src/Controller/APIRest/SynerticMobileApp/SynerticMobileAppController.php line 319

Open in your IDE?
  1. <?php
  3. namespace App\Controller\APIRest\SynerticMobileApp;
  5. // Core app
  6. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  7. use Doctrine\Persistence\ManagerRegistry;
  8. use Symfony\Component\HttpFoundation\Request;
  9. use Symfony\Component\HttpFoundation\JsonResponse;
  11. // Services
  12. use App\Services\APIRest\Tools\APIResponseTools;
  13. use App\Services\APIRest\SynerticMobileApp\SynerticMobileAppTools;
  14. use App\Services\APIRest\SynerticMobileApp\ServiceOrderTools;
  15. use App\Services\Log\LogMobileAppTools;
  16. use App\Services\LogTools;
  17. use App\Services\Planning\TaskTools;
  18. use App\Utils\APIError;
  20. // Exceptions
  21. use Exception;
  22. use App\Entity\APIRest\AccessAPI;
  23. use App\Entity\Planning\Task;
  24. use App\Entity\Security\Acl;
  25. use App\Enum\Log\LogLevel;
  26. use App\Exception\APIRest\APIAuthenticationException;
  27. use App\Exception\APIRest\APIException;
  28. use App\Exception\APIRest\APIInvalidDataException;
  29. use App\Exception\APIRest\APIMissingDataException;
  30. use App\Services\APIRest\Tools\GhostingTools;
  31. use App\Services\Security\AclTools;
  32. use App\Services\Config\OptionConfigTools;
  34. class SynerticMobileAppController extends AbstractController
  35. {
  36.     public function __construct(
  37.         ManagerRegistry $doctrine,
  38.         LogTools $logTools,
  39.         LogMobileAppTools $logMobileAppTools,
  40.         APIResponseTools $apiResponseTools,
  41.         SynerticMobileAppTools $synerticMobileAppTools,
  42.         ServiceOrderTools $serviceOrderTools,
  43.         GhostingTools $ghostingTools,
  44.         TaskTools $taskTools,
  45.         AclTools $aclTools,
  46.         OptionConfigTools $optionConfigTools
  47.     )
  48.     {
  49.         $this->em $doctrine->getManager();
  50.         $this->logTools $logTools;
  51.         $this->logMobileAppTools $logMobileAppTools;
  52.         $this->apiResponseTools $apiResponseTools;
  53.         $this->synerticMobileAppTools $synerticMobileAppTools;
  54.         $this->serviceOrderTools $serviceOrderTools;
  55.         $this->ghostingTools $ghostingTools;
  56.         $this->taskTools $taskTools;
  57.         $this->aclTools $aclTools;
  58.         $this->optionConfigTools $optionConfigTools;
  59.     }
  60.     
  61.     public function addFCMToken(Request $request): JsonResponse
  62.     {
  63.         try
  64.         {    
  65.             $requestedData json_decode($request->getContent(), true);
  66.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  68.             $this->logMobileAppTools->logApiCall(
  69.                 $request->getMethod(),
  70.                 $request->getPathInfo(),
  71.                 $userAppContext
  72.             );
  73.             
  74.             if($this->getUser() instanceof AccessAPI)
  75.             {
  76.                 $accessAPI =  $this->getUser();
  77.             }
  78.             else
  79.             {
  80.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  81.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  82.             }
  84.             if (empty($requestedData))
  85.             {
  86.                 $this->logMobileAppTools->error(new APIError(APIError::INVALID_DATA), $userAppContext);
  87.                 throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  88.             }
  90.             if(!array_key_exists("fcm_token"$requestedData))
  91.             {
  92.                 $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_MISSING_FCM_TOKEN), $userAppContext);
  93.                 throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_MISSING_FCM_TOKEN));
  94.             }
  96.             if($requestedData["fcm_token"] === null)
  97.             {
  98.                 $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_INVALID_FCM_TOKEN), $userAppContext);
  99.                 throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_INVALID_FCM_TOKEN));
  100.             }
  102.             // Can't verify that fcm token is legit, must trust api call
  103.             $accessAPI->setFcmToken($requestedData['fcm_token']);
  105.             $this->em->persist($accessAPI);
  107.             try
  108.             {
  109.                 $this->em->flush();
  110.             }
  111.             catch (\Exception $e)
  112.             {
  113.                 $this->logMobileAppTools->critical('Database flush error'$e$userAppContext);
  114.                 $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_ERROR_SETTING_FCM_TOKEN), $userAppContext);
  115.                 throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_ERROR_SETTING_FCM_TOKEN));
  116.             }
  118.             return $this->apiResponseTools->successResponse(array("status" => "success"));
  119.         }
  120.         catch (Exception $e)
  121.         {
  122.             if (!$e instanceof APIException)
  123.             {
  124.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  125.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  126.             }
  128.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  130.             return $this->apiResponseTools->exceptionResponse($e);
  131.         }
  132.     }
  135.     public function getFileBase64(Request $request): JsonResponse
  136.     {
  137.         try
  138.         {
  139.             $requestedData json_decode($request->getContent(), true);
  140.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  142.             $this->logMobileAppTools->logApiCall(
  143.                 $request->getMethod(),
  144.                 $request->getPathInfo(),
  145.                 $userAppContext
  146.             );
  147.             
  148.             if($this->getUser() instanceof AccessAPI)
  149.             {
  150.                 $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  151.             }
  152.             else
  153.             {
  154.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  155.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  156.             }
  158.             if (empty($requestedData))
  159.             {
  160.                 $this->logMobileAppTools->error(new APIError(APIError::INVALID_DATA), $userAppContext);
  161.                 throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  162.             }
  164.             if (!array_key_exists('type'$requestedData))
  165.             {
  166.                 $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_FILE_BASE64_MISSING_TYPE), $userAppContext);
  167.                 throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_FILE_BASE64_MISSING_TYPE));
  168.             }
  170.             if($requestedData['type'] === null)
  171.             {
  172.                 $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_FILE_BASE64_INVALID_TYPE), $userAppContext);
  173.                 throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_FILE_BASE64_INVALID_TYPE));
  174.             }
  176.             $type '';
  177.             if (!empty($requestedData['type']))
  178.             {
  179.                 if (in_array($requestedData['type'], ['attachment''devis''document''invoice''credit']))
  180.                 {
  181.                     $type $requestedData['type'];
  182.                 }
  183.                 else
  184.                 {
  185.                     $this->logMobileAppTools->error(new APIError(APIError::SYNERTIC_FILE_BASE64_INVALID_TYPE), $userAppContext);
  186.                     throw new APIInvalidDataException(new APIError(APIError::SYNERTIC_FILE_BASE64_INVALID_TYPE));
  187.                 }
  188.             }
  190.             if ($type == 'devis')
  191.             {
  192.                 $devisFileBase64Data $this->synerticMobileAppTools->getDevisFileBase64($requestedData);
  193.                 return $this->apiResponseTools->successResponse($devisFileBase64Data);
  194.             }
  196.             if ($type == 'document')
  197.             {
  198.                 $documentFileBase64Data $this->synerticMobileAppTools->getDocumentFileBase64($requestedData);
  199.                 return $this->apiResponseTools->successResponse($documentFileBase64Data);
  200.             }
  202.             if ($type == 'invoice' || $type == 'credit')
  203.             {
  204.                 $invoiceFileBase64Data $this->synerticMobileAppTools->getInvoiceFileBase64($requestedData);
  205.                 return $this->apiResponseTools->successResponse($invoiceFileBase64Data);
  206.             }
  208.             if ($type == 'attachment')
  209.             {
  210.                 $attachmentFileBase64Data $this->synerticMobileAppTools->getAttachmentFileBase64($requestedData);
  211.                 return $this->apiResponseTools->successResponse($attachmentFileBase64Data);
  212.             }
  213.             
  214.             $this->logMobileAppTools->error(new APIError(APIError::INVALID_DATA), $userAppContext);
  215.             throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  216.         }
  217.         catch (Exception $e)
  218.         {
  219.             if (!$e instanceof APIException)
  220.             {
  221.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  222.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  223.             }
  225.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  227.             return $this->apiResponseTools->exceptionResponse($e);
  228.         }
  229.     }
  231.     public function setServiceOrderStatus(Request $request): JsonResponse
  232.     {
  233.         try
  234.         {
  235.             $requestedData json_decode($request->getContent(), true);
  236.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  238.             $this->logMobileAppTools->logApiCall(
  239.                 $request->getMethod(),
  240.                 $request->getPathInfo(),
  241.                 $userAppContext
  242.             );
  243.             
  244.             if($this->getUser() instanceof AccessAPI)
  245.             {
  246.                 $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  247.             }
  248.             else
  249.             {
  250.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  251.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  252.             }
  253.             
  254.             $statusChangeData $this->serviceOrderTools->setServiceOrderStatus($requestedData);
  256.             return $this->apiResponseTools->successResponse($statusChangeData);
  257.         }
  258.         catch (Exception $e)
  259.         {
  260.             if (!$e instanceof APIException)
  261.             {
  262.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  263.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  264.             }
  266.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  268.             return $this->apiResponseTools->exceptionResponse($e);
  269.         }
  270.     }
  271.     
  272.     public function checkAppUpdate(Request $request): JsonResponse
  273.     {
  274.         try
  275.         {    
  276.             $requestedData json_decode($request->getContent(), true);
  277.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  279.             $this->logMobileAppTools->logApiCall(
  280.                 $request->getMethod(),
  281.                 $request->getPathInfo(),
  282.                 $userAppContext
  283.             );
  284.             
  285.             if($this->getUser() instanceof AccessAPI)
  286.             {
  287.                 $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  288.             }
  289.             else
  290.             {
  291.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  292.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  293.             }
  295.             if (empty($requestedData))
  296.             {
  297.                 $this->logMobileAppTools->error(new APIError(APIError::INVALID_DATA), $userAppContext);
  298.                 throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  299.             }
  301.             $checkUpdate $this->synerticMobileAppTools->checkAppUpdate($requestedData);
  303.             return $this->apiResponseTools->successResponse($checkUpdate);
  304.         }
  305.         catch (Exception $e)
  306.         {
  307.             if (!$e instanceof APIException)
  308.             {
  309.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  310.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  311.             }
  313.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  315.             return $this->apiResponseTools->exceptionResponse($e);
  316.         }
  317.     }
  318.     
  319.     public function addLog(Request $request): JsonResponse
  320.     {
  321.         try
  322.         {    
  323.             $requestedData json_decode($request->getContent(), true);
  324.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  326.             $this->logMobileAppTools->logApiCall(
  327.                 $request->getMethod(),
  328.                 $request->getPathInfo(),
  329.                 $userAppContext
  330.             );
  331.             
  332.             if($this->getUser() instanceof AccessAPI)
  333.             {
  334.                 $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  335.             }
  336.             else
  337.             {
  338.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  339.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  340.             }
  342.             if (empty($requestedData))
  343.             {
  344.                 $this->logMobileAppTools->error(new APIError(APIError::INVALID_DATA), $userAppContext);
  345.                 throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  346.             }
  348.             // Check if code is IKEA_CALL
  349.             if (isset($requestedData['code']) && $requestedData['code'] === 'IKEA_CALL')
  350.             {
  351.                 // Extract taskId from various possible locations in request data
  352.                 // The mobile app may send taskId in different formats:
  353.                 // 1. Direct: $requestedData['taskId']
  354.                 // 2. JSON string in message: $requestedData['message'] (decoded)
  355.                 // 3. Nested arrays: any array value containing 'taskId'
  356.                 // 4. JSON string in any value: any string value that decodes to array with 'taskId'
  357.                 $taskId null;
  358.                 
  359.                 // First, check if taskId is directly in requestedData
  360.                 if (isset($requestedData['taskId']))
  361.                 {
  362.                     $taskId $requestedData['taskId'];
  363.                 }
  364.                 // Otherwise, try to parse message as JSON
  365.                 elseif (isset($requestedData['message']))
  366.                 {
  367.                     $messageData json_decode($requestedData['message'], true);
  368.                     
  369.                     if ($messageData !== null && isset($messageData['taskId']))
  370.                     {
  371.                         $taskId $messageData['taskId'];
  372.                     }
  373.                 }
  374.                 // Search recursively in all request data for taskId
  375.                 if ($taskId === null)
  376.                 {
  377.                     foreach ($requestedData as $key => $value)
  378.                     {
  379.                         if (is_array($value) && isset($value['taskId']))
  380.                         {
  381.                             $taskId $value['taskId'];
  382.                             break;
  383.                         }
  384.                         elseif (is_string($value))
  385.                         {
  386.                             // Try to decode as JSON if it's a string
  387.                             $decoded json_decode($valuetrue);
  388.                             if (is_array($decoded) && isset($decoded['taskId']))
  389.                             {
  390.                                 $taskId $decoded['taskId'];
  391.                                 break;
  392.                             }
  393.                         }
  394.                     }
  395.                 }
  396.                 
  397.                 // Debug logging for IKEA hotline integration issues
  398.                 // Log full request structure when taskId extraction fails for debugging
  399.                 if ($taskId === null)
  400.                 {
  401.                     $this->logMobileAppTools->debug(
  402.                         'IKEA_CALL - requestedData keys: ' implode(', 'array_keys($requestedData)) . ' | Full data: ' json_encode($requestedData),
  403.                         $userAppContext
  404.                     );
  405.                     
  406.                     // Legacy addLog call for compatibility with existing monitoring
  407.                     $addLog $this->synerticMobileAppTools->addLog($requestedData);
  408.                     $this->logMobileAppTools->error(
  409.                         new APIError(APIError::INVALID_DATA'IKEA_CALL log missing taskId in request data or message JSON'),
  410.                         $userAppContext
  411.                     );
  412.                     throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  413.                 }
  414.                 $task $this->em->getRepository(Task::class)->find($taskId);
  416.                 if ($task === null)
  417.                 {
  418.                     $this->logMobileAppTools->error(
  419.                         new APIError(APIError::INVALID_DATA"IKEA_CALL log: Task with id $taskId not found"),
  420.                         $userAppContext
  421.                     );
  422.                     throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  423.                 }
  425.                 $access $accessAPI->getAccess();
  426.                 if ($access === null)
  427.                 {
  428.                     $this->logMobileAppTools->error(
  429.                         new APIError(APIError::INVALID_DATA'IKEA_CALL log: AccessAPI has no associated Access'),
  430.                         $userAppContext
  431.                     );
  432.                     throw new APIInvalidDataException(new APIError(APIError::INVALID_DATA));
  433.                 }
  435.                 $this->taskTools->logIkeaHotlineClick($task$access'mobile_app');
  437.                 return $this->apiResponseTools->successResponse(array("status" => "success"));
  438.             }
  440.             // Default behavior for other log codes
  441.             $addLog $this->synerticMobileAppTools->addLog($requestedData);
  443.             return $this->apiResponseTools->successResponse($addLog);
  444.         }
  445.         catch (Exception $e)
  446.         {
  447.             if (!$e instanceof APIException)
  448.             {
  449.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  450.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  451.             }
  453.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  455.             return $this->apiResponseTools->exceptionResponse($e);
  456.         }
  457.     }
  459.     /**
  460.      * Allow mobile app to send logs to the server.
  461.      */
  462.     public function sendLog(Request $request): JsonResponse
  463.     {
  464.         try
  465.         {
  466.             $requestedData json_decode($request->getContent(), true);
  467.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  469.             $this->logMobileAppTools->logApiCall(
  470.                 $request->getMethod(),
  471.                 $request->getPathInfo(),
  472.                 $userAppContext
  473.             );
  475.             if (!$this->getUser() instanceof AccessAPI)
  476.             {
  477.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  478.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  479.             }
  481.             $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  483.             // Validate required fields
  484.             if (empty($requestedData['message']))
  485.             {
  486.                 $this->logMobileAppTools->error(new APIError(APIError::MISSING_INFO_DATA), $userAppContext);
  487.                 throw new APIMissingDataException(new APIError(APIError::MISSING_INFO_DATA));
  488.             }
  490.             $message $requestedData['message'];
  491.             $levelString $requestedData['level'] ?? 'INFO';
  493.             // Parse log level
  494.             $level LogLevel::fromString($levelString);
  496.             // Log based on level
  497.             $this->logMobileAppTools->log($level$message$userAppContext);
  499.             return $this->apiResponseTools->successResponse(['logged' => true]);
  500.         }
  501.         catch (Exception $e)
  502.         {
  503.             if (!$e instanceof APIException)
  504.             {
  505.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  506.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  507.             }
  509.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  511.             return $this->apiResponseTools->exceptionResponse($e);
  512.         }
  513.     }
  515.     /**
  516.      * Allow mobile app to get the permissions for the current access.
  517.      * The permissions are returned as an array of permission ids.
  518.      */
  519.     public function acl(Request $request): JsonResponse
  520.     {
  521.         try
  522.         {
  523.             $requestedData json_decode($request->getContent(), true) ?? [];
  524.             $userAppContext $this->logMobileAppTools->buildUserAppContext($requestedData);
  526.             $this->logMobileAppTools->logApiCall(
  527.                 $request->getMethod(),
  528.                 $request->getPathInfo(),
  529.                 $userAppContext
  530.             );
  532.             if ($this->getUser() instanceof AccessAPI)
  533.             {
  534.                 $accessAPI $this->ghostingTools->resolveGhostedUser($requestedData$this->getUser());
  535.             }
  536.             else
  537.             {
  538.                 $this->logMobileAppTools->error(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS), $userAppContext);
  539.                 throw new APIAuthenticationException(new APIError(APIError::AUTHENTICATION_UNAUTHORIZED_ACCESS));
  540.             }
  542.             $currentAccess $accessAPI->getAccess();
  543.             $currentGroup $this->getUser()->getSocietyGroup();
  545.             // gets fonction for currentAccess
  546.             $fonctionCurrentAccess $currentAccess->getFunction();
  548.             // gets acl for currentGroup
  549.             $acls $this->em->getRepository(Acl::class)->getForSocietyGroup($currentGroup);
  550.             $setPermissions = array();
  551.     
  552.             // make table of permissions for currentAccess
  553.             $aclPermissions = [];
  554.             foreach ($acls as $key => $acl)
  555.             {
  556.                 if ($acl->getValue() == true && $acl->getFunction()->getId() == $fonctionCurrentAccess->getId())
  557.                 {
  558.                     $aclPermissions[] .= $acl->getPermission()->getId();
  559.                     // $setPermissions[$acl->getFunction()->getId()][$acl->getPermission()->getId()] = 1;
  560.                 }
  561.             }
  563.             $options = [];
  564.             if($this->optionConfigTools->isActive_MobileAppArtisan($currentGroup))
  565.             {
  566.                 $options[] = "32";
  567.             }
  569.             $setPermissions = [
  570.                 'acl' => $aclPermissions,
  571.                 'options' => $options,
  572.             ];
  574.             return $this->apiResponseTools->successResponse($setPermissions);
  575.         }
  576.         catch (Exception $e)
  577.         {
  578.             if (!$e instanceof APIException)
  579.             {
  580.                 $this->logMobileAppTools->critical(''$e$userAppContext ?? []);
  581.                 $e = new APIException(new APIError(APIError::UNEXPECTED_ERROR));
  582.             }
  584.             $this->logMobileAppTools->error($e->getApiError(), $userAppContext ?? []);
  586.             return $this->apiResponseTools->exceptionResponse($e);
  587.         }
  588.     }
  589. }