/**
* Logs an action.
*
* @param string $action
* @param App\Board|String $board
* @param Array $data
* @return App\Log
*/
public function log($action, $board = null, $data = null)
{
$board_uri = null;
$action_details = null;
if ($board instanceof \App\Board) {
$board_uri = $board->board_uri;
$action_details = $data;
} else {
if ($board instanceof \App\Post) {
$board_uri = $board->board_uri;
$action_details = $data;
} else {
if (is_string($board)) {
$board_uri = $board;
$action_details = $data;
} else {
if (is_array($board) && is_null($data)) {
$board_uri = null;
$action_details = $board;
}
}
}
}
if (!is_null($action_details) && !is_array($action_details)) {
$action_details = [$action_details];
}
if (!is_null($action_details)) {
$action_details = json_encode($action_details);
}
$log = new Log(['action_name' => $action, 'action_details' => $action_details, 'user_id' => $this->user->isAnonymous() ? null : $this->user->user_id, 'user_ip' => Request::getClientIp(), 'board_uri' => $board_uri]);
return $log->save();
}
public static function create_log($user_id,$module_type,$content){
$log = new Log;
$log->user_id = $user_id;
$log->module_type = $module_type;
$log->content = $content;
$log->save();
}
public function add($action, $message, $user = null)
{
$log = new Log();
$log->message = "{$action} : {$message}";
if (is_object($user) && hasEntry("id", $user)) {
$log->user_id = $user->id;
}
$log->save();
}
public function destroy($id, User $user)
{
$help = Help::find($id);
$log = new Log();
$log->user_id = $user->id;
$log->log = "删除帮助" . print_r($help->toArray(), true);
$log->save();
Help::destroy($id);
return redirect()->action('AdminController@getHelp');
}
public function destroy($id, User $user)
{
$stop = Stop::find($id);
$log = new Log();
$log->user_id = $user->id;
$log->log = "删除车站" . print_r($stop->toArray(), true);
$log->save();
Stop::destroy($id);
return redirect()->action('StopController@index');
}
public function destroy($id, User $user)
{
$rank = Rank::find($id);
$log = new Log();
$log->user_id = $user->id;
$log->log = "删除等级" . print_r($rank->toArray(), true);
$log->save();
Rank::destroy($id);
return redirect()->action('RankController@index');
}
public function destroy($id, User $user)
{
$bike = Bike::find($id);
$log = new Log();
$log->user_id = $user->id;
$log->log = "删除单车" . print_r($bike->toArray(), true);
dd($log->log);
$log->save();
Bike::destroy($id);
return redirect()->action('BikeController@index');
}
public function store(Request $request)
{
$log = new Log();
$log->email = $request->email;
$log->industry = $request->industry;
$log->report = $request->report;
$log->saleprice = $request->saleprice;
$log->proposals = $request->proposals;
$log->save();
return view('templates.success');
}
public function questionDel(Request $request)
{
Question::find($request->get('id'))->delete();
Question::where('subId', $request->get('id'))->delete();
$log = new Log();
$log->memberId = Auth::user()->id;
$log->detail = 'Delete Post,' . $request->get('id');
$log->save();
if ($request->get('redirect') == '') {
return redirect(route('home'));
} else {
return redirect(html_entity_decode($request->get('redirect')));
}
}
public function update(Request $request)
{
//dd($request->all());
$niceNames = array('gradYear' => 'ปีจบการศึกษา', 'classRoom' => 'สายชั้น', 'CRNo' => 'เลขที่', 'studenNo' => 'รหัสนักเรียน', 'idCardNo' => 'รหัสประชาชน', 'titleName' => 'คำนำหน้าชื่อ', 'name' => 'ชื่อ', 'lastname' => 'นามสกุล', 'nickname' => 'ชื่อเล่น', 'birthday' => 'วันเกิด', 'address' => 'ที่อยู่', 'tel' => 'เบอร์โทรศัพท์');
$messages = ['required' => ':attribute จำเป็นต้องระบุข้อมูล!', 'date_format' => 'รูปแบบวันที่ไม่ถูกต้อง! กรุณาระบุ ปีคศ-เดือน-วัน เท่านั้น!', 'email' => 'Email ไม่ถูกต้อง!', 'unique' => ':attribute มีผู้ใช้งานแล้ว!', 'alpha_num' => ':attribute กรุณาระบุตัวเลขหรือตัวอักษรเท่านั้น!', 'between' => ':attribute ต้องอยู่ระหว่าง :min ถึง :max ตัวอักษรเท่านั้น!', 'confirmed' => 'รหัสผ่านไม่ตรงกัน!', 'date_format' => ':attribute วันที่ไม่ถูกต้อง!', 'min' => ':attribute ข้อมูลต้องมี :max ตัว!', 'max' => ':attribute ข้อมูลต้องมี :max ตัว!'];
$validator = Validator::make($request->all(), ['gradYear' => 'required', 'classRoom' => 'required', 'CRNo' => 'required', 'studenNo' => 'required', 'idCardNo' => 'required|max:13|min:13', 'titleName' => 'required', 'name' => 'required', 'lastname' => 'required', 'nickname' => 'required', 'address' => 'required', 'birthday' => 'required|date_format:Y-m-d', 'tel' => 'required'], $messages);
$validator->setAttributeNames($niceNames);
if ($validator->fails()) {
return redirect(route('member', ['action' => '2']))->withErrors($validator->errors())->withInput($request->all());
}
$classRoom = explode(',', $request->get('classRoom'));
//dd($classRoom);
$memberUpdate = User::find(Auth::user()->id);
$memberUpdate->gradYear = trim($request->get('gradYear'));
$memberUpdate->class = trim($classRoom[0]);
$memberUpdate->room = trim($classRoom[1]);
$memberUpdate->CRNo = trim($request->get('CRNo'));
$memberUpdate->studenNo = trim($request->get('studenNo'));
$memberUpdate->idCardNo = trim($request->get('idCardNo'));
$memberUpdate->titleName = trim($request->get('titleName'));
$memberUpdate->name = trim($request->get('name'));
$memberUpdate->lastname = trim($request->get('lastname'));
$memberUpdate->nickname = trim($request->get('nickname'));
$memberUpdate->birthday = trim($request->get('birthday'));
$memberUpdate->address = trim($request->get('address'));
$memberUpdate->tel = trim($request->get('tel'));
$memberUpdate->contact = trim($request->get('contact'));
$memberUpdate->save();
$log = new Log();
$log->memberId = Auth::user()->id;
$log->detail = 'Update Member,' . $memberUpdate;
$log->save();
return redirect(route('member', ['action' => '2']));
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
// exit('handle');
// First make sure there is an active session
// dd(debug_print_backtrace(2));
// dd($request->segment(3));
// dd($request->all());
// dd(Sentry::check());
if (!Sentry::check()) {
// return $next($request);
// exit('tidak login');
if ($request->ajax()) {
// return response('Unauthorized.', 400);
$response['code'] = 400;
$response['msg'] = "Anda harus Login";
// return $response;
return response('Anda Harus Login lebih dahulu', 401);
} else {
return redirect()->guest(route('sentinel.login'));
}
}
// Now check to see if the current user has the 'admin' permission
// dd(get_class(Sentry::getUser()));
// dd(Sentry::getUser()->hasAccess('admin'));//Sentinel\Models\User
if (Sentry::getUser()->hasAccess('admin')) {
// dd('admin');
return $next($request);
}
// dd($request->route()->getActionName());//"App\Http\Controllers\ExcelController@getIndex"
if (!Sentry::getUser()->hasAccess('admin')) {
// echo 'masukkk bukan admin<br>';
// dd(\Sentry::getUser()->getGroups()[0]->pivot->group_id);
//ambil group_id lewat user_id -> lewat pivot users_group
$group_id = \Sentry::getUser()->getGroups()[0]->pivot->group_id;
// dd(\Sentry::getUser()->toArray());
// dd($group_id);
//melalui group model dengan id diatas => untuk mengambil akses menu ( menghasilkan list akses menu)
$akses = Group::find($group_id)->akses()->get()->toArray();
// $akses = Group::find($group_id)->akses->get()->toArray();
// dd($akses);
$arrayactions = \Config::get('arrayactions');
$tables = \Config::get('tables');
$tableSegment = $request->segment(3);
// echo $akses;
$currentRoute = $request->route()->getActionName();
// dd($currentRoute).'-----<br>';
// dd($akses);
foreach ($akses as $key => $value) {
// echo 'loop';
//tandai segment true or false
$tandaSegment = false;
foreach ($tables as $table) {
if ($table['id'] == $value['table_id']) {
if ($tableSegment == $table['table']) {
// echo "masuk tandaSegment";
// exit();
$tandaSegment = true;
}
}
}
// $action=$value['controller'].'@'.$value['controller_method'];
$action = $arrayactions[$value['arr_id']]['Controllers'] . '@' . $arrayactions[$value['arr_id']]['methode'];
// $action=$value['controller'];
// echo $action.'--'.$currentRoute.'<br>';
if ($action == $currentRoute && $tandaSegment) {
if ($value['akses'] == 1) {
// exit('masuk');
// var_dump( $currentRoute );
// var_dump( $action );
// var_dump( $currentRoute == $action );
// exit();
$log = new Log();
$log->users_id = \Sentry::getUser()->id;
$log->group_id = $group_id;
$log->arr_id = $value['arr_id'];
$log->table = $tableSegment;
$log->action_name = $arrayactions[$value['arr_id']]['name'];
$log->catatan = 'Ok';
$log->save();
return $next($request);
} else {
// exit('tidak bisa');
$log = new Log();
$namaTabel = ucfirst($tableSegment);
$log->users_id = \Sentry::getUser()->id;
$log->group_id = $group_id;
$log->arr_id = $value['arr_id'];
$log->table = $tableSegment;
$log->action_name = $arrayactions[$value['arr_id']]['name'];
$log->catatan = 'Gagal';
$log->save();
$response['code'] = 404;
$response['msg'] = "Anda tidak memiliki akses menu pada Tabel \" {$namaTabel} \"!!!" . $arrayactions[$value['arr_id']]['name'];
// return $response;
return response($response['msg'], 402);
// // exit();
}
}
}
// $log=new Log;
// $log->users_id= \Sentry::getUser()->id;
// $log->group_id= $group_id ;
// $log->arr_id= $value['arr_id'];
// $log->table= $table;
// $log->action_name= $arrayactions[$value['arr_id']]['name'];
// $log->catatan= 'Gagal ';
// $log->save();
// return response('Unauthorized.', 401);
return response('Anda Harus Login lebih dahulu', 401);
}
// dd(Sentry::getUser()->hasAccess('admin'));
// dd(Sentry::getId());
// dd(Sentry::getGroups());
// All clear - we are good to move forward
// return $next($request);
if ($request->ajax()) {
// dd('ajaxx');
return response('Unauthorized.', 401);
} else {
Session::flash('error', trans('Sentinel::users.noaccess'));
return redirect()->route('sentinel.login');
}
}
public function updateAdmin(Request $request, User $admin, $id)
{
if (!($admin->auth & \Config::get('admin.adminSetting'))) {
return response(view('errors.error', ['title' => '权限不足', 'error' => '您没有管理管理员的权限!']), 403);
}
$key = $request->input('admin');
$res = 0;
foreach ($key as $v) {
$res |= $v;
}
$user = User::find($id);
$log = new Log();
$log->user_id = $admin->id;
$log->log = "编辑用户权限" . $user->id . ": " . $user->auth;
$user->auth = $res;
$user->save();
$log->save();
return redirect()->action('UserAdminController@index');
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
// dd($request-> segments()[2]);
// $name = $request->route()->getName();
// dd($request->route()->getActionName());
// dd($request->route()->getPath());
// dd($name);
// dd(get_class($request));
// First make sure there is an active session
if (!Sentry::check()) {
if ($request->ajax()) {
return response('Unauthorized.', 401);
} else {
return redirect()->guest(route('sentinel.login'));
}
}
// Now check to see if the current user has the 'admin' permission
if (Sentry::getUser()->hasAccess('admin')) {
if ($request->ajax()) {
return $next($request);
// return response('Unauthorized.', 401);
} else {
// Session::flash('error', trans('Sentinel::users.noaccess'));
return $next($request);
// return redirect()->route('sentinel.login');
}
}
// dd(get_class(Sentry::getUser()));
if (!Sentry::getUser()->hasAccess('admin', false)) {
// dd(\Sentry::getUser()->getGroups()[0]->pivot->group_id);
//ambil group_id lewat user_id -> lewat pivot users_group
$group_id = \Sentry::getUser()->getGroups()[0]->pivot->group_id;
// dd(\Sentry::getUser()->toArray());
// dd($group_id);
//melalui group model dengan id diatas => untuk mengambil akses menu ( menghasilkan list akses menu)
$akses_s = Group::find($group_id)->akses()->get()->toArray();
// dd($akses_s);
// $akses = Group::find($group_id)->akses->get()->toArray();
// dd($akses_s);
$config = \Config::get('arrayactions');
$tables = \Config::get('tables');
$tableSegment = $request->segment(3);
$table_log = $tableSegment;
// print_r($request->segment(1));
// print_r($request->segment(2));
// dd($table_log);
$key_table = array_search($tableSegment, $tables);
$pesan = '';
// print_r($tableSegment);
// dd($key_table);
// echo $akses;
$currentRoute = $request->route()->getActionName();
$currentRouteName = $request->route()->getName();
// dd($request->route());
// return $next($request);
// dd($currentRouteName);
// dd($currentRoute).'-----<br>';
// echo "<pre>";
// dd($akses_s);
// echo "</pre>";
// dd($config);
// print_r($currentRoute);echo '_currentRoute##';
// print_r($currentRouteName);echo 'currentRouteName%%';
// print_r($akses_s);
foreach ($akses_s as $key => $akses) {
// print_r($akses);
// dd($akses);
// echo 'loop';
//tandai segment true or false
// $tandaSegment=false;
// foreach ($tables as $table) {
// if ($table['id']==$akses['table_id']) {
// $table_log=$table['table'];
// if($tableSegment==$table['table'] ){
// // echo "masuk tandaSegment";
// // exit();
// $tandaSegment=true;
// }
// }
// }
// $action=$value['controller'].'@'.$value['controller_method'];
$NamespaceAction = $config[$akses['arr_id']]['Controllers'] . '@' . $config[$akses['arr_id']]['controller_method'];
$routeName = $config[$akses['arr_id']]['route_name'];
// $action=$value['controller'];
// if ($action==$currentRoute && $tandaSegment) {
if ($currentRouteName == $routeName or $NamespaceAction == $currentRoute) {
$pesan = $config[$akses['arr_id']]['ket'];
// echo $action.'--'.$currentRoute.'<br>';
// dd('cocok');
// print_r($akses);
if ($akses['akses'] == 1 && $akses['table_id'] == $key_table) {
// exit('masuk');
// var_dump(== $currentRoute );
// var_dump( $action );
// var_dump( $currentRoute == $action );
// exit();
// $log=new Log;
// $log->users_id= \Sentry::getUser()->id;
// $log->group_id= $group_id ;
// $log->arr_id= $akses['arr_id'];
// $log->table= $tableSegment;
// $log->action_name= $config[$akses['arr_id']]['name'];
// $log->catatan= 'Ok';
// $log->save();
return $next($request);
}
// else{
// // exit('tidak bisa');
// // dd($table);
// $log=new Log;
// $log->users_id= \Sentry::getUser()->id;
// $log->groups_id= $group_id ;
// $log->arr_id= $akses['arr_id'];
// $log->table= $table_log;
// $log->action_name= $config[$akses['arr_id']]['route_name'];
// // $log->action_name= $config[$akses['arr_id']]['route_name'];
// $log->catatan= 'Gagal';
// $log->save();
// $response['code']=400;
// $response['msg']="Anda tidak memiliki akses menu tabel ".$table_log." (".$config[$akses['arr_id']]['route_name']."), Aksi : ".$config[$akses['arr_id']]['ket']." ";
// // return $response;
// return response($response['msg'], 401);
// // return $response;
// }
}
/* jika route tidak ditemukan dalam list maka ijinkan ======================================================================*/
// return $next($request);
// else{
// return $next($request);
// }
}
$log = new Log();
$log->users_id = \Sentry::getUser()->id;
$log->groups_id = $group_id;
$log->arr_id = $akses['arr_id'];
$log->table = $table_log;
$log->action_name = $config[$akses['arr_id']]['route_name'];
// $log->action_name= $config[$akses['arr_id']]['route_name'];
$log->catatan = 'Gagal Aksi : ' . $pesan;
$log->save();
$response['code'] = 400;
$response['msg'] = "Anda tidak memiliki akses menu tabel " . $table_log . " (" . $pesan . "), Aksi : " . $pesan . " ";
// return $response;
return response($response['msg'], 401);
// $log=new Log;
// $log->users_id= \Sentry::getUser()->id;
// $log->group_id= $group_id ;
// $log->arr_id= $akses['arr_id'];
// $log->table= $table;
// $log->action_name= $config[$akses['arr_id']].$config[$akses['route_name']];
// $log->catatan= 'Gagal ';
// $log->save();
// return response('Unauthorized.', 401);
$response['code'] = 400;
$response['msg'] = "Anda tidak memiliki akses menu tabel " . $table_log . " (" . $config[$akses['arr_id']]['route_name'] . "), Aksi : " . $config[$akses['arr_id']]['ket'] . " ";
return response($response['msg'], 402);
// return $response;
}
// All clear - we are good to move forward
// return $next($request);
}
public function setupDel(Request $request)
{
$validator = Validator::make($request->all(), ['table' => 'required', 'id' => 'required']);
if ($validator->fails()) {
return 'false';
} else {
switch (strtolower($request->get('table'))) {
case 'cate':
SetupCate::find($request->get('id'))->delete();
SetupKind::where('idCate', $request->get('id'))->delete();
SetupValue::where('idCate', $request->get('id'))->delete();
break;
case 'kind':
SetupKind::find($request->get('id'))->delete();
SetupValue::where('idKind', $request->get('id'))->delete();
break;
case 'value':
SetupValue::find($request->get('id'))->delete();
break;
}
$log = new Log();
$log->memberId = Auth::user()->id;
$log->detail = 'Delete Setup table = ' . strtolower($request->get('table')) . ', id =' . trim($request->get('id'));
$log->save();
return $request->get('id');
}
}
