wallabag/src/Wallabag/ApiBundle/Controller/UserRestController.php

<?php

namespace Wallabag\ApiBundle\Controller;

use FOS\UserBundle\Event\UserEvent;
use FOS\UserBundle\FOSUserEvents;
use JMS\Serializer\SerializationContext;
use Nelmio\ApiDocBundle\Annotation\ApiDoc;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\JsonResponse;
use Wallabag\UserBundle\Entity\User;

class UserRestController extends WallabagRestController
{
    /**
     * Retrieve current logged in user informations.
     *
     * @ApiDoc()
     *
     * @return JsonResponse
     */
    public function getUserAction()
    {
        $this->validateAuthentication();

        return $this->sendUser($this->getUser());
    }

    /**
     * Register an user.
     *
     * @ApiDoc(
     *      requirements={
     *          {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},
     *          {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},
     *          {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}
     *      }
     * )
     *
     * @todo Make this method (or the whole API) accessible only through https
     *
     * @return JsonResponse
     */
    public function putUserAction(Request $request)
    {
        if (!$this->container->getParameter('fosuser_registration')) {
            $json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');

            return (new JsonResponse())->setJson($json)->setStatusCode(403);
        }

        $userManager = $this->get('fos_user.user_manager');
        $user = $userManager->createUser();
        // enable created user by default
        $user->setEnabled(true);

        $form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [
            'csrf_protection' => false,
        ]);

        // simulate form submission
        $form->submit([
            'username' => $request->request->get('username'),
            'plainPassword' => [
                'first' => $request->request->get('password'),
                'second' => $request->request->get('password'),
            ],
            'email' => $request->request->get('email'),
        ]);

        if ($form->isSubmitted() && false === $form->isValid()) {
            $view = $this->view($form, 400);
            $view->setFormat('json');

            // handle errors in a more beautiful way than the default view
            $data = json_decode($this->handleView($view)->getContent(), true)['children'];
            $errors = [];

            if (isset($data['username']['errors'])) {
                $errors['username'] = $this->translateErrors($data['username']['errors']);
            }

            if (isset($data['email']['errors'])) {
                $errors['email'] = $this->translateErrors($data['email']['errors']);
            }

            if (isset($data['plainPassword']['children']['first']['errors'])) {
                $errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);
            }

            $json = $this->get('serializer')->serialize(['error' => $errors], 'json');

            return (new JsonResponse())->setJson($json)->setStatusCode(400);
        }

        $userManager->updateUser($user);

        // dispatch a created event so the associated config will be created
        $event = new UserEvent($user, $request);
        $this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);

        return $this->sendUser($user);
    }

    /**
     * Send user response.
     *
     * @param User $user
     *
     * @return JsonResponse
     */
    private function sendUser(User $user)
    {
        $json = $this->get('serializer')->serialize(
            $user,
            'json',
            SerializationContext::create()->setGroups(['user_api'])
        );

        return (new JsonResponse())->setJson($json);
    }

    /**
     * Translate errors message.
     *
     * @param array $errors
     *
     * @return array
     */
    private function translateErrors($errors)
    {
        $translatedErrors = [];
        foreach ($errors as $error) {
            $translatedErrors[] = $this->get('translator')->trans($error);
        }

        return $translatedErrors;
    }
}
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`<?php`

			`namespace Wallabag\ApiBundle\Controller;`

			`use FOS\UserBundle\Event\UserEvent;`
			`use FOS\UserBundle\FOSUserEvents;`
			`use JMS\Serializer\SerializationContext;`
			`use Nelmio\ApiDocBundle\Annotation\ApiDoc;`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`use Symfony\Component\HttpFoundation\Request;`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`use Symfony\Component\HttpFoundation\JsonResponse;`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`use Wallabag\UserBundle\Entity\User;`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
			`class UserRestController extends WallabagRestController`
			`{`
			`/**`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`* Retrieve current logged in user informations.`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`*`
			`* @ApiDoc()`
			`*`
			`* @return JsonResponse`
			`*/`
			`public function getUserAction()`
			`{`
			`$this->validateAuthentication();`

Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`return $this->sendUser($this->getUser());`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`}`

			`/**`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`* Register an user.`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`*`
			`* @ApiDoc(`
			`* requirements={`
			`* {"name"="username", "dataType"="string", "required"=true, "description"="The user's username"},`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`* {"name"="password", "dataType"="string", "required"=true, "description"="The user's password"},`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`* {"name"="email", "dataType"="string", "required"=true, "description"="The user's email"}`
			`* }`
			`* )`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`*`
			`* @todo Make this method (or the whole API) accessible only through https`
			`*`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`* @return JsonResponse`
			`*/`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`public function putUserAction(Request $request)`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`{`
			`if (!$this->container->getParameter('fosuser_registration')) {`
			`$json = $this->get('serializer')->serialize(['error' => "Server doesn't allow registrations"], 'json');`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`return (new JsonResponse())->setJson($json)->setStatusCode(403);`
			`}`

Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`$userManager = $this->get('fos_user.user_manager');`
			`$user = $userManager->createUser();`
			`// enable created user by default`
			`$user->setEnabled(true);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`$form = $this->createForm('Wallabag\UserBundle\Form\NewUserType', $user, [`
			`'csrf_protection' => false,`
			`]);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`// simulate form submission`
			`$form->submit([`
			`'username' => $request->request->get('username'),`
			`'plainPassword' => [`
			`'first' => $request->request->get('password'),`
			`'second' => $request->request->get('password'),`
			`],`
			`'email' => $request->request->get('email'),`
			`]);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`if ($form->isSubmitted() && false === $form->isValid()) {`
			`$view = $this->view($form, 400);`
			`$view->setFormat('json');`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`// handle errors in a more beautiful way than the default view`
			`$data = json_decode($this->handleView($view)->getContent(), true)['children'];`
			`$errors = [];`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`if (isset($data['username']['errors'])) {`
			`$errors['username'] = $this->translateErrors($data['username']['errors']);`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`if (isset($data['email']['errors'])) {`
			`$errors['email'] = $this->translateErrors($data['email']['errors']);`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`if (isset($data['plainPassword']['children']['first']['errors'])) {`
			`$errors['password'] = $this->translateErrors($data['plainPassword']['children']['first']['errors']);`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`$json = $this->get('serializer')->serialize(['error' => $errors], 'json');`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`return (new JsonResponse())->setJson($json)->setStatusCode(400);`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`$userManager->updateUser($user);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
			`// dispatch a created event so the associated config will be created`
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`$event = new UserEvent($user, $request);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`$this->get('event_dispatcher')->dispatch(FOSUserEvents::USER_CREATED, $event);`

Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`return $this->sendUser($user);`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`/**`
			`* Send user response.`
			`*`
			`* @param User $user`
			`*`
			`* @return JsonResponse`
			`*/`
			`private function sendUser(User $user)`
			`{`
			`$json = $this->get('serializer')->serialize(`
			`$user,`
			`'json',`
			`SerializationContext::create()->setGroups(['user_api'])`
			`);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00
Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`return (new JsonResponse())->setJson($json);`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`}`

Re-use `NewUserType` to validate registration The only ugly things is how we handle error by generating the view and then parse the content to retrieve all errors… Fix exposition fields in User entity 2017-05-30 05:56:01 +00:00			`/**`
			`* Translate errors message.`
			`*`
			`* @param array $errors`
			`*`
			`* @return array`
			`*/`
			`private function translateErrors($errors)`
			`{`
			`$translatedErrors = [];`
			`foreach ($errors as $error) {`
			`$translatedErrors[] = $this->get('translator')->trans($error);`
			`}`

			`return $translatedErrors;`
			`}`
WIP Signed-off-by: Thomas Citharel <tcit@tcit.fr> 2017-04-29 17:22:50 +00:00			`}`