Anomalie #105: Ajax et utilisateur déconnecté

src/Muzich/CoreBundle/Controller/CoreController.php

@@ -142,7 +142,21 @@ class CoreController extends Controller
    *  Procédure d'ajout d'un element
    */
   public function elementAddAction($group_slug)
-  {    
+  {   
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     if ($this->getRequest()->getMethod() != 'POST')
     {
       throw $this->createNotFoundException('Cette ressource n\'est pas accessible');

src/Muzich/CoreBundle/Controller/ElementController.php

@@ -34,6 +34,20 @@ class ElementController extends Controller
    */
   public function editAction($element_id)
   {    
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $element = $this->checkExistingAndOwned($element_id);
     
     $element_tags = $element->getTags();
@@ -77,6 +91,20 @@ class ElementController extends Controller
    */
   public function updateAction($element_id)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $element = $this->checkExistingAndOwned($element_id);
     // Si il y a un groupe on le retire pour le bind
     $group = $element->getGroup();
@@ -145,6 +173,20 @@ class ElementController extends Controller
   
   public function removeAction($element_id)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     try {
       $element = $this->checkExistingAndOwned($element_id);
       $em = $this->getDoctrine()->getEntityManager();

src/Muzich/CoreBundle/Controller/SearchController.php

@@ -41,6 +41,20 @@ class SearchController extends Controller
    */
   public function searchElementsAction($id_limit = null, $invertcolors = false)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $request = $this->getRequest();
     $search_object = $this->getElementSearcher();
     
@@ -200,6 +214,20 @@ class SearchController extends Controller
    */
   public function searchTagAction($string_search, $timestamp)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     if ($this->getRequest()->isXmlHttpRequest())
     {
       if (strlen($string_search) > 1)

src/Muzich/CoreBundle/Resources/config/security.yml

@@ -65,6 +65,17 @@ security:
         - { path: ^/login$, role: IS_AUTHENTICATED_ANONYMOUSLY }
         - { path: ^/login_check$, role: IS_AUTHENTICATED_ANONYMOUSLY }
         
+        ## Ouvert pour l'ajax (et le message de redirection en cas de déco)
+        - { path: ^/(?:fr|en)/search-elements, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/element, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/favorite/add, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/favorite/remove, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/element/add, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/search/tag, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/show/user/, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/show/group/, role: IS_AUTHENTICATED_ANONYMOUSLY }
+        - { path: ^/(?:fr|en)/favoritesajax, role: IS_AUTHENTICATED_ANONYMOUSLY }
+                                
         - { path: ^/, roles: ROLE_USER }
         
 #        # Liste des pages accessibles à tous les utilisateurs (ne pas toucher)

src/Muzich/CoreBundle/Resources/views/layout.html.twig

@@ -27,6 +27,8 @@
     string_follow_stop = "{{ 'user.stop_follow'|trans({}, 'users') }}";
     string_follow_following = "{{ 'user.following'|trans({}, 'users') }}";
     string_follow_follow = "{{ 'user.follow'|trans({}, 'users') }}";
+    
+    url_index = "{{ path('index') }}";
   </script>
   {% block js %}{% endblock %}
   

src/Muzich/FavoriteBundle/Controller/FavoriteController.php

@@ -22,6 +22,20 @@ class FavoriteController extends Controller
    */
   public function addAction($id, $token)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $user = $this->getUser();
     
     /**
@@ -86,6 +100,20 @@ class FavoriteController extends Controller
    */
   public function removeAction($id, $token)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $user = $this->getUser();
     $em = $this->getDoctrine()->getEntityManager();
     
@@ -193,6 +221,20 @@ class FavoriteController extends Controller
   
   public function getElementsAction($user_id, $tags_ids_json, $id_limit = null, $invert = false)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $tag_ids = json_decode($tags_ids_json);
     $search_object = new ElementSearcher();
     

src/Muzich/FavoriteBundle/Resources/config/routing.yml

@@ -16,5 +16,5 @@ favorite_user_list:
   defaults: { _controller: MuzichFavoriteBundle:Favorite:userList }
 
 favorite_get:
-  pattern:   /favorites/{user_id}/getElements/{tags_ids_json}/{id_limit}/{invert}
+  pattern:   /favoritesajax/{user_id}/getElements/{tags_ids_json}/{id_limit}/{invert}
   defaults: { _controller: MuzichFavoriteBundle:Favorite:getElements, id_limit: null, invert: false }

src/Muzich/HomeBundle/Controller/ShowController.php

@@ -96,6 +96,20 @@ class ShowController extends Controller
   
   public function getElementsAction($type, $object_id, $tags_ids_json, $id_limit = null, $invert = false)
   {
+    if ($this->getUser() == 'anon.')
+    {
+      if ($this->getRequest()->isXmlHttpRequest())
+      {
+        return $this->jsonResponse(array(
+          'status' => 'mustbeconnected'
+        ));
+      }
+      else
+      {
+        return $this->redirect($this->generateUrl('index'));
+      }
+    }
+    
     $object_id = null;
     if ($type != 'user' && $type != 'group')
     {

web/bundles/muzichcore/js/muzich.js

@@ -5,23 +5,6 @@
  * 
  */
 
-// Controle du focus sur la page
-function onBlur() {
-  document.body.className = 'blurred';
-}
-
-function onFocus(){
-    document.body.className = 'focused';
-}
-
-if (/*@cc_on!@*/false) { // check for Internet Explorer
-    document.onfocusin = onFocus;
-    document.onfocusout = onBlur;
-} else {
-    window.onfocus = onFocus;
-    window.onblur = onBlur;
-}
-
 // Messages flashs
 var myMessages = ['info','warning','error','success']; // define the messages types	
 
@@ -230,6 +213,22 @@ function explode (delimiter, string, limit) {
 
 $(document).ready(function(){
     
+  // Controle du focus sur la page
+  function onBlur() {
+    document.body.className = 'blurred';
+  }
+
+  function onFocus(){
+      document.body.className = 'focused';
+  }
+
+  if (/*@cc_on!@*/false) { // check for Internet Explorer
+      document.onfocusin = onFocus;
+      document.onfocusout = onBlur;
+  } else {
+      window.onfocus = onFocus;
+      window.onblur = onBlur;
+  }
   
   // Bouton de personalisation du filtre
   // pour le moment ce ne sotn que des redirection vers des actions
@@ -312,14 +311,19 @@ $(document).ready(function(){
 
   // Mise en favoris
   $('a.favorite_link').live("click", function(){
-     link = $(this);
-     $.getJSON($(this).attr('href'), function(response) {
-       img = link.find('img');
-       link.attr('href', response.link_new_url);
-       img.attr('src', response.img_new_src);
-       img.attr('title', response.img_new_title);
-     });
-     return false;
+    link = $(this);
+    $.getJSON($(this).attr('href'), function(response) {
+      if (response.status == 'mustbeconnected')
+      {
+        $(location).attr('href', url_index);
+      }
+      
+      img = link.find('img');
+      link.attr('href', response.link_new_url);
+      img.attr('src', response.img_new_src);
+      img.attr('title', response.img_new_title);
+    });
+    return false;
   });
     
   // Affichage du bouton Modifier et Supprimer
@@ -358,6 +362,11 @@ $(document).ready(function(){
      }
      $('img.elements_more_loader').show();
      $.getJSON(link.attr('href')+'/'+id_last+'/'+invertcolor, function(response) {
+       if (response.status == 'mustbeconnected')
+        {
+          $(location).attr('href', url_index);
+        }
+       
        if (response.count)
        {
          $('ul.elements').append(response.html);
@@ -386,6 +395,11 @@ $(document).ready(function(){
   
   $('form[name="search"]').ajaxForm(function(response) { 
     
+    if (response.status == 'mustbeconnected')
+    {
+      $(location).attr('href', url_index);
+    }
+    
     $('ul.elements').html(response.html);
     
     if (response.count)
@@ -418,6 +432,11 @@ $(document).ready(function(){
       li = link.parent('td').parent('tr').parent().parent().parent('li.element');
       li.find('img.element_loader').show();
       $.getJSON(link.attr('href'), function(response){
+        if (response.status == 'mustbeconnected')
+        {
+          $(location).attr('href', url_index);
+        }
+        
         if (response.status == 'success')
         {
           li.remove();
@@ -458,6 +477,11 @@ $(document).ready(function(){
     
     $.getJSON($(this).attr('href'), function(response) {
       
+      if (response.status == 'mustbeconnected')
+      {
+        $(location).attr('href', url_index);
+      }
+      
       // On prépare le tagBox
       li.html(response.html);
      
@@ -476,6 +500,11 @@ $(document).ready(function(){
       });
       $('form[name="'+response.form_name+'"]').ajaxForm(function(response){
         
+        if (response.status == 'mustbeconnected')
+        {
+          $(location).attr('href', url_index);
+        }
+        
         if (response.status == 'success')
         {
           li.html(response.html);
@@ -567,6 +596,11 @@ $(document).ready(function(){
 
       // Récupération des tags correspondants
       $.getJSON('/app_dev.php/fr/search/tag/'+input.val()+'/'+ajax_query_timestamp, function(data) {
+        if (data.status == 'mustbeconnected')
+        {
+          $(location).attr('href', url_index);
+        }
+        
         // Ce contrôle permet de ne pas continuer si une requete
         // ajax a été faite depuis.
         if (data.timestamp == ajax_query_timestamp)
@@ -768,6 +802,11 @@ $(document).ready(function(){
     $('form[name="add"]').find('img.tag_loader').show();
   });
   $('form[name="add"]').ajaxForm(function(response) {
+    if (response.status == 'mustbeconnected')
+    {
+      $(location).attr('href', url_index);
+    }
+    
     $('form[name="add"] img.tag_loader').hide();
     if (response.status == 'success')
     {
@@ -812,6 +851,11 @@ $(document).ready(function(){
     $('img.elements_more_loader').show();
     $.getJSON($('input#get_elements_url').val()+'/'+array2json(tags_ids), function(response){
       
+      if (response.status == 'mustbeconnected')
+      {
+        $(location).attr('href', url_index);
+      }
+      
       $('ul.elements').html(response.html);
       
       if (response.count)