry $entry)
f8bf8952	83	{
77273253	84	$this->validateAuthentication();
fcb1fba5	85	$this->validateUserAccess($entry->getUser()->getId());
092ca707	86
aa4d6562	87	$json = $this->get('serializer')->serialize($entry, 'json');
0f006880	88
769e19dc	89	return $this->renderJsonResponse($json);
f8bf8952 NL	90	}
	91
	92	/**
4346a860	93	* Create an entry.
f8bf8952 NL	94	*
f8bf8952 NL	95	* @ApiDoc(
a8c90c5c NL	96	* parameters={
	97	* {"name"="url", "dataType"="string", "required"=true, "format"="http://www.test.com/article.html", "description"="Url for the entry."},
	98	* {"name"="title", "dataType"="string", "required"=false, "description"="Optional, we'll get the title from the page."},
	99	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
189ef634 TC	100	* {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="entry already starred"},
189ef634 TC	101	* {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="entry already archived"},
a8c90c5c	102	* }
f8bf8952	103	* )
4346a860	104	*
8eedc8cf	105	* @return Response
f8bf8952	106	*/
843dbe51	107	public function postEntriesAction(Request $request)
f8bf8952	108	{
77273253 NL	109	$this->validateAuthentication();
77273253 NL	110
c3235553	111	$url = $request->request->get('url');
51a15609	112	$title = $request->request->get('title');
873e3806 YE	113	$isArchived = $request->request->get('archive');
873e3806 YE	114	$isStarred = $request->request->get('starred');
c3235553	115
3107f92a TC	116	$entry = $this->get('wallabag_core.entry_repository')->findByUrlAndUserId($url, $this->getUser()->getId());
	117
	118	if (false === $entry) {
	119	$entry = $this->get('wallabag_core.content_proxy')->updateEntry(
	120	new Entry($this->getUser()),
	121	$url
	122	);
	123	}
092ca707	124
51a15609 NL	125	if (!is_null($title)) {
	126	$entry->setTitle($title);
	127	}
	128
0ca374e6 NL	129	$tags = $request->request->get('tags', '');
0ca374e6 NL	130	if (!empty($tags)) {
c2656f96	131	$this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
0ca374e6	132	}
092ca707	133
bc2b947c TC	134	if (!is_null($isStarred)) {
	135	$entry->setStarred((bool) $isStarred);
	136	}
816ad405	137
bc2b947c TC	138	if (!is_null($isArchived)) {
	139	$entry->setArchived((bool) $isArchived);
	140	}
816ad405	141
843dbe51 NL	142	$em = $this->getDoctrine()->getManager();
843dbe51 NL	143	$em->persist($entry);
816ad405	144
843dbe51 NL	145	$em->flush();
843dbe51 NL	146
aa4d6562 NL	147	$json = $this->get('serializer')->serialize($entry, 'json');
aa4d6562 NL	148
769e19dc	149	return $this->renderJsonResponse($json);
f8bf8952 NL	150	}
	151
	152	/**
4346a860	153	* Change several properties of an entry.
f8bf8952 NL	154	*
	155	* @ApiDoc(
	156	* requirements={
	157	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
a8c90c5c NL	158	* },
	159	* parameters={
	160	* {"name"="title", "dataType"="string", "required"=false},
	161	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
189ef634 TC	162	* {"name"="archive", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="archived the entry."},
189ef634 TC	163	* {"name"="starred", "dataType"="integer", "required"=false, "format"="1 or 0", "description"="starred the entry."},
1d147791	164	* }
f8bf8952	165	* )
4346a860	166	*
8eedc8cf	167	* @return Response
f8bf8952	168	*/
be463487	169	public function patchEntriesAction(Entry $entry, Request $request)
f8bf8952	170	{
77273253	171	$this->validateAuthentication();
fcb1fba5	172	$this->validateUserAccess($entry->getUser()->getId());
092ca707	173
8ce32af6	174	$title = $request->request->get('title');
614a0bfd YE	175	$isArchived = $request->request->get('archive');
614a0bfd YE	176	$isStarred = $request->request->get('starred');
2c093b03 NL	177
	178	if (!is_null($title)) {
	179	$entry->setTitle($title);
	180	}
	181
	182	if (!is_null($isArchived)) {
189ef634	183	$entry->setArchived((bool) $isArchived);
2c093b03 NL	184	}
2c093b03 NL	185
2c093b03	186	if (!is_null($isStarred)) {
189ef634	187	$entry->setStarred((bool) $isStarred);
2c093b03 NL	188	}
2c093b03 NL	189
0ca374e6 NL	190	$tags = $request->request->get('tags', '');
0ca374e6 NL	191	if (!empty($tags)) {
c2656f96	192	$this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
0ca374e6	193	}
092ca707	194
2c093b03	195	$em = $this->getDoctrine()->getManager();
2c093b03 NL	196	$em->flush();
2c093b03 NL	197
0ca374e6 NL	198	$json = $this->get('serializer')->serialize($entry, 'json');
0ca374e6 NL	199
769e19dc	200	return $this->renderJsonResponse($json);
f8bf8952 NL	201	}
	202
	203	/**
4346a860	204	* Delete permanently an entry.
f8bf8952 NL	205	*
f8bf8952 NL	206	* @ApiDoc(
a8c90c5c NL	207	* requirements={
	208	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	209	* }
f8bf8952	210	* )
4346a860	211	*
8eedc8cf	212	* @return Response
f8bf8952	213	*/
be463487	214	public function deleteEntriesAction(Entry $entry)
f8bf8952	215	{
77273253	216	$this->validateAuthentication();
fcb1fba5	217	$this->validateUserAccess($entry->getUser()->getId());
092ca707	218
42a90646	219	$em = $this->getDoctrine()->getManager();
1d147791	220	$em->remove($entry);
42a90646 NL	221	$em->flush();
42a90646 NL	222
1d147791 NL	223	$json = $this->get('serializer')->serialize($entry, 'json');
1d147791 NL	224
769e19dc	225	return $this->renderJsonResponse($json);
f8bf8952 NL	226	}
	227
	228	/**
4346a860	229	* Retrieve all tags for an entry.
f8bf8952 NL	230	*
	231	* @ApiDoc(
	232	* requirements={
	233	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	234	* }
	235	* )
8eedc8cf JB	236	*
8eedc8cf JB	237	* @return Response
f8bf8952	238	*/
be463487	239	public function getEntriesTagsAction(Entry $entry)
7df80cb3	240	{
77273253	241	$this->validateAuthentication();
fcb1fba5	242	$this->validateUserAccess($entry->getUser()->getId());
092ca707	243
1bd12b62	244	$json = $this->get('serializer')->serialize($entry->getTags(), 'json');
0a018fe0	245
769e19dc	246	return $this->renderJsonResponse($json);
f8bf8952 NL	247	}
	248
	249	/**
4346a860	250	* Add one or more tags to an entry.
f8bf8952 NL	251	*
	252	* @ApiDoc(
	253	* requirements={
	254	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
a8c90c5c NL	255	* },
	256	* parameters={
	257	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
	258	* }
f8bf8952	259	* )
8eedc8cf JB	260	*
8eedc8cf JB	261	* @return Response
f8bf8952	262	*/
a36737f4	263	public function postEntriesTagsAction(Request $request, Entry $entry)
7df80cb3	264	{
77273253	265	$this->validateAuthentication();
fcb1fba5	266	$this->validateUserAccess($entry->getUser()->getId());
a36737f4	267
0ca374e6 NL	268	$tags = $request->request->get('tags', '');
0ca374e6 NL	269	if (!empty($tags)) {
c2656f96	270	$this->get('wallabag_core.content_proxy')->assignTagsToEntry($entry, $tags);
0ca374e6	271	}
092ca707	272
a36737f4 NL	273	$em = $this->getDoctrine()->getManager();
	274	$em->persist($entry);
	275	$em->flush();
	276
	277	$json = $this->get('serializer')->serialize($entry, 'json');
	278
769e19dc	279	return $this->renderJsonResponse($json);
f8bf8952 NL	280	}
	281
	282	/**
4346a860	283	* Permanently remove one tag for an entry.
f8bf8952 NL	284	*
	285	* @ApiDoc(
	286	* requirements={
769e19dc	287	* {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag ID"},
f8bf8952 NL	288	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	289	* }
	290	* )
8eedc8cf JB	291	*
8eedc8cf JB	292	* @return Response
f8bf8952	293	*/
653e8be4	294	public function deleteEntriesTagsAction(Entry $entry, Tag $tag)
f8bf8952	295	{
77273253	296	$this->validateAuthentication();
fcb1fba5	297	$this->validateUserAccess($entry->getUser()->getId());
092ca707 NL	298
	299	$entry->removeTag($tag);
	300	$em = $this->getDoctrine()->getManager();
	301	$em->persist($entry);
	302	$em->flush();
	303
	304	$json = $this->get('serializer')->serialize($entry, 'json');
	305
769e19dc	306	return $this->renderJsonResponse($json);
f8bf8952 NL	307	}
	308
	309	/**
4346a860	310	* Retrieve all tags.
f8bf8952	311	*
092ca707	312	* @ApiDoc()
8eedc8cf JB	313	*
8eedc8cf JB	314	* @return Response
f8bf8952	315	*/
092ca707	316	public function getTagsAction()
7df80cb3	317	{
77273253	318	$this->validateAuthentication();
fc732227 JB	319
	320	$tags = $this->getDoctrine()
	321	->getRepository('WallabagCoreBundle:Tag')
	322	->findAllTags($this->getUser()->getId());
	323
	324	$json = $this->get('serializer')->serialize($tags, 'json');
092ca707	325
769e19dc	326	return $this->renderJsonResponse($json);
f8bf8952 NL	327	}
f8bf8952 NL	328
f8bf8952	329	/**
4346a860	330	* Permanently remove one tag from every entry.
f8bf8952 NL	331	*
	332	* @ApiDoc(
	333	* requirements={
769e19dc	334	* {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag"}
f8bf8952 NL	335	* }
f8bf8952 NL	336	* )
8eedc8cf JB	337	*
8eedc8cf JB	338	* @return Response
f8bf8952	339	*/
653e8be4	340	public function deleteTagAction(Tag $tag)
f8bf8952	341	{
77273253	342	$this->validateAuthentication();
fc732227 JB	343
	344	$this->getDoctrine()
	345	->getRepository('WallabagCoreBundle:Entry')
	346	->removeTag($this->getUser()->getId(), $tag);
092ca707	347
092ca707 NL	348	$json = $this->get('serializer')->serialize($tag, 'json');
092ca707 NL	349
769e19dc J	350	return $this->renderJsonResponse($json);
769e19dc J	351	}
2b477030	352	/**
6f8310b4 TC	353	* Retrieve version number.
	354	*
	355	* @ApiDoc()
2b477030 V	356	*
	357	* @return Response
	358	*/
	359	public function getVersionAction()
	360	{
	361	$version = $this->container->getParameter('wallabag_core.version');
	362
	363	$json = $this->get('serializer')->serialize($version, 'json');
	364
	365	return $this->renderJsonResponse($json);
	366	}
769e19dc J	367
	368	/**
	369	* Validate that the first id is equal to the second one.
4346a860	370	* If not, throw exception. It means a user try to access information from an other user.
769e19dc	371	*
4346a860	372	* @param int $requestUserId User id from the requested source
769e19dc	373	*/
fcb1fba5	374	private function validateUserAccess($requestUserId)
769e19dc	375	{
18f8f32f	376	$user = $this->get('security.token_storage')->getToken()->getUser();
fcb1fba5 NL	377	if ($requestUserId != $user->getId()) {
fcb1fba5 NL	378	throw $this->createAccessDeniedException('Access forbidden. Entry user id: '.$requestUserId.', logged user id: '.$user->getId());
769e19dc J	379	}
	380	}
	381
	382	/**
	383	* Send a JSON Response.
4346a860	384	* We don't use the Symfony JsonRespone, because it takes an array as parameter instead of a JSON string.
769e19dc J	385	*
	386	* @param string $json
	387	*
	388	* @return Response
	389	*/
	390	private function renderJsonResponse($json)
	391	{
4094ea47	392	return new Response($json, 200, ['application/json']);
f8bf8952	393	}
7df80cb3	394	}