/** * @param OrderClass $order * @return array * * @Template */ public function showAction(OrderClass $order) { if ($this->getUser() != $order->getUser()) { throw new AccessDeniedException(); } return ['order' => $order]; }
/** * @param OrderClass $order * @param User $user * @return \Symfony\Component\HttpFoundation\RedirectResponse * * @ParamConverter("user", class="EngiShopBundle:User", isOptional="true", options={"mapping": {"user": "******"}}) */ public function deleteAction(OrderClass $order, User $user = null) { if ($order->isInProcess()) { throw new AccessDeniedException(); } $this->getEm()->remove($order); $this->getEm()->flush(); return $this->redirectToRoute('engishop_admin_order', ['user' => $user ? $user->getId() : null]); }