service = $service; $this->userManager = $userManager; $this->groupManager = $groupManager; $this->permission = $permission; $this->userId = $userId; } /** * @NoAdminRequired */ public function index(): DataResponse { $user = $this->userManager->get($this->userId); $groupIds = $this->groupManager->getUserGroupIds($user); return new DataResponse($this->service->findAll($this->userId, $groupIds)); } /** * @NoAdminRequired */ public function create( string $name, string $welcome, int $maxParticipants, bool $record, string $access ): DataResponse { if (!$this->permission->isAllowedToCreateRoom($this->userId)) { return new DataResponse(null, Http::STATUS_FORBIDDEN); } $restriction = $this->permission->getRestriction($this->userId); if ($restriction->getMaxParticipants() > -1 && ($maxParticipants > $restriction->getMaxParticipants() || $maxParticipants <= 0)) { return new DataResponse('Max participants limit exceeded.', Http::STATUS_BAD_REQUEST); } if (!$restriction->getAllowRecording() && $record) { return new DataResponse('Not allowed to enable recordings.', Http::STATUS_BAD_REQUEST); } $disabledRoomTypes = \json_decode($restriction->getRoomTypes()); if (in_array($access, $disabledRoomTypes) || !in_array($access, Room::ACCESS)) { return new DataResponse('Access type not allowed.', Http::STATUS_BAD_REQUEST); } return new DataResponse($this->service->create( $name, $welcome, $maxParticipants, $record, $access, $this->userId )); } /** * @NoAdminRequired */ public function update( int $id, string $name, string $welcome, int $maxParticipants, bool $record, string $access, bool $everyoneIsModerator ): DataResponse { $room = $this->service->find($id); if (!$this->permission->isAdmin($room, $this->userId)) { return new DataResponse(null, Http::STATUS_FORBIDDEN); } $restriction = $this->permission->getRestriction($this->userId); if ($restriction->getMaxParticipants() > -1 && $maxParticipants !== $room->getMaxParticipants() && ($maxParticipants > $restriction->getMaxParticipants() || $maxParticipants <= 0)) { return new DataResponse('Max participants limit exceeded.', Http::STATUS_BAD_REQUEST); } if (!$restriction->getAllowRecording() && $record !== $room->getRecord()) { return new DataResponse('Not allowed to enable recordings.', Http::STATUS_BAD_REQUEST); } $disabledRoomTypes = \json_decode($restriction->getRoomTypes()); if ((in_array($access, $disabledRoomTypes) && $access !== $room->getAccess()) || !in_array($access, Room::ACCESS)) { return new DataResponse('Access type not allowed.', Http::STATUS_BAD_REQUEST); } return $this->handleNotFound(function () use ($id, $name, $welcome, $maxParticipants, $record, $everyoneIsModerator, $access) { return $this->service->update($id, $name, $welcome, $maxParticipants, $record, $access, $everyoneIsModerator); }); } /** * @NoAdminRequired */ public function destroy(int $id): DataResponse { $room = $this->service->find($id); if (!$this->permission->isAdmin($room, $this->userId)) { return new DataResponse(null, Http::STATUS_FORBIDDEN); } return $this->handleNotFound(function () use ($id) { //@TODO delete shares return $this->service->delete($id); }); } }