bundles/Suzuki/AccountBundle/Controller/AccountController.php line 23

Open in your IDE?
  1. <?php
  3. namespace Suzuki\AccountBundle\Controller;
  5. use Exception;
  6. use Sonata\AdminBundle\Controller\CRUDController;
  7. use Sonata\AdminBundle\Datagrid\ProxyQueryInterface;
  8. use Suzuki\AccountBundle\Entity\DealerShip;
  9. use Suzuki\AccountBundle\Entity\User;
  10. use Suzuki\CoreBundle\Helpers\CoreHelper;
  11. use Suzuki\SettingBundle\Constants\Constants;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  16. use function in_array;
  18. /**
  19.  * Class AccountController
  20.  *
  21.  * @package Suzuki\AccountBundle\Controller
  22.  */
  23. class AccountController extends CRUDController
  24. {
  26.     /**
  27.      * @param int|string|null $id
  28.      *
  29.      * @return RedirectResponse|Response
  30.      */
  31.     public function deleteAction($id)
  32.     {
  33.         $request $this->getRequest();
  34.         $id      $request->get($this->admin->getIdParameter());
  35.         $object  $this->admin->getObject($id);
  37.         if ( !$object) {
  38.             throw $this->createNotFoundException(
  39.                 sprintf(
  40.                     'unable to find the object with id: %s',
  41.                     $id
  42.                 )
  43.             );
  44.         }
  46.         $currentUserId $this->getUser()->getId(); // ID of the current user
  47.         if ($currentUserId == $id) {
  48.             $this->addFlash(
  49.                 'sonata_flash_error',
  50.                 'You cannot delete your own account.'
  51.             );
  53.             return $this->redirectTo($object);
  54.         }
  56.         return parent::deleteAction($id);
  57.     }
  59.     /**
  60.      * @param ProxyQueryInterface $query
  61.      *
  62.      * @return RedirectResponse
  63.      */
  64.     public function batchActionDelete(ProxyQueryInterface $query)
  65.     {
  66.         $currentUserId $this->getUser()->getId(); // ID of the current user
  67.         $selectedUsers $query->execute();
  69.         foreach ($selectedUsers as $selectedUser) {
  70.             if ($selectedUser->getId() == $currentUserId) {
  71.                 $this->addFlash(
  72.                     'sonata_flash_error',
  73.                     'You cannot delete your own account.'
  74.                 );
  76.                 return new RedirectResponse(
  77.                     $this->admin->generateUrl(
  78.                         'list',
  79.                         ['filter' => $this->admin->getFilterParameters()]
  80.                     )
  81.                 );
  82.             }
  83.         }
  85.         return parent::batchActionDelete($query);
  86.     }
  88.     /**
  89.      * @param null $id
  90.      *
  91.      * @return RedirectResponse|Response
  92.      * @throws Exception
  93.      */
  94.     public function editAction($id NULL)
  95.     {
  96.         $user         $this->getUser();
  97.         $coreHelper   = new CoreHelper();
  98.         $isAdmin      in_array(Constants::ROLE_ADMIN$user->getRoles());
  99.         $isSuperAdmin in_array(Constants::ROLE_SUPER_ADMIN$user->getRoles());
  100.         $em           $this->container->get('doctrine.orm.entity_manager');
  101.         $userRepo     $em->getRepository(User::class);
  102.         $targetUser   $userRepo->find($id);
  103.         if ($isAdmin && in_array(Constants::ROLE_SUPER_ADMIN$targetUser->getRoles())) {
  104.             throw new AccessDeniedHttpException("Access Denied");
  105.         }
  107.         if ( !$isSuperAdmin && !$isAdmin) {
  108.             $isAccess 1;
  109.             switch (TRUE) {
  110.                 case $id == $user->getID():
  111.                     $isAccess 1;
  112.                     break;
  113.                 case in_array(
  114.                     Constants::ROLE_REGION_MANAGER,
  115.                     $user->getRoles()
  116.                 ):
  117.                     if ( !empty($user->getRegion())) {
  118.                         $isAccess count(
  119.                             $this->getDoctrine()
  120.                                  ->getRepository(User::class)
  121.                                  ->checkAccessEditForm(
  122.                                      $id,
  123.                                      $user->getRegion()
  124.                                           ->getID()
  125.                                  )
  126.                         );
  127.                     }
  129.                     break;
  130.                 case in_array(Constants::ROLE_DEALER$user->getRoles()):
  131.                     if ( !empty($user->getDealerShip())) {
  132.                         $isAccess count(
  133.                             $this->getDoctrine()
  134.                                  ->getRepository(User::class)
  135.                                  ->checkAccessEditForm(
  136.                                      $id,
  137.                                      NULL,
  138.                                      $coreHelper->getAllIdByObject(
  139.                                          $user,
  140.                                          'getDealerShip'
  141.                                      )
  142.                                  )
  143.                         );
  144.                     }
  146.                     break;
  147.                 case in_array(Constants::ROLE_SELLER$user->getRoles()):
  148.                     $isAccess 0;
  150.                     break;
  151.                 default:
  152.                     $isAccess 0;
  153.             }
  155.             if ($isAccess == 0) {
  156.                 throw new AccessDeniedHttpException("Access Denied");
  157.             }
  158.         }
  160.         return parent::editAction($id);
  161.     }
  163.     /**
  164.      * @param Request $request
  165.      *
  166.      * @return Response
  167.      */
  168.     public function getDealerShipByRegionAction(Request $request)
  169.     {
  170.         $html             "";
  171.         $regionId         $request->request->get('regionId');
  172.         $userId           $request->request->get('userId');
  173.         $dealerShip       $this->getDoctrine()
  174.                                  ->getRepository(DealerShip::class)
  175.                                  ->getDealerShipEqualRegionVente($regionId);
  176.         $dealerShipByUser $this->getDoctrine()
  177.                                  ->getRepository(DealerShip::class)
  178.                                  ->getDealerShipByUser($userId);
  179.         $dealerShipByUser array_column($dealerShipByUser'id');
  181.         foreach ($dealerShip as $item) {
  182.             $title 'Suzuki - ' .
  183.                      $item->getReasonSocial() .
  184.                      ', ' .
  185.                      trim($item->getAdr3() . ' ' $item->getAdr4() . ' ' $item->getAdr4()) .
  186.                      ', ' .
  187.                      $item->getCodePostal() . ' ' $item->getVille();
  189.             $html .= '<option ' . (in_array(
  190.                     $item->getId(),
  191.                     $dealerShipByUser
  192.                 ) ? 'selected="selected"' "") . ' value="' $item->getId() . '" >' $title '</option>';
  193.         }
  195.         return new Response($html200);
  196.     }
  197. }