2019-06-06 13:44:45 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace App\Http\Controllers\API;
|
|
|
|
|
|
|
|
use App\Exceptions\HTTPException;
|
|
|
|
use App\Exceptions\NoPermissionException;
|
|
|
|
use App\Exceptions\NotLoggedInException;
|
|
|
|
use App\Exceptions\ResourceNotFound;
|
|
|
|
use App\Http\Resources\API\App;
|
2019-06-20 17:07:17 +00:00
|
|
|
use App\Http\Resources\API\AppAccess;
|
2019-06-06 13:44:45 +00:00
|
|
|
use App\Http\Resources\API\AppForOwner;
|
2019-06-20 17:07:17 +00:00
|
|
|
use App\Http\Resources\API\AppUser;
|
2019-06-06 13:44:45 +00:00
|
|
|
use App\Models\Setting;
|
|
|
|
use App\Models\User;
|
2019-09-24 14:02:39 +00:00
|
|
|
use Aws\S3\S3Client;
|
2019-07-17 17:21:15 +00:00
|
|
|
use Illuminate\Http\Request;
|
2019-06-06 13:44:45 +00:00
|
|
|
use Illuminate\Support\Facades\Auth;
|
2019-09-24 14:02:39 +00:00
|
|
|
use Illuminate\Support\Facades\Log;
|
2019-06-06 13:44:45 +00:00
|
|
|
use Laravel\Lumen\Routing\Controller as BaseController;
|
|
|
|
use TaGeSo\APIResponse\Response;
|
|
|
|
|
|
|
|
class AppController extends BaseController
|
|
|
|
{
|
2019-07-17 17:21:15 +00:00
|
|
|
public function createApp(Request $request, Response $response) {
|
2019-06-06 13:44:45 +00:00
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
2019-07-17 17:21:15 +00:00
|
|
|
if (!Auth::user()->developer) {
|
|
|
|
throw new NoPermissionException(403, "You need a developer Account to create new Apps.");
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!app('currentAccess')->getApp()->access_update_apps) {
|
|
|
|
throw new NoPermissionException(403, "App has no access to perform this request.");
|
|
|
|
}
|
|
|
|
|
|
|
|
$this->validate($request, [
|
|
|
|
'name' => 'required|max:255|min:3|regex:@^[a-zA-Z0-9]*$@|unique:apps',
|
|
|
|
'description' => 'required|min:3',
|
|
|
|
'url' => 'required|url'
|
|
|
|
]);
|
|
|
|
|
|
|
|
$app = \App\Models\App::createApp($request->input("name"), htmlspecialchars($request->input("description")), $request->input("url"), Auth::user());
|
|
|
|
|
|
|
|
return $response->withData(new AppForOwner($app));
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
public function listApps(Response $response) {
|
|
|
|
if (!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!Auth::user()->developer) {
|
|
|
|
throw new NoPermissionException(403, "You need a developer Account to create new Apps.");
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!app('currentAccess')->getApp()->access_read_apps) {
|
2019-06-20 14:46:50 +00:00
|
|
|
throw new NoPermissionException(403, "App has no access to perform this request.");
|
|
|
|
}
|
|
|
|
|
2019-06-06 13:44:45 +00:00
|
|
|
|
2019-07-17 16:34:08 +00:00
|
|
|
$apps = \App\Models\App::query()->where("user_id", "=", Auth::user()->id)->paginate(100);
|
|
|
|
|
|
|
|
$response->setPagination(
|
|
|
|
$apps->currentPage(),
|
|
|
|
$apps->lastPage(),
|
|
|
|
$apps->perPage()
|
|
|
|
);
|
|
|
|
|
|
|
|
return $response->withData(AppForOwner::collection($apps));
|
2019-06-06 13:44:45 +00:00
|
|
|
}
|
|
|
|
public function appDetails(Response $response, $id) {
|
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
|
|
|
$app = \App\Models\App::query()->where("id", "=", (int)$id)->firstOrFail();
|
|
|
|
|
2019-11-26 16:29:59 +00:00
|
|
|
if($app->user_id == Auth::user()->id || Auth::user()->admin) {
|
2019-06-06 13:44:45 +00:00
|
|
|
return $response->withData(new AppForOwner($app));
|
|
|
|
}
|
|
|
|
|
|
|
|
return $response->withData(new App($app));
|
|
|
|
}
|
|
|
|
|
|
|
|
public function findApp(Response $response, \Illuminate\Http\Request $request) {
|
|
|
|
$this->validate($request, [
|
|
|
|
'apiKey' => '',
|
2019-08-11 20:08:56 +00:00
|
|
|
'webpage' => ''
|
2019-06-06 13:44:45 +00:00
|
|
|
]);
|
|
|
|
|
2019-08-11 20:08:56 +00:00
|
|
|
if(!$request->input("webpage", false) || !empty($request->input("apiKey"))) {
|
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-06-06 13:44:45 +00:00
|
|
|
$query = \App\Models\App::query();
|
|
|
|
|
|
|
|
if($request->input("apiKey", false)) {
|
|
|
|
$query->where("apiKey", "=", $request->input("apiKey"));
|
|
|
|
}
|
|
|
|
|
2019-07-23 15:48:11 +00:00
|
|
|
if($request->input("webpage", false)) {
|
|
|
|
$query->where("show_on_webpage", "=", 1);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2019-06-06 13:44:45 +00:00
|
|
|
$apps = $query->paginate(20);
|
|
|
|
|
|
|
|
$response->setPagination($apps->currentPage(), $apps->lastPage(), $apps->perPage());
|
|
|
|
return $response->withData(App::collection($apps));
|
2019-06-20 17:07:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
public function updateApp(Response $response, \Illuminate\Http\Request $request, $id) {
|
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
|
|
|
$this->validate($request, [
|
|
|
|
'name' => 'required|max:255|min:3|regex:@^[a-zA-Z0-9]*$@',
|
|
|
|
'description' => 'required|min:3',
|
|
|
|
'url' => 'required|url',
|
|
|
|
'direct_url' => 'url'
|
|
|
|
]);
|
|
|
|
|
|
|
|
$app = \App\Models\App::query()->where("id", "=", $id)->firstOrFail();
|
|
|
|
|
2019-07-17 09:31:30 +00:00
|
|
|
if($app->user_id != Auth::user()->id) {
|
|
|
|
throw new NoPermissionException(403, "Not your app (".$app->user_id."/".Auth::user()->id.")");
|
2019-06-20 17:07:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
$app->name = $request->input("name");
|
|
|
|
$app->description = $request->input("description");
|
|
|
|
$app->url = $request->input("url");
|
|
|
|
$app->direct_url = $request->input("direct_url");
|
|
|
|
$app->saveOrFail();
|
|
|
|
|
|
|
|
return $response->withData(new AppForOwner($app));
|
|
|
|
}
|
|
|
|
|
|
|
|
public function getUsers(Response $response, $id) {
|
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
|
|
|
$app = \App\Models\App::query()->where("id", "=", $id)->firstOrFail();
|
|
|
|
|
|
|
|
if($app->user_id != Auth::user()->id) {
|
|
|
|
throw new NoPermissionException(403, "Not your app");
|
|
|
|
}
|
|
|
|
|
|
|
|
$access = \App\Models\AppAccess::query()->where("status", "=", "allowed")->where("app_id", "=", $id)->paginate(100);
|
|
|
|
|
|
|
|
$response->setPagination(
|
|
|
|
$access->currentPage(),
|
|
|
|
$access->lastPage(),
|
|
|
|
$access->perPage()
|
|
|
|
);
|
2019-06-06 13:44:45 +00:00
|
|
|
|
2019-06-20 17:07:17 +00:00
|
|
|
return $response->withData(AppUser::collection($access));
|
2019-06-06 13:44:45 +00:00
|
|
|
}
|
2019-08-17 18:54:52 +00:00
|
|
|
|
2019-09-24 14:02:39 +00:00
|
|
|
public function changeImage(Request $request, Response $response, $id) {
|
|
|
|
if(!Auth::check()) {
|
|
|
|
throw new NotLoggedInException();
|
|
|
|
}
|
|
|
|
|
|
|
|
$newTmp = tempnam("", "icon_upload");
|
|
|
|
$request->file("img")->move("/tmp", $newTmp);
|
|
|
|
$info = getimagesize($newTmp);
|
|
|
|
Log::debug("Image sitze", $info);
|
|
|
|
Log::debug("File size ".filesize($newTmp));
|
|
|
|
if($info["0"] != $info["1"]) {
|
|
|
|
throw new HTTPException(400, "Image must be a squader.");
|
|
|
|
}
|
|
|
|
|
|
|
|
if($info[0] > 1000) {
|
|
|
|
throw new HTTPException(400, "Image is to big, max 1000 px.");
|
|
|
|
}
|
|
|
|
if($info[0] < 50) {
|
|
|
|
throw new HTTPException(400, "Image is to small, min 50 px.");
|
|
|
|
}
|
|
|
|
|
|
|
|
$app = \App\Models\App::query()->where("id", "=", $id)->firstOrFail();
|
|
|
|
|
|
|
|
if($app->user_id != Auth::user()->id) {
|
|
|
|
throw new NoPermissionException(403, "Not your app (".$app->user_id."/".Auth::user()->id.")");
|
|
|
|
}
|
|
|
|
|
|
|
|
$image = imagecreatefrompng($newTmp);
|
|
|
|
imagepng($image, $newTmp."2", 2);
|
|
|
|
|
|
|
|
Log::debug("New File size ".filesize($newTmp."2"));
|
|
|
|
|
|
|
|
$s3 = app(S3Client::class);
|
|
|
|
|
|
|
|
$result = $s3->putObject([
|
|
|
|
"Bucket" => getenv("S3_Bucket"),
|
|
|
|
"Key" => "icons/icon_".$app->id.".png",
|
|
|
|
"SourceFile" => $newTmp,
|
|
|
|
'ACL' => 'public-read'
|
|
|
|
]);
|
|
|
|
|
|
|
|
$app->iconURL = $result['ObjectURL'];
|
|
|
|
$app->saveOrFail();
|
|
|
|
|
|
|
|
return $response->withData(["url" => $result['ObjectURL']]);
|
|
|
|
}
|
|
|
|
|
2019-08-17 18:54:52 +00:00
|
|
|
|
|
|
|
|
2019-06-06 13:44:45 +00:00
|
|
|
}
|