sosuke.iwabuchi
/
SATE-EasyReceipt
ウォッチ 1
スター 0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
領収証発行サービス
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
11 コミット
1 ブランチ
1.1MB
ツリー: 8ba83f4d6f
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'8ba83f4d6f' から
${ noResults }
SATE-EasyReceipt/app/Http/Controllers/Web/WebController.php

394 行
11KB
Raw Blame 履歴 

  1. <?php

  2. 

  3. namespace App\Http\Controllers\Web;

  4. 

  5. use App\Codes\HTTPResultCode as ResultCode;

  6. use App\Codes\UserRole;

  7. use App\Exceptions\AppCommonException;

  8. use App\Exceptions\GeneralErrorMessageException;

  9. use Exception;

  10. use Illuminate\Foundation\Auth\Access\AuthorizesRequests;

  11. use Illuminate\Foundation\Bus\DispatchesJobs;

  12. use Illuminate\Foundation\Validation\ValidatesRequests;

  13. use Illuminate\Http\JsonResponse;

  14. use Illuminate\Http\Request;

  15. use Illuminate\Http\Response;

  16. use Illuminate\Routing\Controller as BaseController;

  17. use Illuminate\Support\Arr;

  18. use Illuminate\Support\Facades\Auth;

  19. use Illuminate\Support\Facades\Log;

  20. use Illuminate\Support\Facades\Validator;

  21. use Illuminate\Support\Str;

  22. use Illuminate\Validation\ValidationException;

  23. use LogicException;

  24. use Symfony\Component\HttpFoundation\BinaryFileResponse;

  25. use Symfony\Component\HttpKernel\Exception\HttpException;

  26. 

  27. abstract class WebController extends BaseController

  28. {

  29.     use AuthorizesRequests, DispatchesJobs, ValidatesRequests;

  30. 

  31.     const COL_NAME_CREATED_AT = 'created_at';

  32.     const COL_NAME_UPDATED_AT = 'updated_at';

  33. 

  34.     const COL_NAME_RESULT_CODE = 'result';

  35.     const COL_NAME_DATA = 'data';

  36.     const COL_NAME_MESSAGES = 'messages';

  37.     const COL_NAME_GENERAL_MESSAGE = 'general';

  38.     const COL_NAME_EMAIL_ID = 'email_id';

  39.     const COL_NAME_ERRORS = 'errors';

  40. 

  41.     /**

  42.      * バリデートした結果を格納

  43.      *

  44.      * @var array

  45.      */

  46.     protected $validated = [];

  47. 

  48.     /**

  49.      * 画面へ返却するメールID

  50.      *

  51.      * @var integer|null

  52.      */

  53.     private int|null $emailId = null;

  54. 

  55.     /**

  56.      * 返却するメッセージ

  57.      *

  58.      * @var array|null

  59.      */

  60.     private array|null $messages = null;

  61. 

  62.     /**

  63.      * 返却するメッセージ

  64.      *

  65.      * @var string|null

  66.      */

  67.     private string|null $generalMessage = null;

  68. 

  69.     /**

  70.      * 返却するデータ

  71.      *

  72.      * @var mixed|null

  73.      */

  74.     private $data = null;

  75. 

  76.     /**

  77.      * 返却する結果コード

  78.      *

  79.      * @var ResultCode|null

  80.      */

  81.     private ResultCode|null $resultCode = ResultCode::SECCESS;

  82. 

  83. 

  84.     /**

  85.      * パラメータオブジェクト

  86.      */

  87.     protected function getParam(): IParam

  88.     {

  89.         return $this->param;

  90.     }

  91. 

  92. 

  93.     /**

  94.      * コントローラーの名前

  95.      * オーバーライドされることを想定

  96.      * 主に、Routeのドキュメント作成用

  97.      *

  98.      * @return string

  99.      */

  100.     public function name(): string

  101.     {

  102.         return "---未設定---";

  103.     }

  104. 

  105.     /**

  106.      * コントローラーの説明

  107.      * オーバーライドされることを想定

  108.      * 主に、Routeのドキュメント作成用

  109.      *

  110.      * @return string

  111.      */

  112.     public function description(): string

  113.     {

  114.         return "---未設定---";

  115.     }

  116. 

  117.     /**

  118.      * オーバーライド必要

  119.      * メインロジック

  120.      *

  121.      * @param Request $request

  122.      * @return  Response|JsonResponse|string

  123.      */

  124.     protected function run(Request $request): Response|JsonResponse|BinaryFileResponse|string

  125.     {

  126.         return $this->successResponse();

  127.     }

  128. 

  129.     private function getRules()

  130.     {

  131.         return $this->getParam()->rules();

  132.     }

  133. 

  134.     public function entry(Request $request)

  135.     {

  136.         $this->setLogContext($request);

  137. 

  138.         try {

  139.             $validator = Validator::make($request->all(), $this->getRules());

  140.             $validator->validate();

  141.         } catch (ValidationException $e) {

  142.             logger("validate error", ['errors' => $e->errors(), 'request' => $request->all(), 'path' =>  $request->path()]);

  143.             return $this->validateErrorResponse($e);

  144.         }

  145. 

  146.         try {

  147.             $this->validated = $validator->validated();

  148.             $this->getParam()->setData($this->validated);

  149. 

  150.             $this->authorize();

  151. 

  152.             return $this->run($request);

  153.         } catch (GeneralErrorMessageException $e) {

  154.             return $this->failedResponse([], $e->getMessage());

  155.         } catch (AppCommonException $e) {

  156.             logs()->error(sprintf("Appエラー:%s", $e->getMessage()));

  157.             return $this->failedResponse();

  158.         } catch (LogicException $e) {

  159.             logs()->error([

  160.                 sprintf("実装エラー:%s", $e->getMessage()),

  161.                 get_class($e),

  162.                 $e->getFile(),

  163.                 $e->getLine(),

  164.                 $request->all(),

  165.             ]);

  166.             logger(array_filter($e->getTrace(), function ($val, $key) {

  167.                 return $key <= 5;

  168.             }, ARRAY_FILTER_USE_BOTH));

  169.             return $this->failedResponse();

  170.         } catch (ValidationException $e) {

  171.             return $this->validateErrorResponse($e);

  172.         } catch (HttpException $e) {

  173.             if ($e->getStatusCode() === 401) {

  174.                 return $this->unAuthorizedResponse();

  175.             }

  176.             throw e;

  177.         } catch (Exception $e) {

  178.             logs()->error([

  179.                 sprintf("例外エラー:%s", $e->getMessage()),

  180.                 get_class($e),

  181.                 $e->getFile(),

  182.                 $e->getLine(),

  183.                 $request->all(),

  184.             ]);

  185.             logger(array_filter($e->getTrace(), function ($val, $key) {

  186.                 return $key <= 5;

  187.             }, ARRAY_FILTER_USE_BOTH));

  188.             return $this->failedResponse();

  189.         }

  190.     }

  191. 

  192.     protected function successResponse(array|object $data = [], array|string $messages = [])

  193.     {

  194.         return $this->setData($data)

  195.             ->setMessages($messages)

  196.             ->setResultCode(ResultCode::SECCESS)

  197.             ->makeResponse();

  198.     }

  199. 

  200.     protected function failedResponse(array|object $data = [], array|string $messages = [])

  201.     {

  202.         return $this->setData($data)

  203.             ->setMessages($messages)

  204.             ->setResultCode(ResultCode::FAILED)

  205.             ->makeResponse();

  206.     }

  207.     protected function unAuthorizedResponse(array|object $data = [], array|string $messages = [])

  208.     {

  209.         return $this->setData($data)

  210.             ->setMessages($messages)

  211.             ->setResultCode(ResultCode::UNAUTHORIZED)

  212.             ->makeResponse();

  213.     }

  214.     protected function exclusiveErrorResponse(array|object $data = [], array|string $messages = [])

  215.     {

  216.         return $this->setData($data)

  217.             ->setMessages($messages)

  218.             ->setResultCode(ResultCode::EXCLUSIVE_ERROR)

  219.             ->makeResponse();

  220.     }

  221. 

  222.     protected function validateErrorResponse(ValidationException|array $exception, string|null $generalMessage = null)

  223.     {

  224. 

  225.         $errorMessages = [];

  226.         $general = null;

  227.         if ($exception instanceof ValidationException) {

  228.             foreach ($exception->errors() as $key => $m) {

  229.                 $errorMessages[$key] = $m[0];

  230.             }

  231.         }

  232. 

  233.         if (is_array($exception)) {

  234.             $errorMessages = $exception;

  235.         }

  236. 

  237.         $general = $generalMessage ?? data_get($errorMessages, self::COL_NAME_GENERAL_MESSAGE);

  238. 

  239.         return $this->setData([])

  240.             ->setMessages($errorMessages)

  241.             ->setGeneralMessage($general)

  242.             ->setResultCode(ResultCode::FAILED)

  243.             ->makeResponse();

  244.     }

  245. 

  246.     private function makeResponse()

  247.     {

  248.         if ($this->resultCode === null) {

  249.             abort(403);

  250.         }

  251. 

  252.         $ret = [];

  253.         Arr::set($ret, self::COL_NAME_RESULT_CODE, $this->resultCode->value);

  254.         if ($this->data !== null) {

  255.             Arr::set($ret, self::COL_NAME_DATA, $this->data);

  256.         }

  257.         if ($this->messages !== null) {

  258.             Arr::set($ret, self::COL_NAME_MESSAGES . "." . self::COL_NAME_ERRORS, $this->messages);

  259.         }

  260.         if ($this->generalMessage !== null) {

  261.             Arr::set($ret, self::COL_NAME_MESSAGES . "." . self::COL_NAME_GENERAL_MESSAGE, $this->generalMessage);

  262.         }

  263.         if ($this->emailId !== null) {

  264.             Arr::set($ret, self::COL_NAME_MESSAGES . "." . self::COL_NAME_EMAIL_ID, $this->emailId);

  265.         }

  266. 

  267.         return response()

  268.             ->json($ret)

  269.             ->withHeaders($this->makeHeader());

  270.     }

  271. 

  272.     private function makeHeader(): array

  273.     {

  274.         $header = [];

  275.         $user = Auth::user();

  276.         if ($user) {

  277.             $header["App-User-Auth"] = sprintf("%d,%d", $user->id, $user->role->value);

  278.         } else {

  279.             $header["App-User-Auth"] = 'none';

  280.         }

  281.         return $header;

  282.     }

  283. 

  284.     // 以下 認可関係

  285.     protected array|null $roleAllow = null;

  286.     protected array|null $roleDisallow = null;

  287.     protected array|null $customAllow = null;

  288. 

  289.     protected function roleAllow(UserRole $role)

  290.     {

  291.         $this->roleAllow = [];

  292.         foreach (UserRole::cases() as $ele) {

  293.             if ($role->value <= $ele->value) {

  294.                 $this->roleAllow[] = $ele;

  295.             }

  296.         }

  297.     }

  298. 

  299.     private function authorize()

  300.     {

  301.         if (!Auth::check()) {

  302.             return;

  303.         }

  304. 

  305.         $role = Auth::user()->role;

  306. 

  307.         if (!$this->canAccess($role)) {

  308.             abort(401);

  309.         }

  310.     }

  311. 

  312.     public function canAccess(UserRole $role)

  313.     {

  314.         if (is_array($this->roleAllow) && !in_array($role, $this->roleAllow)) {

  315.             return false;

  316.         }

  317. 

  318.         if (is_array($this->roleDisallow) && in_array($role, $this->roleDisallow)) {

  319.             return false;

  320.         }

  321. 

  322.         return $this->canCustomAccess();

  323.     }

  324. 

  325.     public function canCustomAccess(): bool

  326.     {

  327. 

  328.         if (Auth::user()->role === UserRole::SUPER_ADMIN) {

  329.             return true;

  330.         }

  331. 

  332.         if ($this->customAllow === null) {

  333.             return true;

  334.         }

  335. 

  336.         $myCustoms = Auth::user()->contract->custom();

  337. 

  338. 

  339. 

  340. 

  341.         foreach ($this->customAllow as $targetCustom) {

  342.             logger(['myCustoms' => $myCustoms, 'target' => $targetCustom]);

  343.             if (in_array($targetCustom, $myCustoms, true)) {

  344.                 return true;

  345.             }

  346.         }

  347.         return false;

  348.     }

  349. 

  350.     // 返却用データの登録

  351.     protected function setEmailId(int $emailId)

  352.     {

  353.         $this->emailId = $emailId;

  354.         return $this;

  355.     }

  356. 

  357.     protected function setMessages(array|string $messages)

  358.     {

  359.         if (is_array($messages)) {

  360.             $this->messages = $messages;

  361.         } else {

  362.             $this->setGeneralMessage($messages);

  363.         }

  364.         return $this;

  365.     }

  366. 

  367.     protected function setGeneralMessage(string|null $generalMessage)

  368.     {

  369.         $this->generalMessage = $generalMessage;

  370.         return $this;

  371.     }

  372. 

  373.     protected function setData($data)

  374.     {

  375.         $this->data = $data;

  376.         return $this;

  377.     }

  378. 

  379.     protected function setResultCode(ResultCode $resultCode)

  380.     {

  381.         $this->resultCode = $resultCode;

  382.         return $this;

  383.     }

  384. 

  385.     protected function setLogContext(Request $request)

  386.     {

  387.         Log::withContext([

  388.             '__requestUuid__' => strval(Str::uuid()),

  389.             '__userId__' => Auth::id(),

  390.             '__path__' => $request->path(),

  391.         ]);

  392.     }

  393. }