src/Controller/Rest/CourseRestController.php line 20

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Rest;
  5. use App\Entity\Course;
  6. use App\Repository\CourseFieldRepository;
  7. use App\Repository\CourseRepository;
  8. use Doctrine\Common\Collections\ArrayCollection;
  9. use Doctrine\DBAL\Connection;
  10. use FOS\RestBundle\Controller\Annotations\QueryParam;
  11. use FOS\RestBundle\Controller\Annotations\View;
  12. use FOS\RestBundle\Request\ParamFetcher;
  13. use Nelmio\ApiDocBundle\Annotation\Model;
  14. use Swagger\Annotations as SWG;
  15. use Symfony\Component\Routing\Annotation\Route;
  17. /**
  18.  * @Route("/rest/course")
  19.  */
  20. class CourseRestController extends AbstractRestController
  21. {
  22.     /**
  23.      * @Route("/", name="rest_course_index", methods="GET")
  24.      *
  25.      * @SWG\Get(
  26.      *     produces={"application/json"},
  27.      *
  28.      *     @SWG\Parameter(name="limit", in="query", type="integer"),
  29.      *     @SWG\Parameter(name="offset", in="query", type="integer"),
  30.      * )
  31.      *
  32.      * @QueryParam(
  33.      *     name="order",
  34.      *     requirements="asc|desc",
  35.      *     default="asc",
  36.      *     description="Possible values: asc|desc",
  37.      * )
  38.      * @QueryParam(
  39.      *     name="orderby",
  40.      *     requirements="start|title|price|number|materialCost|targetAgeMin|targetAgeMax",
  41.      *     default="start",
  42.      *     description="Possible values: start|title|price|number|materialCost|targetAgeMin|targetAgeMax",
  43.      * )
  44.      * @QueryParam(
  45.      *     name="limit",
  46.      *     requirements="\d+",
  47.      *     default="100",
  48.      * )
  49.      * @QueryParam(
  50.      *     name="offset",
  51.      *     requirements="\d+",
  52.      *     default="0",
  53.      * )
  54.      * @QueryParam(
  55.      *     map=true,
  56.      *     name="speaker",
  57.      *     description="Array of speaker ids.",
  58.      *     requirements="\d+",
  59.      *     default="0",
  60.      * )
  61.      * @QueryParam(
  62.      *     map=true,
  63.      *     name="venue",
  64.      *     description="Array of venue ids.",
  65.      *     requirements="\d+",
  66.      *     default="0",
  67.      * )
  68.      * @QueryParam(
  69.      *     map=true,
  70.      *     name="course-series",
  71.      *     description="Array of course-series ids.",
  72.      *     requirements="\d+",
  73.      *     default="0",
  74.      * )
  75.      * @QueryParam(
  76.      *     map=true,
  77.      *     name="course-nature",
  78.      *     description="Array of course natures. Possible values: Course, CourseTemplate, CourseSubscription.",
  79.      *     default=null,
  80.      * )
  81.      * @QueryParam(
  82.      *     map=true,
  83.      *     name="categories",
  84.      *     description="Array of category ids.",
  85.      *     requirements="\d+",
  86.      *     default="0",
  87.      * )
  88.      * @QueryParam(
  89.      *     name="showFields",
  90.      *     description="show additional course fields",
  91.      *     default="1"
  92.      * )
  93.      * @QueryParam(
  94.      *     map=true,
  95.      *     name="courseTypes",
  96.      *     description="Array of courseType ids.",
  97.      *     requirements="\d+",
  98.      *     default="0",
  99.      * )
  100.      * @QueryParam(
  101.      *     name="search",
  102.      *     default="",
  103.      *     description="Searches these fields: course title, subtitle, description, number | venue name, city, street"
  104.      * )
  105.      * @QueryParam(
  106.      *     name="isBookable",
  107.      *     default="0",
  108.      *     description="Only returns bookable courses"
  109.      * )
  110.      * @QueryParam(
  111.      *     name="startAfterDate",
  112.      *     default="",
  113.      *     description="Only returns courses that start after given date"
  114.      * )
  115.      * @QueryParam(
  116.      *     name="withOccurrences",
  117.      *     default="1",
  118.      *     description="Return courses with occurrences"
  119.      * )
  120.      *  @QueryParam(
  121.      *     map=true,
  122.      *     name="withProvider",
  123.      *     default="1",
  124.      *     description="Return courses with provider"
  125.      * )
  126.      *
  127.      * @SWG\Response(
  128.      *     response=200,
  129.      *     description="Returns the overview of course items as json.",
  130.      *
  131.      *     @SWG\Schema(
  132.      *         type="array",
  133.      *
  134.      *         @SWG\Items(ref=@Model(type=Course::class, groups={"public"}))
  135.      *     )
  136.      * )
  137.      *
  138.      * @SWG\Tag(name="rest")
  139.      *
  140.      * @View(serializerGroups={"public"})
  141.      */
  142.     public function index(ParamFetcher $paramFetcherCourseRepository $courseRepositoryCourseFieldRepository $courseFieldRepository)
  143.     {
  144.         $order $paramFetcher->get('order');
  145.         $orderby $paramFetcher->get('orderby');
  146.         $limit $paramFetcher->get('limit');
  147.         $offset $paramFetcher->get('offset');
  148.         $speaker $paramFetcher->get('speaker');
  149.         $venue $paramFetcher->get('venue');
  150.         $courseSeries $paramFetcher->get('course-series');
  151.         $categories $paramFetcher->get('categories');
  152.         $search $paramFetcher->get('search');
  153.         $courseNature $paramFetcher->get('course-nature');
  154.         $courseTypes $paramFetcher->get('courseTypes');
  155.         $isBookable $paramFetcher->get('isBookable');
  156.         $startAfterDate $paramFetcher->get('startAfterDate');
  157.         $showFields $paramFetcher->get('showFields');
  158.         $withOccurrences $paramFetcher->get('withOccurrences');
  159.         $withProvider $paramFetcher->get('withProvider');
  160.         $filters = ['published' => true];
  161.         $filters['endAfterDate'] = new \DateTime();
  162.         if (!empty($speaker)) {
  163.             $filters['speaker'] = $speaker;
  164.         }
  165.         if (!empty($venue)) {
  166.             $filters['venue'] = $venue;
  167.         }
  168.         if (!empty($courseSeries)) {
  169.             $filters['courseSeries'] = $courseSeries;
  170.         }
  171.         if (!empty($categories)) {
  172.             $filters['categories'] = $categories;
  173.         }
  174.         if (!empty($courseTypes)) {
  175.             $filters['courseTypes'] = $courseTypes;
  176.         }
  177.         if (!empty($search)) {
  178.             $filters['search'] = $search;
  179.         }
  180.         if (!empty($courseNature)) {
  181.             $filters['courseNature'] = $courseNature;
  182.         }
  183.         if (!empty($isBookable)) {
  184.             $filters['isBookable'] = $isBookable;
  185.         }
  186.         if (!empty($startAfterDate)) {
  187.             $filters['startAfterDate'] = $startAfterDate;
  188.         }
  189.         if (!empty($withOccurrences)) {
  190.             $filters['withOccurrences'] = $withOccurrences;
  191.         }
  192.         if (!empty($withProvider)) {
  193.             $filters['withProvider'] = true// sorgt für JOIN + addSelect im Repository
  194.         }
  195.         $courses $courseRepository->getCoursesByClient($this->getCurrentClient(), $limit$offset$order$orderbynullnull$courseTypes$filters);
  196.         if (empty($paramFetcher->get('withOccurrences'))) {
  197.             foreach ($courses as $course) {
  198.                 $course->setOccurrences(null);
  199.                 $course->setFields($courseFieldRepository->getFieldsWithxCourseId($course->getId()));
  200.             }
  201.         } else {
  202.             foreach ($courses as $course) {
  203.                 $course->setOccurrences($course->getOccurrences(true));
  204.                 $course->setFields($courseFieldRepository->getFieldsWithxCourseId($course->getId()));
  205.             }
  206.         }
  207.         foreach ($courses as $c) {
  208.             error_log(sprintf('[REST index] course #%d providers=%d'$c->getId(), $c->getCourseProviders()->count()));
  209.         }
  211.         return $courses;
  212.     }
  214.     /**
  215.      * @Route("/{id}", name="rest_course_show", methods="GET", requirements={"id"="\d+"})
  216.      *
  217.      * @SWG\Get(
  218.      *     produces={"application/json"},
  219.      * )
  220.      *
  221.      * @SWG\Parameter(name="id", in="path", required=true, type="integer")
  222.      *
  223.      * @QueryParam(
  224.      *     name="showPairings",
  225.      *     description="show possible slot pairings",
  226.      *     default="0"
  227.      * )
  228.      * @QueryParam(
  229.      *     name="showFields",
  230.      *     description="show additional course fields",
  231.      *     default="1"
  232.      * )
  233.      * @QueryParam(
  234.      *     name="isBookable",
  235.      *     default="1",
  236.      *     description="Only returns bookable courses"
  237.      * )
  238.      *  @QueryParam(
  239.      *     name="withOccurrences",
  240.      *     default="1",
  241.      *     description="Return courses with occurrences"
  242.      * )
  243.      *  @QueryParam(
  244.      *     map=true,
  245.      *     name="withProvider",
  246.      *     default="1",
  247.      *     description="Return courses with provider"
  248.      * )
  249.      *
  250.      * @SWG\Response(
  251.      *     response=200,
  252.      *     description="Returns the course by given id as json.",
  253.      *
  254.      *     @Model(type=Course::class, groups={"public", "detail"})
  255.      * )
  256.      *
  257.      * @SWG\Tag(name="rest")
  258.      *
  259.      * @View(serializerGroups={"public",  "detail"})
  260.      */
  261.     public function show(
  262.         int $id,
  263.         ParamFetcher $paramFetcher,
  264.         CourseRepository $courseRepository,
  265.         Connection $connection,
  266.         CourseFieldRepository $courseFieldRepository,
  267.     ) {
  268.         // Load course tenant-aware
  269.         $course $courseRepository->findOneBy([
  270.             'id' => $id,
  271.             'client' => $this->getCurrentClient()
  272.         ]);
  273.         
  274.         if (!$course) {
  275.             throw $this->createNotFoundException('Course not found or access denied');
  276.         }
  277.         
  278.         // Security: Check client ownership via CourseSecurityVoter
  279.         $this->denyAccessUnlessGranted('view'$course);
  280.         $isBookable filter_var($paramFetcher->get('isBookable'true), FILTER_VALIDATE_BOOLEAN);
  281.         $showPairings $paramFetcher->get('showPairings');
  282.         $showFields $paramFetcher->get('showFields');
  283.         $withProvider $paramFetcher->get('withProvider');
  284.         // Filter occurences/times
  286.         if ('CourseTemplate' == $course->getCourseNature()) {
  287.             $occurrences = new ArrayCollection();
  288.             foreach ($course->getOccurrences() as $occurrence) {
  289.                 if (!= $occurrence->getPublished()) {
  290.                     continue;
  291.                 }
  293.                 // Load providers for this occurrence if requested
  294.                 if ($withProvider) {
  295.                     $providerSql 'SELECT p.* FROM provider p 
  296.                                           INNER JOIN course_provider cp ON p.id = cp.provider_id 
  297.                                           WHERE cp.course_occurrence_id = ?';
  298.                     $providers $connection->fetchAllAssociative($providerSql, [$occurrence->getId()]);
  299.                     $occurrence->setProviders($providers);
  300.                 }
  302.                 $times = new ArrayCollection();
  303.                 if ($showPairings) {
  304.                     $sql 'SELECT
  305.                                  cot.id,
  306.                                  cx.title,
  307.                                  cot.occurrenceId,
  308.                                  cot.start,    
  309.                                  cot.end,
  310.                                 
  311.                                  DATE_FORMAT(cot.start, "%Y-%m-%d") as date,
  312.                                  DATE_FORMAT(cot.start, "%H:%i") as startTime,
  313.                                  DATE_FORMAT(cot.end, "%H:%i") as endTime
  314.                             FROM 
  315.                                  course_occurrence co,
  316.                                  course_occurrence_time cot,
  317.                                  course c,
  318.                                  course cx
  319.                             WHERE
  320.              
  321.                                  co.id != '.$occurrence->getId().' AND
  322.                                  c.id = '.$occurrence->getCourse()->getId().' AND
  323.                                  cx.series_id = c.series_id AND
  324.                             
  325.                                  cx.id = co.courseId AND
  326.                                 cot.occurrenceId = co.id AND
  327.                                  co.published = 1';
  328.                     $result $connection->fetchAllAssociative($sql);
  329.                 }
  330.                 foreach ($occurrence->getTimes() as $time) {
  331.                     // Drop times which are not available or requestable
  332.                     if ('NotAvailable' == $time->getAvailability()) {
  333.                         continue;
  334.                     }
  335.                     // Drop times which are booked already
  336.                     if ('Booked' == $time->getAvailability()) {
  337.                         continue;
  338.                     }
  340.                     // Drop past times
  341.                     if ($time->getStart()->getTimestamp() < $_SERVER['REQUEST_TIME']) {
  342.                         continue;
  343.                     }
  344.                     if ($showPairings) {
  345.                         $date $time->getStart()->format('Y-m-d');
  346.                         $pairings = [];
  347.                         foreach ($result as $pairCheck) {
  348.                             // Skip times on different days
  349.                             if ($date != $pairCheck['date']) {
  350.                                 continue;
  351.                             }
  352.                             // Skip times that overlap
  353.                             if (!(strtotime($pairCheck['end']) <= $time->getStart()->getTimestamp() or strtotime($pairCheck['start']) >= $time->getEnd()->getTimestamp())) {
  354.                                 continue;
  355.                             }
  356.                             $pairings[] = $pairCheck;
  357.                         }
  358.                         $time->setPairings($pairings);
  359.                     }
  360.                     $times->add($time);
  361.                 }
  362.                 // Skip occurences with no available time slots left
  363.                 if (== $times->count()) {
  364.                     continue;
  365.                 }
  366.                 $occurrence->setTimes($times);
  367.                 $occurrence->setProviders($providers);
  368.                 $occurrences->add($occurrence);
  369.             }
  370.             $course->setOccurrences($occurrences);
  371.         } else {
  372.             $course->setOccurrences($course->getOccurrences(truefalse));
  373.         }
  374.         // Felder laden
  375.         $course->setFields($courseFieldRepository->getFieldsWithxCourseId($course->getId()));
  377.         return $course;
  378.     }
  380.     /**
  381.      * @Route("/{id}/related", name="rest_course_related", methods="GET", requirements={"id"="\d+"})
  382.      *
  383.      * @SWG\Get(
  384.      *     produces={"application/json"},
  385.      *
  386.      *     @SWG\Parameter(name="id", in="path", required=true, type="integer"),
  387.      *     @SWG\Parameter(name="limit", in="query", type="integer"),
  388.      *     @SWG\Parameter(name="offset", in="query", type="integer"),
  389.      *     @SWG\Parameter(name="showPastEvents", in="query", type="integer"),
  390.      * )
  391.      *
  392.      * @QueryParam(
  393.      *     name="order",
  394.      *     requirements="asc|desc",
  395.      *     default="asc",
  396.      *     description="Possible values: asc|desc",
  397.      * )
  398.      * @QueryParam(
  399.      *     name="orderby",
  400.      *     requirements="start|title|price|number|materialCost|targetAgeMin|targetAgeMax",
  401.      *     default="start",
  402.      *     description="Possible values: start|title|price|number|materialCost|targetAgeMin|targetAgeMax",
  403.      * )
  404.      * @QueryParam(
  405.      *     name="limit",
  406.      *     requirements="\d+",
  407.      *     default="3",
  408.      * )
  409.      * @QueryParam(
  410.      *     name="offset",
  411.      *     requirements="\d+",
  412.      *     default="0",
  413.      * )
  414.      * @QueryParam(
  415.      *     name="showPastEvents",
  416.      *     requirements="\d+",
  417.      *     default="0",
  418.      * )
  419.      *
  420.      * @SWG\Response(
  421.      *     response=200,
  422.      *     description="Returns course items related to given course as json.",
  423.      *
  424.      *     @SWG\Schema(
  425.      *         type="array",
  426.      *
  427.      *         @SWG\Items(ref=@Model(type=Course::class, groups={"public"}))
  428.      *     )
  429.      * )
  430.      *
  431.      * @SWG\Tag(name="rest")
  432.      *
  433.      * @View(serializerGroups={"public"})
  434.      */
  435.     public function related(int $idParamFetcher $paramFetcherCourseRepository $repo)
  436.     {
  437.         // Load course tenant-aware
  438.         $course $repo->findOneBy([
  439.             'id' => $id,
  440.             'client' => $this->getCurrentClient()
  441.         ]);
  442.         
  443.         if (!$course) {
  444.             throw $this->createNotFoundException('Course not found or access denied');
  445.         }
  446.         
  447.         // Security: Check client ownership
  448.         $this->denyAccessUnlessGranted('view'$course);
  449.         $order $paramFetcher->get('order');
  450.         $orderby $paramFetcher->get('orderby');
  451.         $limit $paramFetcher->get('limit');
  452.         $showPastEvents $paramFetcher->get('showPastEvents');
  453.         $offset $paramFetcher->get('offset');
  454.         $filters = ['published' => true'isBookable' => true];
  455.         if (empty($paramFetcher->get('showPastEvents'))) {
  456.             $filters['endAfterDate'] = new \DateTime();
  457.         }
  458.         if (== $showPastEvents) {
  459.             $date = new \DateTime();
  460.         } else {
  461.             null == $date;
  462.         }
  463.         // Security: Check client ownership via CourseSecurityVoter
  464.         $this->denyAccessUnlessGranted('view'$course);
  465.         $relatedCourses $repo->getCoursesByClient($this->getCurrentClient(), $limit$offset$order$orderby$date$course->getCategory(), null$filters);
  467.         return $relatedCourses;
  468.     }
  469. }