/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!systemAccess(9)) { return redirect()->guest($request->segment(1) . '/admin/'); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @param $access * @return mixed */ public function handle($request, Closure $next, $access) { if (!systemAccess((int) $access)) { return redirect()->route('admin-home')->with('error', 'access-denied'); } return $next($request); }
public function display() { $settings = new \App\Classes\Settings(); $departments = $this->getDepartmentsAdmin(); $settingsRecords = []; if (session('department_filter_id')) { $settingsDB = Settings::where('department_id', session('department_filter_id'))->get(); } else { $settingsDB = Settings::all(); } foreach ($settingsDB as $setting) { $settingsRecords[$setting['department_id']][$setting['key']] = $setting['value']; } $departmentId = null; if (systemAccess(100)) { if (session('department_filter_id')) { $departmentId = session('department_filter_id'); } } else { $departmentId = auth()->user()->department_id; } if ($departmentId) { $userDepartment = []; foreach ($departments as $department) { if ($department->id == $departmentId) { $userDepartment = $department; break; } } $departments = [$userDepartment]; } $settings = $settings->getSettings($departments); return view('admin.settings.display', compact('settings', 'departments', 'settingsRecords')); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!systemAccess(100)) { session(['error' => 'access-denied']); return redirect()->route('admin-home'); } return $next($request); }
public function __construct() { $this->middleware('departmentAccess:11'); $statuses = new PaperStatus(); if (systemAccess(100)) { $this->systemAdmin = true; } view()->share(['systemAdmin' => $this->systemAdmin, 'statuses' => $statuses->getStatuses()]); }
/** * Instantiate a new DepartmentController instance. */ public function __construct() { $this->middleware('departmentAccess:10'); if (systemAccess(100)) { #can config all departments $this->systemAdmin = true; } else { $this->middleware('userFromDepartment', ['except' => ['index']]); } }
public function __construct() { $this->middleware('departmentAccess:3'); $this->middleware('adminDepartmentObject:EmailTemplate', ['only' => ['edit', 'update', 'delete']]); if (systemAccess(100)) { $this->systemAdmin = true; } $temp = new Template(); view()->share(['systemAdmin' => $this->systemAdmin, 'text' => $temp->getParams()]); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @param $object * @return mixed */ public function handle($request, Closure $next, $object) { $objectId = $request->segment(4); $object = app()->make('App' . '\\' . $object); $object = $object->find($objectId); if (!systemAccess(100) && $object) { if ($object->department_id != ($departmentId = auth()->user()->department_id)) { return redirect()->route('admin-home')->with('error', 'access-denied'); } } return $next($request); }
public function __construct() { $this->middleware('departmentAccess:4'); $this->middleware('adminDepartmentObject:News', ['only' => ['edit', 'update', 'delete']]); $this->systemAdmin = false; $departments = []; if (systemAccess(100)) { $this->systemAdmin = true; $departments = getNomenclatureSelect($this->getDepartmentsAdmin(), true); } view()->share(['systemAdmin' => $this->systemAdmin, 'departments' => $departments]); }
public function __construct() { $this->middleware('departmentAccess:6'); $this->middleware('adminDepartmentObject:Criteria', ['only' => ['edit', 'update', 'delete']]); $this->systemAdmin = false; $departments = []; $types = new CriteriaType(); if (systemAccess(100)) { $this->systemAdmin = true; $departments = getNomenclatureSelect($this->getDepartmentsAdmin(), true); } view()->share(['systemAdmin' => $this->systemAdmin, 'departments' => $departments, 'types' => $types->getTypes()]); }
public function postProfile(Requests\ProfileUpdateRequest $request) { $settings = $this->getDepartment()->settings()->key('user_data'); if (isset($settings->value) && $settings->value) { return redirect()->back()->with('error', 'access-denied'); } DB::transaction(function () use($request) { auth()->user()->update($request->all()); if (auth()->user()->is_reviewer || systemAccess(2)) { auth()->user()->categories()->sync((array) $request->get('categories')); } }); return redirect()->to(route('department::index', [$request->segment(2)]))->with('success', 'profile-updated'); }
/** * Get the validation rules that apply to the request. * * @return array */ public function rules() { $rules = ['category_id' => 'required|exists:category,id', 'title' => 'required|min:3|max:255', 'description' => 'min:3|max:1000', 'paper' => 'required|max:32000|mimes:pdf,doc,docx', 'authors' => 'required|min:3|max:255']; if (isAdminPanel()) { $paper = new PaperStatus(); if (systemAccess(100)) { $rules['department_id'] = 'required'; } $rules['user_id'] = 'required|exists:users,id'; $rules['payment_description'] = 'min:3|max:1000'; $rules['payment_source'] = 'image|max:5000'; $rules['status_id'] = 'required|between:1,' . count($paper->getStatuses()); } if ($this->request->get('id')) { #update request1 if (!$this->request->get('paper')) { $rules['paper'] = ''; } } return $rules; }
public function postLogin() { $request = $this->request; $this->validate($request, ['email' => 'required', 'password' => 'required']); $throttles = $this->isUsingThrottlesLoginsTrait(); if ($throttles && $this->hasTooManyLoginAttempts($request)) { return $this->sendLockoutResponse($request); } if (Auth::attempt($this->getCredentials($request))) { if (systemAccess(9)) { #admin panel access id Session::flash('success', 'login'); return $this->handleUserWasAuthenticated($request, $throttles); } else { auth()->logout(); } } if ($throttles) { $this->incrementLoginAttempts($request); } return redirect(route('admin-index'))->withInput($request->only('email'))->withErrors(['email' => trans('admin.admin-login-failed')]); }
/** * @param int paper * save reviewer evaluation * @return \Illuminate\Http\Response */ public function postEvaluate($paper) { $paper = Paper::findOrFail($paper); if ($paper->department_id != auth()->user()->department_id || !systemAccess(2)) { if (!$this->systemAdmin) { return redirect()->action('Admin\\PaperController@index')->with('error', 'access-denied'); } } $criteriaPaper = $rules = $params = $errors = []; $criteria = Criteria::where('department_id', $paper->department_id)->with(['langs' => function ($query) { $query->lang(); }])->get(); foreach ($criteria as $value) { $errors[$value->id] = $value->langs->first()->title; if (request()->has($value->id)) { $params[$value->id] = request($value->id); $criteriaPaper[$value->id] = ['value' => request($value->id)]; } if ($value->required) { $rules[$value->id] = 'required'; } if ($value->type_id == 1) { $max = 'max:1500'; if (isset($rules[$value->id])) { $rules[$value->id] .= '|' . $max; } else { $rules[$value->id] = $max; } } } $validator = Validator::make($params, $rules); $validator->setAttributeNames($errors); if ($validator->fails()) { return redirect()->back()->withErrors($validator)->withInput(); } DB::transaction(function () use($criteriaPaper, $paper) { $paper->update(['status_id' => 4, 'reviewed_at' => Carbon::now()]); $paper->criteria()->sync($criteriaPaper); }); if (request()->get('email')) { event(new PaperWasFinished($paper)); } return redirect()->action('Admin\\PaperController@index')->with('success', 'paper-evaluated'); }
/** * Remove the specified resource from storage. * * @param \App\User $user * @return \Illuminate\Http\Response */ public function destroy(User $user) { if (systemAccess(100, $user)) { return redirect()->back()->with('error', 'admin-delete'); } try { $user->delete(); } catch (\Exception $e) { return redirect()->back()->with('error', 'error-user-paper'); } return redirect()->action('Admin\\UsersController@index')->with('success', 'deleted'); }
public function request(Department $department, $paper) { if (!systemAccess(13)) { return redirect()->action('PaperController@index', [$department->keyword])->with('error', 'access-denied'); } $paper = Paper::findOrFail($paper); $paper->requests()->attach(auth()->user()->id); return redirect()->action('PaperController@index', [$department->keyword])->with('success', 'request-send'); }