app/Plugin/TabaCMS2/Controller/AdminController.php line 263

Open in your IDE?
  1. <?php
  2. /*
  3.  * Copyright (C) SPREAD WORKS Inc. All Rights Reserved.
  4.  *
  5.  * For the full copyright and license information, please view the LICENSE
  6.  * file that was distributed with this source code.
  7.  */
  8. namespace Plugin\TabaCMS2\Controller;
  10. use Eccube\Common\Constant;
  11. use Eccube\Controller\AbstractController;
  12. use Knp\Component\Pager\Paginator;
  13. use Knp\Component\Pager\PaginatorInterface;
  14. use Plugin\TabaCMS2\Common\Constants;
  15. use Plugin\TabaCMS2\Common\UserConfig;
  16. use Plugin\TabaCMS2\Entity\Category;
  17. use Plugin\TabaCMS2\Entity\Tag;
  18. use Plugin\TabaCMS2\Entity\PostTag;
  19. use Plugin\TabaCMS2\Entity\Post;
  20. use Plugin\TabaCMS2\Entity\Type;
  21. use Plugin\TabaCMS2\Form\Type\PostType;
  22. use Plugin\TabaCMS2\Form\Type\TypeType;
  23. use Plugin\TabaCMS2\Form\Type\CategoryType;
  24. use Plugin\TabaCMS2\Form\Type\TagType;
  25. use Plugin\TabaCMS2\Form\Type\PostSearchType;
  26. use Plugin\TabaCMS2\Repository\CategoryRepository;
  27. use Plugin\TabaCMS2\Repository\TagRepository;
  28. use Plugin\TabaCMS2\Repository\PostTagRepository;
  29. use Plugin\TabaCMS2\Repository\PostRepository;
  30. use Plugin\TabaCMS2\Repository\TypeRepository;
  31. use Plugin\TabaCMS2\Util\Util;
  32. use Symfony\Component\HttpFoundation\BinaryFileResponse;
  33. use Symfony\Component\HttpFoundation\JsonResponse;
  34. use Symfony\Component\HttpFoundation\Request;
  35. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  36. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  37. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  38. use Symfony\Component\HttpKernel\Exception\UnsupportedMediaTypeHttpException;
  39. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  40. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  41. use Symfony\Component\Security\Csrf\CsrfToken;
  42. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  43. use Symfony\Component\Finder\Finder;
  44. use Symfony\Component\Filesystem\Filesystem;
  45. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route;
  46. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  48. /**
  49.  * 管理画面用コントローラー
  50.  *
  51.  * @Route(Plugin\TabaCMS2\Common\Constants::ADMIN_URI_PREFIX,name=Plugin\TabaCMS2\Common\Constants::ADMIN_BIND_PREFIX)
  52.  */
  53. class AdminController extends AbstractController
  54. {
  55.     /**
  56.      *
  57.      * @var TypeRepository
  58.      */
  59.     private $typeRepo;
  61.     /**
  62.      *
  63.      * @var PostRepository
  64.      */
  65.     private $postRepo;
  67.     /**
  68.      *
  69.      * @var CategoryRepository
  70.      */
  71.     private $categoryRepo;
  73.     /**
  74.      *
  75.      * @var CsrfTokenManagerInterface
  76.      */
  77.     private $csrfTokenManager;
  79.     /**
  80.      * @var AuthorizationCheckerInterface
  81.      */
  82.     private $authCheck;
  84.     /**
  85.      * @var TokenStorageInterface
  86.      */
  87.     protected $tokenStore;
  89.     /**
  90.      * @var TagRepository
  91.      */
  92.     protected $tagRepo;
  94.     /**
  95.      * @var PostTagRepository
  96.      */
  97.     protected $postTagRepo;
  99.     /**
  100.      * コンストラクタ
  101.      *
  102.      * @param TypeRepository $typeRepo
  103.      * @param PostRepository $postRepo
  104.      * @param CategoryRepository $categoryRepo
  105.      * @param CsrfTokenManagerInterface $csrfTokenManager
  106.      * @param AuthorizationCheckerInterface $authCheck
  107.      * @param TokenStorageInterface $tokenStore
  108.      */
  109.     public function __construct(
  110.         TypeRepository $typeRepo,
  111.         PostRepository $postRepo,
  112.         CategoryRepository $categoryRepo,
  113.         TagRepository $tagRepo,
  114.         PostTagRepository $postTagRepo,
  115.         CsrfTokenManagerInterface $csrfTokenManager,
  116.         AuthorizationCheckerInterface $authCheck,
  117.         TokenStorageInterface $tokenStore
  118.     ){
  119.         $this->typeRepo $typeRepo;
  120.         $this->postRepo $postRepo;
  121.         $this->categoryRepo $categoryRepo;
  122.         $this->tagRepo $tagRepo;
  123.         $this->postTagRepo $postTagRepo;
  124.         $this->csrfTokenManager $csrfTokenManager;
  125.         $this->authCheck $authCheck;
  126.         $this->tokenStore $tokenStore;
  127.     }
  129.     /**
  130.      * index
  131.      *
  132.      * @param Request $request
  133.      * @return \Symfony\Component\HttpFoundation\Response
  134.      *
  135.      * @Route("/",name="_index")
  136.      */
  137.     public function index(Request $request)
  138.     {
  139.         return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_type_list');
  140.     }
  142.     /**
  143.      * 投稿タイプ / リスト
  144.      *
  145.      * @param Request $request
  146.      * @return \Symfony\Component\HttpFoundation\Response
  147.      *
  148.      * @Route("/type_list",name="_type_list")
  149.      * @Template("@TabaCMS2/admin/type_list.twig")
  150.      */
  151.     public function type_list(Request $request)
  152.     {
  153.         // 投稿タイプリスト取得
  154.         $list $this->typeRepo->getList();
  156.         return [
  157.             'list' => $list
  158.         ];
  159.     }
  161.     /**
  162.      * 投稿タイプ / 新規登録・編集
  163.      *
  164.      * @param Request $request
  165.      * @param integer $type_id
  166.      * @return \Symfony\Component\HttpFoundation\Response
  167.      *
  168.      * @Route("/type_new",name="_type_new")
  169.      * @Route("/type_edit/{type_id}",name="_type_edit",requirements={"type_id" = "\d+"})
  170.      * @Template("@TabaCMS2/admin/type_edit.twig")
  171.      */
  172.     public function type_edit(Request $request$type_id null)
  173.     {
  174.         $oldDataKey null;
  175.         $oldPublicDiv null;
  177.         // 投稿タイプ操作オブジェクトの生成
  178.         $type null;
  179.         if ($type_id) {
  180.             if (! ($type $this->typeRepo->find($type_id))) {
  181.                 throw new NotFoundHttpException();
  182.             }
  183.             $oldDataKey $type->getDataKey();
  184.             $oldPublicDiv $type->getPublicDiv();
  185.         } else {
  186.             $type = new Type(true);
  187.         }
  189.         // フォームの生成
  190.         $builder $this->formFactory->createBuilder(TypeType::class, $type);
  191.         $form $builder->getForm();
  193.         // レイアウトのデフォルト値を設定
  194.         $form->get('pcLayout')->setData($type->getPcLayout());
  195.         $form->get('spLayout')->setData($type->getSpLayout());
  197.         // 登録・変更実行
  198.         if ('POST' === $request->getMethod()) {
  199.             $form->handleRequest($request);
  201.             if ($form->isValid()) {
  202.                 // レイアウト
  203.                 $type->setPcLayout($form->get('pcLayout')->getData());
  204.                 $type->setSpLayout($form->get('spLayout')->getData());
  205.                 if ($this->typeRepo->save($type)) {
  206.                     // 新規、データキーの変更、公開区分の変更があった場合にキャッシュクリアします
  207.                     if ($type_id == null || $oldDataKey != $type->getDataKey() || $oldPublicDiv != $type->getPublicDiv()) {
  208.                         $this->routingCacheClear();
  209.                     }
  210.                     $this->addSuccess('admin.common.save_complete''admin');
  211.                     return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_type_edit', ['type_id' => $type->getTypeId()]);
  212.                 } else {
  213.                     $this->addError('admin.common.save_error''admin');
  214.                 }
  215.             } else {
  216.                 $this->addError('admin.common.save_error''admin');
  217.             }
  218.         }
  220.         return [
  221.             'form' => $form->createView(),
  222.             'type' => $type
  223.         ];
  224.     }
  226.     /**
  227.      * 投稿タイプ / 削除
  228.      *
  229.      * @param Request $request
  230.      * @param integer $type_id
  231.      * @return \Symfony\Component\HttpFoundation\Response
  232.      *
  233.      * @Route("/type_delete/{type_id}",name="_type_delete",requirements={"type_id" = "\d+"})
  234.      */
  235.     public function type_delete(Request $request$type_id)
  236.     {
  237.         // 投稿タイプ操作オブジェクトの生成
  238.         $status false;
  239.         if (! empty($type_id) && ($type $this->typeRepo->find($type_id))) {
  240.             $status $this->typeRepo->delete($type);
  241.         } else {
  242.             throw new NotFoundHttpException();
  243.         }
  244.         if ($status) {
  245.             $this->routingCacheClear(); // キャッシュクリア
  246.             $this->addSuccess('admin.common.delete_complete''admin');
  247.         } else {
  248.             $this->addError('admin.common.delete_error''admin');
  249.         }
  250.         return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_type_list');
  251.     }
  253.     /**
  254.      * カテゴリー / リスト
  255.      *
  256.      * @param Request $request
  257.      * @param integer $type_id
  258.      * @return \Symfony\Component\HttpFoundation\Response
  259.      *
  260.      * @Route("/category_list/{type_id}",name="_category_list",requirements={"type_id" = "\d+"})
  261.      * @Template("@TabaCMS2/admin/category_list.twig")
  262.      */
  263.     public function category_list(Request $request$type_id null)
  264.     {
  265.         // 投稿タイプID
  266.         if (empty($type_id)) {
  267.             $path explode("/"$request->getRequestUri());
  268.             $type_id end($path);
  269.         }
  271.         // 投稿タイプ取得
  272.         $type null;
  273.         if (! ($type $this->typeRepo->find($type_id))) {
  274.             throw new NotFoundHttpException();
  275.         }
  277.         // カテゴリーリスト取得
  278.         $list $this->categoryRepo->getList(array(
  279.             'type_id' => $type_id
  280.         ));
  282.         return [
  283.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  284.             'type' => $type,
  285.             'list' => $list
  286.         ];
  287.     }
  289.     /**
  290.      * カテゴリー / 新規登録・編集
  291.      *
  292.      * @param Request $request
  293.      * @param integer $id
  294.      * @return \Symfony\Component\HttpFoundation\Response
  295.      *
  296.      * @Route("/category_new/{type_id}",name="_category_new",requirements={"type_id" = "\d+"})
  297.      * @Route("/category_edit/{type_id}/{category_id}",name="_category_edit",requirements={"type_id" = "\d+","category_id" = "\d+"})
  298.      * @Template("@TabaCMS2/admin/category_edit.twig")
  299.      */
  300.     public function category_edit(Request $request$type_id$category_id null)
  301.     {
  302.         // 投稿タイプ取得
  303.         $type null;
  304.         if (! ($type $this->typeRepo->find($type_id))) {
  305.             throw new NotFoundHttpException();
  306.         }
  308.         // カテゴリー操作オブジェクトの生成
  309.         $category null;
  310.         if ($category_id) {
  311.             if (! ($category $this->categoryRepo->find($category_id))) {
  312.                 throw new NotFoundHttpException();
  313.             }
  314.         } else {
  315.             $category = new Category(true);
  316.         }
  317.         $category->setTypeId($type_id);
  318.         $category->setType($type);
  320.         // フォームの生成
  321.         $builder $this->formFactory->createBuilder(CategoryType::class, $category);
  322.         $form $builder->getForm();
  324.         $imageEdited false// 画像編集済みかチェックするフラグ
  325.         $originThumbnail $category->getThumbnail();
  327.         // 登録・変更実行
  328.         if ($originThumbnail != $category->getThumbnail()) $imageEdited true;
  329.         if ('POST' === $request->getMethod()) {
  330.             $form->handleRequest($request);
  331.             if ($form->isValid()) {
  332.                 if ($this->categoryRepo->save($category)) {
  333.                     $this->addSuccess('admin.common.save_complete''admin');
  335.                     // 画像を移動
  336.                     if ($category->getThumbnail() !== null && file_exists($this->eccubeConfig['eccube_temp_image_dir'] . '/' $category->getThumbnail())) {
  337.                         rename($this->eccubeConfig['eccube_temp_image_dir'] . '/' $category->getThumbnail(), $this->eccubeConfig['eccube_save_image_dir'] . '/' $category->getThumbnail());
  338.                     }
  339.                     // 画像削除
  340.                     $oldPath $newPath null;
  341.                     if ($originThumbnail$oldPath $this->eccubeConfig['eccube_save_image_dir'] . '/' $originThumbnail;
  342.                     if ($category->getThumbnail()) $newPath $this->eccubeConfig['eccube_save_image_dir'] . '/' $category->getThumbnail();
  343.                     if (!$category->getThumbnail()) {
  344.                         if (file_exists($newPath)) unlink($newPath);
  345.                         if (file_exists($oldPath)) unlink($oldPath);
  346.                     } else if ($originThumbnail != $category->getThumbnail()) {
  347.                         if (file_exists($oldPath)) unlink($oldPath);
  348.                     }
  350.                     return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_category_edit', array(
  351.                         'type_id' => $type_id,
  352.                         'category_id' => $category->getCategoryId()
  353.                     ));
  354.                 } else {
  355.                     $this->addError('admin.common.save_error''admin');
  356.                 }
  357.             }
  358.         }
  360.         return [
  361.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  362.             'form' => $form->createView(),
  363.             'type' => $type,
  364.             'category' => $category,
  365.             'image_edited' => $imageEdited,
  366.         ];
  367.     }
  369.     /**
  370.      * カテゴリー / 削除
  371.      *
  372.      * @param Request $request
  373.      * @param
  374.      *            integer ,$category_id
  375.      * @return \Symfony\Component\HttpFoundation\Response
  376.      *
  377.      * @Route("/category_delete/{category_id}",name="_category_delete",requirements={"category_id" = "\d+"})
  378.      */
  379.     public function category_delete(Request $request$category_id)
  380.     {
  381.         // 投稿タイプ操作オブジェクトの生成
  382.         $status false;
  383.         $category $this->categoryRepo->find($category_id);
  384.         $type_id $category->getTypeId();
  385.         if (! empty($category)) {
  386.             $status $this->categoryRepo->delete($category);
  387.         } else {
  388.             throw new NotFoundHttpException();
  389.         }
  390.         if ($status) {
  391.             $this->addSuccess('admin.common.delete_complete''admin');
  392.         } else {
  393.             $this->addError('admin.common.delete_error''admin');
  394.         }
  395.         return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_category_list',['type_id' => $type_id]);
  396.     }
  398.     /**
  399.      * カテゴリー / ソート
  400.      *
  401.      * @param Request $request
  402.      * @param integer $type_id
  403.      * @return \Symfony\Component\HttpFoundation\Response
  404.      *
  405.      * @Route("/category_sort/{type_id}",name="_category_sort",requirements={"type_id" = "\d+"})
  406.      */
  407.     public function category_sort(Request $request$type_id)
  408.     {
  409.         // CSRF
  410.         if (! $this->csrfTokenManager->isTokenValid(new CsrfToken(Constant::TOKEN_NAME$request->get(Constant::TOKEN_NAME)))) {
  411.             throw new AccessDeniedHttpException('CSRF token is invalid.');
  412.         }
  414.         // XMLHttpRequest
  415.         if (! $request->isXmlHttpRequest()) {
  416.             throw new BadRequestHttpException('Request is invalid.');
  417.         }
  419.         $category_ids $_POST['category_ids'];
  420.         if (! empty($type_id) && $category_ids) {
  421.             // 投稿タイプ取得
  422.             if (! $this->typeRepo->find($type_id)) {
  423.                 throw new NotFoundHttpException();
  424.             }
  426.             $no 1;
  427.             foreach ($category_ids as $category_id) {
  428.                 if (($category $this->categoryRepo->find($category_id))) {
  429.                     $category->setOrderNo($no++);
  430.                     if (!$this->categoryRepo->save($category)) {
  431.                         log_debug("順番の更新が出来ませんでした");
  432.                     }
  433.                 }
  434.             }
  435.         } else {
  436.             throw new BadRequestHttpException('必要なパラメーターが取得できません');
  437.         }
  439.         return new JsonResponse([]);
  440.     }
  442.     /**
  443.      * タグ / リスト
  444.      *
  445.      * @param Request $request
  446.      * @param integer $type_id
  447.      * @return \Symfony\Component\HttpFoundation\Response
  448.      *
  449.      * @Route("/tag_list/{type_id}",name="_tag_list",requirements={"type_id" = "\d+"})
  450.      * @Template("@TabaCMS2/admin/tag_list.twig")
  451.      */
  452.     public function tag_list(Request $request$type_id null)
  453.     {
  454.         // 投稿タイプID
  455.         if (empty($type_id)) {
  456.             $path explode("/"$request->getRequestUri());
  457.             $type_id end($path);
  458.         }
  460.         // 投稿タイプ取得
  461.         $type null;
  462.         if (! ($type $this->typeRepo->find($type_id))) {
  463.             throw new NotFoundHttpException();
  464.         }
  466.         // タグリスト取得
  467.         $list $this->tagRepo->getList(array(
  468.             'type_id' => $type_id
  469.         ));
  471.         return [
  472.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  473.             'type' => $type,
  474.             'list' => $list
  475.         ];
  476.     }
  478.     /**
  479.      * タグ / 新規登録・編集
  480.      *
  481.      * @param Request $request
  482.      * @param integer $id
  483.      * @return \Symfony\Component\HttpFoundation\Response
  484.      *
  485.      * @Route("/tag_new/{type_id}",name="_tag_new",requirements={"type_id" = "\d+"})
  486.      * @Route("/tag_edit/{type_id}/{tag_id}",name="_tag_edit",requirements={"type_id" = "\d+", "tag_id" = "\d+"})
  487.      * @Template("@TabaCMS2/admin/tag_edit.twig")
  488.      */
  489.     public function tag_edit(Request $request$type_id$tag_id null)
  490.     {
  491.         // 投稿タイプ取得
  492.         $type null;
  493.         if (! ($type $this->typeRepo->find($type_id))) {
  494.             throw new NotFoundHttpException();
  495.         }
  497.         // タグ操作オブジェクトの生成
  498.         $tag null;
  499.         if ($tag_id) {
  500.             if (! ($tag $this->tagRepo->find($tag_id))) {
  501.                 throw new NotFoundHttpException();
  502.             }
  503.         } else {
  504.             $tag = new Tag(true);
  505.         }
  506.         $tag->setTypeId($type_id);
  507.         $tag->setType($type);
  509.         // フォームの生成
  510.         $builder $this->formFactory->createBuilder(TagType::class, $tag);
  511.         $form $builder->getForm();
  513.         // 登録・変更実行
  514.         if ('POST' === $request->getMethod()) {
  515.             $form->handleRequest($request);
  516.             if ($form->isValid()) {
  517.                 if ($this->tagRepo->save($tag)) {
  518.                     $this->addSuccess('admin.common.save_complete''admin');
  519.                     return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_tag_edit', array(
  520.                         'type_id' => $type_id,
  521.                         'tag_id' => $tag->getTagId()
  522.                     ));
  523.                 } else {
  524.                     $this->addError('admin.common.save_error''admin');
  525.                 }
  526.             }
  527.         }
  529.         return [
  530.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  531.             'form' => $form->createView(),
  532.             'type' => $type,
  533.             'tag' => $tag
  534.         ];
  535.     }
  537.     /**
  538.      * タグ / 削除
  539.      *
  540.      * @param Request $request
  541.      * @param
  542.      *            integer ,$tag_id
  543.      * @return \Symfony\Component\HttpFoundation\Response
  544.      *
  545.      * @Route("/tag_delete/{tag_id}",name="_tag_delete",requirements={"tag_id" = "\d+"})
  546.      */
  547.     public function tag_delete(Request $request$tag_id)
  548.     {
  549.         // 投稿タイプ操作オブジェクトの生成
  550.         $status false;
  551.         $tag $this->tagRepo->find($tag_id);
  552.         $type_id $tag->getTypeId();
  553.         if (! empty($tag)) {
  554.             $status $this->tagRepo->delete($tag);
  555.         } else {
  556.             throw new NotFoundHttpException();
  557.         }
  559.         if ($status) {
  560.             $this->addSuccess('admin.common.delete_complete''admin');
  561.         } else {
  562.             $this->addError('admin.common.delete_error''admin');
  563.         }
  564.         return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_tag_list',['type_id' => $type_id]);
  565.     }
  567.     /**
  568.      * タグ / ソート
  569.      *
  570.      * @param Request $request
  571.      * @param integer $type_id
  572.      * @return \Symfony\Component\HttpFoundation\Response
  573.      *
  574.      * @Route("/tag_sort/{type_id}",name="_tag_sort",requirements={"type_id" = "\d+"})
  575.      */
  576.     public function tag_sort(Request $request$type_id)
  577.     {
  578.         // CSRF
  579.         if (! $this->csrfTokenManager->isTokenValid(new CsrfToken(Constant::TOKEN_NAME$request->get(Constant::TOKEN_NAME)))) {
  580.             throw new AccessDeniedHttpException('CSRF token is invalid.');
  581.         }
  583.         // XMLHttpRequest
  584.         if (! $request->isXmlHttpRequest()) {
  585.             throw new BadRequestHttpException('Request is invalid.');
  586.         }
  588.         $tag_ids $_POST['tag_ids'];
  589.         if (! empty($type_id) && $tag_ids) {
  590.             // 投稿タイプ取得
  591.             if (! $this->typeRepo->find($type_id)) {
  592.                 throw new NotFoundHttpException();
  593.             }
  595.             $no 1;
  596.             foreach ($tag_ids as $tag_id) {
  597.                 if (($tag $this->tagRepo->find($tag_id))) {
  598.                     $tag->setOrderNo($no++);
  599.                     if (!$this->tagRepo->save($tag)) {
  600.                         log_debug("順番の更新が出来ませんでした");
  601.                     }
  602.                 }
  603.             }
  604.         } else {
  605.             throw new BadRequestHttpException('必要なパラメーターが取得できません');
  606.         }
  608.         return new JsonResponse([]);
  609.     }
  611.     /**
  612.      * 投稿 / リスト
  613.      *
  614.      * @param Request $request
  615.      * @return \Symfony\Component\HttpFoundation\Response
  616.      *
  617.      * @Route("/post_list",name="_post_list")
  618.      * @Template("@TabaCMS2/admin/post_list.twig")
  619.      */
  620.     public function post_list(Request $requestPaginatorInterface $paginator)
  621.     {
  622.         // パラメーターの取得
  623.         if ('POST' === $request->getMethod()) {
  624.             $params $request->request->all();
  625.         } else {
  626.             $params $request->query->all();
  627.         }
  628.         $type_id = (isset($params['type_id']) && $params['type_id'] ? $params['type_id'] : null);
  629.         $page_no = (isset($params['page_no']) && $params['page_no'] ? $params['page_no'] : 1);
  630.         // 投稿タイプID
  631.         if (empty($type_id)) {
  632.             throw new NotFoundHttpException();
  633.         }
  635.         // 投稿タイプ取得
  636.         $type null;
  637.         if (empty($type_id) || ! ($type $this->typeRepo->find($type_id))) {
  638.             throw new NotFoundHttpException();
  639.         }
  641.         // フォームの生成
  642.         $builder $this->formFactory->createBuilder(PostSearchType::class,['type_id' => $type_id]);
  643.         $searchForm $builder->getForm();
  644.         $searchForm->handleRequest($request);
  645.         $searchData $searchForm->getData();
  647.         // 投稿リスト取得
  648.         $list $paginator->paginate(
  649.             $this->postRepo->createListQueryBuilder($searchData),
  650.             $page_no,
  651.             Constants::DEFAULT_PAGE_COUNT,
  652.             ['wrap-queries' => true]
  653.         );
  655.         return [
  656.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  657.             'searchForm' => $searchForm->createView(),
  658.             'type' => $type,
  659.             'list' => $list
  660.         ];
  661.     }
  663.     /**
  664.      * 投稿 / 新規登録・編集
  665.      *
  666.      * @param Request $request
  667.      * @param integer $id
  668.      * @return \Symfony\Component\HttpFoundation\Response
  669.      *
  670.      * @Route("/post_new/{type_id}",name="_post_new",requirements={"type_id" = "\d+"})
  671.      * @Route("/post_edit/{type_id}/{post_id}",name="_post_edit",requirements={"type_id" = "\d+", "post_id" = "\d+"})
  672.      * @Template("@TabaCMS2/admin/post_edit.twig")
  673.      */
  674.     public function post_edit(Request $request,$type_id,$post_id null)
  675.     {
  676.         // 投稿タイプID
  677.         $type_id null;
  679.         // 設定ファイル
  680.         $userConfig UserConfig::getInstance();
  682.         // 投稿操作オブジェクトの生成
  683.         $post null;
  684.         if ($post_id) {
  685.             if (! ($post $this->postRepo->find($post_id))) {
  686.                 throw new NotFoundHttpException();
  687.             }
  688.             $type_id $post->getTypeId();
  689.                 // タグの正規化
  690.                 if ($post->getBody() != null) {
  691.                 // JS除去
  692.                 if ($userConfig->get("editor.tag.enable") == null || !is_array($userConfig->get("editor.tag.enable")) || !in_array('script',$userConfig->get("editor.tag.enable"))) {
  693.                     $post->setBody(Util::removeJS($post->getBody()));
  694.                 }
  695.                 // タグ除去
  696.                 if ($userConfig->get("editor.tag.disable") && is_array($userConfig->get("editor.tag.disable"))) {
  697.                     $tags $userConfig->get("editor.tag.disable");
  698.                     foreach ($tags as $tag) {
  699.                         $post->setBody(Util::removeTag($post->getBody(),$tag));
  700.                     }
  701.                 }
  702.             }
  703.         } else {
  704.             $post = new post(true);
  705.             $path explode("/"$request->getRequestUri());
  706.             $type_id end($path);
  707.         }
  709.         $imageEdited false// 画像編集済みかチェックするフラグ
  710.         $originThumbnail $post->getThumbnail();
  712.         // 投稿タイプ取得
  713.         $type null;
  714.         if (empty($type_id) || ! ($type $this->typeRepo->find($type_id))) {
  715.             throw new NotFoundHttpException();
  716.         }
  717.         $post->setTypeId($type_id);
  718.         $post->setType($type);
  720.         // フォームの生成
  721.         $builder $this->formFactory->createBuilder(PostType::class, $post);
  722.         $form $builder->getForm();
  724.         // 登録・変更実行
  725.         if ('POST' === $request->getMethod()) {
  726.             // データが入力されていない場合、初期値をセットします。
  727.             $params $request->request->all();
  728.             // 公開日
  729.             if (empty($params[$form->getName()]['public_date'])) {
  730.                 $params[$form->getName()]['public_date'] = date('Y-m-d H:i');
  731.             }
  732.             // データキー
  733.             if (empty($params[$form->getName()]['data_key'])) {
  734.                 $data_key $type->getDataKey() . "_" date('Ymd'strtotime($params[$form->getName()]['public_date']));
  735.                 if ($this->postRepo->getList(array(
  736.                     'data_key' => $data_key
  737.                 ))) {
  738.                     for ($i 1$i <= PHP_INT_MAX$i ++) {
  739.                         if (! $this->postRepo->getList(array(
  740.                             'data_key' => $data_key "_" $i
  741.                         ))) {
  742.                             $data_key $data_key "_" $i;
  743.                             break;
  744.                         }
  745.                     }
  746.                 }
  747.                 $params[$form->getName()]['data_key'] = $data_key;
  748.             }
  749.             // タグの正規化
  750.             if (!empty($params[$form->getName()]['body'])) {
  751.                 // JS除去
  752.                 if ($userConfig->get("editor.tag.enable") == null || !is_array($userConfig->get("editor.tag.enable")) || !in_array('script',$userConfig->get("editor.tag.enable"))) {
  753.                     $params[$form->getName()]['body'] = Util::removeJS($params[$form->getName()]['body']);
  754.                 }
  755.                 // タグ除去
  756.                 if ($userConfig->get("editor.tag.disable") && is_array($userConfig->get("editor.tag.disable"))) {
  757.                     $tags $userConfig->get("editor.tag.disable");
  758.                     foreach ($tags as $tag) {
  759.                         $params[$form->getName()]['body'] = Util::removeTag($params[$form->getName()]['body'],$tag);
  760.                     }
  761.                 }
  762.             }
  763.             $request->request->replace($params);
  765.             $form->handleRequest($request);
  767.             if ($originThumbnail != $post->getThumbnail()) $imageEdited true;
  768.             if ($form->isValid()) {
  770.                 // データ作成者
  771.                 if ($this->tokenStore && $this->tokenStore->getToken() && ($user $this->tokenStore->getToken()->getUser()) && is_object($user)) {
  772.                     $post->setMember($user);
  773.                 }
  775.                 // 画像を移動
  776.                 if ($post->getThumbnail() !== null && file_exists($this->eccubeConfig['eccube_temp_image_dir'] . '/' $post->getThumbnail())) {
  777.                     rename($this->eccubeConfig['eccube_temp_image_dir'] . '/' $post->getThumbnail(), $this->eccubeConfig['eccube_save_image_dir'] . '/' $post->getThumbnail());
  778.                 }
  780.                 // 画像削除
  781.                 $oldPath $newPath null;
  782.                 if ($originThumbnail$oldPath $this->eccubeConfig['eccube_save_image_dir'] . '/' $originThumbnail;
  783.                 if ($post->getThumbnail()) $newPath $this->eccubeConfig['eccube_save_image_dir'] . '/' $post->getThumbnail();
  784.                 if (!$post->getThumbnail()) {
  785.                     if (file_exists($newPath)) unlink($newPath);
  786.                     if (file_exists($oldPath)) unlink($oldPath);
  787.                 } else if ($originThumbnail != $post->getThumbnail()) {
  788.                     if (file_exists($oldPath)) unlink($oldPath);
  789.                 }
  791.                 // データ保存
  792.                 if ($this->postRepo->save($post)) {
  793.                     // タグ
  794.                     if ($this->postTagRepo->set($post,$form->get('postTagIds')->getData())) {
  795.                         $this->addSuccess('admin.common.save_complete''admin');
  796.                     } else {
  797.                         $this->addError('admin.common.save_error''admin');
  798.                     }
  799.                     return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_post_edit',['type_id' => $type_id,'post_id' => $post->getPostId()]);
  800.                 } else {
  801.                     $this->addError('admin.common.save_error''admin');
  802.                 }
  803.             }
  804.         }
  806.         return [
  807.             'csrf_token' => $this->csrfTokenManager->getToken(Constant::TOKEN_NAME)->getValue(), // CSRFトークン文字列
  808.             'form' => $form->createView(),
  809.             'type' => $type,
  810.             'post' => $post,
  811.             'image_edited' => $imageEdited,
  812.         ];
  813.     }
  815.     /**
  816.      * 投稿 / 削除
  817.      *
  818.      * @param Request $request
  819.      * @param integer $post_id
  820.      * @return \Symfony\Component\HttpFoundation\Response
  821.      *
  822.      * @Route("/post_delete/{post_id}",name="_post_delete",requirements={"post_id" = "\d+"})
  823.      */
  824.     public function post_delete(Request $request$post_id)
  825.     {
  826.         // 投稿タイプ操作オブジェクトの生成
  827.         $status false;
  828.         $post $this->postRepo->find($post_id);
  829.         $type_id null;
  830.         if (! empty($post)) {
  831.             $status $this->postRepo->delete($post);
  832.             $type_id $post->getTypeId();
  833.         } else {
  834.             throw new NotFoundHttpException();
  835.         }
  836.         if ($status) {
  837.             $this->addSuccess('admin.common.delete_complete''admin');
  838.         } else {
  839.             $this->addError('admin.common.delete_error''admin');
  840.         }
  841.         return $this->redirectToRoute(Constants::ADMIN_BIND_PREFIX '_post_list',['type_id' => $type_id]);
  842.     }
  844.     /**
  845.      * 投稿 / アイキャッチ画像アップロード
  846.      *
  847.      * @param Request $request
  848.      * @throws BadRequestHttpException
  849.      * @throws UnsupportedMediaTypeHttpException
  850.      * @return \Symfony\Component\HttpFoundation\Response
  851.      *
  852.      * @Route("/post_thumbnail_upload",name="_post_thumbnail_upload")
  853.      */
  854.     public function post_thumbnail_upload(Request $request)
  855.     {
  856.         // CSRF
  857.         if (! $this->csrfTokenManager->isTokenValid(new CsrfToken(Constant::TOKEN_NAME$request->get(Constant::TOKEN_NAME)))) {
  858.             throw new AccessDeniedHttpException('CSRF token is invalid.');
  859.         }
  861.         // XMLHttpRequest
  862.         if (! $request->isXmlHttpRequest()) {
  863.             throw new BadRequestHttpException('Request is invalid.');
  864.         }
  866.         $files $request->files->get(Constants::PLUGIN_CODE_LC '_post');
  868.         $file_name null;
  869.         if (count($files) > 0) {
  870.             foreach ($files as $file) {
  871.                 log_debug("[FILE OBJECT] " print_r($filetrue));
  872.                 if (!== strpos($file->getMimeType(), 'image')) {
  873.                     throw new UnsupportedMediaTypeHttpException('File format is invalid.');
  874.                 }
  875.                 $extension $file->getClientOriginalExtension();
  876.                 $file_name date('mdHis') . uniqid('_') . '.' $extension;
  877.                 $file->move($this->eccubeConfig['eccube_temp_image_dir'], $file_name);
  878.                 break;
  879.             }
  880.         }
  882.         return new JsonResponse([
  883.             'file' => $file_name
  884.         ], 200);
  885.     }
  887.     /**
  888.      * カテゴリー / 画像アップロード
  889.      *
  890.      * @param Request $request
  891.      * @throws BadRequestHttpException
  892.      * @throws UnsupportedMediaTypeHttpException
  893.      * @return \Symfony\Component\HttpFoundation\Response
  894.      *
  895.      * @Route("/category_thumbnail_upload",name="_category_thumbnail_upload")
  896.      */
  897.     public function category_thumbnail_upload(Request $request)
  898.     {
  899.         // CSRF
  900.         if (! $this->csrfTokenManager->isTokenValid(new CsrfToken(Constant::TOKEN_NAME$request->get(Constant::TOKEN_NAME)))) {
  901.             throw new AccessDeniedHttpException('CSRF token is invalid.');
  902.         }
  904.         // XMLHttpRequest
  905.         if (! $request->isXmlHttpRequest()) {
  906.             throw new BadRequestHttpException('Request is invalid.');
  907.         }
  909.         $files $request->files->get(Constants::PLUGIN_CODE_LC '_category');
  911.         $file_name null;
  912.         if (count($files) > 0) {
  913.             foreach ($files as $file) {
  914.                 log_debug("[FILE OBJECT] " print_r($filetrue));
  915.                 if (!== strpos($file->getMimeType(), 'image')) {
  916.                     throw new UnsupportedMediaTypeHttpException('File format is invalid.');
  917.                 }
  918.                 $extension $file->getClientOriginalExtension();
  919.                 $file_name date('mdHis') . uniqid('_') . '.' $extension;
  920.                 $file->move($this->eccubeConfig['eccube_temp_image_dir'], $file_name);
  921.                 break;
  922.             }
  923.         }
  925.         return new JsonResponse([
  926.             'file' => $file_name
  927.         ], 200);
  928.     }
  930.     /**
  931.      * 各種ファイルを出力します。
  932.      *
  933.      * @param Request $request
  934.      * @param string $file
  935.      * @throws NotFoundHttpException
  936.      * @return BinaryFileResponse
  937.      *
  938.      * @Route("/assets/{file}",name="_assets",requirements={"file"="[a-zA-Z0-9-_/\s.]+"})
  939.      */
  940.     public function assets(Request $request,$file) {
  941.         if ($this->container->has('profiler')) $this->container->get('profiler')->disable();
  943.         if (strpos($file,'..')) {
  944.             log_critical("ディレクトリトラバーサル攻撃の可能性があります。 [FILE] " $file);
  945.             throw new NotFoundHttpException();
  946.         }
  948.         $file Constants::TEMPLATE_PATH DIRECTORY_SEPARATOR .  "admin" DIRECTORY_SEPARATOR "assets" .  DIRECTORY_SEPARATOR $file;
  949.         if (file_exists($this->eccubeConfig['plugin_realdir'] . DIRECTORY_SEPARATOR $file)) {
  950.             log_debug("[ASSETS] [FILE] " $file);
  952.             // 拡張子によりMIMEを設定します。
  953.             $suffixes explode(".",$file);
  954.             $suffix end($suffixes);
  955.             $suffix_def = array(
  956.                 "jpeg" => "image/jpg",
  957.                 "jpg" => "image/jpg",
  958.                 "gif" => "image/gif",
  959.                 "png" => "image/png",
  960.                 "svg" => "image/svg+xml",
  961.                 "webp" => "image/webp",
  962.                 "js" => "application/x-javascript",
  963.                 "css" => "text/css",
  964.                 "html" => "text/html",
  965.                 "map" => "application/json",
  966.             );
  967.             if (in_array($suffix,array_keys($suffix_def))) {
  968.                 $fileObject = new \SplFileInfo($this->eccubeConfig['plugin_realdir'] . DIRECTORY_SEPARATOR $file);
  969.                 $response = new BinaryFileResponse($fileObject);
  970.                 $response->headers->set('Content-Type',$suffix_def[$suffix]);
  971.                 // キャッシュするヘッダーを出力する設定をします
  972.                 if ($this->container->has(Constants::CONTAINER_KEY_NAME)) {
  973.                     $this->container->get(Constants::CONTAINER_KEY_NAME)->set(Constants::HTTP_CACHE_STATUS,true);
  974.                 }
  975.                 return $response;
  976.             } else {
  977.                 throw new NotFoundHttpException();
  978.             }
  979.         } else {
  980.             throw new NotFoundHttpException();
  981.         }
  982.     }
  984.     /**
  985.      * ルーティング関連のキャッシュを削除します。
  986.      */
  987.     private function routingCacheClear() {
  988.         try {
  989.             $cacheDir $this->getParameter("kernel.cache_dir");
  990.             $filesystem = new Filesystem();
  991.             $finder = new Finder();
  992.             foreach ($finder->files()->depth('== 0')->in($cacheDir) as $file) {
  993.                 if (preg_match('/UrlGenerator|UrlMatcher|url_generating_routes|url_matching_routes/'$file->getFilename()) == 1) {
  994.                     $filesystem->remove($file->getRealpath());
  995.                 }
  996.             }  
  997.         } catch (\Exception $e) {
  998.             log_error('キャッシュファイルの削除に失敗しました。 ' $e->getMessage());
  999.         }
  1000.         //$this->router->warmUp($cacheDir);
  1001.     }
  1002. }