Update: 2026-05-06 01:38:39
This commit is contained in:
Hamza-Ayed
72
app/modules_app/batches/create.php
Normal file
72
app/modules_app/batches/create.php
Normal file
@@ -0,0 +1,72 @@
|
||||
<?php
|
||||
/**
|
||||
* Create Batch Endpoint
|
||||
* POST /v1/batches/create
|
||||
*
|
||||
* Creates a new invoice batch for the mobile scanner.
|
||||
* Returns batch_id that the mobile app uses to upload images.
|
||||
*/
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
use App\Core\Database;
|
||||
use App\Middleware\AuthMiddleware;
|
||||
use App\Core\Security;
|
||||
use App\Core\Validator;
|
||||
use App\Middleware\QuotaMiddleware;
|
||||
|
||||
$decoded = AuthMiddleware::check();
|
||||
$tenantId = $decoded['tenant_id'];
|
||||
$userId = $decoded['user_id'];
|
||||
|
||||
$data = Security::sanitize(input());
|
||||
|
||||
// 1. Validate
|
||||
$errors = Validator::validate($data, [
|
||||
'company_id' => 'required',
|
||||
]);
|
||||
|
||||
if ($errors) {
|
||||
json_error('رقم الشركة مطلوب', 422, $errors);
|
||||
}
|
||||
|
||||
$companyId = $data['company_id'];
|
||||
$source = $data['source'] ?? 'mobile_scan';
|
||||
$expectedImages = (int)($data['expected_images'] ?? 0);
|
||||
|
||||
// 2. Permission check
|
||||
$db = Database::getInstance();
|
||||
$stmt = $db->prepare("SELECT id FROM companies WHERE id = ? AND tenant_id = ? AND deleted_at IS NULL");
|
||||
$stmt->execute([$companyId, $tenantId]);
|
||||
|
||||
if (!$stmt->fetch()) {
|
||||
json_error('الوصول مرفوض لهذه الشركة', 403);
|
||||
}
|
||||
|
||||
// 3. Check quota (preview — don't increment yet)
|
||||
try {
|
||||
QuotaMiddleware::checkInvoiceQuota($tenantId);
|
||||
} catch (\Exception $e) {
|
||||
json_error('تم استنفاد رصيد الفواتير لهذا الشهر. قم بترقية باقتك.', 429);
|
||||
}
|
||||
|
||||
// 4. Generate batch ID
|
||||
$batchId = vsprintf('%s%s-%s-%s-%s-%s%s%s', str_split(bin2hex(random_bytes(16)), 4));
|
||||
|
||||
// 5. Create batch record
|
||||
$stmt = $db->prepare("
|
||||
INSERT INTO invoice_batches (id, tenant_id, company_id, uploaded_by, total_images, source, status)
|
||||
VALUES (?, ?, ?, ?, ?, ?, 'uploading')
|
||||
");
|
||||
$stmt->execute([$batchId, $tenantId, $companyId, $userId, $expectedImages, $source]);
|
||||
|
||||
// 6. Create upload directory
|
||||
$uploadDir = STORAGE_PATH . '/invoices/' . $tenantId . '/' . $companyId . '/batches/' . $batchId;
|
||||
if (!is_dir($uploadDir)) {
|
||||
mkdir($uploadDir, 0755, true);
|
||||
}
|
||||
|
||||
json_success([
|
||||
'batch_id' => $batchId,
|
||||
'upload_url' => 'v1/batches/upload-image',
|
||||
], 'تم إنشاء الدفعة بنجاح. ابدأ برفع الصور.');
|
||||
65
app/modules_app/batches/finalize.php
Normal file
65
app/modules_app/batches/finalize.php
Normal file
@@ -0,0 +1,65 @@
|
||||
<?php
|
||||
/**
|
||||
* Finalize Batch Endpoint
|
||||
* POST /v1/batches/finalize
|
||||
*
|
||||
* Marks a batch as ready for processing.
|
||||
* Triggers background processing (or processes synchronously depending on setup).
|
||||
*/
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
use App\Core\Database;
|
||||
use App\Middleware\AuthMiddleware;
|
||||
use App\Core\Security;
|
||||
|
||||
$decoded = AuthMiddleware::check();
|
||||
$tenantId = $decoded['tenant_id'];
|
||||
$userId = $decoded['user_id'];
|
||||
|
||||
$data = Security::sanitize(input());
|
||||
$batchId = $data['batch_id'] ?? null;
|
||||
|
||||
if (!$batchId) {
|
||||
json_error('معرّف الدفعة مطلوب', 422);
|
||||
}
|
||||
|
||||
$db = Database::getInstance();
|
||||
|
||||
// 1. Verify batch
|
||||
$stmt = $db->prepare("
|
||||
SELECT id, status, total_images
|
||||
FROM invoice_batches
|
||||
WHERE id = ? AND tenant_id = ? AND uploaded_by = ?
|
||||
");
|
||||
$stmt->execute([$batchId, $tenantId, $userId]);
|
||||
$batch = $stmt->fetch();
|
||||
|
||||
if (!$batch) {
|
||||
json_error('الدفعة غير موجودة', 404);
|
||||
}
|
||||
|
||||
if ($batch['status'] !== 'uploading') {
|
||||
json_error('تم إنهاء هذه الدفعة مسبقاً', 400);
|
||||
}
|
||||
|
||||
if ($batch['total_images'] == 0) {
|
||||
json_error('لا يمكن إنهاء دفعة فارغة', 400);
|
||||
}
|
||||
|
||||
// 2. Mark as processing
|
||||
$stmt = $db->prepare("
|
||||
UPDATE invoice_batches
|
||||
SET status = 'processing', updated_at = NOW()
|
||||
WHERE id = ?
|
||||
");
|
||||
$stmt->execute([$batchId]);
|
||||
|
||||
// In a real production environment, you would dispatch a job to a queue worker here.
|
||||
// For now, the queue worker is a cron job that checks the `invoice_processing_queue` table.
|
||||
|
||||
json_success([
|
||||
'batch_id' => $batchId,
|
||||
'status' => 'processing',
|
||||
'total_images' => $batch['total_images']
|
||||
], 'تم إنهاء الدفعة بنجاح وإرسالها للمعالجة');
|
||||
54
app/modules_app/batches/status.php
Normal file
54
app/modules_app/batches/status.php
Normal file
@@ -0,0 +1,54 @@
|
||||
<?php
|
||||
/**
|
||||
* Batch Status Endpoint
|
||||
* GET /v1/batches/status
|
||||
*
|
||||
* Returns the processing status of a batch and its items.
|
||||
*/
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
use App\Core\Database;
|
||||
use App\Middleware\AuthMiddleware;
|
||||
use App\Core\Security;
|
||||
|
||||
$decoded = AuthMiddleware::check();
|
||||
$tenantId = $decoded['tenant_id'];
|
||||
$userId = $decoded['user_id'];
|
||||
|
||||
$data = Security::sanitize($_GET);
|
||||
$batchId = $data['batch_id'] ?? null;
|
||||
|
||||
if (!$batchId) {
|
||||
json_error('معرّف الدفعة مطلوب', 422);
|
||||
}
|
||||
|
||||
$db = Database::getInstance();
|
||||
|
||||
// 1. Get batch info
|
||||
$stmt = $db->prepare("
|
||||
SELECT id, status, total_images, processed_images, failed_images, created_at, completed_at
|
||||
FROM invoice_batches
|
||||
WHERE id = ? AND tenant_id = ?
|
||||
");
|
||||
$stmt->execute([$batchId, $tenantId]);
|
||||
$batch = $stmt->fetch();
|
||||
|
||||
if (!$batch) {
|
||||
json_error('الدفعة غير موجودة', 404);
|
||||
}
|
||||
|
||||
// 2. Get items
|
||||
$stmt = $db->prepare("
|
||||
SELECT id, invoice_id, image_order, status, error_message, created_at, processed_at
|
||||
FROM invoice_processing_queue
|
||||
WHERE batch_id = ?
|
||||
ORDER BY image_order ASC
|
||||
");
|
||||
$stmt->execute([$batchId]);
|
||||
$items = $stmt->fetchAll();
|
||||
|
||||
json_success([
|
||||
'batch' => $batch,
|
||||
'items' => $items
|
||||
], 'تم جلب حالة الدفعة');
|
||||
97
app/modules_app/batches/upload_image.php
Normal file
97
app/modules_app/batches/upload_image.php
Normal file
@@ -0,0 +1,97 @@
|
||||
<?php
|
||||
/**
|
||||
* Upload Image to Batch
|
||||
* POST /v1/batches/upload-image
|
||||
*
|
||||
* Uploads a single image to an existing batch.
|
||||
* Supports multipart/form-data with 'image' file and 'batch_id'.
|
||||
*/
|
||||
|
||||
declare(strict_types=1);
|
||||
|
||||
use App\Core\Database;
|
||||
use App\Middleware\AuthMiddleware;
|
||||
|
||||
$decoded = AuthMiddleware::check();
|
||||
$tenantId = $decoded['tenant_id'];
|
||||
$userId = $decoded['user_id'];
|
||||
|
||||
// 1. Validate request
|
||||
$batchId = $_POST['batch_id'] ?? null;
|
||||
$imageOrder = (int)($_POST['image_order'] ?? 0);
|
||||
|
||||
if (!$batchId || !isset($_FILES['image']) || $_FILES['image']['error'] !== UPLOAD_ERR_OK) {
|
||||
$uploadError = $_FILES['image']['error'] ?? 'No file';
|
||||
json_error("معرّف الدفعة وصورة الفاتورة مطلوبان (كود: {$uploadError})", 422);
|
||||
}
|
||||
|
||||
// 2. Verify batch belongs to this tenant and is still uploading
|
||||
$db = Database::getInstance();
|
||||
$stmt = $db->prepare("
|
||||
SELECT id, company_id, status, total_images
|
||||
FROM invoice_batches
|
||||
WHERE id = ? AND tenant_id = ? AND uploaded_by = ?
|
||||
");
|
||||
$stmt->execute([$batchId, $tenantId, $userId]);
|
||||
$batch = $stmt->fetch();
|
||||
|
||||
if (!$batch) {
|
||||
json_error('الدفعة غير موجودة أو ليس لديك صلاحية', 404);
|
||||
}
|
||||
|
||||
if ($batch['status'] !== 'uploading') {
|
||||
json_error('لا يمكن إضافة صور لدفعة تمت معالجتها', 400);
|
||||
}
|
||||
|
||||
// 3. Validate file type
|
||||
$allowedTypes = ['image/jpeg', 'image/png', 'image/webp', 'image/heic', 'image/heif'];
|
||||
$mimeType = $_FILES['image']['type'];
|
||||
if (!in_array($mimeType, $allowedTypes)) {
|
||||
json_error('نوع الملف غير مدعوم. المسموح: JPEG, PNG, WebP, HEIC', 422);
|
||||
}
|
||||
|
||||
// 4. Validate file size (max 10MB)
|
||||
$maxSize = 10 * 1024 * 1024;
|
||||
if ($_FILES['image']['size'] > $maxSize) {
|
||||
json_error('حجم الصورة أكبر من 10 ميغابايت', 422);
|
||||
}
|
||||
|
||||
// 5. Save file
|
||||
$companyId = $batch['company_id'];
|
||||
$uploadDir = STORAGE_PATH . '/invoices/' . $tenantId . '/' . $companyId . '/batches/' . $batchId;
|
||||
if (!is_dir($uploadDir)) {
|
||||
mkdir($uploadDir, 0755, true);
|
||||
}
|
||||
|
||||
$extension = pathinfo($_FILES['image']['name'], PATHINFO_EXTENSION) ?: 'jpg';
|
||||
$fileName = sprintf('img_%03d_%s.%s', $imageOrder, bin2hex(random_bytes(4)), $extension);
|
||||
$targetPath = $uploadDir . '/' . $fileName;
|
||||
|
||||
if (!move_uploaded_file($_FILES['image']['tmp_name'], $targetPath)) {
|
||||
json_error('فشل في حفظ الصورة', 500);
|
||||
}
|
||||
|
||||
// 6. Add to processing queue
|
||||
$stmt = $db->prepare("
|
||||
INSERT INTO invoice_processing_queue (batch_id, tenant_id, company_id, image_path, image_order, status)
|
||||
VALUES (?, ?, ?, ?, ?, 'pending')
|
||||
");
|
||||
$stmt->execute([$batchId, $tenantId, $companyId, $targetPath, $imageOrder]);
|
||||
|
||||
// 7. Update batch image count
|
||||
$stmt = $db->prepare("
|
||||
UPDATE invoice_batches
|
||||
SET total_images = total_images + 1, updated_at = NOW()
|
||||
WHERE id = ?
|
||||
");
|
||||
$stmt->execute([$batchId]);
|
||||
|
||||
// Count uploaded so far
|
||||
$stmt = $db->prepare("SELECT COUNT(*) FROM invoice_processing_queue WHERE batch_id = ?");
|
||||
$stmt->execute([$batchId]);
|
||||
$uploadedCount = (int)$stmt->fetchColumn();
|
||||
|
||||
json_success([
|
||||
'uploaded' => $uploadedCount,
|
||||
'file_name' => $fileName,
|
||||
], "تم رفع الصورة بنجاح ({$uploadedCount} صور في الدفعة)");
|
||||
Reference in New Issue
Block a user