public function doLogin(CreateAdminRequest $request)
{
if (Auth::attempt(['username' => $request['username'], 'password' => $request['password']])) {
$role = Admin::find(Auth::id())->role;
if ($role !== 'admin') {
Auth::logout();
} else {
return redirect('admin/ajuan');
}
}
return redirect()->back()->withErrors(['error' => 'These credentials do not match our records.'])->withInput(Input::except('password'));
return redirect('admin/ajuan');
}
/**
* Update user information
*
* @param Request $request
* @return $this|\Illuminate\Http\RedirectResponse
* @throws \Illuminate\Foundation\Validation\ValidationException
*/
public function updateInfo(Request $request)
{
// Get the logged in user
$admin = Admin::find(Auth::guard('admin')->user()->adminId);
$newPassword = $request['password'];
// Validate the new password length
$validator = $this->validator($request->all());
if ($validator->fails()) {
$this->throwValidationException($request, $validator);
} else {
// Save new password
$admin->password = bcrypt($newPassword);
$admin->save();
return redirect()->back()->with('status', 'Success');
}
}
/**
* Store a newly created resource in storage.
*
* @param Request $request
* @return Response
*/
public function store(AdminRequest $request)
{
//
if (Admin::find($request['adminid'])) {
return Redirect::back()->withInput();
} else {
$admin = new Admin();
$admin->adminid = $request['adminid'];
$admin->adminlname = $request['adminlname'];
$admin->adminfname = $request['adminfname'];
$admin->adminmname = $request['adminmname'];
$admin->adminemail = $request['adminemail'];
$admin->adminpass = $request['adminpass'];
$admin->adminaddress = $request['adminaddress'];
$admin->admingender = $request['admingender'];
$admin->adminnumber = $request['adminnumber'];
$admin->save();
}
return Redirect::to('pis/patient');
}
public function change_password(Request $request)
{
$admin_id = Session::get('ADMIN_ACCESS_ID');
$data = array();
$settings = Admin::find($admin_id);
if ($request->isMethod('post')) {
$validator = Validator::make($request->all(), ['current_password' => 'required', 'new_password' => 'required|confirmed', 'new_password_confirmation' => 'required']);
if ($validator->fails()) {
return redirect::route('change_password')->withErrors($validator);
} else {
$current_password = $request->current_password;
$new_password = $request->new_password;
$new_password_confirmation = $request->new_password_confirmation;
if (\Hash::check($current_password, $settings->password)) {
$settings->password = $new_password;
$settings->save();
return redirect::route('change_password')->with('success', 'Password updated successfully.');
} else {
return redirect::route('change_password')->with('error', 'Invalid current password provided.');
}
}
}
return view('admin/change_password', $data);
}
public function admin()
{
$result = Admin::find(Session::get('laravel_admin_id'));
return $result;
}
/**
* Update the specified resource in storage.
*
* @param \Illuminate\Http\Request $request
* @param int $id
* @return \Illuminate\Http\Response
*/
public function update(Request $request, $id)
{
//
$rules = array('name' => 'required', 'email' => 'required|email');
$validator = Validator::make(Input::all(), $rules);
// process the login
if ($validator->fails()) {
return Redirect::to('admin/create')->withErrors($validator)->withInput(Input::except('password'));
} else {
// store
$admin = Admin::find($id);
$admin->name = Input::get('name');
$admin->email = Input::get('email');
$admin->save();
// redirect
Session::flash('message', 'Successfully updated!');
return Redirect::to('admin');
}
}
/**
* Show the form for editing the specified resource.
*
* @param int $id
* @return Response
*/
public function edit($id)
{
$data = array('title' => 'edit admin', 'admin' => Admin::find($id));
return view('backend.pages.backend-edit-admin')->with($data);
}
/**
* Delete an admin user when provided with the admin ID.
*
* @param Request $request
*/
public function deleteAdmin(Request $request)
{
$user = User::where('email', Admin::find($request->emp_id)->email)->first();
// Just in case someone tries to get clever using a manual get request
if ($user->email == Auth::user()->email) {
abort(403, 'Forbidden action. Admin cannot delete itself.');
}
// On delete of the user entry associated with the admin, admin will be deleted too
// (Reason: On delete cascade on foreign key admin->email refers user->email)
$user->delete();
}
public function Fired($id, $get, $id_par, $id_emplo)
{
// Start Check Authorization
/**
* 1. FullAccess - 1
* 2. HRD - 3
* 3. Creator - 5
* 4. Handler - 7
*/
$invalid_auth = 1;
$authRole = Auth::user()->UserRoles->role;
if ($authRole == 7 or $authRole == 1 or $authRole == 3) {
$invalid_auth = 0;
}
if ($invalid_auth == 1) {
Alert::error('Anda tidak memilik akses ini')->persistent('close');
return redirect('project/view/' . $id);
}
// End Check Authorization
$now = date('Y-m-d');
$gat = str_replace('_', ' ', $get);
$got = ucfirst($gat);
if ($get == 'admin') {
$admin = Admin::find($id_par);
$admin->status = 0;
$admin->end = $now;
$admin->save();
} elseif ($get == 'project_officer') {
$po = ProjectOfficer::find($id_par);
$po->status = 0;
$po->end = $now;
$po->save();
} elseif ($get == 'teamleader') {
$po = Teamleader::find($id_par);
$po->status = 0;
$po->end = $now;
$po->save();
}
$emplo = Employee::find($id_emplo);
$emplo->status = 0;
$emplo->save();
Alert::success('Sukses memberhentikan ' . $got)->persistent("Close");
return redirect('project/view/' . $id);
}
/**
* Remove the specified resource from storage.
*
* @param int $id
* @return \Illuminate\Http\Response
*/
public function destroy($id)
{
//インスタンス生成
$admin = Admin::find($id);
//削除
$admin->delete();
//リダイレクト
return redirect()->to('/admin/admins');
}
/**
* Update the specified resource in storage.
*
* @param Request $request
* @param int $id
* @return Response
*/
public function update(Request $request, $id)
{
//edit the user info
$data = $request->input("user");
$info = array();
$result = false;
$msg = "";
if (Auth::check()) {
switch ($request->input("type")) {
case 'update':
$info = $this->appendData($data, $info);
if ($info) {
$user = Auth::user();
$user->name = $info["usr_name"];
$user->address = $info["usr_address"];
$user->city = $info["usr_city"];
$user->country = $info["usr_country"];
$user->zp_code = $info["usr_zp"];
$user->save();
$msg = "Success, Profile Edited";
$result = true;
} else {
$msg = "Error Fetching The Information";
$result = false;
}
break;
case 'confirm':
$user = User::find($id);
if (User::isAdmin(Auth::user()) && $user->confirmed == 0) {
$user->confirmed = 1;
if ($user->save()) {
$msg = "User confirmed successfully";
$result = true;
} else {
$msg = "Error confirming user";
$result = false;
}
} else {
$msg = "You dont have permissions or User is already confirmed";
$result = false;
}
break;
case 'password':
$info = $this->appendData($data, $info);
if ($info) {
if (Hash::check($info["psw-old"], Auth::user()->password)) {
if ($info["psw-new"] == $info["psw-confirm"]) {
$user = Auth::user();
$user->password = Hash::make($info["psw-new"]);
$user->save();
$msg = "Success, password changed";
$result = true;
} else {
$msg = "Error, password does not match.";
$result = false;
}
} else {
$msg = "Error the actual passowrd does not match.";
$result = false;
}
} else {
$msg = "Error Fetching The Information";
$result = false;
}
break;
case "promote":
$user = User::find($id);
if (User::isAdmin(Auth::user()) && !User::isAdmin($user)) {
$admin = new Admin();
$admin->id = $user->id;
$admin->promoted_by = Auth::user()->id;
if ($admin->save()) {
$msg = "User promoted successfully";
$result = true;
} else {
$msg = "Error promoting user";
$result = false;
}
} else {
$msg = "You dont have permissions or User is already in the admin list";
$result = false;
}
break;
case "demote":
$user = User::find($id);
if (User::isAdmin(Auth::user()) && User::isAdmin($user)) {
$admin = Admin::find($id);
if ($admin->delete()) {
$msg = "User demoted successfully";
$result = true;
} else {
$msg = "Error demoting user";
$result = false;
}
} else {
$msg = "You dont have permissions or User is not admin";
$result = false;
}
break;
case "block":
$user = User::find($id);
if (User::isAdmin(Auth::user()) && $user->blocked == 0) {
$user->blocked = 1;
if ($user->save()) {
$msg = "User blocked successfully";
$result = true;
} else {
$msg = "Error blocking user";
$result = false;
}
} else {
$msg = "You dont have permissions or User is already blocked";
$result = false;
}
break;
case "unblock":
$user = User::find($id);
if (User::isAdmin(Auth::user()) && $user->blocked == 1) {
$user->blocked = 0;
if ($user->save()) {
$msg = "User unblocked successfully";
$result = true;
} else {
$msg = "Error unblocking user";
$result = false;
}
} else {
$msg = "You dont have permissions or User is not blocked";
$result = false;
}
break;
default:
$msg = "Please specify the type";
$result = false;
}
} else {
$msg = "No Session Found";
$result = false;
}
return ["result" => $result, "msg" => $msg];
}
public function Fired($id, $get, $id_par, $id_emplo)
{
$now = date('Y-m-d');
$gat = str_replace('_', ' ', $get);
$got = ucfirst($gat);
if ($get == 'admin') {
$admin = Admin::find($id_par);
$admin->status = 0;
$admin->end = $now;
$admin->save();
} elseif ($get == 'project_officer') {
$po = ProjectOfficer::find($id_par);
$po->status = 0;
$po->end = $now;
$po->save();
} elseif ($get == 'teamleader') {
$po = Teamleader::find($id_par);
$po->status = 0;
$po->end = $now;
$po->save();
}
$emplo = Employee::find($id_emplo);
$emplo->status = 0;
$emplo->save();
Alert::success('Sukses memberhentikan ' . $got)->persistent("Close");
return redirect('project/view/' . $id);
}
/**
* Update the specified resource in storage.
*
* @param Request $request
* @param int $id
* @return Response
*/
public function update(Request $request, $id)
{
//modify an order
if (Auth::check()) {
switch ($request->input("type")) {
case 'confirm':
$tracecode = $request->input("trace");
$find = Admin::find(Auth::user()->id);
$order = Order::find($id);
if (sizeof($find) > 0 && $order != "confirmed") {
$order->status = "confirmed";
$order->trace_code = $tracecode;
$order->confirmed_by = Auth::user()->id;
$order->date_confirmed = date('Y-m-d H:i:s');
if ($order->save()) {
return ["result" => true, "msg" => "Order Confirmed Successfull", "order" => $order];
} else {
return ["result" => false, "msg" => "Imposible to update the order"];
}
} else {
return ["result" => false, "msg" => "You are not allowed or the order is already confirmed"];
}
break;
case 'cancel':
if (User::isAdmin(Auth::user())) {
$order = Order::find($id);
$order->status = "canceled";
$order->canceled_by = Auth::user()->id;
$order->trace_code = "";
if ($order->save()) {
return ["result" => true, "msg" => "Order Canceled Successfully", "order" => $order];
} else {
return ["result" => false, "msg" => "Imposible to update the order"];
}
} else {
return ["result" => false, "msg" => "You are not allowed or the order is already canceled"];
}
case 'wait':
if (User::isAdmin(Auth::user())) {
$order = Order::find($id);
$order->status = "not-confirmed";
$order->canceled_by = Auth::user()->id;
$order->trace_code = "";
if ($order->save()) {
return ["result" => true, "msg" => "Order Sent For Confirmation Successfully", "order" => $order];
} else {
return ["result" => false, "msg" => "Imposible to update the order"];
}
} else {
return ["result" => false, "msg" => "You are not allowed or the order is already waiting for confirmation"];
}
default:
return ["result" => false, "msg" => "Forgot to specify the type of update"];
break;
}
} else {
return ["result" => false, "msg" => "No session found on the server"];
}
}
