make(UserForm::class)); $this->csrf_namespace = 'admin_users'; } public function indexAction(ServerRequest $request, Response $response): ResponseInterface { $users = $this->em->createQuery( <<<'DQL' SELECT u, r FROM App\Entity\User u LEFT JOIN u.roles r ORDER BY u.name ASC DQL )->execute(); return $request->getView()->renderToResponse($response, 'admin/users/index', [ 'user' => $request->getAttribute('user'), 'users' => $users, 'csrf' => $request->getCsrf()->generate($this->csrf_namespace), ]); } public function editAction(ServerRequest $request, Response $response, int $id = null): ResponseInterface { try { if (false !== $this->doEdit($request, $id)) { $request->getFlash()->addMessage(($id ? __('User updated.') : __('User added.')), Flash::SUCCESS); return $response->withRedirect((string)$request->getRouter()->named('admin:users:index')); } } catch (UniqueConstraintViolationException) { $request->getFlash()->addMessage( __('Another user already exists with this e-mail address. Please update the e-mail address.'), Flash::ERROR ); } return $request->getView()->renderToResponse( $response, 'system/form_page', [ 'form' => $this->form, 'render_mode' => 'edit', 'title' => $id ? __('Edit User') : __('Add User'), ] ); } public function deleteAction( ServerRequest $request, Response $response, int $id, string $csrf ): ResponseInterface { $request->getCsrf()->verify($csrf, $this->csrf_namespace); $user = $this->record_repo->find($id); $current_user = $request->getUser(); if ($user === $current_user) { $request->getFlash()->addMessage('' . __('You cannot delete your own account.') . '', Flash::ERROR); } elseif ($user instanceof Entity\User) { $this->em->remove($user); $this->em->flush(); $request->getFlash()->addMessage('' . __('User deleted.') . '', Flash::SUCCESS); } return $response->withRedirect((string)$request->getRouter()->named('admin:users:index')); } public function impersonateAction( ServerRequest $request, Response $response, int $id, string $csrf ): ResponseInterface { $request->getCsrf()->verify($csrf, $this->csrf_namespace); $user = $this->record_repo->find($id); if (!($user instanceof Entity\User)) { throw new NotFoundException(__('User not found.')); } $auth = $request->getAuth(); $auth->masqueradeAsUser($user); $request->getFlash()->addMessage( '' . __('Logged in successfully.') . '
' . $user->getEmail(), Flash::SUCCESS ); return $response->withRedirect((string)$request->getRouter()->named('dashboard')); } }