* @copyright Copyright (c) Alex Tselegidis * @license https://opensource.org/licenses/GPL-3.0 - GPLv3 * @link https://easyappointments.org * @since v1.0.0 * ---------------------------------------------------------------------------- */ /** * Admins controller. * * Handles the admins related operations. * * @package Controllers */ class Admins extends EA_Controller { /** * Admins constructor. */ public function __construct() { parent::__construct(); $this->load->model('admins_model'); $this->load->model('roles_model'); $this->load->library('accounts'); $this->load->library('timezones'); } /** * Render the backend admins page. * * On this page admin users will be able to manage admins, which are eventually selected by customers during the * booking process. */ public function index() { session(['dest_url' => site_url('admins')]); $user_id = session('user_id'); if (cannot('view', PRIV_USERS)) { if ($user_id) { abort(403, 'Forbidden'); } redirect('login'); return; } $role_slug = session('role_slug'); script_vars([ 'user_id' => $user_id, 'role_slug' => $role_slug, 'timezones' => $this->timezones->to_array(), 'min_password_length' => MIN_PASSWORD_LENGTH, ]); html_vars([ 'page_title' => lang('admins'), 'active_menu' => PRIV_USERS, 'user_display_name' => $this->accounts->get_user_display_name($user_id), 'timezones' => $this->timezones->to_array(), 'privileges' => $this->roles_model->get_permissions_by_slug($role_slug), ]); $this->load->view('pages/admins', html_vars()); } /** * Filter admins by the provided keyword. */ public function search() { try { if (cannot('view', PRIV_USERS)) { abort(403,'Forbidden'); } $keyword = request('keyword', ''); $order_by = 'first_name ASC, last_name ASC, email ASC'; $limit = request('limit', 1000); $offset = 0; $admins = $this->admins_model->search($keyword, $limit, $offset, $order_by); json_response($admins); } catch (Throwable $e) { json_exception($e); } } /** * Create an admin. */ public function create() { try { $admin = request('admin'); if (cannot('add', PRIV_USERS)) { abort(403, 'Forbidden'); } $admin_id = $this->admins_model->save($admin); json_response([ 'success' => TRUE, 'id' => $admin_id ]); } catch (Throwable $e) { json_exception($e); } } /** * Update an admin. */ public function update() { try { $admin = request('admin'); if (cannot('edit', PRIV_USERS)) { abort(403, 'Forbidden'); } $admin_id = $this->admins_model->save($admin); json_response([ 'success' => TRUE, 'id' => $admin_id ]); } catch (Throwable $e) { json_exception($e); } } /** * Remove an admin. */ public function destroy() { try { if (cannot('delete', PRIV_USERS)) { abort(403, 'Forbidden'); } $admin_id = request('admin_id'); $this->admins_model->delete($admin_id); json_response([ 'success' => TRUE, ]); } catch (Throwable $e) { json_exception($e); } } /** * Find an admin. */ public function find() { try { if (cannot('view', PRIV_USERS)) { abort(403, 'Forbidden'); } $admin_id = request('admin_id'); $admin = $this->admins_model->find($admin_id); json_response($admin); } catch (Throwable $e) { json_exception($e); } } }