237 lines
8.0 KiB
PHP
237 lines
8.0 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Forms;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Requests\AnswerFormRequest;
|
|
use App\Http\Resources\FormResource;
|
|
use App\Http\Resources\FormSubmissionResource;
|
|
use App\Jobs\Form\StoreFormSubmissionJob;
|
|
use App\Models\Forms\Form;
|
|
use App\Models\Forms\FormSubmission;
|
|
use App\Service\Forms\FormSubmissionProcessor;
|
|
use App\Service\Forms\FormCleaner;
|
|
use App\Service\WorkspaceHelper;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\Storage;
|
|
use Vinkla\Hashids\Facades\Hashids;
|
|
use Illuminate\Support\Str;
|
|
|
|
class PublicFormController extends Controller
|
|
{
|
|
public const FILE_UPLOAD_PATH = 'forms/?/submissions';
|
|
|
|
public const TMP_FILE_UPLOAD_PATH = 'tmp/';
|
|
|
|
public function show(Request $request, string $slug)
|
|
{
|
|
$form = Form::whereSlug($slug)->whereIn('visibility', ['public', 'closed'])->firstOrFail();
|
|
if ($form->workspace == null) {
|
|
// Workspace deleted
|
|
return $this->error([
|
|
'message' => 'Form not found.',
|
|
], 404);
|
|
}
|
|
|
|
$formCleaner = new FormCleaner();
|
|
|
|
// Disable pro features if needed
|
|
$form->fill(
|
|
$formCleaner
|
|
->processForm($request, $form)
|
|
->performCleaning($form->workspace)
|
|
->getData()
|
|
);
|
|
|
|
// Increase form view counter if not login
|
|
if (!Auth::check()) {
|
|
$form->views()->create();
|
|
}
|
|
|
|
return (new FormResource($form))
|
|
->setCleanings($formCleaner->getPerformedCleanings());
|
|
}
|
|
|
|
public function listUsers(Request $request)
|
|
{
|
|
// Check that form has user field
|
|
$form = $request->form;
|
|
if (!$form->has_user_field) {
|
|
return [];
|
|
}
|
|
|
|
// Use serializer
|
|
$workspace = $form->workspace;
|
|
|
|
return (new WorkspaceHelper($workspace))->getAllUsers();
|
|
}
|
|
|
|
public function showAsset($assetFileName)
|
|
{
|
|
$path = FormController::ASSETS_UPLOAD_PATH . '/' . $assetFileName;
|
|
if (!Storage::exists($path)) {
|
|
return $this->error([
|
|
'message' => 'File not found.',
|
|
'file_name' => $assetFileName,
|
|
]);
|
|
}
|
|
|
|
$internal_url = Storage::temporaryUrl($path, now()->addMinutes(5));
|
|
|
|
foreach (config('filesystems.disks.s3.temporary_url_rewrites') as $from => $to) {
|
|
$internal_url = str_replace($from, $to, $internal_url);
|
|
}
|
|
|
|
return redirect()->to($internal_url);
|
|
}
|
|
|
|
/**
|
|
* Handle partial form submissions
|
|
*
|
|
* @param Request $request
|
|
* @return \Illuminate\Http\JsonResponse
|
|
*/
|
|
private function handlePartialSubmissions(Request $request)
|
|
{
|
|
$form = $request->form;
|
|
|
|
// Process submission data to extract submission ID
|
|
$submissionData = $this->processSubmissionIdentifiers($request, $request->all());
|
|
|
|
// Validate that at least one field has a value
|
|
$hasValue = false;
|
|
foreach ($submissionData as $key => $value) {
|
|
if (Str::isUuid($key) && !empty($value)) {
|
|
$hasValue = true;
|
|
break;
|
|
}
|
|
}
|
|
if (!$hasValue) {
|
|
return $this->error([
|
|
'message' => 'At least one field must have a value for partial submissions.'
|
|
], 422);
|
|
}
|
|
|
|
// Explicitly mark this as a partial submission
|
|
$submissionData['is_partial'] = true;
|
|
|
|
// Use the same job as regular submissions to ensure consistent processing
|
|
$job = new StoreFormSubmissionJob($form, $submissionData);
|
|
$job->handle();
|
|
|
|
// Get the submission ID
|
|
$submissionId = $job->getSubmissionId();
|
|
|
|
return $this->success([
|
|
'message' => 'Partial submission saved',
|
|
'submission_hash' => Hashids::encode($submissionId)
|
|
]);
|
|
}
|
|
|
|
public function answer(AnswerFormRequest $request, FormSubmissionProcessor $formSubmissionProcessor)
|
|
{
|
|
$form = $request->form;
|
|
$isFirstSubmission = ($form->submissions_count === 0);
|
|
|
|
// Handle partial submissions
|
|
$isPartial = $request->get('is_partial') ?? false;
|
|
if ($isPartial && $form->enable_partial_submissions && $form->is_pro) {
|
|
return $this->handlePartialSubmissions($request);
|
|
}
|
|
|
|
// Get validated data (includes all metadata)
|
|
$submissionData = $request->validated();
|
|
|
|
// Process submission hash and ID
|
|
$submissionData = $this->processSubmissionIdentifiers($request, $submissionData);
|
|
|
|
// Create the job with all data (including metadata)
|
|
$job = new StoreFormSubmissionJob($form, $submissionData);
|
|
|
|
// Process the submission
|
|
if ($formSubmissionProcessor->shouldProcessSynchronously($form)) {
|
|
$job->handle();
|
|
$encodedSubmissionId = Hashids::encode($job->getSubmissionId());
|
|
// Update submission data with generated values for redirect URL
|
|
$submissionData = $job->getProcessedData();
|
|
} else {
|
|
$job->handle();
|
|
$encodedSubmissionId = Hashids::encode($job->getSubmissionId());
|
|
}
|
|
|
|
// Return the response
|
|
return $this->success(array_merge([
|
|
'message' => 'Form submission saved.',
|
|
'submission_id' => $encodedSubmissionId,
|
|
'is_first_submission' => $isFirstSubmission,
|
|
], $formSubmissionProcessor->getRedirectData($form, $submissionData)));
|
|
}
|
|
|
|
/**
|
|
* Processes submission identifiers to ensure consistent numeric format
|
|
*
|
|
* Takes a submission hash or string ID and converts it to a numeric submission_id.
|
|
* This allows submissions to be identified by either a hashed value or direct ID
|
|
* while ensuring consistent internal storage format.
|
|
*
|
|
* @param Request $request
|
|
* @param array $submissionData
|
|
* @return array
|
|
*/
|
|
private function processSubmissionIdentifiers(Request $request, array $submissionData): array
|
|
{
|
|
// Handle submission hash if present (convert to numeric submission_id)
|
|
$submissionHash = $request->get('submission_hash');
|
|
if ($submissionHash) {
|
|
$decodedHash = Hashids::decode($submissionHash);
|
|
if (!empty($decodedHash)) {
|
|
$submissionData['submission_id'] = (int)($decodedHash[0] ?? null);
|
|
}
|
|
unset($submissionData['submission_hash']);
|
|
}
|
|
|
|
// Handle string submission_id if present (convert to numeric)
|
|
if (isset($submissionData['submission_id']) && is_string($submissionData['submission_id']) && !is_numeric($submissionData['submission_id'])) {
|
|
$decodedId = Hashids::decode($submissionData['submission_id']);
|
|
if (!empty($decodedId)) {
|
|
$submissionData['submission_id'] = (int)($decodedId[0] ?? null);
|
|
}
|
|
}
|
|
|
|
return $submissionData;
|
|
}
|
|
|
|
public function fetchSubmission(Request $request, string $slug, string $submissionId)
|
|
{
|
|
// Decode the submission ID using the same approach as in processSubmissionIdentifiers
|
|
$decodedId = Hashids::decode($submissionId);
|
|
$submissionId = !empty($decodedId) ? (int)($decodedId[0]) : false;
|
|
|
|
$form = Form::whereSlug($slug)->whereVisibility('public')->firstOrFail();
|
|
if ($form->workspace == null || !$form->editable_submissions || !$submissionId) {
|
|
return $this->error([
|
|
'message' => 'Not allowed.',
|
|
]);
|
|
}
|
|
|
|
$submission = FormSubmission::find($submissionId);
|
|
if (!$submission) {
|
|
return $this->error([
|
|
'message' => 'Submission not found.',
|
|
]);
|
|
}
|
|
|
|
$submission = new FormSubmissionResource($submission);
|
|
$submission->publiclyAccessed();
|
|
|
|
if ($submission->form_id != $form->id) {
|
|
return $this->error([
|
|
'message' => 'Not allowed.',
|
|
], 403);
|
|
}
|
|
|
|
return $this->success($submission->toArray($request));
|
|
}
|
|
}
|