mirror of
https://github.com/elyby/accounts.git
synced 2024-12-29 08:30:19 +05:30
119 lines
3.3 KiB
PHP
119 lines
3.3 KiB
PHP
<?php
|
|
namespace api\modules\internal\controllers;
|
|
|
|
use api\components\ApiUser\AccessControl;
|
|
use api\controllers\Controller;
|
|
use api\modules\internal\models\BanForm;
|
|
use api\modules\internal\models\PardonForm;
|
|
use common\models\Account;
|
|
use common\models\OauthScope as S;
|
|
use Yii;
|
|
use yii\helpers\ArrayHelper;
|
|
use yii\web\BadRequestHttpException;
|
|
use yii\web\NotFoundHttpException;
|
|
|
|
class AccountsController extends Controller {
|
|
|
|
public function behaviors() {
|
|
return ArrayHelper::merge(parent::behaviors(), [
|
|
'authenticator' => [
|
|
'user' => Yii::$app->apiUser,
|
|
],
|
|
'access' => [
|
|
'class' => AccessControl::class,
|
|
'rules' => [
|
|
[
|
|
'actions' => ['ban'],
|
|
'allow' => true,
|
|
'roles' => [S::ACCOUNT_BLOCK],
|
|
],
|
|
[
|
|
'actions' => ['info'],
|
|
'allow' => true,
|
|
'roles' => [S::INTERNAL_ACCOUNT_INFO],
|
|
],
|
|
],
|
|
],
|
|
]);
|
|
}
|
|
|
|
public function verbs() {
|
|
return [
|
|
'ban' => ['POST', 'DELETE'],
|
|
'info' => ['GET'],
|
|
];
|
|
}
|
|
|
|
public function actionBan(int $accountId) {
|
|
$account = $this->findAccount($accountId);
|
|
if (Yii::$app->request->isPost) {
|
|
return $this->banAccount($account);
|
|
} else {
|
|
return $this->pardonAccount($account);
|
|
}
|
|
}
|
|
|
|
public function actionInfo(int $id = null, string $username = null, string $uuid = null) {
|
|
if ($id !== null) {
|
|
$account = Account::findOne($id);
|
|
} elseif ($username !== null) {
|
|
$account = Account::findOne(['username' => $username]);
|
|
} elseif ($uuid !== null) {
|
|
$account = Account::findOne(['uuid' => $uuid]);
|
|
} else {
|
|
throw new BadRequestHttpException('One of the required get params must be presented.');
|
|
}
|
|
|
|
if ($account === null) {
|
|
throw new NotFoundHttpException('User by provided param not found.');
|
|
}
|
|
|
|
return [
|
|
'id' => $account->id,
|
|
'uuid' => $account->uuid,
|
|
'email' => $account->email,
|
|
'username' => $account->username,
|
|
];
|
|
}
|
|
|
|
private function banAccount(Account $account) {
|
|
$model = new BanForm($account);
|
|
$model->load(Yii::$app->request->post());
|
|
if (!$model->ban()) {
|
|
return [
|
|
'success' => false,
|
|
'errors' => $model->getFirstErrors(),
|
|
];
|
|
}
|
|
|
|
return [
|
|
'success' => true,
|
|
];
|
|
}
|
|
|
|
private function pardonAccount(Account $account) {
|
|
$model = new PardonForm($account);
|
|
$model->load(Yii::$app->request->post());
|
|
if (!$model->pardon()) {
|
|
return [
|
|
'success' => false,
|
|
'errors' => $model->getFirstErrors(),
|
|
];
|
|
}
|
|
|
|
return [
|
|
'success' => true,
|
|
];
|
|
}
|
|
|
|
private function findAccount(int $accountId): Account {
|
|
$account = Account::findOne($accountId);
|
|
if ($account === null) {
|
|
throw new NotFoundHttpException();
|
|
}
|
|
|
|
return $account;
|
|
}
|
|
|
|
}
|