1 package OpenILS::WWW::EGCatLoader;
2 use strict; use warnings;
3 use Apache2::Const -compile => qw(OK DECLINED FORBIDDEN HTTP_INTERNAL_SERVER_ERROR REDIRECT HTTP_BAD_REQUEST);
4 use OpenSRF::Utils::Logger qw/$logger/;
5 use OpenILS::Utils::CStoreEditor qw/:funcs/;
6 use OpenILS::Utils::Fieldmapper;
7 use OpenILS::Application::AppUtils;
9 use OpenSRF::Utils::JSON;
11 $Data::Dumper::Indent = 0;
13 my $U = 'OpenILS::Application::AppUtils';
15 sub prepare_extended_user_info {
18 my $e = $self->editor;
20 # are we already in a transaction?
21 my $local_xact = !$e->{xact_id};
22 $e->xact_begin if $local_xact;
24 $self->ctx->{user} = $self->editor->retrieve_actor_user([
25 $self->ctx->{user}->id,
29 au => [qw/card home_ou addresses ident_type billing_address/, @extra_flesh]
35 $e->rollback if $local_xact;
37 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR
38 unless $self->ctx->{user};
43 # Given an event returned by a failed attempt to create a hold, do we have
44 # permission to override? XXX Should the permission check be scoped to a
45 # given org_unit context?
46 sub test_could_override {
47 my ($self, $event) = @_;
49 return 0 unless $event;
50 return 1 if $self->editor->allowed($event->{textcode} . ".override");
51 return 1 if $event->{"fail_part"} and
52 $self->editor->allowed($event->{"fail_part"} . ".override");
56 # Find out whether we care that local copies are available
57 sub local_avail_concern {
58 my ($self, $hold_target, $hold_type, $pickup_lib) = @_;
60 my $would_block = $self->ctx->{get_org_setting}->
61 ($pickup_lib, "circ.holds.hold_has_copy_at.block");
63 $self->ctx->{get_org_setting}->
64 ($pickup_lib, "circ.holds.hold_has_copy_at.alert") and
65 not $self->cgi->param("override")
66 ) unless $would_block;
68 if ($would_block or $would_alert) {
70 "hold_target" => $hold_target,
71 "hold_type" => $hold_type,
72 "org_unit" => $pickup_lib
74 my $local_avail = $U->simplereq(
76 "open-ils.circ.hold.has_copy_at", $self->editor->authtoken, $args
79 "copy availability information for " . Dumper($args) .
80 " is " . Dumper($local_avail)
82 if (%$local_avail) { # if hash not empty
83 $self->ctx->{hold_copy_available} = $local_avail;
84 return ($would_block, $would_alert);
92 # user : au object, fleshed
93 sub load_myopac_prefs {
96 my $e = $self->editor;
97 my $pending_addr = $cgi->param('pending_addr');
98 my $replace_addr = $cgi->param('replace_addr');
99 my $delete_pending = $cgi->param('delete_pending');
101 $self->prepare_extended_user_info;
102 my $user = $self->ctx->{user};
104 my $lock_usernames = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.lock_usernames');
105 if($lock_usernames == 1) {
106 # Policy says no username changes
107 $self->ctx->{username_change_disallowed} = 1;
109 my $username_unlimit = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.unlimit_usernames');
110 if($username_unlimit != 1) {
111 my $regex_check = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.barcode_regex');
113 # Default is "starts with a number"
114 $regex_check = '^\d+';
116 # You already have a username?
117 if($regex_check and $self->ctx->{user}->usrname !~ /$regex_check/) {
118 $self->ctx->{username_change_disallowed} = 1;
123 return Apache2::Const::OK unless
124 $pending_addr or $replace_addr or $delete_pending;
126 my @form_fields = qw/address_type street1 street2 city county state country post_code/;
129 if( $pending_addr ) { # update an existing pending address
131 ($paddr) = grep { $_->id == $pending_addr } @{$user->addresses};
132 return Apache2::Const::HTTP_BAD_REQUEST unless $paddr;
133 $paddr->$_( $cgi->param($_) ) for @form_fields;
135 } elsif( $replace_addr ) { # create a new pending address for 'replace_addr'
137 $paddr = Fieldmapper::actor::user_address->new;
139 $paddr->usr($user->id);
140 $paddr->pending('t');
141 $paddr->replaces($replace_addr);
142 $paddr->$_( $cgi->param($_) ) for @form_fields;
144 } elsif( $delete_pending ) {
145 $paddr = $e->retrieve_actor_user_address($delete_pending);
146 return Apache2::Const::HTTP_BAD_REQUEST unless
147 $paddr and $paddr->usr == $user->id and $U->is_true($paddr->pending);
148 $paddr->isdeleted(1);
151 my $resp = $U->simplereq(
153 'open-ils.actor.user.address.pending.cud',
154 $e->authtoken, $paddr);
156 if( $U->event_code($resp) ) {
157 $logger->error("Error updating pending address: $resp");
158 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
161 # in light of these changes, re-fetch latest data
163 $self->prepare_extended_user_info;
166 return Apache2::Const::OK;
169 sub load_myopac_prefs_notify {
171 my $e = $self->editor;
173 my $user_prefs = $self->fetch_optin_prefs;
174 $user_prefs = $self->update_optin_prefs($user_prefs)
175 if $self->cgi->request_method eq 'POST';
177 $self->ctx->{opt_in_settings} = $user_prefs;
180 my $set_map = $self->ctx->{user_setting_map};
184 opac.default_sms_notify
186 my $val = $self->cgi->param($key);
187 $settings{$key}= $val unless $$set_map{$key} eq $val;
190 my $key = 'opac.default_sms_carrier';
191 my $val = $self->cgi->param('sms_carrier');
192 $settings{$key}= $val unless $$set_map{$key} eq $val;
194 $key = 'opac.hold_notify';
195 my @notify_methods = ();
196 if ($self->cgi->param($key . ".email") eq 'on') {
197 push @notify_methods, "email";
199 if ($self->cgi->param($key . ".phone") eq 'on') {
200 push @notify_methods, "phone";
202 if ($self->cgi->param($key . ".sms") eq 'on') {
203 push @notify_methods, "sms";
205 $val = join("|",@notify_methods);
206 $settings{$key}= $val unless $$set_map{$key} eq $val;
208 # Send the modified settings off to be saved
211 'open-ils.actor.patron.settings.update',
212 $self->editor->authtoken, undef, \%settings);
214 # re-fetch user prefs
215 $self->ctx->{updated_user_settings} = \%settings;
216 return $self->_load_user_with_prefs || Apache2::Const::OK;
219 sub fetch_optin_prefs {
221 my $e = $self->editor;
223 # fetch all of the opt-in settings the user has access to
224 # XXX: user's should in theory have options to opt-in to notices
225 # for remote locations, but that opens the door for a large
226 # set of generally un-used opt-ins.. needs discussion
227 my $opt_ins = $U->simplereq(
229 'open-ils.actor.event_def.opt_in.settings.atomic',
230 $e->authtoken, $e->requestor->home_ou);
232 # some opt-ins are staff-only
233 $opt_ins = [ grep { $U->is_true($_->opac_visible) } @$opt_ins ];
235 # fetch user setting values for each of the opt-in settings
236 my $user_set = $U->simplereq(
238 'open-ils.actor.patron.settings.retrieve',
241 [map {$_->name} @$opt_ins]
244 return [map { {cust => $_, value => $user_set->{$_->name} } } @$opt_ins];
247 sub update_optin_prefs {
249 my $user_prefs = shift;
250 my $e = $self->editor;
251 my @settings = $self->cgi->param('setting');
254 # apply now-true settings
255 for my $applied (@settings) {
256 # see if setting is already applied to this user
257 next if grep { $_->{cust}->name eq $applied and $_->{value} } @$user_prefs;
258 $newsets{$applied} = OpenSRF::Utils::JSON->true;
261 # remove now-false settings
262 for my $pref (grep { $_->{value} } @$user_prefs) {
263 $newsets{$pref->{cust}->name} = undef
264 unless grep { $_ eq $pref->{cust}->name } @settings;
269 'open-ils.actor.patron.settings.update',
270 $e->authtoken, $e->requestor->id, \%newsets);
272 # update the local prefs to match reality
273 for my $pref (@$user_prefs) {
274 $pref->{value} = $newsets{$pref->{cust}->name}
275 if exists $newsets{$pref->{cust}->name};
281 sub _load_user_with_prefs {
283 my $stat = $self->prepare_extended_user_info('settings');
284 return $stat if $stat; # not-OK
286 $self->ctx->{user_setting_map} = {
287 map { $_->name => OpenSRF::Utils::JSON->JSON2perl($_->value) }
288 @{$self->ctx->{user}->settings}
294 sub _get_bookbag_sort_params {
295 my ($self, $param_name) = @_;
297 # The interface that feeds this cgi parameter will provide a single
298 # argument for a QP sort filter, and potentially a modifier after a period.
299 # In practice this means the "sort" parameter will be something like
300 # "titlesort" or "authorsort.descending".
301 my $sorter = $self->cgi->param($param_name) || "";
304 $sorter =~ s/^(.*?)\.(.*)/$1/;
305 $modifier = $2 || undef;
308 return ($sorter, $modifier);
311 sub _prepare_bookbag_container_query {
312 my ($self, $container_id, $sorter, $modifier) = @_;
315 "container(bre,bookbag,%d,%s)%s%s",
316 $container_id, $self->editor->authtoken,
317 ($sorter ? " sort($sorter)" : ""),
318 ($modifier ? "#$modifier" : "")
322 sub _prepare_anonlist_sorting_query {
323 my ($self, $list, $sorter, $modifier) = @_;
326 "record_list(%s)%s%s",
328 ($sorter ? " sort($sorter)" : ""),
329 ($modifier ? "#$modifier" : "")
334 sub load_myopac_prefs_settings {
339 opac.default_search_location
342 my $stat = $self->_load_user_with_prefs;
343 return $stat if $stat;
345 return Apache2::Const::OK
346 unless $self->cgi->request_method eq 'POST';
348 # some setting values from the form don't match the
349 # required value/format for the db, so they have to be
350 # individually translated.
353 my $set_map = $self->ctx->{user_setting_map};
355 foreach my $key (@user_prefs) {
356 my $val = $self->cgi->param($key);
357 $settings{$key}= $val unless $$set_map{$key} eq $val;
360 my $now = DateTime->now->strftime('%F');
361 foreach my $key (qw/history.circ.retention_start history.hold.retention_start/) {
362 my $val = $self->cgi->param($key);
363 if($val and $val eq 'on') {
364 # Set the start time to 'now' unless a start time already exists for the user
365 $settings{$key} = $now unless $$set_map{$key};
367 # clear the start time if one previously existed for the user
368 $settings{$key} = undef if $$set_map{$key};
372 # Send the modified settings off to be saved
375 'open-ils.actor.patron.settings.update',
376 $self->editor->authtoken, undef, \%settings);
378 # re-fetch user prefs
379 $self->ctx->{updated_user_settings} = \%settings;
380 return $self->_load_user_with_prefs || Apache2::Const::OK;
383 sub fetch_user_holds {
385 my $hold_ids = shift;
386 my $ids_only = shift;
388 my $available = shift;
392 my $e = $self->editor;
395 my $circ = OpenSRF::AppSession->create('open-ils.circ');
397 $hold_ids = $circ->request(
398 'open-ils.circ.holds.id_list.retrieve.authoritative',
404 $hold_ids = [ grep { defined $_ } @$hold_ids[$offset..($offset + $limit - 1)] ] if $limit or $offset;
408 return $hold_ids if $ids_only or @$hold_ids == 0;
411 suppress_notices => 1,
412 suppress_transits => 1,
414 suppress_patron_details => 1
417 # ----------------------------------------------------------------
418 # Collect holds in batches of $batch_size for faster retrieval
422 my $mk_req_batch = sub {
424 my $top_idx = $batch_idx + $batch_size;
425 while($batch_idx < $top_idx) {
426 my $hold_id = $hold_ids->[$batch_idx++];
427 last unless $hold_id;
428 my $ses = OpenSRF::AppSession->create('open-ils.circ');
429 my $req = $ses->request(
430 'open-ils.circ.hold.details.retrieve',
431 $e->authtoken, $hold_id, $args);
432 push(@ses, {ses => $ses, req => $req});
438 my(@collected, @holds, @ses);
441 @ses = $mk_req_batch->() if $first;
442 last if $first and not @ses;
445 # If desired by the caller, filter any holds that are not available.
447 @collected = grep { $_->{hold}->{status} == 4 } @collected;
449 while(my $blob = pop(@collected)) {
450 my (undef, @data) = $self->get_records_and_facets(
451 [$blob->{hold}->{bre_id}], undef, {flesh => '{mra}'}
453 $blob->{marc_xml} = $data[0]->{marc_xml};
458 for my $req_data (@ses) {
459 push(@collected, {hold => $req_data->{req}->gather(1)});
460 $req_data->{ses}->kill_me;
463 @ses = $mk_req_batch->();
464 last unless @collected or @ses;
468 # put the holds back into the original server sort order
470 for my $id (@$hold_ids) {
471 push @sorted, grep { $_->{hold}->{hold}->id == $id } @holds;
477 sub handle_hold_update {
480 my $hold_ids = shift;
481 my $e = $self->editor;
484 my @hold_ids = ($hold_ids) ? @$hold_ids : $self->cgi->param('hold_id'); # for non-_all actions
485 @hold_ids = @{$self->fetch_user_holds(undef, 1)} if $action =~ /_all/;
487 my $circ = OpenSRF::AppSession->create('open-ils.circ');
489 if($action =~ /cancel/) {
491 for my $hold_id (@hold_ids) {
492 my $resp = $circ->request(
493 'open-ils.circ.hold.cancel', $e->authtoken, $hold_id, 6 )->gather(1); # 6 == patron-cancelled-via-opac
496 } elsif ($action =~ /activate|suspend/) {
499 for my $hold_id (@hold_ids) {
500 my $vals = {id => $hold_id};
502 if($action =~ /activate/) {
503 $vals->{frozen} = 'f';
504 $vals->{thaw_date} = undef;
506 } elsif($action =~ /suspend/) {
507 $vals->{frozen} = 't';
508 # $vals->{thaw_date} = TODO;
510 push(@$vlist, $vals);
513 my $resp = $circ->request('open-ils.circ.hold.update.batch.atomic', $e->authtoken, undef, $vlist)->gather(1);
514 $self->ctx->{hold_suspend_post_capture} = 1 if
515 grep {$U->event_equals($_, 'HOLD_SUSPEND_AFTER_CAPTURE')} @$resp;
517 } elsif ($action eq 'edit') {
520 my $val = {"id" => $_};
521 $val->{"frozen"} = $self->cgi->param("frozen");
522 $val->{"pickup_lib"} = $self->cgi->param("pickup_lib");
524 for my $field (qw/expire_time thaw_date/) {
525 # XXX TODO make this support other date formats, not just
527 next unless $self->cgi->param($field) =~
528 m:^(\d{2})/(\d{2})/(\d{4})$:;
529 $val->{$field} = "$3-$1-$2";
535 'open-ils.circ.hold.update.batch.atomic',
536 $e->authtoken, undef, \@vals
537 )->gather(1); # LFW XXX test for failure
538 $url = 'https://' . $self->apache->hostname . $self->ctx->{opac_root} . '/myopac/holds';
539 foreach my $param (('loc', 'qtype', 'query')) {
540 if ($self->cgi->param($param)) {
541 $url .= ";$param=" . uri_escape($self->cgi->param($param));
547 return defined($url) ? $self->generic_redirect($url) : undef;
550 sub load_myopac_holds {
552 my $e = $self->editor;
553 my $ctx = $self->ctx;
555 my $limit = $self->cgi->param('limit') || 0;
556 my $offset = $self->cgi->param('offset') || 0;
557 my $action = $self->cgi->param('action') || '';
558 my $hold_id = $self->cgi->param('id');
559 my $available = int($self->cgi->param('available') || 0);
561 my $hold_handle_result;
562 $hold_handle_result = $self->handle_hold_update($action) if $action;
564 $ctx->{holds} = $self->fetch_user_holds($hold_id ? [$hold_id] : undef, 0, 1, $available, $limit, $offset);
566 return defined($hold_handle_result) ? $hold_handle_result : Apache2::Const::OK;
571 sub load_place_hold {
573 my $ctx = $self->ctx;
574 my $gos = $ctx->{get_org_setting};
575 my $e = $self->editor;
576 my $cgi = $self->cgi;
578 $self->ctx->{page} = 'place_hold';
579 my @targets = $cgi->param('hold_target');
580 my @parts = $cgi->param('part');
582 $ctx->{hold_type} = $cgi->param('hold_type');
583 $ctx->{default_pickup_lib} = $e->requestor->home_ou; # unless changed below
584 $ctx->{email_notify} = $cgi->param('email_notify');
585 if ($cgi->param('phone_notify_checkbox')) {
586 $ctx->{phone_notify} = $cgi->param('phone_notify');
588 if ($cgi->param('sms_notify_checkbox')) {
589 $ctx->{sms_notify} = $cgi->param('sms_notify');
590 $ctx->{sms_carrier} = $cgi->param('sms_carrier');
593 return $self->generic_redirect unless @targets;
595 $logger->info("Looking at hold_type: " . $ctx->{hold_type} . " and targets: @targets");
597 # if the staff client provides a patron barcode, fetch the patron
598 if (my $bc = $self->cgi->cookie("patron_barcode")) {
599 $ctx->{patron_recipient} = $U->simplereq(
600 "open-ils.actor", "open-ils.actor.user.fleshed.retrieve_by_barcode",
601 $self->editor->authtoken, $bc
602 ) or return Apache2::Const::HTTP_BAD_REQUEST;
604 $ctx->{default_pickup_lib} = $ctx->{patron_recipient}->home_ou;
606 $ctx->{staff_recipient} = $self->editor->retrieve_actor_user([
614 ]) or return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
616 my $user_setting_map = {
617 map { $_->name => OpenSRF::Utils::JSON->JSON2perl($_->value) }
619 $ctx->{patron_recipient}
620 ? $ctx->{patron_recipient}->settings
621 : $ctx->{staff_recipient}->settings
624 $ctx->{user_setting_map} = $user_setting_map;
626 my $default_notify = $$user_setting_map{'opac.hold_notify'} || '';
627 if ($default_notify =~ /email/) {
628 $ctx->{default_email_notify} = 'checked';
630 $ctx->{default_email_notify} = '';
632 if ($default_notify =~ /phone/) {
633 $ctx->{default_phone_notify} = 'checked';
635 $ctx->{default_phone_notify} = '';
637 if ($default_notify =~ /sms/) {
638 $ctx->{default_sms_notify} = 'checked';
640 $ctx->{default_sms_notify} = '';
643 my $request_lib = $e->requestor->ws_ou;
645 $ctx->{hold_data} = \@hold_data;
649 if ($ctx->{email_notify}) { $hdata->{email_notify} = $ctx->{email_notify}; }
650 if ($ctx->{phone_notify}) { $hdata->{phone_notify} = $ctx->{phone_notify}; }
651 if ($ctx->{sms_notify}) { $hdata->{sms_notify} = $ctx->{sms_notify}; }
652 if ($ctx->{sms_carrier}) { $hdata->{sms_carrier} = $ctx->{sms_carrier}; }
656 my $type_dispatch = {
658 my $recs = $e->batch_retrieve_biblio_record_entry(\@targets, {substream => 1});
660 for my $id (@targets) { # force back into the correct order
661 my ($rec) = grep {$_->id eq $id} @$recs;
663 # NOTE: if tpac ever supports locked-down pickup libs,
664 # we'll need to pass a pickup_lib param along with the
665 # record to filter the set of monographic parts.
666 my $parts = $U->simplereq(
668 'open-ils.search.biblio.record_hold_parts',
672 # T holds on records that have parts are OK, but if the record has
673 # no non-part copies, the hold will ultimately fail. When that
674 # happens, require the user to select a part.
675 my $part_required = 0;
677 my $np_copies = $e->json_query({
678 select => { acp => [{column => 'id', transform => 'count', alias => 'count'}]},
679 from => {acp => {acn => {}, acpm => {type => 'left'}}},
681 '+acp' => {deleted => 'f'},
682 '+acn' => {deleted => 'f', record => $rec->id},
683 '+acpm' => {id => undef}
686 $part_required = 1 if $np_copies->[0]->{count} == 0;
689 push(@hold_data, $data_filler->({
693 part_required => $part_required
698 my $vols = $e->batch_retrieve_asset_call_number([
701 "flesh_fields" => {"acn" => ["record"]}
703 ], {substream => 1});
705 for my $id (@targets) {
706 my ($vol) = grep {$_->id eq $id} @$vols;
707 push(@hold_data, $data_filler->({target => $vol, record => $vol->record}));
711 my $copies = $e->batch_retrieve_asset_copy([
716 "acp" => ["call_number"]
719 ], {substream => 1});
721 for my $id (@targets) {
722 my ($copy) = grep {$_->id eq $id} @$copies;
723 push(@hold_data, $data_filler->({target => $copy, record => $copy->call_number->record}));
727 my $isses = $e->batch_retrieve_serial_issuance([
731 "siss" => ["subscription"], "ssub" => ["record_entry"]
734 ], {substream => 1});
736 for my $id (@targets) {
737 my ($iss) = grep {$_->id eq $id} @$isses;
738 push(@hold_data, $data_filler->({target => $iss, record => $iss->subscription->record_entry}));
743 }->{$ctx->{hold_type}}->();
745 # caller sent bad target IDs or the wrong hold type
746 return Apache2::Const::HTTP_BAD_REQUEST unless @hold_data;
748 # generate the MARC xml for each record
749 $_->{marc_xml} = XML::LibXML->new->parse_string($_->{record}->marc) for @hold_data;
751 my $pickup_lib = $cgi->param('pickup_lib');
752 # no pickup lib means no holds placement
753 return Apache2::Const::OK unless $pickup_lib;
755 $ctx->{hold_attempt_made} = 1;
757 # Give the original CGI params back to the user in case they
758 # want to try to override something.
759 $ctx->{orig_params} = $cgi->Vars;
760 delete $ctx->{orig_params}{submit};
761 delete $ctx->{orig_params}{hold_target};
762 delete $ctx->{orig_params}{part};
764 my $usr = $e->requestor->id;
766 if ($ctx->{is_staff} and !$cgi->param("hold_usr_is_requestor")) {
767 # find the real hold target
769 $usr = $U->simplereq(
771 "open-ils.actor.user.retrieve_id_by_barcode_or_username",
772 $e->authtoken, $cgi->param("hold_usr"));
774 if (defined $U->event_code($usr)) {
775 $ctx->{hold_failed} = 1;
776 $ctx->{hold_failed_event} = $usr;
780 # target_id is the true target_id for holds placement.
781 # needed for attempt_hold_placement()
782 # With the exception of P-type holds, target_id == target->id.
783 $_->{target_id} = $_->{target}->id for @hold_data;
785 if ($ctx->{hold_type} eq 'T') {
787 # Much like quantum wave-particles, P-type holds pop into
788 # and out of existence at the user's whim. For our purposes,
789 # we treat such holds as T(itle) holds with a selected_part
790 # designation. When the time comes to pass the hold information
791 # off for holds possibility testing and placement, make it look
792 # like a real P-type hold.
793 my (@p_holds, @t_holds);
795 for my $idx (0..$#parts) {
796 my $hdata = $hold_data[$idx];
797 if (my $part = $parts[$idx]) {
798 $hdata->{target_id} = $part;
799 $hdata->{selected_part} = $part;
800 push(@p_holds, $hdata);
802 push(@t_holds, $hdata);
806 $self->attempt_hold_placement($usr, $pickup_lib, 'P', @p_holds) if @p_holds;
807 $self->attempt_hold_placement($usr, $pickup_lib, 'T', @t_holds) if @t_holds;
810 $self->attempt_hold_placement($usr, $pickup_lib, $ctx->{hold_type}, @hold_data);
813 # NOTE: we are leaving the staff-placed patron barcode cookie
814 # in place. Otherwise, it's not possible to place more than
815 # one hold for the patron within a staff/patron session. This
816 # does leave the barcode to linger longer than is ideal, but
817 # normal staff work flow will cause the cookie to be replaced
818 # with each new patron anyway.
819 # TODO: See about getting the staff client to clear the cookie
821 # return to the place_hold page so the results of the hold
822 # placement attempt can be reported to the user
823 return Apache2::Const::OK;
826 sub attempt_hold_placement {
827 my ($self, $usr, $pickup_lib, $hold_type, @hold_data) = @_;
828 my $cgi = $self->cgi;
829 my $ctx = $self->ctx;
830 my $e = $self->editor;
832 # First see if we should warn/block for any holds that
833 # might have locally available items.
834 for my $hdata (@hold_data) {
835 my ($local_block, $local_alert) = $self->local_avail_concern(
836 $hdata->{target_id}, $hold_type, $pickup_lib);
839 $hdata->{hold_failed} = 1;
840 $hdata->{hold_local_block} = 1;
841 } elsif ($local_alert) {
842 $hdata->{hold_failed} = 1;
843 $hdata->{hold_local_alert} = 1;
847 my $method = 'open-ils.circ.holds.test_and_create.batch';
848 $method .= '.override' if $cgi->param('override');
850 my @create_targets = map {$_->{target_id}} (grep { !$_->{hold_failed} } @hold_data);
852 if(@create_targets) {
854 my $bses = OpenSRF::AppSession->create('open-ils.circ');
855 my $breq = $bses->request(
858 $data_filler->({ patronid => $usr,
859 pickup_lib => $pickup_lib,
860 hold_type => $hold_type
865 while (my $resp = $breq->recv) {
867 $resp = $resp->content;
868 $logger->info('batch hold placement result: ' . OpenSRF::Utils::JSON->perl2JSON($resp));
870 if ($U->event_code($resp)) {
871 $ctx->{general_hold_error} = $resp;
875 my ($hdata) = grep {$_->{target_id} eq $resp->{target}} @hold_data;
876 my $result = $resp->{result};
878 if ($U->event_code($result)) {
879 # e.g. permission denied
880 $hdata->{hold_failed} = 1;
881 $hdata->{hold_failed_event} = $result;
885 if(not ref $result and $result > 0) {
886 # successul hold returns the hold ID
888 $hdata->{hold_success} = $result;
891 # hold-specific failure event
892 $hdata->{hold_failed} = 1;
894 if (ref $result eq 'HASH') {
895 $hdata->{hold_failed_event} = $result->{last_event};
897 if ($result->{age_protected_copy}) {
898 $hdata->{could_override} = 1;
899 $hdata->{age_protect} = 1;
901 $hdata->{could_override} = $self->test_could_override($hdata->{hold_failed_event});
903 } elsif (ref $result eq 'ARRAY') {
904 $hdata->{hold_failed_event} = $result->[0];
906 if ($result->[3]) { # age_protect_only
907 $hdata->{could_override} = 1;
908 $hdata->{age_protect} = 1;
910 $hdata->{could_override} = $self->test_could_override($hdata->{hold_failed_event});
921 sub fetch_user_circs {
923 my $flesh = shift; # flesh bib data, etc.
924 my $circ_ids = shift;
928 my $e = $self->editor;
933 @circ_ids = @$circ_ids;
938 select => {circ => ['id']},
942 usr => $e->requestor->id,
943 checkin_time => undef,
945 {stop_fines => undef},
946 {stop_fines => {'not in' => ['LOST','CLAIMSRETURNED','LONGOVERDUE']}}
950 order_by => {circ => ['due_date']}
953 $query->{limit} = $limit if $limit;
954 $query->{offset} = $offset if $offset;
956 my $ids = $e->json_query($query);
957 @circ_ids = map {$_->{id}} @$ids;
960 return [] unless @circ_ids;
965 circ => ['target_copy'],
966 acp => ['call_number'],
972 my $circs = $e->search_action_circulation(
973 [{id => \@circ_ids}, ($flesh) ? $qflesh : {}], {substream => 1});
976 for my $circ (@$circs) {
979 marc_xml => ($flesh and $circ->target_copy->call_number->id != -1) ?
980 XML::LibXML->new->parse_string($circ->target_copy->call_number->record->marc) :
981 undef # pre-cat copy, use the dummy title/author instead
986 # make sure the final list is in the correct order
988 for my $id (@circ_ids) {
991 (grep { $_->{circ}->id == $id } @circs)
995 return \@sorted_circs;
999 sub handle_circ_renew {
1002 my $ctx = $self->ctx;
1004 my @renew_ids = $self->cgi->param('circ');
1006 my $circs = $self->fetch_user_circs(0, ($action eq 'renew') ? [@renew_ids] : undef);
1008 # TODO: fire off renewal calls in batches to speed things up
1010 for my $circ (@$circs) {
1012 my $evt = $U->simplereq(
1014 'open-ils.circ.renew',
1015 $self->editor->authtoken,
1017 patron_id => $self->editor->requestor->id,
1018 copy_id => $circ->{circ}->target_copy,
1023 # TODO return these, then insert them into the circ data
1024 # blob that is shoved into the template for each circ
1025 # so the template won't have to match them
1026 push(@responses, {copy => $circ->{circ}->target_copy, evt => $evt});
1033 sub load_myopac_circs {
1035 my $e = $self->editor;
1036 my $ctx = $self->ctx;
1039 my $limit = $self->cgi->param('limit') || 0; # 0 == unlimited
1040 my $offset = $self->cgi->param('offset') || 0;
1041 my $action = $self->cgi->param('action') || '';
1043 # perform the renewal first if necessary
1044 my @results = $self->handle_circ_renew($action) if $action =~ /renew/;
1046 $ctx->{circs} = $self->fetch_user_circs(1, undef, $limit, $offset);
1048 my $success_renewals = 0;
1049 my $failed_renewals = 0;
1050 for my $data (@{$ctx->{circs}}) {
1051 my ($resp) = grep { $_->{copy} == $data->{circ}->target_copy->id } @results;
1054 my $evt = ref($resp->{evt}) eq 'ARRAY' ? $resp->{evt}->[0] : $resp->{evt};
1055 $data->{renewal_response} = $evt;
1056 $success_renewals++ if $evt->{textcode} eq 'SUCCESS';
1057 $failed_renewals++ if $evt->{textcode} ne 'SUCCESS';
1061 $ctx->{success_renewals} = $success_renewals;
1062 $ctx->{failed_renewals} = $failed_renewals;
1064 return Apache2::Const::OK;
1067 sub load_myopac_circ_history {
1069 my $e = $self->editor;
1070 my $ctx = $self->ctx;
1071 my $limit = $self->cgi->param('limit') || 15;
1072 my $offset = $self->cgi->param('offset') || 0;
1074 $ctx->{circ_history_limit} = $limit;
1075 $ctx->{circ_history_offset} = $offset;
1077 my $circ_ids = $e->json_query({
1081 transform => 'action.usr_visible_circs',
1082 result_field => 'id'
1086 where => {id => $e->requestor->id},
1091 $ctx->{circs} = $self->fetch_user_circs(1, [map { $_->{id} } @$circ_ids]);
1092 return Apache2::Const::OK;
1095 # TODO: action.usr_visible_holds does not return cancelled holds. Should it?
1096 sub load_myopac_hold_history {
1098 my $e = $self->editor;
1099 my $ctx = $self->ctx;
1100 my $limit = $self->cgi->param('limit') || 15;
1101 my $offset = $self->cgi->param('offset') || 0;
1102 $ctx->{hold_history_limit} = $limit;
1103 $ctx->{hold_history_offset} = $offset;
1105 my $hold_ids = $e->json_query({
1109 transform => 'action.usr_visible_holds',
1110 result_field => 'id'
1114 where => {id => $e->requestor->id},
1119 $ctx->{holds} = $self->fetch_user_holds([map { $_->{id} } @$hold_ids], 0, 1, 0);
1120 return Apache2::Const::OK;
1123 sub load_myopac_payment_form {
1127 $r = $self->prepare_fines(undef, undef, [$self->cgi->param('xact'), $self->cgi->param('xact_misc')]) and return $r;
1128 $r = $self->prepare_extended_user_info and return $r;
1130 return Apache2::Const::OK;
1133 # TODO: add other filter options as params/configs/etc.
1134 sub load_myopac_payments {
1136 my $limit = $self->cgi->param('limit') || 20;
1137 my $offset = $self->cgi->param('offset') || 0;
1138 my $e = $self->editor;
1140 $self->ctx->{payment_history_limit} = $limit;
1141 $self->ctx->{payment_history_offset} = $offset;
1144 $args->{limit} = $limit if $limit;
1145 $args->{offset} = $offset if $offset;
1147 if (my $max_age = $self->ctx->{get_org_setting}->(
1148 $e->requestor->home_ou, "opac.payment_history_age_limit"
1150 my $min_ts = DateTime->now(
1151 "time_zone" => DateTime::TimeZone->new("name" => "local"),
1152 )->subtract("seconds" => interval_to_seconds($max_age))->iso8601();
1154 $logger->info("XXX min_ts: $min_ts");
1155 $args->{"where"} = {"payment_ts" => {">=" => $min_ts}};
1158 $self->ctx->{payments} = $U->simplereq(
1160 'open-ils.actor.user.payments.retrieve.atomic',
1161 $e->authtoken, $e->requestor->id, $args);
1163 return Apache2::Const::OK;
1166 sub load_myopac_pay {
1170 my @payment_xacts = ($self->cgi->param('xact'), $self->cgi->param('xact_misc'));
1171 $logger->info("tpac paying fines for xacts @payment_xacts");
1173 $r = $self->prepare_fines(undef, undef, \@payment_xacts) and return $r;
1175 # balance_owed is computed specifically from the fines we're trying
1176 # to pay in this case.
1177 if ($self->ctx->{fines}->{balance_owed} <= 0) {
1178 $self->apache->log->info(
1179 sprintf("Can't pay non-positive balance. xacts selected: (%s)",
1180 join(", ", map(int, $self->cgi->param("xact"), $self->cgi->param('xact_misc'))))
1182 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1185 my $cc_args = {"where_process" => 1};
1187 $cc_args->{$_} = $self->cgi->param($_) for (qw/
1188 number cvv2 expire_year expire_month billing_first
1189 billing_last billing_address billing_city billing_state
1194 "cc_args" => $cc_args,
1195 "userid" => $self->ctx->{user}->id,
1196 "payment_type" => "credit_card_payment",
1197 "payments" => $self->prepare_fines_for_payment # should be safe after self->prepare_fines
1200 my $resp = $U->simplereq("open-ils.circ", "open-ils.circ.money.payment",
1201 $self->editor->authtoken, $args, $self->ctx->{user}->last_xact_id
1204 $self->ctx->{"payment_response"} = $resp;
1206 unless ($resp->{"textcode"}) {
1207 $self->ctx->{printable_receipt} = $U->simplereq(
1208 "open-ils.circ", "open-ils.circ.money.payment_receipt.print",
1209 $self->editor->authtoken, $resp->{payments}
1213 return Apache2::Const::OK;
1216 sub load_myopac_receipt_print {
1219 $self->ctx->{printable_receipt} = $U->simplereq(
1220 "open-ils.circ", "open-ils.circ.money.payment_receipt.print",
1221 $self->editor->authtoken, [$self->cgi->param("payment")]
1224 return Apache2::Const::OK;
1227 sub load_myopac_receipt_email {
1230 # The following ML method doesn't actually check whether the user in
1231 # question has an email address, so we do.
1232 if ($self->ctx->{user}->email) {
1233 $self->ctx->{email_receipt_result} = $U->simplereq(
1234 "open-ils.circ", "open-ils.circ.money.payment_receipt.email",
1235 $self->editor->authtoken, [$self->cgi->param("payment")]
1238 $self->ctx->{email_receipt_result} =
1239 new OpenILS::Event("PATRON_NO_EMAIL_ADDRESS");
1242 return Apache2::Const::OK;
1246 my ($self, $limit, $offset, $id_list) = @_;
1248 # XXX TODO: check for failure after various network calls
1250 # It may be unclear, but this result structure lumps circulation and
1251 # reservation fines together, and keeps grocery fines separate.
1252 $self->ctx->{"fines"} = {
1253 "circulation" => [],
1260 my $cstore = OpenSRF::AppSession->create('open-ils.cstore');
1262 # TODO: This should really be a ML call, but the existing calls
1263 # return an excessive amount of data and don't offer streaming
1265 my %paging = ($limit or $offset) ? (limit => $limit, offset => $offset) : ();
1267 my $req = $cstore->request(
1268 'open-ils.cstore.direct.money.open_billable_transaction_summary.search',
1270 usr => $self->editor->requestor->id,
1271 balance_owed => {'!=' => 0},
1272 ($id_list && @$id_list ? ("id" => $id_list) : ()),
1277 mobts => [qw/grocery circulation reservation/],
1278 bresv => ['target_resource_type'],
1282 circ => ['target_copy'],
1283 acp => ['call_number'],
1286 order_by => { mobts => 'xact_start' },
1291 my @total_keys = qw/total_paid total_owed balance_owed/;
1292 $self->ctx->{"fines"}->{@total_keys} = (0, 0, 0);
1294 while(my $resp = $req->recv) {
1295 my $mobts = $resp->content;
1296 my $circ = $mobts->circulation;
1299 if($mobts->grocery) {
1300 my @billings = sort { $a->billing_ts cmp $b->billing_ts } @{$mobts->grocery->billings};
1301 $last_billing = pop(@billings);
1304 # XXX TODO confirm that the following, and the later division by 100.0
1305 # to get a floating point representation once again, is sufficiently
1306 # "money-safe" math.
1307 $self->ctx->{"fines"}->{$_} += int($mobts->$_ * 100) for (@total_keys);
1309 my $marc_xml = undef;
1310 if ($mobts->xact_type eq 'reservation' and
1311 $mobts->reservation->target_resource_type->record) {
1312 $marc_xml = XML::LibXML->new->parse_string(
1313 $mobts->reservation->target_resource_type->record->marc
1315 } elsif ($mobts->xact_type eq 'circulation' and
1316 $circ->target_copy->call_number->id != -1) {
1317 $marc_xml = XML::LibXML->new->parse_string(
1318 $circ->target_copy->call_number->record->marc
1323 @{$self->ctx->{"fines"}->{$mobts->grocery ? "grocery" : "circulation"}},
1326 last_grocery_billing => $last_billing,
1327 marc_xml => $marc_xml
1334 $self->ctx->{"fines"}->{$_} /= 100.0 for (@total_keys);
1338 sub prepare_fines_for_payment {
1339 # This assumes $self->prepare_fines has already been run
1343 if ($self->ctx->{fines}) {
1344 push @results, [$_->{xact}->id, $_->{xact}->balance_owed] foreach (
1345 @{$self->ctx->{fines}->{circulation}},
1346 @{$self->ctx->{fines}->{grocery}}
1353 sub load_myopac_main {
1355 my $limit = $self->cgi->param('limit') || 0;
1356 my $offset = $self->cgi->param('offset') || 0;
1357 $self->ctx->{search_ou} = $self->_get_search_lib();
1359 return $self->prepare_fines($limit, $offset) || Apache2::Const::OK;
1362 sub load_myopac_update_email {
1364 my $e = $self->editor;
1365 my $ctx = $self->ctx;
1366 my $email = $self->cgi->param('email') || '';
1367 my $current_pw = $self->cgi->param('current_pw') || '';
1369 # needed for most up-to-date email address
1370 if (my $r = $self->prepare_extended_user_info) { return $r };
1372 return Apache2::Const::OK
1373 unless $self->cgi->request_method eq 'POST';
1375 unless($email =~ /.+\@.+\..+/) { # TODO better regex?
1376 $ctx->{invalid_email} = $email;
1377 return Apache2::Const::OK;
1380 my $stat = $U->simplereq(
1382 'open-ils.actor.user.email.update',
1383 $e->authtoken, $email, $current_pw);
1385 if($U->event_equals($stat, 'INCORRECT_PASSWORD')) {
1386 $ctx->{password_incorrect} = 1;
1387 return Apache2::Const::OK;
1390 unless ($self->cgi->param("redirect_to")) {
1391 my $url = $self->apache->unparsed_uri;
1392 $url =~ s/update_email/prefs/;
1394 return $self->generic_redirect($url);
1397 return $self->generic_redirect;
1400 sub load_myopac_update_username {
1402 my $e = $self->editor;
1403 my $ctx = $self->ctx;
1404 my $username = $self->cgi->param('username') || '';
1405 my $current_pw = $self->cgi->param('current_pw') || '';
1407 $self->prepare_extended_user_info;
1409 my $allow_change = 1;
1411 my $lock_usernames = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.lock_usernames');
1412 if($lock_usernames == 1) {
1413 # Policy says no username changes
1416 # We want this further down.
1417 $regex_check = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.barcode_regex');
1418 my $username_unlimit = $self->ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.unlimit_usernames');
1419 if($username_unlimit != 1) {
1421 # Default is "starts with a number"
1422 $regex_check = '^\d+';
1424 # You already have a username?
1425 if($regex_check and $self->ctx->{user}->usrname !~ /$regex_check/) {
1430 if(!$allow_change) {
1431 my $url = $self->apache->unparsed_uri;
1432 $url =~ s/update_username/prefs/;
1434 return $self->generic_redirect($url);
1437 return Apache2::Const::OK
1438 unless $self->cgi->request_method eq 'POST';
1440 unless($username and $username !~ /\s/) { # any other username restrictions?
1441 $ctx->{invalid_username} = $username;
1442 return Apache2::Const::OK;
1445 # New username can't look like a barcode if we have a barcode regex
1446 if($regex_check and $username =~ /$regex_check/) {
1447 $ctx->{invalid_username} = $username;
1448 return Apache2::Const::OK;
1451 # New username has to look like a username if we have a username regex
1452 $regex_check = $ctx->{get_org_setting}->($e->requestor->home_ou, 'opac.username_regex');
1453 if($regex_check and $username !~ /$regex_check/) {
1454 $ctx->{invalid_username} = $username;
1455 return Apache2::Const::OK;
1458 if($username ne $e->requestor->usrname) {
1460 my $evt = $U->simplereq(
1462 'open-ils.actor.user.username.update',
1463 $e->authtoken, $username, $current_pw);
1465 if($U->event_equals($evt, 'INCORRECT_PASSWORD')) {
1466 $ctx->{password_incorrect} = 1;
1467 return Apache2::Const::OK;
1470 if($U->event_equals($evt, 'USERNAME_EXISTS')) {
1471 $ctx->{username_exists} = $username;
1472 return Apache2::Const::OK;
1476 my $url = $self->apache->unparsed_uri;
1477 $url =~ s/update_username/prefs/;
1479 return $self->generic_redirect($url);
1482 sub load_myopac_update_password {
1484 my $e = $self->editor;
1485 my $ctx = $self->ctx;
1487 return Apache2::Const::OK
1488 unless $self->cgi->request_method eq 'POST';
1490 my $current_pw = $self->cgi->param('current_pw') || '';
1491 my $new_pw = $self->cgi->param('new_pw') || '';
1492 my $new_pw2 = $self->cgi->param('new_pw2') || '';
1494 unless($new_pw eq $new_pw2) {
1495 $ctx->{password_nomatch} = 1;
1496 return Apache2::Const::OK;
1499 my $pw_regex = $ctx->{get_org_setting}->($e->requestor->home_ou, 'global.password_regex');
1502 # This regex duplicates the JSPac's default "digit, letter, and 7 characters" rule
1503 $pw_regex = '(?=.*\d+.*)(?=.*[A-Za-z]+.*).{7,}';
1506 if($pw_regex and $new_pw !~ /$pw_regex/) {
1507 $ctx->{password_invalid} = 1;
1508 return Apache2::Const::OK;
1511 my $evt = $U->simplereq(
1513 'open-ils.actor.user.password.update',
1514 $e->authtoken, $new_pw, $current_pw);
1517 if($U->event_equals($evt, 'INCORRECT_PASSWORD')) {
1518 $ctx->{password_incorrect} = 1;
1519 return Apache2::Const::OK;
1522 my $url = $self->apache->unparsed_uri;
1523 $url =~ s/update_password/prefs/;
1525 return $self->generic_redirect($url);
1528 sub _update_bookbag_metadata {
1529 my ($self, $bookbag) = @_;
1531 $bookbag->name($self->cgi->param("name"));
1532 $bookbag->description($self->cgi->param("description"));
1534 return 1 if $self->editor->update_container_biblio_record_entry_bucket($bookbag);
1538 sub load_myopac_bookbags {
1540 my $e = $self->editor;
1541 my $ctx = $self->ctx;
1543 my ($sorter, $modifier) = $self->_get_bookbag_sort_params("sort");
1544 $e->xact_begin; # replication...
1546 my $rv = $self->load_mylist;
1547 unless($rv eq Apache2::Const::OK) {
1552 $ctx->{bookbags} = $e->search_container_biblio_record_entry_bucket(
1554 {owner => $e->requestor->id, btype => 'bookbag'}, {
1555 order_by => {cbreb => 'name'},
1556 limit => $self->cgi->param('limit') || 10,
1557 offset => $self->cgi->param('offset') || 0
1563 if(!$ctx->{bookbags}) {
1565 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1568 # If the user wants a specific bookbag's items, load them.
1569 # XXX add bookbag item paging support
1571 if ($self->cgi->param("id")) {
1573 grep { $_->id eq $self->cgi->param("id") } @{$ctx->{bookbags}};
1577 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1580 if ($self->cgi->param("action") eq "editmeta") {
1581 if (!$self->_update_bookbag_metadata($bookbag)) {
1583 return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1586 my $url = $self->ctx->{opac_root} . '/myopac/lists?id=' .
1589 foreach my $param (('loc', 'qtype', 'query', 'sort')) {
1590 if ($self->cgi->param($param)) {
1591 $url .= ";$param=" . uri_escape($self->cgi->param($param));
1595 return $self->generic_redirect($url);
1599 my $query = $self->_prepare_bookbag_container_query(
1600 $bookbag->id, $sorter, $modifier
1603 # XXX we need to limit the number of records per bbag; use third arg
1604 # of bib_container_items_via_search() i think.
1605 my $items = $U->bib_container_items_via_search($bookbag->id, $query)
1606 or return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1608 my (undef, @recs) = $self->get_records_and_facets(
1609 [ map {$_->target_biblio_record_entry->id} @$items ],
1614 $ctx->{bookbags_marc_xml}{$_->{id}} = $_->{marc_xml} for @recs;
1616 $bookbag->items($items);
1620 return Apache2::Const::OK;
1624 # actions are create, delete, show, hide, rename, add_rec, delete_item, place_hold
1625 # CGI is action, list=list_id, add_rec/record=bre_id, del_item=bucket_item_id, name=new_bucket_name
1626 sub load_myopac_bookbag_update {
1627 my ($self, $action, $list_id, @hold_recs) = @_;
1628 my $e = $self->editor;
1629 my $cgi = $self->cgi;
1631 # save_notes is effectively another action, but is passed in a separate
1632 # CGI parameter for what are really just layout reasons.
1633 $action = 'save_notes' if $cgi->param('save_notes');
1634 $action ||= $cgi->param('action');
1636 $list_id ||= $cgi->param('list');
1638 my @add_rec = $cgi->param('add_rec') || $cgi->param('record');
1639 my @selected_item = $cgi->param('selected_item');
1640 my $shared = $cgi->param('shared');
1641 my $name = $cgi->param('name');
1642 my $description = $cgi->param('description');
1646 # This url intentionally leaves off the edit_notes parameter, but
1647 # may need to add some back in for paging.
1649 my $url = "https://" . $self->apache->hostname .
1650 $self->ctx->{opac_root} . "/myopac/lists?";
1652 foreach my $param (('loc', 'qtype', 'query', 'sort')) {
1653 if ($cgi->param($param)) {
1654 $url .= "$param=" . uri_escape($cgi->param($param)) . ";";
1658 if ($action eq 'create') {
1659 $list = Fieldmapper::container::biblio_record_entry_bucket->new;
1661 $list->description($description);
1662 $list->owner($e->requestor->id);
1663 $list->btype('bookbag');
1664 $list->pub($shared ? 't' : 'f');
1665 $success = $U->simplereq('open-ils.actor',
1666 'open-ils.actor.container.create', $e->authtoken, 'biblio', $list)
1668 } elsif($action eq 'place_hold') {
1670 # @hold_recs comes from anon lists redirect; selected_itesm comes from existing buckets
1671 unless (@hold_recs) {
1672 if (@selected_item) {
1673 my $items = $e->search_container_biblio_record_entry_bucket_item({id => \@selected_item});
1674 @hold_recs = map { $_->target_biblio_record_entry } @$items;
1678 return Apache2::Const::OK unless @hold_recs;
1679 $logger->info("placing holds from list page on: @hold_recs");
1681 my $url = $self->ctx->{opac_root} . '/place_hold?hold_type=T';
1682 $url .= ';hold_target=' . $_ for @hold_recs;
1683 foreach my $param (('loc', 'qtype', 'query')) {
1684 if ($cgi->param($param)) {
1685 $url .= ";$param=" . uri_escape($cgi->param($param));
1688 return $self->generic_redirect($url);
1692 $list = $e->retrieve_container_biblio_record_entry_bucket($list_id);
1694 return Apache2::Const::HTTP_BAD_REQUEST unless
1695 $list and $list->owner == $e->requestor->id;
1698 if($action eq 'delete') {
1699 $success = $U->simplereq('open-ils.actor',
1700 'open-ils.actor.container.full_delete', $e->authtoken, 'biblio', $list_id);
1702 } elsif($action eq 'show') {
1703 unless($U->is_true($list->pub)) {
1705 $success = $U->simplereq('open-ils.actor',
1706 'open-ils.actor.container.update', $e->authtoken, 'biblio', $list);
1709 } elsif($action eq 'hide') {
1710 if($U->is_true($list->pub)) {
1712 $success = $U->simplereq('open-ils.actor',
1713 'open-ils.actor.container.update', $e->authtoken, 'biblio', $list);
1716 } elsif($action eq 'rename') {
1719 $success = $U->simplereq('open-ils.actor',
1720 'open-ils.actor.container.update', $e->authtoken, 'biblio', $list);
1723 } elsif($action eq 'add_rec') {
1724 foreach my $add_rec (@add_rec) {
1725 my $item = Fieldmapper::container::biblio_record_entry_bucket_item->new;
1726 $item->bucket($list_id);
1727 $item->target_biblio_record_entry($add_rec);
1728 $success = $U->simplereq('open-ils.actor',
1729 'open-ils.actor.container.item.create', $e->authtoken, 'biblio', $item);
1730 last unless $success;
1733 } elsif($action eq 'del_item') {
1734 foreach (@selected_item) {
1735 $success = $U->simplereq(
1737 'open-ils.actor.container.item.delete', $e->authtoken, 'biblio', $_
1739 last unless $success;
1741 } elsif ($action eq 'save_notes') {
1742 $success = $self->update_bookbag_item_notes;
1743 $url .= "&id=" . uri_escape($cgi->param("id")) if $cgi->param("id");
1746 return $self->generic_redirect($url) if $success;
1748 # XXX FIXME Bucket failure doesn't have a page to show the user anything
1749 # right now. User just sees a 404 currently.
1751 $self->ctx->{bucket_action} = $action;
1752 $self->ctx->{bucket_action_failed} = 1;
1753 return Apache2::Const::OK;
1756 sub update_bookbag_item_notes {
1758 my $e = $self->editor;
1760 my @note_keys = grep /^note-\d+/, keys(%{$self->cgi->Vars});
1761 my @item_keys = grep /^item-\d+/, keys(%{$self->cgi->Vars});
1763 # We're going to leverage an API call that's already been written to check
1764 # permissions appropriately.
1766 my $a = create OpenSRF::AppSession("open-ils.actor");
1767 my $method = "open-ils.actor.container.item_note.cud";
1769 for my $note_key (@note_keys) {
1772 my $id = ($note_key =~ /(\d+)/)[0];
1775 $e->retrieve_container_biblio_record_entry_bucket_item_note($id))) {
1776 my $event = $e->die_event;
1777 $self->apache->log->warn(
1778 "error retrieving cbrebin id $id, got event " .
1782 $self->ctx->{bucket_action_event} = $event;
1786 if (length($self->cgi->param($note_key))) {
1787 $note->ischanged(1);
1788 $note->note($self->cgi->param($note_key));
1790 $note->isdeleted(1);
1793 my $r = $a->request($method, $e->authtoken, "biblio", $note)->gather(1);
1795 if (defined $U->event_code($r)) {
1796 $self->apache->log->warn(
1797 "attempt to modify cbrebin " . $note->id .
1798 " returned event " . $r->{textcode}
1802 $self->ctx->{bucket_action_event} = $r;
1807 for my $item_key (@item_keys) {
1808 my $id = int(($item_key =~ /(\d+)/)[0]);
1809 my $text = $self->cgi->param($item_key);
1812 next unless length $text;
1814 my $note = new Fieldmapper::container::biblio_record_entry_bucket_item_note;
1819 my $r = $a->request($method, $e->authtoken, "biblio", $note)->gather(1);
1821 if (defined $U->event_code($r)) {
1822 $self->apache->log->warn(
1823 "attempt to create cbrebin for item " . $note->item .
1824 " returned event " . $r->{textcode}
1828 $self->ctx->{bucket_action_event} = $r;
1837 sub load_myopac_bookbag_print {
1840 $self->apache->content_type("text/plain; encoding=utf8");
1842 my $id = int($self->cgi->param("list"));
1844 my ($sorter, $modifier) = $self->_get_bookbag_sort_params("sort");
1847 $self->_prepare_bookbag_container_query($id, $sorter, $modifier);
1851 # Get the bookbag object itself, assuming we're allowed to.
1852 if ($self->editor->allowed("VIEW_CONTAINER")) {
1854 $bbag = $self->editor->retrieve_container_biblio_record_entry_bucket($id) or return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1856 my $bookbags = $self->editor->search_container_biblio_record_entry_bucket(
1860 "owner" => $self->editor->requestor->id,
1864 ) or return Apache2::Const::HTTP_INTERNAL_SERVER_ERROR;
1866 $bbag = pop @$bookbags;
1869 # If we have a bookbag we're allowed to look at, issue the A/T event
1870 # to get CSV, passing as a user param that search query we built before.
1872 $self->ctx->{csv} = $U->fire_object_event(
1873 undef, "container.biblio_record_entry_bucket.csv",
1874 $bbag, $self->editor->requestor->home_ou,
1875 undef, {"item_search" => $item_search}
1879 # Create a reasonable filename and set the content disposition to
1880 # provoke browser download dialogs.
1881 (my $filename = $bbag->id . $bbag->name) =~ s/[^a-z0-9_ -]//gi;
1883 $self->apache->headers_out->add(
1884 "Content-Disposition",
1885 "attachment;filename=$filename.csv"
1888 return Apache2::Const::OK;
1891 sub load_password_reset {
1893 my $cgi = $self->cgi;
1894 my $ctx = $self->ctx;
1895 my $barcode = $cgi->param('barcode');
1896 my $username = $cgi->param('username');
1897 my $email = $cgi->param('email');
1898 my $pwd1 = $cgi->param('pwd1');
1899 my $pwd2 = $cgi->param('pwd2');
1900 my $uuid = $ctx->{page_args}->[0];
1904 $logger->info("patron password reset with uuid $uuid");
1906 if ($pwd1 and $pwd2) {
1908 if ($pwd1 eq $pwd2) {
1910 my $response = $U->simplereq(
1912 'open-ils.actor.patron.password_reset.commit',
1915 $logger->info("patron password reset response " . Dumper($response));
1917 if ($U->event_code($response)) { # non-success event
1919 my $code = $response->{textcode};
1921 if ($code eq 'PATRON_NOT_AN_ACTIVE_PASSWORD_RESET_REQUEST') {
1922 $ctx->{pwreset} = {style => 'error', status => 'NOT_ACTIVE'};
1925 if ($code eq 'PATRON_PASSWORD_WAS_NOT_STRONG') {
1926 $ctx->{pwreset} = {style => 'error', status => 'NOT_STRONG'};
1931 $ctx->{pwreset} = {style => 'success', status => 'SUCCESS'};
1934 } else { # passwords not equal
1936 $ctx->{pwreset} = {style => 'error', status => 'NO_MATCH'};
1939 } else { # 2 password values needed
1941 $ctx->{pwreset} = {status => 'TWO_PASSWORDS'};
1944 } elsif ($barcode or $username) {
1946 my @params = $barcode ? ('barcode', $barcode) : ('username', $username);
1947 push(@params, $email) if $email;
1951 'open-ils.actor.patron.password_reset.request', @params);
1953 $ctx->{pwreset} = {status => 'REQUEST_SUCCESS'};
1956 $logger->info("patron password reset resulted in " . Dumper($ctx->{pwreset}));
1957 return Apache2::Const::OK;