vendor/uvdesk/core-framework/Controller/Ticket.php line 46

Open in your IDE?
  1. <?php
  3. namespace Webkul\UVDesk\CoreFrameworkBundle\Controller;
  5. use Doctrine\ORM\EntityManagerInterface;
  6. use Symfony\Component\HttpFoundation\Request;
  7. use Symfony\Component\HttpFoundation\Response;
  8. use Symfony\Component\HttpKernel\KernelInterface;
  9. use Symfony\Component\HttpFoundation\StreamedResponse;
  10. use Symfony\Contracts\Translation\TranslatorInterface;
  11. use Symfony\Component\HttpFoundation\ResponseHeaderBag;
  12. use Symfony\Component\HttpFoundation\BinaryFileResponse;
  13. use Symfony\Component\DependencyInjection\ContainerInterface;
  14. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  15. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  16. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  17. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  18. use Webkul\UVDesk\CoreFrameworkBundle\Tickets\QuickActionButtonCollection;
  19. use Webkul\UVDesk\CoreFrameworkBundle\Repository\TicketRepository;
  20. use Webkul\UVDesk\CoreFrameworkBundle\Services\UserService;
  21. use Webkul\UVDesk\CoreFrameworkBundle\Services\TicketService;
  22. use Webkul\UVDesk\CoreFrameworkBundle\Entity as CoreEntities;
  23. use Webkul\UVDesk\CoreFrameworkBundle\Form as CoreFrameworkBundleForms;
  24. use Webkul\UVDesk\CoreFrameworkBundle\Workflow\Events as CoreWorkflowEvents;
  25. use Webkul\UVDesk\CoreFrameworkBundle\DataProxies as CoreFrameworkBundleDataProxies;
  27. class Ticket extends AbstractController
  28. {
  29.     private $userService;
  30.     private $translator;
  31.     private $eventDispatcher;
  32.     private $ticketService;
  33.     private $kernel;
  34.     private $entityManagerInterface;
  36.     public function __construct(UserService $userServiceTranslatorInterface $translatorTicketService $ticketServiceEventDispatcherInterface $eventDispatcherKernelInterface $kernelEntityManagerInterface $entityManagerInterface)
  37.     {
  38.         $this->userService $userService;
  39.         $this->translator $translator;
  40.         $this->ticketService $ticketService;
  41.         $this->eventDispatcher $eventDispatcher;
  42.         $this->entityManagerInterface $entityManagerInterface;
  43.         $this->kernel $kernel;
  44.     }
  46.     public function listTicketCollection(Request $request)
  47.     {
  48.         $entityManager $this->entityManagerInterface;
  50.         return $this->render('@UVDeskCoreFramework//ticketList.html.twig', [
  51.             'ticketStatusCollection'   => $entityManager->getRepository(CoreEntities\TicketStatus::class)->findAll(),
  52.             'ticketTypeCollection'     => $entityManager->getRepository(CoreEntities\TicketType::class)->findByIsActive(true),
  53.             'ticketPriorityCollection' => $entityManager->getRepository(CoreEntities\TicketPriority::class)->findAll(),
  54.         ]);
  55.     }
  57.     public function loadTicket($ticketIdQuickActionButtonCollection $quickActionButtonCollectionContainerInterface $container)
  58.     {
  59.         $entityManager $this->entityManagerInterface;
  60.         $userRepository $entityManager->getRepository(CoreEntities\User::class);
  61.         $ticketRepository $entityManager->getRepository(CoreEntities\Ticket::class);
  63.         $ticket $ticketRepository->findOneById($ticketId);
  65.         if (empty($ticket)) {
  66.             throw new NotFoundHttpException('Page not found!');
  67.         }
  69.         $user $this->userService->getSessionUser();
  71.         // Proceed only if user has access to the resource
  72.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  73.             throw new \Exception('Access Denied'403);
  74.         }
  76.         $agent $ticket->getAgent();
  77.         $customer $ticket->getCustomer();
  79.         if (! empty($agent)) {
  80.             $ticketAssignAgent $agent->getId();
  81.             $currentUser $user->getId();
  82.         }
  84.         // Mark as viewed by agents
  85.         if (false == $ticket->getIsAgentViewed()) {
  86.             $ticket
  87.                 ->setIsAgentViewed(true)
  88.                 ->setSkipUpdatedAt(true);
  90.             $entityManager->persist($ticket);
  91.             $entityManager->flush();
  92.         }
  94.         // Ticket Authorization
  95.         $supportRole $user->getCurrentInstance()->getSupportRole()->getCode();
  96.         switch ($supportRole) {
  97.             case 'ROLE_ADMIN':
  98.             case 'ROLE_SUPER_ADMIN':
  99.                 break;
  100.             case 'ROLE_AGENT':
  101.                 $accessLevel = (int) $user->getCurrentInstance()->getTicketAccessLevel();
  102.                 switch ($accessLevel) {
  103.                     case TicketRepository::TICKET_GLOBAL_ACCESS:
  104.                         break;
  105.                     case TicketRepository::TICKET_GROUP_ACCESS:
  106.                         $supportGroups array_map(function ($supportGroup) {
  107.                             return $supportGroup->getId();
  108.                         }, $user->getCurrentInstance()->getSupportGroups()->getValues());
  109.                         $ticketAccessableGroups $ticket->getSupportGroup() ? [$ticket->getSupportGroup()->getId()] : [];
  111.                         if ($ticket->getSupportTeam()) {
  112.                             $ticketSupportTeamGroups array_map(function ($supportGroup) {
  113.                                 return $supportGroup->getId();
  114.                             }, $ticket->getSupportTeam()->getSupportGroups()->getValues());
  115.                             $ticketAccessableGroups array_merge($ticketAccessableGroups$ticketSupportTeamGroups);
  116.                         }
  117.                         $isAccessableGroupFound false;
  118.                         foreach ($ticketAccessableGroups as $groupId) {
  119.                             if (in_array($groupId$supportGroups)) {
  120.                                 $isAccessableGroupFound true;
  121.                                 break;
  122.                             }
  123.                         }
  124.                         if (! $isAccessableGroupFound && !($ticketAssignAgent == $currentUser)) {
  125.                             throw new NotFoundHttpException('Page not found!');
  126.                         }
  127.                         break;
  128.                     case TicketRepository::TICKET_TEAM_ACCESS:
  129.                         $supportTeams array_map(function ($supportTeam) {
  130.                             return $supportTeam->getId();
  131.                         }, $user->getCurrentInstance()->getSupportTeams()->getValues());
  132.                         $supportTeam $ticket->getSupportTeam();
  133.                         if (!($supportTeam && in_array($supportTeam->getId(), $supportTeams)) && !($ticketAssignAgent == $currentUser)) {
  134.                             throw new NotFoundHttpException('Page not found!');
  135.                         }
  136.                         break;
  137.                     default:
  138.                         $collaborators array_map(function ($collaborator) {
  139.                             return $collaborator->getId();
  140.                         }, $ticket->getCollaborators()->getValues());
  141.                         $accessableAgents array_merge($collaborators$ticket->getAgent() ? [$ticket->getAgent()->getId()] : []);
  142.                         if (!in_array($user->getId(), $accessableAgents)) {
  143.                             throw new NotFoundHttpException('Page not found!');
  144.                         }
  145.                         break;
  146.                 }
  147.                 break;
  148.             default:
  149.                 throw new NotFoundHttpException('Page not found!');
  150.         }
  152.         $ratings $ticket->getRatings()->toArray();
  153.         $quickActionButtonCollection->prepareAssets();
  155.         $userService $container->get('user.service');
  156.         $customerDetails $customer->getCustomerInstance()->getPartialDetails();
  158.         if (! empty($customerDetails)) {
  159.             $customerDetails['lastLogin'] = !empty($customerDetails['lastLogin'])
  160.             ? $userService->getLocalizedFormattedTime($customerDetails['lastLogin']) 
  161.             : 'NA';
  162.         }
  164.         return $this->render('@UVDeskCoreFramework//ticket.html.twig', [
  165.             'ticket'                    => $ticket,
  166.             'totalReplies'              => $ticketRepository->countTicketTotalThreads($ticket->getId()),
  167.             'totalCustomerTickets'      => ($ticketRepository->countCustomerTotalTickets($customer$container) - 1),
  168.             'initialThread'             => $this->ticketService->getTicketInitialThreadDetails($ticket),
  169.             'ticketAgent'               => ! empty($agent) ? $agent->getAgentInstance()->getPartialDetails() : null,
  170.             'customer'                  => $customerDetails,
  171.             'currentUserDetails'        => $user->getAgentInstance()->getPartialDetails(),
  172.             'supportGroupCollection'    => $userRepository->getSupportGroups(),
  173.             'supportTeamCollection'     => $userRepository->getSupportTeams(),
  174.             'ticketStatusCollection'    => $entityManager->getRepository(CoreEntities\TicketStatus::class)->findAll(),
  175.             'ticketTypeCollection'      => $entityManager->getRepository(CoreEntities\TicketType::class)->findByIsActive(true),
  176.             'ticketPriorityCollection'  => $entityManager->getRepository(CoreEntities\TicketPriority::class)->findAll(),
  177.             'ticketNavigationIteration' => $ticketRepository->getTicketNavigationIteration($ticket$container),
  178.             'ticketLabelCollection'     => $ticketRepository->getTicketLabelCollection($ticket$user),
  179.             'ticketRating'              => ! empty($ratings) && isset($ratings[0]) ? $ratings[0]->getStars() : [],
  180.         ]);
  181.     }
  183.     public function saveTicket(Request $request)
  184.     {
  185.         $requestParams $request->request->all();
  186.         $entityManager $this->entityManagerInterface;
  187.         $response $this->redirect($this->generateUrl('helpdesk_member_ticket_collection'));
  189.         if (
  190.             $request->getMethod() != 'POST'
  191.             || false == $this->userService->isAccessAuthorized('ROLE_AGENT_CREATE_TICKET')
  192.         ) {
  193.             return $response;
  194.         }
  196.         $website $entityManager->getRepository(CoreEntities\Website::class)->findOneByCode('knowledgebase');
  197.         if (
  198.             ! empty($requestParams['from'])
  199.             && $this->ticketService->isEmailBlocked($requestParams['from'], $website)
  200.         ) {
  201.             $request->getSession()->getFlashBag()->set('warning'$this->translator->trans('Warning ! Cannot create ticket, given email is blocked by admin.'));
  203.             return $this->redirect($this->generateUrl('helpdesk_member_ticket_collection'));
  204.         }
  206.         // Get referral ticket if any
  207.         $ticketValidationGroup 'CreateTicket';
  208.         $referralURL $request->headers->get('referer');
  210.         if (! empty($referralURL)) {
  211.             $iterations explode('/'$referralURL);
  212.             $referralId array_pop($iterations);
  213.             $expectedReferralURL $this->generateUrl('helpdesk_member_ticket', ['ticketId' => $referralId], UrlGeneratorInterface::ABSOLUTE_URL);
  215.             if ($referralURL === $expectedReferralURL) {
  216.                 $referralTicket $entityManager->getRepository(CoreEntities\Ticket::class)->findOneById($referralId);
  218.                 if (! empty($referralTicket)) {
  219.                     $ticketValidationGroup 'CustomerCreateTicket';
  220.                 }
  221.             }
  222.         }
  224.         try {
  225.             if ($this->userService->isFileExists('apps/uvdesk/custom-fields')) {
  226.                 $customFieldsService $this->get('uvdesk_package_custom_fields.service');
  227.             } else if ($this->userService->isFileExists('apps/uvdesk/form-component')) {
  228.                 $customFieldsService $this->get('uvdesk_package_form_component.service');
  229.             }
  231.             if (! empty($customFieldsService)) {
  232.                 extract($customFieldsService->customFieldsValidation($request'user'));
  233.             }
  234.         } catch (\Exception $e) {
  235.             // @TODO: Log execption message
  236.         }
  238.         if (! empty($errorFlashMessage)) {
  239.             $this->addFlash('warning'$errorFlashMessage);
  240.         }
  242.         $ticketProxy = new CoreFrameworkBundleDataProxies\CreateTicketDataClass();
  243.         $form $this->createForm(CoreFrameworkBundleForms\CreateTicket::class, $ticketProxy);
  245.         // Validate Ticket Details
  246.         $form->submit($requestParams);
  248.         if (false == $form->isSubmitted() || false == $form->isValid()) {
  249.             if (false === $form->isValid()) {
  250.                 // @TODO: We need to handle form errors gracefully.
  251.                 // We should also look into switching to an xhr request instead.
  252.                 // $form->getErrors(true);
  253.             }
  255.             return $this->redirect(!empty($referralURL) ? $referralURL $this->generateUrl('helpdesk_member_ticket_collection'));
  256.         }
  258.         if ('CustomerCreateTicket' === $ticketValidationGroup && !empty($referralTicket)) {
  259.             // Retrieve customer details from referral ticket
  260.             $customer $referralTicket->getCustomer();
  261.             $customerPartialDetails $customer->getCustomerInstance()->getPartialDetails();
  262.         } else if (null != $ticketProxy->getFrom() && null != $ticketProxy->getName()) {
  263.             // Create customer if account does not exists
  264.             $customer $entityManager->getRepository(CoreEntities\User::class)->findOneByEmail($ticketProxy->getFrom());
  266.             if (
  267.                 empty($customer)
  268.                 || null == $customer->getCustomerInstance()
  269.             ) {
  270.                 $role $entityManager->getRepository(CoreEntities\SupportRole::class)->findOneByCode('ROLE_CUSTOMER');
  272.                 // Create User Instance
  273.                 $customer $this->userService->createUserInstance($ticketProxy->getFrom(), $ticketProxy->getName(), $role, [
  274.                     'source' => 'website',
  275.                     'active' => true
  276.                 ]);
  277.             }
  278.         }
  280.         $ticketData = [
  281.             'from'        => $customer->getEmail(),
  282.             'name'        => $customer->getFirstName() . ' ' $customer->getLastName(),
  283.             'type'        => $ticketProxy->getType(),
  284.             'subject'     => $ticketProxy->getSubject(),
  285.             // @TODO: We need to enable support for html messages.
  286.             // Our focus here instead should be to prevent XSS (filter js)
  287.             'message'     => str_replace(['&lt;script&gt;''&lt;/script&gt;'], ''htmlspecialchars($ticketProxy->getReply())),
  288.             'firstName'   => $customer->getFirstName(),
  289.             'lastName'    => $customer->getLastName(),
  290.             'type'        => $ticketProxy->getType(),
  291.             'role'        => 4,
  292.             'source'      => 'website',
  293.             'threadType'  => 'create',
  294.             'createdBy'   => 'agent',
  295.             'customer'    => $customer,
  296.             'user'        => $this->getUser(),
  297.             'attachments' => $request->files->get('attachments'),
  298.         ];
  300.         try {
  301.             $thread $this->ticketService->createTicketBase($ticketData);
  302.         } catch (\Exception $e) {
  303.             $this->addFlash('warning'$e->getMessage());
  304.             return $this->redirect(!empty($referralURL) ? $referralURL $this->generateUrl('helpdesk_member_ticket_collection'));
  305.         }
  307.         $ticket $thread->getTicket();
  309.         // Trigger ticket created event
  310.         try {
  311.             $event = new CoreWorkflowEvents\Ticket\Create();
  312.             $event
  313.                 ->setTicket($ticket);
  315.             $this->eventDispatcher->dispatch($event'uvdesk.automation.workflow.execute');
  316.         } catch (\Exception $e) {
  317.             // Skip Automation
  318.         }
  320.         if (! empty($thread)) {
  321.             $ticket $thread->getTicket();
  322.             if (
  323.                 $request->request->get('customFields')
  324.                 || $request->files->get('customFields')
  325.             ) {
  326.                 $this->ticketService->addTicketCustomFields($thread$request->request->get('customFields'), $request->files->get('customFields'));
  327.             }
  329.             $this->addFlash('success'$this->translator->trans('Success ! Ticket has been created successfully.'));
  331.             if ($this->userService->isAccessAuthorized('ROLE_ADMIN')) {
  332.                 return $this->redirect($this->generateUrl('helpdesk_member_ticket', ['ticketId' => $ticket->getId()]));
  333.             }
  334.         } else {
  335.             $this->addFlash('warning'$this->translator->trans('Could not create ticket, invalid details.'));
  336.         }
  338.         return $this->redirect(!empty($referralURL) ? $referralURL $this->generateUrl('helpdesk_member_ticket_collection'));
  339.     }
  341.     public function listTicketTypeCollection(Request $request)
  342.     {
  343.         if (! $this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TICKET_TYPE')) {
  344.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  345.         }
  347.         return $this->render('@UVDeskCoreFramework/ticketTypeList.html.twig');
  348.     }
  350.     public function ticketType(Request $request)
  351.     {
  352.         if (! $this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TICKET_TYPE')) {
  353.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  354.         }
  356.         $errorContext = [];
  357.         $em $this->entityManagerInterface;
  359.         if ($id $request->attributes->get('ticketTypeId')) {
  360.             $type $em->getRepository(CoreEntities\TicketType::class)->find($id);
  361.             if (! $type) {
  362.                 $this->noResultFound();
  363.             }
  364.         } else {
  365.             $type = new CoreEntities\TicketType();
  366.         }
  368.         if ($request->getMethod() == "POST") {
  369.             $data $request->request->all();
  370.             $ticketType $em->getRepository(CoreEntities\TicketType::class)->findOneByCode($data['code']);
  372.             if (
  373.                 ! empty($ticketType)
  374.                 && $id != $ticketType->getId()
  375.             ) {
  376.                 $this->addFlash('warning'sprintf('Error! Ticket type with same name already exist'));
  377.             } else {
  378.                 $type->setCode(trim($data['code']));
  379.                 $type->setDescription(trim($data['description']));
  380.                 $type->setIsActive(isset($data['isActive']) ? 0);
  382.                 $em->persist($type);
  383.                 $em->flush();
  385.                 if (! $request->attributes->get('ticketTypeId')) {
  386.                     $this->addFlash('success'$this->translator->trans('Success! Ticket type saved successfully.'));
  387.                 } else {
  388.                     $this->addFlash('success'$this->translator->trans('Success! Ticket type updated successfully.'));
  389.                 }
  391.                 return $this->redirect($this->generateUrl('helpdesk_member_ticket_type_collection'));
  392.             }
  393.         }
  395.         return $this->render('@UVDeskCoreFramework/ticketTypeAdd.html.twig', array(
  396.             'type'   => $type,
  397.             'errors' => json_encode($errorContext)
  398.         ));
  399.     }
  401.     public function listTagCollection(Request $request)
  402.     {
  403.         if (!$this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TAG')) {
  404.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  405.         }
  407.         $enabled_bundles $this->getParameter('kernel.bundles');
  409.         return $this->render('@UVDeskCoreFramework/supportTagList.html.twig', [
  410.             'articlesEnabled' => in_array('UVDeskSupportCenterBundle'array_keys($enabled_bundles)),
  411.         ]);
  412.     }
  414.     public function removeTicketTagXHR($tagIdRequest $request)
  415.     {
  416.         if (!$this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TAG')) {
  417.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  418.         }
  420.         $json = [];
  421.         if ($request->getMethod() == "DELETE") {
  422.             $em $this->entityManagerInterface;
  423.             $tag $em->getRepository(CoreEntities\Tag::class)->find($tagId);
  425.             if ($tag) {
  426.                 $em->remove($tag);
  427.                 $em->flush();
  428.                 $json['alertClass'] = 'success';
  429.                 $json['alertMessage'] = $this->translator->trans('Success ! Tag removed successfully.');
  430.             }
  431.         }
  433.         $response = new Response(json_encode($json));
  434.         $response->headers->set('Content-Type''application/json');
  436.         return $response;
  437.     }
  439.     public function trashTicket(Request $request)
  440.     {
  441.         $ticketId $request->attributes->get('ticketId');
  442.         $entityManager $this->entityManagerInterface;
  443.         $ticket $entityManager->getRepository(CoreEntities\Ticket::class)->find($ticketId);
  445.         if (! $ticket) {
  446.             $this->noResultFound();
  447.         }
  449.         $user $this->userService->getSessionUser();
  451.         // Proceed only if user has access to the resource
  452.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  453.             throw new \Exception('Access Denied'403);
  454.         }
  456.         if (! $ticket->getIsTrashed()) {
  457.             $ticket->setIsTrashed(1);
  459.             $entityManager->persist($ticket);
  460.             $entityManager->flush();
  461.         }
  463.         // Trigger ticket delete event
  464.         $event = new CoreWorkflowEvents\Ticket\Delete();
  465.         $event
  466.             ->setTicket($ticket);
  468.         $this->eventDispatcher->dispatch($event'uvdesk.automation.workflow.execute');
  470.         $this->addFlash('success'$this->translator->trans('Success ! Ticket moved to trash successfully.'));
  472.         return $this->redirectToRoute('helpdesk_member_ticket_collection');
  473.     }
  475.     // Delete a ticket ticket permanently
  476.     public function deleteTicket(Request $request)
  477.     {
  478.         $ticketId $request->attributes->get('ticketId');
  479.         $entityManager $this->getDoctrine()->getManager();
  480.         $ticket $entityManager->getRepository(CoreEntities\Ticket::class)->find($ticketId);
  482.         if (! $ticket) {
  483.             $this->noResultFound();
  484.         }
  486.         $user $this->userService->getSessionUser();
  487.         // Proceed only if user has access to the resource
  488.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  489.             throw new \Exception('Access Denied'403);
  490.         }
  492.         $entityManager->remove($ticket);
  493.         $entityManager->flush();
  495.         $this->addFlash('success'$this->translator->trans('Success ! Success ! Ticket Id #' $ticketId ' has been deleted successfully.'));
  497.         return $this->redirectToRoute('helpdesk_member_ticket_collection');
  498.     }
  500.     public function downloadZipAttachment(Request $request)
  501.     {
  502.         $threadId $request->attributes->get('threadId');
  503.         $attachmentRepository $this->entityManagerInterface->getRepository(CoreEntities\Attachment::class);
  504.         $threadRepository $this->entityManagerInterface->getRepository(CoreEntities\Thread::class);
  506.         $thread $threadRepository->findOneById($threadId);
  507.         if (!$thread) {
  508.             $this->noResultFound();
  509.         }
  511.         $attachments $attachmentRepository->findByThread($threadId);
  512.         if (empty($attachments)) {
  513.             $this->noResultFound();
  514.         }
  516.         $ticket $thread->getTicket();
  517.         $user $this->userService->getSessionUser();
  519.         // Proceed only if user has access to the resource
  520.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  521.             throw new \Exception('Access Denied'403);
  522.         }
  524.         // Create temp file in system temp directory
  525.         $projectDir $this->kernel->getProjectDir();
  526.         $zipPath sys_get_temp_dir() . '/' uniqid('zip_') . '_attachments_' $threadId '.zip';
  528.         $zip = new \ZipArchive();
  529.         if ($zip->open($zipPath\ZipArchive::CREATE) !== true) {
  530.             throw new \Exception('Cannot create zip file'500);
  531.         }
  533.         if (count($attachments) > 0) {
  534.             foreach ($attachments as $attach) {
  535.                 $filePath $projectDir '/public/' ltrim($attach->getPath(), '/');
  536.                 if (file_exists($filePath)) {
  537.                     // Use original filename as the name in the ZIP
  538.                     $zip->addFile($filePath$attach->getName());
  539.                 }
  540.             }
  541.         }
  543.         $zip->close();
  545.         // Use BinaryFileResponse for better handling of binary files
  546.         $response = new BinaryFileResponse($zipPath);
  547.         $response->setContentDisposition(
  548.             ResponseHeaderBag::DISPOSITION_ATTACHMENT,
  549.             'attachments_' $threadId '.zip'
  550.         );
  551.         $response->headers->set('Content-Type''application/zip');
  552.         $response->deleteFileAfterSend(true); // Delete the temp file after sending
  554.         return $response;
  555.     }
  557.     public function downloadAttachment(Request $request)
  558.     {
  559.         $attachmentId $request->attributes->get('attachmentId');
  560.         $attachment $this->entityManagerInterface->getRepository(CoreEntities\Attachment::class)->findOneById($attachmentId);
  562.         if (empty($attachment)) {
  563.             $this->noResultFound();
  564.         }
  566.         $thread $attachment->getThread();
  568.         if (! empty($thread)) {
  569.             $ticket $thread->getTicket();
  570.             $user $this->userService->getSessionUser();
  572.             // Proceed only if user has access to the resource
  573.             if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  574.                 throw new \Exception('Access Denied'403);
  575.             }
  576.         }
  578.         $path $this->kernel->getProjectDir() . "/public/" $attachment->getPath();
  580.         $response = new StreamedResponse(function () use ($path) {
  581.             // Output the file content
  582.             $stream fopen($path'rb');
  583.             fpassthru($stream);
  584.             fclose($stream);
  585.         });
  587.         // Set headers
  588.         $response->headers->set('Content-Type'$attachment->getContentType());
  589.         $response->headers->set('Content-Disposition''attachment; filename="' $attachment->getName() . '"');
  590.         $response->headers->set('Content-Length'filesize($path));
  592.         return $response;
  593.     }
  595.     /**
  596.      * If customer is playing with url and no result is found then what will happen
  597.      * @return
  598.      */
  599.     protected function noResultFound()
  600.     {
  601.         throw new NotFoundHttpException('Not Found!');
  602.     }
  603. }