mirror of
https://github.com/espocrm/espocrm.git
synced 2026-06-28 15:06:06 +00:00
444 lines
13 KiB
PHP
444 lines
13 KiB
PHP
<?php
|
|
/************************************************************************
|
|
* This file is part of EspoCRM.
|
|
*
|
|
* EspoCRM - Open Source CRM application.
|
|
* Copyright (C) 2014-2015 Yuri Kuznetsov, Taras Machyshyn, Oleksiy Avramenko
|
|
* Website: http://www.espocrm.com
|
|
*
|
|
* EspoCRM is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* EspoCRM is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with EspoCRM. If not, see http://www.gnu.org/licenses/.
|
|
*
|
|
* The interactive user interfaces in modified source and object code versions
|
|
* of this program must display Appropriate Legal Notices, as required under
|
|
* Section 5 of the GNU General Public License version 3.
|
|
*
|
|
* In accordance with Section 7(b) of the GNU General Public License version 3,
|
|
* these Appropriate Legal Notices must retain the display of the "EspoCRM" word.
|
|
************************************************************************/
|
|
|
|
namespace Espo\Core\Controllers;
|
|
|
|
use \Espo\Core\Exceptions\Error;
|
|
use \Espo\Core\Exceptions\Forbidden;
|
|
use \Espo\Core\Exceptions\NotFound;
|
|
use \Espo\Core\Exceptions\BadRequest;
|
|
use \Espo\Core\Utils\Util;
|
|
|
|
class Record extends Base
|
|
{
|
|
const MAX_SIZE_LIMIT = 200;
|
|
|
|
public static $defaultAction = 'list';
|
|
|
|
protected $defaultRecordServiceName = 'Record';
|
|
|
|
protected function getEntityManager()
|
|
{
|
|
return $this->getContainer()->get('entityManager');
|
|
}
|
|
|
|
protected function getRecordService($name = null)
|
|
{
|
|
if (empty($name)) {
|
|
$name = $this->name;
|
|
}
|
|
|
|
if ($this->getServiceFactory()->checkExists($name)) {
|
|
$service = $this->getServiceFactory()->create($name);
|
|
} else {
|
|
$service = $this->getServiceFactory()->create($this->defaultRecordServiceName);
|
|
$service->setEntityType($name);
|
|
}
|
|
|
|
return $service;
|
|
}
|
|
|
|
public function actionRead($params, $data, $request)
|
|
{
|
|
$id = $params['id'];
|
|
$entity = $this->getRecordService()->getEntity($id);
|
|
|
|
if (empty($entity)) {
|
|
throw new NotFound();
|
|
}
|
|
|
|
return $entity->toArray();
|
|
}
|
|
|
|
public function actionPatch($params, $data, $request)
|
|
{
|
|
return $this->actionUpdate($params, $data, $request);
|
|
}
|
|
|
|
public function actionCreate($params, $data, $request)
|
|
{
|
|
if (!$request->isPost()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (!$this->getAcl()->check($this->name, 'create')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$service = $this->getRecordService();
|
|
|
|
if ($entity = $service->createEntity($data)) {
|
|
return $entity->toArray();
|
|
}
|
|
|
|
throw new Error();
|
|
}
|
|
|
|
public function actionUpdate($params, $data, $request)
|
|
{
|
|
if (!$request->isPut() && !$request->isPatch()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (!$this->getAcl()->check($this->name, 'edit')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$id = $params['id'];
|
|
|
|
if ($entity = $this->getRecordService()->updateEntity($id, $data)) {
|
|
return $entity->toArray();
|
|
}
|
|
|
|
throw new Error();
|
|
}
|
|
|
|
public function actionList($params, $data, $request)
|
|
{
|
|
if (!$this->getAcl()->check($this->name, 'read')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$where = $request->get('where');
|
|
$offset = $request->get('offset');
|
|
$maxSize = $request->get('maxSize');
|
|
$asc = $request->get('asc', 'true') === 'true';
|
|
$sortBy = $request->get('sortBy');
|
|
$q = $request->get('q');
|
|
$textFilter = $request->get('textFilter');
|
|
|
|
if (empty($maxSize)) {
|
|
$maxSize = self::MAX_SIZE_LIMIT;
|
|
}
|
|
if (!empty($maxSize) && $maxSize > self::MAX_SIZE_LIMIT) {
|
|
throw new Forbidden("Max should should not exceed " . self::MAX_SIZE_LIMIT . ". Use pagination (offset, limit).");
|
|
}
|
|
|
|
$params = array(
|
|
'where' => $where,
|
|
'offset' => $offset,
|
|
'maxSize' => $maxSize,
|
|
'asc' => $asc,
|
|
'sortBy' => $sortBy,
|
|
'q' => $q,
|
|
'textFilter' => $textFilter
|
|
);
|
|
|
|
$this->fetchListParamsFromRequest($params, $request, $data);
|
|
|
|
$result = $this->getRecordService()->findEntities($params);
|
|
|
|
return array(
|
|
'total' => $result['total'],
|
|
'list' => isset($result['collection']) ? $result['collection']->toArray() : $result['list']
|
|
);
|
|
}
|
|
|
|
protected function fetchListParamsFromRequest(&$params, $request, $data)
|
|
{
|
|
if ($request->get('primaryFilter')) {
|
|
$params['primaryFilter'] = $request->get('primaryFilter');
|
|
}
|
|
if ($request->get('boolFilterList')) {
|
|
$params['boolFilterList'] = $request->get('boolFilterList');
|
|
}
|
|
}
|
|
|
|
public function actionListLinked($params, $data, $request)
|
|
{
|
|
$id = $params['id'];
|
|
$link = $params['link'];
|
|
|
|
$where = $request->get('where');
|
|
$offset = $request->get('offset');
|
|
$maxSize = $request->get('maxSize');
|
|
$asc = $request->get('asc', 'true') === 'true';
|
|
$sortBy = $request->get('sortBy');
|
|
$q = $request->get('q');
|
|
$textFilter = $request->get('textFilter');
|
|
|
|
if (empty($maxSize)) {
|
|
$maxSize = self::MAX_SIZE_LIMIT;
|
|
}
|
|
if (!empty($maxSize) && $maxSize > self::MAX_SIZE_LIMIT) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$params = array(
|
|
'where' => $where,
|
|
'offset' => $offset,
|
|
'maxSize' => $maxSize,
|
|
'asc' => $asc,
|
|
'sortBy' => $sortBy,
|
|
'q' => $q,
|
|
'textFilter' => $textFilter
|
|
);
|
|
|
|
$this->fetchListParamsFromRequest($params, $request, $data);
|
|
|
|
$result = $this->getRecordService()->findLinkedEntities($id, $link, $params);
|
|
|
|
return array(
|
|
'total' => $result['total'],
|
|
'list' => isset($result['collection']) ? $result['collection']->toArray() : $result['list']
|
|
);
|
|
}
|
|
|
|
public function actionDelete($params, $data, $request)
|
|
{
|
|
if (!$request->isDelete()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
$id = $params['id'];
|
|
|
|
if ($this->getRecordService()->deleteEntity($id)) {
|
|
return true;
|
|
}
|
|
throw new Error();
|
|
}
|
|
|
|
public function actionExport($params, $data, $request)
|
|
{
|
|
if ($this->getConfig()->get('exportDisabled') && !$this->getUser()->isAdmin()) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
if (!$this->getAcl()->check($this->name, 'read')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$ids = $request->get('ids');
|
|
$where = $request->get('where');
|
|
$byWhere = $request->get('byWhere');
|
|
|
|
$params = array();
|
|
if ($byWhere) {
|
|
$params['where'] = $where;
|
|
} else {
|
|
$params['ids'] = $ids;
|
|
}
|
|
|
|
return array(
|
|
'id' => $this->getRecordService()->export($params)
|
|
);
|
|
}
|
|
|
|
public function actionMassUpdate($params, $data, $request)
|
|
{
|
|
if (!$request->isPut()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (!$this->getAcl()->check($this->name, 'edit')) {
|
|
throw new Forbidden();
|
|
}
|
|
if (empty($data['attributes'])) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
$params = array();
|
|
if (array_key_exists('where', $data) && !empty($data['byWhere'])) {
|
|
$params['where'] = json_decode(json_encode($data['where']), true);
|
|
} else if (array_key_exists('ids', $data)) {
|
|
$params['ids'] = $data['ids'];
|
|
}
|
|
|
|
$attributes = $data['attributes'];
|
|
|
|
$idsUpdated = $this->getRecordService()->massUpdate($attributes, $params);
|
|
|
|
return $idsUpdated;
|
|
}
|
|
|
|
public function actionMassDelete($params, $data, $request)
|
|
{
|
|
if (!$request->isPost()) {
|
|
throw new BadRequest();
|
|
}
|
|
if (!$this->getAcl()->check($this->name, 'delete')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
$params = array();
|
|
if (array_key_exists('where', $data) && !empty($data['byWhere'])) {
|
|
$where = json_decode(json_encode($data['where']), true);
|
|
$params['where'] = $where;
|
|
}
|
|
if (array_key_exists('ids', $data)) {
|
|
$params['ids'] = $data['ids'];
|
|
}
|
|
|
|
$idsRemoved = $this->getRecordService()->massRemove($params);
|
|
|
|
return $idsRemoved;
|
|
}
|
|
|
|
public function actionCreateLink($params, $data, $request)
|
|
{
|
|
if (!$request->isPost()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (empty($params['id']) || empty($params['link'])) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
$id = $params['id'];
|
|
$link = $params['link'];
|
|
|
|
if (!empty($data['massRelate'])) {
|
|
if (!is_array($data['where'])) {
|
|
throw new BadRequest();
|
|
}
|
|
$where = json_decode(json_encode($data['where']), true);
|
|
return $this->getRecordService()->linkEntityMass($id, $link, $where);
|
|
} else {
|
|
$foreignIdList = array();
|
|
if (isset($data['id'])) {
|
|
$foreignIdList[] = $data['id'];
|
|
}
|
|
if (isset($data['ids']) && is_array($data['ids'])) {
|
|
foreach ($data['ids'] as $foreignId) {
|
|
$foreignIdList[] = $foreignId;
|
|
}
|
|
}
|
|
|
|
$result = false;
|
|
foreach ($foreignIdList as $foreignId) {
|
|
if ($this->getRecordService()->linkEntity($id, $link, $foreignId)) {
|
|
$result = true;
|
|
}
|
|
}
|
|
if ($result) {
|
|
return true;
|
|
}
|
|
}
|
|
|
|
throw new Error();
|
|
}
|
|
|
|
public function actionRemoveLink($params, $data, $request)
|
|
{
|
|
if (!$request->isDelete()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
$id = $params['id'];
|
|
$link = $params['link'];
|
|
|
|
if (empty($params['id']) || empty($params['link'])) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
$foreignIds = array();
|
|
if (isset($data['id'])) {
|
|
$foreignIds[] = $data['id'];
|
|
}
|
|
if (isset($data['ids']) && is_array($data['ids'])) {
|
|
foreach ($data['ids'] as $foreignId) {
|
|
$foreignIds[] = $foreignId;
|
|
}
|
|
}
|
|
|
|
$result = false;
|
|
foreach ($foreignIds as $foreignId) {
|
|
if ($this->getRecordService()->unlinkEntity($id, $link, $foreignId)) {
|
|
$result = $result || true;
|
|
}
|
|
}
|
|
if ($result) {
|
|
return true;
|
|
}
|
|
|
|
throw new Error();
|
|
}
|
|
|
|
public function actionFollow($params, $data, $request)
|
|
{
|
|
if (!$request->isPut()) {
|
|
throw new BadRequest();
|
|
}
|
|
if (!$this->getAcl()->check($this->name, 'stream')) {
|
|
throw new Forbidden();
|
|
}
|
|
$id = $params['id'];
|
|
return $this->getRecordService()->follow($id);
|
|
}
|
|
|
|
public function actionUnfollow($params, $data, $request)
|
|
{
|
|
if (!$request->isDelete()) {
|
|
throw new BadRequest();
|
|
}
|
|
if (!$this->getAcl()->check($this->name, 'read')) {
|
|
throw new Forbidden();
|
|
}
|
|
$id = $params['id'];
|
|
return $this->getRecordService()->unfollow($id);
|
|
}
|
|
|
|
public function actionMerge($params, $data, $request)
|
|
{
|
|
if (!$request->isPost()) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (empty($data['targetId']) || empty($data['sourceIds']) || !is_array($data['sourceIds']) || !($data['attributes'] instanceof \StdClass)) {
|
|
throw new BadRequest();
|
|
}
|
|
$targetId = $data['targetId'];
|
|
$sourceIds = $data['sourceIds'];
|
|
$attributes = get_object_vars($data['attributes']);
|
|
|
|
if (!$this->getAcl()->check($this->name, 'edit')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
return $this->getRecordService()->merge($targetId, $sourceIds, $attributes);
|
|
}
|
|
|
|
public function postActionGetDuplicateAttributes($params, $data, $request)
|
|
{
|
|
if (empty($data['id'])) {
|
|
throw new BadRequest();
|
|
}
|
|
|
|
if (!$this->getAcl()->check($this->name, 'create')) {
|
|
throw new Forbidden();
|
|
}
|
|
if (!$this->getAcl()->check($this->name, 'read')) {
|
|
throw new Forbidden();
|
|
}
|
|
|
|
return $this->getRecordService()->getDuplicateAttributes($data['id']);
|
|
}
|
|
}
|
|
|