gist/src/Gist/Controller/ApiController.php

<?php

namespace Gist\Controller;

use Symfony\Component\HttpFoundation\Request;
use Gist\Model\Gist;
use Symfony\Component\HttpFoundation\JsonResponse;
use Gist\Form\ApiCreateGistForm;
use Gist\Model\GistQuery;
use Gist\Form\ApiUpdateGistForm;

/**
 * Class ApiController.
 *
 * @author Simon Vieille <simon@deblan.fr>
 */
class ApiController extends Controller
{
    public function createAction(Request $request)
    {
        $app = $this->getApp();

        if (false === $request->isMethod('post')) {
            return $this->invalidMethodResponse('POST method is required.');
        }

        $form = new ApiCreateGistForm(
            $app['form.factory'],
            $app['translator'],
            [],
            ['csrf_protection' => false]
        );

        $form = $form->build()->getForm();

        $form->submit($request);

        if ($form->isValid()) {
            $gist = $app['gist']->create(new Gist(), $form->getData());
            $gist->setCipher(false)->save();

            $history = $app['gist']->getHistory($gist);

            return new JsonResponse(array(
                'url' => $request->getSchemeAndHttpHost().$app['url_generator']->generate(
                    'view',
                    array(
                        'gist' => $gist->getFile(),
                        'commit' => array_pop($history)['commit'],
                    )
                ),
                'gist' => $gist->toArray(),
            ));
        }

        return $this->invalidRequestResponse('Invalid field(s)');
    }

    public function updateAction(Request $request, $gist)
    {
        $app = $this->getApp();

        if (false === $request->isMethod('post')) {
            return $this->invalidMethodResponse('POST method is required.');
        }

        $gist = GistQuery::create()
            ->filterByCipher(false)
            ->filterById((int) $gist)
            ->_or()
            ->filterByFile($gist)
            ->findOne();

        if (!$gist) {
            return $this->invalidRequestResponse('Invalid Gist');
        }

        $form = new ApiUpdateGistForm(
            $app['form.factory'],
            $app['translator'],
            [],
            ['csrf_protection' => false]
        );

        $form = $form->build()->getForm();

        $form->submit($request);

        if ($form->isValid()) {
            $gist = $app['gist']->commit($gist, $form->getData());

            $history = $app['gist']->getHistory($gist);

            return new JsonResponse(array(
                'url' => $request->getSchemeAndHttpHost().$app['url_generator']->generate(
                    'view',
                    array(
                        'gist' => $gist->getFile(),
                        'commit' => array_pop($history)['commit'],
                    )
                ),
                'gist' => $gist->toArray(),
            ));
        }

        return $this->invalidRequestResponse('Invalid field(s)');
    }

    protected function invalidMethodResponse($message = null)
    {
        $data = [
            'error' => 'Method Not Allowed',
            'message' => $message,
        ];

        return new JsonResponse($data, 405);
    }

    protected function invalidRequestResponse($message = null)
    {
        $data = [
            'error' => 'Bad Request',
            'message' => $message,
        ];

        return new JsonResponse($data, 400);
    }
}