Acasă Explorează Ajutor
Înregistrare Autentificare
NetTown
/
nettown_backend
2
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Ramură: master
Ramuri Etichete
nettown_backend
/
models
/
CompanyModel.php

CompanyModel.php 5.0 KB
Permalink Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138 
  1. <?php
    2. 

  2. 

  3. namespace Models;
    4. 

  4. 

  5. use Libs\Database;
    6. 

  6. use Libs\Hmac;
    7. 

  7. use Libs\Logger;
    8. 

  8. 

  9. /**
    10. 

  10.  * Provisionamento de empresas (tenants).
    11. 

  11.  *
    12. 

  12.  * Cria a empresa e o seu primeiro usuário (admin) de forma ATÔMICA: ou os dois
    13. 

  13.  * são criados, ou nenhum. Já gera o segredo HMAC da empresa (usado nos webhooks
    14. 

  14.  * de CRM) no momento da criação.
    15. 

  15.  */
    16. 

  16. class CompanyModel
    17. 

  17. {
    18. 

  18.     private \PDO $pdo;
    19. 

  19. 

  20.     public function __construct()
    21. 

  21.     {
    22. 

  22.         $this->pdo = Database::pdo();
    23. 

  23.     }
    24. 

  24. 

  25.     /**
    26. 

  26.      * Cria a empresa + usuário admin numa única transação.
    27. 

  27.      *
    28. 

  28.      * @param array $company ['name', 'cnpj', 'logo']
    29. 

  29.      * @param array $admin   ['name', 'email', 'phone', 'password']
    30. 

  30.      * @return array{status:string, company?:array, user?:array}
    31. 

  31.      *         status: 'created' | 'cnpj_exists' | 'email_exists' | 'error'
    32. 

  32.      */
    33. 

  33.     public function createCompanyWithAdmin(array $company, array $admin): array
    34. 

  34.     {
    35. 

  35.         $companyName = trim((string) ($company['name'] ?? ''));
    36. 

  36.         $cnpj = preg_replace('/\D/', '', (string) ($company['cnpj'] ?? ''));
    37. 

  37.         $logo = trim((string) ($company['logo'] ?? ''));
    38. 

  38. 

  39.         $userName = trim((string) ($admin['name'] ?? ''));
    40. 

  40.         $email = mb_strtolower(trim((string) ($admin['email'] ?? '')));
    41. 

  41.         $phone = trim((string) ($admin['phone'] ?? ''));
    42. 

  42.         $password = (string) ($admin['password'] ?? '');
    43. 

  43. 

  44.         if ($this->cnpjExists($cnpj)) {
    45. 

  45.             return ['status' => 'cnpj_exists'];
    46. 

  46.         }
    47. 

  47.         if ($this->emailExists($email)) {
    48. 

  48.             return ['status' => 'email_exists'];
    49. 

  49.         }
    50. 

  50. 

  51.         $secret = Hmac::generateSecret();
    52. 

  52.         $passwordHash = password_hash($password, PASSWORD_DEFAULT);
    53. 

  53. 

  54.         $this->pdo->beginTransaction();
    55. 

  55.         try {
    56. 

  56.             $companyStmt = $this->pdo->prepare(
    57. 

  57.                 "INSERT INTO company (company_name, company_cnpj, company_logo, company_hmac_secret)
    58. 

  58.                 VALUES (:name, :cnpj, :logo, :secret)
    59. 

  59.                 RETURNING company_id, company_name, company_cnpj, company_logo,
    60. 

  60.                           company_hmac_secret, company_created_at"
    61. 

  61.             );
    62. 

  62.             $companyStmt->execute([
    63. 

  63.                 'name' => $companyName,
    64. 

  64.                 'cnpj' => $cnpj,
    65. 

  65.                 'logo' => $logo,
    66. 

  66.                 'secret' => $secret,
    67. 

  67.             ]);
    68. 

  68.             $createdCompany = $companyStmt->fetch(\PDO::FETCH_ASSOC);
    69. 

  69.             $companyId = (int) $createdCompany['company_id'];
    70. 

  70. 

  71.             $userStmt = $this->pdo->prepare(
    72. 

  72.                 "INSERT INTO \"user\" (company_id, user_name, user_phone, user_email, user_role, user_password)
    73. 

  73.                 VALUES (:company_id, :user_name, :user_phone, :user_email, 'admin', :user_password)
    74. 

  74.                 RETURNING user_id, company_id, user_name, user_phone, user_email, user_role, user_created_at"
    75. 

  75.             );
    76. 

  76.             $userStmt->execute([
    77. 

  77.                 'company_id' => $companyId,
    78. 

  78.                 'user_name' => $userName,
    79. 

  79.                 'user_phone' => $phone,
    80. 

  80.                 'user_email' => $email,
    81. 

  81.                 'user_password' => $passwordHash,
    82. 

  82.             ]);
    83. 

  83.             $createdUser = $userStmt->fetch(\PDO::FETCH_ASSOC);
    84. 

  84. 

  85.             $this->pdo->commit();
    86. 

  86.         } catch (\Throwable $e) {
    87. 

  87.             $this->pdo->rollBack();
    88. 

  88.             Logger::error('Failed to create company with admin', [
    89. 

  89.                 'cnpj' => $cnpj,
    90. 

  90.                 'email' => $email,
    91. 

  91.                 'error' => $e->getMessage(),
    92. 

  92.             ]);
    93. 

  93.             return ['status' => 'error'];
    94. 

  94.         }
    95. 

  95. 

  96.         return [
    97. 

  97.             'status' => 'created',
    98. 

  98.             'company' => [
    99. 

  99.                 'company_id' => $companyId,
    100. 

  100.                 'company_name' => $createdCompany['company_name'],
    101. 

  101.                 'company_cnpj' => $createdCompany['company_cnpj'],
    102. 

  102.                 'company_logo' => $createdCompany['company_logo'],
    103. 

  103.                 'company_hmac_secret' => $createdCompany['company_hmac_secret'],
    104. 

  104.                 'company_created_at' => $createdCompany['company_created_at'],
    105. 

  105.             ],
    106. 

  106.             'user' => [
    107. 

  107.                 'user_id' => (int) $createdUser['user_id'],
    108. 

  108.                 'company_id' => (int) $createdUser['company_id'],
    109. 

  109.                 'user_name' => $createdUser['user_name'],
    110. 

  110.                 'user_phone' => $createdUser['user_phone'],
    111. 

  111.                 'user_email' => $createdUser['user_email'],
    112. 

  112.                 'user_role' => $createdUser['user_role'],
    113. 

  113.                 'user_created_at' => $createdUser['user_created_at'],
    114. 

  114.             ],
    115. 

  115.         ];
    116. 

  116.     }
    117. 

  117. 

  118.     private function cnpjExists(string $cnpj): bool
    119. 

  119.     {
    120. 

  120.         $stmt = $this->pdo->prepare(
    121. 

  121.             "SELECT 1 FROM company
    122. 

  122.             WHERE company_cnpj = :cnpj AND company_deleted_at = 'infinity'
    123. 

  123.             LIMIT 1"
    124. 

  124.         );
    125. 

  125.         $stmt->execute(['cnpj' => $cnpj]);
    126. 

  126. 

  127.         return $stmt->fetchColumn() !== false;
    128. 

  128.     }
    129. 

  129. 

  130.     private function emailExists(string $email): bool
    131. 

  131.     {
    132. 

  132.         // user_email é UNIQUE global (não filtra por empresa).
    133. 

  133.         $stmt = $this->pdo->prepare('SELECT 1 FROM "user" WHERE user_email = :email LIMIT 1');
    134. 

  134.         $stmt->execute(['email' => $email]);
    135. 

  135. 

  136.         return $stmt->fetchColumn() !== false;
    137. 

  137.     }
    138. 

  138. }
    139.