protected $query;
protected $request;
protected $fields;
+ protected $hiddenFields;
protected $filterOperators = [
'eq' => '=',
/**
* ListingResponseBuilder constructor.
*/
- public function __construct(Builder $query, Request $request, array $fields)
+ public function __construct(Builder $query, Request $request, array $fields, array $hiddenFields )
{
$this->query = $query;
$this->request = $request;
$this->fields = $fields;
+ $this->hiddenFields = $hiddenFields;
}
/**
$total = $filteredQuery->count();
$data = $this->fetchData($filteredQuery);
+ $data = $data->makeVisible($this->hiddenFields);
return response()->json([
'data' => $data,
/**
* Get all users as Builder for API
*/
- public function getUsersBuilder(): Builder
+ public function getUsersBuilder(int $id = null ) : Builder
{
- $query = User::query()->select(['*']);
+ $query = User::query()->select(['*'])
+ ->withLastActivityAt()
+ ->with(['roles', 'avatar']);
return $query;
}
/**
{
protected $rules = [];
+ protected $printHidden = [];
/**
* Provide a paginated listing JSON response in a standard format
* taking into account any pagination parameters passed by the user.
*/
- protected function apiListingResponse(Builder $query, array $fields): JsonResponse
+ protected function apiListingResponse(Builder $query, array $fields, array $protectedFieldsToPrint = []): JsonResponse
{
- $listing = new ListingResponseBuilder($query, request(), $fields);
+ $listing = new ListingResponseBuilder($query, request(), $fields, $protectedFieldsToPrint);
return $listing->toResponse();
}
protected $user;
protected $userRepo;
+ protected $printHidden = [
+ 'email', 'created_at', 'updated_at', 'last_activity_at'
+ ];
+
# TBD: Endpoints to create / update users
# protected $rules = [
# 'create' => [
}
/**
- * Get a listing of pages visible to the user.
+ * Get a listing of users
*/
public function list()
{
+ $this->checkPermission('users-manage');
+
$users = $this->userRepo->getUsersBuilder();
return $this->apiListingResponse($users, [
- 'id', 'name', 'slug',
- 'email', 'created_at', 'updated_at',
- ]);
+ 'id', 'name', 'slug', 'email',
+ 'created_at', 'updated_at', 'last_activity_at',
+ ], $this->printHidden);
+ }
+
+ /**
+ * View the details of a single user
+ */
+ public function read(string $id)
+ {
+ $this->checkPermission('users-manage');
+
+ $singleUser = $this->userRepo->getById($id);
+ $singleUser = $singleUser->makeVisible($this->printHidden);
+
+ return response()->json($singleUser);
}
}
Route::delete('shelves/{id}', 'BookshelfApiController@delete');
Route::get('users', 'UserApiController@list');
+Route::get('users/{id}', 'UserApiController@read');