From d346cc1c7558263f3862d4f0b4163a38490548ea Mon Sep 17 00:00:00 2001 From: Greg Roach Date: Thu, 3 Jan 2019 14:21:22 +0000 Subject: Move datatables processing to new service and add tests --- app/Http/Controllers/AdminUsersController.php | 151 +++++++++++--------------- app/Services/DatatablesService.php | 118 ++++++++++++++++++++ 2 files changed, 181 insertions(+), 88 deletions(-) create mode 100644 app/Services/DatatablesService.php (limited to 'app') diff --git a/app/Http/Controllers/AdminUsersController.php b/app/Http/Controllers/AdminUsersController.php index 392fa03e9f..6d8db6ad46 100644 --- a/app/Http/Controllers/AdminUsersController.php +++ b/app/Http/Controllers/AdminUsersController.php @@ -18,17 +18,20 @@ declare(strict_types=1); namespace Fisharebest\Webtrees\Http\Controllers; use Fisharebest\Webtrees\Auth; -use Fisharebest\Webtrees\Database; use Fisharebest\Webtrees\FlashMessages; use Fisharebest\Webtrees\Functions\FunctionsDate; use Fisharebest\Webtrees\Functions\FunctionsEdit; use Fisharebest\Webtrees\I18N; use Fisharebest\Webtrees\Log; use Fisharebest\Webtrees\Mail; +use Fisharebest\Webtrees\Services\DatatablesService; use Fisharebest\Webtrees\Site; use Fisharebest\Webtrees\Theme; use Fisharebest\Webtrees\Tree; use Fisharebest\Webtrees\User; +use Illuminate\Database\Capsule\Manager as DB; +use Illuminate\Database\Query\JoinClause; +use stdClass; use Symfony\Component\HttpFoundation\JsonResponse; use Symfony\Component\HttpFoundation\RedirectResponse; use Symfony\Component\HttpFoundation\Request; @@ -139,94 +142,75 @@ class AdminUsersController extends AbstractBaseController } /** - * @param Request $request - * - * @param User $user + * @param DatatablesService $datatables_service + * @param Request $request + * @param User $user * * @return JsonResponse */ - public function data(Request $request, User $user): JsonResponse + public function data(DatatablesService $datatables_service, Request $request, User $user): JsonResponse { - $search = $request->get('search')['value']; - $start = (int) $request->get('start'); - $length = (int) $request->get('length'); - $order = $request->get('order', []); - $draw = (int) $request->get('draw'); - - $sql_select = - "SELECT SQL_CALC_FOUND_ROWS u.user_id, user_name, real_name, email, us1.setting_value AS language, us2.setting_value AS registered_at, us3.setting_value AS active_at, us4.setting_value AS verified, us5.setting_value AS verified_by_admin" . - " FROM `##user` u" . - " LEFT JOIN `##user_setting` us1 ON (u.user_id=us1.user_id AND us1.setting_name='language')" . - " LEFT JOIN `##user_setting` us2 ON (u.user_id=us2.user_id AND us2.setting_name='reg_timestamp')" . - " LEFT JOIN `##user_setting` us3 ON (u.user_id=us3.user_id AND us3.setting_name='sessiontime')" . - " LEFT JOIN `##user_setting` us4 ON (u.user_id=us4.user_id AND us4.setting_name='verified')" . - " LEFT JOIN `##user_setting` us5 ON (u.user_id=us5.user_id AND us5.setting_name='verified_by_admin')" . - " WHERE u.user_id > 0"; - - $args = []; - - if ($search) { - $sql_select .= " AND (user_name LIKE CONCAT('%', :search_1, '%') OR real_name LIKE CONCAT('%', :search_2, '%') OR email LIKE CONCAT('%', :search_3, '%'))"; - $args['search_1'] = $search; - $args['search_2'] = $search; - $args['search_3'] = $search; - } - - if ($order) { - $sql_select .= " ORDER BY "; - foreach ($order as $key => $value) { - if ($key > 0) { - $sql_select .= ','; - } - // Columns in datatables are numbered from zero. - // Columns in MySQL are numbered starting with one. - switch ($value['dir']) { - case 'asc': - $sql_select .= (1 + $value['column']) . " ASC "; - break; - case 'desc': - $sql_select .= (1 + $value['column']) . " DESC "; - break; - } - } - } else { - $sql_select = " ORDER BY 1 ASC"; - } - - if ($length > 0) { - $sql_select .= " LIMIT :limit OFFSET :offset"; - $args['limit'] = $length; - $args['offset'] = $start; - } - - $rows = Database::prepare($sql_select)->execute($args)->fetchAll(); - - // Total filtered/unfiltered rows - $recordsFiltered = (int) Database::prepare("SELECT FOUND_ROWS()")->fetchOne(); - $recordsTotal = (int) Database::prepare("SELECT COUNT(*) FROM `##user` WHERE user_id > 0")->fetchOne(); - $installed_languages = []; foreach (I18N::installedLocales() as $installed_locale) { $installed_languages[$installed_locale->languageTag()] = $installed_locale->endonym(); } - // Reformat various columns for display - $data = []; - foreach ($rows as $row) { - $user_id = $row->user_id; - $user_name = $row->user_name; + $query = DB::table('user') + ->leftJoin('user_setting AS us1', function (JoinClause $join): void { + $join + ->on('us1.user_id', '=', 'user.user_id') + ->where('us1.setting_name', '=', 'language'); + }) + ->leftJoin('user_setting AS us2', function (JoinClause $join): void { + $join + ->on('us2.user_id', '=', 'user.user_id') + ->where('us2.setting_name', '=', 'reg_timestamp'); + }) + ->leftJoin('user_setting AS us3', function (JoinClause $join): void { + $join + ->on('us3.user_id', '=', 'user.user_id') + ->where('us3.setting_name', '=', 'sessiontime'); + }) + ->leftJoin('user_setting AS us4', function (JoinClause $join): void { + $join + ->on('us4.user_id', '=', 'user.user_id') + ->where('us4.setting_name', '=', 'verified'); + }) + ->leftJoin('user_setting AS us5', function (JoinClause $join): void { + $join + ->on('us5.user_id', '=', 'user.user_id') + ->where('us5.setting_name', '=', 'verified_by_admin'); + }) + ->where('user.user_id', '>', '0') + ->select([ + 'user.user_id AS edit_menu', // Hidden column + 'user.user_id', + 'user_name', + 'real_name', + 'email', + 'us1.setting_value AS language', + 'us2.setting_value AS registered_at_sort', // Hidden column + 'us2.setting_value AS registered_at', + 'us3.setting_value AS active_at_sort', // Hidden column + 'us3.setting_value AS active_at', + 'us4.setting_value AS verified', + 'us5.setting_value AS verified_by_admin', + ]); + + $search_columns = ['user_name', 'real_name', 'email']; - if ($user_id != $user->getUserId()) { - $admin_options = '' . ''; + $callback = function (stdClass $row) use ($installed_languages, $user): array { + if ($row->user_id != $user->getUserId()) { + $admin_options = '' . ''; } else { // Do not delete ourself! $admin_options = ''; } $datum = [ - '', - $user_id, - '' . e($user_name) . '', + '', + $row->user_id, + '' . e($row->user_name) . '', '' . e($row->real_name) . '', e($row->email), $installed_languages[$row->language] ?? $row->language, @@ -239,27 +223,19 @@ class AdminUsersController extends AbstractBaseController ]; // Link to send email to other users. - if ($user_id != $user->getUserId()) { - $datum[4] = '' . $datum[4] . ''; + if ($row->user_id != $user->getUserId()) { + $datum[4] = '' . $datum[4] . ''; } // Highlight old registrations. if (date('U') - $datum[6] > 604800 && !$datum[10]) { - $datum[7] = '' . $datum[7] . ''; + $datum[7] = '' . $datum[7] . ''; } - $data[] = $datum; - } + return $datum; + }; - // See http://www.datatables.net/usage/server-side - return new JsonResponse([ - 'draw' => $draw, - 'recordsTotal' => $recordsTotal, - 'recordsFiltered' => $recordsFiltered, - 'data' => $data, - ]); + return $datatables_service->handle($request, $query, $search_columns, $callback); } /** @@ -363,7 +339,6 @@ class AdminUsersController extends AbstractBaseController return new RedirectResponse($url); } - /** * @param Request $request * @param User $user diff --git a/app/Services/DatatablesService.php b/app/Services/DatatablesService.php new file mode 100644 index 0000000000..2a73274318 --- /dev/null +++ b/app/Services/DatatablesService.php @@ -0,0 +1,118 @@ +. + */ +declare(strict_types=1); + +namespace Fisharebest\Webtrees\Services; + +use Closure; +use Illuminate\Database\Capsule\Manager as DB; +use Illuminate\Database\Query\Builder; +use Symfony\Component\HttpFoundation\JsonResponse; +use Symfony\Component\HttpFoundation\Request; +use function strtr; + +/** + * Paginate and search queries for datatables. + */ +class DatatablesService +{ + // We need to escape special characters in a LIKE clause, so we can search for them. + private const ESCAPE_LIKE = [ + '%' => '\\%', + '_' => '\\_', + '\\' => '\\\\', + ]; + + /** + * Apply filtering and pagination to a query, and generate a response suitable for datatables. + * + * @link http://www.datatables.net/usage/server-side + * + * @param Request $request Includes the datatables request parameters. + * @param Builder $query A query to fetch the unfiltered rows and columns. + * @param string[] $search_columns The names of searchable columns. + * @param Closure $callback Converts a row-object to an array-of-columns. + * + * @return JsonResponse + */ + public function handle(Request $request, Builder $query, array $search_columns, Closure $callback): JsonResponse + { + $search = $request->get('search', [])['value'] ?? ''; + $start = (int) $request->get('start'); + $length = (int) $request->get('length'); + $order = $request->get('order', []); + $draw = (int) $request->get('draw'); + + // Count unfiltered records + $recordsTotal = (clone $query)->count(); + + // Filtering + if ($search !== '') { + $search = $this->escapeLike($search); + + $query->where(function (Builder $query) use ($search, $search_columns): void { + foreach ($search_columns as $search_column) { + $query->orWhere($search_column, 'LIKE', '%' . $search . '%'); + } + }); + } + + // Sorting + if (!empty($order)) { + foreach ($order as $value) { + // Columns in datatables are numbered from zero. + // Columns in MySQL are numbered starting with one. + $query->orderBy(DB::raw(1 + $value['column']), $value['dir']); + } + } else { + $query->orderBy(DB::raw(1)); + } + + // Paginating + if ($length > 0) { + $recordsFiltered = (clone $query)->count(); + + $query->skip($start)->limit($length); + $data = $query->get(); + } else { + $data = $query->get(); + + $recordsFiltered = $data->count(); + } + + $data = $data->map($callback)->all(); + + return new JsonResponse([ + 'draw' => $draw, + 'recordsTotal' => $recordsTotal, + 'recordsFiltered' => $recordsFiltered, + 'data' => $data, + ]); + } + + /** + * Escape a search term, so we can use it in a LIKE clause. + * This lets us search for percent signs, underscores, etc. + * + * @param string $string + * + * @return string + */ + private function escapeLike(string $string): string + { + return strtr($string, self::ESCAPE_LIKE); + } +} -- cgit v1.3