-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathUserController.php
More file actions
100 lines (81 loc) · 3.25 KB
/
Copy pathUserController.php
File metadata and controls
100 lines (81 loc) · 3.25 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
<?php
declare(strict_types=1);
namespace App\Controller\Admin;
use App\Entity\User;
use App\Enum\UserStatus;
use App\Repository\UserRepository;
use App\Security\Roles;
use App\Security\UserApproval;
use App\Security\Voter\ManageUserVoter;
use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\Attribute\Route;
use Symfony\Component\Security\Http\Attribute\IsGranted;
#[IsGranted(Roles::DOMAIN_MANAGER)]
final class UserController extends AbstractController
{
public function __construct(
private readonly UserRepository $userRepository,
private readonly UserApproval $userApproval,
) {
}
#[Route(path: '/admin/users', name: 'app_admin_users', methods: ['GET'])]
public function list(Request $request): Response
{
$actor = $this->currentUser();
$statusFilter = $this->resolveStatusFilter((string) $request->query->get('status', ''));
return $this->render('admin/user/list.html.twig', [
'users' => $this->userRepository->findVisibleTo($actor, $statusFilter),
'status_filter' => $statusFilter,
]);
}
#[Route(path: '/admin/users/pending', name: 'app_admin_users_pending', methods: ['GET'])]
public function pending(): Response
{
return $this->redirectToRoute('app_admin_users', ['status' => UserStatus::Pending->value]);
}
#[Route(path: '/admin/users/{id}/approve', name: 'app_admin_user_approve', methods: ['POST'], requirements: ['id' => '\d+'])]
#[IsGranted(ManageUserVoter::APPROVE, subject: 'user')]
public function approve(User $user, Request $request): Response
{
if (!$this->isCsrfTokenValid('admin-user-action', (string) $request->request->get('_token'))) {
throw $this->createAccessDeniedException();
}
$this->userApproval->approve($user);
$this->addFlash('success', 'admin.users.flash.approved');
return $this->redirectToBackUrl($request);
}
#[Route(path: '/admin/users/{id}/block', name: 'app_admin_user_block', methods: ['POST'], requirements: ['id' => '\d+'])]
#[IsGranted(ManageUserVoter::BLOCK, subject: 'user')]
public function block(User $user, Request $request): Response
{
if (!$this->isCsrfTokenValid('admin-user-action', (string) $request->request->get('_token'))) {
throw $this->createAccessDeniedException();
}
$this->userApproval->block($user);
$this->addFlash('success', 'admin.users.flash.blocked');
return $this->redirectToBackUrl($request);
}
private function currentUser(): User
{
$user = $this->getUser();
\assert($user instanceof User);
return $user;
}
private function resolveStatusFilter(string $raw): ?UserStatus
{
if ('' === $raw) {
return null;
}
return UserStatus::tryFrom($raw);
}
private function redirectToBackUrl(Request $request): Response
{
$back = (string) $request->request->get('back', '');
if (str_starts_with($back, '/admin/users')) {
return $this->redirect($back);
}
return $this->redirectToRoute('app_admin_users');
}
}