48 lines
1.3 KiB
PHP
48 lines
1.3 KiB
PHP
<?php
|
|
|
|
use MintyPHP\Http\SessionStoreInterface;
|
|
use MintyPHP\Module\Bookmarks\BookmarksAuthorizationPolicy;
|
|
use MintyPHP\Module\Bookmarks\Service\BookmarkService;
|
|
use MintyPHP\Router;
|
|
use MintyPHP\Session;
|
|
use MintyPHP\Support\Guard;
|
|
|
|
Guard::requireLogin();
|
|
Guard::requireAbilityOrForbidden(BookmarksAuthorizationPolicy::ABILITY_USE);
|
|
|
|
if (requestInput()->method() !== 'POST') {
|
|
http_response_code(405);
|
|
Router::json(['ok' => false, 'error' => 'method_not_allowed']);
|
|
return;
|
|
}
|
|
|
|
if (!Session::checkCsrfToken()) {
|
|
http_response_code(403);
|
|
Router::json(['ok' => false, 'error' => 'csrf']);
|
|
return;
|
|
}
|
|
|
|
$session = app(SessionStoreInterface::class)->all();
|
|
$userId = (int) ($session['user']['id'] ?? 0);
|
|
if ($userId <= 0) {
|
|
http_response_code(401);
|
|
Router::json(['ok' => false, 'error' => 'unauthorized']);
|
|
return;
|
|
}
|
|
|
|
$name = trim((string) requestInput()->body('name'));
|
|
$url = trim((string) requestInput()->body('url'));
|
|
$groupId = requestInput()->body('group_id');
|
|
$groupId = ($groupId !== null && $groupId !== '') ? (int) $groupId : null;
|
|
|
|
$service = app(BookmarkService::class);
|
|
$result = $service->saveBookmark($userId, $name, $url, $groupId);
|
|
|
|
if ($result['ok']) {
|
|
app(SessionStoreInterface::class)->set('module.bookmarks.grouped', $service->listGroupedForUser($userId));
|
|
} else {
|
|
http_response_code(400);
|
|
}
|
|
|
|
Router::json($result);
|