mirror of
https://github.com/snipe/snipe-it.git
synced 2025-01-13 15:01:02 -08:00
cafafe851c
* Move slack integration to laravel5.3 style notifications, part 1. * Fix consumable tab when active. * Move the slack notifiable to the settings model. Move all slack notifications into logCheckout/logCheckin. Should think about refactoring this as an event at some point still. Move Asset checkin/checkout to use the general loggable trait rather than it's own solution. * Fix a logic error where assets with a non deployable status would show checkin instead of no button at all. * Fix an html formatting error that resulted in us not closing a form. This would cause the checkin page to try to submit a delete request (related to the modal form) rather than the desired checkin request. Also fix formatting in this file.
514 lines
18 KiB
PHP
Executable file
514 lines
18 KiB
PHP
Executable file
<?php
|
|
namespace App\Http\Controllers;
|
|
|
|
use App\Helpers\Helper;
|
|
use App\Models\Accessory;
|
|
use App\Models\Company;
|
|
use App\Models\User;
|
|
use Auth;
|
|
use Carbon\Carbon;
|
|
use Config;
|
|
use DB;
|
|
use Gate;
|
|
use Input;
|
|
use Lang;
|
|
use Mail;
|
|
use Redirect;
|
|
use Illuminate\Http\Request;
|
|
use Slack;
|
|
use Str;
|
|
use View;
|
|
|
|
/** This controller handles all actions related to Accessories for
|
|
* the Snipe-IT Asset Management application.
|
|
*
|
|
* @version v1.0
|
|
*/
|
|
class AccessoriesController extends Controller
|
|
{
|
|
|
|
/**
|
|
* Returns a view that invokes the ajax tables which actually contains
|
|
* the content for the accessories listing, which is generated in getDatatable.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @see AccessoriesController::getDatatable() method that generates the JSON response
|
|
* @since [v1.0]
|
|
* @return View
|
|
*/
|
|
public function index(Request $request)
|
|
{
|
|
$this->authorize('index', Accessory::class);
|
|
return View::make('accessories/index');
|
|
}
|
|
|
|
|
|
/**
|
|
* Returns a view with a form to create a new Accessory.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @return View
|
|
*/
|
|
public function create(Request $request)
|
|
{
|
|
$this->authorize('create', Accessory::class);
|
|
// Show the page
|
|
return View::make('accessories/edit')
|
|
->with('item', new Accessory)
|
|
->with('category_list', Helper::categoryList('accessory'))
|
|
->with('company_list', Helper::companyList())
|
|
->with('location_list', Helper::locationsList())
|
|
->with('manufacturer_list', Helper::manufacturerList());
|
|
}
|
|
|
|
|
|
/**
|
|
* Validate and save new Accessory from form post
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @return Redirect
|
|
*/
|
|
public function store(Request $request)
|
|
{
|
|
$this->authorize(Accessory::class);
|
|
// create a new model instance
|
|
$accessory = new Accessory();
|
|
|
|
// Update the accessory data
|
|
$accessory->name = request('name');
|
|
$accessory->category_id = request('category_id');
|
|
$accessory->location_id = request('location_id');
|
|
$accessory->min_amt = request('min_amt');
|
|
$accessory->company_id = Company::getIdForCurrentUser(request('company_id'));
|
|
$accessory->order_number = request('order_number');
|
|
$accessory->manufacturer_id = request('manufacturer_id');
|
|
$accessory->model_number = request('model_number');
|
|
$accessory->purchase_date = request('purchase_date');
|
|
$accessory->purchase_cost = Helper::ParseFloat(request('purchase_cost'));
|
|
$accessory->qty = request('qty');
|
|
$accessory->user_id = Auth::user()->id;
|
|
|
|
// Was the accessory created?
|
|
if ($accessory->save()) {
|
|
$accessory->logCreate();
|
|
// Redirect to the new accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.create.success'));
|
|
}
|
|
return redirect()->back()->withInput()->withErrors($accessory->getErrors());
|
|
}
|
|
|
|
/**
|
|
* Return view for the Accessory update form, prepopulated with existing data
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return View
|
|
*/
|
|
public function edit(Request $request, $accessoryId = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($item = Accessory::find($accessoryId))) {
|
|
// Redirect to the blogs management page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.does_not_exist'));
|
|
}
|
|
|
|
$this->authorize($item);
|
|
|
|
return View::make('accessories/edit', compact('item'))
|
|
->with('category_list', Helper::categoryList('accessory'))
|
|
->with('company_list', Helper::companyList())
|
|
->with('location_list', Helper::locationsList())
|
|
->with('manufacturer_list', Helper::manufacturerList());
|
|
}
|
|
|
|
|
|
/**
|
|
* Save edited Accessory from form post
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function update(Request $request, $accessoryId = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory index page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.does_not_exist'));
|
|
}
|
|
|
|
$this->authorize($accessory);
|
|
|
|
// Update the accessory data
|
|
$accessory->name = request('name');
|
|
$accessory->location_id = request('location_id');
|
|
$accessory->min_amt = request('min_amt');
|
|
$accessory->category_id = request('category_id');
|
|
$accessory->company_id = Company::getIdForCurrentUser(request('company_id'));
|
|
$accessory->manufacturer_id = request('manufacturer_id');
|
|
$accessory->order_number = request('order_number');
|
|
$accessory->model_number = request('model_number');
|
|
$accessory->purchase_date = request('purchase_date');
|
|
$accessory->purchase_cost = request('purchase_cost');
|
|
$accessory->qty = request('qty');
|
|
|
|
// Was the accessory updated?
|
|
if ($accessory->save()) {
|
|
// Redirect to the updated accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.update.success'));
|
|
}
|
|
return redirect()->back()->withInput()->withErrors($accessory->getErrors());
|
|
}
|
|
|
|
/**
|
|
* Delete the given accessory.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function destroy(Request $request, $accessoryId)
|
|
{
|
|
// Check if the blog post exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the blogs management page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$this->authorize($accessory);
|
|
|
|
|
|
if ($accessory->hasUsers() > 0) {
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.assoc_users', array('count'=> $accessory->hasUsers())));
|
|
}
|
|
$accessory->delete();
|
|
// Redirect to the locations management page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.delete.success'));
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* Returns a view that invokes the ajax table which contains
|
|
* the content for the accessory detail view, which is generated in getDataView.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryID
|
|
* @see AccessoriesController::getDataView() method that generates the JSON response
|
|
* @since [v1.0]
|
|
* @return View
|
|
*/
|
|
public function show(Request $request, $accessoryID = null)
|
|
{
|
|
$accessory = Accessory::find($accessoryID);
|
|
$this->authorize('view', $accessory);
|
|
if (isset($accessory->id)) {
|
|
return View::make('accessories/view', compact('accessory'));
|
|
}
|
|
// Prepare the error message
|
|
$error = trans('admin/accessories/message.does_not_exist', compact('id'));
|
|
|
|
// Redirect to the user management page
|
|
return redirect()->route('accessories')->with('error', $error);
|
|
}
|
|
|
|
/**
|
|
* Return the form to checkout an Accessory to a user.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return View
|
|
*/
|
|
public function getCheckout(Request $request, $accessoryId)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$this->authorize('checkout', $accessory);
|
|
|
|
// Get the dropdown of users and then pass it to the checkout view
|
|
return View::make('accessories/checkout', compact('accessory'))->with('users_list', Helper::usersList());
|
|
|
|
}
|
|
|
|
/**
|
|
* Save the Accessory checkout information.
|
|
*
|
|
* If Slack is enabled and/or asset acceptance is enabled, it will also
|
|
* trigger a Slack message and send an email.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function postCheckout(Request $request, $accessoryId)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.user_not_found'));
|
|
}
|
|
|
|
$this->authorize('checkout', $accessory);
|
|
|
|
if (!$user = User::find(Input::get('assigned_to'))) {
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
// Update the accessory data
|
|
$accessory->assigned_to = e(Input::get('assigned_to'));
|
|
|
|
$accessory->users()->attach($accessory->id, [
|
|
'accessory_id' => $accessory->id,
|
|
'created_at' => Carbon::now(),
|
|
'user_id' => Auth::id(),
|
|
'assigned_to' => $request->get('assigned_to')
|
|
]);
|
|
|
|
$logaction = $accessory->logCheckout(e(Input::get('note')));
|
|
|
|
DB::table('accessories_users')->where('assigned_to', '=', $accessory->assigned_to)->where('accessory_id', '=', $accessory->id)->first();
|
|
|
|
$data['log_id'] = $logaction->id;
|
|
$data['eula'] = $accessory->getEula();
|
|
$data['first_name'] = $user->first_name;
|
|
$data['item_name'] = $accessory->name;
|
|
$data['checkout_date'] = $logaction->created_at;
|
|
$data['item_tag'] = '';
|
|
$data['expected_checkin'] = '';
|
|
$data['note'] = $logaction->note;
|
|
$data['require_acceptance'] = $accessory->requireAcceptance();
|
|
// TODO: Port this to new mail notifications
|
|
if (($accessory->requireAcceptance()=='1') || ($accessory->getEula())) {
|
|
|
|
Mail::send('emails.accept-accessory', $data, function ($m) use ($user) {
|
|
$m->to($user->email, $user->first_name . ' ' . $user->last_name);
|
|
$m->replyTo(config('mail.reply_to.address'), config('mail.reply_to.name'));
|
|
$m->subject(trans('mail.Confirm_accessory_delivery'));
|
|
});
|
|
}
|
|
|
|
// Redirect to the new accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.checkout.success'));
|
|
}
|
|
|
|
|
|
/**
|
|
* Check the accessory back into inventory
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @param integer $accessoryUserId
|
|
* @param string $backto
|
|
* @return View
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function getCheckin(Request $request, $accessoryUserId = null, $backto = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory_user = DB::table('accessories_users')->find($accessoryUserId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$accessory = Accessory::find($accessory_user->accessory_id);
|
|
$this->authorize('checkin', $accessory);
|
|
return View::make('accessories/checkin', compact('accessory'))->with('backto', $backto);
|
|
}
|
|
|
|
|
|
/**
|
|
* Check in the item so that it can be checked out again to someone else
|
|
*
|
|
* @uses Accessory::checkin_email() to determine if an email can and should be sent
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @param integer $accessoryUserId
|
|
* @param string $backto
|
|
* @return Redirect
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function postCheckin(Request $request, $accessoryUserId = null, $backto = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory_user = DB::table('accessories_users')->find($accessoryUserId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$accessory = Accessory::find($accessory_user->accessory_id);
|
|
|
|
$this->authorize('checkin', $accessory);
|
|
|
|
$return_to = e($accessory_user->assigned_to);
|
|
$logaction = $accessory->logCheckin(User::find($return_to), e(Input::get('note')));
|
|
|
|
// Was the accessory updated?
|
|
if (DB::table('accessories_users')->where('id', '=', $accessory_user->id)->delete()) {
|
|
if (!is_null($accessory_user->assigned_to)) {
|
|
$user = User::find($accessory_user->assigned_to);
|
|
}
|
|
|
|
$data['log_id'] = $logaction->id;
|
|
$data['first_name'] = e($user->first_name);
|
|
$data['item_name'] = e($accessory->name);
|
|
$data['checkin_date'] = e($logaction->created_at);
|
|
$data['item_tag'] = '';
|
|
$data['note'] = e($logaction->note);
|
|
|
|
if (($accessory->checkin_email()=='1')) {
|
|
|
|
Mail::send('emails.checkin-asset', $data, function ($m) use ($user) {
|
|
$m->to($user->email, $user->first_name . ' ' . $user->last_name);
|
|
$m->replyTo(config('mail.reply_to.address'), config('mail.reply_to.name'));
|
|
$m->subject(trans('mail.Confirm_Accessory_Checkin'));
|
|
});
|
|
}
|
|
|
|
if ($backto=='user') {
|
|
return redirect()->route("users.show", $return_to)->with('success', trans('admin/accessories/message.checkin.success'));
|
|
}
|
|
return redirect()->route("accessories.show", $accessory->id)->with('success', trans('admin/accessories/message.checkin.success'));
|
|
}
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.checkin.error'));
|
|
}
|
|
|
|
/**
|
|
* Generates the JSON response for accessories listing view.
|
|
*
|
|
* Example:
|
|
* {
|
|
* "actions": "(links to available actions)",
|
|
* "category": "(link to category)",
|
|
* "companyName": "My Company",
|
|
* "location": "My Location",
|
|
* "min_amt": 2,
|
|
* "name": "(link to accessory),
|
|
* "numRemaining": 6,
|
|
* "order_number": null,
|
|
* "purchase_cost": "0.00",
|
|
* "purchase_date": null,
|
|
* "qty": 7
|
|
* },
|
|
*
|
|
* The names of the fields in the returns JSON correspond directly to the the
|
|
* names of the fields in the bootstrap-tables in the view.
|
|
*
|
|
* For debugging, see at /api/accessories/list
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @return string JSON containing accessories and their associated atrributes.
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function getDatatable(Request $request)
|
|
{
|
|
$this->authorize('index', Accessory::class);
|
|
$accessories = Company::scopeCompanyables(
|
|
Accessory::select('accessories.*')
|
|
->whereNull('accessories.deleted_at')
|
|
->with('category', 'company', 'manufacturer', 'users', 'location')
|
|
);
|
|
if (Input::has('search')) {
|
|
$accessories = $accessories->TextSearch(e(Input::get('search')));
|
|
}
|
|
$offset = request('offset', 0);
|
|
$limit = request('limit', 50);
|
|
|
|
$allowed_columns = ['name','min_amt','order_number','purchase_date','purchase_cost','companyName','category','model_number'];
|
|
$order = Input::get('order') === 'asc' ? 'asc' : 'desc';
|
|
$sort = in_array(Input::get('sort'), $allowed_columns) ? e(Input::get('sort')) : 'created_at';
|
|
|
|
switch ($sort) {
|
|
case 'category':
|
|
$accessories = $accessories->OrderCategory($order);
|
|
break;
|
|
case 'companyName':
|
|
$accessories = $accessories->OrderCompany($order);
|
|
break;
|
|
default:
|
|
$accessories = $accessories->orderBy($sort, $order);
|
|
break;
|
|
}
|
|
|
|
$accessCount = $accessories->count();
|
|
$accessories = $accessories->skip($offset)->take($limit)->get();
|
|
|
|
$rows = array();
|
|
|
|
foreach ($accessories as $accessory) {
|
|
$rows[] = $accessory->present()->forDataTable();
|
|
}
|
|
|
|
$data = array('total'=>$accessCount, 'rows'=>$rows);
|
|
|
|
return $data;
|
|
}
|
|
|
|
|
|
/**
|
|
* Generates the JSON response for accessory detail view.
|
|
*
|
|
* Example:
|
|
* <code>
|
|
* {
|
|
* "rows": [
|
|
* {
|
|
* "actions": "(link to available actions)",
|
|
* "name": "(link to user)"
|
|
* }
|
|
* ],
|
|
* "total": 1
|
|
* }
|
|
* </code>
|
|
*
|
|
* The names of the fields in the returns JSON correspond directly to the the
|
|
* names of the fields in the bootstrap-tables in the view.
|
|
*
|
|
* For debugging, see at /api/accessories/$accessoryID/view
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return string JSON containing accessories and their associated atrributes.
|
|
**/
|
|
public function getDataView(Request $request, $accessoryID)
|
|
{
|
|
$accessory = Accessory::find($accessoryID);
|
|
|
|
if (!Company::isCurrentUserHasAccess($accessory)) {
|
|
return ['total' => 0, 'rows' => []];
|
|
}
|
|
|
|
$accessory_users = $accessory->users;
|
|
$count = $accessory_users->count();
|
|
|
|
$rows = array();
|
|
|
|
foreach ($accessory_users as $user) {
|
|
$actions = '';
|
|
if (Gate::allows('checkin', $accessory)) {
|
|
$actions .= Helper::generateDatatableButton('checkin', route('checkin/accessory', $user->pivot->id));
|
|
}
|
|
|
|
if (Gate::allows('view', $user)) {
|
|
$name = (string) link_to_route('users.show', e($user->present()->fullName()), [$user->id]);
|
|
} else {
|
|
$name = e($user->present()->fullName());
|
|
}
|
|
|
|
$rows[] = array(
|
|
'name' => $name,
|
|
'actions' => $actions
|
|
);
|
|
}
|
|
|
|
$data = array('total'=>$count, 'rows'=>$rows);
|
|
|
|
return $data;
|
|
}
|
|
}
|