src/CoreBundle/DataProvider/Extension/PersonalFileExtension.php from chamilo/chamilo-lms

src/CoreBundle/DataProvider/Extension/PersonalFileExtension.php
Summary

Maintainability

0 mins
Test Coverage

Issues
<?php

/* For licensing terms, see /license.txt */

declare(strict_types=1);

namespace Chamilo\CoreBundle\DataProvider\Extension;

use ApiPlatform\Doctrine\Orm\Extension\QueryCollectionExtensionInterface;
use ApiPlatform\Doctrine\Orm\Util\QueryNameGeneratorInterface;
use ApiPlatform\Metadata\Operation;
use Chamilo\CoreBundle\Entity\PersonalFile;
use Chamilo\CoreBundle\Entity\ResourceLink;
use Chamilo\CoreBundle\Entity\User;
use Doctrine\ORM\QueryBuilder;
use Symfony\Bundle\SecurityBundle\Security;
use Symfony\Component\HttpFoundation\RequestStack;

// use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\QueryItemExtensionInterface;

/**
 * Extension is called when loading api/personal_files.json.
 */
final class PersonalFileExtension implements QueryCollectionExtensionInterface // , QueryItemExtensionInterface
{
    public function __construct(
        private readonly Security $security,
        private readonly RequestStack $requestStack
    ) {}

    public function applyToCollection(
        QueryBuilder $queryBuilder,
        QueryNameGeneratorInterface $queryNameGenerator,
        string $resourceClass,
        ?Operation $operation = null,
        array $context = []
    ): void {
        $this->addWhere($queryBuilder, $resourceClass);
    }

    /*public function applyToItem(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, array $identifiers, string $operationName = null, array $context = []): void
    {
        error_log('applyToItem');
        $this->addWhere($queryBuilder, $resourceClass);
    }*/

    private function addWhere(QueryBuilder $queryBuilder, string $resourceClass): void
    {
        if (PersonalFile::class !== $resourceClass) {
            return;
        }

        // Admin can see everything.
        /*if ($this->security->isGranted('ROLE_ADMIN')) {
            return;
        }*/

        /** @var User|null $user */
        if (null === $user = $this->security->getUser()) {
            return;
        }

        $request = $this->requestStack->getCurrentRequest();
        $isShared = 1 === (int) $request->get('shared');

        $rootAlias = $queryBuilder->getRootAliases()[0];
        $queryBuilder
            ->innerJoin("$rootAlias.resourceNode", 'node')
        ;

        if ($isShared) {
            $queryBuilder->leftJoin('node.resourceLinks', 'links');

            $queryBuilder
                ->andWhere('links.visibility = :visibility')
                ->setParameter('visibility', ResourceLink::VISIBILITY_PUBLISHED)
            ;

            $queryBuilder
                ->andWhere('links.user = :userLink')
                ->setParameter('userLink', $user->getId())
            ;
        } else {
            $queryBuilder->orWhere('node.creator = :current');
            $queryBuilder->setParameter('current', $user->getId());
        }
    }
}