Update Phortune payment account interfaces to handle merchant vs customer views

Configure Feed

Issues Pull Requests Commits Tags

Feed URL

Select the types of activity you want to include in your feed.

@recaptime-dev's working patches + fork for Phorge, a community fork of Phabricator. (Upstream dev and stable branches are at upstream/main and upstream/stable respectively.) hq.recaptime.dev/wiki/Phorge

phorge phabricator

fork

Configure Feed

Issues Pull Requests Commits Tags

Feed URL

Select the types of activity you want to include in your feed.

Update Phortune payment account interfaces to handle merchant vs customer views

Summary: Depends on D20716. Ref T13366. This implements the new policy behavior cleanly in all top-level Phortune payment account interfaces.

Test Plan: As a merchant with an account relationship (not an account member) and an account member, browsed all account interfaces and attempted to perform edits. As a merchant, saw a reduced-strength view.

Maniphest Tasks: T13366

Differential Revision: https://secure.phabricator.com/D20717

epriestley 6 years ago 0cc7e8ee a3213ab2

+277 -149

19 changed files

expand all collapse all

src

__phutil_library_map__.php

applications

phortune

application

PhabricatorPhortuneApplication.php

controller

account

PhortuneAccountAddManagerController.php

PhortuneAccountChargesController.php

PhortuneAccountController.php

PhortuneAccountDetailsController.php

PhortuneAccountEmailAddressesController.php

PhortuneAccountEmailEditController.php

PhortuneAccountEmailViewController.php

PhortuneAccountManagersController.php

PhortuneAccountOrdersController.php

PhortuneAccountOverviewController.php

PhortuneAccountPaymentMethodsController.php

PhortuneAccountProfileController.php

PhortuneAccountSubscriptionController.php

charge

PhortuneChargeListController.php

storage

PhortuneAccount.php

PhortuneAccountEmail.php

view

layout

AphrontSideNavFilterView.php

+3 -3

src/__phutil_library_map__.php

reviewed

··· 5222 5222 'PhortuneAccountAddManagerController' => 'applications/phortune/controller/account/PhortuneAccountAddManagerController.php', 5223 5223 'PhortuneAccountBillingAddressTransaction' => 'applications/phortune/xaction/PhortuneAccountBillingAddressTransaction.php', 5224 5224 'PhortuneAccountBillingNameTransaction' => 'applications/phortune/xaction/PhortuneAccountBillingNameTransaction.php', 5225 5225 - 'PhortuneAccountChargeListController' => 'applications/phortune/controller/account/PhortuneAccountChargeListController.php', 5226 5225 'PhortuneAccountChargesController' => 'applications/phortune/controller/account/PhortuneAccountChargesController.php', 5227 5226 'PhortuneAccountController' => 'applications/phortune/controller/account/PhortuneAccountController.php', 5228 5227 'PhortuneAccountDetailsController' => 'applications/phortune/controller/account/PhortuneAccountDetailsController.php', ··· 5277 5276 'PhortuneCartUpdateController' => 'applications/phortune/controller/cart/PhortuneCartUpdateController.php', 5278 5277 'PhortuneCartViewController' => 'applications/phortune/controller/cart/PhortuneCartViewController.php', 5279 5278 'PhortuneCharge' => 'applications/phortune/storage/PhortuneCharge.php', 5279 5279 + 'PhortuneChargeListController' => 'applications/phortune/controller/charge/PhortuneChargeListController.php', 5280 5280 'PhortuneChargePHIDType' => 'applications/phortune/phid/PhortuneChargePHIDType.php', 5281 5281 'PhortuneChargeQuery' => 'applications/phortune/query/PhortuneChargeQuery.php', 5282 5282 'PhortuneChargeSearchEngine' => 'applications/phortune/query/PhortuneChargeSearchEngine.php', ··· 11769 11769 'PhabricatorApplicationTransactionInterface', 11770 11770 'PhabricatorPolicyInterface', 11771 11771 ), 11772 11772 - 'PhortuneAccountAddManagerController' => 'PhortuneController', 11772 11772 + 'PhortuneAccountAddManagerController' => 'PhortuneAccountController', 11773 11773 'PhortuneAccountBillingAddressTransaction' => 'PhortuneAccountTransactionType', 11774 11774 'PhortuneAccountBillingNameTransaction' => 'PhortuneAccountTransactionType', 11775 11775 - 'PhortuneAccountChargeListController' => 'PhortuneController', 11776 11775 'PhortuneAccountChargesController' => 'PhortuneAccountProfileController', 11777 11776 'PhortuneAccountController' => 'PhortuneController', 11778 11777 'PhortuneAccountDetailsController' => 'PhortuneAccountProfileController', ··· 11839 11838 'PhortuneDAO', 11840 11839 'PhabricatorPolicyInterface', 11841 11840 ), 11841 11841 + 'PhortuneChargeListController' => 'PhortuneController', 11842 11842 'PhortuneChargePHIDType' => 'PhabricatorPHIDType', 11843 11843 'PhortuneChargeQuery' => 'PhabricatorCursorPagedPolicyAwareQuery', 11844 11844 'PhortuneChargeSearchEngine' => 'PhabricatorApplicationSearchEngine',

+4 -8

src/applications/phortune/application/PhabricatorPhortuneApplication.php

reviewed

··· 39 39 'card/' => array( 40 40 'new/' => 'PhortunePaymentMethodCreateController', 41 41 ), 42 42 - 'order/(?:query/(?P<queryKey>[^/]+)/)?' 43 43 - => 'PhortuneCartListController', 44 42 'subscription/' => array( 45 43 '(?:query/(?P<queryKey>[^/]+)/)?' 46 44 => 'PhortuneSubscriptionListController', ··· 51 49 'order/(?P<subscriptionID>\d+)/' 52 50 => 'PhortuneCartListController', 53 51 ), 52 52 + 'order/(?:query/(?P<queryKey>[^/]+)/)?' 53 53 + => 'PhortuneCartListController', 54 54 'charge/(?:query/(?P<queryKey>[^/]+)/)?' 55 55 - => 'PhortuneAccountChargeListController', 55 55 + => 'PhortuneChargeListController', 56 56 ), 57 57 'card/(?P<id>\d+)/' => array( 58 58 'edit/' => 'PhortunePaymentMethodEditController', ··· 82 82 ), 83 83 'addresses/' => array( 84 84 '' => 'PhortuneAccountEmailAddressesController', 85 85 + '(?P<id>\d+)/' => 'PhortuneAccountEmailViewController', 85 86 $this->getEditRoutePattern('edit/') 86 87 => 'PhortuneAccountEmailEditController', 87 88 ), 88 89 ), 89 89 - ), 90 90 - 'address/' => array( 91 91 - '(?P<id>\d+)/' => 'PhortuneAccountEmailViewController', 92 92 - $this->getEditRoutePattern('edit/') 93 93 - => 'PhortuneAccountEmailEditController', 94 90 ), 95 91 'product/' => array( 96 92 '' => 'PhortuneProductListController',

+23 -18

src/applications/phortune/controller/account/PhortuneAccountAddManagerController.php

reviewed

··· 1 1 <?php 2 2 3 3 - final class PhortuneAccountAddManagerController extends PhortuneController { 3 3 + final class PhortuneAccountAddManagerController 4 4 + extends PhortuneAccountController { 5 5 + 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return true; 8 8 + } 4 9 5 5 - public function handleRequest(AphrontRequest $request) { 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 6 11 $viewer = $request->getViewer(); 7 7 - $id = $request->getURIData('accountID'); 12 12 + $account = $this->getAccount(); 8 13 9 9 - $account = id(new PhortuneAccountQuery()) 10 10 - ->setViewer($viewer) 11 11 - ->withIDs(array($id)) 12 12 - ->requireCapabilities( 13 13 - array( 14 14 - PhabricatorPolicyCapability::CAN_VIEW, 15 15 - PhabricatorPolicyCapability::CAN_EDIT, 16 16 - )) 17 17 - ->executeOne(); 18 18 - if (!$account) { 19 19 - return new Aphront404Response(); 20 20 - } 14 14 + $id = $account->getID(); 21 15 22 16 $v_managers = array(); 23 17 $e_managers = null; ··· 53 47 } 54 48 } 55 49 50 50 + $account_phid = $account->getPHID(); 51 51 + $handles = $viewer->loadHandles(array($account_phid)); 52 52 + $handle = $handles[$account_phid]; 53 53 + 56 54 $form = id(new AphrontFormView()) 57 57 - ->setUser($viewer) 55 55 + ->setViewer($viewer) 56 56 + ->appendInstructions( 57 57 + pht( 58 58 + 'Choose one or more users to add as account managers. Managers '. 59 59 + 'have full control of the account.')) 60 60 + ->appendControl( 61 61 + id(new AphrontFormStaticControl()) 62 62 + ->setLabel(pht('Payment Account')) 63 63 + ->setValue($handle->renderLink())) 58 64 ->appendControl( 59 65 id(new AphrontFormTokenizerControl()) 60 66 ->setDatasource(new PhabricatorPeopleDatasource()) 61 61 - ->setLabel(pht('Managers')) 67 67 + ->setLabel(pht('Add Managers')) 62 68 ->setName('managerPHIDs') 63 69 ->setValue($v_managers) 64 70 ->setError($e_managers)); ··· 69 75 ->setWidth(AphrontDialogView::WIDTH_FORM) 70 76 ->addCancelButton($account_uri) 71 77 ->addSubmitButton(pht('Add Managers')); 72 72 - 73 78 } 74 79 75 80 }

+1 -1

src/applications/phortune/controller/account/PhortuneAccountChargeListController.php src/applications/phortune/controller/charge/PhortuneChargeListController.php

reviewed

··· 1 1 <?php 2 2 3 3 - final class PhortuneAccountChargeListController 3 3 + final class PhortuneChargeListController 4 4 extends PhortuneController { 5 5 6 6 private $account;

+9 -7

src/applications/phortune/controller/account/PhortuneAccountChargesController.php

reviewed

··· 3 3 final class PhortuneAccountChargesController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Order History')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Order History')) 16 16 + ->setBorder(true); 17 17 18 18 $header = $this->buildHeaderView(); 19 19 + $authority = $this->newAccountAuthorityView(); 19 20 $charge_history = $this->buildChargeHistorySection($account); 20 21 21 22 $view = id(new PHUITwoColumnView()) 22 23 ->setHeader($header) 23 24 ->setFooter( 24 25 array( 26 26 + $authority, 25 27 $charge_history, 26 28 )); 27 29

+112 -24

src/applications/phortune/controller/account/PhortuneAccountController.php

reviewed

··· 4 4 extends PhortuneController { 5 5 6 6 private $account; 7 7 + private $merchants; 7 8 8 8 - protected function getAccount() { 9 9 - return $this->account; 9 9 + final public function handleRequest(AphrontRequest $request) { 10 10 + if ($this->shouldRequireAccountEditCapability()) { 11 11 + $response = $this->loadAccountForEdit(); 12 12 + } else { 13 13 + $response = $this->loadAccountForView(); 14 14 + } 15 15 + 16 16 + if ($response) { 17 17 + return $response; 18 18 + } 19 19 + 20 20 + return $this->handleAccountRequest($request); 10 21 } 11 22 12 12 - protected function setAccount(PhortuneAccount $account) { 13 13 - $this->account = $account; 14 14 - return $this; 23 23 + abstract protected function shouldRequireAccountEditCapability(); 24 24 + abstract protected function handleAccountRequest(AphrontRequest $request); 25 25 + 26 26 + final protected function getAccount() { 27 27 + if ($this->account === null) { 28 28 + throw new Exception( 29 29 + pht( 30 30 + 'Unable to "getAccount()" before loading or setting account '. 31 31 + 'context.')); 32 32 + } 33 33 + 34 34 + return $this->account; 15 35 } 16 36 17 37 protected function buildApplicationCrumbs() { ··· 25 45 return $crumbs; 26 46 } 27 47 28 28 - protected function loadAccount() { 29 29 - // TODO: Currently, you must be able to edit an account to view the detail 30 30 - // page, because the account must be broadly visible so merchants can 31 31 - // process orders but merchants should not be able to see all the details 32 32 - // of an account. Ideally the profile pages should be visible to merchants, 33 33 - // too, just with less information. 34 34 - return $this->loadAccountForEdit(); 48 48 + private function loadAccountForEdit() { 49 49 + return $this->loadAccountWithCapabilities( 50 50 + array( 51 51 + PhabricatorPolicyCapability::CAN_VIEW, 52 52 + PhabricatorPolicyCapability::CAN_EDIT, 53 53 + )); 54 54 + } 55 55 + 56 56 + private function loadAccountForView() { 57 57 + return $this->loadAccountWithCapabilities( 58 58 + array( 59 59 + PhabricatorPolicyCapability::CAN_VIEW, 60 60 + )); 35 61 } 36 62 37 37 - protected function loadAccountForEdit() { 63 63 + private function loadAccountWithCapabilities(array $capabilities) { 38 64 $viewer = $this->getViewer(); 39 65 $request = $this->getRequest(); 40 66 41 67 $account_id = $request->getURIData('accountID'); 42 68 if (!$account_id) { 43 43 - $account_id = $request->getURIData('id'); 44 44 - } 45 45 - 46 46 - if (!$account_id) { 47 47 - return new Aphront404Response(); 69 69 + throw new Exception( 70 70 + pht( 71 71 + 'Controller ("%s") extends controller "%s", but is reachable '. 72 72 + 'with no "accountID" in URI.', 73 73 + get_class($this), 74 74 + __CLASS__)); 48 75 } 49 76 50 77 $account = id(new PhortuneAccountQuery()) 51 78 ->setViewer($viewer) 52 79 ->withIDs(array($account_id)) 53 53 - ->requireCapabilities( 54 54 - array( 55 55 - PhabricatorPolicyCapability::CAN_VIEW, 56 56 - PhabricatorPolicyCapability::CAN_EDIT, 57 57 - )) 80 80 + ->requireCapabilities($capabilities) 58 81 ->executeOne(); 59 82 if (!$account) { 60 83 return new Aphront404Response(); 61 84 } 62 85 86 86 + $this->setAccount($account); 87 87 + 88 88 + return null; 89 89 + } 90 90 + 91 91 + private function setAccount(PhortuneAccount $account) { 63 92 $this->account = $account; 64 93 65 65 - return null; 94 94 + $viewer = $this->getViewer(); 95 95 + if (!$account->isUserAccountMember($viewer)) { 96 96 + $merchant_phids = $account->getMerchantPHIDs(); 97 97 + $merchants = id(new PhortuneMerchantQuery()) 98 98 + ->setViewer($viewer) 99 99 + ->withPHIDs($merchant_phids) 100 100 + ->withMemberPHIDs(array($viewer->getPHID())) 101 101 + ->requireCapabilities( 102 102 + array( 103 103 + PhabricatorPolicyCapability::CAN_VIEW, 104 104 + PhabricatorPolicyCapability::CAN_EDIT, 105 105 + )) 106 106 + ->execute(); 107 107 + 108 108 + $this->merchants = $merchants; 109 109 + } else { 110 110 + $this->merchants = array(); 111 111 + } 112 112 + 113 113 + return $this; 114 114 + } 115 115 + 116 116 + final protected function getMerchants() { 117 117 + if ($this->merchants === null) { 118 118 + throw new Exception( 119 119 + pht( 120 120 + 'Unable to "getMerchants()" before loading or setting account '. 121 121 + 'context.')); 122 122 + } 123 123 + 124 124 + return $this->merchants; 125 125 + } 126 126 + 127 127 + final protected function newAccountAuthorityView() { 128 128 + $viewer = $this->getViewer(); 129 129 + 130 130 + $merchants = $this->getMerchants(); 131 131 + if (!$merchants) { 132 132 + return null; 133 133 + } 134 134 + 135 135 + $merchant_phids = mpull($merchants, 'getPHID'); 136 136 + $merchant_handles = $viewer->loadHandles($merchant_phids); 137 137 + $merchant_handles = iterator_to_array($merchant_handles); 138 138 + 139 139 + $merchant_list = mpull($merchant_handles, 'renderLink'); 140 140 + $merchant_list = phutil_implode_html(', ', $merchant_list); 141 141 + 142 142 + $merchant_message = pht( 143 143 + 'You can view this account because you control %d merchant(s) it '. 144 144 + 'has a relationship with: %s.', 145 145 + phutil_count($merchants), 146 146 + $merchant_list); 147 147 + 148 148 + return id(new PHUIInfoView()) 149 149 + ->setSeverity(PHUIInfoView::SEVERITY_NOTICE) 150 150 + ->setErrors( 151 151 + array( 152 152 + $merchant_message, 153 153 + )); 66 154 } 67 155 68 156 }

+6 -5

src/applications/phortune/controller/account/PhortuneAccountDetailsController.php

reviewed

··· 3 3 final class PhortuneAccountDetailsController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return true; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 ··· 26 25 27 26 $header = $this->buildHeaderView(); 28 27 28 28 + $authority = $this->newAccountAuthorityView(); 29 29 $details = $this->newDetailsView($account); 30 30 31 31 $curtain = $this->buildCurtainView($account); ··· 41 41 ->setCurtain($curtain) 42 42 ->setMainColumn( 43 43 array( 44 44 + $authority, 44 45 $details, 45 46 $timeline, 46 47 ));

+9 -7

src/applications/phortune/controller/account/PhortuneAccountEmailAddressesController.php

reviewed

··· 3 3 final class PhortuneAccountEmailAddressesController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return true; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Email Addresses')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Email Addresses')) 16 16 + ->setBorder(true); 17 17 18 18 $header = $this->buildHeaderView(); 19 19 + $authority = $this->newAccountAuthorityView(); 19 20 $addresses = $this->buildAddressesSection($account); 20 21 21 22 $view = id(new PHUITwoColumnView()) 22 23 ->setHeader($header) 23 24 ->setFooter( 24 25 array( 26 26 + $authority, 25 27 $addresses, 26 28 )); 27 29

+7 -13

src/applications/phortune/controller/account/PhortuneAccountEmailEditController.php

reviewed

··· 3 3 final class PhortuneAccountEmailEditController 4 4 extends PhortuneAccountController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return true; 8 8 + } 9 9 + 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 11 11 + $account = $this->getAccount(); 12 12 + 7 13 $engine = id(new PhortuneAccountEmailEditEngine()) 8 14 ->setController($this); 9 15 10 16 if (!$request->getURIData('id')) { 11 11 - 12 12 - if (!$request->getURIData('accountID')) { 13 13 - return new Aphront404Response(); 14 14 - } 15 15 - 16 16 - $response = $this->loadAccount(); 17 17 - if ($response) { 18 18 - return $response; 19 19 - } 20 20 - 21 21 - $account = $this->getAccount(); 22 22 - 23 17 $engine->setAccount($account); 24 18 } 25 19

+9 -5

src/applications/phortune/controller/account/PhortuneAccountEmailViewController.php

reviewed

··· 3 3 final class PhortuneAccountEmailViewController 4 4 extends PhortuneAccountController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return true; 8 8 + } 9 9 + 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 7 11 $viewer = $this->getViewer(); 12 12 + $account = $this->getAccount(); 8 13 9 14 $address = id(new PhortuneAccountEmailQuery()) 10 15 ->setViewer($viewer) 16 16 + ->withAccountPHIDs(array($account->getPHID())) 11 17 ->withIDs(array($request->getURIData('id'))) 12 18 ->executeOne(); 13 19 if (!$address) { 14 20 return new Aphront404Response(); 15 21 } 16 16 - 17 17 - $account = $address->getAccount(); 18 18 - $this->setAccount($account); 19 22 20 23 $crumbs = $this->buildApplicationCrumbs() 21 24 ->addTextCrumb(pht('Email Addresses'), $account->getEmailAddressesURI()) ··· 61 64 62 65 $edit_uri = $this->getApplicationURI( 63 66 urisprintf( 64 64 - 'address/edit/%d/', 67 67 + 'account/%d/addresses/edit/%d/', 68 68 + $account->getID(), 65 69 $address->getID())); 66 70 67 71 $curtain = $this->newCurtainView($account);

+13 -10

src/applications/phortune/controller/account/PhortuneAccountManagersController.php

reviewed

··· 3 3 final class PhortuneAccountManagersController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Managers')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Managers')) 16 16 + ->setBorder(true); 17 17 18 18 $header = $this->buildHeaderView(); 19 19 + $authority = $this->newAccountAuthorityView(); 19 20 $members = $this->buildMembersSection($account); 20 21 21 22 $view = id(new PHUITwoColumnView()) 22 23 ->setHeader($header) 23 23 - ->setFooter(array( 24 24 - $members, 25 25 - )); 24 24 + ->setFooter( 25 25 + array( 26 26 + $authority, 27 27 + $members, 28 28 + )); 26 29 27 30 $navigation = $this->buildSideNavView('managers'); 28 31

+10 -7

src/applications/phortune/controller/account/PhortuneAccountOrdersController.php

reviewed

··· 3 3 final class PhortuneAccountOrdersController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Order History')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Order History')) 16 16 + ->setBorder(true); 17 17 18 18 $header = $this->buildHeaderView(); 19 19 + $authority = $this->newAccountAuthorityView(); 20 20 + 19 21 $order_history = $this->newRecentOrdersView($account, 100); 20 22 21 23 $view = id(new PHUITwoColumnView()) 22 24 ->setHeader($header) 23 25 ->setFooter( 24 26 array( 27 27 + $authority, 25 28 $order_history, 26 29 )); 27 30

+6 -5

src/applications/phortune/controller/account/PhortuneAccountOverviewController.php

reviewed

··· 3 3 final class PhortuneAccountOverviewController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 ··· 26 25 27 26 $header = $this->buildHeaderView(); 28 27 28 28 + $authority = $this->newAccountAuthorityView(); 29 29 $status = $this->buildStatusView($account, $invoices); 30 30 $invoices = $this->buildInvoicesSection($account, $invoices); 31 31 $purchase_history = $this->newRecentOrdersView($account, 10); ··· 34 34 ->setHeader($header) 35 35 ->setFooter( 36 36 array( 37 37 + $authority, 37 38 $status, 38 39 $invoices, 39 40 $purchase_history,

+9 -7

src/applications/phortune/controller/account/PhortuneAccountPaymentMethodsController.php

reviewed

··· 3 3 final class PhortuneAccountPaymentMethodsController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Payment Methods')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Payment Methods')) 16 16 + ->setBorder(true); 17 17 18 18 + $authority = $this->newAccountAuthorityView(); 18 19 $header = $this->buildHeaderView(); 19 20 $methods = $this->buildPaymentMethodsSection($account); 20 21 ··· 22 23 ->setHeader($header) 23 24 ->setFooter( 24 25 array( 26 26 + $authority, 25 27 $methods, 26 28 )); 27 29

+23 -16

src/applications/phortune/controller/account/PhortuneAccountProfileController.php

reviewed

··· 17 17 ->setHeader($title) 18 18 ->setHeaderIcon('fa-user-circle'); 19 19 20 20 - return $header; 21 21 - } 20 20 + if ($this->getMerchants()) { 21 21 + $customer_tag = id(new PHUITagView()) 22 22 + ->setType(PHUITagView::TYPE_SHADE) 23 23 + ->setName(pht('Customer Account')) 24 24 + ->setColor('indigo') 25 25 + ->setIcon('fa-credit-card'); 26 26 + $header->addTag($customer_tag); 27 27 + } 22 28 23 23 - protected function buildApplicationCrumbs() { 24 24 - $crumbs = parent::buildApplicationCrumbs(); 25 25 - $crumbs->setBorder(true); 26 26 - return $crumbs; 29 29 + return $header; 27 30 } 28 31 29 32 protected function buildSideNavView($filter = null) { 30 33 $viewer = $this->getViewer(); 31 34 $account = $this->getAccount(); 32 35 $id = $account->getID(); 36 36 + 37 37 + $can_edit = !$this->getMerchants(); 33 38 34 39 $nav = id(new AphrontSideNavFilterView()) 35 40 ->setBaseURI(new PhutilURI($this->getApplicationURI())); ··· 42 47 $this->getApplicationURI("/{$id}/"), 43 48 'fa-user-circle'); 44 49 45 45 - $nav->addFilter( 46 46 - 'details', 47 47 - pht('Account Details'), 48 48 - $this->getApplicationURI("/account/{$id}/details/"), 49 49 - 'fa-address-card-o'); 50 50 + $nav->newLink('details') 51 51 + ->setName(pht('Account Details')) 52 52 + ->setHref($this->getApplicationURI("/account/{$id}/details/")) 53 53 + ->setIcon('fa-address-card-o') 54 54 + ->setWorkflow(!$can_edit) 55 55 + ->setDisabled(!$can_edit); 50 56 51 57 $nav->addLabel(pht('Payments')); 52 58 ··· 82 88 $this->getApplicationURI("/account/{$id}/managers/"), 83 89 'fa-group'); 84 90 85 85 - $nav->addFilter( 86 86 - 'addresses', 87 87 - pht('Email Addresses'), 88 88 - $this->getApplicationURI("/account/{$id}/addresses/"), 89 89 - 'fa-envelope-o'); 91 91 + $nav->newLink('addresses') 92 92 + ->setname(pht('Email Addresses')) 93 93 + ->setHref($this->getApplicationURI("/account/{$id}/addresses/")) 94 94 + ->setIcon('fa-envelope-o') 95 95 + ->setWorkflow(!$can_edit) 96 96 + ->setDisabled(!$can_edit); 90 97 91 98 $nav->selectFilter($filter); 92 99

+14 -10

src/applications/phortune/controller/account/PhortuneAccountSubscriptionController.php

reviewed

··· 3 3 final class PhortuneAccountSubscriptionController 4 4 extends PhortuneAccountProfileController { 5 5 6 6 - public function handleRequest(AphrontRequest $request) { 7 7 - $response = $this->loadAccount(); 8 8 - if ($response) { 9 9 - return $response; 10 10 - } 6 6 + protected function shouldRequireAccountEditCapability() { 7 7 + return false; 8 8 + } 11 9 10 10 + protected function handleAccountRequest(AphrontRequest $request) { 12 11 $account = $this->getAccount(); 13 12 $title = $account->getName(); 14 13 15 15 - $crumbs = $this->buildApplicationCrumbs(); 16 16 - $crumbs->addTextCrumb(pht('Subscriptions')); 14 14 + $crumbs = $this->buildApplicationCrumbs() 15 15 + ->addTextCrumb(pht('Subscriptions')) 16 16 + ->setBorder(true); 17 17 18 18 $header = $this->buildHeaderView(); 19 19 + $authority = $this->newAccountAuthorityView(); 20 20 + 19 21 $subscriptions = $this->buildSubscriptionsSection($account); 20 22 21 23 $view = id(new PHUITwoColumnView()) 22 24 ->setHeader($header) 23 23 - ->setFooter(array( 24 24 - $subscriptions, 25 25 - )); 25 25 + ->setFooter( 26 26 + array( 27 27 + $authority, 28 28 + $subscriptions, 29 29 + )); 26 30 27 31 $navigation = $this->buildSideNavView('subscriptions'); 28 32

+12 -2

src/applications/phortune/storage/PhortuneAccount.php

reviewed

··· 138 138 return $this; 139 139 } 140 140 141 141 + public function isUserAccountMember(PhabricatorUser $user) { 142 142 + $user_phid = $user->getPHID(); 143 143 + if (!$user_phid) { 144 144 + return null; 145 145 + } 146 146 + 147 147 + $member_map = array_fuse($this->getMemberPHIDs()); 148 148 + 149 149 + return isset($member_map[$user_phid]); 150 150 + } 151 151 + 141 152 /* -( PhabricatorApplicationTransactionInterface )------------------------- */ 142 153 143 154 ··· 174 185 } 175 186 176 187 public function hasAutomaticCapability($capability, PhabricatorUser $viewer) { 177 177 - $members = array_fuse($this->getMemberPHIDs()); 178 178 - if (isset($members[$viewer->getPHID()])) { 188 188 + if ($this->isUserAccountMember($viewer)) { 179 189 return true; 180 190 } 181 191

+2 -1

src/applications/phortune/storage/PhortuneAccountEmail.php

reviewed

··· 73 73 74 74 public function getURI() { 75 75 return urisprintf( 76 76 - '/phortune/address/%d/', 76 76 + '/phortune/account/%d/addresses/%d/', 77 77 + $this->getAccount()->getID(), 77 78 $this->getID()); 78 79 } 79 80

src/view/layout/AphrontSideNavFilterView.php

reviewed

··· 111 111 $key, $name, $uri, PHUIListItemView::TYPE_BUTTON); 112 112 } 113 113 114 114 + public function newLink($key) { 115 115 + $this->addFilter($key, ''); 116 116 + return $this->getMenuView()->getItem($key); 117 117 + } 118 118 + 114 119 private function addThing($key, $name, $uri, $type, $icon = null) { 115 120 $item = id(new PHUIListItemView()) 116 121 ->setName($name)