[github/wallabag/wallabag.git] / src / Wallabag / ApiBundle / Controller / UserRestController.php

<?php

namespace Wallabag\ApiBundle\Controller;

use FOS\UserBundle\Event\UserEvent;
use FOS\UserBundle\FOSUserEvents;
use JMS\Serializer\SerializationContext;
use Nelmio\ApiDocBundle\Annotation\ApiDoc;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\JsonResponse;
use Wallabag\UserBundle\Entity\User;
use Wallabag\ApiBundle\Entity\Client;

class UserRestController extends WallabagRestController
{
    /**
     * Retrieve current logged in user informations.
     *
     * @ApiDoc()
     *
     * @return JsonResponse
     */
    public function getUserAction()
    {
        $this->validateAuthentication();

        return $this->sendUser($this->getUser());
    }

    /**
     * Register an user.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},
     *          {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},
     *          {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}
     *      }
     * )
     *
     * @todo Make this method (or the whole API) accessible only through https
     *
     * @return JsonResponse
     */
    public function putUserAction(Request $request)
    {
        if (!$this->getParameter('fosuser_registration') || !$this->get('craue_config')->get('api_user_registration')) {
            $json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');

            return (new JsonResponse())
                ->setJson($json)
                ->setStatusCode(JsonResponse::HTTP_FORBIDDEN);
        }

        $userManager = $this->get('fos_user.user_manager');
        $user = $userManager->createUser();
        // user will be disabled BY DEFAULT to avoid spamming account to be enabled
        $user->setEnabled(false);

        $form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
            'csrf_protection' => false,
        ]);

        // simulate form submission
        $form->submit([
            'username' => $request->request->get('username'),
            'plainPassword' => [
                'first' => $request->request->get('password'),
                'second' => $request->request->get('password'),
            ],
            'email' => $request->request->get('email'),
        ]);

        if ($form->isSubmitted() && false === $form->isValid()) {
            $view = $this->view($form, 400);
            $view->setFormat('json');

            // handle errors in a more beautiful way than the default view
            $data = json_decode($this->handleView($view)->getContent(), true)['children'];
            $errors = [];

            if (isset($data['username']['errors'])) {
                $errors['username'] = $this->translateErrors($data['username']['errors']);
            }

            if (isset($data['email']['errors'])) {
                $errors['email'] = $this->translateErrors($data['email']['errors']);
            }

            if (isset($data['plainPassword']['children']['first']['errors'])) {
                $errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);
            }

            $json = $this->get('serializer')->serialize(['error' => $errors], 'json');

            return (new JsonResponse())
                ->setJson($json)
                ->setStatusCode(JsonResponse::HTTP_BAD_REQUEST);
        }

        // create a default client
        $client = new Client($user);
        $client->setName('Default client');

        $this->getDoctrine()->getManager()->persist($client);

        $user->addClient($client);

        $userManager->updateUser($user);

        // dispatch a created event so the associated config will be created
        $event = new UserEvent($user, $request);
        $this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);

        return $this->sendUser($user, 'user_api_with_client', JsonResponse::HTTP_CREATED);
    }

    /**
     * Send user response.
     *
     * @param User   $user
     * @param string $group  Used to define with serialized group might be used
     * @param int    $status HTTP Status code to send
     *
     * @return JsonResponse
     */
    private function sendUser(User $user, $group = 'user_api', $status = JsonResponse::HTTP_OK)
    {
        $json = $this->get('serializer')->serialize(
            $user,
            'json',
            SerializationContext::create()->setGroups([$group])
        );

        return (new JsonResponse())
            ->setJson($json)
            ->setStatusCode($status);
    }

    /**
     * Translate errors message.
     *
     * @param array $errors
     *
     * @return array
     */
    private function translateErrors($errors)
    {
        $translatedErrors = [];
        foreach ($errors as $error) {
            $translatedErrors[] = $this->get('translator')->trans($error);
        }

        return $translatedErrors;
    }
}
Commit	Line	Data
22510459 TC	1	<?php
	2
	3	namespace Wallabag\ApiBundle\Controller;
	4
	5	use FOS\UserBundle\Event\UserEvent;
	6	use FOS\UserBundle\FOSUserEvents;
	7	use JMS\Serializer\SerializationContext;
	8	use Nelmio\ApiDocBundle\Annotation\ApiDoc;
5709ecb3	9	use Symfony\Component\HttpFoundation\Request;
22510459	10	use Symfony\Component\HttpFoundation\JsonResponse;
5709ecb3	11	use Wallabag\UserBundle\Entity\User;
0c00e525	12	use Wallabag\ApiBundle\Entity\Client;
22510459 TC	13
	14	class UserRestController extends WallabagRestController
	15	{
	16	/**
5709ecb3	17	* Retrieve current logged in user informations.
22510459 TC	18	*
	19	* @ApiDoc()
	20	*
	21	* @return JsonResponse
	22	*/
	23	public function getUserAction()
	24	{
	25	$this->validateAuthentication();
	26
5709ecb3	27	return $this->sendUser($this->getUser());
22510459 TC	28	}
	29
	30	/**
5709ecb3	31	* Register an user.
22510459 TC	32	*
	33	* @ApiDoc(
	34	* requirements={
	35	* {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},
5709ecb3	36	* {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},
22510459 TC	37	* {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}
	38	* }
	39	* )
5709ecb3 JB	40	*
	41	* @todo Make this method (or the whole API) accessible only through https
	42	*
22510459 TC	43	* @return JsonResponse
22510459 TC	44	*/
5709ecb3	45	public function putUserAction(Request $request)
22510459	46	{
426bb453	47	if (!$this->getParameter('fosuser_registration') \|\| !$this->get('craue_config')->get('api_user_registration')) {
22510459	48	$json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');
5709ecb3	49
a1e61874 JB	50	return (new JsonResponse())
	51	->setJson($json)
	52	->setStatusCode(JsonResponse::HTTP_FORBIDDEN);
22510459 TC	53	}
22510459 TC	54
5709ecb3 JB	55	$userManager = $this->get('fos_user.user_manager');
5709ecb3 JB	56	$user = $userManager->createUser();
1b9cd917	57	// user will be disabled BY DEFAULT to avoid spamming account to be enabled
426bb453	58	$user->setEnabled(false);
22510459	59
5709ecb3 JB	60	$form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
	61	'csrf_protection' => false,
	62	]);
22510459	63
5709ecb3 JB	64	// simulate form submission
	65	$form->submit([
	66	'username' => $request->request->get('username'),
	67	'plainPassword' => [
	68	'first' => $request->request->get('password'),
	69	'second' => $request->request->get('password'),
	70	],
	71	'email' => $request->request->get('email'),
	72	]);
22510459	73
5709ecb3 JB	74	if ($form->isSubmitted() && false === $form->isValid()) {
	75	$view = $this->view($form, 400);
	76	$view->setFormat('json');
22510459	77
5709ecb3 JB	78	// handle errors in a more beautiful way than the default view
	79	$data = json_decode($this->handleView($view)->getContent(), true)['children'];
	80	$errors = [];
22510459	81
5709ecb3 JB	82	if (isset($data['username']['errors'])) {
	83	$errors['username'] = $this->translateErrors($data['username']['errors']);
	84	}
22510459	85
5709ecb3 JB	86	if (isset($data['email']['errors'])) {
	87	$errors['email'] = $this->translateErrors($data['email']['errors']);
	88	}
22510459	89
5709ecb3 JB	90	if (isset($data['plainPassword']['children']['first']['errors'])) {
	91	$errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);
	92	}
22510459	93
5709ecb3	94	$json = $this->get('serializer')->serialize(['error' => $errors], 'json');
22510459	95
a1e61874 JB	96	return (new JsonResponse())
	97	->setJson($json)
	98	->setStatusCode(JsonResponse::HTTP_BAD_REQUEST);
5709ecb3	99	}
22510459	100
0c00e525 JB	101	// create a default client
	102	$client = new Client($user);
	103	$client->setName('Default client');
	104
	105	$this->getDoctrine()->getManager()->persist($client);
	106
	107	$user->addClient($client);
	108
5709ecb3	109	$userManager->updateUser($user);
22510459 TC	110
22510459 TC	111	// dispatch a created event so the associated config will be created
5709ecb3	112	$event = new UserEvent($user, $request);
22510459 TC	113	$this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);
22510459 TC	114
0c00e525	115	return $this->sendUser($user, 'user_api_with_client', JsonResponse::HTTP_CREATED);
5709ecb3	116	}
22510459	117
5709ecb3 JB	118	/**
	119	* Send user response.
	120	*
0c00e525 JB	121	* @param User $user
	122	* @param string $group Used to define with serialized group might be used
	123	* @param int $status HTTP Status code to send
5709ecb3 JB	124	*
	125	* @return JsonResponse
	126	*/
0c00e525	127	private function sendUser(User $user, $group = 'user_api', $status = JsonResponse::HTTP_OK)
5709ecb3 JB	128	{
	129	$json = $this->get('serializer')->serialize(
	130	$user,
	131	'json',
0c00e525	132	SerializationContext::create()->setGroups([$group])
5709ecb3	133	);
22510459	134
a1e61874 JB	135	return (new JsonResponse())
	136	->setJson($json)
	137	->setStatusCode($status);
22510459 TC	138	}
22510459 TC	139
5709ecb3 JB	140	/**
	141	* Translate errors message.
	142	*
	143	* @param array $errors
	144	*
	145	* @return array
	146	*/
	147	private function translateErrors($errors)
	148	{
	149	$translatedErrors = [];
	150	foreach ($errors as $error) {
	151	$translatedErrors[] = $this->get('translator')->trans($error);
	152	}
	153
	154	return $translatedErrors;
	155	}
22510459	156	}