Split organisation member management out of the organisation controller into a sub-controller

2022-02-07 12:04:10 +00:00
parent feaf3d5813
commit ae0c884e44
4 changed files with 148 additions and 56 deletions
--- a/src/Controller/OrganisationController.php
+++ b/src/Controller/OrganisationController.php
@@ -589,59 +589,7 @@ class OrganisationController extends SimpleController
            ],
        ]);
    }
-
-    /**
-     * Members List API.
-     *
-     * @param Request  $request
-     * @param Response $response
-     * @param array    $args
-     *
-     * @throws NotFoundException  If organisation is not found
-     * @throws ForbiddenException If user is not authorized to access page
-     */
-    public function getMembers(Request $request, Response $response, $args)
-    {
-        $organisation = $this->getOrganisationFromParams($args);
-
-        // If the organisation no longer exists, forward to main organisation listing page
-        if (!$organisation) {
-            throw new NotFoundException();
-        }
-
-        // GET parameters
-        $params = $request->getQueryParams();
-
-        /** @var \UserFrosting\Sprinkle\Account\Authorize\AuthorizationManager $authorizer */
-        $authorizer = $this->ci->authorizer;
-
-        /** @var \UserFrosting\Sprinkle\Account\Database\Models\Interfaces\UserInterface $currentUser */
-        $currentUser = $this->ci->currentUser;
-
-        // Access-controlled page
-        if (!$authorizer->checkAccess($currentUser, 'view_organisation_field', [
-            'organisation' => $organisation,
-            'property' => 'members',
-        ])) {
-            throw new ForbiddenException();
-        }
-
-        /** @var \UserFrosting\Sprinkle\Core\Util\ClassMapper $classMapper */
-        $classMapper = $this->ci->classMapper;
-
-        $sprunje = $classMapper->createInstance('user_sprunje', $classMapper, $params);
-        $sprunje->extendQuery(function ($query) use ($classMapper, $organisation) {
-            return $query
-                ->join('organisation_members', function($join) use($organisation) {
-                    $join->on('organisation_members.user_id', '=', 'users.id')->where('organisation_id', $organisation->id);
-                });
-        });
-
-        // Be careful how you consume this data - it has not been escaped and contains untrusted user-supplied content.
-        // For example, if you plan to insert it into an HTML DOM, you must escape it on the client side (or use client-side templating).
-        return $sprunje->toResponse($response);
-    }
-
+    

    /**
     * Renders a page displaying a organisation's information, in read-only mode.