mirror of
https://github.com/flarum/core.git
synced 2025-10-12 07:24:27 +02:00
152 lines
4.0 KiB
PHP
152 lines
4.0 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of Flarum.
|
|
*
|
|
* (c) Toby Zerner <toby.zerner@gmail.com>
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Flarum\Core\Command;
|
|
|
|
use Flarum\User\AssertPermissionTrait;
|
|
use Flarum\User\UserRepository;
|
|
use Flarum\Foundation\DispatchEventsTrait;
|
|
use Flarum\User\User;
|
|
use Flarum\User\UserValidator;
|
|
use Flarum\User\Event\GroupsChanged;
|
|
use Flarum\User\Event\Saving;
|
|
use Illuminate\Contracts\Events\Dispatcher;
|
|
|
|
class EditUserHandler
|
|
{
|
|
use DispatchEventsTrait;
|
|
use AssertPermissionTrait;
|
|
|
|
/**
|
|
* @var \Flarum\User\UserRepository
|
|
*/
|
|
protected $users;
|
|
|
|
/**
|
|
* @var UserValidator
|
|
*/
|
|
protected $validator;
|
|
|
|
/**
|
|
* @param Dispatcher $events
|
|
* @param \Flarum\User\UserRepository $users
|
|
* @param UserValidator $validator
|
|
*/
|
|
public function __construct(Dispatcher $events, UserRepository $users, UserValidator $validator)
|
|
{
|
|
$this->events = $events;
|
|
$this->users = $users;
|
|
$this->validator = $validator;
|
|
}
|
|
|
|
/**
|
|
* @param EditUser $command
|
|
* @return User
|
|
* @throws \Flarum\User\Exception\PermissionDeniedException
|
|
*/
|
|
public function handle(EditUser $command)
|
|
{
|
|
$actor = $command->actor;
|
|
$data = $command->data;
|
|
|
|
$user = $this->users->findOrFail($command->userId, $actor);
|
|
|
|
$canEdit = $actor->can('edit', $user);
|
|
$isSelf = $actor->id === $user->id;
|
|
|
|
$attributes = array_get($data, 'attributes', []);
|
|
$relationships = array_get($data, 'relationships', []);
|
|
$validate = [];
|
|
|
|
if (isset($attributes['username'])) {
|
|
$this->assertPermission($canEdit);
|
|
$user->rename($attributes['username']);
|
|
}
|
|
|
|
if (isset($attributes['email'])) {
|
|
if ($isSelf) {
|
|
$user->requestEmailChange($attributes['email']);
|
|
|
|
if ($attributes['email'] !== $user->email) {
|
|
$validate['email'] = $attributes['email'];
|
|
}
|
|
} else {
|
|
$this->assertPermission($canEdit);
|
|
$user->changeEmail($attributes['email']);
|
|
}
|
|
}
|
|
|
|
if ($actor->isAdmin() && ! empty($attributes['isActivated'])) {
|
|
$user->activate();
|
|
}
|
|
|
|
if (isset($attributes['password'])) {
|
|
$this->assertPermission($canEdit);
|
|
$user->changePassword($attributes['password']);
|
|
|
|
$validate['password'] = $attributes['password'];
|
|
}
|
|
|
|
if (isset($attributes['bio'])) {
|
|
if (! $isSelf) {
|
|
$this->assertPermission($canEdit);
|
|
}
|
|
|
|
$user->changeBio($attributes['bio']);
|
|
}
|
|
|
|
if (! empty($attributes['readTime'])) {
|
|
$this->assertPermission($isSelf);
|
|
$user->markAllAsRead();
|
|
}
|
|
|
|
if (! empty($attributes['preferences'])) {
|
|
$this->assertPermission($isSelf);
|
|
|
|
foreach ($attributes['preferences'] as $k => $v) {
|
|
$user->setPreference($k, $v);
|
|
}
|
|
}
|
|
|
|
if (isset($relationships['groups']['data']) && is_array($relationships['groups']['data'])) {
|
|
$this->assertPermission($canEdit);
|
|
|
|
$newGroupIds = [];
|
|
foreach ($relationships['groups']['data'] as $group) {
|
|
if ($id = array_get($group, 'id')) {
|
|
$newGroupIds[] = $id;
|
|
}
|
|
}
|
|
|
|
$user->raise(
|
|
new GroupsChanged($user, $user->groups()->get()->all())
|
|
);
|
|
|
|
$user->afterSave(function (User $user) use ($newGroupIds) {
|
|
$user->groups()->sync($newGroupIds);
|
|
});
|
|
}
|
|
|
|
$this->events->fire(
|
|
new Saving($user, $actor, $data)
|
|
);
|
|
|
|
$this->validator->setUser($user);
|
|
$this->validator->assertValid(array_merge($user->getDirty(), $validate));
|
|
|
|
$user->save();
|
|
|
|
$this->dispatchEventsFor($user, $actor);
|
|
|
|
return $user;
|
|
}
|
|
}
|