Step 2 - Implement public and private file uploads, starabe, and File entity

Author: nguyenk

Makefile

@@ -129,6 +129,10 @@ cs-check: sync-env ## cs-check
 phpstan: sync-env ## phpstan
 	docker compose exec back composer -- run phpstan
 
+.PHONY: backlint
+backlint: sync-env ## phpstan
+	docker compose exec back composer -- run lint-all
+
 .PHONY: frontlint
 frontlint: sync-env ## lint front (fix)
 	docker compose exec front yarn lint --fix

apps/back/config/packages/security.yaml

@@ -45,6 +45,10 @@ security:
             - ROLE_RIGHT_USER_CREATE
             - ROLE_RIGHT_USER_DELETE
             - ROLE_RIGHT_USER_UPDATE
+            - ROLE_RIGHT_COMPANY_READ
+            - ROLE_RIGHT_COMPANY_CREATE
+            - ROLE_RIGHT_COMPANY_DELETE
+            - ROLE_RIGHT_COMPANY_UPDATE
         ROLE_USER:
             - ROLE_RIGHT_ACCESS
 

apps/back/migrations/Version20231005121328.php

@@ -0,0 +1,37 @@
+<?php
+
+declare(strict_types=1);
+
+namespace DoctrineMigrations;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+/**
+ * Auto-generated Migration: Please modify to your needs!
+ */
+final class Version20231005121328 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return '';
+    }
+
+    public function up(Schema $schema): void
+    {
+        // this up() migration is auto-generated, please modify it to your needs
+        $this->addSql('CREATE TABLE company (id INT AUTO_INCREMENT NOT NULL, name VARCHAR(255) NOT NULL, PRIMARY KEY(id)) DEFAULT CHARACTER SET utf8mb4 COLLATE `utf8mb4_unicode_ci` ENGINE = InnoDB');
+        $this->addSql('ALTER TABLE user ADD company_id INT DEFAULT NULL');
+        $this->addSql('ALTER TABLE user ADD CONSTRAINT FK_8D93D649979B1AD6 FOREIGN KEY (company_id) REFERENCES company (id)');
+        $this->addSql('CREATE INDEX IDX_8D93D649979B1AD6 ON user (company_id)');
+    }
+
+    public function down(Schema $schema): void
+    {
+        // this down() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE user DROP FOREIGN KEY FK_8D93D649979B1AD6');
+        $this->addSql('DROP TABLE company');
+        $this->addSql('DROP INDEX IDX_8D93D649979B1AD6 ON user');
+        $this->addSql('ALTER TABLE user DROP company_id');
+    }
+}

apps/back/migrations/Version20231006041542.php

@@ -0,0 +1,33 @@
+<?php
+
+declare(strict_types=1);
+
+namespace DoctrineMigrations;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+/**
+ * Auto-generated Migration: Please modify to your needs!
+ */
+final class Version20231006041542 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return '';
+    }
+
+    public function up(Schema $schema): void
+    {
+        // this up() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE company ADD identity_file VARCHAR(255) DEFAULT NULL');
+        $this->addSql('ALTER TABLE user ADD profile_picture VARCHAR(255) DEFAULT NULL');
+    }
+
+    public function down(Schema $schema): void
+    {
+        // this down() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE company DROP identity_file');
+        $this->addSql('ALTER TABLE user DROP profile_picture');
+    }
+}

apps/back/migrations/Version20231015065234.php

@@ -0,0 +1,43 @@
+<?php
+
+declare(strict_types=1);
+
+namespace DoctrineMigrations;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+/**
+ * Auto-generated Migration: Please modify to your needs!
+ */
+final class Version20231015065234 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return '';
+    }
+
+    public function up(Schema $schema): void
+    {
+        // this up() migration is auto-generated, please modify it to your needs
+        $this->addSql('CREATE TABLE file (id INT AUTO_INCREMENT NOT NULL, name VARCHAR(255) NOT NULL, private TINYINT(1) NOT NULL, storage_path VARCHAR(255) NOT NULL, PRIMARY KEY(id)) DEFAULT CHARACTER SET utf8mb4 COLLATE `utf8mb4_unicode_ci` ENGINE = InnoDB');
+        $this->addSql('ALTER TABLE company ADD indentity_file_id INT NOT NULL');
+        $this->addSql('ALTER TABLE company ADD CONSTRAINT FK_4FBF094FDB804B4A FOREIGN KEY (indentity_file_id) REFERENCES file (id)');
+        $this->addSql('CREATE UNIQUE INDEX UNIQ_4FBF094FDB804B4A ON company (indentity_file_id)');
+        $this->addSql('ALTER TABLE user ADD profile_picture_id INT DEFAULT NULL, DROP profile_picture, CHANGE roles roles JSON NOT NULL COMMENT \'(DC2Type:json)\'');
+        $this->addSql('ALTER TABLE user ADD CONSTRAINT FK_8D93D649292E8AE2 FOREIGN KEY (profile_picture_id) REFERENCES file (id)');
+        $this->addSql('CREATE UNIQUE INDEX UNIQ_8D93D649292E8AE2 ON user (profile_picture_id)');
+    }
+
+    public function down(Schema $schema): void
+    {
+        // this down() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE company DROP FOREIGN KEY FK_4FBF094FDB804B4A');
+        $this->addSql('ALTER TABLE user DROP FOREIGN KEY FK_8D93D649292E8AE2');
+        $this->addSql('DROP TABLE file');
+        $this->addSql('DROP INDEX UNIQ_4FBF094FDB804B4A ON company');
+        $this->addSql('ALTER TABLE company ADD identity_file VARCHAR(255) DEFAULT NULL, DROP indentity_file_id');
+        $this->addSql('DROP INDEX UNIQ_8D93D649292E8AE2 ON user');
+        $this->addSql('ALTER TABLE user ADD profile_picture VARCHAR(255) DEFAULT NULL, DROP profile_picture_id, CHANGE roles roles JSON NOT NULL COMMENT \'(DC2Type:json)\'');
+    }
+}

apps/back/migrations/Version20231022121013.php

@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+namespace DoctrineMigrations;
+
+use Doctrine\DBAL\Schema\Schema;
+use Doctrine\Migrations\AbstractMigration;
+
+/**
+ * Auto-generated Migration: Please modify to your needs!
+ */
+final class Version20231022121013 extends AbstractMigration
+{
+    public function getDescription(): string
+    {
+        return '';
+    }
+
+    public function up(Schema $schema): void
+    {
+        // this up() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE company CHANGE indentity_file_id indentity_file_id INT DEFAULT NULL');
+    }
+
+    public function down(Schema $schema): void
+    {
+        // this down() migration is auto-generated, please modify it to your needs
+        $this->addSql('ALTER TABLE company CHANGE indentity_file_id indentity_file_id INT NOT NULL');
+    }
+}

apps/back/src/Controller/CompanyController.php

@@ -0,0 +1,75 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Controller;
+
+use App\Dto\Request\Company\CompanyRequestDto;
+use App\Entity\Company;
+use App\Repository\CompanyRepository;
+use App\UseCase\Company\CreateCompany;
+use App\UseCase\Company\UpdateCompany;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\File\UploadedFile;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpKernel\Attribute\MapRequestPayload;
+use Symfony\Component\Routing\Annotation\Route;
+use Symfony\Component\Security\Http\Attribute\IsGranted;
+
+class CompanyController extends AbstractController
+{
+    public function __construct(
+        private readonly EntityManagerInterface $entityManager,
+        private readonly CompanyRepository $companyRepository,
+        private readonly CreateCompany $createCompany,
+        private readonly UpdateCompany $updateCompany,
+    ) {
+    }
+
+    #[Route('/companies', name: 'list_companies', methods: ['GET'])]
+    public function list(): JsonResponse
+    {
+        $companies = $this->companyRepository->findAll();
+
+        return $this->json($companies, 200, [], ['groups' => Company::GROUP_LIST]);
+    }
+
+    #[Route('/companies/{id}', name: 'get_company', methods: ['GET'])]
+    #[IsGranted('ROLE_RIGHT_COMPANY_READ')]
+    public function get(Company $company): JsonResponse
+    {
+        return $this->json($company, 200, [], ['groups' => Company::GROUP_DETAILS]);
+    }
+
+    #[Route('/companies', name: 'create_company', methods: ['POST'])]
+    #[IsGranted('ROLE_RIGHT_COMPANY_CREATE')]
+    public function create(#[MapRequestPayload] CompanyRequestDto $companyRequestDto, Request $request): JsonResponse
+    {
+        $identityFile = $request->files->get('identityFile');
+        if ($identityFile !== null) {
+            \assert($identityFile instanceof UploadedFile);
+            $companyRequestDto->setIndentityFile($identityFile);
+        }
+        $company = $this->createCompany->create($companyRequestDto);
+        $this->entityManager->flush();
+
+        return $this->json($company, 200, [], ['groups' => Company::GROUP_DETAILS]);
+    }
+
+    #[Route('/companies/{id}', name: 'update_company', methods: ['POST'])]
+    #[IsGranted('ROLE_RIGHT_COMPANY_UPDATE')]
+    public function update(Company $company, #[MapRequestPayload] CompanyRequestDto $companyRequestDto, Request $request): JsonResponse
+    {
+        $identityFile = $request->files->get('identityFile');
+        if ($identityFile !== null) {
+            \assert($identityFile instanceof UploadedFile);
+            $companyRequestDto->setIndentityFile($identityFile);
+        }
+        $company = $this->updateCompany->update($company, $companyRequestDto);
+        $this->entityManager->flush();
+
+        return $this->json($company, 200, [], ['groups' => Company::GROUP_DETAILS]);
+    }
+}

apps/back/src/Controller/UserController.php

@@ -4,14 +4,16 @@
 
 namespace App\Controller;
 
-use App\Dto\Request\CreateUserDto;
-use App\Dto\Request\UpdateUserDto;
+use App\Dto\Request\User\CreateUserDto;
+use App\Dto\Request\User\UpdateUserDto;
 use App\Entity\User;
 use App\Repository\UserRepository;
 use App\UseCase\User\CreateUser;
 use App\UseCase\User\UpdateUser;
 use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\HttpFoundation\File\UploadedFile;
 use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpKernel\Attribute\MapRequestPayload;
 use Symfony\Component\Routing\Annotation\Route;
 use Symfony\Component\Security\Http\Attribute\IsGranted;
@@ -27,8 +29,13 @@ public function __construct(
     }
 
     #[Route('/users', name: 'create_user', methods: ['POST'])]
-    public function createUser(#[MapRequestPayload] CreateUserDto $userDto): JsonResponse
+    public function createUser(#[MapRequestPayload] CreateUserDto $userDto, Request $request): JsonResponse
     {
+        $profilePicture = $request->files->get('profilePictureFile');
+        if ($profilePicture !== null) {
+            \assert($profilePicture instanceof UploadedFile);
+            $userDto->setProfilePicture($profilePicture);
+        }
         $user = $this->createUser->createUser($userDto);
 
         $this->entityManager->flush();
@@ -54,10 +61,17 @@ public function getUser(User $user): JsonResponse
         ]);
     }
 
-    #[Route('/users/{id}', name: 'update_user', methods: ['PUT'])]
+    #[Route('/users/{id}', name: 'update_user', methods: ['POST'])]
     #[IsGranted('ROLE_RIGHT_USER_UPDATE')]
-    public function updateUser(User $user, #[MapRequestPayload] UpdateUserDto $userDto): JsonResponse
+    public function updateUser(User $user, #[MapRequestPayload] UpdateUserDto $userDto, Request $request): JsonResponse
     {
+        // phpcs:disable Generic.Commenting.Fixme.TaskFound
+        // FIXME: Using POST instead of PUT here because PUT does not handle multipart form data correctly
+        $profilePicture = $request->files->get('profilePictureFile');
+        if ($profilePicture !== null) {
+            \assert($profilePicture instanceof UploadedFile);
+            $userDto->setProfilePicture($profilePicture);
+        }
         $user = $this->updateUser->updateUser($user, $userDto);
 
         $this->entityManager->flush();

apps/back/src/Dto/Request/Company/CompanyRequestDto.php

@@ -0,0 +1,32 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Dto\Request\Company;
+
+use Symfony\Component\HttpFoundation\File\UploadedFile;
+
+class CompanyRequestDto
+{
+    private UploadedFile|null $indentityFile = null;
+
+    public function __construct(
+        private readonly string $name,
+    ) {
+    }
+
+    public function getName(): string
+    {
+        return $this->name;
+    }
+
+    public function getIndentityFile(): UploadedFile|null
+    {
+        return $this->indentityFile;
+    }
+
+    public function setIndentityFile(UploadedFile|null $indentityFile): void
+    {
+        $this->indentityFile = $indentityFile;
+    }
+}

apps/back/src/Dto/Request/CreateUserDto.php renamed to apps/back/src/Dto/Request/User/CreateUserDto.php

@@ -2,12 +2,14 @@
 
 declare(strict_types=1);
 
-namespace App\Dto\Request;
+namespace App\Dto\Request\User;
 
 use Symfony\Component\Validator\Constraints as Assert;
 
 class CreateUserDto
 {
+    use ProfilePicture;
+
     public function __construct(
         #[Assert\Email]
         #[Assert\NotBlank]

apps/back/src/Dto/Request/User/ProfilePicture.php

@@ -0,0 +1,22 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Dto\Request\User;
+
+use Symfony\Component\HttpFoundation\File\UploadedFile;
+
+trait ProfilePicture
+{
+    private UploadedFile|null $profilePicture = null;
+
+    public function getProfilePicture(): UploadedFile|null
+    {
+        return $this->profilePicture;
+    }
+
+    public function setProfilePicture(UploadedFile|null $profilePicture): void
+    {
+        $this->profilePicture = $profilePicture;
+    }
+}

apps/back/src/Dto/Request/UpdateUserDto.php renamed to apps/back/src/Dto/Request/User/UpdateUserDto.php

@@ -2,12 +2,14 @@
 
 declare(strict_types=1);
 
-namespace App\Dto\Request;
+namespace App\Dto\Request\User;
 
 use Symfony\Component\Validator\Constraints as Assert;
 
 class UpdateUserDto
 {
+    use ProfilePicture;
+
     public function __construct(
         #[Assert\Email]
         private string $email,