src/Diplix/KMGBundle/Controller/Service/Api2Controller.php line 189

Open in your IDE?
  1. <?php
  2. namespace Diplix\KMGBundle\Controller\Service;
  4. use Cocur\Slugify\Slugify;
  5. use Diplix\Commons\DataHandlingBundle\Entity\SysLogEntry;
  6. use Diplix\Commons\DataHandlingBundle\Repository\SysLogRepository;
  7. use Diplix\KMGBundle\Controller\Availability\AvailabilityController;
  8. use Diplix\KMGBundle\Entity\Accounting\Job;
  9. use Diplix\KMGBundle\Entity\Address;
  10. use Diplix\KMGBundle\Entity\Availability;
  11. use Diplix\KMGBundle\Entity\Dispatching\ChatMessage;
  12. use Diplix\KMGBundle\Entity\Dispatching\DispatchQueueItem;
  13. use Diplix\KMGBundle\Entity\File;
  14. use Diplix\KMGBundle\Entity\Order;
  15. use Diplix\KMGBundle\Entity\OrderStatus;
  16. use Diplix\KMGBundle\Entity\PaymentType;
  17. use Diplix\KMGBundle\Entity\PriceList;
  18. use Diplix\KMGBundle\Entity\Role;
  19. use Diplix\KMGBundle\Entity\User;
  20. use Diplix\KMGBundle\Exception\OrderValidationException;
  21. use Diplix\KMGBundle\Form\OrderForm;
  22. use Diplix\KMGBundle\Form\Util\FormErrorsSerializer;
  23. use Diplix\KMGBundle\Helper\ClientConfigProvider;
  24. use Diplix\KMGBundle\Message\GenerateQuittung;
  25. use Diplix\KMGBundle\PdfGeneration\JobPdf;
  26. use Diplix\KMGBundle\PriceCalculator\AbstractPriceCalculator;
  27. use Diplix\KMGBundle\Repository\AvailabilityRepository;
  28. use Diplix\KMGBundle\Repository\BasicRepository;
  29. use Diplix\KMGBundle\Repository\FileRepository;
  30. use Diplix\KMGBundle\Service\MobileNotifier;
  31. use Diplix\KMGBundle\Service\Notifier;
  32. use Diplix\KMGBundle\Service\OrderHandler;
  33. use Diplix\KMGBundle\Service\TaMiConnector;
  34. use Doctrine\ORM\EntityManagerInterface;
  35. use League\Flysystem\FilesystemOperator;
  36. use Symfony\Component\Form\FormError;
  37. use Symfony\Component\HttpFoundation\JsonResponse;
  38. use Symfony\Component\HttpFoundation\Request;
  39. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  40. use Symfony\Component\Messenger\MessageBusInterface;
  41. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  42. use Symfony\Component\PropertyAccess\PropertyAccess;
  43. use Symfony\Component\Routing\Exception\MethodNotAllowedException;
  44. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  46. class Api2Controller extends ServiceBaseController
  47. {
  48.     public const LOG_TYPE 'Api2';
  51.     protected function hasRole($role)
  52.     {
  53.         $R $this->user->getRoles(true);
  54.         /** @var Role $RR */
  55.         foreach ($R as $RR)
  56.         {
  57.             /** @noinspection TypeUnsafeComparisonInspection */
  58.             if ($RR->getRole() == $role) return true;
  59.         }
  60.         return false;
  61.     }
  62.     protected function parseAndAuth(Request $request)
  63.     {
  64.         $data $this->parseRequest($request);
  65.         $this->loadUser($data['login'],$data['password'],false);
  66.         // do not detach user -> deprecated and kills further ops which rely on objects with an association with that user (e.g. deviceTokens)
  67.         return $data;
  68.     }
  70.     protected function storeToken(array $req$source='')
  71.     {
  72.         SysLogRepository::logMessage(
  73.             $this->managerRegistry->getConnection(),
  74.             SysLogEntry::SYS_INFO,
  75.             sprintf('User#%d reported token "%s" for platform "%s" (%s)',$this->user->getId(), $req['fcm_token']??'-',$req['platform']??'-',$source)
  76.         );
  79.         if ( (isset($req['fcm_token']) && (strlen($req['fcm_token'])>1)) )
  80.         {
  81.             $token $req['fcm_token'];
  82.             $platform = isset($req['platform']) ? $req['platform'] : 'unknown platform';
  83.             $isNewToken $this->userRepo->addFcmTokenToUser($this->user->getId(), $token,$platform);
  84.             $logToken substr($token,0,4).'(...)'.substr($token,-4);
  85.             if ($isNewToken)
  86.                 SysLogRepository::logMessage(
  87.                     $this->managerRegistry->getConnection(),
  88.                     SysLogEntry::SYS_INFO,
  89.                     sprintf('User#%d stored a new FCM token "%s" for platform "%s"',$this->user->getId(),$logToken,$platform)
  90.                 );
  91.         }
  92.     }
  93.     public function storeFcmTokenAction(Request $request)
  94.     {
  95.         $req $this->parseAndAuth($request);
  96.         // auth successful at this point
  97.         $this->storeToken($req,"storeFcmTokenAction");
  98.         return new JsonResponse(['success' => true]);
  99.     }
  101.     public function __construct(
  102.         protected FileRepository $fileRepository,
  103.         protected OrderHandler $orderHandler,
  104.         protected Notifier $notifier,
  105.         protected MobileNotifier $mobileNotifier,
  106.         protected TaMiConnector $taMiConnector,
  107.         protected FilesystemOperator $uploadsFilesystem,
  108.         protected UserPasswordHasherInterface $hasher,
  109.         protected MessageBusInterface $bus,
  110.         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry,
  111.     )
  112.     {
  113.         parent::__construct($this->hasher,$this->managerRegistry);
  114.     }
  116.     public function indexAction(Request $request)
  117.     {
  118.         $req $this->parseAndAuth($request);
  119.         // auth successful at this point
  120.         $this->storeToken($req,"indexAction");
  121.         $res = [
  122.             'success' => true,
  123.             'user' => [
  124.                 'firstName' =>$this->user->getFirstName(),
  125.                 'lastName' =>$this->user->getLastName(),
  126.                 'email' =>$this->user->getEmail(),
  127.                 'id' =>$this->user->getId(),
  128.             ]
  129.         ];
  130.         $m $this->user->getMember();
  131.         if ($m !== null)
  132.         {
  133.             $res['member'] = [
  134.                 'name' => $m->getName(),
  135.                 'number' =>$m->getNumber(),
  136.                 'code' =>$m->getShortCode(),
  137.                 'id' =>$m->getId()
  138.             ];
  139.         }
  140.         $c $this->user->getCustomer();
  141.         if ($c !== null)
  142.         {
  143.             $res['customer'] = [
  144.                 'name' =>$c->getName(),
  145.                 'number' =>$c->getCustomerNo(),
  146.                 'id' =>$c->getId()
  147.             ];
  148.         }
  149.         return new JsonResponse($res);
  150.     }
  152.     public static function prepare4json(&$data,$humanReadable=true)
  153.     {
  154.         $data['customer'] =  $data['customer']['id'];
  155.         $data['beOwner'] =   $data['beOwner']['id'];
  156.         $data['assignedTo'] =   $data['assignedTo'] !== null $data['assignedTo']['id'] : 0;
  157.         $data['orderStatus'] = $data['orderStatus']['id'];
  158.         $data['orderTime'] = $data['orderTime']->format(self::DATE_FORMAT);
  159.         $data['paymentType'] = $humanReadable $data['paymentType']['name'] : $data['paymentType']['id'];;
  160.         $ft $data['flightTime'];
  161.         $data['flightTime'] = $ft != null $ft->format('H:i') : null;
  162.         for ($a=0$a$ac=count($data['addressList']); $a++)
  163.         {
  164.             $data['addressList'][$a]['beCreated'] = $data['addressList'][$a]['beCreated']->format(self::DATE_FORMAT);
  165.             $data['addressList'][$a]['beEdited'] = $data['addressList'][$a]['beEdited']  !== null $data['addressList'][$a]['beEdited']->format(self::DATE_FORMAT) : null;
  166.             unset($data['addressList'][$a]['beDeleted']);
  167.             unset($data['addressList'][$a]['creditCardNo']);
  168.             unset($data['addressList'][$a]['creditCardMonth']);
  169.             unset($data['addressList'][$a]['creditCardYear']);
  170.         }
  171.     }
  173.     public function singleOrderAction(Request $request)
  174.     {
  175.         $req $this->parseAndAuth($request);
  176.         $repo $this->managerRegistry->getRepository(Order::class);
  177.         //if ($this->user->getMember()===null) throw new \Exception('Fetching a single order is not enabled for your account.');
  178.         $data = [];
  179.         $item $repo->getSingleAsArray($req['id']);
  180.         if ($item!=null)
  181.         {
  182.             self::prepare4json($item);
  183.             $data[]= $item;
  184.         }
  185.         return new JsonResponse([   'success'   => true,
  186.             'data'      => $data
  187.         ]);
  188.     }
  190.     public function ordersAction(Request $request)
  191.     {
  192.         $req $this->parseAndAuth($request);
  193.         // get filters owned orders
  194.         $filterStatus array_key_exists('status',$req) ? $req['status'] : 0;
  195.         $from = (new \DateTime())->sub(new \DateInterval('P3M'));
  196.         $to = (new \DateTime())->add(new \DateInterval('P3M'));
  197.         $from array_key_exists('from',$req) ? new \DateTime($req['from']) : $from ;
  198.         $to array_key_exists('until',$req) ? new \DateTime($req['until']) : $to ;
  200.         $repo $this->managerRegistry->getRepository(Order::class);
  201.         if ($this->user->getMember()!==null)
  202.         {
  203.             $data $repo->findAllForOverview(
  204.                 null,
  205.                 0,
  206.                 $filterStatus,
  207.                 $from,
  208.                 $to,
  209.                 $this->user->getMember()->getId());
  210.         }
  211.         else
  212.         {
  213.             $filterUserList $this->userRepo->findUsersISubstitute($this->user);
  214.             $filterUserList[] = $this->user;
  215.             $filterCustomerId 0// 0 = no additional filtering - already done through userlist
  216.             // no superadmin or orderadmin filters at the moment
  217.             $data $repo->findAllForOverview(
  218.                 $filterUserList,
  219.                 $filterCustomerId,
  220.                 $filterStatus,
  221.                 $from,
  222.                 $to);
  223.         }
  224.         // pre-process joined table fields
  225.         $ic count($data);
  226.         for ($i=0;$i<$ic;$i++)
  227.         {
  228.             $this->prepare4json($data[$i]);
  229.         }
  230.         return new JsonResponse([   'success'   => true,
  231.             'from'      => $from,
  232.             'until'        => $to,
  233.             'data'      => $data
  234.         ]);
  235.     }
  237.     const CODE_MINE 1;
  238.     const CODE_NOT_MINE 2;
  240.     protected function mnLog($it,$msg,$isError=false,$details=[])
  241.     {
  242.         $itid = ($it instanceof DispatchQueueItem $it->getId() : ($it !== null ? (string)$it 'null'));
  243.         $this->managerRegistry
  244.             ->getRepository(SysLogEntry::class)
  245.             ->log(($isError SysLogEntry::SYS_ERROR SysLogEntry::SYS_INFO), MobileNotifier::LOG_TYPE$msg$details00$itid);
  246.     }
  248.     public function acceptOrDenyOrderAction(Request $request)
  249.     {
  250.         $repo $this->managerRegistry->getRepository(Order::class);
  251.         $dqi $this->managerRegistry->getRepository(DispatchQueueItem::class);
  252.         try {
  253.             $code self::CODE_NOT_MINE;
  254.             $req $this->parseAndAuth($request);
  255.             if (!in_array($req['action'],['accept','decline']))
  256.             {
  257.                 throw new \Exception('Unbekannte action.');
  258.             }
  259.             $this->managerRegistry->getManager()->transactional(function(EntityManagerInterface $em) use ($repo,$dqi,$req,&$code) {
  260.                 $order null;
  261.                 if (isset($req['id']))
  262.                 {
  263.                     $order $repo->findOneBy(['id'=>$req['id']]);
  264.                 }
  265.                 else
  266.                 {
  267.                     $order $repo->findOneBy(['orderId'=>$req['orderId']]);
  268.                 }
  270.                 $refMsg $dqi->findOneBy(['id'=>$req['reference'] ?? 'null']);
  271.                 if (($order->getAssignedTo()===null) || ($order->getAssignedTo()->getId() != $this->user->getMember()->getId()) )
  272.                 {
  273.                     throw new \Exception(/*var_export($req,true).*/sprintf('Diese Fahrt(#%d:%s) ist Ihnen(%s) nicht zugeordnet.',$order->getId(),$order->getOrderId(),$this->user->getMember()->getId()),self::CODE_NOT_MINE);
  274.                 }
  276.                 if ($req['action']==='accept')
  277.                 {
  278.                     $order->setAssignmentConfirmed(true$this->user);
  279.                     $order->setAssignmentStatus(Order::AS_NONE);
  280.                     $code self::CODE_MINE;
  281.                     if ($refMsg!==null)
  282.                     {
  283.                         $refMsg->setResponse(DispatchQueueItem::R_CONFIRMED);
  284.                     }
  285.                     $this->mnLog($refMsg,'Fahrt angenommen');
  286.                 }
  287.                 else
  288.                 if ($req['action']==='decline')
  289.                 {
  290.                     if ($order->isAssignmentConfirmed())
  291.                     {
  292.                         throw new \Exception('Fahrt wurde bereits bestätigt. Bitte rufen Sie an um Ă„nderungen vorzunehmen.',self::CODE_MINE);
  293.                     }
  295.                     if ($order->getOrderStatus()->getId()==OrderStatus::STATUS_VERMITTELT)
  296.                     {
  297.                         $osOffen $em->find(OrderStatus::class,OrderStatus::STATUS_OPEN);
  298.                         $order->setOrderStatus($osOffen);
  299.                     }
  300.                     $order->setAssignedTo(null);
  301.                     if ($order->getXchgStatus() !== Order::XCHG_RECEIVED_FROM_OTHER// falls Fahrt von Fremdsystem darf der Status nicht geändert werden
  302.                     {
  303.                         $order->setXchgStatus(Order::XCHG_NONE);
  304.                     }
  306.                     $order->setXchgTo(null);
  307.                     $order->setAssignmentStatus(Order::AS_LAST_ASSIGNMENT_DENIED);
  308.                     if ($refMsg!==null)
  309.                     {
  310.                         $refMsg->setResponse(DispatchQueueItem::R_REFUSED);
  311.                     }
  312.                     $this->mnLog($refMsg,'Fahrt abgelehnt');
  313.                 }
  314.             });
  315.             // TODO: notifications/orderhandler??
  316.             $order null;
  317.             if (isset($req['id']))
  318.             {
  319.                 $order $repo->findOneBy(['id'=>$req['id']]);
  320.             }
  321.             else
  322.             {
  323.                 $order $repo->findOneBy(['orderId'=>$req['orderId']]);
  324.             }
  326.             $this->notifier->triggerOrderUpdateForMember($order); // having this line in finally() crashes since entity manager is already closed when an error occurs above
  327.             return new JsonResponse([   'success'   => true'mine'=>($code == self::CODE_MINE) ]);
  328.         }
  329.         catch (\Throwable $ex)
  330.         {
  331.             SysLogRepository::logMessage($this->managerRegistry->getConnection(),SysLogEntry::SYS_ERROR'acceptOrDenyOrderAction():'.$ex->getMessage());
  332.             return new JsonResponse([   'success'   => false'mine'=>($ex->getCode()==self::CODE_MINE), 'message'=>$ex->getMessage()??'' ]);
  333.         }
  334.     }
  336.     public function confirmMessageReceivedAction(Request $request)
  337.     {
  338.         try {
  339.             $req $this->parseAndAuth($request);
  340.             $mn $this->mobileNotifier;
  341.             $ok $mn->confirmReceived($req['guid'],true);
  342.             return new JsonResponse([ 'success'   => $ok ]);
  343.         }
  344.         catch (\Exception $ex)
  345.         {
  346.             SysLogRepository::logMessage($this->managerRegistry->getConnection(),SysLogEntry::SYS_ERROR'confirmMessageReceivedAction():'.$ex->getMessage());
  347.             return new JsonResponse([ 'success'   => false'message'=>$ex->getMessage() ]);
  348.         }
  349.     }
  351.     /**
  352.      * @param $id
  353.      * @return Order
  354.      */
  355.     protected function fetchOrderAndCheckAssignment($id)
  356.     {
  357.         return $this->fetchOrderAndCheckAssignmentByQuery(array('id' => $id));
  358.     }
  360.     /**
  361.      * @param $id
  362.      * @return Order
  363.      */
  364.     protected function fetchOrderAndCheckAssignmentByQuery(array $predicates)
  365.     {
  366.         $repo $this->managerRegistry->getRepository(Order::class);
  367.         /** @var Order $row */
  368.         $row $repo->findOneBy($predicates);
  369.         if ($row === null)
  370.         {
  371.             throw new NotFoundHttpException('Invalid id: '.var_export($predicates,true));
  372.         }
  373.         if ( ($row->getAssignedTo() === null) ||($row->getAssignedTo()->getId()!= $this->user->getMember()->getId()) )
  374.         {
  375.             throw $this->createAccessDeniedException('Fahrt ist Ihnen nicht zugeordnet.');
  376.         }
  378.         return $row;
  379.     }
  381.     public function jobPdfAction(Request $request$id)
  382.     {
  383.         $this->parseAndAuth($request);
  384.         $row $this->fetchOrderAndCheckAssignment($id);
  385.         $pdfFile $this->orderHandler->getJobPdf($row,$this->user,'App',true);
  386.         return $this->getDownloadResponse($pdfFile,basename($pdfFile));
  387.     }
  389.     public function updateJobByOrderIdAction(Request $request)
  390.     {
  391.         // todo merge with updateJobInfoAction()
  392.         $jr $this->managerRegistry->getRepository(Job::class);
  393.         $fr $this->fileRepository;
  394.         $req $this->parseAndAuth($request);
  395.         $row $this->fetchOrderAndCheckAssignmentByQuery(['orderId'=>$req['orderId']]);
  396.         $job $jr->findOrCreateForOrder($row);
  398.         $pp PropertyAccess::createPropertyAccessor();
  400.         // transform
  401.         foreach (['flightOnPositionTime',
  402.                      'departureAtOriginTime',
  403.                      'arrivalAtDestinationTime',] as $k)
  404.         {
  405.             if (isset($req[$k]) && $req[$k]!=null$req[$k] = new \DateTime($req[$k]);
  406.         }
  407.         foreach (["memberExtraKm"] as $k)
  408.         {
  409.             if (isset($req[$k])&& $req[$k]!=null)  $req[$k] = (int)$req[$k];
  410.         }
  412.         foreach ([  'flightOnPositionTime',
  413.                      'departureAtOriginTime',
  414.                      'arrivalAtDestinationTime',
  415.                      'passengerNotMet',
  416.                      'taxameter',
  417.                      'taxameterVat',
  418.                      'extraCostName',
  419.                      'extraCostPrice',
  420.                      'memberExtraKm',
  421.                      'confirmedByCustomerThrough',
  422.                      'approvedByDriver',
  423.                      'werksRundfahrt',
  424.                     'extraWaitingTimeRide',
  425.                     'extraWaitingTime',
  426.                     'instantRideAdditionalWaitingTime',
  427.                     // not allowed to set: instantRide
  428.                     // not allowed to set: hasMemberExtraKm
  429.                  ] as $k)
  430.         {
  431.             if (array_key_exists($k,$req))
  432.             {
  433.                 $pp->setValue($job,$k,$req[$k]);
  434.             }
  435.         }
  436.         if ($job->getConfirmedByCustomerThrough()>0)
  437.         {
  438.             $job->setApprovedByPassenger(true);
  439.         }
  440.         if ((array_key_exists('customerSignature',$req)) && ($req['customerSignature']!=null))
  441.         {
  442.             $stream '';
  443.             foreach ($req['customerSignature'] as $char)
  444.             {
  445.                 $stream.= chr($char);
  446.             }
  447.             $F File::fromPsr7StreamOrString($streamsprintf('signature_%s_%d.png',$row->getOrderId(),(new \DateTime())->getTimestamp()), $this->uploadsFilesystem,'signatures');
  448.             $fr->persistFlush($F);
  449.             $job->setCustomerSignature($F);
  450.         }
  452.         if ($job->isApprovedByDriver())
  453.         {
  454.             $jr->setApprovedByDriver($job);
  455.             $this->orderHandler->triggerJobCalculation($job);
  456.             $this->bus->dispatch(
  457.                 new GenerateQuittung($job->getId())
  458.             );
  459.         }
  461.         $job->setLastChangeByMember(new \DateTime());
  462.         $jr->flush();
  463.         return new JsonResponse(['success' => true]);
  464.     }
  466.     public function updateJobInfoAction(Request $request$id)
  467.     {
  468.         $jr $this->managerRegistry->getRepository(Job::class);
  469.         $fr $this->fileRepository;
  470.         $req $this->parseAndAuth($request);
  471.         $row $this->fetchOrderAndCheckAssignment($id);
  472.         $job $jr->findOrCreateForOrder($row);
  473.         $pp PropertyAccess::createPropertyAccessor();
  475.         // transform
  476.         foreach (['flightOnPositionTime',
  477.                      'departureAtOriginTime',
  478.                      'arrivalAtDestinationTime',] as $k)
  479.         {
  480.             if ($req[$k]!=null$req[$k] = new \DateTime($req[$k]);
  481.         }
  483.         foreach ([  'flightOnPositionTime',
  484.                     'departureAtOriginTime',
  485.                     'arrivalAtDestinationTime',
  486.                     'passengerNotMet',
  487.                     'taxameter',
  488.                     'taxameterVat',
  489.                     'extraCostName',
  490.                     'extraCostPrice',
  491.                     'memberExtraKm',
  492.                     'confirmedByCustomerThrough',
  493.                     'approvedByDriver'
  494.                      ] as $k)
  495.         {
  496.             if ($k==="memberExtraKm"$req[$k] = (int)$req[$k];
  497.             $pp->setValue($job,$k,$req[$k]);
  498.         }
  499.         if ($job->getConfirmedByCustomerThrough()>0)
  500.         {
  501.             $job->setApprovedByPassenger(true);
  502.         }
  503.         if ((array_key_exists('customerSignature',$req)) && ($req['customerSignature']!=null))
  504.         {
  505.             $stream '';
  506.             foreach ($req['customerSignature'] as $char)
  507.             {
  508.                 $stream.= chr($char);
  509.             }
  510.             $F File::fromPsr7StreamOrString($streamsprintf('signature_%s_%d.png',$row->getOrderId(),(new \DateTime())->getTimestamp()), $this->uploadsFilesystem,'signatures');
  511.             $fr->persistFlush($F);
  512.             $job->setCustomerSignature($F);
  513.         }
  515.         if ($job->isApprovedByDriver())
  516.         {
  517.             $jr->setApprovedByDriver($job);
  518.             $this->orderHandler->triggerJobCalculation($job);
  519.             $this->bus->dispatch(
  520.                 new GenerateQuittung($job->getId())
  521.             );
  522.         }
  524.         $job->setLastChangeByMember(new \DateTime());
  525.         $jr->flush();
  526.         return new JsonResponse(['success' => true]);
  527.     }
  529.     public function chatMessageAction(Request $request)
  530.     {
  531.         $req $this->parseAndAuth($request);
  532.         $notifier $this->notifier;
  533.         $repo $this->managerRegistry->getRepository(ChatMessage::class);
  534.         $msg ChatMessage::textFrom($this->user,$req['message']);
  535.         $repo->persistFlush($msg);
  536.         $notifier->notifyWebSocketAboutChatMessage($msg);
  537.         return new JsonResponse(['success' => true'ref'=>$msg->getId() ]);
  538.     }
  540.     /**
  541.      * @return PriceList
  542.      * @throws \Exception
  543.      * todo : remove redudancy
  544.      */
  545.     protected function getDefaultPriceList()
  546.     {
  547.         $pl $this->user->getCustomer()->getDefaultPriceList();
  548.         if ($pl === null)
  549.         {
  550.             $pl $this->user->getCustomer()->getPriceLists()->get(0);
  551.             if ($pl === null) throw new \Exception("No priceList set");
  552.         }
  553.         return $pl;
  554.     }
  556.     protected function getDefaultPaymentType(User $user)
  557.     {
  558.         $pt $user->getCustomer()->getDefaultPaymentType();
  559.         if ($pt === null)
  560.         {
  561.             $pt $user->getCustomer()->getPaymentTypes()->get(0);
  562.             if ($pt === null) throw new \Exception("No paymentType set");
  563.         }
  564.         return $pt;
  565.     }
  567.     public function placeOrderAction(Request $request)
  568.     {
  569.         // TODO refactor order process (mail,tami,...) into service
  571.         $req $this->parseAndAuth($request);
  573.         if ($request->getMethod()!==Request::METHOD_POST)
  574.         {
  575.             return new JsonResponse(['success' => false'errorList' => ["Use POST !"]]);
  576.         }
  578.         $orderRepo $this->managerRegistry->getRepository(Order::class);
  579.         $tami $this->taMiConnector;
  580.         $oh $this->orderHandler;
  581.         // check request
  582.         $user $this->managerRegistry->getRepository(User::class)->findOneBy(['id'=>$this->user->getId()]);
  583.         $row =   $oh->getNewOrder($user,null,OrderStatus::STATUS_DRAFT);
  584.         $form $this->createForm(OrderForm::class,$row, [
  585.             OrderForm::OPT_CUSTOMER => $this->user->getCustomer(),
  586.             OrderForm::em => $this->managerRegistry->getManager(),
  587.             OrderForm::fromService => false,
  588.             'allow_extra_fields'=>true// omit extra fields warnings
  589.             'csrf_protection' => false
  590.         ]);
  592.         // auto-inject defaults
  593.         $req["ordererName"] = $this->user->getLastName();
  594.         $req["ordererMail"] = $this->user->getEmail();
  595.         $req["ordererPhone"] = $this->user->getPhone();
  596.         $req["paymentType"] = $this->getDefaultPaymentType($this->user)->getId();
  597.         $req["priceList"] = $this->getDefaultPriceList()->getId();
  598.         $req['lastEstimatedDistance'] = 0;
  599.         $req['lastEstimatedPrice'] = 0;
  601.         // tranform origin/destination to our internal address structure
  602.         if (isset($req['origin']) && isset($req['destination']))
  603.         {
  604.             // try to parse address
  605.             /** @var Address $a1 */
  606.             $a1 $row->getAddressList()->get(0);
  607.             /** @var Address $a2 */
  608.             $a2 $row->getAddressList()->get(1);
  609.             if (is_array($req['origin']))
  610.                 $a1->fromJson($req['origin']);
  611.             else
  612.                 CustomerEndpointController::tryParseAddress($a1,$req['origin']);
  613.             if (is_array($req['destination']))
  614.                 $a2->fromJson($req['destination']);
  615.             else
  616.                 CustomerEndpointController::tryParseAddress($a2,$req['destination']);
  617.             $a1->setSortOrder(0);
  618.             $a2->setSortOrder(1);
  619.             $req['addressList'] = [];
  620.             $req['addressList'][0] = $a1->jsonSerialize();
  621.             $req['addressList'][1] = $a2->jsonSerialize();
  622.             $req array_merge($req,$a1->jsonSerialize('addressList_0_'));
  623.             $req array_merge($req,$a2->jsonSerialize('addressList_1_'));
  624.         }
  625.         else
  626.         {
  627.             // the address is supposed to be transmitted in the correct structure like it has been submitted via form
  628.             // done via prepare4json which is also used in OrderHandler::sendToPlatform
  629.         }
  630.         $xchg = isset($req['xchg'])&&($req['xchg']);
  632.         $fes = new FormErrorsSerializer();
  633.         $form->submit($req);
  634.         if ($form->isValid())
  635.         {
  636.             if ($xchg)
  637.             {
  638.                 $row->setXchgStatus(Order::XCHG_RECEIVED_FROM_OTHER);
  639.                 $row->setXchgOrderId(  $req['original_order_id'] );
  640.                 $row->setOriginOrderId$req['original_order_id'] );
  641.             }
  642.             if ( (isset($req['commit']))&&($req['commit']== true) )
  643.             {
  644.                 try {
  645.                     $oh-> storeOrUpdate($row);
  646.                     $oh->initiateOrder($row);
  647.                 } catch (OrderValidationException $ex) {
  648.                     $form->addError(new FormError($ex->getMessage()));
  649.                 }
  650.                 // success
  651.                 if ( ($form->isValid()) && ($form->getErrors()->count() < 1))
  652.                 {
  653.                     SysLogRepository::logMessage(
  654.                         $this->managerRegistry->getConnection(),
  655.                         SysLogEntry::SYS_INFO,
  656.                         sprintf('API: Order %s placed.',$row->getOrderId())
  657.                     );
  658.                     return new JsonResponse(['success' => true'data' => $row->getOrderId()]);
  659.                 }
  660.                 // failed
  661.                 $errors $fes->serializeFormErrors($formtruetrue);
  662.                 SysLogRepository::logMessage(
  663.                     $this->managerRegistry->getConnection(),
  664.                     SysLogEntry::SYS_INFO,
  665.                     sprintf('API: Order rejected: %s',var_export($errors,true))
  666.                 );
  667.                 return new JsonResponse(['success' => false'errorList' => $errors]);
  668.             }
  669.             // simulation active
  670.             return new JsonResponse(['success' => true'data' => 'not committed']);
  671.         }
  672.         // form is not valid
  673.         $errors $fes->serializeFormErrors($formtruetrue);
  674.         return new JsonResponse(['success' => false'errorList' => $errors]);
  675.     }
  678.     public function announceReadyAction(Request $request)
  679.     {
  680.         $req $this->parseAndAuth($request);
  681.         $tomorrow $req['tomorrow'] === 'true';
  682.         /** @var AvailabilityRepository $repo */
  683.         $repo $this->managerRegistry->getRepository(Availability::class);
  684.         $ret $repo->announceReady($this->user->getMember(),$tomorrow);
  685.         return new JsonResponse(['success' => $ret'data' =>[]]);
  686.     }
  688.     public function cancelOrderAction(Request $request)
  689.     {
  690.         $req $this->parseAndAuth($request);
  691.         $repo $this->managerRegistry->getRepository(Order::class);
  692.         try
  693.         {
  694.             if ($request->getMethod()!==Request::METHOD_POST)
  695.             {
  696.                 throw new MethodNotAllowedException([Request::METHOD_POST],"Use POST !");
  697.             }
  698.             if (!isset($req['orderId']))
  699.             {
  700.                 throw new \RuntimeException("No orderId");
  701.             }
  702.             $row $repo->findOneBy(["orderId"=>$req['orderId'], 'customer'=> $this->user->getCustomer()->getId()]);
  703.             if ($row === null)
  704.             {
  705.                 throw new \RuntimeException('Unbekannte oder nicht zugehörige OrderId');
  706.             }
  708.             // bereits storniert -> erfolgsfall melden
  709.             if ($row->getOrderStatus()->getId() === OrderStatus::STATUS_CANCELED)
  710.             {
  711.                 return new JsonResponse(['success' => true'data' => $row->getOrderId() . " storniert"]);
  712.             }
  714.             $oh $this->orderHandler;
  715.             $oh->ensureThatOrderCanBeCancelled($row);
  716.             if ( (isset($req['commit']))&&($req['commit']== true) )
  717.             {
  718.                 $oh->cancelOrder($row);
  719.                 SysLogRepository::logMessage(
  720.                     $this->managerRegistry->getConnection(),
  721.                     SysLogEntry::SYS_INFO,
  722.                     sprintf('API: Order %s cancelled.',$row->getOrderId())
  723.                 );
  725.                 return new JsonResponse(['success' => true'data' => $row->getOrderId() . " storniert"]);
  726.             }
  727.             else
  728.             {
  729.                 return new JsonResponse(['success' => true'data' => 'not committed']);
  730.             }
  731.         }
  732.         catch (\Throwable $ex)
  733.         {
  734.             return new JsonResponse(['success' => false'errorList' => [ $ex->getMessage() ]]);
  735.         }
  736.     }
  739. }