mirror of
https://github.com/solidtime-io/solidtime.git
synced 2026-06-15 13:32:43 +01:00
101 lines
3.0 KiB
PHP
101 lines
3.0 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Http\Controllers\Api\V1;
|
|
|
|
use App\Http\Requests\V1\Invitation\InvitationIndexRequest;
|
|
use App\Http\Requests\V1\Invitation\InvitationStoreRequest;
|
|
use App\Http\Resources\V1\Invitation\InvitationCollection;
|
|
use App\Http\Resources\V1\Invitation\InvitationResource;
|
|
use App\Models\Organization;
|
|
use App\Models\OrganizationInvitation;
|
|
use Illuminate\Auth\Access\AuthorizationException;
|
|
use Illuminate\Http\JsonResponse;
|
|
use Illuminate\Support\Facades\Mail;
|
|
use Laravel\Jetstream\Contracts\InvitesTeamMembers;
|
|
use Laravel\Jetstream\Mail\TeamInvitation;
|
|
|
|
class InvitationController extends Controller
|
|
{
|
|
protected function checkPermission(Organization $organization, string $permission, ?OrganizationInvitation $organizationInvitation = null): void
|
|
{
|
|
parent::checkPermission($organization, $permission);
|
|
if ($organizationInvitation !== null && $organizationInvitation->organization_id !== $organization->id) {
|
|
throw new AuthorizationException('Invitation does not belong to organization');
|
|
}
|
|
}
|
|
|
|
/**
|
|
* List all invitations of an organization
|
|
*
|
|
* @return InvitationCollection<InvitationResource>
|
|
*
|
|
* @throws AuthorizationException
|
|
*
|
|
* @operationId getInvitations
|
|
*/
|
|
public function index(Organization $organization, InvitationIndexRequest $request): InvitationCollection
|
|
{
|
|
$this->checkPermission($organization, 'invitations:view');
|
|
|
|
$invitations = $organization->teamInvitations()
|
|
->paginate(config('app.pagination_per_page_default'));
|
|
|
|
return InvitationCollection::make($invitations);
|
|
}
|
|
|
|
/**
|
|
* Invite a user to the organization
|
|
*
|
|
* @throws AuthorizationException
|
|
*
|
|
* @operationId invite
|
|
*/
|
|
public function store(Organization $organization, InvitationStoreRequest $request): JsonResponse
|
|
{
|
|
$this->checkPermission($organization, 'invitations:create');
|
|
|
|
app(InvitesTeamMembers::class)->invite(
|
|
$request->user(),
|
|
$organization,
|
|
$request->input('email'),
|
|
$request->input('role')
|
|
);
|
|
|
|
return response()->json(null, 204);
|
|
}
|
|
|
|
/**
|
|
* Resend email for a pending invitation
|
|
*
|
|
* @throws AuthorizationException
|
|
*
|
|
* @operationId resendInvitationEmail
|
|
*/
|
|
public function resend(Organization $organization, OrganizationInvitation $invitation): JsonResponse
|
|
{
|
|
$this->checkPermission($organization, 'invitations:resend', $invitation);
|
|
|
|
Mail::to($invitation->email)->send(new TeamInvitation($invitation));
|
|
|
|
return response()->json(null, 204);
|
|
}
|
|
|
|
/**
|
|
* Remove a pending invitation
|
|
*
|
|
* @throws AuthorizationException
|
|
*
|
|
* @operationId removeInvitation
|
|
*/
|
|
public function destroy(Organization $organization, OrganizationInvitation $invitation): JsonResponse
|
|
{
|
|
$this->checkPermission($organization, 'invitations:remove', $invitation);
|
|
|
|
$invitation->delete();
|
|
|
|
return response()->json(null, 204);
|
|
}
|
|
}
|