102 lines
3.4 KiB
PHP
102 lines
3.4 KiB
PHP
<?php
|
|
namespace App\Controller\Admin;
|
|
|
|
use App\Auth;
|
|
use App\Entity;
|
|
use App\Exception\NotFoundException;
|
|
use App\Form\UserForm;
|
|
use App\Http\Response;
|
|
use App\Http\ServerRequest;
|
|
use App\Session\Flash;
|
|
use Doctrine\DBAL\Exception\UniqueConstraintViolationException;
|
|
use Psr\Http\Message\ResponseInterface;
|
|
|
|
class UsersController extends AbstractAdminCrudController
|
|
{
|
|
protected Auth $auth;
|
|
|
|
public function __construct(
|
|
UserForm $form,
|
|
Auth $auth
|
|
) {
|
|
parent::__construct($form);
|
|
|
|
$this->auth = $auth;
|
|
$this->csrf_namespace = 'admin_users';
|
|
}
|
|
|
|
public function indexAction(ServerRequest $request, Response $response): ResponseInterface
|
|
{
|
|
$users = $this->em->createQuery(/** @lang DQL */ 'SELECT
|
|
u, r
|
|
FROM App\Entity\User u
|
|
LEFT JOIN u.roles r
|
|
ORDER BY u.name ASC')
|
|
->execute();
|
|
|
|
return $request->getView()->renderToResponse($response, 'admin/users/index', [
|
|
'user' => $request->getAttribute('user'),
|
|
'users' => $users,
|
|
'csrf' => $request->getCsrf()->generate($this->csrf_namespace),
|
|
]);
|
|
}
|
|
|
|
public function editAction(ServerRequest $request, Response $response, $id = null): ResponseInterface
|
|
{
|
|
try {
|
|
if (false !== $this->_doEdit($request, $id)) {
|
|
$request->getFlash()->addMessage(($id ? __('User updated.') : __('User added.')), Flash::SUCCESS);
|
|
|
|
return $response->withRedirect($request->getRouter()->named('admin:users:index'));
|
|
}
|
|
} catch (UniqueConstraintViolationException $e) {
|
|
$request->getFlash()->addMessage(__('Another user already exists with this e-mail address. Please update the e-mail address.'),
|
|
Flash::ERROR);
|
|
}
|
|
|
|
return $request->getView()->renderToResponse($response, 'system/form_page', [
|
|
'form' => $this->form,
|
|
'render_mode' => 'edit',
|
|
'title' => $id ? __('Edit User') : __('Add User'),
|
|
]);
|
|
}
|
|
|
|
public function deleteAction(ServerRequest $request, Response $response, $id, $csrf): ResponseInterface
|
|
{
|
|
$request->getCsrf()->verify($csrf, $this->csrf_namespace);
|
|
|
|
$user = $this->record_repo->find((int)$id);
|
|
|
|
$current_user = $request->getUser();
|
|
|
|
if ($user === $current_user) {
|
|
$request->getFlash()->addMessage('<b>' . __('You cannot delete your own account.') . '</b>', Flash::ERROR);
|
|
} elseif ($user instanceof Entity\User) {
|
|
$this->em->remove($user);
|
|
$this->em->flush();
|
|
|
|
$request->getFlash()->addMessage('<b>' . __('User deleted.') . '</b>', Flash::SUCCESS);
|
|
}
|
|
|
|
return $response->withRedirect($request->getRouter()->named('admin:users:index'));
|
|
}
|
|
|
|
public function impersonateAction(ServerRequest $request, Response $response, $id, $csrf): ResponseInterface
|
|
{
|
|
$request->getCsrf()->verify($csrf, $this->csrf_namespace);
|
|
|
|
$user = $this->record_repo->find((int)$id);
|
|
|
|
if (!($user instanceof Entity\User)) {
|
|
throw new NotFoundException(__('User not found.'));
|
|
}
|
|
|
|
$this->auth->masqueradeAsUser($user);
|
|
|
|
$request->getFlash()->addMessage('<b>' . __('Logged in successfully.') . '</b><br>' . $user->getEmail(),
|
|
Flash::SUCCESS);
|
|
|
|
return $response->withRedirect($request->getRouter()->named('dashboard'));
|
|
}
|
|
}
|