d0/d28/api__mymodule_8class_8php_source.html

 <?php

 /* Copyright (C) 2015   Jean-François Ferry     <jfefe@aternatik.fr>

  * Copyright (C) ---Put here your own copyright and developer email---

  *

  * This program is free software; you can redistribute it and/or modify

  * it under the terms of the GNU General Public License as published by

  * the Free Software Foundation; either version 3 of the License, or

  * (at your option) any later version.

  *

  * This program is distributed in the hope that it will be useful,

  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  * GNU General Public License for more details.

  *

  * You should have received a copy of the GNU General Public License

  * along with this program. If not, see <https://www.gnu.org/licenses/>.

  */


 use Luracast\Restler\RestException;


 dol_include_once('/mymodule/class/myobject.class.php');


 class MyModuleApi extends DolibarrApi

 {

   public $myobject;


   public function __construct()

   {

     global $db, $conf;

     $this->db = $db;

     $this->myobject = new MyObject($this->db);

   }


   public function get($id)

   {

     if (!DolibarrApiAccess::$user->rights->mymodule->read) {

       throw new RestException(401);

     }


     $result = $this->myobject->fetch($id);

     if (!$result) {

       throw new RestException(404, 'MyObject not found');

     }


     if (!DolibarrApi::_checkAccessToResource('myobject', $this->myobject->id, 'mymodule_myobject')) {

       throw new RestException(401, 'Access to instance id='.$this->myobject->id.' of object not allowed for login '.DolibarrApiAccess::$user->login);

     }


     return $this->_cleanObjectDatas($this->myobject);

   }


   public function index($sortfield = "t.rowid", $sortorder = 'ASC', $limit = 100, $page = 0, $sqlfilters = '')

   {

     global $db, $conf;


     $obj_ret = array();

     $tmpobject = new MyObject($this->db);


     if (!DolibarrApiAccess::$user->rights->mymodule->myobject->read) {

       throw new RestException(401);

     }


     $socid = DolibarrApiAccess::$user->socid ? DolibarrApiAccess::$user->socid : '';


     $restrictonsocid = 0; // Set to 1 if there is a field socid in table of object


     // If the internal user must only see his customers, force searching by him

     $search_sale = 0;

     if ($restrictonsocid && !DolibarrApiAccess::$user->rights->societe->client->voir && !$socid) $search_sale = DolibarrApiAccess::$user->id;


     $sql = "SELECT t.rowid";

     if ($restrictonsocid && (!DolibarrApiAccess::$user->rights->societe->client->voir && !$socid) || $search_sale > 0) $sql .= ", sc.fk_soc, sc.fk_user"; // We need these fields in order to filter by sale (including the case where the user can only see his prospects)

     $sql .= " FROM ".MAIN_DB_PREFIX.$tmpobject->table_element." as t";


     if ($restrictonsocid && (!DolibarrApiAccess::$user->rights->societe->client->voir && !$socid) || $search_sale > 0) $sql .= ", ".MAIN_DB_PREFIX."societe_commerciaux as sc"; // We need this table joined to the select in order to filter by sale

     $sql .= " WHERE 1 = 1";


     // Example of use $mode

     //if ($mode == 1) $sql.= " AND s.client IN (1, 3)";

     //if ($mode == 2) $sql.= " AND s.client IN (2, 3)";


     if ($tmpobject->ismultientitymanaged) $sql .= ' AND t.entity IN ('.getEntity($tmpobject->element).')';

     if ($restrictonsocid && (!DolibarrApiAccess::$user->rights->societe->client->voir && !$socid) || $search_sale > 0) $sql .= " AND t.fk_soc = sc.fk_soc";

     if ($restrictonsocid && $socid) $sql .= " AND t.fk_soc = ".$socid;

     if ($restrictonsocid && $search_sale > 0) $sql .= " AND t.rowid = sc.fk_soc"; // Join for the needed table to filter by sale

     // Insert sale filter

     if ($restrictonsocid && $search_sale > 0) {

       $sql .= " AND sc.fk_user = ".$search_sale;

     }

     if ($sqlfilters)

     {

       if (!DolibarrApi::_checkFilters($sqlfilters)) {

         throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);

       }

       $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';

       $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";

     }


     $sql .= $this->db->order($sortfield, $sortorder);

     if ($limit) {

       if ($page < 0) {

         $page = 0;

       }

       $offset = $limit * $page;


       $sql .= $this->db->plimit($limit + 1, $offset);

     }


     $result = $this->db->query($sql);

     $i = 0;

     if ($result)

     {

       $num = $this->db->num_rows($result);

       while ($i < $num)

       {

         $obj = $this->db->fetch_object($result);

         $tmp_object = new MyObject($this->db);

         if ($tmp_object->fetch($obj->rowid)) {

           $obj_ret[] = $this->_cleanObjectDatas($tmp_object);

         }

         $i++;

       }

     } else {

       throw new RestException(503, 'Error when retrieving myobject list: '.$this->db->lasterror());

     }

     if (!count($obj_ret)) {

       throw new RestException(404, 'No myobject found');

     }

     return $obj_ret;

   }


   public function post($request_data = null)

   {

     if (!DolibarrApiAccess::$user->rights->mymodule->write) {

       throw new RestException(401);

     }

     // Check mandatory fields

     $result = $this->_validate($request_data);


     foreach ($request_data as $field => $value) {

       $this->myobject->$field = $value;

     }

     if ($this->myobject->create(DolibarrApiAccess::$user)<0) {

       throw new RestException(500, "Error creating MyObject", array_merge(array($this->myobject->error), $this->myobject->errors));

     }

     return $this->myobject->id;

   }


   public function put($id, $request_data = null)

   {

     if (!DolibarrApiAccess::$user->rights->mymodule->write) {

       throw new RestException(401);

     }


     $result = $this->myobject->fetch($id);

     if (!$result) {

       throw new RestException(404, 'MyObject not found');

     }


     if (!DolibarrApi::_checkAccessToResource('myobject', $this->myobject->id, 'mymodule_myobject')) {

       throw new RestException(401, 'Access to instance id='.$this->myobject->id.' of object not allowed for login '.DolibarrApiAccess::$user->login);

     }


     foreach ($request_data as $field => $value) {

       if ($field == 'id') continue;

       $this->myobject->$field = $value;

     }


     if ($this->myobject->update(DolibarrApiAccess::$user, false) > 0)

     {

       return $this->get($id);

     } else {

       throw new RestException(500, $this->myobject->error);

     }

   }


   public function delete($id)

   {

     if (!DolibarrApiAccess::$user->rights->mymodule->delete) {

       throw new RestException(401);

     }

     $result = $this->myobject->fetch($id);

     if (!$result) {

       throw new RestException(404, 'MyObject not found');

     }


     if (!DolibarrApi::_checkAccessToResource('myobject', $this->myobject->id, 'mymodule_myobject')) {

       throw new RestException(401, 'Access to instance id='.$this->myobject->id.' of object not allowed for login '.DolibarrApiAccess::$user->login);

     }


     if (!$this->myobject->delete(DolibarrApiAccess::$user))

     {

       throw new RestException(500, 'Error when deleting MyObject : '.$this->myobject->error);

     }


     return array(

       'success' => array(

         'code' => 200,

         'message' => 'MyObject deleted'

       )

     );

   }


   // phpcs:disable PEAR.NamingConventions.ValidFunctionName.PublicUnderscore

   protected function _cleanObjectDatas($object)

   {

     // phpcs:enable

     $object = parent::_cleanObjectDatas($object);


     unset($object->rowid);

     unset($object->canvas);


     /*unset($object->name);

     unset($object->lastname);

     unset($object->firstname);

     unset($object->civility_id);

     unset($object->statut);

     unset($object->state);

     unset($object->state_id);

     unset($object->state_code);

     unset($object->region);

     unset($object->region_code);

     unset($object->country);

     unset($object->country_id);

     unset($object->country_code);

     unset($object->barcode_type);

     unset($object->barcode_type_code);

     unset($object->barcode_type_label);

     unset($object->barcode_type_coder);

     unset($object->total_ht);

     unset($object->total_tva);

     unset($object->total_localtax1);

     unset($object->total_localtax2);

     unset($object->total_ttc);

     unset($object->fk_account);

     unset($object->comments);

     unset($object->note);

     unset($object->mode_reglement_id);

     unset($object->cond_reglement_id);

     unset($object->cond_reglement);

     unset($object->shipping_method_id);

     unset($object->fk_incoterms);

     unset($object->label_incoterms);

     unset($object->location_incoterms);

     */


     // If object has lines, remove $db property

     if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0) {

       $nboflines = count($object->lines);

       for ($i = 0; $i < $nboflines; $i++)

       {

         $this->_cleanObjectDatas($object->lines[$i]);


         unset($object->lines[$i]->lines);

         unset($object->lines[$i]->note);

       }

     }


     return $object;

   }


   private function _validate($data)

   {

     $myobject = array();

     foreach ($this->myobject->fields as $field => $propfield) {

       if (in_array($field, array('rowid', 'entity', 'date_creation', 'tms', 'fk_user_creat')) || $propfield['notnull'] != 1) continue; // Not a mandatory field

       if (!isset($data[$field]))

         throw new RestException(400, "$field field missing");

       $myobject[$field] = $data[$field];

     }

     return $myobject;

   }

 }

dol_include_once
if(!function_exists('dol_getprefix')) dol_include_once($relpath, $classname= '')
Make an include_once using default root and alternate root if it fails.
Definition: functions.lib.php:769

MyModuleApi\put
put($id, $request_data=null)
Update myobject.
Definition: api_mymodule.class.php:223

MyObject
Class for MyObject.
Definition: myobject.class.php:33

db
$conf db
API class for accounts.
Definition: inc.php:54

DolibarrApi\_checkFilters
_checkFilters($sqlfilters)
Return if a $sqlfilters parameter is valid.
Definition: api.class.php:278

MyModuleApi\index
index($sortfield="t.rowid", $sortorder= 'ASC', $limit=100, $page=0, $sqlfilters= '')
List myobjects.
Definition: api_mymodule.class.php:105

DolibarrApi
Class for API REST v1.
Definition: api.class.php:30

MyModuleApi\post
post($request_data=null)
Create myobject object.
Definition: api_mymodule.class.php:195

MyModuleApi\_cleanObjectDatas
_cleanObjectDatas($object)
Clean sensible object datas.
Definition: api_mymodule.class.php:296

MyModuleApi\_validate
_validate($data)
Validate fields before create or update object.
Definition: api_mymodule.class.php:361

MyModuleApi\__construct
__construct()
Constructor.
Definition: api_mymodule.class.php:50

DolibarrApi\_checkAccessToResource
static _checkAccessToResource($resource, $resource_id=0, $dbtablename= '', $feature2= '', $dbt_keyfield= 'fk_soc', $dbt_select= 'rowid')
Check user access to a resource.
Definition: api.class.php:252

MyModuleApi
Definition: api_mymodule.class.php:37