Skip to content
Snippets Groups Projects
Commit a8ee123b authored by Jean-François Ferry's avatar Jean-François Ferry
Browse files

Add API methods to create, update and delete a thirdparty

parent 64d0a710
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
htdocs/societe/class/api_thirdparty.class.php
+ 57
13
View file @ a8ee123b
...@@ -31,8 +31,7 @@ ...@@ -31,8 +31,7 @@
class ThirdpartyApi extends DolibarrApi { class ThirdpartyApi extends DolibarrApi {
static $FIELDS = array( static $FIELDS = array(
'name', 'name'
'email'
); );
/** /**
...@@ -48,9 +47,13 @@ class ThirdpartyApi extends DolibarrApi { ...@@ -48,9 +47,13 @@ class ThirdpartyApi extends DolibarrApi {
*/ */
function __construct() function __construct()
{ {
global $db; global $db, $conf;
$this->db = $db; $this->db = $db;
$this->company = new Societe($this->db); $this->company = new Societe($this->db);
if (! empty($conf->global->SOCIETE_MAIL_REQUIRED)) {
static::$FIELDS[] = 'email';
}
} }
/** /**
...@@ -146,48 +149,89 @@ class ThirdpartyApi extends DolibarrApi { ...@@ -146,48 +149,89 @@ class ThirdpartyApi extends DolibarrApi {
throw new RestException(404, 'Thirdparties not found'); throw new RestException(404, 'Thirdparties not found');
} }
return $obj_ret; return $obj_ret;
} }
/** /**
* Create thirdparty object * Create thirdparty object
* *
* @url POST thirdparty/ * @url POST thirdparty/
* @param type $request_data * @param array $request_data
* @return type * @return int ID of thirdparty
*/ */
function post($request_data = NULL) function post($request_data = NULL)
{ {
return $this->company->create($this->_validate($request_data)); if(! DolibarrApiAccess::$user->rights->societe->creer) {
throw new RestException(401);
}
// Check mandatory fields
$result = $this->_validate($request_data);
foreach($request_data as $field => $value) {
$this->company->$field = $value;
}
return $this->company->create(DolibarrApiAccess::$user);
} }
/** /**
* Update thirdparty * Update thirdparty
* *
* @url PUT thirdparty/{id} * @url PUT thirdparty/{id}
* @param type $id * @param int $id Id of thirdparty to update
* @param type $request_data * @param array $request_data Datas
* @return type$this->company * @return int
*/ */
function put($id, $request_data = NULL) function put($id, $request_data = NULL)
{ {
return $this->company->update($id, $this->_validate($request_data)); if(! DolibarrApiAccess::$user->rights->societe->creer) {
throw new RestException(401);
}
$result = $this->company->fetch($id);
if( ! $result ) {
throw new RestException(404, 'Thirdparty not found');
}
if( ! DolibarrApi::_checkAccessToResource('societe',$this->company->id)) {
throw new RestException(401, 'Access not allowed for login '.DolibarrApiAccess::$user->login);
}
foreach($request_data as $field => $value) {
$this->company->$field = $value;
}
if($this->company->update($id, DolibarrApiAccess::$user,1,'','','update'))
return $this->get ($id);
return false;
} }
/** /**
* Delete thirdparty * Delete thirdparty
* *
* @url DELETE thirdparty/{id} * @url DELETE thirdparty/{id}
* @param type $id * @param int $id
* @return type * @return type
*/ */
function delete($id) function delete($id)
{ {
if(! DolibarrApiAccess::$user->rights->societe->supprimer) {
throw new RestException(401);
}
$result = $this->company->fetch($id);
if( ! $result ) {
throw new RestException(404, 'Thirdparty not found');
}
if( ! DolibarrApi::_checkAccessToResource('societe',$this->company->id)) {
throw new RestException(401, 'Access not allowed for login '.DolibarrApiAccess::$user->login);
}
return $this->company->delete($id); return $this->company->delete($id);
} }
/** /**
* Validate fields before create or update object * Validate fields before create or update object
* @param type $data * @param array $data
* @return array * @return array
* @throws RestException * @throws RestException
*/ */
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment