240 lines
6.8 KiB
Perl
240 lines
6.8 KiB
Perl
package Pear::LocalLoop::Controller::Api::Upload;
|
|
use Mojo::Base 'Mojolicious::Controller';
|
|
use Data::Dumper;
|
|
|
|
=head2 post_upload
|
|
|
|
Takes a file upload, with a file key of 'file', and a json string under the
|
|
'json' key.
|
|
|
|
The json string should be an object, with the following keys:
|
|
|
|
=over
|
|
|
|
=item * transaction_value
|
|
|
|
The value of the transaction
|
|
|
|
=item * transaction_type
|
|
|
|
Is a value of 1, 2, or 3 - depending on the type of transaction.
|
|
|
|
=item * purchase_time
|
|
|
|
Is a DateTime value submitted for when the receipt is from.
|
|
|
|
=item * organisation_id
|
|
|
|
An ID of a valid organisation. used when transaction_type is 1 or 2.
|
|
|
|
=item * organisation_name
|
|
|
|
The name of an organisation. Used when transaction_type is 3.
|
|
|
|
=item * street_name
|
|
|
|
The street of an organisation, optional key. Used when transaction_type is 3.
|
|
|
|
=item * town
|
|
|
|
The village/town/city of an organisation. Used when transaction_type is 3.
|
|
|
|
=item * postcode
|
|
|
|
The postcode of an organisation, optional key. Used when transaction_Type is 3.
|
|
|
|
=back
|
|
|
|
=cut
|
|
|
|
has error_messages => sub {
|
|
return {
|
|
transaction_type => {
|
|
required => { message => 'transaction_type is missing.', status => 400 },
|
|
in => { message => 'transaction_type is not a valid value.', status => 400 },
|
|
},
|
|
transaction_value => {
|
|
required => { message => 'transaction_value is missing', status => 400 },
|
|
number => { message => 'transaction_value does not look like a number', status => 400 },
|
|
gt_num => { message => 'transaction_value cannot be equal to or less than zero', status => 400 },
|
|
},
|
|
purchase_time => {
|
|
required => { message => 'purchase_time is missing', status => 400 },
|
|
},
|
|
file => {
|
|
required => { message => 'No file uploaded', status => 400 },
|
|
upload => { message => 'file key does not contain a file', status => 400 },
|
|
filetype => { message => 'File must be of type image/jpeg', status => 400 },
|
|
},
|
|
organisation_id => {
|
|
required => { message => 'organisation_id is missing', status => 400 },
|
|
number => { message => 'organisation_id is not a number', status => 400 },
|
|
in_resultset => { message => 'organisation_id does not exist in the database', status => 400 },
|
|
},
|
|
organisation_name => {
|
|
required => { message => 'organisation_name is missing', status => 400 },
|
|
},
|
|
search_name => {
|
|
required => { message => 'search_name is missing', status => 400 },
|
|
},
|
|
postcode => {
|
|
required => { message => 'postcode is missing', status => 400 },
|
|
postcode => { message => 'postcode must be valid', status => 400 },
|
|
},
|
|
};
|
|
};
|
|
|
|
sub post_upload {
|
|
my $c = shift;
|
|
|
|
my $user = $c->stash->{api_user};
|
|
|
|
my $validation = $c->validation;
|
|
|
|
# Test for file before loading the JSON in to the validator
|
|
$validation->required('file')->upload->filetype('image/jpeg');
|
|
|
|
$validation->input( $c->stash->{api_json} );
|
|
|
|
$validation->required('transaction_value')->number->gt_num(0);
|
|
$validation->required('transaction_type')->in( 1, 2, 3 );
|
|
|
|
#Check a proper purchase time was submitted
|
|
$validation->optional('purchase_time')->is_full_iso_datetime;
|
|
|
|
# First pass of required items
|
|
return $c->api_validation_error if $validation->has_error;
|
|
|
|
my $type = $validation->param('transaction_type');
|
|
|
|
my $organisation;
|
|
|
|
if ( $type == 1 ) {
|
|
# Validated Organisation
|
|
my $valid_org_rs = $c->schema->resultset('Organisation');
|
|
$validation->required('organisation_id')->number->in_resultset( 'id', $valid_org_rs );
|
|
|
|
return $c->api_validation_error if $validation->has_error;
|
|
|
|
$organisation = $valid_org_rs->find( $validation->param('organisation_id') );
|
|
|
|
} elsif ( $type == 2 ) {
|
|
# Unvalidated Organisation
|
|
my $valid_org_rs = $c->schema->resultset('PendingOrganisation')->search({ submitted_by_id => $user->id });
|
|
$validation->required('organisation_id')->number->in_resultset( 'id', $valid_org_rs );
|
|
|
|
return $c->api_validation_error if $validation->has_error;
|
|
|
|
$organisation = $valid_org_rs->find( $validation->param('organisation_id') );
|
|
|
|
} elsif ( $type == 3 ) {
|
|
# Unknown Organisation
|
|
$validation->required('organisation_name');
|
|
$validation->optional('street_name');
|
|
$validation->optional('town');
|
|
$validation->optional('postcode')->postcode;
|
|
|
|
return $c->api_validation_error if $validation->has_error;
|
|
|
|
$organisation = $c->schema->resultset('PendingOrganisation')->create({
|
|
submitted_by => $user,
|
|
submitted_at => DateTime->now,
|
|
name => $validation->param('organisation_name'),
|
|
street_name => $validation->param('street_name'),
|
|
town => $validation->param('town'),
|
|
postcode => $validation->param('postcode'),
|
|
});
|
|
}
|
|
|
|
unless ( defined $organisation ) {
|
|
return $c->render( json => {
|
|
success => Mojo::JSON->false,
|
|
message => 'Error Finding Organisation',
|
|
error => 'organisation_error',
|
|
});
|
|
}
|
|
|
|
my $transaction_value = $validation->param('transaction_value');
|
|
my $upload = $validation->param('file');
|
|
my $purchase_time = $c->parse_iso_datetime($validation->param('purchase_time') || '');
|
|
$purchase_time ||= DateTime->now();
|
|
my $file = $c->store_file_from_upload( $upload );
|
|
|
|
my $new_transaction = $organisation->create_related(
|
|
'transactions',
|
|
{
|
|
buyer => $user,
|
|
value => $transaction_value,
|
|
proof_image => $file,
|
|
purchase_time => $c->format_db_datetime($purchase_time),
|
|
}
|
|
);
|
|
|
|
unless ( defined $new_transaction ) {
|
|
return $c->render( json => {
|
|
success => Mojo::JSON->false,
|
|
message => 'Error Adding Transaction',
|
|
error => 'transaction_error',
|
|
});
|
|
}
|
|
|
|
return $c->render( json => {
|
|
success => Mojo::JSON->true,
|
|
message => 'Upload Successful',
|
|
});
|
|
}
|
|
|
|
# TODO Limit search results, possibly paginate them?
|
|
# TODO Search by location as well
|
|
sub post_search {
|
|
my $c = shift;
|
|
my $self = $c;
|
|
|
|
my $validation = $c->validation;
|
|
|
|
$validation->input( $c->stash->{api_json} );
|
|
|
|
$validation->required('search_name');
|
|
|
|
return $c->api_validation_error if $validation->has_error;
|
|
|
|
my $search_name = $validation->param('search_name');
|
|
|
|
my $search_stmt = [ 'LOWER("name") LIKE ?', '%' . lc $search_name . '%' ];
|
|
|
|
my $valid_orgs_rs = $c->schema->resultset('Organisation')->search(
|
|
\$search_stmt,
|
|
);
|
|
|
|
my $pending_orgs_rs = $c->stash->{api_user}->pending_organisations->search(
|
|
\$search_stmt,
|
|
);
|
|
|
|
my @valid_orgs = (
|
|
map {{
|
|
id => $_->id,
|
|
name => $_->name,
|
|
street_name => $_->street_name,
|
|
town => $_->town,
|
|
postcode => $_->postcode,
|
|
}} $valid_orgs_rs->all
|
|
);
|
|
|
|
my @pending_orgs = (
|
|
map {{
|
|
id => $_->id,
|
|
name => $_->name,
|
|
street_name => $_->street_name,
|
|
town => $_->town,
|
|
postcode => $_->postcode,
|
|
}} $pending_orgs_rs->all
|
|
);
|
|
|
|
return $self->render( json => {
|
|
success => Mojo::JSON->true,
|
|
validated => \@valid_orgs,
|
|
unvalidated => \@pending_orgs,
|
|
});
|
|
}
|
|
|
|
1;
|