2023-03-17 15:33:48 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace App\Models;
|
|
|
|
|
2023-06-12 12:00:01 +02:00
|
|
|
use App\Notifications\Channels\SendsEmail;
|
2023-08-15 14:11:38 +02:00
|
|
|
use App\Notifications\TransactionalEmails\ResetPassword as TransactionalEmailsResetPassword;
|
2023-10-18 18:02:09 +02:00
|
|
|
use DateTimeInterface;
|
2023-03-17 15:33:48 +01:00
|
|
|
use Illuminate\Database\Eloquent\Factories\HasFactory;
|
|
|
|
use Illuminate\Foundation\Auth\User as Authenticatable;
|
2023-10-09 14:20:55 +02:00
|
|
|
use Illuminate\Notifications\Messages\MailMessage;
|
2023-03-17 15:33:48 +01:00
|
|
|
use Illuminate\Notifications\Notifiable;
|
2023-10-09 14:20:55 +02:00
|
|
|
use Illuminate\Support\Carbon;
|
2023-09-15 11:19:36 +02:00
|
|
|
use Illuminate\Support\Facades\Cache;
|
2023-10-09 14:20:55 +02:00
|
|
|
use Illuminate\Support\Facades\Config;
|
|
|
|
use Illuminate\Support\Facades\URL;
|
2023-06-01 12:15:33 +02:00
|
|
|
use Laravel\Fortify\TwoFactorAuthenticatable;
|
2023-08-08 11:51:36 +02:00
|
|
|
use Laravel\Sanctum\HasApiTokens;
|
2023-10-18 18:02:09 +02:00
|
|
|
use Laravel\Sanctum\NewAccessToken;
|
|
|
|
use Illuminate\Support\Str;
|
2023-03-17 15:33:48 +01:00
|
|
|
|
2023-06-12 12:00:01 +02:00
|
|
|
class User extends Authenticatable implements SendsEmail
|
2023-03-17 15:33:48 +01:00
|
|
|
{
|
2023-06-01 12:15:33 +02:00
|
|
|
use HasApiTokens, HasFactory, Notifiable, TwoFactorAuthenticatable;
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-08-15 14:11:38 +02:00
|
|
|
protected $guarded = [];
|
2023-03-17 15:33:48 +01:00
|
|
|
protected $hidden = [
|
|
|
|
'password',
|
|
|
|
'remember_token',
|
|
|
|
];
|
|
|
|
protected $casts = [
|
|
|
|
'email_verified_at' => 'datetime',
|
2023-08-15 14:11:38 +02:00
|
|
|
'force_password_reset' => 'boolean',
|
2023-08-22 17:44:49 +02:00
|
|
|
'show_boarding' => 'boolean',
|
2023-03-17 15:33:48 +01:00
|
|
|
];
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-03-24 14:54:17 +01:00
|
|
|
protected static function boot()
|
|
|
|
{
|
|
|
|
parent::boot();
|
2023-06-09 15:55:21 +02:00
|
|
|
static::created(function (User $user) {
|
|
|
|
$team = [
|
|
|
|
'name' => $user->name . "'s Team",
|
|
|
|
'personal_team' => true,
|
2023-08-30 18:23:55 +02:00
|
|
|
'show_boarding' => true
|
2023-06-09 15:55:21 +02:00
|
|
|
];
|
|
|
|
if ($user->id === 0) {
|
|
|
|
$team['id'] = 0;
|
|
|
|
$team['name'] = 'Root Team';
|
|
|
|
}
|
|
|
|
$new_team = Team::create($team);
|
|
|
|
$user->teams()->attach($new_team, ['role' => 'owner']);
|
|
|
|
});
|
2023-03-24 14:54:17 +01:00
|
|
|
}
|
2024-03-05 09:19:15 +01:00
|
|
|
public function recreate_personal_team()
|
|
|
|
{
|
|
|
|
$team = [
|
|
|
|
'name' => $this->name . "'s Team",
|
|
|
|
'personal_team' => true,
|
|
|
|
'show_boarding' => true
|
|
|
|
];
|
|
|
|
if ($this->id === 0) {
|
|
|
|
$team['id'] = 0;
|
|
|
|
$team['name'] = 'Root Team';
|
|
|
|
}
|
|
|
|
$new_team = Team::create($team);
|
|
|
|
$this->teams()->attach($new_team, ['role' => 'owner']);
|
|
|
|
return $new_team;
|
|
|
|
}
|
2023-10-18 18:02:09 +02:00
|
|
|
public function createToken(string $name, array $abilities = ['*'], DateTimeInterface $expiresAt = null)
|
|
|
|
{
|
|
|
|
$plainTextToken = sprintf(
|
|
|
|
'%s%s%s',
|
|
|
|
config('sanctum.token_prefix', ''),
|
|
|
|
$tokenEntropy = Str::random(40),
|
|
|
|
hash('crc32b', $tokenEntropy)
|
|
|
|
);
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-10-18 18:02:09 +02:00
|
|
|
$token = $this->tokens()->create([
|
|
|
|
'name' => $name,
|
|
|
|
'token' => hash('sha256', $plainTextToken),
|
|
|
|
'abilities' => $abilities,
|
|
|
|
'expires_at' => $expiresAt,
|
|
|
|
'team_id' => session('currentTeam')->id
|
|
|
|
]);
|
|
|
|
|
2024-02-23 12:34:36 +01:00
|
|
|
return new NewAccessToken($token, $token->getKey() . '|' . $plainTextToken);
|
2023-10-18 18:02:09 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
public function teams()
|
|
|
|
{
|
|
|
|
return $this->belongsToMany(Team::class)->withPivot('role');
|
|
|
|
}
|
|
|
|
|
2023-07-28 10:55:26 +02:00
|
|
|
public function getRecepients($notification)
|
2023-06-12 12:00:01 +02:00
|
|
|
{
|
|
|
|
return $this->email;
|
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-10-09 14:20:55 +02:00
|
|
|
public function sendVerificationEmail()
|
|
|
|
{
|
|
|
|
$mail = new MailMessage();
|
|
|
|
$url = Url::temporarySignedRoute(
|
|
|
|
'verify.verify',
|
|
|
|
Carbon::now()->addMinutes(Config::get('auth.verification.expire', 60)),
|
|
|
|
[
|
|
|
|
'id' => $this->getKey(),
|
|
|
|
'hash' => sha1($this->getEmailForVerification()),
|
|
|
|
]
|
|
|
|
);
|
|
|
|
$mail->view('emails.email-verification', [
|
|
|
|
'url' => $url,
|
|
|
|
]);
|
2023-10-11 14:24:19 +02:00
|
|
|
$mail->subject('Coolify: Verify your email.');
|
2023-10-09 14:20:55 +02:00
|
|
|
send_user_an_email($mail, $this->email);
|
|
|
|
}
|
2023-07-28 10:55:26 +02:00
|
|
|
public function sendPasswordResetNotification($token): void
|
|
|
|
{
|
2023-12-13 12:01:27 +01:00
|
|
|
$this?->notify(new TransactionalEmailsResetPassword($token));
|
2023-07-28 10:55:26 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-07-14 11:27:08 +02:00
|
|
|
public function isAdmin()
|
|
|
|
{
|
2024-02-23 12:34:36 +01:00
|
|
|
return $this->role() === 'admin' || $this->role() === 'owner';
|
2023-07-13 22:03:27 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2024-02-23 12:34:36 +01:00
|
|
|
public function isOwner()
|
|
|
|
{
|
|
|
|
return $this->role() === 'owner';
|
|
|
|
}
|
2023-07-13 22:03:27 +02:00
|
|
|
public function isAdminFromSession()
|
2023-06-08 11:43:14 +02:00
|
|
|
{
|
2023-06-09 15:55:21 +02:00
|
|
|
if (auth()->user()->id === 0) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
$teams = $this->teams()->get();
|
|
|
|
|
|
|
|
$is_part_of_root_team = $teams->where('id', 0)->first();
|
|
|
|
$is_admin_of_root_team = $is_part_of_root_team &&
|
|
|
|
($is_part_of_root_team->pivot->role === 'admin' || $is_part_of_root_team->pivot->role === 'owner');
|
|
|
|
|
|
|
|
if ($is_part_of_root_team && $is_admin_of_root_team) {
|
|
|
|
return true;
|
|
|
|
}
|
2023-09-15 11:19:36 +02:00
|
|
|
$team = $teams->where('id', session('currentTeam')->id)->first();
|
2023-10-09 14:20:55 +02:00
|
|
|
$role = data_get($team, 'pivot.role');
|
2023-06-09 15:55:21 +02:00
|
|
|
return $role === 'admin' || $role === 'owner';
|
2023-06-08 11:43:14 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-06-08 11:43:14 +02:00
|
|
|
public function isInstanceAdmin()
|
2023-04-26 15:38:50 +02:00
|
|
|
{
|
2023-05-22 12:00:59 +02:00
|
|
|
$found_root_team = auth()->user()->teams->filter(function ($team) {
|
|
|
|
if ($team->id == 0) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
});
|
|
|
|
return $found_root_team->count() > 0;
|
2023-04-25 09:38:05 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-06-09 15:55:21 +02:00
|
|
|
public function currentTeam()
|
|
|
|
{
|
2023-10-09 14:20:55 +02:00
|
|
|
return Cache::remember('team:' . auth()->user()->id, 3600, function () {
|
2024-03-05 09:22:38 +01:00
|
|
|
if (is_null(data_get(session('currentTeam'), 'id')) && auth()->user()->teams->count() > 0){
|
2023-10-11 12:03:59 +02:00
|
|
|
return auth()->user()->teams[0];
|
|
|
|
}
|
2023-09-08 18:33:26 +02:00
|
|
|
return Team::find(session('currentTeam')->id);
|
|
|
|
});
|
2023-03-24 14:54:17 +01:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-03-24 14:54:17 +01:00
|
|
|
public function otherTeams()
|
|
|
|
{
|
2023-08-29 14:36:17 +02:00
|
|
|
return auth()->user()->teams->filter(function ($team) {
|
|
|
|
return $team->id != currentTeam()->id;
|
2023-03-24 14:54:17 +01:00
|
|
|
});
|
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
|
2023-06-09 15:55:21 +02:00
|
|
|
public function role()
|
|
|
|
{
|
2024-02-23 12:59:14 +01:00
|
|
|
if (data_get($this, 'pivot')) {
|
|
|
|
return $this->pivot->role;
|
|
|
|
}
|
2024-02-23 12:34:36 +01:00
|
|
|
return auth()->user()->teams->where('id', currentTeam()->id)->first()->pivot->role;
|
2023-05-10 19:26:28 +02:00
|
|
|
}
|
2023-08-08 11:51:36 +02:00
|
|
|
}
|