/**
* Store a newly created resource in storage.
*
* @return Response
*/
public function postAdd(Request $request, $product_id)
{
$deal = Deal::firstOrCreate(['user_id' => $request->user()->id, 'product_id' => $product_id]);
$product = \App\Product::find($product_id);
$request->session()->put("deals.{$product_id}", $product);
return response()->json(['id' => $product_id, 'mobile' => trans('products.mobile', ['mobile' => $request->user()->mobile]), 'text' => trans_choice('products.deal', $product->deals_count)]);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user() == null || !$request->user()->is_admin) {
return redirect()->guest('auth/login');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user() && $request->user()->isAuthor()) {
return $next($request);
}
return redirect("/blog");
}
public function unfollow(Request $request, User $user)
{
if ($request->user()->canUnfollow($user)) {
$request->user()->following()->detach($user);
}
return redirect()->back();
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($this->auth->guest()) {
if ($request->ajax()) {
return response('Unauthorized.', 403);
} else {
return redirect()->guest('auth/login');
}
}
if (!$request->user()->isAdmin() && $request->user()->cannot('dashboard_view')) {
$this->auth->logout();
return redirect()->guest('auth/login')->withErrors(trans('messages.permission_denied'));
}
$route_array = explode('.', $request->route()->getName());
$permission_name = array_search($route_array[2], array_dot($this->permission_fields));
if ($permission_name) {
$route_array[2] = explode('.', $permission_name)[0];
}
// $route_name = implode('_', $route_array);
$route_name = $route_array[1] . '_' . $route_array[2];
if (!$request->user()->isAdmin() && $request->user()->cannot($route_name)) {
//PATCH 为null
if ($request->ajax()) {
return response()->json(['status' => trans('messages.permission_denied'), 'type' => 'error', 'code' => 403]);
} else {
return view('errors.403');
}
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if (!$request->user() || !$request->user()->is_admin) {
return redirect()->route('home')->with('warning-message', 'You are not authorized to access settings.');
}
return $next($request);
}
public function getIndex(Request $request)
{
$perpage = 20;
$user = $request->user();
$mylogs = $request->user()->mylog()->where('mylog_action', '=', 'login')->orWhere('mylog_action', '=', 'logout')->orderBy('created_at', 'DESC')->paginate($perpage);
return view('manage.profile.index', ['TITLE' => '个人中心', 'META_KEYWORDS' => META_KEYWORDS, 'META_DESC' => META_DESC, 'PAGE_CODE' => '', 'user' => $user, 'mylogs' => $mylogs]);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user() and !$request->user()->subscribed('main')) {
return redirect('subscribe');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->route('type') == "schede_tecniche" && (!$request->user() || !$request->user()->can("scarica_allegati"))) {
return redirect()->to('/?login=true');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param $role
* @return mixed
*/
public function handle($request, Closure $next, $role = 1)
{
/**
* Account Role
* ------------
* 0 -> Member
* 1 -> Moderator
* 2 -> Admin
* 3 -> Super Admin
* 4 -> Lead Developer
*/
/**
* If Tampered role ie not in 0-4
*/
if ($request->user()->role > 4) {
return redirect('/')->withNotification("Sorry buddy! You are not authorized for that action.")->withType('warning');
}
/**
* Check for rights and with params if provided.
*/
if ($request->user()->role < $role) {
return redirect('/')->withNotification("Sorry buddy! You are not authorized for that action.")->withType('warning');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user()->role != 'administrator' && $request->user()->role != 'editor') {
return redirect('/');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user()->role == 'cliente' or $request->user()->role == 'socio') {
return $next($request);
}
return redirect('/');
}
/**
* Run the request filter.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param string $role
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user()->role != 'admin' && $request->user()->role != 'user') {
return Redirect::action('ClientController@index');
}
return $next($request);
}
public function store(Request $request, $id)
{
$orgOrder = OrganizationOrder::findOrFail($id);
$lineItem = new LineItem();
$lineItem->organization_order_id = $id;
if ($request->input('UserOrder') && strlen($request->input('UserOrder')['order']) > 0) {
if ($request->input('UserOrder')['default'] == 1) {
UserOrder::where('user_id', '=', $request->user()->id)->where('restaurant_id', '=', $orgOrder->restaurant()->id)->where('default', '=', '1')->update(['default' => 0]);
}
$userOrder = new UserOrder();
$userOrder->fill($request->input('UserOrder'));
$userOrder->user_id = $request->user()->id;
$userOrder->restaurant_id = $orgOrder->restaurant()->id;
$userOrder->save();
$lineItem->user_order = $userOrder->id;
} else {
$lineItem->user_order = $request->input('LineItem')['user_order'];
}
if ($lineItem->isValid()) {
$lineItem->save();
return redirect()->route('orgorder.show', ['orgId' => $orgOrder->organization()->id, 'id' => $lineItem->organization_order_id]);
} else {
return redirect()->route('lineitem.create', ['id' => $id])->withErrors($lineItem->getErrors())->withInput();
}
}
/**
* Display a listing of the resource.
*
* @param UserRepositoryInterface $userRepository
* @param ProjectRepositoryInterface $projectRepository
* @param Request $request
* @return \Illuminate\Http\Response
*/
public function index(UserRepositoryInterface $userRepository, ProjectRepositoryInterface $projectRepository, Request $request)
{
$projects = $userRepository->drafts($request->user()->id);
$publishedProjects = $userRepository->published($request->user()->id);
$failedProjects = $userRepository->failed($request->user()->id);
return view('user.project.index', compact('projects', 'publishedProjects', 'failedProjects'));
}
/**
* Determine if the authenticated user is a developer.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return \Illuminate\Http\Response
*/
public function handle($request, $next)
{
if ($request->user() && Spark::developer($request->user()->email)) {
return $next($request);
}
return $request->ajax() || $request->wantsJson() ? response('Unauthorized.', 401) : redirect()->guest('login');
}
public function getThumbnail(Request $request, Upload $upload)
{
if (!$request->user() || $request->user()->id !== $upload->user_id && !$request->user()->isPrivilegedUser()) {
return abort(StatusCode::NOT_FOUND);
}
return response()->download($upload->getThumbnailPath(true), 'thumbnail.' . $upload->name);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @param string $role
* @return mixed
*/
public function handle($request, Closure $next, $role)
{
switch ($role) {
case 'admin':
if (!$request->user()->is_admin) {
if ($request->ajax()) {
return response('Access Denied')->setStatusCode(403);
}
abort(404);
}
break;
case 'moderator':
if (!$request->user()->is_moderator) {
if ($request->ajax()) {
return response('Access Denied')->setStatusCode(403);
}
abort(404);
}
break;
default:
return response('Access Denied')->setStatusCode(403);
break;
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user()->admin || $request->user()->owner == null) {
return redirect('/');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user() == null || !$request->user()->isVolunteer()) {
return redirect('/');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
$locale = config('app.locale');
$adminLocale = config('typicms.admin_locale');
$locales = config('translatable.locales');
// If locale is present in app.locales…
if (in_array(Input::get('locale'), $locales)) {
// …store locale in session
Session::put('locale', Input::get('locale'));
}
// Set app.locale
config(['app.locale' => Session::get('locale', $locale)]);
// Set Translator locale to typicms.admin_locale config
Lang::setLocale($adminLocale);
$localesForJS = [];
foreach ($locales as $key => $locale) {
$localesForJS[] = ['short' => $locale, 'long' => trans('global.languages.' . $locale)];
}
// Set Locales to JS.
JavaScript::put(['_token' => csrf_token(), 'encrypted_token' => Crypt::encrypt(csrf_token()), 'adminLocale' => $adminLocale, 'locales' => $localesForJS, 'locale' => config('app.locale')]);
// set curent user preferences to Config
if ($request->user()) {
$prefs = $request->user()->preferences;
config(['typicms.user' => $prefs]);
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if (!$request->user() || !$request->user()->is_admin) {
return redirect('/');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user()->role == 'agent' || $request->user()->role == 'admin') {
return $next($request);
}
return redirect('dashboard')->with('fails', 'You are not Autherised');
}
/**
* Добавить комментарий
* @param Request $request
* @return $this|\Illuminate\Http\RedirectResponse
*/
public function create(Request $request, $category_id, $content_id)
{
//Authenticates
if (!$request->user()) {
//Пользователь не прошел аутентификацию
return redirect()->back()->with('error', 'Необходима авторизация!!!');
}
//Проверяем ввод
$validator = Validator::make($request->all(), $this->rules, $this->messages);
if ($validator->fails()) {
//Валидация не пройдена
return redirect()->back()->withErrors($validator->errors())->withInput();
} else {
//Сохраняем комментарий
$comment = new Comment();
$comment->category_id = $category_id;
$comment->content_id = $content_id;
$comment->active = config('mycomment.active');
$comment->users_id = $request->user()->id;
$comment->comment = clean($request->input('comment'), ['HTML.Allowed' => '']);
//Очищаем текст от тегов и т.п.
$comment->save();
return redirect()->back();
}
}
public function test(Request $request)
{
// $user = User::find(1);
//
// if($user->hasRole('Founder')){
// return '您是创始人'.'ID:'.$user->id;
// };
if ($request->user()) {
// $userRoles = $request->user()->roles()->get();
// foreach($userRoles as $r){
// $roles[] = $r->name;
// }
// var_dump($roles);
$userRoles = Role::all();
foreach ($userRoles as $r) {
$roles[] = $r->name;
}
if (!$request->user()->hasRole($roles)) {
return redirect()->guest('auth/login');
}
//$can = Route::currentRouteName();//当前route-name exp:user.test
$can = Route::currentRouteAction();
echo $can;
$res = $request->user()->can($can);
echo $res;
}
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle(Request $request, Closure $next)
{
if (!$this->auth->check()) {
Auth::logout();
Session::flush();
flash()->error(trans('messages.not_logged_in'))->important();
return redirect()->route('login');
}
if (config('upste.require_email_verification') && !$request->user()->confirmed) {
Auth::logout();
Session::flush();
flash()->error(trans('messages.not_confirmed'))->important();
return redirect()->route('login');
}
if (config('upste.require_user_approval') && !$request->user()->enabled) {
Auth::logout();
Session::flush();
flash()->error(trans('messages.not_activated'))->important();
return redirect()->route('login');
}
if ($request->user()->banned) {
Auth::logout();
Session::flush();
flash()->error(trans('messages.not_activated'))->important();
return redirect()->route('login');
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($request->user() == null || $request->user()->isManager == false) {
throw new HttpException(404);
}
return $next($request);
}
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
if ($user = $request->user()) {
//判断是不是管理员
$userRoles = Role::all();
foreach ($userRoles as $r) {
$roles[] = $r->name;
}
if (!$user->hasRole($roles)) {
redirect()->guest('auth/login');
}
//创始人拥有所有权限
if (!$user->hasRole('Founder')) {
$can = Route::currentRouteName();
//当前routeName exp:user.test
$res = $request->user()->can($can);
if (!$res) {
return view('admin.noaccess');
}
}
} else {
return redirect()->guest('auth/login');
}
return $next($request);
}
public function postIndex(Request $request)
{
//バリデーション
$validation = array();
if (!is_null($request->name)) {
//必須かつ、ユニークかつ、20文字以下
$validation["name"] = "required|max:20|unique:users,name," . $request->user()->user_id . ",user_id";
}
if (!is_null($request->email)) {
//必須かつ、ユニークかつ、255文字以下、メアド準拠
$validation["email"] = "required|email|max:255|unique:users,email," . $request->user()->email . ",email";
}
if (!is_null($request->entrance_year)) {
//必須
$validation["entrance_year"] = "required";
}
if (!is_null($request->faculty)) {
//必須
$validation["faculty"] = "required";
}
if (!is_null($request->sex)) {
//必須
$validation["sex"] = "required";
}
$this->validate($request, $validation);
$data['user'] = $this->user;
$data['reviews'] = $this->review;
$this->user->fill($request->all());
$this->user->save();
return view('mypage/index', $data);
}
/**
* Store a newly created resource in storage.
*
* @param Request $request
* @return Response
*/
public function store(Request $request, PropertyInterface $property, booking $booking, serviceBooking $serviceBooking, service $service)
{
$ownerId = $property->findOrFail($request->get('propertyId'))->owner->id;
$orderRef = generateRandomString();
$invoiceData = ['serviceId' => $request->get('selectedServiceIds'), 'payee_id' => $request->user()->id, 'seller_id' => $ownerId, 'orderRef' => $orderRef, 'amount' => $request->get('overallTotal')];
$newInvoice = $this->invoices->create($invoiceData);
$bookingData = ['user_id' => $request->user()->id, 'property_id' => $request->get('propertyId'), 'invoice_id' => $newInvoice->id, 'price' => $request->get('nightRate'), 'checkInDate' => convertToCarbonDate($request->get('checkInDate')), 'checkOutDate' => convertToCarbonDate($request->get('checkOutDate'))];
$booking->create($bookingData);
if (count($request->get('selectedServiceIds')) > 0) {
$serviceData = [];
foreach ($request->get('selectedServiceIds') as $serviceId) {
$theService = $service->findOrFail($serviceId);
$serviceData['service_id'] = $serviceId;
$serviceData['user_id'] = $request->user()->id;
if ($theService->type == 'onceoff') {
$serviceData['quantity'] = 1;
}
if ($theService->type == 'daily') {
$serviceData['quantity'] = $bookingData['checkOutDate']->diffInDays($bookingData['checkInDate']);
}
$serviceData['invoice_id'] = $newInvoice->id;
}
$serviceBooking->create($serviceData);
}
return ['response' => 'completed', 'orderRef' => $orderRef, 'propertyId' => $request->get('propertyId')];
}
