hesabixCore/hesabixCore/src/Controller/BusinessController.php

<?php

namespace App\Controller;

use App\Entity\APIToken;
use App\Entity\BankAccount;
use App\Entity\Commodity;
use App\Entity\HesabdariDoc;
use App\Entity\HesabdariRow;
use App\Entity\Money;
use App\Entity\Permission;
use App\Entity\Person;
use App\Entity\Plugin;
use App\Entity\User;
use App\Entity\Business;
use App\Entity\Hook;
use App\Entity\Year;
use App\Service\Access;
use App\Service\Jdate;
use App\Service\Log;
use App\Service\Provider;
use Doctrine\ORM\EntityManagerInterface;

use ReflectionException;
use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
use Symfony\Component\HttpFoundation\JsonResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\Annotation\Route;
use Symfony\Component\Security\Core\Exception\UserNotFoundException;
use Symfony\Component\Security\Http\Attribute\CurrentUser;

class BusinessController extends AbstractController
{
    #[Route('/api/business/list', name: 'api_bussiness_list')]
    public function api_bussiness_list(#[CurrentUser] ?User $user,EntityManagerInterface $entityManager,Provider $provider): Response
    {
        $buss = $entityManager->getRepository(Permission::class)->findBy(['user'=>$user]);
        $response = [];
        foreach ($buss as $bus){
            $temp = [];
            $temp['id'] = $bus->getBid()->getId();
            $temp['owner'] = $bus->getBid()->getOwner()->getFullName();
            $temp['name'] = $bus->getBid()->getName();
            $temp['legal_name'] = $bus->getBid()->getLegalName();
            $response[] = $temp;
        }
        return $this->json($response);
    }

    /**
     * @throws ReflectionException
     */
    #[Route('/api/business/get/info/{bid}', name: 'api_business_get_info')]
    public function api_business_get_info($bid,#[CurrentUser] ?User $user,Provider $provider,EntityManagerInterface $entityManager): Response
    {
        $bus = $entityManager->getRepository(Business::class)->findOneBy(['id'=>$bid]);
        $response = [];
        $response['id'] = $bus->getId();
        $response['name'] = $bus->getName();
        $response['owner'] = $bus->getOwner()->getFullName();
        $response['legal_name'] = $bus->getLegalName();
        $response['field'] = $bus->getField();
        $response['shenasemeli'] = $bus->getShenasemeli();
        $response['codeeqtesadi'] = $bus->getCodeeghtesadi();
        $response['shomaresabt'] = $bus->getShomaresabt();
        $response['country'] = $bus->getCountry();
        $response['ostan'] = $bus->getOstan();
        $response['shahrestan'] = $bus->getShahrestan();
        $response['postalcode'] = $bus->getPostalcode();
        $response['tel'] = $bus->getTel();
        $response['mobile'] = $bus->getMobile();
        $response['address'] = $bus->getAddress();
        $response['website'] = $bus->getWesite();
        $response['email'] = $bus->getEmail();
        $response['maliyatafzode'] = $bus->getMaliyatafzode();
        $response['arzmain'] = $bus->getMoney()->getName();
        $response['type'] = $bus->getType();
        $response['zarinpalCode'] = $bus->getZarinpalCode();
        $response['smsCharge'] = $bus->getSmsCharge();
        $response['shortlinks'] = $bus->isShortLinks();
        $response['walletEnabled'] = $bus->isWalletEnable();
        $response['walletMatchBank'] = null;
        if($bus->isWalletEnable())
            $response['walletMatchBank'] = $provider->Entity2Array($bus->getWalletMatchBank(),0);
        return $this->json($response);
    }

    #[Route('/api/business/list/count', name: 'api_bussiness_list_count')]
    public function api_bussiness_list_count(#[CurrentUser] ?User $user,EntityManagerInterface $entityManager): Response
    {
        $buss = $entityManager->getRepository(Permission::class)->findBy(['user'=>$user]);
        $response = ['count'=>count($buss)];
        return $this->json($response);
    }

    #[Route('/api/business/insert', name: 'api_bussiness_insert')]
    public function api_bussiness_insert(Jdate $jdate, Access $access,Log $log,Request $request,EntityManagerInterface $entityManager): Response
    {
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        //check for that data is set
        if(
            trim($params['name']) != '' &&
            trim($params['legal_name']) != '' &&
            trim($params['maliyatafzode']) != ''
        ) {
            //submit business
            $isNew = false;
            if (array_key_exists('bid', $params)) {
                $business = $entityManager->getRepository(Business::class)->find($params['bid']);
                if (!$business) {
                    return $this->json(['result' => -1]);
                }
            } else {
                $business = new Business();
                $business->setPersonCode(1000);
                $business->setBankCode(1000);
                $business->setReceiveCode(1000);
                $isNew = true;
            }
            if (!$isNew && !$access->hasRole('settings'))
                throw $this->createAccessDeniedException();
            //check for that user register business before
            $oldBid = $entityManager->getRepository(Business::class)->findOneBy(['owner' => $this->getUser()], ['id' => 'DESC']);
            if ($oldBid && !$business->getId()) {
                if ($oldBid->getDateSubmit() > time() - 86400) {
                    return $this->json(['result' => 3]);
                }
            }
            $business->setName($params['name']);
            $business->setOwner($this->getUser());
            $business->setLegalName($params['legal_name']);
            $business->setMaliyatafzode($params['maliyatafzode']);
            if ($params['field'])
                $business->setField($params['field']);
            if ($params['type'])
                $business->setType($params['type']);
            if ($params['shenasemeli'])
                $business->setShenasemeli($params['shenasemeli']);
            if ($params['codeeqtesadi'])
                $business->setCodeeghtesadi($params['codeeqtesadi']);
            if ($params['shomaresabt'])
                $business->setShomaresabt($params['shomaresabt']);
            if ($params['country'])
                $business->setCountry($params['country']);
            if ($params['ostan'])
                $business->setOstan($params['ostan']);
            if ($params['shahrestan'])
                $business->setShahrestan($params['shahrestan']);
            if ($params['postalcode'])
                $business->setPostalcode($params['postalcode']);
            if (array_key_exists('zarinpalCode', $params))
                $business->setZarinpalCode($params['zarinpalCode']);
            if (array_key_exists('shortlinks', $params))
                $business->setShortlinks($params['shortlinks']);
            if ($params['tel'])
                $business->setTel($params['tel']);
            if ($params['mobile'])
                $business->setMobile($params['mobile']);
            if ($params['address'])
                $business->setAddress($params['address']);
            if ($params['website'])
                $business->setWesite($params['website']);
            if ($params['email'])
                $business->setEmail($params['email']);

            if (array_key_exists('walletEnabled', $params)){
                if ($params['walletEnabled']) {
                    if (array_key_exists('walletMatchBank', $params)) {
                        $bank = $entityManager->getRepository(BankAccount::class)->findOneBy([
                            'bid' => $business->getId(),
                            'id' => $params['walletMatchBank']['id']
                        ]);
                        if ($bank) {
                            $business->setWalletEnable($params['walletEnabled']);
                            $business->setWalletMatchBank($bank);
                        }
                    }
                }
                else{
                    $business->setWalletEnable(false);
                }
            }

           //get Money type
            if($params['arzmain']){
                $Arzmain = $entityManager->getRepository(Money::class)->findOneBy(['name'=>$params['arzmain']]);
                if($Arzmain)
                    $business->setMoney($Arzmain);
                else
                    return $this->json(['result'=>2]);
            }
            else
                return $this->json(['result'=>2]);
            if(! $business->getDateSubmit())  $business->setDateSubmit(time());
            $entityManager->persist($business);
            $entityManager->flush();
            if($isNew){
                $perms = new Permission();
                $perms->setBid($business);
                $perms->setUser($this->getUser());
                $perms->setOwner(true);
                $perms->setSettings(true);
                $perms->setPerson(true);
                $perms->setGetpay(true);
                $perms->setCommodity(true);
                $perms->setBanks(true);
                $perms->setBankTransfer(true);
                $perms->setBuy(true);
                $perms->setSell(true);
                $perms->setCost(true);
                $perms->setIncome(true);
                $perms->setReport(true);
                $perms->setAccounting(true);
                $perms->setLog(true);
                $perms->setStore(true);
                $perms->setSalary(true);
                $perms->setPermission(true);
                $perms->setSalary(true);
                $perms->setCashdesk(true);
                $perms->setWallet(true);
                $entityManager->persist($perms);
                $entityManager->flush();
                //active Year
                $year = new Year();
                $year->setBid($business);
                $year->setHead(true);
                $year->setStart(time());
                $year->setEnd(time() + 31536000);
                $year->setLabel('سال مالی منتهی به ' . $jdate->jdate('Y/n/d',time() + 31536000));
                $entityManager->persist($year);
                $entityManager->flush();
            }
            //add log to system
            $log->insert('تنظیمات پایه','اطلاعات کسب و کار ایجاد/ویرایش شد.',$this->getUser(),$business);
        }
        return $this->json(['result'=>1]);
    }

    #[Route('/api/business/add/user', name: 'api_business_add_user')]
    public function api_business_add_user(Access $access,Log $log,Request $request,EntityManagerInterface $entityManager): Response
    {
        if(!$access->hasRole('permission'))
            throw $this->createAccessDeniedException();
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        //check for that data is set
        if(
            trim($params['bid']) != '' &&
            trim($params['email']) != ''
        ){
            $business = $entityManager->getRepository(Business::class)->find($params['bid']);
            if(is_null($business)){
                return $this->json(['result'=>-1]);
            }
            //echo $params['email'];
            $user = $entityManager->getRepository(User::class)->findOneBy([
               'email' => $params['email']
            ]);
            if(is_null($user)){
                return $this->json(['result'=>0]);
            }
            $perm = $entityManager->getRepository(Permission::class)->findOneBy([
                'user'=>$user,
                'bid'=>$business
            ]);
            if($perm){
                //already added
                return $this->json(['result'=>1]);
            }
            $perm = new Permission();
            $perm->setBid($business);
            $perm->setUser($user);
            $perm->setOwner(false);
            $entityManager->persist($perm);
            $entityManager->flush();
            //add log to system
            $log->insert('تنظیمات پایه','کاربر با پست الکترونیکی ' . $params['email'] .' به کسب و کار اضافه شد.',$this->getUser(),$business);
            return $this->json(
                [
                    'result'=>2,
                    'data'=>[
                        'email'=>$user->getEmail(),
                        'name'=>$user->getFullName(),
                        'owner'=>false
                    ]
                ]);
        }
        return $this->json(['result'=>-1]);
    }

    #[Route('/api/business/delete/user', name: 'api_business_delete_user')]
    public function api_business_delete_user(Access $access,Log $log,Request $request,EntityManagerInterface $entityManager): Response
    {
        if(!$access->hasRole('permission'))
            throw $this->createAccessDeniedException();
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        //check for that data is set
        if(
            trim($params['bid']) != '' &&
            trim($params['email']) != ''
        ){
            $business = $entityManager->getRepository(Business::class)->find($params['bid']);
            if(is_null($business)){
                return $this->json(['result'=>-1]);
            }
            //echo $params['email'];
            $user = $entityManager->getRepository(User::class)->findOneBy([
                'email' => $params['email']
            ]);
            if(is_null($user)){
                return $this->json(['result'=>-1]);
            }
            $perm = $entityManager->getRepository(Permission::class)->findOneBy([
                'user'=>$user,
                'bid'=>$business
            ]);
            if($perm && ! $perm->isOwner()){
                $entityManager->remove($perm);
                $entityManager->flush();
                //add log to system
                $log->insert('تنظیمات پایه','کاربر با پست الکترونیکی ' . $params['email'] .' از کسب و کار حذف شد.',$this->getUser(),$business);
                return $this->json(['result'=>1]);
            }
        }
        return $this->json(['result'=>-1]);
    }

    #[Route('/api/business/get/user/permissions', name: 'api_business_get_user_permission')]
    public function api_business_get_user_permission(Log $log,Request $request,EntityManagerInterface $entityManager): Response
    {
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        //check for that data is set
        if(
            trim($params['bid']) != '' &&
            trim($params['email']) != ''
        ){
            $business = $entityManager->getRepository(Business::class)->find($params['bid']);
            if(is_null($business)){
                return $this->json(['result'=>-1]);
            }
            $user = $entityManager->getRepository(User::class)->findOneBy([
                'email' => $params['email']
            ]);
            if(is_null($user)){
                return $this->json(['result'=>-1]);
            }
            $perm = $entityManager->getRepository(Permission::class)->findOneBy([
                'bid'=>$business,
                'user'=>$user
            ]);
            $result = [];
            if($business->getOwner() == $user){
                $result = [
                    'id'=>$perm->getUser()->getId(),
                    'user'=>$perm->getUser()->getFullName(),
                    'email'=>$perm->getUser()->getEmail(),
                    'settings'=>true,
                    'persons'=>true,
                    'commodity'=>true,
                    'getpay'=>true,
                    'store'=>true,
                    'bank'=>true,
                    'bankTransfer'=>true,
                    'cost'=>true,
                    'income'=>true,
                    'buy'=>true,
                    'sell'=>true,
                    'accounting'=>true,
                    'report'=>true,
                    'log'=>true,
                    'permission'=>true,
                    'salary'=>true,
                    'cashdesk'=>true,
                    'plugNoghreAdmin'=>true,
                    'plugNoghreSell'=>true,
                    'plugCCAdmin'=>true,
                    'wallet'=>true,
                    'owner'=> true,
                    'archiveUpload'=>true,
                    'archiveMod'=>true,
                    'archiveDelete'=>true,
                    'archiveView'=>true,
                    'active'=> $perm->getUser()->isActive(),
                    'shareholder'=>true,
                ];
            }
            elseif($perm){
                $result = [
                    'id'=>$perm->getUser()->getId(),
                    'user'=>$perm->getUser()->getFullName(),
                    'email'=>$perm->getUser()->getEmail(),
                    'settings'=>$perm->isSettings(),
                    'persons'=>$perm->isPerson(),
                    'commodity'=>$perm->isCommodity(),
                    'getpay'=>$perm->isGetpay(),
                    'bank'=>$perm->isBanks(),
                    'bankTransfer'=>$perm->isBankTransfer(),
                    'cost'=>$perm->isCost(),
                    'income'=>$perm->isIncome(),
                    'buy'=>$perm->isBuy(),
                    'sell'=>$perm->isSell(),
                    'accounting'=>$perm->isAccounting(),
                    'report'=>$perm->isReport(),
                    'log'=>$perm->isLog(),
                    'store'=>$perm->isStore(),
                    'permission'=>$perm->isPermission(),
                    'salary'=>$perm->isSalary(),
                    'cashdesk'=>$perm->isCashdesk(),
                    'plugNoghreAdmin'=>$perm->isPlugNoghreAdmin(),
                    'plugNoghreSell'=>$perm->isPlugNoghreSell(),
                    'plugCCAdmin'=>$perm->isPlugCCAdmin(),
                    'wallet'=>$perm->isWallet(),
                    'owner'=> false,
                    'archiveUpload'=>$perm->isArchiveUpload(),
                    'archiveMod'=>$perm->isArchiveMod(),
                    'archiveDelete'=>$perm->isArchiveDelete(),
                    'archiveView'=>$perm->isArchiveView(),
                    'active'=> $perm->getUser()->isActive(),
                    'shareholder'=> $perm->isShareholder(),
                ];
            }
            return $this->json($result);
        }
        return $this->json(['result'=>-1]);
    }

    #[Route('/api/business/save/user/permissions', name: 'api_business_save_user_permission')]
    public function api_business_save_user_permission(Access $access,Log $log,Request $request,EntityManagerInterface $entityManager): Response
    {
        if(!$access->hasRole('permission'))
            throw $this->createAccessDeniedException();
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        //check for that data is set
        if(
            trim($params['bid']) != '' &&
            trim($params['email']) != ''
        ){
            $business = $entityManager->getRepository(Business::class)->find($params['bid']);
            if(is_null($business)){
                return $this->json(['result'=>-1]);
            }
            $user = $entityManager->getRepository(User::class)->findOneBy([
                'email' => $params['email']
            ]);
            if(is_null($user)){
                return $this->json(['result'=>-1]);
            }
            $perm = $entityManager->getRepository(Permission::class)->findOneBy([
                'bid'=>$business,
                'user'=>$user
            ]);
            if($perm){
                $perm->setSettings($params['settings']);
                $perm->setPerson($params['persons']);
                $perm->setGetpay($params['getpay']);
                $perm->setCommodity($params['commodity']);
                $perm->setBanks($params['bank']);
                $perm->setBankTransfer($params['bankTransfer']);
                $perm->setbuy($params['buy']);
                $perm->setSell($params['sell']);
                $perm->setStore($params['store']);
                $perm->setCost($params['cost']);
                $perm->setIncome($params['income']);
                $perm->setAccounting($params['accounting']);
                $perm->setReport($params['report']);
                $perm->setPermission($params['permission']);
                $perm->setSalary($params['salary']);
                $perm->setWallet($params['wallet']);
                $perm->setCashdesk($params['cashdesk']);
                $perm->setPlugNoghreAdmin($params['plugNoghreAdmin']);
                $perm->setPlugNoghreSell($params['plugNoghreSell']);
                $perm->setPlugCCAdmin($params['plugCCAdmin']);
                $perm->setLog($params['log']);
                $perm->setArchiveMod($params['archiveMod']);
                $perm->setArchiveDelete($params['archiveDelete']);
                $perm->setArchiveUpload($params['archiveUpload']);
                $perm->setArchiveView($params['archiveView']);
                $perm->setShareholder($params['shareholder']);
                $entityManager->persist($perm);
                $entityManager->flush();
                $log->insert('تنظیمات پایه','ویرایش دسترسی‌های کاربر با پست الکترونیکی ' . $user->getEmail() ,$this->getUser(),$business);

                return $this->json(['result'=>1]);
            }
        }
        return $this->json(['result'=>-1]);
    }

    #[Route('/api/business/stat', name: 'api_business_stat')]
    public function api_business_stat(Request $request,#[CurrentUser] ?User $user,EntityManagerInterface $entityManager): Response
    {
        $buss = $entityManager->getRepository(Business::class)->find(
            $request->headers->get('activeBid')
        );
        if(!$buss)
            throw $this->createNotFoundException();

        $year = $entityManager->getRepository(Year::class)->find(
            $request->headers->get('activeYear')
        );
        if(!$year)
            throw $this->createNotFoundException();
        $persons = $entityManager->getRepository(Person::class)->findBy([
            'bid'=>$buss
            ]);
        $banks = $entityManager->getRepository(BankAccount::class)->findBy([
            'bid'=>$buss
        ]);

        $docs = $entityManager->getRepository(HesabdariDoc::class)->findBy([
            'bid'=>$buss
        ]);

        $rows = $entityManager->getRepository(HesabdariRow::class)->findBy([
            'bid'=>$buss,
            'year'=>$year
        ]);
        $bssum = 0;
        foreach ($rows as $row)
            $bssum += $row->getBs();

        $response = [
            'personCount'=>count($persons),
            'bankCount'=>count($banks),
            'docCount'=>count($docs),
            'income'=> $bssum,
            'commodity'=>count($entityManager->getRepository(Commodity::class)->findby([
                'bid'=>$buss
            ]))
        ];
        return $this->json($response);
    }

    #[Route('hooks/setting/SetChangeHook', name: 'api_business_SetChangeHook')]
    public function api_business_SetChangeHook(Access $access,Log $log,Request $request,EntityManagerInterface $entityManager): JsonResponse
    {
        
        $api = $entityManager->getRepository(APIToken::class)->findOneBy([
            'token' => $request->headers->get('api-key'),
        ]);
       
        $params = [];
        if ($content = $request->getContent()) {
            $params = json_decode($content, true);
        }
        $hook = $entityManager->getRepository(Hook::class)->findOneBy([
            'url'=> $params['url'],
            'password'=> $params['hookPassword'],
            'bid' => $api->getBid(),
            'submitter'=>$this->getUser()
        ]);
        if(!$hook){
            $hook = new Hook();
            $hook->setBid($api->getBid());
            $hook->setSubmitter($this->getUser());
            $hook->setPassword($params['hookPassword']);
            $hook->setUrl($params['url']);
            $entityManager->persist($hook);
            $entityManager->flush();
        }
        
        $year = $entityManager->getRepository(Year::class)->findOneBy(['bid'=>$api->getBid(),'head'=>true])->getId();
        return $this->json([
            'Success'=>true,
            'bid' => $api->getBid()->getId(),
            'year' => $year,
            'money' => $api->getBid()->getMoney()->getId()
        ]);
    }
}