vendor/uvdesk/core-framework/Controller/Ticket.php line 59

Open in your IDE?
  1. <?php
  3. namespace Webkul\UVDesk\CoreFrameworkBundle\Controller;
  5. use Symfony\Component\HttpFoundation\Request;
  6. use Symfony\Component\HttpFoundation\Response;
  7. use Webkul\UVDesk\CoreFrameworkBundle\Form as CoreFrameworkBundleForms;
  8. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  9. use Webkul\UVDesk\CoreFrameworkBundle\Entity as CoreFrameworkBundleEntities;
  10. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  11. use Webkul\UVDesk\CoreFrameworkBundle\DataProxies as CoreFrameworkBundleDataProxies;
  12. use Webkul\UVDesk\CoreFrameworkBundle\Workflow\Events as CoreWorkflowEvents;
  13. use Webkul\UVDesk\CoreFrameworkBundle\Tickets\QuickActionButtonCollection;
  14. use Webkul\UVDesk\CoreFrameworkBundle\Repository\TicketRepository;
  15. use Webkul\UVDesk\CoreFrameworkBundle\Services\UserService;
  16. use Symfony\Contracts\Translation\TranslatorInterface;
  17. use Webkul\UVDesk\CoreFrameworkBundle\Services\UVDeskService;
  18. use Webkul\UVDesk\CoreFrameworkBundle\Services\TicketService;
  19. use Webkul\UVDesk\CoreFrameworkBundle\Services\EmailService;
  20. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  21. use Symfony\Component\HttpKernel\KernelInterface;
  22. use Doctrine\ORM\EntityManagerInterface;
  23. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  24. use Symfony\Component\DependencyInjection\ContainerInterface;
  25. use Webkul\UVDesk\CoreFrameworkBundle\Entity\Attachment;
  26. use Webkul\UVDesk\CoreFrameworkBundle\Entity\Thread;
  27. use Webkul\UVDesk\CoreFrameworkBundle\Entity\Ticket as CoreBundleTicket;
  28. use Webkul\UVDesk\CoreFrameworkBundle\Entity\Tag;
  29. use Webkul\UVDesk\CoreFrameworkBundle\Entity\TicketType;
  30. use Webkul\UVDesk\CoreFrameworkBundle\Entity\SupportRole;
  31. use Webkul\UVDesk\CoreFrameworkBundle\Entity\User;
  32. use Webkul\UVDesk\CoreFrameworkBundle\Entity\TicketPriority;
  33. use Webkul\UVDesk\CoreFrameworkBundle\Entity\TicketStatus;
  34. use Webkul\UVDesk\CoreFrameworkBundle\Entity as CoreEntities;
  36. class Ticket extends AbstractController
  37. {
  38.     private $userService;
  39.     private $translator;
  40.     private $eventDispatcher;
  41.     private $ticketService;
  42.     private $emailService;
  43.     private $entityManagerInterface;
  44.     private $containerInterface;
  45.     private $kernel;
  47.     public function __construct(UserService $userServiceTranslatorInterface $translatorTicketService $ticketServiceEmailService $emailServiceEventDispatcherInterface $eventDispatcherKernelInterface $kernelEntityManagerInterface $entityManagerInterfaceContainerInterface $containerInterface)
  48.     {
  49.         $this->userService $userService;
  50.         $this->emailService $emailService;
  51.         $this->translator $translator;
  52.         $this->ticketService $ticketService;
  53.         $this->eventDispatcher $eventDispatcher;
  54.         $this->entityManagerInterface $entityManagerInterface;
  55.         $this->containerInterface $containerInterface;
  56.         $this->kernel $kernel;
  57.     }
  59.     public function listTicketCollection(Request $request)
  60.     {
  61.         $entityManager $this->getDoctrine()->getManager();
  63.         return $this->render('@UVDeskCoreFramework//ticketList.html.twig', [
  64.             'ticketStatusCollection'   => $entityManager->getRepository(TicketStatus::class)->findAll(),
  65.             'ticketTypeCollection'     => $entityManager->getRepository(TicketType::class)->findByIsActive(true),
  66.             'ticketPriorityCollection' => $entityManager->getRepository(TicketPriority::class)->findAll(),
  67.         ]);
  68.     }
  70.     public function loadTicket($ticketIdQuickActionButtonCollection $quickActionButtonCollectionContainerInterface $container)
  71.     {
  72.         $entityManager $this->getDoctrine()->getManager();
  73.         $userRepository $entityManager->getRepository(User::class);
  74.         $ticketRepository $entityManager->getRepository(CoreBundleTicket::class);
  76.         $ticket $ticketRepository->findOneById($ticketId);
  77.         
  78.         if (empty($ticket)) {
  79.             throw new NotFoundHttpException('Page not found!');
  80.         }
  81.         
  82.         $user $this->userService->getSessionUser();
  83.         
  84.         // Proceed only if user has access to the resource
  85.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  86.             throw new \Exception('Access Denied'403);
  87.         }
  89.         $agent $ticket->getAgent();
  90.         $customer $ticket->getCustomer();
  91.      
  92.         if (! empty($agent)) {    
  93.             $ticketAssignAgent $agent->getId();
  94.             $currentUser $user->getId();
  95.         }
  96.         
  97.         // Mark as viewed by agents
  98.         if (false == $ticket->getIsAgentViewed()) {
  99.             $ticket->setIsAgentViewed(true);
  101.             $entityManager->persist($ticket);
  102.             $entityManager->flush();
  103.         }
  104.     
  105.         // Ticket Authorization
  106.         $supportRole $user->getCurrentInstance()->getSupportRole()->getCode(); 
  107.         switch($supportRole) {
  108.             case 'ROLE_ADMIN':
  109.             case 'ROLE_SUPER_ADMIN':
  110.                 break;
  111.             case 'ROLE_AGENT':
  112.                 $accessLevel = (int) $user->getCurrentInstance()->getTicketAccessLevel();
  113.                 switch($accessLevel) {
  114.                     case TicketRepository::TICKET_GLOBAL_ACCESS:
  115.                         break;
  116.                     case TicketRepository::TICKET_GROUP_ACCESS:
  117.                         $supportGroups array_map(function($supportGroup) { return $supportGroup->getId(); }, $user->getCurrentInstance()->getSupportGroups()->getValues());                       
  118.                         $ticketAccessableGroups $ticket->getSupportGroup() ? [$ticket->getSupportGroup()->getId()] : [];
  119.  
  120.                         if ($ticket->getSupportTeam()) {
  121.                             $ticketSupportTeamGroups array_map(function($supportGroup) { return $supportGroup->getId(); }, $ticket->getSupportTeam()->getSupportGroups()->getValues());
  122.                             $ticketAccessableGroups array_merge($ticketAccessableGroups$ticketSupportTeamGroups);
  123.                         }
  124.                         $isAccessableGroupFound false;
  125.                         foreach ($ticketAccessableGroups as $groupId) {
  126.                             if (in_array($groupId$supportGroups)) {
  127.                                 $isAccessableGroupFound true;
  128.                                 break;
  129.                             }
  130.                         }
  131.                         if (! $isAccessableGroupFound && !($ticketAssignAgent == $currentUser)) {
  132.                             throw new NotFoundHttpException('Page not found!');
  133.                         }
  134.                         break;
  135.                     case TicketRepository::TICKET_TEAM_ACCESS:
  136.                         $supportTeams array_map(function($supportTeam) { return $supportTeam->getId(); }, $user->getCurrentInstance()->getSupportTeams()->getValues());                         
  137.                         $supportTeam $ticket->getSupportTeam();
  138.                         if (!($supportTeam && in_array($supportTeam->getId(), $supportTeams)) && !($ticketAssignAgent == $currentUser)) {
  139.                             throw new NotFoundHttpException('Page not found!');
  140.                         }
  141.                         break;
  142.                     default:
  143.                         $collaborators array_map( function ($collaborator) { return $collaborator->getId(); }, $ticket->getCollaborators()->getValues());
  144.                         $accessableAgents array_merge($collaborators$ticket->getAgent() ? [$ticket->getAgent()->getId()] : []);
  145.                         if (!in_array($user->getId(), $accessableAgents)) {
  146.                             throw new NotFoundHttpException('Page not found!');
  147.                         }
  148.                         break;
  149.                 }
  150.                 break;
  151.             default:
  152.                 throw new NotFoundHttpException('Page not found!');
  153.         }
  155.         $quickActionButtonCollection->prepareAssets();
  157.         return $this->render('@UVDeskCoreFramework//ticket.html.twig', [
  158.             'ticket'                    => $ticket,
  159.             'totalReplies'              => $ticketRepository->countTicketTotalThreads($ticket->getId()),
  160.             'totalCustomerTickets'      => ($ticketRepository->countCustomerTotalTickets($customer$container) - 1),
  161.             'initialThread'             => $this->ticketService->getTicketInitialThreadDetails($ticket),
  162.             'ticketAgent'               => ! empty($agent) ? $agent->getAgentInstance()->getPartialDetails() : null,
  163.             'customer'                  => $customer->getCustomerInstance()->getPartialDetails(),
  164.             'currentUserDetails'        => $user->getAgentInstance()->getPartialDetails(),
  165.             'supportGroupCollection'    => $userRepository->getSupportGroups(),
  166.             'supportTeamCollection'     => $userRepository->getSupportTeams(),
  167.             'ticketStatusCollection'    => $entityManager->getRepository(TicketStatus::class)->findAll(),
  168.             'ticketTypeCollection'      => $entityManager->getRepository(TicketType::class)->findByIsActive(true),
  169.             'ticketPriorityCollection'  => $entityManager->getRepository(TicketPriority::class)->findAll(),
  170.             'ticketNavigationIteration' => $ticketRepository->getTicketNavigationIteration($ticket$container),
  171.             'ticketLabelCollection'     => $ticketRepository->getTicketLabelCollection($ticket$user),
  172.         ]);
  173.     }
  175.     public function saveTicket(Request $request)
  176.     {
  177.         $requestParams $request->request->all();
  178.         $entityManager $this->getDoctrine()->getManager();
  179.         $response $this->redirect($this->generateUrl('helpdesk_member_ticket_collection'));
  181.         if (
  182.             $request->getMethod() != 'POST' 
  183.             || false == $this->userService->isAccessAuthorized('ROLE_AGENT_CREATE_TICKET')
  184.         ) {
  185.             return $response;
  186.         }
  188.         $website $entityManager->getRepository(CoreEntities\Website::class)->findOneByCode('knowledgebase');
  189.         if (
  190.             ! empty($requestParams['from']) 
  191.             && $this->ticketService->isEmailBlocked($requestParams['from'], $website)
  192.         ) {
  193.             $request->getSession()->getFlashBag()->set('warning'$this->translator->trans('Warning ! Cannot create ticket, given email is blocked by admin.'));
  194.             
  195.             return $this->redirect($this->generateUrl('helpdesk_member_ticket_collection'));
  196.         }
  198.         // Get referral ticket if any
  199.         $ticketValidationGroup 'CreateTicket';
  200.         $referralURL $request->headers->get('referer');
  202.         if (! empty($referralURL)) {
  203.             $iterations explode('/'$referralURL);
  204.             $referralId array_pop($iterations);
  205.             $expectedReferralURL $this->generateUrl('helpdesk_member_ticket', ['ticketId' => $referralId], UrlGeneratorInterface::ABSOLUTE_URL);
  207.             if ($referralURL === $expectedReferralURL) {
  208.                 $referralTicket $entityManager->getRepository(CoreBundleTicket::class)->findOneById($referralId);
  210.                 if (! empty($referralTicket)) {
  211.                     $ticketValidationGroup 'CustomerCreateTicket';
  212.                 }
  213.             }
  214.         }
  216.         $ticketType $entityManager->getRepository(TicketType::class)->findOneById($requestParams['type']);
  218.         try {
  219.             if ($this->userService->isFileExists('apps/uvdesk/custom-fields')) {
  220.                 $customFieldsService $this->get('uvdesk_package_custom_fields.service');
  221.             } else if ($this->userService->isFileExists('apps/uvdesk/form-component')) {
  222.                 $customFieldsService $this->get('uvdesk_package_form_component.service');
  223.             }
  225.             if (! empty($customFieldsService)) {
  226.                 extract($customFieldsService->customFieldsValidation($request'user'));
  227.             }
  228.         } catch (\Exception $e) {
  229.             // @TODO: Log execption message
  230.         }
  232.         if (! empty($errorFlashMessage)) {
  233.             $this->addFlash('warning'$errorFlashMessage);
  234.         }
  235.         
  236.         $ticketProxy = new CoreFrameworkBundleDataProxies\CreateTicketDataClass();
  237.         $form $this->createForm(CoreFrameworkBundleForms\CreateTicket::class, $ticketProxy);
  239.         // Validate Ticket Details
  240.         $form->submit($requestParams);
  242.         if (false == $form->isSubmitted() || false == $form->isValid()) {
  243.             if (false === $form->isValid()) {
  244.                 // @TODO: We need to handle form errors gracefully.
  245.                 // We should also look into switching to an xhr request instead.
  246.                 // $form->getErrors(true);
  247.             }
  249.             return $this->redirect(!empty($referralURL) ? $referralURL $this->generateUrl('helpdesk_member_ticket_collection'));
  250.         }
  252.         if ('CustomerCreateTicket' === $ticketValidationGroup && !empty($referralTicket)) {
  253.             // Retrieve customer details from referral ticket
  254.             $customer $referralTicket->getCustomer();
  255.             $customerPartialDetails $customer->getCustomerInstance()->getPartialDetails();
  256.         } else if (null != $ticketProxy->getFrom() && null != $ticketProxy->getName()) {
  257.             // Create customer if account does not exists
  258.             $customer $entityManager->getRepository(User::class)->findOneByEmail($ticketProxy->getFrom());
  260.             if (
  261.                 empty($customer
  262.                 || null == $customer->getCustomerInstance()
  263.             ) {
  264.                 $role $entityManager->getRepository(SupportRole::class)->findOneByCode('ROLE_CUSTOMER');
  266.                 // Create User Instance
  267.                 $customer $this->userService->createUserInstance($ticketProxy->getFrom(), $ticketProxy->getName(), $role, [
  268.                     'source' => 'website',
  269.                     'active' => true
  270.                 ]);
  271.             }
  272.         }
  274.         $ticketData = [
  275.             'from'        => $customer->getEmail(),
  276.             'name'        => $customer->getFirstName() . ' ' $customer->getLastName(),
  277.             'type'        => $ticketProxy->getType(),
  278.             'subject'     => $ticketProxy->getSubject(),
  279.             // @TODO: We need to enable support for html messages. 
  280.             // Our focus here instead should be to prevent XSS (filter js)
  281.             'message'     => str_replace(['&lt;script&gt;''&lt;/script&gt;'], ''htmlspecialchars($ticketProxy->getReply())),
  282.             'firstName'   => $customer->getFirstName(),
  283.             'lastName'    => $customer->getLastName(),
  284.             'type'        => $ticketProxy->getType(),
  285.             'role'        => 4,
  286.             'source'      => 'website',
  287.             'threadType'  => 'create',
  288.             'createdBy'   => 'agent',
  289.             'customer'    => $customer,
  290.             'user'        => $this->getUser(),
  291.             'attachments' => $request->files->get('attachments'),
  292.         ];
  294.         $thread $this->ticketService->createTicketBase($ticketData);
  297.         $ticket $thread->getTicket();
  299.         // Trigger ticket created event
  300.         try {
  301.             $event = new CoreWorkflowEvents\Ticket\Create();
  302.             $event
  303.                 ->setTicket($ticket)
  304.             ;
  306.             $this->eventDispatcher->dispatch($event'uvdesk.automation.workflow.execute');
  307.         } catch (\Exception $e) {
  308.             // Skip Automation
  309.         }
  311.         if (! empty($thread)) {
  312.             $ticket $thread->getTicket();
  313.             if (
  314.                 $request->request->get('customFields'
  315.                 || $request->files->get('customFields')
  316.             ) {
  317.                 $this->ticketService->addTicketCustomFields($thread$request->request->get('customFields'), $request->files->get('customFields'));                        
  318.             }
  320.             $this->addFlash('success'$this->translator->trans('Success ! Ticket has been created successfully.'));
  322.             if ($this->userService->isAccessAuthorized('ROLE_ADMIN')) {
  323.                 return $this->redirect($this->generateUrl('helpdesk_member_ticket', ['ticketId' => $ticket->getId()]));
  324.             }
  325.         } else {
  326.             $this->addFlash('warning'$this->translator->trans('Could not create ticket, invalid details.'));
  327.         }
  329.         return $this->redirect(!empty($referralURL) ? $referralURL $this->generateUrl('helpdesk_member_ticket_collection'));
  330.     }
  332.     public function listTicketTypeCollection(Request $request)
  333.     {
  334.         if (! $this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TICKET_TYPE')) {
  335.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  336.         }
  338.         return $this->render('@UVDeskCoreFramework/ticketTypeList.html.twig');
  339.     }
  341.     public function ticketType(Request $request)
  342.     {
  343.         if (! $this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TICKET_TYPE')) {
  344.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  345.         }
  347.         $errorContext = [];
  348.         $em $this->getDoctrine()->getManager();
  350.         if ($id $request->attributes->get('ticketTypeId')) {
  351.             $type $em->getRepository(TicketType::class)->find($id);
  352.             if (! $type) {
  353.                 $this->noResultFound();
  354.             }
  355.         } else {
  356.             $type = new CoreFrameworkBundleEntities\TicketType();
  357.         }
  359.         if ($request->getMethod() == "POST") {
  360.             $data $request->request->all();
  361.             $ticketType $em->getRepository(TicketType::class)->findOneByCode($data['code']);
  363.             if (
  364.                 ! empty($ticketType
  365.                 && $id != $ticketType->getId()
  366.             ) {
  367.                 $this->addFlash('warning'sprintf('Error! Ticket type with same name already exist'));
  368.             } else {
  369.                 $type->setCode(trim($data['code']));
  370.                 $type->setDescription(trim($data['description']));
  371.                 $type->setIsActive(isset($data['isActive']) ? 0);
  373.                 $em->persist($type);
  374.                 $em->flush();
  376.                 if (! $request->attributes->get('ticketTypeId')) {
  377.                     $this->addFlash('success'$this->translator->trans('Success! Ticket type saved successfully.'));
  378.                 } else {
  379.                     $this->addFlash('success'$this->translator->trans('Success! Ticket type updated successfully.'));
  380.                 }
  382.                 return $this->redirect($this->generateUrl('helpdesk_member_ticket_type_collection'));
  383.             }
  384.         }
  386.         return $this->render('@UVDeskCoreFramework/ticketTypeAdd.html.twig', array(
  387.             'type'   => $type,
  388.             'errors' => json_encode($errorContext)
  389.         ));
  390.     }
  392.     public function listTagCollection(Request $request)
  393.     {
  394.         if (!$this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TAG')) {
  395.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  396.         }
  398.         $enabled_bundles $this->getParameter('kernel.bundles');
  400.         return $this->render('@UVDeskCoreFramework/supportTagList.html.twig', [
  401.             'articlesEnabled' => in_array('UVDeskSupportCenterBundle'array_keys($enabled_bundles)),
  402.         ]);
  403.     }
  405.     public function removeTicketTagXHR($tagIdRequest $request)
  406.     {
  407.         if (!$this->userService->isAccessAuthorized('ROLE_AGENT_MANAGE_TAG')) {
  408.             return $this->redirect($this->generateUrl('helpdesk_member_dashboard'));
  409.         }
  411.         $json = [];
  412.         if($request->getMethod() == "DELETE") {
  413.             $em $this->getDoctrine()->getManager();
  414.             $tag $em->getRepository(Tag::class)->find($tagId);
  415.             if ($tag) {
  416.                 $em->remove($tag);
  417.                 $em->flush();
  418.                 $json['alertClass'] = 'success';
  419.                 $json['alertMessage'] = $this->translator->trans('Success ! Tag removed successfully.');
  420.             }
  421.         }
  423.         $response = new Response(json_encode($json));
  424.         $response->headers->set('Content-Type''application/json');
  425.         
  426.         return $response;
  427.     }
  429.     public function trashTicket(Request $request)
  430.     {
  431.         $ticketId $request->attributes->get('ticketId');
  432.         $entityManager $this->getDoctrine()->getManager();
  433.         $ticket $entityManager->getRepository(CoreBundleTicket::class)->find($ticketId);
  435.         if (! $ticket) {
  436.             $this->noResultFound();
  437.         }
  439.         $user $this->userService->getSessionUser();
  440.         // Proceed only if user has access to the resource
  441.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  442.             throw new \Exception('Access Denied'403);
  443.         }
  445.         if (! $ticket->getIsTrashed()) {
  446.             $ticket->setIsTrashed(1);
  448.             $entityManager->persist($ticket);
  449.             $entityManager->flush();
  450.         }
  452.         // Trigger ticket delete event
  453.         $event = new CoreWorkflowEvents\Ticket\Delete();
  454.         $event
  455.             ->setTicket($ticket)
  456.         ;
  458.         $this->eventDispatcher->dispatch($event'uvdesk.automation.workflow.execute');
  459.         
  460.         $this->addFlash('success'$this->translator->trans('Success ! Ticket moved to trash successfully.'));
  462.         return $this->redirectToRoute('helpdesk_member_ticket_collection');
  463.     }
  465.     // Delete a ticket ticket permanently
  466.     public function deleteTicket(Request $request)
  467.     {
  468.         $ticketId $request->attributes->get('ticketId');
  469.         $entityManager $this->getDoctrine()->getManager();
  470.         $ticket $entityManager->getRepository(CoreBundleTicket::class)->find($ticketId);
  472.         if (! $ticket) {
  473.             $this->noResultFound();
  474.         }
  476.         $user $this->userService->getSessionUser();
  477.         // Proceed only if user has access to the resource
  478.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  479.             throw new \Exception('Access Denied'403);
  480.         }
  482.         $entityManager->remove($ticket);
  483.         $entityManager->flush();
  485.         $this->addFlash('success'$this->translator->trans('Success ! Success ! Ticket Id #'$ticketId .' has been deleted successfully.'));
  487.         return $this->redirectToRoute('helpdesk_member_ticket_collection');
  488.     }
  490.     public function downloadZipAttachment(Request $request)
  491.     {
  492.         $threadId $request->attributes->get('threadId');
  493.         $attachmentRepository $this->getDoctrine()->getManager()->getRepository(Attachment::class);
  494.         $threadRepository $this->getDoctrine()->getManager()->getRepository(Thread::class);
  496.         $thread $threadRepository->findOneById($threadId);
  498.         $attachment $attachmentRepository->findByThread($threadId);
  500.         if (! $attachment) {
  501.             $this->noResultFound();
  502.         }
  504.         $ticket $thread->getTicket();
  505.         $user $this->userService->getSessionUser();
  506.         
  507.         // Proceed only if user has access to the resource
  508.         if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  509.             throw new \Exception('Access Denied'403);
  510.         }
  512.         $zipName 'attachments/' .$threadId.'.zip';
  513.         $zip = new \ZipArchive;
  515.         $zip->open($zipName\ZipArchive::CREATE);
  516.         if (count($attachment)) {
  517.             foreach ($attachment as $attach) {
  518.                 $zip->addFile(ltrim($attach->getPath(), '/'));
  519.             }
  520.         }
  522.         $zip->close();
  524.         $response = new Response();
  525.         $response->setStatusCode(200);
  526.         $response->headers->set('Content-type''application/zip');
  527.         $response->headers->set('Content-Disposition''attachment; filename=' $threadId '.zip');
  528.         $response->headers->set('Content-length'filesize($zipName));
  529.         $response->sendHeaders();
  530.         $response->setContent(readfile($zipName));
  532.         return $response;
  533.     }
  535.     public function downloadAttachment(Request $request)
  536.     {   
  537.         $attachmentId $request->attributes->get('attachmendId');
  538.         $attachment $this->getDoctrine()->getManager()->getRepository(Attachment::class)->findOneById($attachmentId);
  539.         
  540.         $baseurl $request->getScheme() . '://' $request->getHttpHost() . $request->getBasePath();
  542.         if (empty($attachment)) {
  543.             $this->noResultFound();
  544.         }
  546.         $thread $attachment->getThread();
  548.         if (! empty($thread)) {
  549.             $ticket $thread->getTicket();
  550.             $user $this->userService->getSessionUser();
  552.             // Proceed only if user has access to the resource
  553.             if (false == $this->ticketService->isTicketAccessGranted($ticket$user)) {
  554.                 throw new \Exception('Access Denied'403);
  555.             }
  556.         }
  558.         $path $this->kernel->getProjectDir() . "/public/"$attachment->getPath();
  560.         $response = new Response();
  561.         $response->setStatusCode(200);
  562.         $response->headers->set('Content-type'$attachment->getContentType());
  563.         $response->headers->set('Content-Disposition''attachment; filename='$attachment->getName());
  564.         $response->headers->set('Content-Length'$attachment->getSize());
  566.         $response->sendHeaders();
  567.         $response->setContent(readfile($path));
  569.         return $response;
  570.     }
  572.     /**
  573.      * If customer is playing with url and no result is found then what will happen
  574.      * @return 
  575.      */
  576.     protected function noResultFound()
  577.     {
  578.         throw new NotFoundHttpException('Not Found!');
  579.     }
  580. }