PublishableExtension::updateQueryBuilderForUnauthorizedUsers() - Code Metrics - Inspection of "File support (#50)" - components-web-app/api-components-bundle - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — feature/publishable ( c26268...7bd202 )

by Daniel

created 2020-04-29 17:27 UTC

updateQueryBuilderForUnauthorizedUsers() A

↳ Parent: PublishableExtension

Complexity

Conditions	1
Paths	1

Size

Total Lines	7
Code Lines	5

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	0
CRAP Score	2

Importance

Changes

Metric	Value
eloc	5
c	0
b	0
f	0
dl	0
loc	7
ccs	0
cts	5
cp	0
rs	10
cc	1
nc	1
nop	2
crap	2

<?php

/*
 * This file is part of the Silverback API Component Bundle Project
 *
 * (c) Daniel West <[email protected]>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

declare(strict_types=1);

namespace Silverback\ApiComponentBundle\Doctrine\Extension\ORM;

use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\ContextAwareQueryCollectionExtensionInterface;
use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\QueryItemExtensionInterface;
use ApiPlatform\Core\Bridge\Doctrine\Orm\Util\QueryNameGeneratorInterface;
use Doctrine\ORM\EntityRepository;
use Doctrine\ORM\QueryBuilder;
use Doctrine\Persistence\ManagerRegistry;
use Silverback\ApiComponentBundle\Annotation\Publishable;
use Silverback\ApiComponentBundle\Helper\PublishableHelper;
use Symfony\Component\HttpFoundation\RequestStack;

/**
 * @author Vincent Chalamon <[email protected]>
 */
final class PublishableExtension implements QueryItemExtensionInterface, ContextAwareQueryCollectionExtensionInterface
{
    private PublishableHelper $publishableHelper;
    private RequestStack $requestStack;
    private ManagerRegistry $registry;
    private ?Publishable $configuration = null;

    public function __construct(PublishableHelper $publishableHelper, RequestStack $requestStack, ManagerRegistry $registry)
    {
        $this->publishableHelper = $publishableHelper;
        $this->requestStack = $requestStack;
        $this->registry = $registry;
    }

    public function applyToItem(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, array $identifiers, string $operationName = null, array $context = []): void
    {
        $configuration = $this->getConfiguration($resourceClass);

        if (!$configuration || !$this->requestStack->getCurrentRequest()) {
            return;
        }

        if (!$this->isDraftRequest($context)) {
            // User has no access to draft object
            $this->updateQueryBuilderForUnauthorizedUsers($queryBuilder, $configuration);

            return;
        }

        $alias = $queryBuilder->getRootAliases()[0];

        // (o.publishedResource = :id OR o.id = :id) ORDER BY o.publishedResource IS NULL LIMIT 1
        $criteriaReset = false;
        foreach ($identifiers as $identifier => $value) {
            $predicates = $queryBuilder->expr()->orX(
                $queryBuilder->expr()->eq("$alias.$configuration->associationName", ":id_$identifier"),
                $queryBuilder->expr()->eq("$alias.$identifier", ":id_$identifier"),
            );

            // Reset queryBuilder to prevent an invalid DQL
            if (!$criteriaReset) {
                $queryBuilder->where($predicates);
                $criteriaReset = true;
            } else {
                $queryBuilder->andWhere($predicates);
            }
            $queryBuilder->setParameter("id_$identifier", $value);
        }

        $queryBuilder->addSelect("CASE WHEN $alias.$configuration->associationName IS NULL THEN 1 ELSE 0 END AS HIDDEN assocNameSort");
        $queryBuilder->orderBy('assocNameSort', 'ASC');
        $queryBuilder->setMaxResults(1);
    }

    public function applyToCollection(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, string $operationName = null, array $context = []): void
    {
        if (!$configuration = $this->getConfiguration($resourceClass)) {
            return;
        }

        if (!$this->isDraftRequest($context)) {
            // User has no access to draft object
            $this->updateQueryBuilderForUnauthorizedUsers($queryBuilder, $configuration);

            return;
        }

        $alias = $queryBuilder->getRootAliases()[0];
        $identifiers = $this->registry->getManagerForClass($resourceClass)->getClassMetadata($resourceClass)->getIdentifier();
        $dql = $this->getDQL($configuration, $resourceClass);

        // o.id NOT IN (SELECT p.publishedResource FROM {table} t WHERE t.publishedResource IS NOT NULL)
        foreach ($identifiers as $identifier) {
            $queryBuilder->andWhere($queryBuilder->expr()->notIn("$alias.$identifier", $dql));
        }
    }

    private function getDQL(Publishable $configuration, string $resourceClass): string
    {
        /** @var EntityRepository $repository */
        $repository = $this->registry->getManagerForClass($resourceClass)->getRepository($resourceClass);
        $queryBuilder = $repository->createQueryBuilder('o2');

        return $queryBuilder
            ->select("IDENTITY(o2.$configuration->associationName)")
            ->where($queryBuilder->expr()->isNotNull("o2.$configuration->associationName"))
            ->getDQL();
    }

    private function isDraftRequest(array $context): bool
    {
        return $this->publishableHelper->isGranted() && false === ($context['filters']['published'] ?? false);
    }

    private function updateQueryBuilderForUnauthorizedUsers(QueryBuilder $queryBuilder, Publishable $configuration): void
    {
        $alias = $queryBuilder->getRootAliases()[0];
        $queryBuilder
            ->andWhere("$alias.$configuration->fieldName IS NOT NULL")
            ->andWhere("$alias.$configuration->fieldName <= :currentTime")
            ->setParameter('currentTime', new \DateTimeImmutable());
    }

    private function getConfiguration(string $resourceClass): ?Publishable
    {
        if (!$this->configuration && ($this->publishableHelper->isConfigured($resourceClass))) {
            $this->configuration = $this->publishableHelper->getConfiguration($resourceClass);
        }

        return $this->configuration;
    }
}


1			<?php
2
3			/*
4			* This file is part of the Silverback API Component Bundle Project
5			*
6			* (c) Daniel West <[email protected]>
7			*
8			* For the full copyright and license information, please view the LICENSE
9			* file that was distributed with this source code.
10			*/
11
12			declare(strict_types=1);
13
14			namespace Silverback\ApiComponentBundle\Doctrine\Extension\ORM;
15
16			use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\ContextAwareQueryCollectionExtensionInterface;
17			use ApiPlatform\Core\Bridge\Doctrine\Orm\Extension\QueryItemExtensionInterface;
18			use ApiPlatform\Core\Bridge\Doctrine\Orm\Util\QueryNameGeneratorInterface;
19			use Doctrine\ORM\EntityRepository;
20			use Doctrine\ORM\QueryBuilder;
21			use Doctrine\Persistence\ManagerRegistry;
22			use Silverback\ApiComponentBundle\Annotation\Publishable;
23			use Silverback\ApiComponentBundle\Helper\PublishableHelper;
24			use Symfony\Component\HttpFoundation\RequestStack;
25
26			/**
27			* @author Vincent Chalamon <[email protected]>
28			*/
29			final class PublishableExtension implements QueryItemExtensionInterface, ContextAwareQueryCollectionExtensionInterface
30			{
31			private PublishableHelper $publishableHelper;
32			private RequestStack $requestStack;
33			private ManagerRegistry $registry;
34			private ?Publishable $configuration = null;
35
36			public function __construct(PublishableHelper $publishableHelper, RequestStack $requestStack, ManagerRegistry $registry)
37			{
38			$this->publishableHelper = $publishableHelper;
39			$this->requestStack = $requestStack;
40			$this->registry = $registry;
41			}
42
43			public function applyToItem(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, array $identifiers, string $operationName = null, array $context = []): void
44			{
45			$configuration = $this->getConfiguration($resourceClass);
46
47			if (!$configuration \|\| !$this->requestStack->getCurrentRequest()) {
48			return;
49			}
50
51			if (!$this->isDraftRequest($context)) {
52			// User has no access to draft object
53			$this->updateQueryBuilderForUnauthorizedUsers($queryBuilder, $configuration);
54
55			return;
56			}
57
58			$alias = $queryBuilder->getRootAliases()[0];
59
60			// (o.publishedResource = :id OR o.id = :id) ORDER BY o.publishedResource IS NULL LIMIT 1
61			$criteriaReset = false;
62			foreach ($identifiers as $identifier => $value) {
63			$predicates = $queryBuilder->expr()->orX(
64			$queryBuilder->expr()->eq("$alias.$configuration->associationName", ":id_$identifier"),
65			$queryBuilder->expr()->eq("$alias.$identifier", ":id_$identifier"),
66			);
67
68			// Reset queryBuilder to prevent an invalid DQL
69			if (!$criteriaReset) {
70			$queryBuilder->where($predicates);
71			$criteriaReset = true;
72			} else {
73			$queryBuilder->andWhere($predicates);
74			}
75			$queryBuilder->setParameter("id_$identifier", $value);
76			}
77
78			$queryBuilder->addSelect("CASE WHEN $alias.$configuration->associationName IS NULL THEN 1 ELSE 0 END AS HIDDEN assocNameSort");
79			$queryBuilder->orderBy('assocNameSort', 'ASC');
80			$queryBuilder->setMaxResults(1);
81			}
82
83			public function applyToCollection(QueryBuilder $queryBuilder, QueryNameGeneratorInterface $queryNameGenerator, string $resourceClass, string $operationName = null, array $context = []): void
84			{
85			if (!$configuration = $this->getConfiguration($resourceClass)) {
86			return;
87			}
88
89			if (!$this->isDraftRequest($context)) {
90			// User has no access to draft object
91			$this->updateQueryBuilderForUnauthorizedUsers($queryBuilder, $configuration);
92
93			return;
94			}
95
96			$alias = $queryBuilder->getRootAliases()[0];
97			$identifiers = $this->registry->getManagerForClass($resourceClass)->getClassMetadata($resourceClass)->getIdentifier();
98			$dql = $this->getDQL($configuration, $resourceClass);
99
100			// o.id NOT IN (SELECT p.publishedResource FROM {table} t WHERE t.publishedResource IS NOT NULL)
101			foreach ($identifiers as $identifier) {
102			$queryBuilder->andWhere($queryBuilder->expr()->notIn("$alias.$identifier", $dql));
103			}
104			}
105
106			private function getDQL(Publishable $configuration, string $resourceClass): string
107			{
108			/** @var EntityRepository $repository */
109			$repository = $this->registry->getManagerForClass($resourceClass)->getRepository($resourceClass);
110			$queryBuilder = $repository->createQueryBuilder('o2');
111
112			return $queryBuilder
113			->select("IDENTITY(o2.$configuration->associationName)")
114			->where($queryBuilder->expr()->isNotNull("o2.$configuration->associationName"))
115			->getDQL();
116			}
117
118			private function isDraftRequest(array $context): bool
119			{
120			return $this->publishableHelper->isGranted() && false === ($context['filters']['published'] ?? false);
121			}
122
123			private function updateQueryBuilderForUnauthorizedUsers(QueryBuilder $queryBuilder, Publishable $configuration): void
124			{
125			$alias = $queryBuilder->getRootAliases()[0];
126			$queryBuilder
127			->andWhere("$alias.$configuration->fieldName IS NOT NULL")
128			->andWhere("$alias.$configuration->fieldName <= :currentTime")
129			->setParameter('currentTime', new \DateTimeImmutable());
130			}
131
132			private function getConfiguration(string $resourceClass): ?Publishable
133			{
134			if (!$this->configuration && ($this->publishableHelper->isConfigured($resourceClass))) {
135			$this->configuration = $this->publishableHelper->getConfiguration($resourceClass);
136			}
137
138			return $this->configuration;
139			}
140			}
141

components-web-app / api-components-bundle

Push — feature/publishable ( c26268...7bd202 )

updateQueryBuilderForUnauthorizedUsers() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like