vendor/sonata-project/admin-bundle/src/Controller/CRUDController.php line 278

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. /*
  6.  * This file is part of the Sonata Project package.
  7.  *
  8.  * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
  9.  *
  10.  * For the full copyright and license information, please view the LICENSE
  11.  * file that was distributed with this source code.
  12.  */
  14. namespace Sonata\AdminBundle\Controller;
  16. use Doctrine\Inflector\InflectorFactory;
  17. use Psr\Log\LoggerInterface;
  18. use Psr\Log\NullLogger;
  19. use Sonata\AdminBundle\Admin\AdminInterface;
  20. use Sonata\AdminBundle\Admin\Pool;
  21. use Sonata\AdminBundle\Bridge\Exporter\AdminExporter;
  22. use Sonata\AdminBundle\Datagrid\ProxyQueryInterface;
  23. use Sonata\AdminBundle\Exception\BadRequestParamHttpException;
  24. use Sonata\AdminBundle\Exception\LockException;
  25. use Sonata\AdminBundle\Exception\ModelManagerException;
  26. use Sonata\AdminBundle\Exception\ModelManagerThrowable;
  27. use Sonata\AdminBundle\Form\FormErrorIteratorToConstraintViolationList;
  28. use Sonata\AdminBundle\Model\AuditManagerInterface;
  29. use Sonata\AdminBundle\Request\AdminFetcherInterface;
  30. use Sonata\AdminBundle\Templating\TemplateRegistryInterface;
  31. use Sonata\AdminBundle\Util\AdminAclUserManagerInterface;
  32. use Sonata\AdminBundle\Util\AdminObjectAclData;
  33. use Sonata\AdminBundle\Util\AdminObjectAclManipulator;
  34. use Sonata\Exporter\Exporter;
  35. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  36. use Symfony\Component\Form\FormInterface;
  37. use Symfony\Component\Form\FormRenderer;
  38. use Symfony\Component\Form\FormView;
  39. use Symfony\Component\HttpFoundation\InputBag;
  40. use Symfony\Component\HttpFoundation\JsonResponse;
  41. use Symfony\Component\HttpFoundation\ParameterBag;
  42. use Symfony\Component\HttpFoundation\RedirectResponse;
  43. use Symfony\Component\HttpFoundation\Request;
  44. use Symfony\Component\HttpFoundation\RequestStack;
  45. use Symfony\Component\HttpFoundation\Response;
  46. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  47. use Symfony\Component\HttpKernel\Exception\HttpException;
  48. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  49. use Symfony\Component\HttpKernel\HttpKernelInterface;
  50. use Symfony\Component\PropertyAccess\PropertyAccess;
  51. use Symfony\Component\PropertyAccess\PropertyPath;
  52. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  53. use Symfony\Component\Security\Core\User\UserInterface;
  54. use Symfony\Component\Security\Csrf\CsrfToken;
  55. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  56. use Symfony\Contracts\Translation\TranslatorInterface;
  57. use Twig\Environment;
  59. /**
  60.  * @author Thomas Rabaix <thomas.rabaix@sonata-project.org>
  61.  *
  62.  * @phpstan-template T of object
  63.  *
  64.  * @psalm-suppress MissingConstructor
  65.  *
  66.  * @see ConfigureCRUDControllerListener
  67.  */
  68. class CRUDController extends AbstractController
  69. {
  70.     /**
  71.      * The related Admin class.
  72.      *
  73.      * @var AdminInterface<object>
  74.      *
  75.      * @phpstan-var AdminInterface<T>
  76.      *
  77.      * @psalm-suppress PropertyNotSetInConstructor
  78.      */
  79.     protected $admin;
  81.     /**
  82.      * The template registry of the related Admin class.
  83.      *
  84.      * @psalm-suppress PropertyNotSetInConstructor
  85.      * @phpstan-ignore-next-line
  86.      */
  87.     private TemplateRegistryInterface $templateRegistry;
  89.     public static function getSubscribedServices(): array
  90.     {
  91.         return [
  92.             'sonata.admin.pool' => Pool::class,
  93.             'sonata.admin.audit.manager' => AuditManagerInterface::class,
  94.             'sonata.admin.object.manipulator.acl.admin' => AdminObjectAclManipulator::class,
  95.             'sonata.admin.request.fetcher' => AdminFetcherInterface::class,
  96.             'sonata.exporter.exporter' => '?'.Exporter::class,
  97.             'sonata.admin.admin_exporter' => '?'.AdminExporter::class,
  98.             'sonata.admin.security.acl_user_manager' => '?'.AdminAclUserManagerInterface::class,
  100.             'controller_resolver' => 'controller_resolver',
  101.             'http_kernel' => HttpKernelInterface::class,
  102.             'logger' => '?'.LoggerInterface::class,
  103.             'translator' => TranslatorInterface::class,
  104.         ] + parent::getSubscribedServices();
  105.     }
  107.     /**
  108.      * @throws AccessDeniedException If access is not granted
  109.      */
  110.     public function listAction(Request $request): Response
  111.     {
  112.         $this->assertObjectExists($request);
  114.         $this->admin->checkAccess('list');
  116.         $preResponse $this->preList($request);
  117.         if (null !== $preResponse) {
  118.             return $preResponse;
  119.         }
  121.         $listMode $request->get('_list_mode');
  122.         if (\is_string($listMode)) {
  123.             $this->admin->setListMode($listMode);
  124.         }
  126.         $datagrid $this->admin->getDatagrid();
  127.         $formView $datagrid->getForm()->createView();
  129.         // set the theme for the current Admin Form
  130.         $this->setFormTheme($formView$this->admin->getFilterTheme());
  132.         $template $this->templateRegistry->getTemplate('list');
  134.         if ($this->container->has('sonata.admin.admin_exporter')) {
  135.             $exporter $this->container->get('sonata.admin.admin_exporter');
  136.             \assert($exporter instanceof AdminExporter);
  137.             $exportFormats $exporter->getAvailableFormats($this->admin);
  138.         }
  140.         return $this->renderWithExtraParams($template, [
  141.             'action' => 'list',
  142.             'form' => $formView,
  143.             'datagrid' => $datagrid,
  144.             'csrf_token' => $this->getCsrfToken('sonata.batch'),
  145.             'export_formats' => $exportFormats ?? $this->admin->getExportFormats(),
  146.         ]);
  147.     }
  149.     /**
  150.      * NEXT_MAJOR: Change signature to `(ProxyQueryInterface $query, Request $request).
  151.      *
  152.      * Execute a batch delete.
  153.      *
  154.      * @throws AccessDeniedException If access is not granted
  155.      *
  156.      * @phpstan-param ProxyQueryInterface<T> $query
  157.      */
  158.     public function batchActionDelete(ProxyQueryInterface $query): Response
  159.     {
  160.         $this->admin->checkAccess('batchDelete');
  162.         $modelManager $this->admin->getModelManager();
  164.         try {
  165.             $modelManager->batchDelete($this->admin->getClass(), $query);
  166.             $this->addFlash(
  167.                 'sonata_flash_success',
  168.                 $this->trans('flash_batch_delete_success', [], 'SonataAdminBundle')
  169.             );
  170.         } catch (ModelManagerException $e) {
  171.             // NEXT_MAJOR: Remove this catch.
  172.             $this->handleModelManagerException($e);
  174.             $this->addFlash(
  175.                 'sonata_flash_error',
  176.                 $this->trans('flash_batch_delete_error', [], 'SonataAdminBundle')
  177.             );
  178.         } catch (ModelManagerThrowable $e) {
  179.             $errorMessage $this->handleModelManagerThrowable($e);
  181.             $this->addFlash(
  182.                 'sonata_flash_error',
  183.                 $errorMessage ?? $this->trans('flash_batch_delete_error', [], 'SonataAdminBundle')
  184.             );
  185.         }
  187.         return $this->redirectToList();
  188.     }
  190.     /**
  191.      * @throws NotFoundHttpException If the object does not exist
  192.      * @throws AccessDeniedException If access is not granted
  193.      */
  194.     public function deleteAction(Request $request): Response
  195.     {
  196.         $object $this->assertObjectExists($requesttrue);
  197.         \assert(null !== $object);
  199.         $this->checkParentChildAssociation($request$object);
  201.         $this->admin->checkAccess('delete'$object);
  203.         $preResponse $this->preDelete($request$object);
  204.         if (null !== $preResponse) {
  205.             return $preResponse;
  206.         }
  208.         if (\in_array($request->getMethod(), [Request::METHOD_POSTRequest::METHOD_DELETE], true)) {
  209.             // check the csrf token
  210.             $this->validateCsrfToken($request'sonata.delete');
  212.             $objectName $this->admin->toString($object);
  214.             try {
  215.                 $this->admin->delete($object);
  217.                 if ($this->isXmlHttpRequest($request)) {
  218.                     return $this->renderJson(['result' => 'ok']);
  219.                 }
  221.                 $this->addFlash(
  222.                     'sonata_flash_success',
  223.                     $this->trans(
  224.                         'flash_delete_success',
  225.                         ['%name%' => $this->escapeHtml($objectName)],
  226.                         'SonataAdminBundle'
  227.                     )
  228.                 );
  229.             } catch (ModelManagerException $e) {
  230.                 // NEXT_MAJOR: Remove this catch.
  231.                 $this->handleModelManagerException($e);
  233.                 if ($this->isXmlHttpRequest($request)) {
  234.                     return $this->renderJson(['result' => 'error']);
  235.                 }
  237.                 $this->addFlash(
  238.                     'sonata_flash_error',
  239.                     $this->trans(
  240.                         'flash_delete_error',
  241.                         ['%name%' => $this->escapeHtml($objectName)],
  242.                         'SonataAdminBundle'
  243.                     )
  244.                 );
  245.             } catch (ModelManagerThrowable $e) {
  246.                 $errorMessage $this->handleModelManagerThrowable($e);
  248.                 if ($this->isXmlHttpRequest($request)) {
  249.                     return $this->renderJson(['result' => 'error'], Response::HTTP_OK, []);
  250.                 }
  252.                 $this->addFlash(
  253.                     'sonata_flash_error',
  254.                     $errorMessage ?? $this->trans(
  255.                         'flash_delete_error',
  256.                         ['%name%' => $this->escapeHtml($objectName)],
  257.                         'SonataAdminBundle'
  258.                     )
  259.                 );
  260.             }
  262.             return $this->redirectTo($request$object);
  263.         }
  265.         $template $this->templateRegistry->getTemplate('delete');
  267.         return $this->renderWithExtraParams($template, [
  268.             'object' => $object,
  269.             'action' => 'delete',
  270.             'csrf_token' => $this->getCsrfToken('sonata.delete'),
  271.         ]);
  272.     }
  274.     /**
  275.      * @throws NotFoundHttpException If the object does not exist
  276.      * @throws AccessDeniedException If access is not granted
  277.      */
  278.     public function editAction(Request $request): Response
  279.     {
  280.         // the key used to lookup the template
  281.         $templateKey 'edit';
  283.         $existingObject $this->assertObjectExists($requesttrue);
  284.         \assert(null !== $existingObject);
  286.         $this->checkParentChildAssociation($request$existingObject);
  288.         $this->admin->checkAccess('edit'$existingObject);
  290.         $preResponse $this->preEdit($request$existingObject);
  291.         if (null !== $preResponse) {
  292.             return $preResponse;
  293.         }
  295.         $this->admin->setSubject($existingObject);
  296.         $objectId $this->admin->getNormalizedIdentifier($existingObject);
  297.         \assert(null !== $objectId);
  299.         $form $this->admin->getForm();
  301.         $form->setData($existingObject);
  302.         $form->handleRequest($request);
  304.         if ($form->isSubmitted()) {
  305.             $isFormValid $form->isValid();
  307.             // persist if the form was valid and if in preview mode the preview was approved
  308.             if ($isFormValid && (!$this->isInPreviewMode($request) || $this->isPreviewApproved($request))) {
  309.                 /** @phpstan-var T $submittedObject */
  310.                 $submittedObject $form->getData();
  311.                 $this->admin->setSubject($submittedObject);
  313.                 try {
  314.                     $existingObject $this->admin->update($submittedObject);
  316.                     if ($this->isXmlHttpRequest($request)) {
  317.                         return $this->handleXmlHttpRequestSuccessResponse($request$existingObject);
  318.                     }
  320.                     $this->addFlash(
  321.                         'sonata_flash_success',
  322.                         $this->trans(
  323.                             'flash_edit_success',
  324.                             ['%name%' => $this->escapeHtml($this->admin->toString($existingObject))],
  325.                             'SonataAdminBundle'
  326.                         )
  327.                     );
  329.                     // redirect to edit mode
  330.                     return $this->redirectTo($request$existingObject);
  331.                 } catch (ModelManagerException $e) {
  332.                     // NEXT_MAJOR: Remove this catch.
  333.                     $this->handleModelManagerException($e);
  335.                     $isFormValid false;
  336.                 } catch (ModelManagerThrowable $e) {
  337.                     $errorMessage $this->handleModelManagerThrowable($e);
  339.                     $isFormValid false;
  340.                 } catch (LockException $e) {
  341.                     $this->addFlash('sonata_flash_error'$this->trans('flash_lock_error', [
  342.                         '%name%' => $this->escapeHtml($this->admin->toString($existingObject)),
  343.                         '%link_start%' => sprintf('<a href="%s">'$this->admin->generateObjectUrl('edit'$existingObject)),
  344.                         '%link_end%' => '</a>',
  345.                     ], 'SonataAdminBundle'));
  346.                 }
  347.             }
  349.             // show an error message if the form failed validation
  350.             if (!$isFormValid) {
  351.                 if ($this->isXmlHttpRequest($request) && null !== ($response $this->handleXmlHttpRequestErrorResponse($request$form))) {
  352.                     return $response;
  353.                 }
  355.                 $this->addFlash(
  356.                     'sonata_flash_error',
  357.                     $errorMessage ?? $this->trans(
  358.                         'flash_edit_error',
  359.                         ['%name%' => $this->escapeHtml($this->admin->toString($existingObject))],
  360.                         'SonataAdminBundle'
  361.                     )
  362.                 );
  363.             } elseif ($this->isPreviewRequested($request)) {
  364.                 // enable the preview template if the form was valid and preview was requested
  365.                 $templateKey 'preview';
  366.                 $this->admin->getShow();
  367.             }
  368.         }
  370.         $formView $form->createView();
  371.         // set the theme for the current Admin Form
  372.         $this->setFormTheme($formView$this->admin->getFormTheme());
  374.         $template $this->templateRegistry->getTemplate($templateKey);
  376.         return $this->renderWithExtraParams($template, [
  377.             'action' => 'edit',
  378.             'form' => $formView,
  379.             'object' => $existingObject,
  380.             'objectId' => $objectId,
  381.         ]);
  382.     }
  384.     /**
  385.      * @throws NotFoundHttpException If the HTTP method is not POST
  386.      * @throws \RuntimeException     If the batch action is not defined
  387.      */
  388.     public function batchAction(Request $request): Response
  389.     {
  390.         $restMethod $request->getMethod();
  392.         if (Request::METHOD_POST !== $restMethod) {
  393.             throw $this->createNotFoundException(sprintf(
  394.                 'Invalid request method given "%s", %s expected',
  395.                 $restMethod,
  396.                 Request::METHOD_POST
  397.             ));
  398.         }
  400.         // check the csrf token
  401.         $this->validateCsrfToken($request'sonata.batch');
  403.         $confirmation $request->get('confirmation'false);
  405.         $forwardedRequest $request->duplicate();
  407.         $encodedData $request->get('data');
  409.         if (null === $encodedData) {
  410.             $action $forwardedRequest->request->get('action');
  411.             /** @var InputBag|ParameterBag $bag */
  412.             $bag $request->request;
  413.             if ($bag instanceof InputBag) {
  414.                 // symfony 5.1+
  415.                 $idx $bag->all('idx');
  416.             } else {
  417.                 $idx = (array) $bag->get('idx', []);
  418.             }
  419.             $allElements $forwardedRequest->request->getBoolean('all_elements');
  421.             $forwardedRequest->request->set('idx'$idx);
  422.             $forwardedRequest->request->set('all_elements', (string) $allElements);
  424.             $data $forwardedRequest->request->all();
  425.             $data['all_elements'] = $allElements;
  427.             unset($data['_sonata_csrf_token']);
  428.         } else {
  429.             if (!\is_string($encodedData)) {
  430.                 throw new BadRequestParamHttpException('data''string'$encodedData);
  431.             }
  433.             try {
  434.                 $data json_decode($encodedDatatrue512, \JSON_THROW_ON_ERROR);
  435.             } catch (\JsonException $exception) {
  436.                 throw new BadRequestHttpException('Unable to decode batch data');
  437.             }
  439.             $action $data['action'];
  440.             $idx = (array) ($data['idx'] ?? []);
  441.             $allElements = (bool) ($data['all_elements'] ?? false);
  442.             $forwardedRequest->request->replace(array_merge($forwardedRequest->request->all(), $data));
  443.         }
  445.         if (!\is_string($action)) {
  446.             throw new \RuntimeException('The action is not defined');
  447.         }
  449.         $camelizedAction InflectorFactory::create()->build()->classify($action);
  451.         try {
  452.             $batchActionExecutable $this->getBatchActionExecutable($action);
  453.         } catch (\Throwable $error) {
  454.             $finalAction sprintf('batchAction%s'$camelizedAction);
  455.             throw new \RuntimeException(sprintf('A `%s::%s` method must be callable or create a `controller` configuration for your batch action.'$this->admin->getBaseControllerName(), $finalAction), 0$error);
  456.         }
  458.         $batchAction $this->admin->getBatchActions()[$action];
  460.         $isRelevantAction sprintf('batchAction%sIsRelevant'$camelizedAction);
  462.         if (method_exists($this$isRelevantAction)) {
  463.             // NEXT_MAJOR: Remove if above in sonata-project/admin-bundle 5.0
  464.             @trigger_error(sprintf(
  465.                 'The is relevant hook via "%s()" is deprecated since sonata-project/admin-bundle 4.12'
  466.                 .' and will not be call in 5.0. Move the logic to your controller.',
  467.                 $isRelevantAction,
  468.             ), \E_USER_DEPRECATED);
  469.             $nonRelevantMessage $this->$isRelevantAction($idx$allElements$forwardedRequest);
  470.         } else {
  471.             $nonRelevantMessage !== \count($idx) || $allElements// at least one item is selected
  472.         }
  474.         if (!$nonRelevantMessage) { // default non relevant message (if false of null)
  475.             $nonRelevantMessage 'flash_batch_empty';
  476.         }
  478.         $datagrid $this->admin->getDatagrid();
  479.         $datagrid->buildPager();
  481.         if (true !== $nonRelevantMessage) {
  482.             $this->addFlash(
  483.                 'sonata_flash_info',
  484.                 $this->trans($nonRelevantMessage, [], 'SonataAdminBundle')
  485.             );
  487.             return $this->redirectToList();
  488.         }
  490.         $askConfirmation $batchAction['ask_confirmation'] ?? true;
  492.         if (true === $askConfirmation && 'ok' !== $confirmation) {
  493.             $actionLabel $batchAction['label'];
  494.             $batchTranslationDomain $batchAction['translation_domain'] ??
  495.                 $this->admin->getTranslationDomain();
  497.             $formView $datagrid->getForm()->createView();
  498.             $this->setFormTheme($formView$this->admin->getFilterTheme());
  500.             $template $batchAction['template'] ?? $this->templateRegistry->getTemplate('batch_confirmation');
  502.             return $this->renderWithExtraParams($template, [
  503.                 'action' => 'list',
  504.                 'action_label' => $actionLabel,
  505.                 'batch_translation_domain' => $batchTranslationDomain,
  506.                 'datagrid' => $datagrid,
  507.                 'form' => $formView,
  508.                 'data' => $data,
  509.                 'csrf_token' => $this->getCsrfToken('sonata.batch'),
  510.             ]);
  511.         }
  513.         $query $datagrid->getQuery();
  515.         $query->setFirstResult(null);
  516.         $query->setMaxResults(null);
  518.         $this->admin->preBatchAction($action$query$idx$allElements);
  519.         foreach ($this->admin->getExtensions() as $extension) {
  520.             // NEXT_MAJOR: Remove the if-statement around the call to `$extension->preBatchAction()`
  521.             // @phpstan-ignore-next-line
  522.             if (method_exists($extension'preBatchAction')) {
  523.                 $extension->preBatchAction($this->admin$action$query$idx$allElements);
  524.             }
  525.         }
  527.         if (\count($idx) > 0) {
  528.             $this->admin->getModelManager()->addIdentifiersToQuery($this->admin->getClass(), $query$idx);
  529.         } elseif (!$allElements) {
  530.             $this->addFlash(
  531.                 'sonata_flash_info',
  532.                 $this->trans('flash_batch_no_elements_processed', [], 'SonataAdminBundle')
  533.             );
  535.             return $this->redirectToList();
  536.         }
  538.         return \call_user_func($batchActionExecutable$query$forwardedRequest);
  539.     }
  541.     /**
  542.      * @throws AccessDeniedException If access is not granted
  543.      */
  544.     public function createAction(Request $request): Response
  545.     {
  546.         $this->assertObjectExists($request);
  548.         $this->admin->checkAccess('create');
  550.         // the key used to lookup the template
  551.         $templateKey 'edit';
  553.         $class = new \ReflectionClass($this->admin->hasActiveSubClass() ? $this->admin->getActiveSubClass() : $this->admin->getClass());
  555.         if ($class->isAbstract()) {
  556.             return $this->renderWithExtraParams(
  557.                 '@SonataAdmin/CRUD/select_subclass.html.twig',
  558.                 [
  559.                     'action' => 'create',
  560.                 ],
  561.             );
  562.         }
  564.         $newObject $this->admin->getNewInstance();
  566.         $preResponse $this->preCreate($request$newObject);
  567.         if (null !== $preResponse) {
  568.             return $preResponse;
  569.         }
  571.         $this->admin->setSubject($newObject);
  573.         $form $this->admin->getForm();
  575.         $form->setData($newObject);
  576.         $form->handleRequest($request);
  578.         if ($form->isSubmitted()) {
  579.             $isFormValid $form->isValid();
  581.             // persist if the form was valid and if in preview mode the preview was approved
  582.             if ($isFormValid && (!$this->isInPreviewMode($request) || $this->isPreviewApproved($request))) {
  583.                 /** @phpstan-var T $submittedObject */
  584.                 $submittedObject $form->getData();
  585.                 $this->admin->setSubject($submittedObject);
  587.                 try {
  588.                     $newObject $this->admin->create($submittedObject);
  590.                     if ($this->isXmlHttpRequest($request)) {
  591.                         return $this->handleXmlHttpRequestSuccessResponse($request$newObject);
  592.                     }
  594.                     $this->addFlash(
  595.                         'sonata_flash_success',
  596.                         $this->trans(
  597.                             'flash_create_success',
  598.                             ['%name%' => $this->escapeHtml($this->admin->toString($newObject))],
  599.                             'SonataAdminBundle'
  600.                         )
  601.                     );
  603.                     // redirect to edit mode
  604.                     return $this->redirectTo($request$newObject);
  605.                 } catch (ModelManagerException $e) {
  606.                     // NEXT_MAJOR: Remove this catch.
  607.                     $this->handleModelManagerException($e);
  609.                     $isFormValid false;
  610.                 } catch (ModelManagerThrowable $e) {
  611.                     $errorMessage $this->handleModelManagerThrowable($e);
  613.                     $isFormValid false;
  614.                 }
  615.             }
  617.             // show an error message if the form failed validation
  618.             if (!$isFormValid) {
  619.                 if ($this->isXmlHttpRequest($request) && null !== ($response $this->handleXmlHttpRequestErrorResponse($request$form))) {
  620.                     return $response;
  621.                 }
  623.                 $this->addFlash(
  624.                     'sonata_flash_error',
  625.                     $errorMessage ?? $this->trans(
  626.                         'flash_create_error',
  627.                         ['%name%' => $this->escapeHtml($this->admin->toString($newObject))],
  628.                         'SonataAdminBundle'
  629.                     )
  630.                 );
  631.             } elseif ($this->isPreviewRequested($request)) {
  632.                 // pick the preview template if the form was valid and preview was requested
  633.                 $templateKey 'preview';
  634.                 $this->admin->getShow();
  635.             }
  636.         }
  638.         $formView $form->createView();
  639.         // set the theme for the current Admin Form
  640.         $this->setFormTheme($formView$this->admin->getFormTheme());
  642.         $template $this->templateRegistry->getTemplate($templateKey);
  644.         return $this->renderWithExtraParams($template, [
  645.             'action' => 'create',
  646.             'form' => $formView,
  647.             'object' => $newObject,
  648.             'objectId' => null,
  649.         ]);
  650.     }
  652.     /**
  653.      * @throws NotFoundHttpException If the object does not exist
  654.      * @throws AccessDeniedException If access is not granted
  655.      */
  656.     public function showAction(Request $request): Response
  657.     {
  658.         $object $this->assertObjectExists($requesttrue);
  659.         \assert(null !== $object);
  661.         $this->checkParentChildAssociation($request$object);
  663.         $this->admin->checkAccess('show'$object);
  665.         $preResponse $this->preShow($request$object);
  666.         if (null !== $preResponse) {
  667.             return $preResponse;
  668.         }
  670.         $this->admin->setSubject($object);
  672.         $fields $this->admin->getShow();
  674.         $template $this->templateRegistry->getTemplate('show');
  676.         return $this->renderWithExtraParams($template, [
  677.             'action' => 'show',
  678.             'object' => $object,
  679.             'elements' => $fields,
  680.         ]);
  681.     }
  683.     /**
  684.      * Show history revisions for object.
  685.      *
  686.      * @throws AccessDeniedException If access is not granted
  687.      * @throws NotFoundHttpException If the object does not exist or the audit reader is not available
  688.      */
  689.     public function historyAction(Request $request): Response
  690.     {
  691.         $object $this->assertObjectExists($requesttrue);
  692.         \assert(null !== $object);
  693.         $this->admin->checkAccess('history'$object);
  695.         $objectId $this->admin->getNormalizedIdentifier($object);
  696.         \assert(null !== $objectId);
  698.         $manager $this->container->get('sonata.admin.audit.manager');
  699.         \assert($manager instanceof AuditManagerInterface);
  701.         if (!$manager->hasReader($this->admin->getClass())) {
  702.             throw $this->createNotFoundException(sprintf(
  703.                 'unable to find the audit reader for class : %s',
  704.                 $this->admin->getClass()
  705.             ));
  706.         }
  708.         $reader $manager->getReader($this->admin->getClass());
  710.         $revisions $reader->findRevisions($this->admin->getClass(), $objectId);
  712.         $template $this->templateRegistry->getTemplate('history');
  714.         return $this->renderWithExtraParams($template, [
  715.             'action' => 'history',
  716.             'object' => $object,
  717.             'revisions' => $revisions,
  718.             'currentRevision' => current($revisions),
  719.         ]);
  720.     }
  722.     /**
  723.      * View history revision of object.
  724.      *
  725.      * @throws AccessDeniedException If access is not granted
  726.      * @throws NotFoundHttpException If the object or revision does not exist or the audit reader is not available
  727.      */
  728.     public function historyViewRevisionAction(Request $requeststring $revision): Response
  729.     {
  730.         $object $this->assertObjectExists($requesttrue);
  731.         \assert(null !== $object);
  732.         $this->admin->checkAccess('historyViewRevision'$object);
  734.         $objectId $this->admin->getNormalizedIdentifier($object);
  735.         \assert(null !== $objectId);
  737.         $manager $this->container->get('sonata.admin.audit.manager');
  738.         \assert($manager instanceof AuditManagerInterface);
  740.         if (!$manager->hasReader($this->admin->getClass())) {
  741.             throw $this->createNotFoundException(sprintf(
  742.                 'unable to find the audit reader for class : %s',
  743.                 $this->admin->getClass()
  744.             ));
  745.         }
  747.         $reader $manager->getReader($this->admin->getClass());
  749.         // retrieve the revisioned object
  750.         $object $reader->find($this->admin->getClass(), $objectId$revision);
  752.         if (null === $object) {
  753.             throw $this->createNotFoundException(sprintf(
  754.                 'unable to find the targeted object `%s` from the revision `%s` with classname : `%s`',
  755.                 $objectId,
  756.                 $revision,
  757.                 $this->admin->getClass()
  758.             ));
  759.         }
  761.         $this->admin->setSubject($object);
  763.         $template $this->templateRegistry->getTemplate('show');
  765.         return $this->renderWithExtraParams($template, [
  766.             'action' => 'show',
  767.             'object' => $object,
  768.             'elements' => $this->admin->getShow(),
  769.         ]);
  770.     }
  772.     /**
  773.      * Compare history revisions of object.
  774.      *
  775.      * @throws AccessDeniedException If access is not granted
  776.      * @throws NotFoundHttpException If the object or revision does not exist or the audit reader is not available
  777.      */
  778.     public function historyCompareRevisionsAction(Request $requeststring $baseRevisionstring $compareRevision): Response
  779.     {
  780.         $this->admin->checkAccess('historyCompareRevisions');
  782.         $object $this->assertObjectExists($requesttrue);
  783.         \assert(null !== $object);
  784.         $objectId $this->admin->getNormalizedIdentifier($object);
  785.         \assert(null !== $objectId);
  787.         $manager $this->container->get('sonata.admin.audit.manager');
  788.         \assert($manager instanceof AuditManagerInterface);
  790.         if (!$manager->hasReader($this->admin->getClass())) {
  791.             throw $this->createNotFoundException(sprintf(
  792.                 'unable to find the audit reader for class : %s',
  793.                 $this->admin->getClass()
  794.             ));
  795.         }
  797.         $reader $manager->getReader($this->admin->getClass());
  799.         // retrieve the base revision
  800.         $baseObject $reader->find($this->admin->getClass(), $objectId$baseRevision);
  801.         if (null === $baseObject) {
  802.             throw $this->createNotFoundException(sprintf(
  803.                 'unable to find the targeted object `%s` from the revision `%s` with classname : `%s`',
  804.                 $objectId,
  805.                 $baseRevision,
  806.                 $this->admin->getClass()
  807.             ));
  808.         }
  810.         // retrieve the compare revision
  811.         $compareObject $reader->find($this->admin->getClass(), $objectId$compareRevision);
  812.         if (null === $compareObject) {
  813.             throw $this->createNotFoundException(sprintf(
  814.                 'unable to find the targeted object `%s` from the revision `%s` with classname : `%s`',
  815.                 $objectId,
  816.                 $compareRevision,
  817.                 $this->admin->getClass()
  818.             ));
  819.         }
  821.         $this->admin->setSubject($baseObject);
  823.         $template $this->templateRegistry->getTemplate('show_compare');
  825.         return $this->renderWithExtraParams($template, [
  826.             'action' => 'show',
  827.             'object' => $baseObject,
  828.             'object_compare' => $compareObject,
  829.             'elements' => $this->admin->getShow(),
  830.         ]);
  831.     }
  833.     /**
  834.      * Export data to specified format.
  835.      *
  836.      * @throws AccessDeniedException If access is not granted
  837.      * @throws \RuntimeException     If the export format is invalid
  838.      */
  839.     public function exportAction(Request $request): Response
  840.     {
  841.         $this->admin->checkAccess('export');
  843.         $format $request->get('format');
  844.         if (!\is_string($format)) {
  845.             throw new BadRequestParamHttpException('format''string'$format);
  846.         }
  848.         $adminExporter $this->container->get('sonata.admin.admin_exporter');
  849.         \assert($adminExporter instanceof AdminExporter);
  850.         $allowedExportFormats $adminExporter->getAvailableFormats($this->admin);
  851.         $filename $adminExporter->getExportFilename($this->admin$format);
  853.         $exporter $this->container->get('sonata.exporter.exporter');
  854.         \assert($exporter instanceof Exporter);
  856.         if (!\in_array($format$allowedExportFormatstrue)) {
  857.             throw new \RuntimeException(sprintf(
  858.                 'Export in format `%s` is not allowed for class: `%s`. Allowed formats are: `%s`',
  859.                 $format,
  860.                 $this->admin->getClass(),
  861.                 implode(', '$allowedExportFormats)
  862.             ));
  863.         }
  865.         return $exporter->getResponse(
  866.             $format,
  867.             $filename,
  868.             $this->admin->getDataSourceIterator()
  869.         );
  870.     }
  872.     /**
  873.      * Returns the Response object associated to the acl action.
  874.      *
  875.      * @throws AccessDeniedException If access is not granted
  876.      * @throws NotFoundHttpException If the object does not exist or the ACL is not enabled
  877.      */
  878.     public function aclAction(Request $request): Response
  879.     {
  880.         if (!$this->admin->isAclEnabled()) {
  881.             throw $this->createNotFoundException('ACL are not enabled for this admin');
  882.         }
  884.         $object $this->assertObjectExists($requesttrue);
  885.         \assert(null !== $object);
  887.         $this->admin->checkAccess('acl'$object);
  889.         $this->admin->setSubject($object);
  890.         $aclUsers $this->getAclUsers();
  891.         $aclRoles $this->getAclRoles();
  893.         $adminObjectAclManipulator $this->container->get('sonata.admin.object.manipulator.acl.admin');
  894.         \assert($adminObjectAclManipulator instanceof AdminObjectAclManipulator);
  896.         $adminObjectAclData = new AdminObjectAclData(
  897.             $this->admin,
  898.             $object,
  899.             $aclUsers,
  900.             $adminObjectAclManipulator->getMaskBuilderClass(),
  901.             $aclRoles
  902.         );
  904.         $aclUsersForm $adminObjectAclManipulator->createAclUsersForm($adminObjectAclData);
  905.         $aclRolesForm $adminObjectAclManipulator->createAclRolesForm($adminObjectAclData);
  907.         if (Request::METHOD_POST === $request->getMethod()) {
  908.             if ($request->request->has(AdminObjectAclManipulator::ACL_USERS_FORM_NAME)) {
  909.                 $form $aclUsersForm;
  910.                 $updateMethod 'updateAclUsers';
  911.             } elseif ($request->request->has(AdminObjectAclManipulator::ACL_ROLES_FORM_NAME)) {
  912.                 $form $aclRolesForm;
  913.                 $updateMethod 'updateAclRoles';
  914.             }
  916.             if (isset($form$updateMethod)) {
  917.                 $form->handleRequest($request);
  919.                 if ($form->isValid()) {
  920.                     $adminObjectAclManipulator->$updateMethod($adminObjectAclData);
  921.                     $this->addFlash(
  922.                         'sonata_flash_success',
  923.                         $this->trans('flash_acl_edit_success', [], 'SonataAdminBundle')
  924.                     );
  926.                     return new RedirectResponse($this->admin->generateObjectUrl('acl'$object));
  927.                 }
  928.             }
  929.         }
  931.         $template $this->templateRegistry->getTemplate('acl');
  933.         return $this->renderWithExtraParams($template, [
  934.             'action' => 'acl',
  935.             'permissions' => $adminObjectAclData->getUserPermissions(),
  936.             'object' => $object,
  937.             'users' => $aclUsers,
  938.             'roles' => $aclRoles,
  939.             'aclUsersForm' => $aclUsersForm->createView(),
  940.             'aclRolesForm' => $aclRolesForm->createView(),
  941.         ]);
  942.     }
  944.     /**
  945.      * Contextualize the admin class depends on the current request.
  946.      *
  947.      * @throws \InvalidArgumentException
  948.      */
  949.     final public function configureAdmin(Request $request): void
  950.     {
  951.         $adminFetcher $this->container->get('sonata.admin.request.fetcher');
  952.         \assert($adminFetcher instanceof AdminFetcherInterface);
  954.         /** @var AdminInterface<T> $admin */
  955.         $admin $adminFetcher->get($request);
  956.         $this->admin $admin;
  958.         if (!$this->admin->hasTemplateRegistry()) {
  959.             throw new \RuntimeException(sprintf(
  960.                 'Unable to find the template registry related to the current admin (%s).',
  961.                 $this->admin->getCode()
  962.             ));
  963.         }
  965.         $this->templateRegistry $this->admin->getTemplateRegistry();
  966.     }
  968.     /**
  969.      * Renders a view while passing mandatory parameters on to the template.
  970.      *
  971.      * @param string               $view       The view name
  972.      * @param array<string, mixed> $parameters An array of parameters to pass to the view
  973.      */
  974.     final protected function renderWithExtraParams(string $view, array $parameters = [], ?Response $response null): Response
  975.     {
  976.         return $this->render($view$this->addRenderExtraParams($parameters), $response);
  977.     }
  979.     /**
  980.      * @param array<string, mixed> $parameters
  981.      *
  982.      * @return array<string, mixed>
  983.      */
  984.     protected function addRenderExtraParams(array $parameters = []): array
  985.     {
  986.         $parameters['admin'] ??= $this->admin;
  987.         $parameters['base_template'] ??= $this->getBaseTemplate();
  989.         return $parameters;
  990.     }
  992.     /**
  993.      * @param mixed   $data
  994.      * @param mixed[] $headers
  995.      */
  996.     final protected function renderJson($dataint $status Response::HTTP_OK, array $headers = []): JsonResponse
  997.     {
  998.         return new JsonResponse($data$status$headers);
  999.     }
  1001.     /**
  1002.      * Returns true if the request is a XMLHttpRequest.
  1003.      *
  1004.      * @return bool True if the request is an XMLHttpRequest, false otherwise
  1005.      */
  1006.     final protected function isXmlHttpRequest(Request $request): bool
  1007.     {
  1008.         return $request->isXmlHttpRequest()
  1009.             || $request->request->getBoolean('_xml_http_request')
  1010.             || $request->query->getBoolean('_xml_http_request');
  1011.     }
  1013.     /**
  1014.      * Proxy for the logger service of the container.
  1015.      * If no such service is found, a NullLogger is returned.
  1016.      */
  1017.     protected function getLogger(): LoggerInterface
  1018.     {
  1019.         if ($this->container->has('logger')) {
  1020.             $logger $this->container->get('logger');
  1021.             \assert($logger instanceof LoggerInterface);
  1023.             return $logger;
  1024.         }
  1026.         return new NullLogger();
  1027.     }
  1029.     /**
  1030.      * Returns the base template name.
  1031.      *
  1032.      * @return string The template name
  1033.      */
  1034.     protected function getBaseTemplate(): string
  1035.     {
  1036.         $requestStack $this->container->get('request_stack');
  1037.         \assert($requestStack instanceof RequestStack);
  1038.         $request $requestStack->getCurrentRequest();
  1039.         \assert(null !== $request);
  1041.         if ($this->isXmlHttpRequest($request)) {
  1042.             return $this->templateRegistry->getTemplate('ajax');
  1043.         }
  1045.         return $this->templateRegistry->getTemplate('layout');
  1046.     }
  1048.     /**
  1049.      * @throws \Exception
  1050.      */
  1051.     protected function handleModelManagerException(\Exception $exception): void
  1052.     {
  1053.         if ($exception instanceof ModelManagerThrowable) {
  1054.             $this->handleModelManagerThrowable($exception);
  1056.             return;
  1057.         }
  1059.         @trigger_error(sprintf(
  1060.             'The method "%s()" is deprecated since sonata-project/admin-bundle 3.107 and will be removed in 5.0.',
  1061.             __METHOD__
  1062.         ), \E_USER_DEPRECATED);
  1064.         $debug $this->getParameter('kernel.debug');
  1065.         \assert(\is_bool($debug));
  1066.         if ($debug) {
  1067.             throw $exception;
  1068.         }
  1070.         $context = ['exception' => $exception];
  1071.         if (null !== $exception->getPrevious()) {
  1072.             $context['previous_exception_message'] = $exception->getPrevious()->getMessage();
  1073.         }
  1074.         $this->getLogger()->error($exception->getMessage(), $context);
  1075.     }
  1077.     /**
  1078.      * NEXT_MAJOR: Add typehint.
  1079.      *
  1080.      * @throws ModelManagerThrowable
  1081.      *
  1082.      * @return string|null A custom error message to display in the flag bag instead of the generic one
  1083.      */
  1084.     protected function handleModelManagerThrowable(ModelManagerThrowable $exception)
  1085.     {
  1086.         $debug $this->getParameter('kernel.debug');
  1087.         \assert(\is_bool($debug));
  1088.         if ($debug) {
  1089.             throw $exception;
  1090.         }
  1092.         $context = ['exception' => $exception];
  1093.         if (null !== $exception->getPrevious()) {
  1094.             $context['previous_exception_message'] = $exception->getPrevious()->getMessage();
  1095.         }
  1096.         $this->getLogger()->error($exception->getMessage(), $context);
  1098.         return null;
  1099.     }
  1101.     /**
  1102.      * Redirect the user depend on this choice.
  1103.      *
  1104.      * @phpstan-param T $object
  1105.      */
  1106.     protected function redirectTo(Request $requestobject $object): RedirectResponse
  1107.     {
  1108.         if (null !== $request->get('btn_update_and_list')) {
  1109.             return $this->redirectToList();
  1110.         }
  1111.         if (null !== $request->get('btn_create_and_list')) {
  1112.             return $this->redirectToList();
  1113.         }
  1115.         if (null !== $request->get('btn_create_and_create')) {
  1116.             $params = [];
  1117.             if ($this->admin->hasActiveSubClass()) {
  1118.                 $params['subclass'] = $request->get('subclass');
  1119.             }
  1121.             return new RedirectResponse($this->admin->generateUrl('create'$params));
  1122.         }
  1124.         if (null !== $request->get('btn_delete')) {
  1125.             return $this->redirectToList();
  1126.         }
  1128.         foreach (['edit''show'] as $route) {
  1129.             if ($this->admin->hasRoute($route) && $this->admin->hasAccess($route$object)) {
  1130.                 $url $this->admin->generateObjectUrl(
  1131.                     $route,
  1132.                     $object,
  1133.                     $this->getSelectedTab($request)
  1134.                 );
  1136.                 return new RedirectResponse($url);
  1137.             }
  1138.         }
  1140.         return $this->redirectToList();
  1141.     }
  1143.     /**
  1144.      * Redirects the user to the list view.
  1145.      */
  1146.     final protected function redirectToList(): RedirectResponse
  1147.     {
  1148.         $parameters = [];
  1150.         $filter $this->admin->getFilterParameters();
  1151.         if ([] !== $filter) {
  1152.             $parameters['filter'] = $filter;
  1153.         }
  1155.         return $this->redirect($this->admin->generateUrl('list'$parameters));
  1156.     }
  1158.     /**
  1159.      * Returns true if the preview is requested to be shown.
  1160.      */
  1161.     final protected function isPreviewRequested(Request $request): bool
  1162.     {
  1163.         return null !== $request->get('btn_preview');
  1164.     }
  1166.     /**
  1167.      * Returns true if the preview has been approved.
  1168.      */
  1169.     final protected function isPreviewApproved(Request $request): bool
  1170.     {
  1171.         return null !== $request->get('btn_preview_approve');
  1172.     }
  1174.     /**
  1175.      * Returns true if the request is in the preview workflow.
  1176.      *
  1177.      * That means either a preview is requested or the preview has already been shown
  1178.      * and it got approved/declined.
  1179.      */
  1180.     final protected function isInPreviewMode(Request $request): bool
  1181.     {
  1182.         return $this->admin->supportsPreviewMode()
  1183.         && ($this->isPreviewRequested($request)
  1184.             || $this->isPreviewApproved($request)
  1185.             || $this->isPreviewDeclined($request));
  1186.     }
  1188.     /**
  1189.      * Returns true if the preview has been declined.
  1190.      */
  1191.     final protected function isPreviewDeclined(Request $request): bool
  1192.     {
  1193.         return null !== $request->get('btn_preview_decline');
  1194.     }
  1196.     /**
  1197.      * @return \Traversable<UserInterface|string>
  1198.      */
  1199.     protected function getAclUsers(): \Traversable
  1200.     {
  1201.         if (!$this->container->has('sonata.admin.security.acl_user_manager')) {
  1202.             return new \ArrayIterator([]);
  1203.         }
  1205.         $aclUserManager $this->container->get('sonata.admin.security.acl_user_manager');
  1206.         \assert($aclUserManager instanceof AdminAclUserManagerInterface);
  1207.         $aclUsers $aclUserManager->findUsers();
  1209.         return \is_array($aclUsers) ? new \ArrayIterator($aclUsers) : $aclUsers;
  1210.     }
  1212.     /**
  1213.      * @return \Traversable<string>
  1214.      */
  1215.     protected function getAclRoles(): \Traversable
  1216.     {
  1217.         $aclRoles = [];
  1218.         $roleHierarchy $this->getParameter('security.role_hierarchy.roles');
  1219.         \assert(\is_array($roleHierarchy));
  1220.         $pool $this->container->get('sonata.admin.pool');
  1221.         \assert($pool instanceof Pool);
  1223.         foreach ($pool->getAdminServiceCodes() as $code) {
  1224.             try {
  1225.                 $admin $pool->getInstance($code);
  1226.             } catch (\Exception $e) {
  1227.                 continue;
  1228.             }
  1230.             $baseRole $admin->getSecurityHandler()->getBaseRole($admin);
  1231.             foreach ($admin->getSecurityInformation() as $role => $_permissions) {
  1232.                 $role sprintf($baseRole$role);
  1233.                 $aclRoles[] = $role;
  1234.             }
  1235.         }
  1237.         foreach ($roleHierarchy as $name => $roles) {
  1238.             $aclRoles[] = $name;
  1239.             $aclRoles array_merge($aclRoles$roles);
  1240.         }
  1242.         $aclRoles array_unique($aclRoles);
  1244.         return new \ArrayIterator($aclRoles);
  1245.     }
  1247.     /**
  1248.      * Validate CSRF token for action without form.
  1249.      *
  1250.      * @throws HttpException
  1251.      */
  1252.     final protected function validateCsrfToken(Request $requeststring $intention): void
  1253.     {
  1254.         if (!$this->container->has('security.csrf.token_manager')) {
  1255.             return;
  1256.         }
  1258.         $token $request->get('_sonata_csrf_token');
  1259.         $tokenManager $this->container->get('security.csrf.token_manager');
  1260.         \assert($tokenManager instanceof CsrfTokenManagerInterface);
  1262.         if (!$tokenManager->isTokenValid(new CsrfToken($intention$token))) {
  1263.             throw new HttpException(Response::HTTP_BAD_REQUEST'The csrf token is not valid, CSRF attack?');
  1264.         }
  1265.     }
  1267.     /**
  1268.      * Escape string for html output.
  1269.      */
  1270.     final protected function escapeHtml(string $s): string
  1271.     {
  1272.         return htmlspecialchars($s, \ENT_QUOTES | \ENT_SUBSTITUTE);
  1273.     }
  1275.     /**
  1276.      * Get CSRF token.
  1277.      */
  1278.     final protected function getCsrfToken(string $intention): ?string
  1279.     {
  1280.         if (!$this->container->has('security.csrf.token_manager')) {
  1281.             return null;
  1282.         }
  1284.         $tokenManager $this->container->get('security.csrf.token_manager');
  1285.         \assert($tokenManager instanceof CsrfTokenManagerInterface);
  1287.         return $tokenManager->getToken($intention)->getValue();
  1288.     }
  1290.     /**
  1291.      * This method can be overloaded in your custom CRUD controller.
  1292.      * It's called from createAction.
  1293.      *
  1294.      * @phpstan-param T $object
  1295.      */
  1296.     protected function preCreate(Request $requestobject $object): ?Response
  1297.     {
  1298.         return null;
  1299.     }
  1301.     /**
  1302.      * This method can be overloaded in your custom CRUD controller.
  1303.      * It's called from editAction.
  1304.      *
  1305.      * @phpstan-param T $object
  1306.      */
  1307.     protected function preEdit(Request $requestobject $object): ?Response
  1308.     {
  1309.         return null;
  1310.     }
  1312.     /**
  1313.      * This method can be overloaded in your custom CRUD controller.
  1314.      * It's called from deleteAction.
  1315.      *
  1316.      * @phpstan-param T $object
  1317.      */
  1318.     protected function preDelete(Request $requestobject $object): ?Response
  1319.     {
  1320.         return null;
  1321.     }
  1323.     /**
  1324.      * This method can be overloaded in your custom CRUD controller.
  1325.      * It's called from showAction.
  1326.      *
  1327.      * @phpstan-param T $object
  1328.      */
  1329.     protected function preShow(Request $requestobject $object): ?Response
  1330.     {
  1331.         return null;
  1332.     }
  1334.     /**
  1335.      * This method can be overloaded in your custom CRUD controller.
  1336.      * It's called from listAction.
  1337.      */
  1338.     protected function preList(Request $request): ?Response
  1339.     {
  1340.         return null;
  1341.     }
  1343.     /**
  1344.      * Translate a message id.
  1345.      *
  1346.      * @param mixed[] $parameters
  1347.      */
  1348.     final protected function trans(string $id, array $parameters = [], ?string $domain null, ?string $locale null): string
  1349.     {
  1350.         $domain ??= $this->admin->getTranslationDomain();
  1351.         $translator $this->container->get('translator');
  1352.         \assert($translator instanceof TranslatorInterface);
  1354.         return $translator->trans($id$parameters$domain$locale);
  1355.     }
  1357.     protected function handleXmlHttpRequestErrorResponse(Request $requestFormInterface $form): ?JsonResponse
  1358.     {
  1359.         if ([] === array_intersect(['application/json''*/*'], $request->getAcceptableContentTypes())) {
  1360.             return $this->renderJson([], Response::HTTP_NOT_ACCEPTABLE);
  1361.         }
  1363.         return $this->json(
  1364.             FormErrorIteratorToConstraintViolationList::transform($form->getErrors(true)),
  1365.             Response::HTTP_BAD_REQUEST
  1366.         );
  1367.     }
  1369.     /**
  1370.      * @phpstan-param T $object
  1371.      */
  1372.     protected function handleXmlHttpRequestSuccessResponse(Request $requestobject $object): JsonResponse
  1373.     {
  1374.         if ([] === array_intersect(['application/json''*/*'], $request->getAcceptableContentTypes())) {
  1375.             return $this->renderJson([], Response::HTTP_NOT_ACCEPTABLE);
  1376.         }
  1378.         return $this->renderJson([
  1379.             'result' => 'ok',
  1380.             'objectId' => $this->admin->getNormalizedIdentifier($object),
  1381.             'objectName' => $this->escapeHtml($this->admin->toString($object)),
  1382.         ]);
  1383.     }
  1385.     /**
  1386.      * @phpstan-return T|null
  1387.      */
  1388.     final protected function assertObjectExists(Request $requestbool $strict false): ?object
  1389.     {
  1390.         $admin $this->admin;
  1391.         $object null;
  1393.         while (null !== $admin) {
  1394.             $objectId $request->get($admin->getIdParameter());
  1395.             if (\is_string($objectId) || \is_int($objectId)) {
  1396.                 $adminObject $admin->getObject($objectId);
  1397.                 if (null === $adminObject) {
  1398.                     throw $this->createNotFoundException(sprintf(
  1399.                         'Unable to find %s object with id: %s.',
  1400.                         $admin->getClassnameLabel(),
  1401.                         $objectId
  1402.                     ));
  1403.                 } elseif (null === $object) {
  1404.                     /** @phpstan-var T $object */
  1405.                     $object $adminObject;
  1406.                 }
  1407.             } elseif ($strict || $admin !== $this->admin) {
  1408.                 throw $this->createNotFoundException(sprintf(
  1409.                     'Unable to find the %s object id of the admin "%s".',
  1410.                     $admin->getClassnameLabel(),
  1411.                     \get_class($admin)
  1412.                 ));
  1413.             }
  1415.             $admin $admin->isChild() ? $admin->getParent() : null;
  1416.         }
  1418.         return $object;
  1419.     }
  1421.     /**
  1422.      * @return array{_tab?: string}
  1423.      */
  1424.     final protected function getSelectedTab(Request $request): array
  1425.     {
  1426.         return array_filter(['_tab' => (string) $request->request->get('_tab')]);
  1427.     }
  1429.     /**
  1430.      * Sets the admin form theme to form view. Used for compatibility between Symfony versions.
  1431.      *
  1432.      * @param string[]|null $theme
  1433.      */
  1434.     final protected function setFormTheme(FormView $formView, ?array $theme null): void
  1435.     {
  1436.         $twig $this->container->get('twig');
  1437.         \assert($twig instanceof Environment);
  1439.         $formRenderer $twig->getRuntime(FormRenderer::class);
  1440.         $formRenderer->setTheme($formView$theme);
  1441.     }
  1443.     /**
  1444.      * @phpstan-param T $object
  1445.      */
  1446.     final protected function checkParentChildAssociation(Request $requestobject $object): void
  1447.     {
  1448.         if (!$this->admin->isChild()) {
  1449.             return;
  1450.         }
  1452.         $parentAdmin $this->admin->getParent();
  1453.         $parentId $request->get($parentAdmin->getIdParameter());
  1454.         \assert(\is_string($parentId) || \is_int($parentId));
  1456.         $parentAdminObject $parentAdmin->getObject($parentId);
  1457.         if (null === $parentAdminObject) {
  1458.             throw new \RuntimeException(sprintf(
  1459.                 'No object was found in the admin "%s" for the id "%s".',
  1460.                 \get_class($parentAdmin),
  1461.                 $parentId
  1462.             ));
  1463.         }
  1465.         $parentAssociationMapping $this->admin->getParentAssociationMapping();
  1466.         if (null === $parentAssociationMapping) {
  1467.             throw new \RuntimeException('The admin has no parent association mapping.');
  1468.         }
  1470.         $propertyAccessor PropertyAccess::createPropertyAccessor();
  1471.         $propertyPath = new PropertyPath($parentAssociationMapping);
  1472.         $objectParent $propertyAccessor->getValue($object$propertyPath);
  1474.         // $objectParent may be an array or a Collection when the parent association is many to many.
  1475.         $parentObjectMatches $this->equalsOrContains($objectParent$parentAdminObject);
  1477.         if (!$parentObjectMatches) {
  1478.             throw new \RuntimeException(sprintf(
  1479.                 'There is no association between "%s" and "%s"',
  1480.                 $parentAdmin->toString($parentAdminObject),
  1481.                 $this->admin->toString($object)
  1482.             ));
  1483.         }
  1484.     }
  1486.     private function getBatchActionExecutable(string $action): callable
  1487.     {
  1488.         $batchActions $this->admin->getBatchActions();
  1489.         if (!\array_key_exists($action$batchActions)) {
  1490.             throw new \RuntimeException(sprintf('The `%s` batch action is not defined'$action));
  1491.         }
  1493.         $controller $batchActions[$action]['controller'] ?? sprintf(
  1494.             '%s::%s',
  1495.             $this->admin->getBaseControllerName(),
  1496.             sprintf('batchAction%s'InflectorFactory::create()->build()->classify($action))
  1497.         );
  1499.         // This will throw an exception when called so we know if it's possible or not to call the controller.
  1500.         $exists false !== $this->container
  1501.             ->get('controller_resolver')
  1502.             ->getController(new Request([], [], ['_controller' => $controller]));
  1504.         if (!$exists) {
  1505.             throw new \RuntimeException(sprintf('Controller for action `%s` cannot be resolved'$action));
  1506.         }
  1508.         return function (ProxyQueryInterface $queryRequest $request) use ($controller) {
  1509.             $request->attributes->set('_controller'$controller);
  1510.             $request->attributes->set('query'$query);
  1512.             return $this->container->get('http_kernel')->handle($requestHttpKernelInterface::SUB_REQUEST);
  1513.         };
  1514.     }
  1516.     /**
  1517.      * Checks whether $needle is equal to $haystack or part of it.
  1518.      *
  1519.      * @param object|iterable<object> $haystack
  1520.      *
  1521.      * @return bool true when $haystack equals $needle or $haystack is iterable and contains $needle
  1522.      */
  1523.     private function equalsOrContains($haystackobject $needle): bool
  1524.     {
  1525.         if ($needle === $haystack) {
  1526.             return true;
  1527.         }
  1529.         if (is_iterable($haystack)) {
  1530.             foreach ($haystack as $haystackItem) {
  1531.                 if ($haystackItem === $needle) {
  1532.                     return true;
  1533.                 }
  1534.             }
  1535.         }
  1537.         return false;
  1538.     }
  1539. }