mirror of
https://github.com/snipe/snipe-it.git
synced 2024-11-13 17:14:10 -08:00
ce8eda1325
Fixes at least some of #3045
520 lines
19 KiB
PHP
Executable file
520 lines
19 KiB
PHP
Executable file
<?php
|
|
namespace App\Http\Controllers;
|
|
|
|
use App\Helpers\Helper;
|
|
use App\Models\Accessory;
|
|
use App\Models\Company;
|
|
use App\Models\User;
|
|
use Auth;
|
|
use Carbon\Carbon;
|
|
use Config;
|
|
use DB;
|
|
use Gate;
|
|
use Input;
|
|
use Lang;
|
|
use Mail;
|
|
use Redirect;
|
|
use Illuminate\Http\Request;
|
|
use Slack;
|
|
use Str;
|
|
use View;
|
|
|
|
/** This controller handles all actions related to Accessories for
|
|
* the Snipe-IT Asset Management application.
|
|
*
|
|
* @version v1.0
|
|
*/
|
|
class AccessoriesController extends Controller
|
|
{
|
|
|
|
/**
|
|
* Returns a view that invokes the ajax tables which actually contains
|
|
* the content for the accessories listing, which is generated in getDatatable.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @see AccessoriesController::getDatatable() method that generates the JSON response
|
|
* @since [v1.0]
|
|
* @return View
|
|
*/
|
|
public function index(Request $request)
|
|
{
|
|
$this->authorize('index', Accessory::class);
|
|
return View::make('accessories/index');
|
|
}
|
|
|
|
|
|
/**
|
|
* Returns a view with a form to create a new Accessory.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @return View
|
|
*/
|
|
public function create(Request $request)
|
|
{
|
|
$this->authorize('create', Accessory::class);
|
|
// Show the page
|
|
return View::make('accessories/edit')
|
|
->with('item', new Accessory)
|
|
->with('category_list', Helper::categoryList('accessory'))
|
|
->with('company_list', Helper::companyList())
|
|
->with('location_list', Helper::locationsList())
|
|
->with('manufacturer_list', Helper::manufacturerList());
|
|
}
|
|
|
|
|
|
/**
|
|
* Validate and save new Accessory from form post
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @return Redirect
|
|
*/
|
|
public function store(Request $request)
|
|
{
|
|
$this->authorize(Accessory::class);
|
|
// create a new model instance
|
|
$accessory = new Accessory();
|
|
|
|
// Update the accessory data
|
|
$accessory->name = request('name');
|
|
$accessory->category_id = request('category_id');
|
|
$accessory->location_id = request('location_id');
|
|
$accessory->min_amt = request('min_amt');
|
|
$accessory->company_id = Company::getIdForCurrentUser(request('company_id'));
|
|
$accessory->order_number = request('order_number');
|
|
$accessory->manufacturer_id = request('manufacturer_id');
|
|
$accessory->model_number = request('model_number');
|
|
$accessory->purchase_date = request('purchase_date');
|
|
$accessory->purchase_cost = Helper::ParseFloat(request('purchase_cost'));
|
|
$accessory->qty = request('qty');
|
|
$accessory->user_id = Auth::user()->id;
|
|
|
|
// Was the accessory created?
|
|
if ($accessory->save()) {
|
|
$accessory->logCreate();
|
|
// Redirect to the new accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.create.success'));
|
|
}
|
|
return redirect()->back()->withInput()->withErrors($accessory->getErrors());
|
|
}
|
|
|
|
/**
|
|
* Return view for the Accessory update form, prepopulated with existing data
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return View
|
|
*/
|
|
public function edit(Request $request, $accessoryId = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($item = Accessory::find($accessoryId))) {
|
|
// Redirect to the blogs management page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.does_not_exist'));
|
|
}
|
|
|
|
$this->authorize($item);
|
|
|
|
return View::make('accessories/edit', compact('item'))
|
|
->with('category_list', Helper::categoryList('accessory'))
|
|
->with('company_list', Helper::companyList())
|
|
->with('location_list', Helper::locationsList())
|
|
->with('manufacturer_list', Helper::manufacturerList());
|
|
}
|
|
|
|
|
|
/**
|
|
* Save edited Accessory from form post
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function update(Request $request, $accessoryId = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory index page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.does_not_exist'));
|
|
}
|
|
|
|
$this->authorize($accessory);
|
|
|
|
// Update the accessory data
|
|
$accessory->name = request('name');
|
|
$accessory->location_id = request('location_id');
|
|
$accessory->min_amt = request('min_amt');
|
|
$accessory->category_id = request('category_id');
|
|
$accessory->company_id = Company::getIdForCurrentUser(request('company_id'));
|
|
$accessory->manufacturer_id = request('manufacturer_id');
|
|
$accessory->order_number = request('order_number');
|
|
$accessory->model_number = request('model_number');
|
|
$accessory->purchase_date = request('purchase_date');
|
|
$accessory->purchase_cost = request('purchase_cost');
|
|
$accessory->qty = request('qty');
|
|
|
|
// Was the accessory updated?
|
|
if ($accessory->save()) {
|
|
// Redirect to the updated accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.update.success'));
|
|
}
|
|
return redirect()->back()->withInput()->withErrors($accessory->getErrors());
|
|
}
|
|
|
|
/**
|
|
* Delete the given accessory.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function destroy(Request $request, $accessoryId)
|
|
{
|
|
// Check if the blog post exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the blogs management page
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$this->authorize($accessory);
|
|
|
|
|
|
if ($accessory->hasUsers() > 0) {
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.assoc_users', array('count'=> $accessory->hasUsers())));
|
|
}
|
|
$accessory->delete();
|
|
// Redirect to the locations management page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.delete.success'));
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* Returns a view that invokes the ajax table which contains
|
|
* the content for the accessory detail view, which is generated in getDataView.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryID
|
|
* @see AccessoriesController::getDataView() method that generates the JSON response
|
|
* @since [v1.0]
|
|
* @return View
|
|
*/
|
|
public function show(Request $request, $accessoryID = null)
|
|
{
|
|
$accessory = Accessory::find($accessoryID);
|
|
$this->authorize('view', $accessory);
|
|
if (isset($accessory->id)) {
|
|
return View::make('accessories/view', compact('accessory'));
|
|
}
|
|
// Prepare the error message
|
|
$error = trans('admin/accessories/message.does_not_exist', compact('id'));
|
|
|
|
// Redirect to the user management page
|
|
return redirect()->route('accessories')->with('error', $error);
|
|
}
|
|
|
|
/**
|
|
* Return the form to checkout an Accessory to a user.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return View
|
|
*/
|
|
public function getCheckout(Request $request, $accessoryId)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$this->authorize('checkout', $accessory);
|
|
|
|
// Get the dropdown of users and then pass it to the checkout view
|
|
return View::make('accessories/checkout', compact('accessory'))->with('users_list', Helper::usersList());
|
|
|
|
}
|
|
|
|
/**
|
|
* Save the Accessory checkout information.
|
|
*
|
|
* If Slack is enabled and/or asset acceptance is enabled, it will also
|
|
* trigger a Slack message and send an email.
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return Redirect
|
|
*/
|
|
public function postCheckout(Request $request, $accessoryId)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory = Accessory::find($accessoryId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.user_not_found'));
|
|
}
|
|
|
|
$this->authorize('checkout', $accessory);
|
|
|
|
if (!$user = User::find(Input::get('assigned_to'))) {
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
// Update the accessory data
|
|
$accessory->assigned_to = e(Input::get('assigned_to'));
|
|
|
|
$accessory->users()->attach($accessory->id, [
|
|
'accessory_id' => $accessory->id,
|
|
'created_at' => Carbon::now(),
|
|
'user_id' => Auth::id(),
|
|
'assigned_to' => $request->get('assigned_to')
|
|
]);
|
|
|
|
$logaction = $accessory->logCheckout(e(Input::get('note')));
|
|
|
|
DB::table('accessories_users')->where('assigned_to', '=', $accessory->assigned_to)->where('accessory_id', '=', $accessory->id)->first();
|
|
|
|
$data['log_id'] = $logaction->id;
|
|
$data['eula'] = $accessory->getEula();
|
|
$data['first_name'] = $user->first_name;
|
|
$data['item_name'] = $accessory->name;
|
|
$data['checkout_date'] = $logaction->created_at;
|
|
$data['item_tag'] = '';
|
|
$data['expected_checkin'] = '';
|
|
$data['note'] = $logaction->note;
|
|
$data['require_acceptance'] = $accessory->requireAcceptance();
|
|
// TODO: Port this to new mail notifications
|
|
if (($accessory->requireAcceptance()=='1') || ($accessory->getEula())) {
|
|
|
|
Mail::send('emails.accept-accessory', $data, function ($m) use ($user) {
|
|
$m->to($user->email, $user->first_name . ' ' . $user->last_name);
|
|
$m->replyTo(config('mail.reply_to.address'), config('mail.reply_to.name'));
|
|
$m->subject(trans('mail.Confirm_accessory_delivery'));
|
|
});
|
|
}
|
|
|
|
// Redirect to the new accessory page
|
|
return redirect()->route('accessories.index')->with('success', trans('admin/accessories/message.checkout.success'));
|
|
}
|
|
|
|
|
|
/**
|
|
* Check the accessory back into inventory
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @param integer $accessoryUserId
|
|
* @param string $backto
|
|
* @return View
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function getCheckin(Request $request, $accessoryUserId = null, $backto = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory_user = DB::table('accessories_users')->find($accessoryUserId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$accessory = Accessory::find($accessory_user->accessory_id);
|
|
$this->authorize('checkin', $accessory);
|
|
return View::make('accessories/checkin', compact('accessory'))->with('backto', $backto);
|
|
}
|
|
|
|
|
|
/**
|
|
* Check in the item so that it can be checked out again to someone else
|
|
*
|
|
* @uses Accessory::checkin_email() to determine if an email can and should be sent
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @param integer $accessoryUserId
|
|
* @param string $backto
|
|
* @return Redirect
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function postCheckin(Request $request, $accessoryUserId = null, $backto = null)
|
|
{
|
|
// Check if the accessory exists
|
|
if (is_null($accessory_user = DB::table('accessories_users')->find($accessoryUserId))) {
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.not_found'));
|
|
}
|
|
|
|
$accessory = Accessory::find($accessory_user->accessory_id);
|
|
|
|
$this->authorize('checkin', $accessory);
|
|
|
|
$return_to = e($accessory_user->assigned_to);
|
|
$logaction = $accessory->logCheckin(User::find($return_to), e(Input::get('note')));
|
|
|
|
// Was the accessory updated?
|
|
if (DB::table('accessories_users')->where('id', '=', $accessory_user->id)->delete()) {
|
|
if (!is_null($accessory_user->assigned_to)) {
|
|
$user = User::find($accessory_user->assigned_to);
|
|
}
|
|
|
|
$data['log_id'] = $logaction->id;
|
|
$data['first_name'] = e($user->first_name);
|
|
$data['item_name'] = e($accessory->name);
|
|
$data['checkin_date'] = e($logaction->created_at);
|
|
$data['item_tag'] = '';
|
|
$data['note'] = e($logaction->note);
|
|
|
|
if (($accessory->checkin_email()=='1')) {
|
|
|
|
Mail::send('emails.checkin-asset', $data, function ($m) use ($user) {
|
|
$m->to($user->email, $user->first_name . ' ' . $user->last_name);
|
|
$m->replyTo(config('mail.reply_to.address'), config('mail.reply_to.name'));
|
|
$m->subject(trans('mail.Confirm_Accessory_Checkin'));
|
|
});
|
|
}
|
|
|
|
if ($backto=='user') {
|
|
return redirect()->route("users.show", $return_to)->with('success', trans('admin/accessories/message.checkin.success'));
|
|
}
|
|
return redirect()->route("accessories.show", $accessory->id)->with('success', trans('admin/accessories/message.checkin.success'));
|
|
}
|
|
// Redirect to the accessory management page with error
|
|
return redirect()->route('accessories.index')->with('error', trans('admin/accessories/message.checkin.error'));
|
|
}
|
|
|
|
/**
|
|
* Generates the JSON response for accessories listing view.
|
|
*
|
|
* Example:
|
|
* {
|
|
* "actions": "(links to available actions)",
|
|
* "category": "(link to category)",
|
|
* "companyName": "My Company",
|
|
* "location": "My Location",
|
|
* "min_amt": 2,
|
|
* "name": "(link to accessory),
|
|
* "numRemaining": 6,
|
|
* "order_number": null,
|
|
* "purchase_cost": "0.00",
|
|
* "purchase_date": null,
|
|
* "qty": 7
|
|
* },
|
|
*
|
|
* The names of the fields in the returns JSON correspond directly to the the
|
|
* names of the fields in the bootstrap-tables in the view.
|
|
*
|
|
* For debugging, see at /api/accessories/list
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param Request $request
|
|
* @return string JSON containing accessories and their associated atrributes.
|
|
* @internal param int $accessoryId
|
|
*/
|
|
public function getDatatable(Request $request)
|
|
{
|
|
$this->authorize('index', Accessory::class);
|
|
$accessories = Company::scopeCompanyables(
|
|
Accessory::select('accessories.*')
|
|
->whereNull('accessories.deleted_at')
|
|
->with('category', 'company', 'manufacturer', 'users', 'location')
|
|
);
|
|
if (Input::has('search')) {
|
|
$accessories = $accessories->TextSearch(e(Input::get('search')));
|
|
}
|
|
$offset = request('offset', 0);
|
|
$limit = request('limit', 50);
|
|
|
|
$allowed_columns = ['name','min_amt','order_number','purchase_date','purchase_cost','companyName','category','model_number', 'manufacturer', 'location'];
|
|
$order = Input::get('order') === 'asc' ? 'asc' : 'desc';
|
|
$sort = in_array(Input::get('sort'), $allowed_columns) ? e(Input::get('sort')) : 'created_at';
|
|
|
|
switch ($sort) {
|
|
case 'category':
|
|
$accessories = $accessories->OrderCategory($order);
|
|
break;
|
|
case 'companyName':
|
|
$accessories = $accessories->OrderCompany($order);
|
|
break;
|
|
case 'location':
|
|
$accessories = $accessories->OrderLocation($order);
|
|
break;
|
|
case 'manufacturer':
|
|
$accessories = $accessories->OrderManufacturer($order);
|
|
break;
|
|
default:
|
|
$accessories = $accessories->orderBy($sort, $order);
|
|
break;
|
|
}
|
|
|
|
$accessCount = $accessories->count();
|
|
$accessories = $accessories->skip($offset)->take($limit)->get();
|
|
|
|
$rows = array();
|
|
|
|
foreach ($accessories as $accessory) {
|
|
$rows[] = $accessory->present()->forDataTable();
|
|
}
|
|
|
|
$data = array('total'=>$accessCount, 'rows'=>$rows);
|
|
|
|
return $data;
|
|
}
|
|
|
|
|
|
/**
|
|
* Generates the JSON response for accessory detail view.
|
|
*
|
|
* Example:
|
|
* <code>
|
|
* {
|
|
* "rows": [
|
|
* {
|
|
* "actions": "(link to available actions)",
|
|
* "name": "(link to user)"
|
|
* }
|
|
* ],
|
|
* "total": 1
|
|
* }
|
|
* </code>
|
|
*
|
|
* The names of the fields in the returns JSON correspond directly to the the
|
|
* names of the fields in the bootstrap-tables in the view.
|
|
*
|
|
* For debugging, see at /api/accessories/$accessoryID/view
|
|
*
|
|
* @author [A. Gianotto] [<snipe@snipe.net>]
|
|
* @param int $accessoryId
|
|
* @return string JSON containing accessories and their associated atrributes.
|
|
**/
|
|
public function getDataView(Request $request, $accessoryID)
|
|
{
|
|
$accessory = Accessory::find($accessoryID);
|
|
|
|
if (!Company::isCurrentUserHasAccess($accessory)) {
|
|
return ['total' => 0, 'rows' => []];
|
|
}
|
|
|
|
$accessory_users = $accessory->users;
|
|
$count = $accessory_users->count();
|
|
|
|
$rows = array();
|
|
|
|
foreach ($accessory_users as $user) {
|
|
$actions = '';
|
|
if (Gate::allows('checkin', $accessory)) {
|
|
$actions .= Helper::generateDatatableButton('checkin', route('checkin/accessory', $user->pivot->id));
|
|
}
|
|
|
|
if (Gate::allows('view', $user)) {
|
|
$name = (string) link_to_route('users.show', e($user->present()->fullName()), [$user->id]);
|
|
} else {
|
|
$name = e($user->present()->fullName());
|
|
}
|
|
|
|
$rows[] = array(
|
|
'name' => $name,
|
|
'actions' => $actions
|
|
);
|
|
}
|
|
|
|
$data = array('total'=>$count, 'rows'=>$rows);
|
|
|
|
return $data;
|
|
}
|
|
}
|