sipwise
/
ngcp-panel
mirror of https://github.com/sipwise/ngcp-panel.git
1
0
Fork 0
Code Issues Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'dda5ffe48f'
${ noResults }
ngcp-panel/lib/NGCP/Panel/Role/API/Subscribers.pm

817 lines
32 KiB
Raw Blame History

package NGCP::Panel::Role::API::Subscribers;
use NGCP::Panel::Utils::Generic qw(:all);
use Sipwise::Base;
use parent 'NGCP::Panel::Role::API';
use boolean qw(true);
use Data::HAL qw();
use Data::HAL::Link qw();
use HTTP::Status qw(:constants);
use JSON::Types;
use Test::More;
use NGCP::Panel::Form;
use NGCP::Panel::Utils::XMLDispatcher;
use NGCP::Panel::Utils::Prosody;
use NGCP::Panel::Utils::Subscriber;
use NGCP::Panel::Utils::Events;
use NGCP::Panel::Utils::DateTime;
sub resource_name{
return 'subscribers';
}
sub dispatch_path{
return '/api/subscribers/';
}
sub relation{
return 'http://purl.org/sipwise/ngcp-api/#rel-subscribers';
}
sub get_form {
my ($self, $c) = @_;
if($c->user->roles eq "admin" || $c->user->roles eq "reseller") {
return (NGCP::Panel::Form::get("NGCP::Panel::Form::Subscriber::SubscriberAPI", $c));
} elsif($c->user->roles eq "subscriberadmin" || $c->user->roles eq "subscriber") {
return (NGCP::Panel::Form::get("NGCP::Panel::Form::Subscriber::SubscriberSubAdminAPI", $c));
}
}
sub resource_from_item {
my ($self, $c, $item, $form) = @_;
my $pref;
my $bill_resource = { $item->get_inflated_columns };
my $prov_resource = { $item->provisioning_voip_subscriber->get_inflated_columns };
my $customer = $self->get_customer($c, $item->contract_id);
delete $prov_resource->{domain_id};
delete $prov_resource->{account_id};
my %resource = %{ merge($bill_resource, $prov_resource) };
$resource{administrative} = delete $resource{admin};
unless($customer->product->class eq 'pbxaccount') {
delete $resource{is_pbx_group};
delete $resource{is_pbx_pilot};
delete $resource{pbx_extension};
}
unless(is_true($resource{is_pbx_group})) {
delete $resource{pbx_hunt_policy};
delete $resource{cloud_pbx_hunt_policy};
delete $resource{pbx_hunt_timeout};
delete $resource{cloud_pbx_hunt_timeout};
}
delete $resource{contact_id};
if($item->contact) {
$resource{email} = $item->contact->email;
$resource{timezone} = $item->contact->timezone;
} else {
$resource{email} = undef;
$resource{timezone} = undef;
}
if(!$form){
($form) = $self->get_form($c);
}
last unless $self->validate_form(
c => $c,
resource => \%resource,
form => $form,
run => 0,
);
if($customer->product->class eq 'pbxaccount') {
$resource{pbx_group_ids} = [];
foreach my $group($item->provisioning_voip_subscriber->voip_pbx_groups->search_rs(undef,{'order_by' => 'me.id'})->all) {
push @{ $resource{pbx_group_ids} }, int($group->group->voip_subscriber->id);
}
if($item->provisioning_voip_subscriber->is_pbx_group) {
$resource{pbx_groupmember_ids} = [];
foreach my $member($item->provisioning_voip_subscriber->voip_pbx_group_members->search_rs(undef,{'order_by' => 'me.id'})->all) {
push @{ $resource{pbx_groupmember_ids} }, int($member->subscriber->voip_subscriber->id);
}
}
}
if($item->primary_number) {
$resource{primary_number}->{cc} = $item->primary_number->cc;
$resource{primary_number}->{ac} = $item->primary_number->ac;
$resource{primary_number}->{sn} = $item->primary_number->sn;
$resource{primary_number}->{number_id} = int($item->primary_number->id);
}
if($item->voip_numbers->count) {
$resource{alias_numbers} = [];
foreach my $n($item->voip_numbers->all) {
my $alias = {
cc => $n->cc,
ac => $n->ac,
sn => $n->sn,
number_id => int($n->id),
};
next if($resource{primary_number} &&
compare($resource{primary_number}, $alias));
if (defined $n->voip_dbalias) {
$alias->{is_devid} = bool $n->voip_dbalias->is_devid;
$alias->{devid_alias} = $n->voip_dbalias->devid_alias;
}
push @{ $resource{alias_numbers} }, $alias;
}
}
$pref = NGCP::Panel::Utils::Preferences::get_usr_preference_rs(
c => $c, attribute => 'display_name',
prov_subscriber => $item->provisioning_voip_subscriber);
if($pref->first && $pref->first->value) {
$resource{display_name} = $pref->first->value;
} else {
$resource{display_name} = undef;
}
$resource{id} = int($item->id);
$resource{domain} = $item->domain->domain;
# don't leak internal info to subscribers via API for those fields
# not filtered via forms
my $contract_id = int(delete $resource{contract_id});
if ($c->user->roles eq "admin" || $c->user->roles eq "reseller") {
$resource{customer_id} = $contract_id;
$resource{uuid} = $item->uuid;
my $pref = NGCP::Panel::Utils::Preferences::get_usr_preference_rs(
c => $c, attribute => 'lock',
prov_subscriber => $item->provisioning_voip_subscriber);
$resource{lock} = 0;
if($pref->first and length($pref->first->value) > 0) {
#cast to Numeric accordingly to the form field type and customer note in the ticket #10313
$resource{lock} = $pref->first->value;
}else{
$resource{lock} = undef;
}
} else {
if (!$self->subscriberadmin_write_access($c)) {
# fields we never want to see
foreach my $k(qw/domain_id status profile_id profile_set_id external_id/) {
delete $resource{$k};
}
# TODO: make custom filtering configurable!
foreach my $k(qw/password webpassword/) {
delete $resource{$k};
}
}
if($c->user->roles eq "subscriberadmin") {
$resource{customer_id} = $contract_id;
}
}
return \%resource;
}
sub hal_from_item {
my ($self, $c, $item, $resource, $form) = @_;
my $is_sub = 1;
if($c->user->roles eq "admin" || $c->user->roles eq "reseller") {
$is_sub = 0;
}
my $is_subadm = 1;
if($c->user->roles eq "subscriber") {
$is_subadm = 0;
}
my $hal = Data::HAL->new(
links => [
Data::HAL::Link->new(
relation => 'curies',
href => 'http://purl.org/sipwise/ngcp-api/#rel-{rel}',
name => 'ngcp',
templated => true,
),
Data::HAL::Link->new(relation => 'collection', href => sprintf("/api/%s/", $self->resource_name)),
Data::HAL::Link->new(relation => 'profile', href => 'http://purl.org/sipwise/ngcp-api/'),
Data::HAL::Link->new(relation => 'self', href => sprintf("%s%d", $self->dispatch_path, $item->id)),
# available also to subscribers
Data::HAL::Link->new(relation => 'ngcp:subscriberpreferences', href => sprintf("/api/subscriberpreferences/%d", $item->id)),
Data::HAL::Link->new(relation => 'ngcp:voicemailsettings', href => sprintf("/api/voicemailsettings/%d", $item->id)),
Data::HAL::Link->new(relation => 'ngcp:reminders', href => sprintf("/api/reminders/?subscriber_id=%d", $item->id)),
Data::HAL::Link->new(relation => 'ngcp:callforwards', href => sprintf("/api/callforwards/%d", $item->id)),
# only available to admins/resellers
($is_sub ? () : (
($item->provisioning_voip_subscriber && $item->provisioning_voip_subscriber->profile_set_id) ? (Data::HAL::Link->new(relation => 'ngcp:subscriberprofilesets', href => sprintf("/api/subscriberprofilesets/%d", $item->provisioning_voip_subscriber->profile_set_id))) : (),
($item->provisioning_voip_subscriber && $item->provisioning_voip_subscriber->profile_id) ? (Data::HAL::Link->new(relation => 'ngcp:subscriberprofiles', href => sprintf("/api/subscriberprofiles/%d", $item->provisioning_voip_subscriber->profile_id))) : (),
Data::HAL::Link->new(relation => 'ngcp:domains', href => sprintf("/api/domains/%d", $item->domain->id)),
Data::HAL::Link->new(relation => 'ngcp:calls', href => sprintf("/api/calls/?subscriber_id=%d", $item->id)),
Data::HAL::Link->new(relation => 'ngcp:subscriberregistrations', href => sprintf("/api/subscriberregistrations/?subscriber_id=%d", $item->id)),
#Data::HAL::Link->new(relation => 'ngcp:trustedsources', href => sprintf("/api/trustedsources/%d", $item->contract->id)),
$self->get_journal_relation_link($c, $item->id),
)),
# only available to admins/resellers/subscriberadmins
(!$is_subadm ? () : (
Data::HAL::Link->new(relation => 'ngcp:customers', href => sprintf("/api/customers/%d", $item->contract_id)),
)),
],
relation => 'ngcp:'.$self->resource_name,
);
$hal->resource($resource);
return $hal;
}
sub _item_rs {
my ($self, $c) = @_;
my $item_rs;
$item_rs = $c->model('DB')->resultset('voip_subscribers')
->search({ 'me.status' => { '!=' => 'terminated' } });
if($c->user->roles eq "admin") {
$item_rs = $item_rs->search(undef,
{
join => { 'contract' => 'contact' }, #for filters
});
} elsif($c->user->roles eq "reseller") {
$item_rs = $item_rs->search({
'contact.reseller_id' => $c->user->reseller_id,
}, {
join => { 'contract' => 'contact' },
});
} elsif($c->user->roles eq "subscriberadmin") {
$item_rs = $item_rs->search({
'contract_id' => $c->user->account_id,
});
} elsif($c->user->roles eq "subscriber") {
$item_rs = $item_rs->search({
#voip_subscriber is a provisioning.voip_subscribers relation
#$c->user is provisioning.voip_subscribers, so we use ->voip_subscriber->id and compare to billing.voip-subscribers.
'me.id' => $c->user->voip_subscriber->id,
});
} else {
$self->error($c, HTTP_FORBIDDEN, "Invalid authentication role");
return;
}
return $item_rs;
}
sub item_by_id {
my ($self, $c, $id) = @_;
my $item_rs = $self->item_rs($c);
return $item_rs->find($id);
}
sub get_customer {
my ($self, $c, $customer_id) = @_;
my $customer_rs = NGCP::Panel::Utils::Contract::get_contract_rs(
schema => $c->model('DB'),
contract_id => $customer_id,
);
$customer_rs = $customer_rs->search({
'contact.reseller_id' => { '-not' => undef },
'me.id' => $customer_id,
},{
join => 'contact',
});
$customer_rs = $customer_rs->search({
'-or' => [
'product.class' => 'sipaccount',
'product.class' => 'pbxaccount',
],
},undef);
if($c->user->roles eq "admin") {
} elsif($c->user->roles eq "reseller") {
$customer_rs = $customer_rs->search({
'contact.reseller_id' => $c->user->reseller_id,
});
}
my $customer = $customer_rs->first;
unless($customer) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid 'customer_id', doesn't exist.");
return;
}
return $customer;
}
sub prepare_resource {
my ($self, $c, $schema, $resource, $item) = @_;
my $groups = [];
my $groupmembers = [];
my $domain;
if(($c->user->roles eq "admin" || $c->user->roles eq "reseller") && $resource->{domain}) {
$domain = $schema->resultset('domains')
->search({ domain => $resource->{domain} });
if($c->user->roles eq "admin") {
} elsif($c->user->roles eq "reseller") {
$domain = $domain->search({
'domain_resellers.reseller_id' => $c->user->reseller_id,
}, {
join => 'domain_resellers',
});
}
$domain = $domain->first;
unless($domain) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid 'domain', doesn't exist.");
return;
}
delete $resource->{domain};
$resource->{domain_id} = $domain->id;
} elsif($c->user->roles eq "subscriberadmin") {
my $pilot = $schema->resultset('provisioning_voip_subscribers')->search({
account_id => $c->user->account_id,
is_pbx_pilot => 1,
})->first;
if($pilot) {
$domain = $pilot->voip_subscriber->domain;
delete $resource->{domain};
$resource->{domain_id} = $domain->id;
} else {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Unable to find PBX pilot for this customer.");
return;
}
$resource->{customer_id} = $pilot->account_id;
$resource->{status} = 'active';
#deny to create subscriberadmin, the same as in the web ui
$resource->{administrative} = $item ? $item->provisioning_voip_subscriber->admin : 0;
}
$resource->{e164} = delete $resource->{primary_number};
$resource->{status} //= 'active';
$resource->{administrative} //= 0;
$resource->{is_pbx_pilot} //= 0;
$resource->{profile_set}{id} = delete $resource->{profile_set_id};
$resource->{profile}{id} = delete $resource->{profile_id};
my $subscriber_id = $item ? $item->id : 0;
if(defined $resource->{e164}) {
if( ref $resource->{e164} ne "HASH"){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, 'Invalid primary_number parameter, must be a hash.');
return;
} else {
delete $resource->{e164}->{number_id};
}
}
if(exists $resource->{alias_numbers}) {
if( ref $resource->{alias_numbers} ne "ARRAY"){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, 'Invalid alias_number parameter, must be an array.');
return;
}
foreach my $alias_number (@{$resource->{alias_numbers}}){
if( ref $alias_number ne "HASH"){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, 'Invalid alias_number parameter, must be an array of the hashes.');
return;
} else {
delete $alias_number->{number_id};
}
}
}
my ($form) = $self->get_form($c);
return unless $self->validate_form(
c => $c,
resource => $resource,
form => $form,
);
# this format is expected by NGCP::Panel::Utils::Subscriber::create_subscriber
$resource->{alias_numbers} = [ map {{ e164 => $_ }} @{ $resource->{alias_numbers} // [] } ];
unless($domain) {
$domain = $c->model('DB')->resultset('domains')->search({'me.id' => $resource->{domain_id}});
if($c->user->roles eq "admin") {
} elsif($c->user->roles eq "reseller") {
$domain = $domain->search({
'domain_resellers.reseller_id' => $c->user->reseller_id,
}, {
join => 'domain_resellers',
});
}
$domain = $domain->first;
unless($domain) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid 'domain', doesn't exist.");
return;
}
}
my $customer = $self->get_customer($c, $resource->{customer_id});
return unless($customer);
if(!$item && defined $customer->max_subscribers && $customer->voip_subscribers->search({
status => { '!=' => 'terminated' },
})->count >= $customer->max_subscribers) {
$self->error($c, HTTP_FORBIDDEN, "Maximum number of subscribers reached.");
return;
}
my $pilot;
if($customer->product->class eq 'pbxaccount') {
$pilot = $customer->voip_subscribers->search({
'provisioning_voip_subscriber.is_pbx_pilot' => 1,
},{
join => 'provisioning_voip_subscriber',
})->first;
if($pilot && is_true($resource->{is_pbx_pilot}) && $pilot->id != $subscriber_id) {
$c->log->error("failed to create subscriber, contract_id " . $customer->id . " already has pbx pilot subscriber");
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Customer already has a pbx pilot subscriber.");
return;
} elsif (!$pilot && !is_true($resource->{is_pbx_pilot})) {
$c->log->error("failed to create subscriber, contract_id " . $customer->id . " has no pbx pilot subscriber and is_pbx_pilot is set");
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Customer has no pbx pilot subscriber yet and is_pbx_pilot is not set.");
return;
} else {
$c->stash->{pilot} = $pilot;
}
}
my $preferences = {};
my $admin = 0;
unless($customer->product->class eq 'pbxaccount') {
for my $pref(qw/is_pbx_group pbx_extension pbx_hunt_policy pbx_hunt_timeout is_pbx_pilot/) {
delete $resource->{$pref};
}
$admin = $resource->{admin} // 0;
} elsif($c->config->{features}->{cloudpbx}) {
$preferences->{cloud_pbx} = 1;
my $subs = $c->model('DB')->resultset('voip_subscribers')->search({
contract_id => $customer->id,
status => { '!=' => 'terminated' },
'provisioning_voip_subscriber.is_pbx_group' => 0,
}, {
join => 'provisioning_voip_subscriber',
});
if($pilot && $pilot->id != $subscriber_id) {
unless(defined $resource->{pbx_extension}) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "A pbx_extension is required if customer is PBX and pilot subscriber exists.");
return;
}
my $ext_rs = $pilot->contract->voip_subscribers->search({
'provisioning_voip_subscriber.pbx_extension' => $resource->{pbx_extension},
},{
join => 'provisioning_voip_subscriber',
});
if($ext_rs->first && $ext_rs->first->id != $subscriber_id) {
$c->log->error("trying to add pbx_extension to contract id " . $pilot->contract_id . ", which is already in use by subscriber id " . $ext_rs->first->id);
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "The pbx_extension already exists for this customer.");
return;
}
unless($pilot->primary_number) {
$c->log->error("trying to add pbx_extension to contract id " . $pilot->contract_id . " without having a primary number on pilot subscriber id " . $pilot->id);
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "The pilot subscriber does not have a primary number.");
return;
}
$resource->{e164}->{cc} = $pilot->primary_number->cc;
$resource->{e164}->{ac} = $pilot->primary_number->ac // '';
$resource->{e164}->{sn} = $pilot->primary_number->sn . $resource->{pbx_extension};
unless(is_true($resource->{is_pbx_group})) {
if(exists $resource->{pbx_group_ids}) {
unless(ref $resource->{pbx_group_ids} eq "ARRAY") {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid pbx_group_ids parameter, must be an array.");
return;
}
my $absent_ids;
($groups,$absent_ids) = NGCP::Panel::Utils::Subscriber::get_pbx_subscribers_ordered_by_ids(
c => $c,
schema => $schema,
ids => $resource->{pbx_group_ids},
customer_id => $resource->{customer_id},
is_group => 1,
sync_with_ids => 1,
);
if($absent_ids){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid id '".$absent_ids->[0]."' in pbx_group_ids, does not exist for this customer.");
return;
}
}
} else {
if(exists $resource->{pbx_groupmember_ids}) {
if(ref $resource->{pbx_groupmember_ids} eq "") {
$resource->{pbx_groupmember_ids} = [ $resource->{pbx_groupmember_ids} ];
}
unless(ref $resource->{pbx_groupmember_ids} eq "ARRAY") {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid pbx_groupmember_ids parameter, must be an array.");
return;
}
my $absent_ids;
($groupmembers,$absent_ids) = NGCP::Panel::Utils::Subscriber::get_pbx_subscribers_ordered_by_ids(
c => $c,
schema => $schema,
ids => $resource->{pbx_groupmember_ids},
customer_id => $resource->{customer_id},
is_group => 0,
sync_with_ids => 1,
) ;
if($absent_ids){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid id '".$absent_ids->[0]."' in pbx_groupmember_ids, does not exist for this customer.");
return;
}
}
}
}
if(is_true($resource->{is_pbx_group})) {
$preferences->{cloud_pbx_hunt_policy} = $resource->{cloud_pbx_hunt_policy};
$preferences->{cloud_pbx_hunt_timeout} = $resource->{cloud_pbx_hunt_timeout};
$preferences->{cloud_pbx_hunt_policy} //= $resource->{pbx_hunt_policy};
$preferences->{cloud_pbx_hunt_timeout} //= $resource->{pbx_hunt_timeout};
}
$preferences->{cloud_pbx_ext} = $resource->{pbx_extension};
$preferences->{shared_buddylist_visibility} = 1;
$preferences->{display_name} = $resource->{display_name}
if(defined $resource->{display_name});
my $default_sound_set = $customer->voip_sound_sets
->search({ contract_default => 1 })->first;
if($default_sound_set) {
$preferences->{contract_sound_set} = $default_sound_set->id;
}
# TODO: if we edit the primary of the pilot, will we not get the old primary number here?
my $base_number = $pilot ? $pilot->primary_number : undef;
if($base_number) {
$preferences->{cloud_pbx_base_cli} = $base_number->cc . ($base_number->ac // '') . $base_number->sn;
}
}
if(exists $resource->{external_id}) {
$preferences->{ext_subscriber_id} = $resource->{external_id};
}
if(defined $customer->external_id) {
$preferences->{ext_contract_id} = $customer->external_id;
}
my $subscriber = $c->model('DB')->resultset('voip_subscribers')->find({
username => $resource->{username},
domain_id => $resource->{domain_id},
status => { '!=' => 'terminated' },
});
if($item) { # update
unless($subscriber) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Subscriber with this username does not exist in the domain.");
return;
}
} else {
if($subscriber) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Subscriber already exists.");
return;
}
}
my $alias_numbers = [];
unless(exists $resource->{alias_numbers}) {
# no alias numbers given, fine
} elsif(ref $resource->{alias_numbers} eq "ARRAY") {
foreach my $num(@{ $resource->{alias_numbers} }) {
unless(ref $num eq "HASH") {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid parameter 'alias_numbers', must be hash or array of hashes.");
return;
}
push @{ $alias_numbers }, $num;
}
} else {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Invalid parameter 'alias_numbers', must be hash or array of hashes.");
return;
}
# TODO: handle status != active
my $r = {
resource => $resource,
customer => $customer,
alias_numbers => $alias_numbers,
preferences => $preferences,
groups => $groups,
groupmembers => $groupmembers,
};
return $r;
}
sub update_item {
my ($self, $c, $schema, $item, $full_resource, $resource, $form) = @_;
return unless $self->check_write_access($c, $item);
my $subscriber = $item;
my $customer = $full_resource->{customer};
my $alias_numbers = $full_resource->{alias_numbers};
my $preferences = $full_resource->{preferences};
my $groups = $full_resource->{groups};
my $groupmembers = $full_resource->{groupmembers};
my $prov_subscriber = $subscriber->provisioning_voip_subscriber;
if($subscriber->provisioning_voip_subscriber->is_pbx_pilot && !is_true($resource->{is_pbx_pilot})) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Cannot revoke is_pbx_pilot status from a subscriber.");
return;
}
if($resource->{customer_id} && ( $resource->{customer_id} != $subscriber->contract->id ) ){
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "customer_id can't be changed.");
return;
}
if ($resource->{timezone} && !NGCP::Panel::Utils::DateTime::is_valid_timezone_name($resource->{timezone})) {
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "invalid timezone name.");
return;
}
if($subscriber->status ne $resource->{status}) {
if($resource->{status} eq 'locked') {
$resource->{lock} = 4;
} elsif($subscriber->status eq 'locked' && $resource->{status} eq 'active') {
$resource->{lock} ||= 0;
} elsif($resource->{status} eq 'terminated') {
try {
NGCP::Panel::Utils::Subscriber::terminate(c => $c, subscriber => $subscriber);
return $subscriber;
} catch($e) {
$c->log->error("failed to terminate subscriber id ".$subscriber->id . ": $e");
$self->error($c, HTTP_INTERNAL_SERVER_ERROR, "Failed to terminate subscriber");
return;
}
}
}
try {
NGCP::Panel::Utils::Subscriber::lock_provisoning_voip_subscriber(
c => $c,
prov_subscriber => $prov_subscriber,
level => $resource->{lock} || 0,
);
} catch($e) {
$c->log->error("failed to lock subscriber id ".$subscriber->id." with level ".$resource->{lock});
$self->error($c, HTTP_INTERNAL_SERVER_ERROR, "Failed to update subscriber lock");
return;
};
my ($error,$profile_set,$profile) = NGCP::Panel::Utils::Subscriber::check_profile_set_and_profile($c, $resource, $subscriber);
if ($error) {
$c->log->error($error->{error});
$self->error($c, $error->{response_code}, $error->{description});
return;
}
if($resource->{email} || $resource->{timezone}) {
my $contact = $subscriber->contact;
unless ($contact) {
$contact = $schema->resultset('contacts')->create({
reseller_id => $subscriber->contract->contact->reseller_id,
});
}
if(not $contact->email or ($contact->email ne $resource->{email})) {
$contact->update({
email => $resource->{email},
});
}
if(not $contact->timezone or ($contact->timezone ne $resource->{timezone})) {
$contact->update({
timezone => $resource->{timezone},
});
}
$resource->{contact_id} = $contact->id;
} elsif($subscriber->contact) {
try {
$c->log->debug("delete contact id ".$subscriber->contact->id);
$subscriber->contact->delete;
} catch($e) {
$c->log->debug("contact still in use: ".$e);
}
$resource->{contact_id} = undef; # mark for clearance
}
delete $resource->{email};
delete $resource->{timezone};
my $aliases_before = NGCP::Panel::Utils::Events::get_aliases_snapshot(
c => $c,
schema => $schema,
subscriber => $subscriber,
);
try {
NGCP::Panel::Utils::Subscriber::update_subscriber_numbers(
c => $c,
schema => $schema,
primary_number => $resource->{e164},
alias_numbers => $alias_numbers,
reseller_id => $customer->contact->reseller_id,
subscriber_id => $subscriber->id,
);
} catch(DBIx::Class::Exception $e where { /Duplicate entry '([^']+)' for key 'number_idx'/ }) {
$e =~ /Duplicate entry '([^']+)' for key 'number_idx'/;
$c->log->error("failed to update subscriber, number " . $c->qs($1) . " already exists"); # TODO: user, message, trace, ...
$self->error($c, HTTP_UNPROCESSABLE_ENTITY, "Number '" . $1 . "' already exists.", "Number already exists.");
return;
}
my $billing_res = {
external_id => $resource->{external_id},
status => $resource->{status},
contact_id => $resource->{contact_id},
};
my $provisioning_res = {
password => $resource->{password},
webusername => $resource->{webusername},
webpassword => $resource->{webpassword},
admin => $resource->{administrative} // $subscriber->provisioning_voip_subscriber->admin,
is_pbx_pilot => $resource->{is_pbx_pilot} // 0,
is_pbx_group => $resource->{is_pbx_group} // 0,
modify_timestamp => NGCP::Panel::Utils::DateTime::current_local,
profile_set_id => $profile_set ? $profile_set->id : undef,
profile_id => $profile ? $profile->id : undef,
pbx_extension => $resource->{pbx_extension},
};
if(is_true($resource->{is_pbx_group})) {
$provisioning_res->{pbx_hunt_policy} = $resource->{pbx_hunt_policy};
$provisioning_res->{pbx_hunt_timeout} = $resource->{pbx_hunt_timeout};
NGCP::Panel::Utils::Subscriber::update_preferences(
c => $c,
prov_subscriber => $prov_subscriber,
'preferences' => {
cloud_pbx_hunt_policy => $resource->{cloud_pbx_hunt_policy} // $resource->{pbx_hunt_policy},
cloud_pbx_hunt_timeout => $resource->{cloud_pbx_hunt_policy} // $resource->{pbx_hunt_timeout},
}
);
}
my $old_profile = $prov_subscriber->profile_id;
$subscriber->update($billing_res);
$subscriber->discard_changes;
$prov_subscriber->update($provisioning_res);
$prov_subscriber->discard_changes;
NGCP::Panel::Utils::Events::insert_profile_events(
c => $c, schema => $schema, subscriber_id => $subscriber->id,
old => $old_profile, new => $prov_subscriber->profile_id,
%$aliases_before,
);
NGCP::Panel::Utils::Subscriber::update_preferences(
c => $c,
prov_subscriber => $prov_subscriber,
preferences => $preferences,
);
NGCP::Panel::Utils::Subscriber::manage_pbx_groups(
c => $c,
schema => $schema,
groups => $groups,
groupmembers => $groupmembers,
customer => $customer,
subscriber => $subscriber,
);
return $subscriber;
}
sub check_write_access {
my($self, $c, $item) = @_;
if($c->user->roles eq "admin" || $c->user->roles eq "reseller") {
} elsif($c->user->roles eq "subscriber"
|| (
$c->user->roles eq "subscriberadmin"
&& !$self->subscriberadmin_write_access($c)
)
) {
$self->error($c, HTTP_FORBIDDEN, "Read-only resource for authenticated role");
return;
} elsif($c->user->roles eq "subscriberadmin") {
unless($c->config->{features}->{cloudpbx}) {
$self->error($c, HTTP_FORBIDDEN, "Read-only resource for authenticated role");
return;
}
my $customer = $self->get_customer($c, $c->user->account_id);
if($customer->product->class ne 'pbxaccount') {
$self->error($c, HTTP_FORBIDDEN, "Read-only resource for authenticated role");
return;
}
}
return 1;
}
sub subscriberadmin_write_access {
my($self,$c) = @_;
if ($c->user->roles eq "subscriberadmin"
&& (
( $c->config->{privileges}->{subscriberadmin}->{subscribers}
&& $c->config->{privileges}->{subscriberadmin}->{subscribers} =~/write/
)
|| ( $c->config->{features}->{cloudpbx} #user can disable pbx feature after some time of using it
&& $c->user->contract->product->class eq 'pbxaccount'
)
) ) {
return 1;
}
return 0;
}
1;
# vim: set tabstop=4 expandtab:
Reference in new issue View Git Blame Copy Permalink