src/Controller/Admin/BlogController.php line 54

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace App\Controller\Admin;
  14. use App\Entity\Post;
  15. use App\Form\PostType;
  16. use App\Repository\PostRepository;
  17. use App\Security\PostVoter;
  18. use Doctrine\ORM\EntityManagerInterface;
  19. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  20. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  21. use Symfony\Component\Form\Extension\Core\Type\SubmitType;
  22. use Symfony\Component\HttpFoundation\Request;
  23. use Symfony\Component\HttpFoundation\Response;
  24. use Symfony\Component\Routing\Annotation\Route;
  26. /**
  27.  * Controller used to manage blog contents in the backend.
  28.  *
  29.  * Please note that the application backend is developed manually for learning
  30.  * purposes. However, in your real Symfony application you should use any of the
  31.  * existing bundles that let you generate ready-to-use backends without effort.
  32.  * See https://symfony.com/bundles
  33.  *
  34.  * @author Ryan Weaver <weaverryan@gmail.com>
  35.  * @author Javier Eguiluz <javier.eguiluz@gmail.com>
  36.  */
  37. #[Route('/admin/post')]
  38. #[IsGranted('ROLE_ADMIN')]
  39. class BlogController extends AbstractController
  40. {
  41.     /**
  42.      * Lists all Post entities.
  43.      *
  44.      * This controller responds to two different routes with the same URL:
  45.      *   * 'admin_post_index' is the route with a name that follows the same
  46.      *     structure as the rest of the controllers of this class.
  47.      *   * 'admin_index' is a nice shortcut to the backend homepage. This allows
  48.      *     to create simpler links in the templates. Moreover, in the future we
  49.      *     could move this annotation to any other controller while maintaining
  50.      *     the route name and therefore, without breaking any existing link.
  51.      */
  52.     #[Route('/'methods: ['GET'], name'admin_index')]
  53.     #[Route('/'methods: ['GET'], name'admin_post_index')]
  54.     public function index(PostRepository $posts): Response
  55.     {
  56.         $authorPosts $posts->findBy(['author' => $this->getUser()], ['publishedAt' => 'DESC']);
  58.         return $this->render('admin/blog/index.html.twig', ['posts' => $authorPosts]);
  59.     }
  61.     /**
  62.      * Creates a new Post entity.
  63.      *
  64.      * NOTE: the Method annotation is optional, but it's a recommended practice
  65.      * to constraint the HTTP methods each controller responds to (by default
  66.      * it responds to all methods).
  67.      */
  68.     #[Route('/new'methods: ['GET''POST'], name'admin_post_new')]
  69.     public function new(Request $requestEntityManagerInterface $entityManager): Response
  70.     {
  71.         $post = new Post();
  72.         $post->setAuthor($this->getUser());
  74.         // See https://symfony.com/doc/current/form/multiple_buttons.html
  75.         $form $this->createForm(PostType::class, $post)
  76.             ->add('saveAndCreateNew'SubmitType::class);
  78.         $form->handleRequest($request);
  80.         // the isSubmitted() method is completely optional because the other
  81.         // isValid() method already checks whether the form is submitted.
  82.         // However, we explicitly add it to improve code readability.
  83.         // See https://symfony.com/doc/current/forms.html#processing-forms
  84.         if ($form->isSubmitted() && $form->isValid()) {
  85.             $entityManager->persist($post);
  86.             $entityManager->flush();
  88.             // Flash messages are used to notify the user about the result of the
  89.             // actions. They are deleted automatically from the session as soon
  90.             // as they are accessed.
  91.             // See https://symfony.com/doc/current/controller.html#flash-messages
  92.             $this->addFlash('success''post.created_successfully');
  94.             if ($form->get('saveAndCreateNew')->isClicked()) {
  95.                 return $this->redirectToRoute('admin_post_new');
  96.             }
  98.             return $this->redirectToRoute('admin_post_index');
  99.         }
  101.         return $this->render('admin/blog/new.html.twig', [
  102.             'post' => $post,
  103.             'form' => $form->createView(),
  104.         ]);
  105.     }
  107.     /**
  108.      * Finds and displays a Post entity.
  109.      */
  110.     #[Route('/{id<\d+>}'methods: ['GET'], name'admin_post_show')]
  111.     public function show(Post $post): Response
  112.     {
  113.         // This security check can also be performed
  114.         // using a PHP attribute: #[IsGranted('show', subject: 'post', message: 'Posts can only be shown to their authors.')]
  115.         $this->denyAccessUnlessGranted(PostVoter::SHOW$post'Posts can only be shown to their authors.');
  117.         return $this->render('admin/blog/show.html.twig', [
  118.             'post' => $post,
  119.         ]);
  120.     }
  122.     /**
  123.      * Displays a form to edit an existing Post entity.
  124.      */
  125.     #[Route('/{id<\d+>}/edit'methods: ['GET''POST'], name'admin_post_edit')]
  126.     #[IsGranted('edit'subject'post'message'Posts can only be edited by their authors.')]
  127.     public function edit(Request $requestPost $postEntityManagerInterface $entityManager): Response
  128.     {
  129.         $form $this->createForm(PostType::class, $post);
  130.         $form->handleRequest($request);
  132.         if ($form->isSubmitted() && $form->isValid()) {
  133.             $entityManager->flush();
  134.             $this->addFlash('success''post.updated_successfully');
  136.             return $this->redirectToRoute('admin_post_edit', ['id' => $post->getId()]);
  137.         }
  139.         return $this->render('admin/blog/edit.html.twig', [
  140.             'post' => $post,
  141.             'form' => $form->createView(),
  142.         ]);
  143.     }
  145.     /**
  146.      * Deletes a Post entity.
  147.      */
  148.     #[Route('/{id}/delete'methods: ['POST'], name'admin_post_delete')]
  149.     #[IsGranted('delete'subject'post')]
  150.     public function delete(Request $requestPost $postEntityManagerInterface $entityManager): Response
  151.     {
  152.         if (!$this->isCsrfTokenValid('delete'$request->request->get('token'))) {
  153.             return $this->redirectToRoute('admin_post_index');
  154.         }
  156.         // Delete the tags associated with this blog post. This is done automatically
  157.         // by Doctrine, except for SQLite (the database used in this application)
  158.         // because foreign key support is not enabled by default in SQLite
  159.         $post->getTags()->clear();
  161.         $entityManager->remove($post);
  162.         $entityManager->flush();
  164.         $this->addFlash('success''post.deleted_successfully');
  166.         return $this->redirectToRoute('admin_post_index');
  167.     }
  168. }