src/PromemoriaBundle/Controller/ApiController.php line 31

Open in your IDE?
  1. <?php
  3. namespace App\PromemoriaBundle\Controller;
  5. use Pimcore\Db;
  6. use Pimcore\File;
  7. use Pimcore\Tool;
  8. use Pimcore\Model\User;
  9. use Pimcore\Security\User\User as UserAdmin;
  10. use Pimcore\Model\Asset;
  11. use Pimcore\Tool\Session;
  12. use Pimcore\Event\AdminEvents;
  13. use Pimcore\Tool\Authentication;
  14. use Pimcore\Controller\FrontendController;
  15. use Pimcore\Bundle\AdminBundle\Controller\Admin;
  16. use Pimcore\Controller\Configuration\ResponseHeader;
  17. use Pimcore\Event\Admin\Login\LoginCredentialsEvent;
  19. use Symfony\Component\HttpFoundation\Request;
  20. use Symfony\Component\HttpFoundation\Response;
  21. use Symfony\Component\Routing\Annotation\Route;
  22. use Symfony\Component\HttpFoundation\JsonResponse;
  23. use Symfony\Component\HttpFoundation\ResponseHeaderBag;
  24. use Symfony\Component\HttpFoundation\BinaryFileResponse;
  25. use Symfony\Component\HttpFoundation\StreamedResponse;
  26. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  27. use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBagInterface;
  31. class ApiController extends FrontendController
  32. {
  34.        /**
  35.      * @Route("/promemoria/api/login", methods={"POST"})
  36.      * @param Request $request
  37.      *
  38.      * @return JsonResponse
  39.      */
  40.     public function login(Request $request)
  41.     {
  43.         $response = new Response();
  44.         $response->setStatusCode(401);
  46.         $data json_decode($request->getContent());
  48.         if (!empty($data->username) &&  !empty($data->password)) {
  50.             $credentials = [
  51.                 'username' => $data->username,
  52.                 'password' => $data->password
  53.             ];
  55.             $event = new LoginCredentialsEvent($request$credentials);
  56.             try {
  57.                 $this->dispatcher->dispatch(AdminEvents::LOGIN_CREDENTIALS$event);
  58.             } catch (\Throwable $th) {
  60.             }
  61.             $pimcoreUser Authentication::authenticatePlaintext($data->username$data->password);
  62.             if ($pimcoreUser) {
  63.                 return Session::useSession(function (AttributeBagInterface $adminSession) use ($pimcoreUser) {
  64.                     $user = new UserAdmin($pimcoreUser);
  65.                     Session::regenerateId();
  66.                     $adminSession->set('user'$pimcoreUser);
  67.                     $adminSession->set('2fa_required'true);
  68.                     return $this->json(['ok' => true'user' => array(
  69.                         'id' => $pimcoreUser->getId(),
  70.                         'firstname' => $pimcoreUser->getFirstname(),
  71.                         'lastname' => $pimcoreUser->getLastname(),
  72.                         'email' => $pimcoreUser->getEmail(),
  73.                         'roles' => $user->getRoles()
  74.                     )]);
  75.                 });
  76.             }
  77.         }
  79.         return $response;
  81.     }
  83.     /**
  84.      * @Route("/promemoria/api/logout", methods={"POST", "GET"})
  85.      *
  86.      * @return JsonResponse
  87.      */
  88.     public function logout()
  89.     {
  91.         return $this->redirectToRoute('pimcore_admin_logout');
  93.     }
  95.     /**
  96.      * @Route("/promemoria/api/get-audio-thumbnail", methods={"GET"})
  97.      *
  98.      * @param Request $request
  99.      *
  100.      * @return BinaryFileResponse
  101.      */
  102.     public function getAudioThumbnail(Request $request)
  103.     {
  104.         $tmpfname tempnam("/tmp""audio.png");
  105.         file_put_contents($tmpfnamefile_get_contents("https://dummyimage.com/170x170/3e3e3e/ffffff.png&text=%20audio%20"));
  106.         $response = new BinaryFileResponse($tmpfname);
  107.         $this->addThumbnailCacheHeaders($response);
  108.         return $response;
  110.     }
  112.     /**
  113.      * @Route("/promemoria/api/get-image-thumbnail", methods={"GET"})
  114.      *
  115.      * @param Request $request
  116.      *
  117.      * @return BinaryFileResponse|StreamedResponse
  118.      */
  119.     public function getImageThumbnail(Request $request)
  120.     {
  121.         $id $request->get('id');
  122.         if(!$this->checkHash($id)){
  123.             $response = new Response();
  124.             $response->setStatusCode(401);
  125.             return $response;
  126.         }
  127.         $image Asset\Image::getById(intval($id));
  128.         $thumb $this->getThumb($image$request->get('version''thumbnail'));
  129.         return $this->responseThumbnail($thumb);
  131.     }
  133.     /**
  134.      * @Route("/promemoria/api/get-video-thumbnail", methods={"GET"})
  135.      *
  136.      * @param Request $request
  137.      *
  138.      * @return BinaryFileResponse|StreamedResponse
  139.      */
  140.     public function getVideoThumbnail(Request $request)
  141.     {
  142.         $id $request->get('id');
  143.         if(!$this->checkHash($id)){
  144.             $response = new Response();
  145.             $response->setStatusCode(401);
  146.             return $response;
  147.         }
  148.         $video Asset\Video::getById(intval($id));
  149.         $thumb $video->getImageThumbnail(Asset\Image\Thumbnail\Config::getPreviewConfig());
  150.         return $this->responseThumbnail($thumb);
  152.     }
  154.     /**
  155.      * @Route("/promemoria/api/get-document-thumbnail", methods={"GET"})
  156.      *
  157.      * @param Request $request
  158.      *
  159.      * @return BinaryFileResponse|StreamedResponse
  160.      */
  161.     public function getDocumentThumbnail(Request $request)
  162.     {
  163.         $id $request->get('id');
  164.         if(!$this->checkHash($id)){
  165.             $response = new Response();
  166.             $response->setStatusCode(401);
  167.             return $response;
  168.         }
  169.         $document Asset\Document::getById(intval($id));
  170.         $thumb = new Asset\Document\ImageThumbnail($documentAsset\Image\Thumbnail\Config::getPreviewConfig(), 1);
  171.         return $this->responseThumbnail($thumb);
  172.     }
  174.     /**
  175.      * @Route("/promemoria/api/get-video-preview", methods={"GET"})
  176.      *
  177.      * @param Request $request
  178.      *
  179.      * @return BinaryFileResponse
  180.      */
  181.     public function getVideoPreview(Request $request)
  182.     {
  184.         $response = new Response();
  185.         $response->setStatusCode(400);
  187.         $id $request->get('id');
  188.         if(!$this->checkHash($id)){
  189.             $response->setStatusCode(401);
  190.             return $response;
  191.         }
  192.         $asset Asset::getById(intval($id));
  194.         if(!empty($asset) && $asset->getType()=='video'){
  195.             $thumbnail $asset->getThumbnail(Asset\Video\Thumbnail\Config::getPreviewConfig(), ['mp4']);
  196.             $storagePath $asset->getRealPath() . '/' preg_replace('@^' preg_quote($asset->getPath(), '@') . '@'''urldecode($thumbnail['formats']['mp4']));
  197.             $storage \Pimcore\Tool\Storage::get('thumbnail');
  198.             if ($storage->fileExists($storagePath)) {
  199.                 $fs $storage->fileSize($storagePath);
  200.                 $stream $storage->readStream($storagePath);
  202.                 return new StreamedResponse(function () use ($stream) {
  203.                     fpassthru($stream);
  204.                 }, 200, [
  205.                     'Content-Type' => 'video/mp4',
  206.                     'Content-Length' => $fs,
  207.                     'Accept-Ranges' => 'bytes',
  208.                 ]);
  209.             } else {
  210.                 $response->setStatusCode(204);
  211.             }
  212.         }
  213.         return $response;
  215.     }
  217.     /**
  218.      * @param Response $response
  219.      */
  220.     protected function responseThumbnail($thumb)
  221.     {
  222.         $stream $thumb->getStream();
  223.         if ($stream) {
  224.             $response = new StreamedResponse(function () use ($stream) {
  225.                 fpassthru($stream);
  226.             }, 200, [
  227.                 'Content-Type' => 'image/' $thumb->getFileExtension(),
  228.             ]);
  229.         } else {
  230.             $pathparts pathinfo($thumb->getAsset()->getFilename());
  231.             $ext = isset($pathparts["extension"]) ? $pathparts["extension"] : 'image';
  232.             $tmpfname tempnam("/tmp""image.png");
  233.             file_put_contents($tmpfnamefile_get_contents("https://dummyimage.com/300x300/3e3e3e/ffffff.png&text=%20{$ext}%20"));
  234.             $response = new BinaryFileResponse($tmpfname);
  235.         }
  236.         $this->addThumbnailCacheHeaders($response);
  237.         return $response;
  239.     }
  241.     /**
  242.      * @Route("/promemoria/api/download-as-zip", methods={"GET"})
  243.      *
  244.      * @param Request $request
  245.      *
  246.      * @return BinaryFileResponse|BinaryFileResponse
  247.      */
  248.     public function downloadAsZip(Request $request)
  249.     {
  251.         $name $request->get('name''');
  252.         $version $request->get('version''original');
  253.         $watermarked $request->get('watermarked'0);
  254.         $selectedIds $request->get('selectedIds''');
  255.         $selectedIds explode(','$selectedIds);
  257.         if(count($selectedIds) === 1){
  258.             if(!$this->checkHash($selectedIds[0])){
  259.                 $response = new Response();
  260.                 $response->setStatusCode(401);
  261.                 return $response;
  262.             }
  263.             $a Asset::getById(intval($selectedIds[0]));
  264.             if($a instanceof Asset\Image){
  265.                 $a $this->getThumb($a$watermarked $version "no_watermark"$version === 'original');
  266.             }
  267.             if ($a instanceof Asset\Image\Thumbnail) {
  268.                 $dir_prefix '/var/www/html/public/var/tmp/thumbnails';
  269.                 $pathReference $a->getPathReference();
  270.                 $fileContent Tool\Storage::get('thumbnail')->read($pathReference['storagePath']);
  271.                 $path urldecode($a->getPath());
  272.             } else {
  273.                 $dir_prefix '/var/www/html/public/var/assets';
  274.                 $path $a->getRealFullPath();
  275.             }
  276.             $response = new BinaryFileResponse($dir_prefix $path);
  277.             //$response->headers->set('Content-Type', 'image/' . $image->getFileExtension());
  278.             $response->setContentDisposition(ResponseHeaderBag::DISPOSITION_ATTACHMENTbasename($path));
  279.             return $response;
  280.         }else{
  281.             $zipName = ($name ?: 'collection-' time()) . '.zip';
  282.             $zipFile tempnam("/tmp"$zipName);
  284.             $zip = new \ZipArchive();
  285.             $zipState $zip->open($zipFile\ZipArchive::CREATE);
  286.             if (count($selectedIds) > && $zipState === true) {
  288.                 $conditionFilters = [];
  290.                 $ids = [];
  291.                 foreach ($selectedIds as $id) {
  292.                     if(!$this->checkHash($id)){
  293.                         $response = new Response();
  294.                         $response->setStatusCode(401);
  295.                         return $response;
  296.                     }
  297.                     $ids[] = intval($id);
  298.                 }
  299.                 $conditionFilters[] = 'id IN (' implode(','$ids) . ')';
  300.                 $conditionFilters[] .= "type != 'folder'";
  301.                 $condition implode(' AND '$conditionFilters);
  303.                 $assetList = new Asset\Listing();
  304.                 $assetList->setCondition($condition);
  305.                 $assetList->setOrderKey('LENGTH(path) ASC, id ASC'false);
  306.                 $assetList->setOffset((int)$request->get('offset'));
  307.                 $assetList->setLimit((int)$request->get('limit'));
  309.                 foreach ($assetList->load() as $a) {
  310.                     if (!$a instanceof Asset\Folder) {
  311.                         if($a instanceof Asset\Image){
  312.                             $a $this->getThumb($a$watermarked $version "no_watermark"$version === 'original');
  313.                         }
  314.                         if ($a instanceof Asset\Image\Thumbnail) {
  315.                             $dir_prefix '/var/www/html/public/var/tmp/thumbnails';
  316.                             $pathReference $a->getPathReference();
  317.                             //serve per generare la thumb nel caso non esista
  318.                             $fileContent Tool\Storage::get('thumbnail')->read($pathReference['storagePath']);
  319.                             $path urldecode($a->getPath());
  320.                         } else {
  321.                             $dir_prefix '/var/www/html/public/var/assets';
  322.                             $path $a->getRealFullPath();
  323.                         }
  324.                         $zip->addFile($dir_prefix.$pathbasename($path));
  325.                     }
  326.                 }
  328.                 $zip->close();
  330.                 $response = new BinaryFileResponse($zipFile);
  331.                 $response->headers->set('Content-Type''application/zip');
  332.                 $response->setContentDisposition(ResponseHeaderBag::DISPOSITION_ATTACHMENT$zipName);
  333.                 $response->deleteFileAfterSend(true);
  335.                 return $response;
  337.             }
  338.         }
  340.         return $this->json(['error' => true]);
  342.     }
  344.     /**
  345.      * @Route("/promemoria/api/getShortToken", methods={"GET"})
  346.      * @param Request $request
  347.      *
  348.      * @return JsonResponse
  349.      */
  350.     public function getShortToken(Request $request)
  351.     {
  353.         $response = new Response();
  354.         $response->setStatusCode(400);
  356.         $db \Pimcore\Db::get();
  357.         $jwtToken $request->get('jwtToken');
  359.         $this->clearExpiredShortUrls();
  361.         if (!empty($jwtToken)) {
  363.             $generatedToken substr(md5(uniqid(mt_rand(), true)), 08);
  365.             $db->insert('promemoria_shorturl', [
  366.                 'jwtToken' => $jwtToken,
  367.                 'shortToken' => $generatedToken
  368.             ]);
  370.             return $this->json(['shortToken' => $generatedToken]);
  371.         }
  373.         return $response;
  375.     }
  377.     /**
  378.      * @Route("/promemoria/api/getJwtToken", methods={"GET"})
  379.      * @param Request $request
  380.      *
  381.      * @return JsonResponse
  382.      */
  383.     public function getJwtToken(Request $request)
  384.     {
  386.         $response = new Response();
  387.         $response->setStatusCode(400);
  389.         $db \Pimcore\Db::get();
  390.         $shortToken $request->get('shortToken');
  392.         $this->clearExpiredShortUrls();
  394.         if (!empty($shortToken)) {
  396.             $res $db->fetchRow("SELECT jwtToken FROM promemoria_shorturl WHERE shortToken = " $db->quote($shortToken));
  398.             return $this->json(['jwtToken' => $res['jwtToken']]);
  399.         }
  401.         return $response;
  403.     }
  405.     /**
  406.      * @Route("/promemoria/api/changePassword", methods={"POST"})
  407.      * @param Request $request
  408.      *
  409.      * @return JsonResponse
  410.      */
  411.     public function changePassword(Request $request)
  412.     {
  414.         $response = new Response();
  415.         $response->setStatusCode(401);
  417.         $data json_decode($request->getContent());
  418.         $newPassword $data->password;
  420.         $pimcoreUser Authentication::authenticateSession();
  422.         if(empty($pimcoreUser)){
  423.             return $response;
  424.         }
  426.         if (!empty($pimcoreUser) && !empty($newPassword)) {
  428.             $pimcoreUser->setPassword(Authentication::getPasswordHash($pimcoreUser->getUsername(), $newPassword));
  429.             $pimcoreUser->save();
  431.             return $this->json(['message' => 'Password changed']);
  433.         }
  435.         return $response;
  437.     }
  439.     /**
  440.      * @Route("/promemoria/api/getUserList", methods={"POST"}))
  441.      * @param Request $request
  442.      *
  443.      * @return JsonResponse
  444.      */
  445.     public function getUserList(Request $request)
  446.     {
  447.         $pimcoreUser Authentication::authenticateSession();
  448.         if(empty($pimcoreUser)){
  449.             $response = new Response();
  450.             $response->setStatusCode(401);
  451.             return $response;
  452.         }
  454.         $db \Pimcore\Db::get();
  455.         $query = <<<QUERY
  456.         SELECT u.id as user_id, u.name as user_name, u.firstname as fname, u.lastname as lname, u.email, r.id as role_id, r.name as role
  457.         FROM users u
  458.         INNER JOIN users r ON u.type = 'user' and u.roles = r.id and u.roles != '' and u.active = 1
  459.         order by u.name asc
  460. QUERY;
  461.         return $this->json(['users' => $db->executeQuery($query)->fetchAll()]);
  462.     }
  464.     /**
  465.     * @Route("/promemoria/api/getRoleList", methods={"POST"}))
  466.     * @param Request $request
  467.     *
  468.     * @return JsonResponse
  469.     */
  470.     public function getRoleList(Request $request)
  471.     {
  472.         $pimcoreUser Authentication::authenticateSession();
  473.         if(empty($pimcoreUser)){
  474.             $response = new Response();
  475.             $response->setStatusCode(401);
  476.             return $response;
  477.         }
  479.         $db \Pimcore\Db::get();
  480.         $query = <<<QUERY
  481.         SELECT u.id as role_id, u.name as name
  482.         FROM users u
  483.         WHERE
  484.         u.type = 'role'
  485.         order by u.name asc
  486. QUERY;
  487.         return $this->json(['roles' => $db->executeQuery($query)->fetchAll()]);
  488.     }
  490.     /**
  491.      * @Route("/promemoria/api/upsertUser", methods={"POST"})
  492.      * @param Request $request
  493.      *
  494.      * @return JsonResponse
  495.      */
  496.     public function upsertUser(Request $request)
  497.     {
  499.         $pimcoreUser Authentication::authenticateSession();
  500.         if(empty($pimcoreUser)){
  501.             $response = new Response();
  502.             $response->setStatusCode(401);
  503.             return $response;
  504.         }
  505.         $userAdmin = new UserAdmin($pimcoreUser);
  506.         if(!in_array("ROLE_PIMCORE_ADMIN"$userAdmin->getRoles())
  507.             && !in_array("ROLE_MANAGER"$userAdmin->getRoles())){
  508.             $response = new Response();
  509.             $response->setStatusCode(401);
  510.             return $response;
  511.         }
  513.         $data json_decode($request->getContent());
  514.         $user = new User();
  515.         if(!empty($data->user_id)){
  516.             $user User::getById($data->user_id);
  517.         }
  518.         $user->setParentid(0);
  519.         $user->setUsername($data->user_name);
  520.         $user->setFirstname($data->fname);
  521.         $user->setLastname($data->lname);
  522.         $user->setEmail($data->email);
  523.         $user->setActive($data->active);
  524.         $user->setLanguage("it");
  525.         $user->setContentLanguages("it,en");
  526.         if(!empty($data->password)){
  527.             $user->setPassword(Authentication::getPasswordHash($data->user_name$data->password));
  528.         }
  529.         $user->setRoles($data->role_id);
  530.         $user->save();
  532.         return $this->json(['message' => 'User updated']);
  533.     }
  535.     /**
  536.      * @Route("/promemoria/api/deleteUser", methods={"POST"})
  537.      * @param Request $request
  538.      *
  539.      * @return JsonResponse
  540.      */
  541.     public function deleteUser(Request $request)
  542.     {
  544.         $pimcoreUser Authentication::authenticateSession();
  545.         if(empty($pimcoreUser)){
  546.             $response = new Response();
  547.             $response->setStatusCode(401);
  548.             return $response;
  549.         }
  550.         $data json_decode($request->getContent());
  551.         $user User::getById($data->user_id);
  552.         $userAdmin = new UserAdmin($user);
  553.         if(in_array("ROLE_PIMCORE_ADMIN"$userAdmin->getRoles())){
  554.             $response = new Response();
  555.             $response->setStatusCode(401);
  556.             return $response;
  557.         }
  558.         $user->delete();
  559.         return $this->json(['message' => 'User deleted']);
  560.     }
  562.     /**
  563.      * @Route("/promemoria/api/buca", methods={"POST"})
  564.      * @param Request $request
  565.      *
  566.      * @return JsonResponse
  567.      */
  568.     public function buca(Request $request)
  569.     {
  570.         $token $request->get("token");
  571.         $config \App\PromemoriaBundle\PromemoriaBundle::getConfig();
  572.         if(!empty($config["googleRecaptchaSecretKey"]) && !empty($token)){
  573.             $verifyResponse file_get_contents('https://www.google.com/recaptcha/api/siteverify?secret=' $config["googleRecaptchaSecretKey"] . '&response=' $token);
  574.             $responseData json_decode($verifyResponse);
  575.             if (!$responseData->success || $responseData->score 0.5) {
  576.                 $response = new Response();
  577.                 $response->setStatusCode(401);
  578.                 return $response;
  579.             }
  580.             $email $request->get("email");
  581.             $pimcoreUsername = empty($email) ? "website" $email;
  582.             $pimcoreId 0;
  583.         }else{
  584.             $pimcoreUser Authentication::authenticateSession();
  585.             if(empty($pimcoreUser)){
  586.                 $email $request->get("email");
  587.                 if(empty($email)){
  588.                     $response = new Response();
  589.                     $response->setStatusCode(401);
  590.                     return $response;
  591.                 }else{
  592.                     $pimcoreUsername $email;
  593.                     $pimcoreId 0;
  594.                 }
  595.             }else{
  596.                 $pimcoreUsername $pimcoreUser->getUsername();
  597.                 $pimcoreId $pimcoreUser->getId();
  598.             }
  599.         }
  600.         // crezione folder utente se non esiste
  601.         $parentBuca "/Buca/";
  602.         $parentPath $parentBuca $pimcoreUsername;
  603.         $parentAsset \Pimcore\Model\Asset::getByPath($parentPath);
  604.         if(!$parentAsset){
  605.             $parent \Pimcore\Model\Asset::getByPath($parentBuca);
  606.             $parentAsset $this->createFolder($pimcoreUsername$parent->getId(), 'asset');
  607.         }
  608.         $parentObject \Pimcore\Model\DataObject::getByPath($parentPath);
  609.         if(!$parentObject){
  610.             $parent \Pimcore\Model\DataObject::getByPath($parentBuca);
  611.             $parentObject $this->createFolder($pimcoreUsername$parent->getId());
  612.         }
  614.         // creazione oggetto e media
  615.         $separatore "$";
  616.         $classe "\Pimcore\Model\DataObject\\" $request->get("class");
  617.         $fields json_decode($request->get("fields"), TRUE);
  618.         $obj = new $classe();
  619.         $obj->setParentId($parentObject->getId());
  620.         foreach ($fields as $key => $typeField) {
  621.             $fieldDefiniton $obj->getClass()->getFieldDefinition($key);
  622.             $type $fieldDefiniton $fieldDefiniton->getFieldtype() : "localizedfield";
  623.             $type strpos($key$separatore) !== FALSE "block" $type;
  625.             if(in_array($typeField,["file","image"])){
  626.                 $files $request->files->get($key);
  627.                 $metadati $request->get($key "Metadati");
  628.                 if(!empty($files)){
  629.                     $isMultiple is_array($files);
  630.                     $files $isMultiple $files : [$files];
  631.                     if(!empty($metadati)){
  632.                         $metadati $isMultiple $metadati : [$metadati];
  633.                     }
  634.                     $values = [];
  635.                     if($typeField === "image"){
  636.                         foreach ($files as $index => $file) {
  637.                             $advancedImage = new \Pimcore\Model\DataObject\Data\Hotspotimage();
  638.                             $metadatis = !empty($metadati) && !empty($metadati[$index]) ? json_decode($metadati[$index], TRUE) : [];
  639.                             $advancedImage->setImage($this->createAsset($parentAsset$file"image"$metadatis));
  640.                             $values[] = $advancedImage;
  641.                         }
  642.                         $values = new \Pimcore\Model\DataObject\Data\ImageGallery($values);
  643.                     }else{
  644.                         foreach ($files as $index => $file) {
  645.                             $values[] = $this->createAsset($parentAsset$file);
  646.                         }
  647.                     }
  648.                     $obj->{"set" ucfirst($key)}($isMultiple $values $values[0]);
  649.                 }
  650.             }else {
  651.                 $val $request->get($key);
  652.                 if(!empty($val)){
  653.                     switch($typeField){
  654.                         case "link":
  655.                             $link = new \Pimcore\Model\DataObject\Data\Link();
  656.                             $link->setText("Link");
  657.                             $link->setPath($val);
  658.                             $val $link;
  659.                             break;
  660.                         case 'date':
  661.                             $val \Carbon\Carbon::createFromFormat('Y-m-d'$val);
  662.                             break;
  663.                     }
  664.                     switch($type){
  665.                         case "video":
  666.                             $video = new \Pimcore\Model\DataObject\Data\Video();
  667.                             $video->setType("youtube");
  668.                             $video->setData($val);
  669.                             $result preg_match("/(?<=v=)[a-zA-Z0-9-]+(?=&)|(?<=v\/)[^&]+(?=\?)|(?<=v=)[^&]+|(?<=youtu.be\/)[^&]+/"$val$matches);
  670.                             if($result){
  671.                                 $video->setType("youtube");
  672.                                 $video->setData($matches[0]);
  673.                             }
  674.                             $result preg_match("/(?<=vimeo.com\/)[^&]+/"$val$matches);
  675.                             if($result){
  676.                                 $video->setType("vimeo");
  677.                                 $video->setData($matches[0]);
  678.                             }
  679.                             $obj->{"set" ucfirst($key)}($video);
  680.                             break;
  681.                         case "block":
  682.                             list ($keyContainer$keyMeta) = explode($separatore$key);
  683.                             $metadata = [];
  684.                             $metadata[$keyMeta] = new \Pimcore\Model\DataObject\Data\BlockElement($keyMeta$typeField$val);
  685.                             $obj->{"set" ucfirst($keyContainer)}([$metadata]);
  686.                             break;
  687.                         case "localizedfield":
  688.                             $obj->{"set" ucfirst($key)}($val'it');
  689.                             break;
  690.                         case "multiselect":
  691.                             $obj->{"set" ucfirst($key)}([$val]);
  692.                             break;
  693.                         default:
  694.                             $obj->{"set" ucfirst($key)}($val);
  695.                             break;
  696.                     }
  697.                     if($key === 'dcTitle'){
  698.                         $obj->setKey(\Pimcore\Model\Element\Service::getValidKey($val'object'));
  699.                     }
  700.                 }
  701.             }
  702.         }
  703.         $obj->setUserOwner($pimcoreId);
  704.         $obj->setUserModification($pimcoreId);
  705.         $obj->save();
  706.         $tags $request->get("tags");
  707.         if(!empty($tags)){
  708.             \Pimcore\Model\Element\Tag::setTagsForElement('object'$obj->getId(), array_map(function($id){
  709.                 return \Pimcore\Model\Element\Tag::getById($id);
  710.             }, $tags));
  711.         }
  712.         return $this->json(["status" =>  true ]);
  713.     }
  715.     /**
  716.      * @Route("/promemoria/api/bucaSelect", methods={"POST"})
  717.      * @param Request $request
  718.      *
  719.      * @return JsonResponse
  720.      */
  721.     public function bucaSelect(Request $request)
  722.     {
  723.         $pimcoreUser Authentication::authenticateSession();
  724.         if(empty($pimcoreUser)){
  725.             $response = new Response();
  726.             $response->setStatusCode(401);
  727.             return $response;
  728.         }
  729.         $data json_decode($request->getContent());
  731.         $classe "\Pimcore\Model\DataObject\\" $data->class;
  732.         $obj = new $classe();
  733.         $fieldDefiniton $obj->getClass()->getFieldDefinition($data->field);
  735.         return $this->json($fieldDefiniton->getOptions());
  736.     }
  738.      /**
  739.      * @Route("/promemoria/api/bucaTags", methods={"POST"})
  740.      * @param Request $request
  741.      *
  742.      * @return JsonResponse
  743.      */
  744.     public function bucaTags(Request $request)
  745.     {
  746.         $pimcoreUser Authentication::authenticateSession();
  747.         if(empty($pimcoreUser)){
  748.             $response = new Response();
  749.             $response->setStatusCode(401);
  750.             return $response;
  751.         }
  752.         $data json_decode($request->getContent());
  754.         $tagList = new \Pimcore\Model\Element\Tag\Listing();
  755.         $tagList->setCondition("parentId = ?"$data->parentId);
  756.         $tagList->setOrderKey("id");
  757.         $tags = [];
  758.         foreach ($tagList->load() as $tag) {
  759.             $tags[] = [
  760.                 "id" => $tag->getId(),
  761.                 "label" => $tag->getName()
  762.             ];
  763.         }
  764.         return $this->json($tags);
  765.     }
  767.     /**
  768.      * @Route("/promemoria/api/check-email", methods={"POST"}))
  769.      * @param Request $request
  770.      *
  771.      * @return JsonResponse
  772.      */
  773.     public function checkEmail(Request $request)
  774.     {
  775.         $response = new Response();
  776.         $response->setStatusCode(400);
  777.         $data json_decode($request->getContent());
  778.         if(empty($data->email)){
  779.             return $response;
  780.         }
  781.         $user false;
  782.         $entries = new \Pimcore\Model\User\Listing();
  783.         $entries->setLimit(1);
  784.         $entries->setCondition("email LIKE ?", [$data->email]);
  785.         foreach ($entries as $entry) {
  786.             $user $entry;
  787.             return $this->json([
  788.                 'status' => true
  789.             ]);
  790.         }
  791.         return $response;
  792.     }
  794.     /**
  795.      * @Route("/promemoria/api/change-reset-password", methods={"POST"}))
  796.      * @param Request $request
  797.      *
  798.      * @return JsonResponse
  799.      */
  800.     public function changeResetPassword(Request $request)
  801.     {
  802.         $response = new Response();
  803.         $response->setStatusCode(400);
  804.         $data json_decode($request->getContent());
  806.         if(empty($data->email) || empty($data->password)){
  807.             return $response;
  808.         }
  810.         $entries = new \Pimcore\Model\User\Listing();
  811.         $entries->setLimit(1);
  812.         $entries->setCondition("email LIKE ?", [$data->email]);
  813.         foreach ($entries as $entry) {
  814.             $user $entry;
  815.             $user->setPassword(Authentication::getPasswordHash($user->getUsername(), $data->password));
  816.             $user->save();
  817.             return $this->json([
  818.                 'status' => true
  819.             ]);
  820.         }
  821.         return $response;
  822.     }
  824.     /* PRIVATE */
  825.     private function clearExpiredShortUrls()
  826.     {
  827.         $db \Pimcore\Db::get();
  828.         $db->deleteWhere('promemoria_shorturl''insertDate < NOW() - INTERVAL 1 WEEK');
  829.     }
  830.     private function createFolder($name$parent$type 'object'){
  831.         $folder $type === 'object' ? new \Pimcore\Model\DataObject\Folder() : new \Pimcore\Model\Asset\Folder();
  832.         $folder->setParentId($parent);
  833.         $type === 'object'  $folder->setKey($name) : $folder->setFilename($name);
  834.         $folder->save();
  835.         return $folder;
  836.     }
  838.     private function createAsset($parentAsset$file$type=""$metadati = []){
  839.         $newAsset $type ? new \Pimcore\Model\Asset\Image() : new \Pimcore\Model\Asset();
  840.         $newAsset->setFilename($this->checkFileAndRename($parentAsset->getFullPath(), $file->getClientOriginalName()));
  841.         $newAsset->setData(file_get_contents($file->getPathname()));
  842.         $newAsset->setParent($parentAsset);
  843.         if(!empty($metadati)){
  844.             foreach ($metadati as $key => $value) {
  845.                 $newAsset->addMetadata($key"input"$value);
  846.             }
  847.         }
  848.         $newAsset->save();
  849.         return $newAsset;
  850.     }
  851.     private function checkFileAndRename($parentPath$filename){
  852.         $path_parts pathinfo($filename);
  853.         $i 1;
  854.         while(\Pimcore\Model\Asset::getByPath($parentPath "/" $filename)){
  855.             $filename $path_parts['filename'] . "_$i." $path_parts['extension'];
  856.             $i++;
  857.         }
  858.         return $filename;
  859.     }
  860.     private function getThumb($image$type$original=false){
  861.         $thumb $this->getThumbnail($image"watermarked_" $type);
  862.         if(!$thumb || empty($thumb->getConfig())) {
  863.             $thumb $this->getThumbnail($image$type);
  864.         }
  865.         if(!$thumb || empty($thumb->getConfig())){
  866.             if($original) return $image;
  867.             $thumb $this->getThumbnail($imageAsset\Image\Thumbnail\Config::getPreviewConfig());
  868.         }
  869.         return $thumb;
  870.     }
  872.     private function getThumbnail($image$type){
  873.         try{
  874.             return $image->getThumbnail($type);
  875.         }catch(\Exception $err){
  876.             return null;
  877.         }
  878.     }
  880.     private function addThumbnailCacheHeaders(Response $response)
  881.     {
  882.        $lifetime 300;
  883.         $date = new \DateTime('now');
  884.         $date->add(new \DateInterval('PT' $lifetime 'S'));
  886.         $response->setMaxAge($lifetime);
  887.         $response->setPublic();
  888.         $response->setExpires($date);
  889.         $response->headers->set('Access-Control-Allow-Origin''*');
  890.     }
  892.     private function checkHash($id){
  893.         list($id$hash) = explode("-"$id);
  894.         return $hash === substr(md5($id md5(getenv("dotenv_suffix"))), 08);
  895.     }
  896. }