Added simple possibility to favorite/unfavorite and delete multiple parts at once.

src/Controller/PartListsController.php

@@ -48,6 +48,7 @@ use App\Entity\Parts\Footprint;
 use App\Entity\Parts\Manufacturer;
 use App\Entity\Parts\Storelocation;
 use App\Entity\Parts\Supplier;
+use App\Services\Parts\PartsTableActionHandler;
 use Doctrine\ORM\EntityManagerInterface;
 use Omines\DataTablesBundle\DataTableFactory;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
@@ -65,6 +66,36 @@ class PartListsController extends AbstractController
         $this->entityManager = $entityManager;
     }
 
+    /**
+     * @Route("/table/action", name="table_action", methods={"POST"})
+     */
+    public function tableAction(Request $request, PartsTableActionHandler $actionHandler): Response
+    {
+        $redirect = $request->request->get('redirect_back');
+        $ids = $request->request->get('ids');
+        $action = $request->request->get('action');
+
+        if (!$this->isCsrfTokenValid('table_action', $request->request->get('_token'))) {
+            $this->addFlash('error', 'csfr_invalid');
+            return $this->redirect($redirect);
+        }
+
+        if ($action === null || $ids === null) {
+            $this->addFlash('error', 'part.table.actions.no_params_given');
+        } else {
+            $parts = $actionHandler->idStringToArray($ids);
+            $actionHandler->handleAction($action, $parts, null);
+
+            //Save changes
+            $this->entityManager->flush();
+
+            $this->addFlash('success', 'Done');
+        }
+
+
+        return $this->redirect($redirect);
+    }
+
     /**
      * @Route("/category/{id}/parts", name="part_list_category")
      *

src/Services/Parts/PartsTableActionHandler.php

@@ -0,0 +1,103 @@
+<?php
+/**
+ * This file is part of Part-DB (https://github.com/Part-DB/Part-DB-symfony).
+ *
+ * Copyright (C) 2019 - 2020 Jan Böhmer (https://github.com/jbtronics)
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU Affero General Public License as published
+ * by the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program.  If not, see <https://www.gnu.org/licenses/>.
+ */
+
+namespace App\Services\Parts;
+
+
+use App\Entity\Parts\Part;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\Security\Core\Exception\AccessDeniedException;
+use Symfony\Component\Security\Core\Security;
+
+final class PartsTableActionHandler
+{
+    private $entityManager;
+    private $security;
+
+    public function __construct(EntityManagerInterface $entityManager, Security $security)
+    {
+        $this->entityManager = $entityManager;
+        $this->security = $security;
+    }
+
+    /**
+     * Converts the given array to an array of Parts
+     * @param  string  $ids A comma separated list of Part IDs.
+     * @return Part[]
+     */
+    public function idStringToArray(string $ids): array
+    {
+        $id_array = explode(',', $ids);
+
+        $repo = $this->entityManager->getRepository(Part::class);
+        return $repo->getElementsFromIDArray($id_array);
+    }
+
+    /**
+     * @param  string  $action
+     * @param  Part[]  $selected_parts
+     * @param  int|null  $target_id
+     */
+    public function handleAction(string $action, array $selected_parts, ?int $target_id): void
+    {
+        //Iterate over the parts and apply the action to it:
+        foreach ($selected_parts as $part) {
+            if (!$part instanceof Part) {
+                throw new \InvalidArgumentException('$selected_parts must be an array of Part elements!');
+            }
+
+            //We modify parts, so you have to have the permission to modify it
+            $this->denyAccessUnlessGranted('edit', $part);
+
+            switch ($action) {
+                case 'favorite':
+                    $part->setFavorite(true);
+                    break;
+                case 'unfavorite':
+                    $part->setFavorite(false);
+                    break;
+                case 'delete':
+                    $this->denyAccessUnlessGranted('delete', $part);
+                    $this->entityManager->remove($part);
+                    break;
+
+                default:
+                    throw new \InvalidArgumentException('The given action is unknown! (' . $action . ')');
+            }
+        }
+    }
+
+    /**
+     * Throws an exception unless the attributes are granted against the current authentication token and optionally
+     * supplied subject.
+     *
+     * @throws AccessDeniedException
+     */
+    private function denyAccessUnlessGranted($attributes, $subject = null, string $message = 'Access Denied.'): void
+    {
+        if (!$this->security->isGranted($attributes, $subject)) {
+            $exception = new AccessDeniedException($message);
+            $exception->setAttributes($attributes);
+            $exception->setSubject($subject);
+
+            throw $exception;
+        }
+    }
+}