صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
iapt-platform
/
mint
mirrorاز https://github.com/iapt-platform/mint.git
2
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
درخت: 5983a791d7
شاخه‌ها تگ‌ها
mint
/
api-v12
/
app
/
Http
/
Controllers
/
CollectionController.php

CollectionController.php 6.9 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205 
  1. <?php
    2. 

  2. 

  3. namespace App\Http\Controllers;
    4. 

  4. 

  5. use App\Models\Collection;
    6. 

  6. use Illuminate\Http\Request;
    7. 

  7. use Illuminate\Support\Str;
    8. 

  8. use Illuminate\Support\Facades\Log;
    9. 

  9. use App\Http\Api\AuthApi;
    10. 

  10. use App\Http\Api\StudioApi;
    11. 

  11. use App\Http\Resources\CollectionResource;
    12. 

  12. use App\Services\CollectionService;
    13. 

  13. use Illuminate\Support\Facades\DB;
    14. 

  14. use Illuminate\Database\Eloquent\Builder;
    15. 

  15. 

  16. class CollectionController extends Controller
    17. 

  17. {
    18. 

  18.     public function __construct(protected CollectionService $service) {}
    19. 

  19. 

  20.     public function index(Request $request)
    21. 

  21.     {
    22. 

  22.         try {
    23. 

  23.             $table = match ($request->get('view')) {
    24. 

  24.                 'studio_list' => $this->service->buildStudioListQuery(),
    25. 

  25.                 'studio'      => $this->buildStudioIndex($request),
    26. 

  26.                 'public'      => $this->service->buildPublicQuery(
    27. 

  27.                     $request->has('studio')
    28. 

  28.                         ? StudioApi::getIdByName($request->get('studio'))
    29. 

  29.                         : null
    30. 

  30.                 ),
    31. 

  31.                 default       => throw new \InvalidArgumentException('无法识别的view参数'),
    32. 

  32.             };
    33. 

  33.         } catch (\Illuminate\Auth\AuthenticationException $e) {
    34. 

  34.             return $this->error($e->getMessage(), 403, 403);
    35. 

  35.         } catch (\InvalidArgumentException $e) {
    36. 

  36.             return $this->error($e->getMessage(), 200, 200);
    37. 

  37.         }
    38. 

  38. 

  39.         if ($request->filled('search')) {
    40. 

  40.             $table = $table->where('title', 'like', '%' . $request->get('search') . '%');
    41. 

  41.         }
    42. 

  42. 

  43.         $count = $table->count();
    44. 

  44. 

  45.         if ($request->has('order') && $request->has('dir')) {
    46. 

  46.             $table = $table->orderBy($request->get('order'), $request->get('dir'));
    47. 

  47.         } else {
    48. 

  48.             $orderCol = $request->get('view') === 'studio_list' ? 'count' : 'updated_at';
    49. 

  49.             $table = $table->orderBy($orderCol, 'desc');
    50. 

  50.         }
    51. 

  51. 

  52.         $result = $table
    53. 

  53.             ->skip($request->get('offset', 0))
    54. 

  54.             ->take($request->get('limit', 1000))
    55. 

  55.             ->get();
    56. 

  56. 

  57.         return $this->ok([
    58. 

  58.             'rows'  => CollectionResource::collection($result),
    59. 

  59.             'count' => $count,
    60. 

  60.         ]);
    61. 

  61.     }
    62. 

  62. 

  63.     // studio 分支的鉴权逻辑留在 controller
    64. 

  64.     private function buildStudioIndex(Request $request): Builder
    65. 

  65.     {
    66. 

  66.         $user = AuthApi::current($request);
    67. 

  67.         if (!$user) {
    68. 

  68.             throw new \Illuminate\Auth\AuthenticationException(__('auth.failed'));
    69. 

  69.         }
    70. 

  70. 

  71.         $studioId = StudioApi::getIdByName($request->get('name'));
    72. 

  72.         if ($user['user_uid'] !== $studioId) {
    73. 

  73.             throw new \Illuminate\Auth\AuthenticationException(__('auth.failed'));
    74. 

  74.         }
    75. 

  75. 

  76.         return $this->service->buildStudioQuery(
    77. 

  77.             $user['user_uid'],
    78. 

  78.             $studioId,
    79. 

  79.             $request->get('view2', 'my')
    80. 

  80.         );
    81. 

  81.     }
    82. 

  82. 

  83.     public function showMyNumber(Request $request)
    84. 

  84.     {
    85. 

  85.         $result = $this->service->getMyNumber($request);
    86. 

  86. 

  87.         if (isset($result['error'])) {
    88. 

  88.             return $this->error($result['error'], $result['code'], $result['code']);
    89. 

  89.         }
    90. 

  90. 

  91.         return $this->ok($result['data']);
    92. 

  92.     }
    93. 

  93. 

  94.     public function store(Request $request)
    95. 

  95.     {
    96. 

  96.         $user = AuthApi::current($request);
    97. 

  97.         if (!$user) {
    98. 

  98.             return $this->error(__('auth.failed'), 401, 401);
    99. 

  99.         }
    100. 

  100. 

  101.         if ($user['user_uid'] !== StudioApi::getIdByName($request->get('studio'))) {
    102. 

  102.             return $this->error(__('auth.failed'), 403, 403);
    103. 

  103.         }
    104. 

  104. 

  105.         if (Collection::where('title', $request->get('title'))->where('owner', $user['user_uid'])->exists()) {
    106. 

  106.             return $this->error(__('validation.exists'), 200, 200);
    107. 

  107.         }
    108. 

  108. 

  109.         $newOne = new Collection;
    110. 

  110.         $newOne->id           = app('snowflake')->id();
    111. 

  111.         $newOne->uid          = Str::uuid();
    112. 

  112.         $newOne->title        = $request->get('title');
    113. 

  113.         $newOne->lang         = $request->get('lang');
    114. 

  114.         $newOne->article_list = '[]';
    115. 

  115.         $newOne->owner        = $user['user_uid'];
    116. 

  116.         $newOne->owner_id     = $user['user_id'];
    117. 

  117.         $newOne->editor_id    = $user['user_id'];
    118. 

  118.         $newOne->create_time  = time() * 1000;
    119. 

  119.         $newOne->modify_time  = time() * 1000;
    120. 

  120.         $newOne->save();
    121. 

  121. 

  122.         return $this->ok(new CollectionResource($newOne));
    123. 

  123.     }
    124. 

  124. 

  125.     public function show(Request $request, $id)
    126. 

  126.     {
    127. 

  127.         $result = Collection::where('uid', $id)->first();
    128. 

  128.         if (!$result) {
    129. 

  129.             Log::warning("没有查询到数据 id={$id}");
    130. 

  130.             return $this->error("没有查询到数据 id={$id}");
    131. 

  131.         }
    132. 

  132. 

  133.         if ($result->status < 30) {
    134. 

  134.             Log::info('私有文章,判断权限' . $id);
    135. 

  135.             $user = AuthApi::current($request);
    136. 

  136.             if (!$user) {
    137. 

  137.                 Log::warning('未登录');
    138. 

  138.                 return $this->error(__('auth.failed'), 403, 403);
    139. 

  139.             }
    140. 

  140. 

  141.             if ($user['user_uid'] !== $result->owner) {
    142. 

  142.                 Log::info($user['user_uid'] . '私有文章,判断权限' . $id);
    143. 

  143.                 if (!$this->service->userCanRead($user['user_uid'], $result)) {
    144. 

  144.                     Log::warning($user['user_uid'] . '没有读取权限');
    145. 

  145.                     return $this->error(__('auth.failed'), 403, 403);
    146. 

  146.                 }
    147. 

  147.             }
    148. 

  148.         }
    149. 

  149. 

  150.         $result->fullArticleList = true;
    151. 

  151.         return $this->ok(new CollectionResource($result));
    152. 

  152.     }
    153. 

  153. 

  154.     public function update(Request $request, string $id)
    155. 

  155.     {
    156. 

  156.         $collection = Collection::find($id);
    157. 

  157.         if (!$collection) {
    158. 

  158.             return $this->error('no recorder');
    159. 

  159.         }
    160. 

  160. 

  161.         $user = AuthApi::current($request);
    162. 

  162.         if (!$user) {
    163. 

  163.             return $this->error(__('auth.failed'), 401, 401);
    164. 

  164.         }
    165. 

  165. 

  166.         if (!$this->service->userCanEdit($user['user_uid'], $collection)) {
    167. 

  167.             return $this->error(__('auth.failed'), 403, 403);
    168. 

  168.         }
    169. 

  169. 

  170.         $collection->title           = $request->get('title');
    171. 

  171.         $collection->subtitle        = $request->get('subtitle');
    172. 

  172.         $collection->summary         = $request->get('summary');
    173. 

  173.         $collection->lang            = $request->get('lang');
    174. 

  174.         $collection->status          = $request->get('status');
    175. 

  175.         $collection->default_channel = $request->get('default_channel');
    176. 

  176.         $collection->modify_time     = time() * 1000;
    177. 

  177. 

  178.         if ($request->has('aritcle_list')) {
    179. 

  179.             $collection->article_list = json_encode($request->get('aritcle_list'));
    180. 

  180.         }
    181. 

  181. 

  182.         $collection->save();
    183. 

  183.         return $this->ok(new CollectionResource($collection));
    184. 

  184.     }
    185. 

  185. 

  186.     public function destroy(Request $request, string $id)
    187. 

  187.     {
    188. 

  188.         $user = AuthApi::current($request);
    189. 

  189.         if (!$user) {
    190. 

  190.             return $this->error(__('auth.failed'));
    191. 

  191.         }
    192. 

  192. 

  193.         $collection = Collection::find($id);
    194. 

  194.         if ($user['user_uid'] !== $collection['owner']) {
    195. 

  195.             return $this->error(__('auth.failed'));
    196. 

  196.         }
    197. 

  197. 

  198.         DB::transaction(function () use ($collection) {
    199. 

  199.             // TODO: 删除文集中的文章
    200. 

  200.             $collection->delete();
    201. 

  201.         });
    202. 

  202. 

  203.         return $this->ok(true);
    204. 

  204.     }
    205. 

  205. }
    206.