php-commerce/Controllers/InvoiceController.php

<?php

declare(strict_types=1);

namespace Core\Mod\Commerce\Controllers;

use Core\Front\Controller;
use Core\Mod\Commerce\Models\Invoice;
use Core\Mod\Commerce\Services\InvoiceService;
use Core\Mod\Tenant\Models\User;
use Illuminate\Http\Request;
use Illuminate\Http\Response;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Storage;
use Symfony\Component\HttpFoundation\StreamedResponse;

class InvoiceController extends Controller
{
    public function __construct(
        protected InvoiceService $invoiceService
    ) {}

    /**
     * Download invoice PDF.
     */
    public function pdf(Request $request, Invoice $invoice): StreamedResponse|Response
    {
        // Verify the invoice belongs to the user's workspace
        $user = Auth::user();

        if (! $user instanceof User) {
            abort(403, 'Unauthorised');
        }

        $workspace = $user->defaultHostWorkspace();

        if (! $workspace || $invoice->workspace_id !== $workspace->id) {
            abort(403, 'You do not have access to this invoice.');
        }

        // Only allow downloading paid invoices
        if (! $invoice->isPaid()) {
            abort(403, 'This invoice cannot be downloaded yet.');
        }

        // Use the download method from InvoiceService
        return $this->invoiceService->downloadPdf($invoice);
    }

    /**
     * View invoice in browser.
     */
    public function view(Request $request, Invoice $invoice): Response
    {
        // Verify the invoice belongs to the user's workspace
        $user = Auth::user();

        if (! $user instanceof User) {
            abort(403, 'Unauthorised');
        }

        $workspace = $user->defaultHostWorkspace();

        if (! $workspace || $invoice->workspace_id !== $workspace->id) {
            abort(403, 'You do not have access to this invoice.');
        }

        // Generate PDF and get the content
        $path = $this->invoiceService->getPdf($invoice);
        $content = Storage::disk(config('commerce.pdf.storage_disk', 'local'))->get($path);

        return response($content, 200, [
            'Content-Type' => 'application/pdf',
            'Content-Disposition' => 'inline; filename="invoice-'.$invoice->invoice_number.'.pdf"',
        ]);
    }
}
monorepo sepration 2026-01-27 00:24:22 +00:00			`<?php`

			`declare(strict_types=1);`

refactor: migrate namespace from Core\Commerce to Core\Mod\Commerce Align commerce module with the monorepo module structure by updating all namespaces to use the Core\Mod\Commerce convention. This change supports the recent monorepo separation and ensures consistency with other modules. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-27 16:23:12 +00:00			`namespace Core\Mod\Commerce\Controllers;`
monorepo sepration 2026-01-27 00:24:22 +00:00
			`use Core\Front\Controller;`
refactor: migrate namespace from Core\Commerce to Core\Mod\Commerce Align commerce module with the monorepo module structure by updating all namespaces to use the Core\Mod\Commerce convention. This change supports the recent monorepo separation and ensures consistency with other modules. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2026-01-27 16:23:12 +00:00			`use Core\Mod\Commerce\Models\Invoice;`
			`use Core\Mod\Commerce\Services\InvoiceService;`
monorepo sepration 2026-01-27 00:24:22 +00:00			`use Core\Mod\Tenant\Models\User;`
			`use Illuminate\Http\Request;`
			`use Illuminate\Http\Response;`
			`use Illuminate\Support\Facades\Auth;`
			`use Illuminate\Support\Facades\Storage;`
			`use Symfony\Component\HttpFoundation\StreamedResponse;`

			`class InvoiceController extends Controller`
			`{`
			`public function __construct(`
			`protected InvoiceService $invoiceService`
			`) {}`

			`/**`
			`* Download invoice PDF.`
			`*/`
			`public function pdf(Request $request, Invoice $invoice): StreamedResponse\|Response`
			`{`
			`// Verify the invoice belongs to the user's workspace`
			`$user = Auth::user();`

			`if (! $user instanceof User) {`
			`abort(403, 'Unauthorised');`
			`}`

			`$workspace = $user->defaultHostWorkspace();`

			`if (! $workspace \|\| $invoice->workspace_id !== $workspace->id) {`
			`abort(403, 'You do not have access to this invoice.');`
			`}`

			`// Only allow downloading paid invoices`
			`if (! $invoice->isPaid()) {`
			`abort(403, 'This invoice cannot be downloaded yet.');`
			`}`

			`// Use the download method from InvoiceService`
			`return $this->invoiceService->downloadPdf($invoice);`
			`}`

			`/**`
			`* View invoice in browser.`
			`*/`
			`public function view(Request $request, Invoice $invoice): Response`
			`{`
			`// Verify the invoice belongs to the user's workspace`
			`$user = Auth::user();`

			`if (! $user instanceof User) {`
			`abort(403, 'Unauthorised');`
			`}`

			`$workspace = $user->defaultHostWorkspace();`

			`if (! $workspace \|\| $invoice->workspace_id !== $workspace->id) {`
			`abort(403, 'You do not have access to this invoice.');`
			`}`

			`// Generate PDF and get the content`
			`$path = $this->invoiceService->getPdf($invoice);`
			`$content = Storage::disk(config('commerce.pdf.storage_disk', 'local'))->get($path);`

			`return response($content, 200, [`
			`'Content-Type' => 'application/pdf',`
			`'Content-Disposition' => 'inline; filename="invoice-'.$invoice->invoice_number.'.pdf"',`
			`]);`
			`}`
			`}`