bert.hausmans
4b182b449a
Implements enterprise-grade identity resolution (detect → suggest → confirm) for Person ↔ User linking. Matches are detected automatically on person creation and user account creation, then surfaced to organisers for explicit confirmation or dismissal. No silent auto-linking. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
113 lines
3.6 KiB
PHP
113 lines
3.6 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Http\Controllers\Api\V1;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Requests\Api\V1\StorePersonRequest;
|
|
use App\Http\Requests\Api\V1\UpdatePersonRequest;
|
|
use App\Http\Resources\Api\V1\PersonCollection;
|
|
use App\Http\Resources\Api\V1\PersonResource;
|
|
use App\Models\Event;
|
|
use App\Models\Person;
|
|
use App\Services\PersonIdentityService;
|
|
use Illuminate\Http\JsonResponse;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Gate;
|
|
|
|
final class PersonController extends Controller
|
|
{
|
|
public function __construct(
|
|
private readonly PersonIdentityService $identityService,
|
|
) {}
|
|
|
|
public function index(Request $request, Event $event): PersonCollection
|
|
{
|
|
Gate::authorize('viewAny', [Person::class, $event]);
|
|
|
|
$query = $event->persons()->with(['crowdType', 'pendingIdentityMatch.matchedUser']);
|
|
|
|
if ($request->filled('crowd_type_id')) {
|
|
$query->where('crowd_type_id', $request->input('crowd_type_id'));
|
|
}
|
|
|
|
if ($request->filled('status')) {
|
|
$query->where('status', $request->input('status'));
|
|
}
|
|
|
|
if ($request->filled('tag')) {
|
|
$organisation = $event->organisation;
|
|
$query->whereHas('user', function ($q) use ($request, $organisation) {
|
|
$q->whereHas('organisationTags', function ($q2) use ($request, $organisation) {
|
|
$q2->where('organisation_id', $organisation->id)
|
|
->where('person_tag_id', $request->input('tag'));
|
|
});
|
|
});
|
|
}
|
|
|
|
if ($request->filled('tags')) {
|
|
$organisation = $event->organisation;
|
|
$tagIds = explode(',', $request->input('tags'));
|
|
foreach ($tagIds as $tagId) {
|
|
$query->whereHas('user', function ($q) use ($tagId, $organisation) {
|
|
$q->whereHas('organisationTags', function ($q2) use ($tagId, $organisation) {
|
|
$q2->where('organisation_id', $organisation->id)
|
|
->where('person_tag_id', $tagId);
|
|
});
|
|
});
|
|
}
|
|
}
|
|
|
|
return new PersonCollection($query->get());
|
|
}
|
|
|
|
public function show(Event $event, Person $person): JsonResponse
|
|
{
|
|
Gate::authorize('view', [$person, $event]);
|
|
|
|
$person->load(['crowdType', 'company', 'user']);
|
|
|
|
return $this->success(new PersonResource($person));
|
|
}
|
|
|
|
public function store(StorePersonRequest $request, Event $event): JsonResponse
|
|
{
|
|
Gate::authorize('create', [Person::class, $event]);
|
|
|
|
$person = $event->persons()->create($request->validated());
|
|
|
|
$this->identityService->detectMatchForPerson($person);
|
|
|
|
return $this->created(new PersonResource($person->fresh()->load('crowdType')));
|
|
}
|
|
|
|
public function update(UpdatePersonRequest $request, Event $event, Person $person): JsonResponse
|
|
{
|
|
Gate::authorize('update', [$person, $event]);
|
|
|
|
$person->update($request->validated());
|
|
$person->load(['crowdType', 'company']);
|
|
|
|
return $this->success(new PersonResource($person->fresh()->load(['crowdType', 'company'])));
|
|
}
|
|
|
|
public function destroy(Event $event, Person $person): JsonResponse
|
|
{
|
|
Gate::authorize('delete', [$person, $event]);
|
|
|
|
$person->delete();
|
|
|
|
return response()->json(null, 204);
|
|
}
|
|
|
|
public function approve(Event $event, Person $person): JsonResponse
|
|
{
|
|
Gate::authorize('approve', [$person, $event]);
|
|
|
|
$person->update(['status' => 'approved']);
|
|
|
|
return $this->success(new PersonResource($person->fresh()->load('crowdType')));
|
|
}
|
|
}
|