/** * @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector|\Illuminate\View\View */ public function index() { if (Auth::Check()) { $user = Auth::user(); $this->request->setTrustedProxies(array('192.0.0.1', '10.0.0.0/8')); $this->user->addIp($user, $this->request); if ($user->role == 'user') { return view('/code/index', compact('user')); } else { return redirect('/admin/home'); } } else { return view('/errors/404'); } }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $request->setTrustedProxies([$request->getClientIp()]); if (!$request->secure()) { return redirect()->secure($request->getRequestUri()); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if (!$request->secure() && env('APP_ENV') === 'production') { $request->setTrustedProxies([$request->getClientIp()]); return redirect()->secure($request->getRequestUri()); } return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * * @throws \Symfony\Component\HttpKernel\Exception\HttpException * * @return mixed */ public function handle($request, Closure $next) { // Set trusted header names foreach ($this->getTrustedHeaders() as $headerKey => $headerName) { $request->setTrustedHeaderName($headerKey, $headerName); } $request->setTrustedProxies($this->getTrustedProxies($request->getClientIps())); return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * * @return mixed */ public function handle($request, Closure $next) { $proxyIps = Cache::remember('cloudFlareProxyIps', 1440, function () { $url = 'https://www.cloudflare.com/ips-v4'; $ips = file_get_contents($url); return array_filter(explode("\n", $ips)); }); $request->setTrustedProxies($proxyIps); return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { if ($this->app->environment() === 'production') { // for Proxies Request::setTrustedProxies([$request->getClientIp()]); if (!$request->isSecure()) { return redirect()->secure($request->getRequestUri()); } } return $next($request); }
public function postRegister(Request $request) { $request->setTrustedProxies(array('192.0.0.1', '10.0.0.0/8')); $data = array('name' => $request->input('name'), 'surname' => $request->input('surname'), 'email' => $request->input('email'), 'password' => $request->input('password'), 'password_confirmation' => $request->input('password_confirmation'), 'ip' => $request->getClientIp(), 'address' => $request->input('address'), 'residence' => $request->input('residence'), 'isAdmin' => false, 'is_facebook' => false); $validator = $this->validator($data); if ($validator->fails()) { return redirect()->back()->withErrors($validator->errors()->all())->withInput(); } else { $user = $this->create($data); // $user->isAdmin = 0; Auth::login($user); return redirect()->back(); } }
/** * Sets a list of trusted proxies. * * You should only list the reverse proxies that you manage directly. * * @param array $proxies A list of trusted proxies * @static */ public static function setTrustedProxies($proxies) { //Method inherited from \Symfony\Component\HttpFoundation\Request return \Illuminate\Http\Request::setTrustedProxies($proxies); }
public function otherCompetitors(Request $request) { $thisDate = Date::where('endDate', '>', Carbon::now())->where('startDate', '<=', Carbon::now())->first(); $competitors = Competitor::where('created_at', '>', $thisDate->startDate)->orderby('created_at', 'DESC')->paginate(12); $request->setTrustedProxies(array('192.0.0.1', '10.0.0.0/8')); foreach ($competitors as $competitor) { $competitor->voted = false; foreach ($competitor->votes as $vote) { //check if you already have voted for this competitor if ($vote->ip == $request->getClientIp()) { //give your object $competitor->voted = true; } } } $data = ['competitors' => $competitors]; return View('competition.otherCompetitors')->with($data); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $request->setTrustedProxies([$request->getClientIp()]); return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $request->setTrustedProxies(['10.134.162.216']); return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $request->setTrustedProxies(['114.55.103.163', '223.197.27.204', $request->getClientIp()]); return $next($request); }
/** * Handle an incoming request. * * @param \Illuminate\Http\Request $request * @param \Closure $next * @return mixed */ public function handle($request, Closure $next) { $request->setTrustedProxies(['199.27.128.0/21', '173.245.48.0/20', '103.21.244.0/22', '103.22.200.0/22', '103.31.4.0/22', '141.101.64.0/18', '108.162.192.0/18', '190.93.240.0/20', '188.114.96.0/20', '197.234.240.0/22', '198.41.128.0/17', '162.158.0.0/15', '104.16.0.0/12']); return $next($request); }
/** * Handle an incoming request. * * @param Request $request * @param Closure $next * @return mixed */ public function handle(Request $request, Closure $next) { // Set up trusted X-Forwarded-Proto proxies // TRUSTED_PROXIES accepts a comma delimited list of subnets // ie, TRUSTED_PROXIES='10.0.0.0/8,172.16.0.0/12,192.168.0.0/16' if (isset($_ENV['TRUSTED_PROXIES'])) { $request->setTrustedProxies(array_map('trim', explode(',', env('TRUSTED_PROXIES')))); } // Ensure all request are over HTTPS in production if (Utils::requireHTTPS() && !$request->secure()) { return Redirect::secure($request->path()); } // If the database doens't yet exist we'll skip the rest if (!Utils::isNinja() && !Utils::isDatabaseSetup()) { return $next($request); } // Check if a new version was installed if (!Utils::isNinja()) { $file = storage_path() . '/version.txt'; $version = @file_get_contents($file); if ($version != NINJA_VERSION) { if (version_compare(phpversion(), '5.5.9', '<')) { dd('Please update PHP to >= 5.5.9'); } $handle = fopen($file, 'w'); fwrite($handle, NINJA_VERSION); fclose($handle); return Redirect::to('/update'); } } // Check the application is up to date and for any news feed messages if (Auth::check()) { $count = Session::get(SESSION_COUNTER, 0); Session::put(SESSION_COUNTER, ++$count); if (isset($_SERVER['REQUEST_URI']) && !Utils::startsWith($_SERVER['REQUEST_URI'], '/news_feed') && !Session::has('news_feed_id')) { $data = false; if (Utils::isNinja()) { $data = Utils::getNewsFeedResponse(); } else { $file = @CurlUtils::get(NINJA_APP_URL . '/news_feed/' . Utils::getUserType() . '/' . NINJA_VERSION); $data = @json_decode($file); } if ($data) { if (version_compare(NINJA_VERSION, $data->version, '<')) { $params = ['user_version' => NINJA_VERSION, 'latest_version' => $data->version, 'releases_link' => link_to(RELEASES_URL, 'Invoice Ninja', ['target' => '_blank'])]; Session::put('news_feed_id', NEW_VERSION_AVAILABLE); Session::flash('news_feed_message', trans('texts.new_version_available', $params)); } else { Session::put('news_feed_id', $data->id); if ($data->message && $data->id > Auth::user()->news_feed_id) { Session::flash('news_feed_message', $data->message); } } } else { Session::put('news_feed_id', true); } } } // Check if we're requesting to change the account's language if (Input::has('lang')) { $locale = Input::get('lang'); App::setLocale($locale); Session::set(SESSION_LOCALE, $locale); if (Auth::check()) { if ($language = Language::whereLocale($locale)->first()) { $account = Auth::user()->account; $account->language_id = $language->id; $account->save(); } } } elseif (Auth::check()) { $locale = Auth::user()->account->language ? Auth::user()->account->language->locale : DEFAULT_LOCALE; App::setLocale($locale); } elseif (session(SESSION_LOCALE)) { App::setLocale(session(SESSION_LOCALE)); } // Make sure the account/user localization settings are in the session if (Auth::check() && !Session::has(SESSION_TIMEZONE)) { Event::fire(new UserSettingsChanged()); } // Check if the user is claiming a license (ie, additional invoices, white label, etc.) if (isset($_SERVER['REQUEST_URI'])) { $claimingLicense = Utils::startsWith($_SERVER['REQUEST_URI'], '/claim_license'); if (!$claimingLicense && Input::has('license_key') && Input::has('product_id')) { $licenseKey = Input::get('license_key'); $productId = Input::get('product_id'); $url = (Utils::isNinjaDev() ? SITE_URL : NINJA_APP_URL) . "/claim_license?license_key={$licenseKey}&product_id={$productId}&get_date=true"; $data = trim(CurlUtils::get($url)); if ($productId == PRODUCT_INVOICE_DESIGNS) { if ($data = json_decode($data)) { foreach ($data as $item) { $design = new InvoiceDesign(); $design->id = $item->id; $design->name = $item->name; $design->pdfmake = $item->pdfmake; $design->save(); } Cache::forget('invoiceDesigns'); Session::flash('message', trans('texts.bought_designs')); } } elseif ($productId == PRODUCT_WHITE_LABEL) { if ($data && $data != RESULT_FAILURE) { $company = Auth::user()->account->company; $company->plan_term = PLAN_TERM_YEARLY; $company->plan_paid = $data; $company->plan_expires = date_create($data)->modify('+1 year')->format('Y-m-d'); $company->plan = PLAN_WHITE_LABEL; $company->save(); Session::flash('message', trans('texts.bought_white_label')); } } } } // Check data has been cached $cachedTables = unserialize(CACHED_TABLES); if (Input::has('clear_cache')) { Session::flash('message', 'Cache cleared'); } foreach ($cachedTables as $name => $class) { if (Input::has('clear_cache') || !Cache::has($name)) { // check that the table exists in case the migration is pending if (!Schema::hasTable((new $class())->getTable())) { continue; } if ($name == 'paymentTerms') { $orderBy = 'num_days'; } elseif ($name == 'fonts') { $orderBy = 'sort_order'; } elseif (in_array($name, ['currencies', 'industries', 'languages', 'countries', 'banks'])) { $orderBy = 'name'; } else { $orderBy = 'id'; } $tableData = $class::orderBy($orderBy)->get(); if (count($tableData)) { Cache::forever($name, $tableData); } } } // Show message to IE 8 and before users if (isset($_SERVER['HTTP_USER_AGENT']) && preg_match('/(?i)msie [2-8]/', $_SERVER['HTTP_USER_AGENT'])) { Session::flash('error', trans('texts.old_browser', ['link' => OUTDATE_BROWSER_URL])); } $response = $next($request); //$response->headers->set('X-Frame-Options', 'DENY'); return $response; }
/** * Set trusted proxies for the request. * @param \Illuminate\Http\Request $request */ public function setTrustedProxiesForRequest(Request $request) { if (empty($request->getTrustedProxies())) { $request->setTrustedProxies($request->getClientIps()); } }