public function getAction($request, $db)
{
$talk_id = $this->getItemId($request);
// verbosity
$verbose = $this->getVerbosity($request);
// pagination settings
$start = $this->getStart($request);
$resultsperpage = $this->getResultsPerPage($request);
if (isset($request->url_elements[4])) {
// sub elements
if ($request->url_elements[4] == "comments") {
$comment_mapper = new TalkCommentMapper($db, $request);
$list = $comment_mapper->getCommentsByTalkId($talk_id, $resultsperpage, $start, $verbose);
}
} else {
if ($talk_id) {
$mapper = new TalkMapper($db, $request);
$list = $mapper->getTalkById($talk_id, $verbose);
} else {
// listing makes no sense
return false;
}
}
return $list;
}
public function getAction($request, $db)
{
$user_id = $this->getItemId($request);
// verbosity
$verbose = $this->getVerbosity($request);
// pagination settings
$start = $this->getStart($request);
$resultsperpage = $this->getResultsPerPage($request);
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'talks':
$talk_mapper = new TalkMapper($db, $request);
$list = $talk_mapper->getTalksBySpeaker($user_id, $resultsperpage, $start, $request, $verbose);
break;
case 'attended':
$event_mapper = new EventMapper($db, $request);
$list = $event_mapper->getEventsAttendedByUser($user_id, $resultsperpage, $start, $request, $verbose);
break;
default:
throw new InvalidArgumentException('Unknown Subrequest', 404);
break;
}
} else {
$mapper = new UserMapper($db, $request);
if ($user_id) {
$list = $mapper->getUserById($user_id, $verbose);
} else {
$list = $mapper->getUserList($resultsperpage, $start, $verbose);
}
}
return $list;
}
public function getAction($request, $db)
{
$event_id = $this->getItemId($request);
// verbosity
$verbose = $this->getVerbosity($request);
// pagination settings
$start = $this->getStart($request);
$resultsperpage = $this->getResultsPerPage($request);
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'talks':
$talk_mapper = new TalkMapper($db, $request);
$list = $talk_mapper->getTalksByEventId($event_id, $resultsperpage, $start, $request, $verbose);
break;
case 'comments':
$event_comment_mapper = new EventCommentMapper($db, $request);
$list = $event_comment_mapper->getEventCommentsByEventId($event_id, $resultsperpage, $start, $verbose);
break;
case 'talk_comments':
$sort = $this->getSort($request);
$talk_comment_mapper = new TalkCommentMapper($db, $request);
$list = $talk_comment_mapper->getCommentsByEventId($event_id, $resultsperpage, $start, $verbose, $sort);
break;
default:
throw new InvalidArgumentException('Unknown Subrequest', 404);
break;
}
} else {
$mapper = new EventMapper($db, $request);
if ($event_id) {
$list = $mapper->getEventById($event_id, $verbose);
} else {
// check if we're filtering
if (isset($request->parameters['filter'])) {
switch ($request->parameters['filter']) {
case "hot":
$list = $mapper->getHotEventList($resultsperpage, $start, $verbose);
break;
case "upcoming":
$list = $mapper->getUpcomingEventList($resultsperpage, $start, $verbose);
break;
case "past":
$list = $mapper->getPastEventList($resultsperpage, $start, $verbose);
break;
case "cfp":
$list = $mapper->getOpenCfPEventList($resultsperpage, $start, $verbose);
break;
default:
throw new InvalidArgumentException('Unknown event filter', 404);
break;
}
} else {
$list = $mapper->getEventList($resultsperpage, $start, $verbose);
}
}
}
return $list;
}
public function getAction($request, $db)
{
$user_id = $this->getItemId($request);
// verbosity
$verbose = $this->getVerbosity($request);
// pagination settings
$start = $this->getStart($request);
$resultsperpage = $this->getResultsPerPage($request);
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'talks':
$talk_mapper = new TalkMapper($db, $request);
$talks = $talk_mapper->getTalksBySpeaker($user_id, $resultsperpage, $start);
$list = $talks->getOutputView($request, $verbose);
break;
case 'hosted':
$event_mapper = new EventMapper($db, $request);
$list = $event_mapper->getEventsHostedByUser($user_id, $resultsperpage, $start, $verbose);
break;
case 'attended':
$event_mapper = new EventMapper($db, $request);
$list = $event_mapper->getEventsAttendedByUser($user_id, $resultsperpage, $start, $verbose);
break;
case 'talk_comments':
$talkComment_mapper = new TalkCommentMapper($db, $request);
$list = $talkComment_mapper->getCommentsByUserId($user_id, $resultsperpage, $start, $verbose);
break;
default:
throw new InvalidArgumentException('Unknown Subrequest', 404);
break;
}
} else {
$mapper = new UserMapper($db, $request);
if ($user_id) {
$list = $mapper->getUserById($user_id, $verbose);
if (count($list['users']) == 0) {
throw new Exception('User not found', 404);
}
} else {
if (isset($request->parameters['username'])) {
$username = filter_var($request->parameters['username'], FILTER_SANITIZE_STRING);
$list = $mapper->getUserByUsername($username, $verbose);
if ($list === false) {
throw new Exception('Username not found', 404);
}
} else {
$list = $mapper->getUserList($resultsperpage, $start, $verbose);
}
}
}
return $list;
}
public function getAction($request, $db)
{
$event_id = $this->getItemId($request);
// verbosity
$verbose = $this->getVerbosity($request);
// pagination settings
$start = $this->getStart($request);
$resultsperpage = $this->getResultsPerPage($request);
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'talks':
$talk_mapper = new TalkMapper($db, $request);
$list = $talk_mapper->getTalksByEventId($event_id, $resultsperpage, $start, $verbose);
break;
case 'comments':
$event_comment_mapper = new EventCommentMapper($db, $request);
$list = $event_comment_mapper->getEventCommentsByEventId($event_id, $resultsperpage, $start, $verbose);
break;
case 'talk_comments':
$sort = $this->getSort($request);
$talk_comment_mapper = new TalkCommentMapper($db, $request);
$list = $talk_comment_mapper->getCommentsByEventId($event_id, $resultsperpage, $start, $verbose, $sort);
break;
case 'attendees':
$user_mapper = new UserMapper($db, $request);
$list = $user_mapper->getUsersAttendingEventId($event_id, $resultsperpage, $start, $verbose);
break;
case 'attending':
$mapper = new EventMapper($db, $request);
$list = $mapper->getUserAttendance($event_id, $request->user_id);
break;
case 'tracks':
$mapper = new TrackMapper($db, $request);
$list = $mapper->getTracksByEventId($event_id, $resultsperpage, $start, $verbose);
break;
default:
throw new InvalidArgumentException('Unknown Subrequest', 404);
break;
}
} else {
$mapper = new EventMapper($db, $request);
$user_mapper = new UserMapper($db, $request);
$isSiteAdmin = $user_mapper->isSiteAdmin($request->user_id);
$activeEventsOnly = $isSiteAdmin ? false : true;
if ($event_id) {
$list = $mapper->getEventById($event_id, $verbose, $activeEventsOnly);
if (count($list['events']) == 0) {
throw new Exception('Event not found', 404);
}
} else {
// handle the filter parameters
$params = array();
// collection type filter
$filters = array("hot", "upcoming", "past", "cfp", "pending");
if (isset($request->parameters['filter']) && in_array($request->parameters['filter'], $filters)) {
$params["filter"] = $request->parameters['filter'];
// for pending events we need a logged in user with the correct permissions
if ($params["filter"] == 'pending') {
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to view pending events", 400);
}
$user_mapper = new UserMapper($db, $request);
$canApproveEvents = $user_mapper->isSiteAdmin($request->user_id);
if (!$canApproveEvents) {
throw new Exception("You don't have permission to view pending events", 403);
}
}
}
if (isset($request->parameters['title'])) {
$title = filter_var($request->parameters['title'], FILTER_SANITIZE_STRING);
$params["title"] = $title;
}
if (isset($request->parameters['stub'])) {
$stub = filter_var($request->parameters['stub'], FILTER_SANITIZE_STRING);
$params["stub"] = $stub;
}
if (isset($request->parameters['tags'])) {
// if it isn't an array, make it one
if (is_array($request->parameters['tags'])) {
foreach ($request->parameters['tags'] as $t) {
$tags[] = filter_var(trim($t), FILTER_SANITIZE_STRING);
}
} else {
$tags = array(filter_var(trim($request->parameters['tags']), FILTER_SANITIZE_STRING));
}
$params["tags"] = $tags;
}
if (isset($request->parameters['startdate'])) {
$start_datetime = new DateTime($request->parameters['startdate']);
if ($start_datetime) {
$params["startdate"] = $start_datetime->format("U");
}
}
if (isset($request->parameters['enddate'])) {
$end_datetime = new DateTime($request->parameters['enddate']);
if ($end_datetime) {
$params["enddate"] = $end_datetime->format("U");
}
}
$list = $mapper->getEventList($resultsperpage, $start, $params, $verbose);
}
}
return $list;
}
/**
* Create a talk
*
* This method creates a new talk after being called via the URL
* "/events/[eventId]/talks"
*
* @param Request $request
* @param PDO $db
*
* @throws Exception
* @return array|bool
*/
public function createTalkAction(Request $request, PDO $db)
{
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to create data", 400);
}
$talk['event_id'] = $this->getItemId($request);
if (empty($talk['event_id'])) {
throw new Exception("POST expects a talk representation sent to a specific event URL", 400);
}
$event_mapper = new EventMapper($db, $request);
$talk_mapper = new TalkMapper($db, $request);
$talk_type_mapper = new TalkTypeMapper($db, $request);
$is_admin = $event_mapper->thisUserHasAdminOn($talk['event_id']);
if (!$is_admin) {
throw new Exception("You do not have permission to add talks to this event", 400);
}
// get the event so we can get the timezone info
$list = $event_mapper->getEventById($talk['event_id'], true);
if (count($list['events']) == 0) {
throw new Exception('Event not found', 404);
}
$event = $list['events'][0];
$talk['title'] = filter_var($request->getParameter('talk_title'), FILTER_SANITIZE_STRING);
if (empty($talk['title'])) {
throw new Exception("The talk title field is required", 400);
}
$talk['description'] = filter_var($request->getParameter('talk_description'), FILTER_SANITIZE_STRING);
if (empty($talk['description'])) {
throw new Exception("The talk description field is required", 400);
}
$talk['type'] = filter_var($request->getParameter('type', 'Talk'), FILTER_SANITIZE_STRING);
$talk_types = $talk_type_mapper->getTalkTypesLookupList();
if (!array_key_exists($talk['type'], $talk_types)) {
throw new Exception("The type '{$talk['type']}' is unknown", 400);
}
$talk['type_id'] = $talk_types[$talk['type']];
$start_date = filter_var($request->getParameter('start_date'), FILTER_SANITIZE_STRING);
if (empty($start_date)) {
throw new Exception("Please give the date and time of the talk", 400);
}
$tz = new DateTimeZone($event['tz_continent'] . '/' . $event['tz_place']);
$talk['date'] = (new DateTime($start_date, $tz))->format('U');
$talk['language'] = filter_var($request->getParameter('language'), FILTER_SANITIZE_STRING);
if (empty($talk['language'])) {
// default to UK English
$talk['language'] = 'English - UK';
}
// When the language doesn't exist, the talk will not be found
$language_mapper = new LanguageMapper($db, $request);
if (!$language_mapper->isLanguageValid($talk['language'])) {
throw new Exception("The language '{$talk['type']}' is unknown", 400);
}
$talk['duration'] = filter_var($request->getParameter('duration'), FILTER_SANITIZE_NUMBER_INT);
if (empty($talk['duration'])) {
$talk['duration'] = 60;
}
$talk['slides_link'] = filter_var($request->getParameter('slides_link'), FILTER_SANITIZE_URL);
$talk['speakers'] = array_map(function ($speaker) {
$speaker = filter_var($speaker, FILTER_SANITIZE_STRING);
$speaker = trim($speaker);
return $speaker;
}, (array) $request->getParameter('speakers'));
$new_id = $talk_mapper->createTalk($talk);
// Update the cache count for the number of talks at this event
$event_mapper->cacheTalkCount($talk['event_id']);
$uri = $request->base . '/' . $request->version . '/talks/' . $new_id;
header("Location: " . $uri, true, 201);
$new_talk = $talk_mapper->getTalkById($new_id);
return $new_talk;
}
protected function getTalkById($db, $request, $talk_id, $verbose = false)
{
$mapper = new TalkMapper($db, $request);
$list = $mapper->getTalkById($talk_id, $verbose);
if (false === $list) {
throw new Exception('Talk not found', 404);
}
return $list;
}
public function postAction($request, $db)
{
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to create data", 400);
}
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'attending':
// the body of this request is completely irrelevant
// The logged in user *is* attending the event. Use DELETE to unattend
$event_id = $this->getItemId($request);
$event_mapper = new EventMapper($db, $request);
$event_mapper->setUserAttendance($event_id, $request->user_id);
header("Location: " . $request->base . $request->path_info, NULL, 201);
return;
case 'talks':
$talk['event_id'] = $this->getItemId($request);
if (empty($talk['event_id'])) {
throw new Exception("POST expects a talk representation sent to a specific event URL", 400);
}
$event_mapper = new EventMapper($db, $request);
$is_admin = $event_mapper->thisUserHasAdminOn($talk['event_id']);
if (!$is_admin) {
throw new Exception("You do not have permission to add talks to this event", 400);
}
// get the event so we can get the timezone info
$list = $event_mapper->getEventById($talk['event_id'], true);
if (count($list['events']) == 0) {
throw new Exception('Event not found', 404);
}
$event = $list['events'][0];
$talk['title'] = filter_var($request->getParameter('talk_title'), FILTER_SANITIZE_STRING);
if (empty($talk['title'])) {
throw new Exception("The talk title field is required", 400);
}
$talk['description'] = filter_var($request->getParameter('talk_description'), FILTER_SANITIZE_STRING);
if (empty($talk['description'])) {
throw new Exception("The talk description field is required", 400);
}
$talk_types = array("Talk", "Social event", "Keynote", "Workshop", "Event related");
if ($request->getParameter("talk_type") && in_array($request->getParameter("talk_type"), $talk_types)) {
$talk['talk_type'] = $request->getParameter("talk_type");
} else {
$talk['talk_type'] = "Talk";
}
$talk['language'] = filter_var($request->getParameter('language'), FILTER_SANITIZE_STRING);
if (empty($talk['language'])) {
// default to UK English
$talk['language'] = 'English - UK';
}
$start_date = $request->getParameter('start_date');
if (empty($start_date)) {
throw new Exception("Please give the date and time of the talk", 400);
}
$tz = new DateTimeZone($event['tz_continent'] . '/' . $event['tz_place']);
$start_date = new DateTime($request->getParameter("start_date"), $tz);
$talk['date'] = $start_date->format('U');
$speakers = $request->getParameter('speakers');
if (is_array($speakers)) {
foreach ($speakers as $speaker) {
$talk['speakers'][] = filter_var($speaker, FILTER_SANITIZE_STRING);
}
}
$talk_mapper = new TalkMapper($db, $request);
$new_id = $talk_mapper->save($talk);
// Update the cache count for the number of talks at this event
$event_mapper->cacheTalkCount($talk['event_id']);
header("Location: " . $request->base . $request->path_info . '/' . $new_id, NULL, 201);
$new_talk = $talk_mapper->getTalkById($new_id);
return $new_talk;
default:
throw new Exception("Operation not supported, sorry", 404);
}
} else {
// Create a new event, pending unless user has privs
// incoming data
$event = array();
$errors = array();
$event['name'] = filter_var($request->getParameter("name"), FILTER_SANITIZE_STRING);
if (empty($event['name'])) {
$errors[] = "'name' is a required field";
}
$event['description'] = filter_var($request->getParameter("description"), FILTER_SANITIZE_STRING);
if (empty($event['description'])) {
$errors[] = "'description' is a required field";
}
$event['location'] = filter_var($request->getParameter("location"), FILTER_SANITIZE_STRING);
if (empty($event['location'])) {
$errors[] = "'location' is a required field (for virtual events, 'online' works)";
}
$start_date = strtotime($request->getParameter("start_date"));
$end_date = strtotime($request->getParameter("end_date"));
if (!$start_date || !$end_date) {
$errors[] = "Both 'start_date' and 'end_date' must be supplied in a recognised format";
} else {
// if the dates are okay, sort out timezones
$event['tz_continent'] = filter_var($request->getParameter("tz_continent"), FILTER_SANITIZE_STRING);
$event['tz_place'] = filter_var($request->getParameter("tz_place"), FILTER_SANITIZE_STRING);
try {
// make the timezone, and read in times with respect to that
$tz = new DateTimeZone($event['tz_continent'] . '/' . $event['tz_place']);
$start_date = new DateTime($request->getParameter("start_date"), $tz);
$end_date = new DateTime($request->getParameter("end_date"), $tz);
$event['start_date'] = $start_date->format('U');
$event['end_date'] = $end_date->format('U');
} catch (Exception $e) {
// the time zone isn't right
$errors[] = "The fields 'tz_continent' and 'tz_place' must be supplied and valid (e.g. Europe and London)";
}
}
// optional fields - only check if we have no errors as we may need
// access to $tz.
if (!$errors) {
$href = filter_var($request->getParameter("href"), FILTER_VALIDATE_URL);
if ($href) {
$event['href'] = $href;
}
$cfp_url = filter_var($request->getParameter("cfp_url"), FILTER_VALIDATE_URL);
if ($cfp_url) {
$event['cfp_url'] = $cfp_url;
}
$cfp_start_date = strtotime($request->getParameter("cfp_start_date"));
if ($cfp_start_date) {
$cfp_start_date = new DateTime($request->getParameter("cfp_start_date"), $tz);
$event['cfp_start_date'] = $cfp_start_date->format('U');
}
$cfp_end_date = strtotime($request->getParameter("cfp_end_date"));
if ($cfp_end_date) {
$cfp_end_date = new DateTime($request->getParameter("cfp_end_date"), $tz);
$event['cfp_end_date'] = $cfp_end_date->format('U');
}
$latitude = filter_var($request->getParameter("latitude"), FILTER_SANITIZE_NUMBER_FLOAT, FILTER_FLAG_ALLOW_FRACTION);
if ($latitude) {
$event['latitude'] = $latitude;
}
$longitude = filter_var($request->getParameter("longitude"), FILTER_SANITIZE_NUMBER_FLOAT, FILTER_FLAG_ALLOW_FRACTION);
if ($longitude) {
$event['longitude'] = $longitude;
}
$incoming_tag_list = $request->getParameter('tags');
if (is_array($incoming_tag_list)) {
$tags = array_map(function ($tag) {
$tag = filter_var($tag, FILTER_SANITIZE_STRING);
$tag = trim($tag);
$tag = strtolower($tag);
return $tag;
}, $incoming_tag_list);
}
}
// How does it look? With no errors, we can proceed
if ($errors) {
throw new Exception(implode(". ", $errors), 400);
} else {
$user_mapper = new UserMapper($db, $request);
$event_mapper = new EventMapper($db, $request);
$event_owner = $user_mapper->getUserById($request->user_id);
$event['contact_name'] = $event_owner['users'][0]['full_name'];
// When a site admin creates an event, we want to approve it immediately
$approveEventOnCreation = $user_mapper->isSiteAdmin($request->user_id);
// Do we want to automatically approve when testing?
if (isset($this->config['features']['allow_auto_approve_events']) && $this->config['features']['allow_auto_approve_events']) {
if ($request->getParameter("auto_approve_event") == "true") {
// The test suite sends this extra field, if we got
// this far then this platform supports this
$approveEventOnCreation = true;
}
}
if ($approveEventOnCreation) {
$event_id = $event_mapper->createEvent($event, true);
// redirect to event listing
header("Location: " . $request->base . $request->path_info . '/' . $event_id, NULL, 201);
} else {
$event_id = $event_mapper->createEvent($event);
// set status to accepted; a pending event won't be visible
header("Location: " . $request->base . $request->path_info, NULL, 202);
}
// now set the current user as host and attending
$event_mapper->addUserAsHost($event_id, $request->user_id);
$event_mapper->setUserAttendance($event_id, $request->user_id);
if (isset($tags)) {
$event_mapper->setTags($event_id, $tags);
}
// Send an email if we didn't auto-approve
if (!$user_mapper->isSiteAdmin($request->user_id)) {
$event = $event_mapper->getPendingEventById($event_id, true);
$count = $event_mapper->getPendingEventsCount();
$recipients = $user_mapper->getSiteAdminEmails();
$emailService = new EventSubmissionEmailService($this->config, $recipients, $event, $count);
$emailService->sendEmail();
}
exit;
}
}
}
/**
* Edit a talk
*
* Edit talk after being called via the URL "/talks/[talkId]"
*
* @param Request $request
* @param PDO $db
*
* @throws Exception
* @return void
*/
public function editTalk(Request $request, PDO $db)
{
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to create data", 400);
}
$talk_id = $this->getItemId($request);
$talk_mapper = new TalkMapper($db, $request);
$talk = $talk_mapper->getTalkById($talk_id);
if (!$talk) {
throw new Exception("Talk not found", 404);
}
$is_admin = $talk_mapper->thisUserHasAdminOn($talk_id);
$is_speaker = $talk_mapper->isUserASpeakerOnTalk($talk_id, $request->user_id);
if (!($is_admin || $is_speaker)) {
throw new Exception("You do not have permission to update this talk", 403);
}
// retrieve the talk data from the request
$data = $this->getTalkDataFromRequest($db, $request, $talk->event_id);
// edit the talk
$talk_mapper->editTalk($data, $talk_id);
header("Location: " . $request->base . $request->path_info, null, 204);
exit;
}
/**
* Create a talk
*
* @param Request $request
* @param PDO $db
*
* @throws Exception
* @return array|bool
*/
public function createTalkAction(Request $request, PDO $db)
{
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to create data", 400);
}
$talk['event_id'] = $this->getItemId($request);
if (empty($talk['event_id'])) {
throw new Exception("POST expects a talk representation sent to a specific event URL", 400);
}
$event_mapper = new EventMapper($db, $request);
$is_admin = $event_mapper->thisUserHasAdminOn($talk['event_id']);
if (!$is_admin) {
throw new Exception("You do not have permission to add talks to this event", 400);
}
// get the event so we can get the timezone info
$list = $event_mapper->getEventById($talk['event_id'], true);
if (count($list['events']) == 0) {
throw new Exception('Event not found', 404);
}
$event = $list['events'][0];
$talk['title'] = filter_var($request->getParameter('talk_title'), FILTER_SANITIZE_STRING);
if (empty($talk['title'])) {
throw new Exception("The talk title field is required", 400);
}
$talk['description'] = filter_var($request->getParameter('talk_description'), FILTER_SANITIZE_STRING);
if (empty($talk['description'])) {
throw new Exception("The talk description field is required", 400);
}
$talk_types = array("Talk", "Social event", "Keynote", "Workshop", "Event related");
if ($request->getParameter("talk_type") && in_array($request->getParameter("talk_type"), $talk_types)) {
$talk['talk_type'] = $request->getParameter("talk_type");
} else {
$talk['talk_type'] = "Talk";
}
$talk['language'] = filter_var($request->getParameter('language'), FILTER_SANITIZE_STRING);
if (empty($talk['language'])) {
// default to UK English
$talk['language'] = 'English - UK';
}
$start_date = $request->getParameter('start_date');
if (empty($start_date)) {
throw new Exception("Please give the date and time of the talk", 400);
}
$tz = new DateTimeZone($event['tz_continent'] . '/' . $event['tz_place']);
$start_date = new DateTime($request->getParameter("start_date"), $tz);
$talk['date'] = $start_date->format('U');
$speakers = $request->getParameter('speakers');
if (is_array($speakers)) {
foreach ($speakers as $speaker) {
$talk['speakers'][] = filter_var($speaker, FILTER_SANITIZE_STRING);
}
}
$talk_mapper = new TalkMapper($db, $request);
$new_id = $talk_mapper->save($talk);
// Update the cache count for the number of talks at this event
$event_mapper->cacheTalkCount($talk['event_id']);
header("Location: " . $request->base . $request->path_info . '/' . $new_id, null, 201);
$new_talk = $talk_mapper->getTalkById($new_id);
return $new_talk;
}
public function postAction($request, $db)
{
if (!isset($request->user_id)) {
throw new Exception("You must be logged in to create data", 400);
}
if (isset($request->url_elements[4])) {
switch ($request->url_elements[4]) {
case 'talks':
$talk['event_id'] = $this->getItemId($request);
if (empty($talk['event_id'])) {
throw new Exception("POST expects a talk representation sent to a specific event URL", 400);
}
$event_mapper = new EventMapper($db, $request);
$is_admin = $event_mapper->thisUserHasAdminOn($talk['event_id']);
if (!$is_admin) {
throw new Exception("You do not have permission to add talks to this event", 400);
}
$talk['title'] = filter_var($request->getParameter('talk_title'), FILTER_SANITIZE_STRING);
if (empty($talk['title'])) {
throw new Exception("The talk title field is required", 400);
}
$talk['description'] = filter_var($request->getParameter('talk_description'), FILTER_SANITIZE_STRING);
if (empty($talk['description'])) {
throw new Exception("The talk description field is required", 400);
}
$talk['language'] = filter_var($request->getParameter('language'), FILTER_SANITIZE_STRING);
if (empty($talk['language'])) {
// default to UK English
$talk['language'] = 'English - UK';
}
$talk['date'] = new DateTime($request->getParameter('start_date'));
$speakers = $request->getParameter('speakers');
if (is_array($speakers)) {
foreach ($speakers as $speaker) {
$talk['speakers'][] = filter_var($speaker, FILTER_SANITIZE_STRING);
}
}
$talk_mapper = new TalkMapper($db, $request);
$new_id = $talk_mapper->save($talk);
header("Location: " . $request->base . $request->path_info . '/' . $new_id, NULL, 201);
$new_talk = $talk_mapper->getTalkById($new_id);
return $new_talk;
default:
throw new Exception("Operation not supported, sorry", 404);
}
} else {
throw new Exception("Operation not supported, sorry", 404);
}
}
