47 lines
1.2 KiB
PHP
47 lines
1.2 KiB
PHP
<?php
|
|
|
|
namespace Controllers;
|
|
|
|
require '../vendor/autoload.php';
|
|
|
|
use \Slim\Http\Request as Request;
|
|
use \Slim\Http\Response as Response;
|
|
|
|
class Credentials
|
|
{
|
|
/** @var \Monolog\Logger */
|
|
private $logger;
|
|
|
|
/** @var \Slim\Container */
|
|
private $c;
|
|
|
|
public function __construct(\Slim\Container $c)
|
|
{
|
|
$this->logger = $c->logger;
|
|
$this->c = $c;
|
|
}
|
|
|
|
public function getList(Request $req, Response $res, array $args)
|
|
{
|
|
$userId = $req->getAttribute('userId');
|
|
$recordId = intval($args['recordId']);
|
|
|
|
$ac = new \Operations\AccessControl($this->c);
|
|
if (!$ac->canAccessRecord($userId, $recordId)) {
|
|
$this->logger->info('Non admin user tries to get credentials for record without permission.');
|
|
return $res->withJson(['error' => 'You have no permissions for this record.'], 403);
|
|
}
|
|
|
|
$credentials = new \Operations\Credentials($this->c);
|
|
|
|
$paging = new \Utils\PagingInfo($req->getQueryParam('page'), $req->getQueryParam('pagesize'));
|
|
|
|
$results = $credentials->getCredentials($paging, $recordId);
|
|
|
|
return $res->withJson([
|
|
'paging' => $paging->toArray(),
|
|
'results' => $results
|
|
], 200);
|
|
}
|
|
}
|