Cleanup PageController
Signed-off-by: John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
This commit is contained in:
John Molakvoæ (skjnldsv)
parent
81b2e9a537
commit
f29d89557b
|
|
@ -29,7 +29,6 @@
|
||||||
|
|
||||||
namespace OCA\Forms\Controller;
|
namespace OCA\Forms\Controller;
|
||||||
|
|
||||||
use OCA\Forms\AppInfo\Application;
|
|
||||||
use OCA\Forms\Db\Form;
|
use OCA\Forms\Db\Form;
|
||||||
use OCA\Forms\Db\FormMapper;
|
use OCA\Forms\Db\FormMapper;
|
||||||
use OCA\Forms\Db\Submission;
|
use OCA\Forms\Db\Submission;
|
||||||
|
|
@ -42,61 +41,57 @@ use OCA\Forms\Db\QuestionMapper;
|
||||||
|
|
||||||
use OCP\AppFramework\Controller;
|
use OCP\AppFramework\Controller;
|
||||||
use OCP\AppFramework\Db\DoesNotExistException;
|
use OCP\AppFramework\Db\DoesNotExistException;
|
||||||
use OCP\AppFramework\Http\ContentSecurityPolicy;
|
|
||||||
use OCP\AppFramework\Http\RedirectResponse;
|
use OCP\AppFramework\Http\RedirectResponse;
|
||||||
use OCP\AppFramework\Http\TemplateResponse;
|
use OCP\AppFramework\Http\TemplateResponse;
|
||||||
use OCP\IGroup;
|
|
||||||
use OCP\IGroupManager;
|
use OCP\IGroupManager;
|
||||||
use OCP\IRequest;
|
use OCP\IRequest;
|
||||||
use OCP\ILogger;
|
|
||||||
use OCP\IURLGenerator;
|
use OCP\IURLGenerator;
|
||||||
use OCP\IUserManager;
|
use OCP\IUserSession;
|
||||||
use OCP\User; //To do: replace according to API
|
|
||||||
use OCP\Util;
|
use OCP\Util;
|
||||||
|
|
||||||
class PageController extends Controller {
|
class PageController extends Controller {
|
||||||
|
|
||||||
protected $appName;
|
protected $appName;
|
||||||
private $userId;
|
|
||||||
|
/** @var FormMapper */
|
||||||
private $formMapper;
|
private $formMapper;
|
||||||
|
|
||||||
|
/** @var SubmissionMapper */
|
||||||
private $submissionMapper;
|
private $submissionMapper;
|
||||||
|
|
||||||
|
/** @var AnswerMapper */
|
||||||
private $answerMapper;
|
private $answerMapper;
|
||||||
|
|
||||||
private $questionMapper;
|
/** @var IURLGenerator */
|
||||||
private $optionMapper;
|
|
||||||
|
|
||||||
private $urlGenerator;
|
private $urlGenerator;
|
||||||
private $userMgr;
|
|
||||||
|
/** @var IGroupManager */
|
||||||
private $groupManager;
|
private $groupManager;
|
||||||
|
|
||||||
/** @var ILogger */
|
/** @var IUserSession */
|
||||||
private $logger;
|
private $userSession;
|
||||||
|
|
||||||
public function __construct(string $appName,
|
public function __construct(string $appName,
|
||||||
IRequest $request,
|
IRequest $request,
|
||||||
IUserManager $userMgr,
|
|
||||||
IGroupManager $groupManager,
|
IGroupManager $groupManager,
|
||||||
IURLGenerator $urlGenerator,
|
IURLGenerator $urlGenerator,
|
||||||
FormMapper $formMapper,
|
FormMapper $formMapper,
|
||||||
$userId,
|
|
||||||
QuestionMapper $questionMapper,
|
QuestionMapper $questionMapper,
|
||||||
OptionMapper $optionMapper,
|
OptionMapper $optionMapper,
|
||||||
SubmissionMapper $SubmissionMapper,
|
SubmissionMapper $SubmissionMapper,
|
||||||
AnswerMapper $AnswerMapper,
|
AnswerMapper $AnswerMapper,
|
||||||
ILogger $logger) {
|
IUserSession $userSession) {
|
||||||
parent::__construct(Application::APP_ID, $request);
|
parent::__construct($appName, $request);
|
||||||
$this->userMgr = $userMgr;
|
|
||||||
$this->groupManager = $groupManager;
|
$this->groupManager = $groupManager;
|
||||||
$this->urlGenerator = $urlGenerator;
|
$this->urlGenerator = $urlGenerator;
|
||||||
$this->appName = $appName;
|
$this->appName = $appName;
|
||||||
$this->userId = $userId;
|
|
||||||
$this->formMapper = $formMapper;
|
$this->formMapper = $formMapper;
|
||||||
|
|
||||||
$this->questionMapper = $questionMapper;
|
$this->questionMapper = $questionMapper;
|
||||||
$this->optionMapper = $optionMapper;
|
$this->optionMapper = $optionMapper;
|
||||||
$this->submissionMapper = $SubmissionMapper;
|
$this->submissionMapper = $SubmissionMapper;
|
||||||
$this->answerMapper = $AnswerMapper;
|
$this->answerMapper = $AnswerMapper;
|
||||||
$this->logger = $logger;
|
$this->userSession = $userSession;
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
|
|
@ -126,6 +121,8 @@ class PageController extends Controller {
|
||||||
/**
|
/**
|
||||||
* @NoAdminRequired
|
* @NoAdminRequired
|
||||||
* @NoCSRFRequired
|
* @NoCSRFRequired
|
||||||
|
*
|
||||||
|
* TODO: Implement cloning
|
||||||
*
|
*
|
||||||
* @return TemplateResponse
|
* @return TemplateResponse
|
||||||
*/
|
*/
|
||||||
|
|
@ -170,6 +167,8 @@ class PageController extends Controller {
|
||||||
// Inject style on all templates
|
// Inject style on all templates
|
||||||
Util::addStyle($this->appName, 'forms');
|
Util::addStyle($this->appName, 'forms');
|
||||||
|
|
||||||
|
// TODO: check if already submitted
|
||||||
|
|
||||||
try {
|
try {
|
||||||
$form = $this->formMapper->findByHash($hash);
|
$form = $this->formMapper->findByHash($hash);
|
||||||
} catch (DoesNotExistException $e) {
|
} catch (DoesNotExistException $e) {
|
||||||
|
|
@ -186,72 +185,35 @@ class PageController extends Controller {
|
||||||
return new TemplateResponse('forms', 'expired');
|
return new TemplateResponse('forms', 'expired');
|
||||||
}
|
}
|
||||||
|
|
||||||
$renderAs = is_null($this->userId) ? 'user' : 'public';
|
$renderAs = $this->userSession->isLoggedIn() ? 'user' : 'public';
|
||||||
|
|
||||||
Util::addScript($this->appName, 'submit');
|
Util::addScript($this->appName, 'submit');
|
||||||
return new TemplateResponse($this->appName, 'main', [], $renderAs);
|
return new TemplateResponse($this->appName, 'main', [], $renderAs);
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
|
||||||
* @NoAdminRequired
|
|
||||||
*/
|
|
||||||
public function getQuestions(int $formId): array {
|
|
||||||
$questionList = [];
|
|
||||||
try{
|
|
||||||
$questionEntities = $this->questionMapper->findByForm($formId);
|
|
||||||
foreach ($questionEntities as $questionEntity) {
|
|
||||||
$question = $questionEntity->read();
|
|
||||||
$question['options'] = $this->getOptions($question['id']);
|
|
||||||
$questionList[] = $question;
|
|
||||||
}
|
|
||||||
} catch (DoesNotExistException $e) {
|
|
||||||
//handle silently
|
|
||||||
}
|
|
||||||
|
|
||||||
return $questionList;
|
|
||||||
}
|
|
||||||
|
|
||||||
/**
|
|
||||||
* @NoAdminRequired
|
|
||||||
*/
|
|
||||||
public function getOptions(int $questionId): array {
|
|
||||||
$optionList = [];
|
|
||||||
|
|
||||||
try{
|
|
||||||
$optionEntities = $this->optionMapper->findByQuestion($questionId);
|
|
||||||
foreach ($optionEntities as $optionEntity) {
|
|
||||||
$optionList[] = $optionEntity->read();
|
|
||||||
}
|
|
||||||
|
|
||||||
} catch (DoesNotExistException $e) {
|
|
||||||
//handle silently
|
|
||||||
}
|
|
||||||
|
|
||||||
return $optionList;
|
|
||||||
}
|
|
||||||
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* @NoAdminRequired
|
* @NoAdminRequired
|
||||||
* @PublicPage
|
* @PublicPage
|
||||||
|
*
|
||||||
|
* Process a new submission
|
||||||
* @param int $formId
|
* @param int $formId
|
||||||
* @param string $userId
|
* @param string $userId
|
||||||
* @param array $answers
|
* @param array $answers
|
||||||
* @param array $questions
|
* @param array $questions
|
||||||
* @return RedirectResponse
|
* @return RedirectResponse
|
||||||
*/
|
*/
|
||||||
public function insertSubmission($id, $userId, $answers, $questions) {
|
public function insertSubmission(int $id, string $userId, array $answers, array $questions) {
|
||||||
|
|
||||||
$form = $this->formMapper->findById($id);
|
$form = $this->formMapper->findById($id);
|
||||||
$anonID = "anon-user-". hash('md5', (time() + rand()));
|
$anonID = "anon-user-". hash('md5', (time() + rand()));
|
||||||
|
|
||||||
//Insert Submission
|
// Insert Submission
|
||||||
$submission = new Submission();
|
$submission = new Submission();
|
||||||
$submission->setFormId($id);
|
$submission->setFormId($id);
|
||||||
if($form->getIsAnonymous()){
|
if ($form->getIsAnonymous()){
|
||||||
$submission->setUserId($anonID);
|
$submission->setUserId($anonID);
|
||||||
|
|
||||||
}else{
|
} else {
|
||||||
$submission->setUserId($userId);
|
$submission->setUserId($userId);
|
||||||
}
|
}
|
||||||
$submission->setTimestamp(time());
|
$submission->setTimestamp(time());
|
||||||
|
|
@ -288,22 +250,26 @@ class PageController extends Controller {
|
||||||
/**
|
/**
|
||||||
* @NoAdminRequired
|
* @NoAdminRequired
|
||||||
* Check if user has access to this form
|
* Check if user has access to this form
|
||||||
|
*
|
||||||
|
* @param Form $form
|
||||||
|
* @return boolean
|
||||||
*/
|
*/
|
||||||
private function hasUserAccess(Form $form): bool {
|
private function hasUserAccess(Form $form): bool {
|
||||||
$access = $form->getAccess();
|
$access = $form->getAccess();
|
||||||
$ownerId = $form->getOwnerId();
|
$ownerId = $form->getOwnerId();
|
||||||
|
$user = $this->userSession->getUser();
|
||||||
|
|
||||||
if ($access['type'] === 'public') {
|
if ($access['type'] === 'public') {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Refuse access, if not public and no user logged in.
|
// Refuse access, if not public and no user logged in.
|
||||||
if ($this->userId === null) {
|
if (!$user) {
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Always grant access to owner.
|
// Always grant access to owner.
|
||||||
if ($ownerId === $this->userId) {
|
if ($ownerId === $user->getUID()) {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
@ -311,7 +277,7 @@ class PageController extends Controller {
|
||||||
if ($form->getSubmitOnce()) {
|
if ($form->getSubmitOnce()) {
|
||||||
$participants = $this->submissionMapper->findParticipantsByForm($form->getId());
|
$participants = $this->submissionMapper->findParticipantsByForm($form->getId());
|
||||||
foreach($participants as $participant) {
|
foreach($participants as $participant) {
|
||||||
if ($participant === $this->userId) {
|
if ($participant === $user->getUID()) {
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
@ -324,13 +290,13 @@ class PageController extends Controller {
|
||||||
|
|
||||||
// Selected Access remains.
|
// Selected Access remains.
|
||||||
// Grant Access, if user is in users-Array.
|
// Grant Access, if user is in users-Array.
|
||||||
if (in_array($this->userId, $access['users'])) {
|
if (in_array($user->getUID(), $access['users'])) {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Check if access granted by group.
|
// Check if access granted by group.
|
||||||
foreach ($access['groups'] as $group) {
|
foreach ($access['groups'] as $group) {
|
||||||
if( $this->groupManager->isInGroup($this->userId, $group) ) {
|
if( $this->groupManager->isInGroup($user->getUID(), $group) ) {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue