src/Controller/SecurityController.php line 123

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use ApiPlatform\Api\IriConverterInterface;
  6. use App\Entity\Booking;
  7. use App\Mqtt\LockMode;
  8. use App\Entity\MqttDoorLock;
  9. use App\Entity\Property;
  10. use App\Entity\User;
  11. use App\Entity\User\UserRole;
  12. use App\Mqtt\MqttLockClient;
  13. use App\Repository\MqttDoorLockRepository;
  14. use CodeInc\SpreadsheetResponse\SpreadsheetResponse;
  15. use DateTimeImmutable;
  16. use Doctrine\Common\Collections\Criteria;
  17. use Doctrine\ORM\EntityManagerInterface;
  18. use Exception;
  19. use PhpOffice\PhpSpreadsheet\Reader\Csv;
  20. use PhpOffice\PhpSpreadsheet\Spreadsheet;
  21. use PhpOffice\PhpSpreadsheet\Writer\Html;
  22. use PhpOffice\PhpSpreadsheet\Writer\Xlsx;
  23. use Psr\Log\LoggerInterface;
  24. use Ramsey\Uuid\Uuid;
  25. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  26. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  27. use Symfony\Component\HttpFoundation\Request;
  28. use Symfony\Component\HttpFoundation\Response;
  29. use Symfony\Component\Routing\Annotation\Route;
  30. use Symfony\Component\Security\Core\Security;
  31. use Symfony\Component\Security\Core\User\UserInterface;
  33. class SecurityController extends AbstractController {
  35.     public function __construct(
  36.         private Security $security
  37.         private EntityManagerInterface $entityManagerInterface
  38.     ) {}
  40.     /**
  41.      * @IsGranted("ROLE_ADMIN")
  42.      * @Route("/playground", name="playground")
  43.      */
  44.     public function playground(?EntityManagerInterface $em): Response {
  46.         $properties $em->getRepository(Property::class)->findAll();
  48.         //dump($properties);
  50.         $now = new DateTimeImmutable();
  52.         $properties array_filter($properties, function (Property $p) use ($now): bool {
  53.             return !$p->getBookings(sprintf(
  54.                     '2022-11-01'
  55.                 ),
  56.                 Criteria::expr()->neq('blocking'1),
  57.                 Criteria::expr()->eq('clean'1),
  58.                 Criteria::expr()->lte('checkout'$now)
  59.             )->isEmpty();
  60.         });
  62.         //dump($properties);
  64.         $bookings = [];
  65.         foreach ($properties as $property) {
  66.             $bookings[$property->getSection()] = $property->getBookings('2022-11-01',
  67.                 Criteria::expr()->neq('blocking'1),
  68.                 Criteria::expr()->eq('clean'1),
  69.                 Criteria::expr()->lte('checkout'$now)
  70.             )->filter(function (Booking $b): bool {
  71.                 return $b->getResponsible()->getCompany() == 'AR A/S';
  72.             });
  73.         }
  75.         //dump($bookings);
  77.         $vr = new Csv();
  79.         $vr->setInputEncoding('UTF-8');
  80.     
  81.         $vr->setDelimiter(',');
  82.         $vr->setEnclosure('"');
  83.         $vr->setSheetIndex(0);
  85.         $ss $vr->loadSpreadsheetFromString($this->renderView(
  86.             'csv/orders.csv.twig',
  87.             [
  88.                 'customer_number' => 10088,
  89.                 'products' => json_decode(json_encode([[
  90.                     'number' => 4,
  91.                     'unit' => 'HUR'
  92.                 ], [
  93.                     'number' => '14',
  94.                     'unit' => 'SET'
  95.                 ]])),
  96.                 'projects' => $properties,
  97.                 'bookings' => $bookings,
  98.             ]
  99.         ));
  101.         //return new Response((new Html($ss))->generateHtmlAll(), 200);
  102.         //(new Xlsx($ss))->save('php://output');
  104.         return new SpreadsheetResponse($ss'fs');
  106.         // return new Response("", 200, [V
  107.         //     'Content-Type' => 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
  108.         //     'Content-Disposition' => sprintf('attachment;filename="orders-%s.xlsx"', $now->format('Y-m-d'))
  109.         // ]);
  110.     }
  112.     /**
  113.      * @Route({
  114.      *  "/", "/login", 
  115.      *  "/bookings", 
  116.      *  "/bookings/checkout", 
  117.      *  "/bookings/checkin", 
  118.      *  "/bookings/invoicing",
  119.      *  "/bookings/invoicing/{req}",
  120.      *  "/bookings/invoicing/{req}/{date}"
  121.      * }, name="index")
  122.      */
  123.     public function index(): Response {
  124.         return $this->render("base.html.twig");
  125.     }
  127.     private static function userObject(IriConverterInterface $iciUser $u): array {
  128.         return [
  129.             "@id" => $id $ici->getIriFromResource($u),
  130.             "id" => $id,
  131.             "company" => $u->getCompany(),
  132.             "language" => $u?->getLanguage() ?: 'en',
  133.             "roles" => $u->getRoles()
  134.         ];
  135.     }
  137.     private function failedLoginReponse(?Request $r null): false|Response {
  139.         $user User::cast($this->getUser());
  141.         if (!$this->isGranted('IS_AUTHENTICATED_FULLY'))
  142.             return $this->json([
  143.                 "error" => [
  144.                     "title" => 'Invalid login request",
  145.                     "message" => check that the Content-Type header is "application/json", got: «%s».' $r?->getContentType()
  146.                 ]
  147.             ], Response::HTTP_BAD_REQUEST);  
  149.         if (!$user || $user?->hasRole(UserRole::Disabled))
  150.             return $this->json([
  151.                 "error" => [
  152.                     "title" => "Invalid credentials or account is disabled.",
  153.                     "message" => "Please contact your supervisor if you think this is a mistake."
  154.                 ]
  155.             ], Response::HTTP_FORBIDDEN);
  156.        
  157.         if (isset($_SERVER['APP_MAINTENANCE']) && !$user->userHasConstraint('APP_MAINTENANCE'))
  158.             return $this->json([
  159.                 "error" => [
  160.                     "title" => "App is in maintencance mode.",
  161.                     "message" => sprintf("Need role(s): «%s», have: «%s»"join(
  162.                         strripos($_SERVER['APP_MAINTENANCE'], 'any') === ' or ' ' and 'array_map(
  163.                         fn(string $role): string => UserRole::fromCanBeShort($role)->name,
  164.                         explode(','explode(':'$_SERVER['APP_MAINTENANCE'])[1] ?? $_SERVER['APP_MAINTENANCE'])
  165.                     )), join(', 'array_map(
  166.                         fn(UserRole $role): string => $role->name
  167.                         $user->getRoles(true)
  168.                     )))
  169.                 ],
  170.             ], Response::HTTP_SERVICE_UNAVAILABLE);
  171.         
  172.         return false;
  173.     }
  175.     /**
  176.      * @IsGranted("ROLE_USER")
  177.      * @Route("api/users/ping", name="api_ping", methods={"GET"})
  178.      */
  179.     public function ping(IriConverterInterface $ici): Response {
  181.         if ($reponse $this->failedLoginReponse())
  182.             return $reponse;
  183.         
  184.         return $this->json(
  185.             static::userObject($ici$this->getUser()), 200
  186.         );
  187.     }
  188.     /**
  189.      * @Route("api/users/login", name="api_login", methods={"POST"})
  190.      */
  191.     public function login(Request $rIriConverterInterface $ici): Response 
  193.         if ($reponse $this->failedLoginReponse())
  194.             return $reponse;
  196.         return $this->json(
  197.             static::userObject($ici$this->getUser()), 200
  198.         );
  199.     }
  201.     private function doorLock(int $idMqttDoorLockRepository $mqttDoorLockRepositoryLoggerInterface $loggerLockMode $mode): Response {
  203.         $lock $mqttDoorLockRepository->find($id);
  205.         if ($lock == null)
  206.             return $this->json([
  207.                 'error' => sprintf('Unknown lock: %d-%s'$idUuid::uuid4()->toString())
  208.             ], Response::HTTP_NOT_FOUND);
  210.         try {
  211.             $client = new MqttLockClient(
  212.                 $this->security->getUser(),
  213.                 $this->entityManagerInterface,
  214.                 $lock$logger
  215.             );
  217.             $mode $client->setLockMode($mode);
  219.             $client->disconnect();
  221.             return $this->json([
  222.                 #'@id' => $iri->getIriFromItem($lock),
  223.                 'locked' => $mode == LockMode::Locked,
  224.                 'mode' => $mode->toString(),
  225.             ], Response::HTTP_OK);
  226.         } catch (\Throwable $e) {
  227.             $lock->releaseAccess($logger);
  228.         }
  229.     }
  231.     /**
  232.      * @IsGranted("ROLE_USER")
  233.      * @Route("api/door/unlock/{id}", name="api_door_unlock", 
  234.      *  requirements={"id" = "[\d]+"},
  235.      *  methods={"GET"}
  236.      * )
  237.      */
  238.     public function unlockDoor(int $idMqttDoorLockRepository $mqttDoorLockRepositoryLoggerInterface $logger): Response {
  239.         return $this->doorLock($id$mqttDoorLockRepository$loggerLockMode::Unlocked);
  240.     }
  242.     
  243.     /**
  244.      * @IsGranted("ROLE_USER")
  245.      * @Route("api/door/lock/{id}", name="api_door_lock", 
  246.      *  requirements={"id" = "[\d]+"},
  247.      *  methods={"GET"}
  248.      * )
  249.      */
  250.     public function lockDoor(int $idMqttDoorLockRepository $mqttDoorLockRepositoryLoggerInterface $logger): Response {
  251.         return $this->doorLock($id$mqttDoorLockRepository$loggerLockMode::Locked);
  252.     }
  254.     /**
  255.      * @IsGranted("ROLE_USER")
  256.      * @Route("api/door/status/{id}", name="api_door_status", 
  257.      *  requirements={"id" = "[\d]+"},
  258.      *  methods={"GET"}
  259.      * )
  260.      */
  261.     public function doorStatus(int $idMqttDoorLockRepository $mqttDoorLockRepositoryLoggerInterface $logger): Response {
  263.         $lock $mqttDoorLockRepository->find($id);
  265.         if ($lock == null)
  266.             return $this->json([
  267.                 'error' => sprintf('Unknown lock: %d-%s'$idUuid::uuid4()->toString())
  268.             ], Response::HTTP_NOT_FOUND);
  270.         try {
  271.             $client = new MqttLockClient(
  272.                 $this->security->getUser(), 
  273.                 $this->entityManagerInterface
  274.                 $lock$logger
  275.             );
  277.             $mode $client->getLockmode(true);
  279.             $client->disconnect();
  281.             return $this->json([
  282.                 'locked' => $mode == LockMode::Locked,
  283.                 'mode' => $mode->getValue()
  284.             ], 200);
  285.         } catch (Exception $e) {
  286.             return $this->json([
  287.                 'Info' => sprintf('Lock: %d-%s'$idUuid::uuid4()->toString())
  288.             ], Response::HTTP_FOUND);
  289.         }
  291.         return $this->json([
  292.             'Info' => sprintf('Lock: %d-%s'$idUuid::uuid4()->toString())
  293.         ], Response::HTTP_FOUND);
  294.     }
  295.   
  296.     /**
  297.      * @Route({"users/logout", "api/users/logout"}, name="api_logout")
  298.      */
  299.     public function logout() {
  300.         throw new \Exception('should not be reached');
  301.     }
  302. }