4 files changed, 171 insertions, 7 deletions
diff --git a/src/Wallabag/ApiBundle/Controller/UserRestController.php b/src/Wallabag/ApiBundle/Controller/UserRestController.php
new file mode 100644
index 00000000..a1b78e3f
--- /dev/null
+++ b/src/Wallabag/ApiBundle/Controller/UserRestController.php
@@ -0,0 +1,139 @@
+<?php
+namespace Wallabag\ApiBundle\Controller;
+use FOS\UserBundle\Event\UserEvent;
+use FOS\UserBundle\FOSUserEvents;
+use JMS\Serializer\SerializationContext;
+use Nelmio\ApiDocBundle\Annotation\ApiDoc;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Wallabag\UserBundle\Entity\User;
+class UserRestController extends WallabagRestController
+{
+    /**
+     * Retrieve current logged in user informations.
+     *
+     * @ApiDoc()
+     *
+     * @return JsonResponse
+     */
+    public function getUserAction()
+    {
+        $this->validateAuthentication();
+        return $this->sendUser($this->getUser());
+    }
+    /**
+     * Register an user.
+     *
+     * @ApiDoc(
+     *      requirements={
+     *          {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},
+     *          {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},
+     *          {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}
+     *      }
+     * )
+     *
+     * @todo Make this method (or the whole API) accessible only through https
+     *
+     * @return JsonResponse
+     */
+    public function putUserAction(Request $request)
+    {
+        if (!$this->container->getParameter('fosuser_registration')) {
+            $json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');
+            return (new JsonResponse())->setJson($json)->setStatusCode(403);
+        }
+        $userManager = $this->get('fos_user.user_manager');
+        $user = $userManager->createUser();
+        // enable created user by default
+        $user->setEnabled(true);
+        $form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
+            'csrf_protection' => false,
+        ]);
+        // simulate form submission
+        $form->submit([
+            'username' => $request->request->get('username'),
+            'plainPassword' => [
+                'first' => $request->request->get('password'),
+                'second' => $request->request->get('password'),
+            ],
+            'email' => $request->request->get('email'),
+        ]);
+        if ($form->isSubmitted() && false === $form->isValid()) {
+            $view = $this->view($form, 400);
+            $view->setFormat('json');
+            // handle errors in a more beautiful way than the default view
+            $data = json_decode($this->handleView($view)->getContent(), true)['children'];
+            $errors = [];
+            if (isset($data['username']['errors'])) {
+                $errors['username'] = $this->translateErrors($data['username']['errors']);
+            }
+            if (isset($data['email']['errors'])) {
+                $errors['email'] = $this->translateErrors($data['email']['errors']);
+            }
+            if (isset($data['plainPassword']['children']['first']['errors'])) {
+                $errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);
+            }
+            $json = $this->get('serializer')->serialize(['error' => $errors], 'json');
+            return (new JsonResponse())->setJson($json)->setStatusCode(400);
+        }
+        $userManager->updateUser($user);
+        // dispatch a created event so the associated config will be created
+        $event = new UserEvent($user, $request);
+        $this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);
+        return $this->sendUser($user);
+    }
+    /**
+     * Send user response.
+     *
+     * @param User $user
+     *
+     * @return JsonResponse
+     */
+    private function sendUser(User $user)
+    {
+        $json = $this->get('serializer')->serialize(
+            $user,
+            'json',
+            SerializationContext::create()->setGroups(['user_api'])
+        );
+        return (new JsonResponse())->setJson($json);
+    }
+    /**
+     * Translate errors message.
+     *
+     * @param array $errors
+     *
+     * @return array
+     */
+    private function translateErrors($errors)
+    {
+        $translatedErrors = [];
+        foreach ($errors as $error) {
+            $translatedErrors[] = $this->get('translator')->trans($error);
+        }
+        return $translatedErrors;
+    }
+}
diff --git a/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml b/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml
index 57d37f4b..c0283e71 100644
--- a/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml
+++ b/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml
@@ -17,3 +17,8 @@ misc:
  type: rest
  resource: "WallabagApiBundle:WallabagRest"
  name_prefix:  api_
+user:
+  type: rest
+  resource: "WallabagApiBundle:UserRest"
+  name_prefix:  api_
diff --git a/src/Wallabag/UserBundle/Controller/ManageController.php b/src/Wallabag/UserBundle/Controller/ManageController.php
index 1c5c86d4..084f2c67 100644
--- a/src/Wallabag/UserBundle/Controller/ManageController.php
+++ b/src/Wallabag/UserBundle/Controller/ManageController.php
@@ -33,9 +33,7 @@ class ManageController extends Controller
        // enable created user by default
        $user->setEnabled(true);
-        $form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
+        $form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user);
-            'validation_groups' => ['Profile'],
-        ]);
        $form->handleRequest($request);
        if ($form->isSubmitted() && $form->isValid()) {
diff --git a/src/Wallabag/UserBundle/Entity/User.php b/src/Wallabag/UserBundle/Entity/User.php
index 3a167de7..1ff3046a 100644
--- a/src/Wallabag/UserBundle/Entity/User.php
+++ b/src/Wallabag/UserBundle/Entity/User.php
@@ -4,11 +4,11 @@ namespace Wallabag\UserBundle\Entity;
 use Doctrine\Common\Collections\ArrayCollection;
 use Doctrine\ORM\Mapping as ORM;
+use JMS\Serializer\Annotation\Groups;
+use JMS\Serializer\Annotation\XmlRoot;
 use Scheb\TwoFactorBundle\Model\Email\TwoFactorInterface;
 use Scheb\TwoFactorBundle\Model\TrustedComputerInterface;
 use FOS\UserBundle\Model\User as BaseUser;
-use JMS\Serializer\Annotation\ExclusionPolicy;
-use JMS\Serializer\Annotation\Expose;
 use Symfony\Bridge\Doctrine\Validator\Constraints\UniqueEntity;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Wallabag\ApiBundle\Entity\Client;
@@ -18,23 +18,25 @@ use Wallabag\CoreBundle\Entity\Entry;
 /**
 * User.
 *
+ * @XmlRoot("user")
 * @ORM\Entity(repositoryClass="Wallabag\UserBundle\Repository\UserRepository")
 * @ORM\Table(name="`user`")
 * @ORM\HasLifecycleCallbacks()
- * @ExclusionPolicy("all")
 *
 * @UniqueEntity("email")
 * @UniqueEntity("username")
 */
 class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterface
 {
+    /** @Serializer\XmlAttribute */
    /**
     * @var int
     *
-     * @Expose
     * @ORM\Column(name="id", type="integer")
     * @ORM\Id
     * @ORM\GeneratedValue(strategy="AUTO")
+     *
+     * @Groups({"user_api"})
     */
    protected $id;
@@ -42,13 +44,31 @@ class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterf
     * @var string
     *
     * @ORM\Column(name="name", type="text", nullable=true)
+     *
+     * @Groups({"user_api"})
     */
    protected $name;
    /**
+     * @var string
+     *
+     * @Groups({"user_api"})
+     */
+    protected $username;
+    /**
+     * @var string
+     *
+     * @Groups({"user_api"})
+     */
+    protected $email;
+    /**
     * @var date
     *
     * @ORM\Column(name="created_at", type="datetime")
+     *
+     * @Groups({"user_api"})
     */
    protected $createdAt;
@@ -56,6 +76,8 @@ class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterf
     * @var date
     *
     * @ORM\Column(name="updated_at", type="datetime")
+     *
+     * @Groups({"user_api"})
     */
    protected $updatedAt;

diff --git a/src/Wallabag/ApiBundle/Controller/UserRestController.php b/src/Wallabag/ApiBundle/Controller/UserRestController.php new file mode 100644 index 00000000..a1b78e3f --- /dev/null +++ b/src/Wallabag/ApiBundle/Controller/UserRestController.php
@@ -0,0 +1,139 @@
		1	<?php
		2
		3	namespace Wallabag\ApiBundle\Controller;
		4
		5	use FOS\UserBundle\Event\UserEvent;
		6	use FOS\UserBundle\FOSUserEvents;
		7	use JMS\Serializer\SerializationContext;
		8	use Nelmio\ApiDocBundle\Annotation\ApiDoc;
		9	use Symfony\Component\HttpFoundation\Request;
		10	use Symfony\Component\HttpFoundation\JsonResponse;
		11	use Wallabag\UserBundle\Entity\User;
		12
		13	class UserRestController extends WallabagRestController
		14	{
		15	/**
		16	* Retrieve current logged in user informations.
		17	*
		18	* @ApiDoc()
		19	*
		20	* @return JsonResponse
		21	*/
		22	public function getUserAction()
		23	{
		24	$this->validateAuthentication();
		25
		26	return $this->sendUser($this->getUser());
		27	}
		28
		29	/**
		30	* Register an user.
		31	*
		32	* @ApiDoc(
		33	* requirements={
		34	* {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},
		35	* {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},
		36	* {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}
		37	* }
		38	* )
		39	*
		40	* @todo Make this method (or the whole API) accessible only through https
		41	*
		42	* @return JsonResponse
		43	*/
		44	public function putUserAction(Request $request)
		45	{
		46	if (!$this->container->getParameter('fosuser_registration')) {
		47	$json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');
		48
		49	return (new JsonResponse())->setJson($json)->setStatusCode(403);
		50	}
		51
		52	$userManager = $this->get('fos_user.user_manager');
		53	$user = $userManager->createUser();
		54	// enable created user by default
		55	$user->setEnabled(true);
		56
		57	$form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
		58	'csrf_protection' => false,
		59	]);
		60
		61	// simulate form submission
		62	$form->submit([
		63	'username' => $request->request->get('username'),
		64	'plainPassword' => [
		65	'first' => $request->request->get('password'),
		66	'second' => $request->request->get('password'),
		67	],
		68	'email' => $request->request->get('email'),
		69	]);
		70
		71	if ($form->isSubmitted() && false === $form->isValid()) {
		72	$view = $this->view($form, 400);
		73	$view->setFormat('json');
		74
		75	// handle errors in a more beautiful way than the default view
		76	$data = json_decode($this->handleView($view)->getContent(), true)['children'];
		77	$errors = [];
		78
		79	if (isset($data['username']['errors'])) {
		80	$errors['username'] = $this->translateErrors($data['username']['errors']);
		81	}
		82
		83	if (isset($data['email']['errors'])) {
		84	$errors['email'] = $this->translateErrors($data['email']['errors']);
		85	}
		86
		87	if (isset($data['plainPassword']['children']['first']['errors'])) {
		88	$errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);
		89	}
		90
		91	$json = $this->get('serializer')->serialize(['error' => $errors], 'json');
		92
		93	return (new JsonResponse())->setJson($json)->setStatusCode(400);
		94	}
		95
		96	$userManager->updateUser($user);
		97
		98	// dispatch a created event so the associated config will be created
		99	$event = new UserEvent($user, $request);
		100	$this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);
		101
		102	return $this->sendUser($user);
		103	}
		104
		105	/**
		106	* Send user response.
		107	*
		108	* @param User $user
		109	*
		110	* @return JsonResponse
		111	*/
		112	private function sendUser(User $user)
		113	{
		114	$json = $this->get('serializer')->serialize(
		115	$user,
		116	'json',
		117	SerializationContext::create()->setGroups(['user_api'])
		118	);
		119
		120	return (new JsonResponse())->setJson($json);
		121	}
		122
		123	/**
		124	* Translate errors message.
		125	*
		126	* @param array $errors
		127	*
		128	* @return array
		129	*/
		130	private function translateErrors($errors)
		131	{
		132	$translatedErrors = [];
		133	foreach ($errors as $error) {
		134	$translatedErrors[] = $this->get('translator')->trans($error);
		135	}
		136
		137	return $translatedErrors;
		138	}
		139	}


diff --git a/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml b/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml index 57d37f4b..c0283e71 100644 --- a/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml +++ b/src/Wallabag/ApiBundle/Resources/config/routing_rest.yml
@@ -17,3 +17,8 @@ misc:
17	type: rest	17	type: rest
18	resource: "WallabagApiBundle:WallabagRest"	18	resource: "WallabagApiBundle:WallabagRest"
19	name_prefix: api_	19	name_prefix: api_
		20
		21	user:
		22	type: rest
		23	resource: "WallabagApiBundle:UserRest"
		24	name_prefix: api_


diff --git a/src/Wallabag/UserBundle/Controller/ManageController.php b/src/Wallabag/UserBundle/Controller/ManageController.php index 1c5c86d4..084f2c67 100644 --- a/src/Wallabag/UserBundle/Controller/ManageController.php +++ b/src/Wallabag/UserBundle/Controller/ManageController.php
@@ -33,9 +33,7 @@ class ManageController extends Controller
33	// enable created user by default	33	// enable created user by default
34	$user->setEnabled(true);	34	$user->setEnabled(true);
35		35
36	$form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [	36	$form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user);
37	'validation_groups' => ['Profile'],
38	]);
39	$form->handleRequest($request);	37	$form->handleRequest($request);
40		38
41	if ($form->isSubmitted() && $form->isValid()) {	39	if ($form->isSubmitted() && $form->isValid()) {


diff --git a/src/Wallabag/UserBundle/Entity/User.php b/src/Wallabag/UserBundle/Entity/User.php index 3a167de7..1ff3046a 100644 --- a/src/Wallabag/UserBundle/Entity/User.php +++ b/src/Wallabag/UserBundle/Entity/User.php
@@ -4,11 +4,11 @@ namespace Wallabag\UserBundle\Entity;
4		4
5	use Doctrine\Common\Collections\ArrayCollection;	5	use Doctrine\Common\Collections\ArrayCollection;
6	use Doctrine\ORM\Mapping as ORM;	6	use Doctrine\ORM\Mapping as ORM;
		7	use JMS\Serializer\Annotation\Groups;
		8	use JMS\Serializer\Annotation\XmlRoot;
7	use Scheb\TwoFactorBundle\Model\Email\TwoFactorInterface;	9	use Scheb\TwoFactorBundle\Model\Email\TwoFactorInterface;
8	use Scheb\TwoFactorBundle\Model\TrustedComputerInterface;	10	use Scheb\TwoFactorBundle\Model\TrustedComputerInterface;
9	use FOS\UserBundle\Model\User as BaseUser;	11	use FOS\UserBundle\Model\User as BaseUser;
10	use JMS\Serializer\Annotation\ExclusionPolicy;
11	use JMS\Serializer\Annotation\Expose;
12	use Symfony\Bridge\Doctrine\Validator\Constraints\UniqueEntity;	12	use Symfony\Bridge\Doctrine\Validator\Constraints\UniqueEntity;
13	use Symfony\Component\Security\Core\User\UserInterface;	13	use Symfony\Component\Security\Core\User\UserInterface;
14	use Wallabag\ApiBundle\Entity\Client;	14	use Wallabag\ApiBundle\Entity\Client;
@@ -18,23 +18,25 @@ use Wallabag\CoreBundle\Entity\Entry;
18	/**	18	/**
19	* User.	19	* User.
20	*	20	*
		21	* @XmlRoot("user")
21	* @ORM\Entity(repositoryClass="Wallabag\UserBundle\Repository\UserRepository")	22	* @ORM\Entity(repositoryClass="Wallabag\UserBundle\Repository\UserRepository")
22	* @ORM\Table(name="`user`")	23	* @ORM\Table(name="`user`")
23	* @ORM\HasLifecycleCallbacks()	24	* @ORM\HasLifecycleCallbacks()
24	* @ExclusionPolicy("all")
25	*	25	*
26	* @UniqueEntity("email")	26	* @UniqueEntity("email")
27	* @UniqueEntity("username")	27	* @UniqueEntity("username")
28	*/	28	*/
29	class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterface	29	class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterface
30	{	30	{
		31	/** @Serializer\XmlAttribute */
31	/**	32	/**
32	* @var int	33	* @var int
33	*	34	*
34	* @Expose
35	* @ORM\Column(name="id", type="integer")	35	* @ORM\Column(name="id", type="integer")
36	* @ORM\Id	36	* @ORM\Id
37	* @ORM\GeneratedValue(strategy="AUTO")	37	* @ORM\GeneratedValue(strategy="AUTO")
		38	*
		39	* @Groups({"user_api"})
38	*/	40	*/
39	protected $id;	41	protected $id;
40		42
@@ -42,13 +44,31 @@ class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterf
42	* @var string	44	* @var string
43	*	45	*
44	* @ORM\Column(name="name", type="text", nullable=true)	46	* @ORM\Column(name="name", type="text", nullable=true)
		47	*
		48	* @Groups({"user_api"})
45	*/	49	*/
46	protected $name;	50	protected $name;
47		51
48	/**	52	/**
		53	* @var string
		54	*
		55	* @Groups({"user_api"})
		56	*/
		57	protected $username;
		58
		59	/**
		60	* @var string
		61	*
		62	* @Groups({"user_api"})
		63	*/
		64	protected $email;
		65
		66	/**
49	* @var date	67	* @var date
50	*	68	*
51	* @ORM\Column(name="created_at", type="datetime")	69	* @ORM\Column(name="created_at", type="datetime")
		70	*
		71	* @Groups({"user_api"})
52	*/	72	*/
53	protected $createdAt;	73	protected $createdAt;
54		74
@@ -56,6 +76,8 @@ class User extends BaseUser implements TwoFactorInterface, TrustedComputerInterf
56	* @var date	76	* @var date
57	*	77	*
58	* @ORM\Column(name="updated_at", type="datetime")	78	* @ORM\Column(name="updated_at", type="datetime")
		79	*
		80	* @Groups({"user_api"})
59	*/	81	*/
60	protected $updatedAt;	82	protected $updatedAt;
61		83