[github/wallabag/wallabag.git] / src / Wallabag / ApiBundle / Controller / WallabagRestController.php

<?php

namespace Wallabag\ApiBundle\Controller;

use Nelmio\ApiDocBundle\Annotation\ApiDoc;
use Symfony\Bundle\FrameworkBundle\Controller\Controller;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Wallabag\CoreBundle\Entity\Entry;
use Wallabag\CoreBundle\Entity\Tag;
use Wallabag\CoreBundle\Service\Extractor;
use Hateoas\Configuration\Route;
use Hateoas\Representation\Factory\PagerfantaFactory;

class WallabagRestController extends Controller
{
    /**
     * @param Entry  $entry
     * @param string $tags
     */
    private function assignTagsToEntry(Entry $entry, $tags)
    {
        foreach (explode(',', $tags) as $label) {
            $label = trim($label);
            $tagEntity = $this
                ->getDoctrine()
                ->getRepository('WallabagCoreBundle:Tag')
                ->findOneByLabel($label);

            if (is_null($tagEntity)) {
                $tagEntity = new Tag($this->getUser());
                $tagEntity->setLabel($label);
            }

            // only add the tag on the entry if the relation doesn't exist
            if (!$entry->getTags()->contains($tagEntity)) {
                $entry->addTag($tagEntity);
            }
        }
    }

    /**
     * Retrieve salt for a giver user.
     *
     * @ApiDoc(
     *       parameters={
     *          {"name"="username", "dataType"="string", "required"=true, "description"="username"}
     *       }
     * )
     *
     * @return array
     */
    public function getSaltAction($username)
    {
        $user = $this
            ->getDoctrine()
            ->getRepository('WallabagCoreBundle:User')
            ->findOneByUsername($username);

        if (is_null($user)) {
            throw $this->createNotFoundException();
        }

        return array($user->getSalt() ?: null);
    }

    /**
     * Retrieve all entries. It could be filtered by many options.
     *
     * @ApiDoc(
     *       parameters={
     *          {"name"="archive", "dataType"="boolean", "required"=false, "format"="true or false, all entries by default", "description"="filter by archived status."},
     *          {"name"="star", "dataType"="boolean", "required"=false, "format"="true or false, all entries by default", "description"="filter by starred status."},
     *          {"name"="sort", "dataType"="string", "required"=false, "format"="'created' or 'updated', default 'created'", "description"="sort entries by date."},
     *          {"name"="order", "dataType"="string", "required"=false, "format"="'asc' or 'desc', default 'desc'", "description"="order of sort."},
     *          {"name"="page", "dataType"="integer", "required"=false, "format"="default '1'", "description"="what page you want."},
     *          {"name"="perPage", "dataType"="integer", "required"=false, "format"="default'30'", "description"="results per page."},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="api%2Crest", "description"="a list of tags url encoded. Will returns entries that matches ALL tags."},
     *       }
     * )
     *
     * @return Entry
     */
    public function getEntriesAction(Request $request)
    {
        $isArchived = $request->query->get('archive');
        $isStarred = $request->query->get('star');
        $sort = $request->query->get('sort', 'created');
        $order = $request->query->get('order', 'desc');
        $page = (int) $request->query->get('page', 1);
        $perPage = (int) $request->query->get('perPage', 30);
        $tags = $request->query->get('tags', []);

        $pager = $this
            ->getDoctrine()
            ->getRepository('WallabagCoreBundle:Entry')
            ->findEntries($this->getUser()->getId(), $isArchived, $isStarred, $sort, $order);

        $pager->setCurrentPage($page);
        $pager->setMaxPerPage($perPage);

        $pagerfantaFactory = new PagerfantaFactory('page', 'perPage');
        $paginatedCollection = $pagerfantaFactory->createRepresentation(
            $pager,
            new Route('api_get_entries', [], $absolute = true)
        );

        $json = $this->get('serializer')->serialize($paginatedCollection, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve a single entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Entry
     */
    public function getEntryAction(Entry $entry)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Create an entry.
     *
     * @ApiDoc(
     *       parameters={
     *          {"name"="url", "dataType"="string", "required"=true, "format"="http://www.test.com/article.html", "description"="Url for the entry."},
     *          {"name"="title", "dataType"="string", "required"=false, "description"="Optional, we'll get the title from the page."},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *       }
     * )
     *
     * @return Entry
     */
    public function postEntriesAction(Request $request)
    {
        $url = $request->request->get('url');

        $content = $this->get('wallabag_core.graby')->fetchContent($url);

        $entry = new Entry($this->getUser());
        $entry->setUrl($url);
        $entry->setTitle($request->request->get('title') ?: $content['title']);
        $entry->setContent($content['html']);
        $entry->setMimetype($content['content_type']);
        if (isset($content['open_graph']['og_image'])) {
            $entry->setPreviewPicture($content['open_graph']['og_image']);
        }

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->assignTagsToEntry($entry, $tags);
        }

        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Change several properties of an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      },
     *      parameters={
     *          {"name"="title", "dataType"="string", "required"=false},
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *          {"name"="archive", "dataType"="boolean", "required"=false, "format"="true or false", "description"="archived the entry."},
     *          {"name"="star", "dataType"="boolean", "required"=false, "format"="true or false", "description"="starred the entry."},
     *      }
     * )
     *
     * @return Entry
     */
    public function patchEntriesAction(Entry $entry, Request $request)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $title = $request->request->get('title');
        $isArchived = $request->request->get('is_archived');
        $isStarred = $request->request->get('is_starred');

        if (!is_null($title)) {
            $entry->setTitle($title);
        }

        if (!is_null($isArchived)) {
            $entry->setArchived($isArchived);
        }

        if (!is_null($isStarred)) {
            $entry->setStarred($isStarred);
        }

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->assignTagsToEntry($entry, $tags);
        }

        $em = $this->getDoctrine()->getManager();
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Delete **permanently** an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     *
     * @return Entry
     */
    public function deleteEntriesAction(Entry $entry)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $em = $this->getDoctrine()->getManager();
        $em->remove($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve all tags for an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     */
    public function getEntriesTagsAction(Entry $entry)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $json = $this->get('serializer')->serialize($entry->getTags(), 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Add one or more tags to an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      },
     *      parameters={
     *          {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
     *       }
     * )
     */
    public function postEntriesTagsAction(Request $request, Entry $entry)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $tags = $request->request->get('tags', '');
        if (!empty($tags)) {
            $this->assignTagsToEntry($entry, $tags);
        }

        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Permanently remove one tag for an entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag ID"},
     *          {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
     *      }
     * )
     */
    public function deleteEntriesTagsAction(Entry $entry, Tag $tag)
    {
        $this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());

        $entry->removeTag($tag);
        $em = $this->getDoctrine()->getManager();
        $em->persist($entry);
        $em->flush();

        $json = $this->get('serializer')->serialize($entry, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Retrieve all tags.
     *
     * @ApiDoc()
     */
    public function getTagsAction()
    {
        $json = $this->get('serializer')->serialize($this->getUser()->getTags(), 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Permanently remove one tag from **every** entry.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag"}
     *      }
     * )
     */
    public function deleteTagAction(Tag $tag)
    {
        $this->validateUserAccess($tag->getUser()->getId(), $this->getUser()->getId());

        $em = $this->getDoctrine()->getManager();
        $em->remove($tag);
        $em->flush();

        $json = $this->get('serializer')->serialize($tag, 'json');

        return $this->renderJsonResponse($json);
    }

    /**
     * Validate that the first id is equal to the second one.
     * If not, throw exception. It means a user try to access information from an other user.
     *
     * @param int $requestUserId User id from the requested source
     * @param int $currentUserId User id from the retrieved source
     */
    private function validateUserAccess($requestUserId, $currentUserId)
    {
        if ($requestUserId != $currentUserId) {
            throw $this->createAccessDeniedException('Access forbidden. Entry user id: '.$requestUserId.', logged user id: '.$currentUserId);
        }
    }

    /**
     * Send a JSON Response.
     * We don't use the Symfony JsonRespone, because it takes an array as parameter instead of a JSON string.
     *
     * @param string $json
     *
     * @return Response
     */
    private function renderJsonResponse($json)
    {
        return new Response($json, 200, array('application/json'));
    }
}
Commit	Line	Data
f8bf8952 NL	1	<?php
f8bf8952 NL	2
769e19dc	3	namespace Wallabag\ApiBundle\Controller;
f8bf8952 NL	4
f8bf8952 NL	5	use Nelmio\ApiDocBundle\Annotation\ApiDoc;
f8bf8952	6	use Symfony\Bundle\FrameworkBundle\Controller\Controller;
27f15aa4	7	use Symfony\Component\HttpFoundation\Request;
b0cce9e6	8	use Symfony\Component\HttpFoundation\Response;
be463487	9	use Wallabag\CoreBundle\Entity\Entry;
653e8be4	10	use Wallabag\CoreBundle\Entity\Tag;
843dbe51	11	use Wallabag\CoreBundle\Service\Extractor;
6e22bd73 WD	12	use Hateoas\Configuration\Route;
6e22bd73 WD	13	use Hateoas\Representation\Factory\PagerfantaFactory;
f8bf8952	14
a8c90c5c	15	class WallabagRestController extends Controller
f8bf8952	16	{
092ca707 NL	17	/**
	18	* @param Entry $entry
	19	* @param string $tags
	20	*/
	21	private function assignTagsToEntry(Entry $entry, $tags)
	22	{
	23	foreach (explode(',', $tags) as $label) {
	24	$label = trim($label);
	25	$tagEntity = $this
	26	->getDoctrine()
	27	->getRepository('WallabagCoreBundle:Tag')
	28	->findOneByLabel($label);
	29
	30	if (is_null($tagEntity)) {
	31	$tagEntity = new Tag($this->getUser());
	32	$tagEntity->setLabel($label);
	33	}
	34
	35	// only add the tag on the entry if the relation doesn't exist
	36	if (!$entry->getTags()->contains($tagEntity)) {
	37	$entry->addTag($tagEntity);
	38	}
	39	}
	40	}
	41
c5e8ba25 NL	42	/**
	43	* Retrieve salt for a giver user.
	44	*
efad7e53 NL	45	* @ApiDoc(
	46	* parameters={
	47	* {"name"="username", "dataType"="string", "required"=true, "description"="username"}
	48	* }
	49	* )
4346a860	50	*
874e3e10	51	* @return array
c5e8ba25	52	*/
6ee416a0	53	public function getSaltAction($username)
c5e8ba25 NL	54	{
	55	$user = $this
	56	->getDoctrine()
	57	->getRepository('WallabagCoreBundle:User')
6ee416a0	58	->findOneByUsername($username);
c5e8ba25 NL	59
	60	if (is_null($user)) {
	61	throw $this->createNotFoundException();
	62	}
	63
f170f315	64	return array($user->getSalt() ?: null);
c5e8ba25	65	}
769e19dc	66
f8bf8952	67	/**
a8c90c5c	68	* Retrieve all entries. It could be filtered by many options.
f8bf8952 NL	69	*
f8bf8952 NL	70	* @ApiDoc(
a8c90c5c	71	* parameters={
2c093b03 NL	72	* {"name"="archive", "dataType"="boolean", "required"=false, "format"="true or false, all entries by default", "description"="filter by archived status."},
2c093b03 NL	73	* {"name"="star", "dataType"="boolean", "required"=false, "format"="true or false, all entries by default", "description"="filter by starred status."},
a8c90c5c NL	74	* {"name"="sort", "dataType"="string", "required"=false, "format"="'created' or 'updated', default 'created'", "description"="sort entries by date."},
	75	* {"name"="order", "dataType"="string", "required"=false, "format"="'asc' or 'desc', default 'desc'", "description"="order of sort."},
	76	* {"name"="page", "dataType"="integer", "required"=false, "format"="default '1'", "description"="what page you want."},
	77	* {"name"="perPage", "dataType"="integer", "required"=false, "format"="default'30'", "description"="results per page."},
	78	* {"name"="tags", "dataType"="string", "required"=false, "format"="api%2Crest", "description"="a list of tags url encoded. Will returns entries that matches ALL tags."},
	79	* }
f8bf8952	80	* )
4346a860	81	*
be463487	82	* @return Entry
f8bf8952	83	*/
27f15aa4	84	public function getEntriesAction(Request $request)
f8bf8952	85	{
6e334aba	86	$isArchived = $request->query->get('archive');
8ce32af6 JB	87	$isStarred = $request->query->get('star');
	88	$sort = $request->query->get('sort', 'created');
	89	$order = $request->query->get('order', 'desc');
	90	$page = (int) $request->query->get('page', 1);
	91	$perPage = (int) $request->query->get('perPage', 30);
	92	$tags = $request->query->get('tags', []);
a8c90c5c	93
6e22bd73	94	$pager = $this
a8c90c5c	95	->getDoctrine()
be463487	96	->getRepository('WallabagCoreBundle:Entry')
1d147791	97	->findEntries($this->getUser()->getId(), $isArchived, $isStarred, $sort, $order);
a8c90c5c	98
6e22bd73 WD	99	$pager->setCurrentPage($page);
	100	$pager->setMaxPerPage($perPage);
	101
8ce32af6	102	$pagerfantaFactory = new PagerfantaFactory('page', 'perPage');
6e22bd73 WD	103	$paginatedCollection = $pagerfantaFactory->createRepresentation(
	104	$pager,
	105	new Route('api_get_entries', [], $absolute = true)
	106	);
	107
	108	$json = $this->get('serializer')->serialize($paginatedCollection, 'json');
0f006880	109
769e19dc	110	return $this->renderJsonResponse($json);
f8bf8952 NL	111	}
	112
	113	/**
4346a860	114	* Retrieve a single entry.
f8bf8952 NL	115	*
	116	* @ApiDoc(
	117	* requirements={
	118	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	119	* }
	120	* )
4346a860	121	*
be463487	122	* @return Entry
f8bf8952	123	*/
be463487	124	public function getEntryAction(Entry $entry)
f8bf8952	125	{
769e19dc	126	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
092ca707	127
aa4d6562	128	$json = $this->get('serializer')->serialize($entry, 'json');
0f006880	129
769e19dc	130	return $this->renderJsonResponse($json);
f8bf8952 NL	131	}
	132
	133	/**
4346a860	134	* Create an entry.
f8bf8952 NL	135	*
f8bf8952 NL	136	* @ApiDoc(
a8c90c5c NL	137	* parameters={
	138	* {"name"="url", "dataType"="string", "required"=true, "format"="http://www.test.com/article.html", "description"="Url for the entry."},
	139	* {"name"="title", "dataType"="string", "required"=false, "description"="Optional, we'll get the title from the page."},
	140	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
	141	* }
f8bf8952	142	* )
4346a860	143	*
be463487	144	* @return Entry
f8bf8952	145	*/
843dbe51	146	public function postEntriesAction(Request $request)
f8bf8952	147	{
c3235553 NL	148	$url = $request->request->get('url');
c3235553 NL	149
fad31615 JB	150	$content = $this->get('wallabag_core.graby')->fetchContent($url);
fad31615 JB	151
d4c029f4	152	$entry = new Entry($this->getUser());
c3235553	153	$entry->setUrl($url);
fad31615 JB	154	$entry->setTitle($request->request->get('title') ?: $content['title']);
	155	$entry->setContent($content['html']);
	156	$entry->setMimetype($content['content_type']);
	157	if (isset($content['open_graph']['og_image'])) {
	158	$entry->setPreviewPicture($content['open_graph']['og_image']);
	159	}
092ca707	160
0ca374e6 NL	161	$tags = $request->request->get('tags', '');
	162	if (!empty($tags)) {
	163	$this->assignTagsToEntry($entry, $tags);
	164	}
092ca707	165
843dbe51 NL	166	$em = $this->getDoctrine()->getManager();
	167	$em->persist($entry);
	168	$em->flush();
	169
aa4d6562 NL	170	$json = $this->get('serializer')->serialize($entry, 'json');
aa4d6562 NL	171
769e19dc	172	return $this->renderJsonResponse($json);
f8bf8952 NL	173	}
	174
	175	/**
4346a860	176	* Change several properties of an entry.
f8bf8952 NL	177	*
	178	* @ApiDoc(
	179	* requirements={
	180	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
a8c90c5c NL	181	* },
	182	* parameters={
	183	* {"name"="title", "dataType"="string", "required"=false},
	184	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
2c093b03 NL	185	* {"name"="archive", "dataType"="boolean", "required"=false, "format"="true or false", "description"="archived the entry."},
2c093b03 NL	186	* {"name"="star", "dataType"="boolean", "required"=false, "format"="true or false", "description"="starred the entry."},
1d147791	187	* }
f8bf8952	188	* )
4346a860	189	*
be463487	190	* @return Entry
f8bf8952	191	*/
be463487	192	public function patchEntriesAction(Entry $entry, Request $request)
f8bf8952	193	{
769e19dc	194	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
092ca707	195
8ce32af6	196	$title = $request->request->get('title');
9fb6ac83	197	$isArchived = $request->request->get('is_archived');
8ce32af6	198	$isStarred = $request->request->get('is_starred');
2c093b03 NL	199
	200	if (!is_null($title)) {
	201	$entry->setTitle($title);
	202	}
	203
	204	if (!is_null($isArchived)) {
905ae369	205	$entry->setArchived($isArchived);
2c093b03 NL	206	}
2c093b03 NL	207
2c093b03	208	if (!is_null($isStarred)) {
905ae369	209	$entry->setStarred($isStarred);
2c093b03 NL	210	}
2c093b03 NL	211
0ca374e6 NL	212	$tags = $request->request->get('tags', '');
	213	if (!empty($tags)) {
	214	$this->assignTagsToEntry($entry, $tags);
	215	}
092ca707	216
2c093b03	217	$em = $this->getDoctrine()->getManager();
2c093b03 NL	218	$em->flush();
2c093b03 NL	219
0ca374e6 NL	220	$json = $this->get('serializer')->serialize($entry, 'json');
0ca374e6 NL	221
769e19dc	222	return $this->renderJsonResponse($json);
f8bf8952 NL	223	}
	224
	225	/**
4346a860	226	* Delete permanently an entry.
f8bf8952 NL	227	*
f8bf8952 NL	228	* @ApiDoc(
a8c90c5c NL	229	* requirements={
	230	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	231	* }
f8bf8952	232	* )
4346a860	233	*
be463487	234	* @return Entry
f8bf8952	235	*/
be463487	236	public function deleteEntriesAction(Entry $entry)
f8bf8952	237	{
769e19dc	238	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
092ca707	239
42a90646	240	$em = $this->getDoctrine()->getManager();
1d147791	241	$em->remove($entry);
42a90646 NL	242	$em->flush();
42a90646 NL	243
1d147791 NL	244	$json = $this->get('serializer')->serialize($entry, 'json');
1d147791 NL	245
769e19dc	246	return $this->renderJsonResponse($json);
f8bf8952 NL	247	}
	248
	249	/**
4346a860	250	* Retrieve all tags for an entry.
f8bf8952 NL	251	*
	252	* @ApiDoc(
	253	* requirements={
	254	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	255	* }
	256	* )
	257	*/
be463487	258	public function getEntriesTagsAction(Entry $entry)
7df80cb3	259	{
769e19dc	260	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
092ca707	261
1bd12b62	262	$json = $this->get('serializer')->serialize($entry->getTags(), 'json');
0a018fe0	263
769e19dc	264	return $this->renderJsonResponse($json);
f8bf8952 NL	265	}
	266
	267	/**
4346a860	268	* Add one or more tags to an entry.
f8bf8952 NL	269	*
	270	* @ApiDoc(
	271	* requirements={
	272	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
a8c90c5c NL	273	* },
	274	* parameters={
	275	* {"name"="tags", "dataType"="string", "required"=false, "format"="tag1,tag2,tag3", "description"="a comma-separated list of tags."},
	276	* }
f8bf8952 NL	277	* )
f8bf8952 NL	278	*/
a36737f4	279	public function postEntriesTagsAction(Request $request, Entry $entry)
7df80cb3	280	{
769e19dc	281	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
a36737f4	282
0ca374e6 NL	283	$tags = $request->request->get('tags', '');
	284	if (!empty($tags)) {
	285	$this->assignTagsToEntry($entry, $tags);
	286	}
092ca707	287
a36737f4 NL	288	$em = $this->getDoctrine()->getManager();
	289	$em->persist($entry);
	290	$em->flush();
	291
	292	$json = $this->get('serializer')->serialize($entry, 'json');
	293
769e19dc	294	return $this->renderJsonResponse($json);
f8bf8952 NL	295	}
	296
	297	/**
4346a860	298	* Permanently remove one tag for an entry.
f8bf8952 NL	299	*
	300	* @ApiDoc(
	301	* requirements={
769e19dc	302	* {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag ID"},
f8bf8952 NL	303	* {"name"="entry", "dataType"="integer", "requirement"="\w+", "description"="The entry ID"}
	304	* }
	305	* )
	306	*/
653e8be4	307	public function deleteEntriesTagsAction(Entry $entry, Tag $tag)
f8bf8952	308	{
769e19dc	309	$this->validateUserAccess($entry->getUser()->getId(), $this->getUser()->getId());
092ca707 NL	310
	311	$entry->removeTag($tag);
	312	$em = $this->getDoctrine()->getManager();
	313	$em->persist($entry);
	314	$em->flush();
	315
	316	$json = $this->get('serializer')->serialize($entry, 'json');
	317
769e19dc	318	return $this->renderJsonResponse($json);
f8bf8952 NL	319	}
	320
	321	/**
4346a860	322	* Retrieve all tags.
f8bf8952	323	*
092ca707	324	* @ApiDoc()
f8bf8952	325	*/
092ca707	326	public function getTagsAction()
7df80cb3	327	{
092ca707 NL	328	$json = $this->get('serializer')->serialize($this->getUser()->getTags(), 'json');
092ca707 NL	329
769e19dc	330	return $this->renderJsonResponse($json);
f8bf8952 NL	331	}
f8bf8952 NL	332
f8bf8952	333	/**
4346a860	334	* Permanently remove one tag from every entry.
f8bf8952 NL	335	*
	336	* @ApiDoc(
	337	* requirements={
769e19dc	338	* {"name"="tag", "dataType"="integer", "requirement"="\w+", "description"="The tag"}
f8bf8952 NL	339	* }
	340	* )
	341	*/
653e8be4	342	public function deleteTagAction(Tag $tag)
f8bf8952	343	{
769e19dc	344	$this->validateUserAccess($tag->getUser()->getId(), $this->getUser()->getId());
092ca707 NL	345
	346	$em = $this->getDoctrine()->getManager();
	347	$em->remove($tag);
	348	$em->flush();
	349
	350	$json = $this->get('serializer')->serialize($tag, 'json');
	351
769e19dc J	352	return $this->renderJsonResponse($json);
	353	}
	354
	355	/**
	356	* Validate that the first id is equal to the second one.
4346a860	357	* If not, throw exception. It means a user try to access information from an other user.
769e19dc	358	*
4346a860 JB	359	* @param int $requestUserId User id from the requested source
4346a860 JB	360	* @param int $currentUserId User id from the retrieved source
769e19dc J	361	*/
	362	private function validateUserAccess($requestUserId, $currentUserId)
	363	{
	364	if ($requestUserId != $currentUserId) {
	365	throw $this->createAccessDeniedException('Access forbidden. Entry user id: '.$requestUserId.', logged user id: '.$currentUserId);
	366	}
	367	}
	368
	369	/**
	370	* Send a JSON Response.
4346a860	371	* We don't use the Symfony JsonRespone, because it takes an array as parameter instead of a JSON string.
769e19dc J	372	*
	373	* @param string $json
	374	*
	375	* @return Response
	376	*/
	377	private function renderJsonResponse($json)
	378	{
db2b4bf6	379	return new Response($json, 200, array('application/json'));
f8bf8952	380	}
7df80cb3	381	}