402 lines
13 KiB
PHP
402 lines
13 KiB
PHP
<?php
|
|
|
|
namespace Modules\Usermanagement\Http\Controllers;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use Exception;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\Hash;
|
|
use Illuminate\Support\Facades\Validator;
|
|
use Maatwebsite\Excel\Facades\Excel;
|
|
use Modules\Basicdata\Models\Branch;
|
|
use Modules\Usermanagement\Exports\UsersExport;
|
|
use Modules\Usermanagement\Http\Requests\User as UserRequest;
|
|
use Modules\Usermanagement\Models\Role;
|
|
use Modules\Usermanagement\Models\User;
|
|
use Illuminate\Support\Facades\Storage;
|
|
use Illuminate\Support\Facades\Log;
|
|
|
|
/**
|
|
* Class UsersController
|
|
*
|
|
* This controller is responsible for managing user within the application.
|
|
*
|
|
* @package Modules\Usermanagement\Http\Controllers
|
|
*/
|
|
class UsersController extends Controller
|
|
{
|
|
/**
|
|
* @var \Illuminate\Contracts\Auth\Authenticatable|null
|
|
*/
|
|
protected $user;
|
|
|
|
/**
|
|
* UsersController constructor.
|
|
*
|
|
* Initializes the user property with the authenticated user.
|
|
*/
|
|
public function __construct()
|
|
{
|
|
// Mengatur middleware auth
|
|
$this->middleware('auth');
|
|
|
|
// Mengatur user setelah middleware auth dijalankan
|
|
$this->middleware(function ($request, $next) {
|
|
$this->user = Auth::user();
|
|
return $next($request);
|
|
});
|
|
}
|
|
|
|
/**
|
|
* Display a listing of the resource.
|
|
*
|
|
* @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function index()
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.read')) {
|
|
abort(403, 'Sorry! You are not allowed to view users.');
|
|
}
|
|
|
|
return view('usermanagement::users.index');
|
|
}
|
|
|
|
/**
|
|
* Process support datatables ajax request.
|
|
*
|
|
* @param \Illuminate\Http\Request $request
|
|
*
|
|
* @return \Illuminate\Http\JsonResponse
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function dataForDatatables(Request $request)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.read')) {
|
|
return response()->json([
|
|
'message' => 'Sorry! You are not allowed to view users.',
|
|
'success' => false
|
|
]);
|
|
}
|
|
|
|
$query = User::query()->with(['branches', 'roles']);
|
|
|
|
if (!$this->user->hasRole('administrator')) {
|
|
$query->whereHas('roles', function ($q) {
|
|
$q->where('name', '!=', 'administrator');
|
|
});
|
|
}
|
|
|
|
if ($request->has('search') && !empty($request->get('search'))) {
|
|
$search = $request->get('search');
|
|
$query->where(function ($q) use ($search) {
|
|
$q->where('name', 'like', '%' . $search . '%')
|
|
->orWhere('email', 'like', '%' . $search . '%')
|
|
->orWhereHas('branches', function ($qb) use ($search) {
|
|
$qb->where('name', 'like', '%' . $search . '%');
|
|
});
|
|
});
|
|
}
|
|
|
|
if ($request->has('sortOrder') && !empty($request->get('sortOrder'))) {
|
|
$order = $request->get('sortOrder');
|
|
$column = $request->get('sortField');
|
|
$query->orderBy($column, $order);
|
|
}
|
|
|
|
$totalRecords = $query->count();
|
|
|
|
$page = $request->get('page', 1);
|
|
$size = $request->get('size', 10);
|
|
$offset = ($page - 1) * $size;
|
|
|
|
$query->skip($offset)->take($size);
|
|
|
|
$filteredRecords = $query->count();
|
|
|
|
$users = $query->get()->map(function ($user) {
|
|
$user->branch_names = $user->branches->pluck('name')->join(', ');
|
|
return $user;
|
|
});
|
|
|
|
$pageCount = ceil($totalRecords / $size);
|
|
|
|
return response()->json([
|
|
'draw' => $request->get('draw'),
|
|
'recordsTotal' => $totalRecords,
|
|
'recordsFiltered' => $filteredRecords,
|
|
'pageCount' => $pageCount,
|
|
'page' => $page,
|
|
'totalCount' => $totalRecords,
|
|
'data' => $users,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Show the form for editing the specified resource.
|
|
*
|
|
* @param int $id
|
|
*
|
|
* @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function edit($id)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.update')) {
|
|
abort(403, 'Sorry! You are not allowed to edit users.');
|
|
}
|
|
|
|
$user = User::find($id);
|
|
$roles = Role::all();
|
|
if (!$this->user->hasRole('administrator')) {
|
|
$roles = $roles->where('name', '!=', 'administrator');
|
|
}
|
|
$branches = Branch::all();
|
|
return view('usermanagement::users.create', compact('user', 'roles', 'branches'));
|
|
}
|
|
|
|
/**
|
|
* Remove the specified resource from storage.
|
|
*
|
|
* @param int $id
|
|
*
|
|
* @return \Illuminate\Http\RedirectResponse
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function destroy($id)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.delete')) {
|
|
return response()->json(['message' => 'Sorry! You are not allowed to delete users.', 'success' => false]);
|
|
}
|
|
|
|
$user = User::find($id);
|
|
$user->delete();
|
|
|
|
return response()->json(['message' => 'User deleted successfully.', 'success' => true]);
|
|
}
|
|
|
|
/**
|
|
* Restore the specified resource from storage.
|
|
*
|
|
* @param int $id
|
|
*
|
|
* @return \Illuminate\Http\RedirectResponse
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function restore($id)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.restore')) {
|
|
abort(403, 'Sorry! You are not allowed to restore users.');
|
|
}
|
|
|
|
$user = User::withTrashed()->find($id);
|
|
$user->restore();
|
|
|
|
return redirect()->route('users.index')->with('success', 'User restored successfully.');
|
|
}
|
|
|
|
/**
|
|
* Store a newly created resource in storage.
|
|
*
|
|
* This function handles the creation of a new user in the application. It validates the incoming request data,
|
|
* creates a new user record in the database, and redirects the user to the users index page with a success message.
|
|
*
|
|
* @param \Modules\Usermanagement\Http\Requests\User $request The incoming request containing the user data.
|
|
*
|
|
* @return \Illuminate\Http\RedirectResponse Redirects to the users index page with a success message upon successful creation.
|
|
* @return \Illuminate\Http\RedirectResponse Redirects to the users create page upon validation failure.
|
|
*/
|
|
public function store(UserRequest $request)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.create')) {
|
|
abort(403, 'Sorry! You are not allowed to create a user.');
|
|
}
|
|
|
|
$validated = $request->validated();
|
|
|
|
if ($validated) {
|
|
$user = User::create($validated);
|
|
|
|
if ($user) {
|
|
if ($request->roles) {
|
|
$user->assignRole($request->roles);
|
|
}
|
|
|
|
$branches = $request->input('branches', []);
|
|
|
|
$user->branches()->sync($branches);
|
|
|
|
if (!empty($branches)) {
|
|
$firstBranchId = $branches[0];
|
|
|
|
$user->branch_id = $firstBranchId;
|
|
$user->save();
|
|
}
|
|
|
|
return redirect()->route('users.index')->with('success', 'User created successfully.');
|
|
}
|
|
}
|
|
|
|
return redirect()->route('users.create');
|
|
}
|
|
|
|
/**
|
|
* Show the form for creating a new resource.
|
|
*
|
|
* @return \Illuminate\Contracts\View\Factory|\Illuminate\View\View
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function create()
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.create')) {
|
|
abort(403, 'Sorry! You are not allowed to create a user.');
|
|
}
|
|
|
|
$roles = Role::all();
|
|
if (!$this->user->hasRole('administrator')) {
|
|
$roles = $roles->where('name', '!=', 'administrator');
|
|
}
|
|
$branches = Branch::all();
|
|
return view('usermanagement::users.create', compact('roles', 'branches'));
|
|
}
|
|
|
|
public function export(Request $request)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.export')) {
|
|
abort(403, 'Sorry! You are not allowed to export users.');
|
|
}
|
|
|
|
// Get search parameter from request
|
|
$search = $request->get('search');
|
|
|
|
return Excel::download(new UsersExport($search), 'users.xlsx');
|
|
}
|
|
|
|
public function profile()
|
|
{
|
|
$user = Auth::user();
|
|
return view('usermanagement::users.profile', compact('user'));
|
|
}
|
|
|
|
public function updateProfile(Request $request)
|
|
{
|
|
$user = Auth::user();
|
|
|
|
$validatedData = $request->validate([
|
|
'name' => 'required|string|max:255',
|
|
'email' => 'required|string|email|max:255|unique:users,email,' . $user->id,
|
|
'sign' => 'nullable|image|mimes:jpeg,png,jpg,gif|max:2048',
|
|
]);
|
|
|
|
$user->name = $validatedData['name'];
|
|
$user->email = $validatedData['email'];
|
|
$user->nik = $validatedData['nik'];
|
|
|
|
if ($request->hasFile('sign')) {
|
|
// Delete old e-sign if exists
|
|
if ($user->sign) {
|
|
Storage::disk('public')->delete('signatures/' . $user->id . '/' . $user->sign);
|
|
}
|
|
|
|
$sign = $request->file('sign');
|
|
$signName = time() . '.' . $sign->getClientOriginalExtension();
|
|
|
|
// Make sure the directory exists
|
|
Storage::disk('public')->makeDirectory('signatures/' . $user->id);
|
|
|
|
// Store the file
|
|
$sign->storeAs('signatures/' . $user->id, $signName, 'public');
|
|
$user->sign = $signName;
|
|
}
|
|
|
|
$user->save();
|
|
|
|
return redirect()->route('users.profile')->with('success', 'Profile updated successfully.');
|
|
}
|
|
|
|
public function changePassword(Request $request)
|
|
{
|
|
$validator = Validator::make($request->all(), [
|
|
'current_password' => 'required',
|
|
'password' => 'required|string|min:8|confirmed',
|
|
], [
|
|
'password_confirmation' => 'The new password confirmation does not match.',
|
|
]);
|
|
|
|
if ($validator->fails()) {
|
|
return back()->withErrors($validator)->withInput();
|
|
}
|
|
|
|
$user = Auth::user();
|
|
|
|
if (!Hash::check($request->current_password, $user->password)) {
|
|
return back()->withErrors(['current_password' => 'The current password is incorrect.']);
|
|
}
|
|
|
|
$user->password = Hash::make($request->password);
|
|
$user->save();
|
|
|
|
return redirect()->route('users.profile')->with('success', 'Password changed successfully.');
|
|
}
|
|
|
|
/**
|
|
* Update the specified resource in storage.
|
|
*
|
|
* @param \Modules\Usermanagement\Http\Requests\User $request
|
|
* @param int $id
|
|
*
|
|
* @return \Illuminate\Http\RedirectResponse
|
|
* @throws \Illuminate\Auth\Access\AuthorizationException
|
|
*/
|
|
public function update(UserRequest $request, $id)
|
|
{
|
|
if (is_null($this->user) || !$this->user->can('usermanagement.update')) {
|
|
abort(403, 'Sorry! You are not allowed to update users.');
|
|
}
|
|
|
|
$validated = $request->validated();
|
|
|
|
if ($validated) {
|
|
try {
|
|
$user = User::findOrFail($id);
|
|
|
|
// Handle file upload e-sign
|
|
if ($request->hasFile('sign')) {
|
|
$sign = $request->file('sign');
|
|
|
|
$signName = time() . '.' . $sign->getClientOriginalExtension();
|
|
|
|
// Simpan file ke storage
|
|
$sign->storeAs(
|
|
'public/signatures/' . $user->id . '/',
|
|
$signName
|
|
);
|
|
|
|
$validated['sign'] = $signName;
|
|
}
|
|
|
|
// Update data user
|
|
$user->update($validated);
|
|
|
|
// Update roles
|
|
if ($request->roles) {
|
|
$user->roles()->detach();
|
|
$user->assignRole($request->roles);
|
|
}
|
|
|
|
$user->branches()->sync($request->input('branches', []));
|
|
|
|
$branchIds = $user->branches()->pluck('branches.id')->toArray();
|
|
|
|
} catch (Exception $e) {
|
|
Log::error('Failed to update user: ' . $e->getMessage());
|
|
return redirect()->back()->withErrors(['error' => 'Failed to update user. Please try again.']);
|
|
}
|
|
}
|
|
|
|
return redirect()->route('users.index')->with('success', 'User updated successfully.');
|
|
}
|
|
|
|
}
|