Cachet/app/Http/Controllers/Admin/SettingsController.php

<?php

/*
 * This file is part of Cachet.
 *
 * (c) James Brooks <james@cachethq.io>
 * (c) Joseph Cohen <joseph.cohen@dinkbit.com>
 * (c) Graham Campbell <graham@mineuk.com>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

namespace CachetHQ\Cachet\Http\Controllers\Admin;

use CachetHQ\Cachet\Http\Controllers\AbstractController;
use CachetHQ\Cachet\Models\Setting;
use CachetHQ\Cachet\Models\User;
use Exception;
use GrahamCampbell\Binput\Facades\Binput;
use Illuminate\Support\Facades\Lang;
use Illuminate\Support\Facades\Redirect;
use Illuminate\Support\Facades\View;

class SettingsController extends AbstractController
{
    protected $subMenu = [];
    protected $subTitle = 'Settings';

    public function __construct()
    {
        $this->subMenu = [
            'setup' => [
                'title'  => trans('dashboard.settings.app-setup.app-setup'),
                'url'    => '/dashboard/settings/setup',
                'icon'   => 'ion-gear-b',
                'active' => false,
            ],
            'security' => [
                'title'  => trans('dashboard.settings.security.security'),
                'url'    => '/dashboard/settings/security',
                'icon'   => 'ion-lock-combination',
                'active' => false,
            ],
            'theme' => [
                'title'  => trans('dashboard.settings.theme.theme'),
                'url'    => '/dashboard/settings/theme',
                'icon'   => 'ion-paintbrush',
                'active' => false,
            ],
            'stylesheet' => [
                'title'  => trans('dashboard.settings.stylesheet.stylesheet'),
                'url'    => '/dashboard/settings/stylesheet',
                'icon'   => 'ion-paintbucket',
                'active' => false,
            ],
        ];

        View::share('subTitle', $this->subTitle);

        View::share('subMenu', $this->subMenu);
    }

    /**
     * Shows the settings setup view.
     *
     * @return \Illuminate\View\View
     */
    public function showSetupView()
    {
        $this->subMenu['setup']['active'] = true;

        return View::make('dashboard.settings.app-setup')->with([
            'pageTitle' => 'Application Setup - Dashboard',
            'subMenu'   => $this->subMenu,
        ]);
    }

    /**
     * Shows the settings theme view.
     *
     * @return \Illuminate\View\View
     */
    public function showThemeView()
    {
        $this->subMenu['theme']['active'] = true;

        return View::make('dashboard.settings.theme')->with([
            'pageTitle' => 'Theme - Dashboard',
            'subMenu'   => $this->subMenu,
        ]);
    }

    /**
     * Shows the settings security view.
     *
     * @return \Illuminate\View\View
     */
    public function showSecurityView()
    {
        $this->subMenu['security']['active'] = true;

        $unsecureUsers = User::whereNull('google_2fa_secret')->orWhere('google_2fa_secret', '')->get();

        return View::make('dashboard.settings.security')->with([
            'pageTitle'     => 'Security - Dashboard',
            'subMenu'       => $this->subMenu,
            'unsecureUsers' => $unsecureUsers,
        ]);
    }

    /**
     * Shows the settings stylesheet view.
     *
     * @return \Illuminate\View\View
     */
    public function showStylesheetView()
    {
        $this->subMenu['stylesheet']['active'] = true;

        return View::make('dashboard.settings.stylesheet')->with([
            'pageTitle' => 'Stylesheet - Dashboard',
            'subMenu'   => $this->subMenu,
        ]);
    }

    /**
     * Updates the status page settings.
     *
     * @return \Illuminate\View\View
     */
    public function postSettings()
    {
        if (Binput::get('remove_banner') === '1') {
            $setting = Setting::where('name', 'app_banner');
            $setting->delete();
        }

        if (Binput::hasFile('app_banner')) {
            $file = Binput::file('app_banner');

            // Image Validation.
            // Image size in bytes.
            $maxSize = $file->getMaxFilesize();

            if ($file->getSize() > $maxSize) {
                return Redirect::back()->withErrors(trans('dashboard.settings.app-setup.too-big', [
                    'size' => $maxSize,
                ]));
            }

            if (!$file->isValid() || $file->getError()) {
                return Redirect::back()->withErrors($file->getErrorMessage());
            }

            if (strpos($file->getMimeType(), 'image/') !== 0) {
                return Redirect::back()->withErrors(trans('dashboard.settings.app-setup.images-only'));
            }

            // Store the banner.
            Setting::firstOrCreate([
                'name' => 'app_banner',
            ])->update([
                'value' => base64_encode(file_get_contents($file->getRealPath())),
            ]);

            // Store the banner type
            Setting::firstOrCreate([
                'name' => 'app_banner_type',
            ])->update([
                'value' => $file->getMimeType(),
            ]);
        }

        try {
            foreach (Binput::except(['app_banner', 'remove_banner']) as $settingName => $settingValue) {
                Setting::firstOrCreate([
                    'name' => $settingName,
                ])->update([
                    'value' => $settingValue,
                ]);
            }
        } catch (Exception $e) {
            return Redirect::back()->with('errors', trans('dashboard.settings.edit.failure'));
        }

        Lang::setLocale(Binput::get('app_locale'));

        return Redirect::back()->with('success', trans('dashboard.settings.edit.success'));
    }
}
CS fixes 2014-12-20 21:20:17 +00:00			`<?php`
Split DashboardControllers into multiple controllers. Closes #75 2014-12-20 18:53:52 +00:00
Closes #568, adds copyright information. 2015-04-19 08:52:39 +01:00			`/*`
			`* This file is part of Cachet.`
			`*`
			`* (c) James Brooks <james@cachethq.io>`
Add Joseph Cohem and Graham Campbell to the copyright headers. 2015-05-19 10:45:38 +01:00			`* (c) Joseph Cohen <joseph.cohen@dinkbit.com>`
			`* (c) Graham Campbell <graham@mineuk.com>`
Closes #568, adds copyright information. 2015-04-19 08:52:39 +01:00			`*`
			`* For the full copyright and license information, please view the LICENSE`
			`* file that was distributed with this source code.`
			`*/`

Cachet is now a Laravel 5 app 2015-03-20 18:30:45 -06:00			`namespace CachetHQ\Cachet\Http\Controllers\Admin;`
Refactored controllers 2015-01-01 15:45:04 +00:00
Remove unused clases and use abstract controller 2015-03-21 02:21:20 -06:00			`use CachetHQ\Cachet\Http\Controllers\AbstractController;`
Namespaced models and refactored filters 2015-01-02 00:18:19 +00:00			`use CachetHQ\Cachet\Models\Setting;`
Cachet is now a Laravel 5 app 2015-03-20 18:30:45 -06:00			`use CachetHQ\Cachet\Models\User;`
Refactored controllers 2015-01-01 15:45:04 +00:00			`use Exception;`
Use Binput for xss protection 2015-01-02 12:05:50 +00:00			`use GrahamCampbell\Binput\Facades\Binput;`
Added langs array and fix update lang message 2015-01-14 15:49:38 -06:00			`use Illuminate\Support\Facades\Lang;`
Added a missing import Fixes #205. 2015-01-01 17:23:49 +00:00			`use Illuminate\Support\Facades\Redirect;`
Refactored controllers 2015-01-01 15:45:04 +00:00			`use Illuminate\Support\Facades\View;`

Remove unused clases and use abstract controller 2015-03-21 02:21:20 -06:00			`class SettingsController extends AbstractController`
CS fixes 2014-12-20 21:20:17 +00:00			`{`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`protected $subMenu = [];`
			`protected $subTitle = 'Settings';`

CS fixes 2014-12-31 11:39:28 +00:00			`public function __construct()`
			`{`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`$this->subMenu = [`
			`'setup' => [`
Language improvements Signed-off-by: Graham Campbell <graham@mineuk.com> 2015-01-05 11:12:34 +00:00			`'title' => trans('dashboard.settings.app-setup.app-setup'),`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'url' => '/dashboard/settings/setup',`
			`'icon' => 'ion-gear-b',`
			`'active' => false,`
			`],`
			`'security' => [`
Language improvements Signed-off-by: Graham Campbell <graham@mineuk.com> 2015-01-05 11:12:34 +00:00			`'title' => trans('dashboard.settings.security.security'),`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'url' => '/dashboard/settings/security',`
			`'icon' => 'ion-lock-combination',`
			`'active' => false,`
			`],`
			`'theme' => [`
Language improvements Signed-off-by: Graham Campbell <graham@mineuk.com> 2015-01-05 11:12:34 +00:00			`'title' => trans('dashboard.settings.theme.theme'),`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'url' => '/dashboard/settings/theme',`
			`'icon' => 'ion-paintbrush',`
			`'active' => false,`
			`],`
			`'stylesheet' => [`
Language improvements Signed-off-by: Graham Campbell <graham@mineuk.com> 2015-01-05 11:12:34 +00:00			`'title' => trans('dashboard.settings.stylesheet.stylesheet'),`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'url' => '/dashboard/settings/stylesheet',`
			`'icon' => 'ion-paintbucket',`
			`'active' => false,`
CS fixes 2014-12-31 11:39:28 +00:00			`],`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`];`

			`View::share('subTitle', $this->subTitle);`
Change validation to controllers and partial 2015-01-09 20:21:29 -06:00
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`View::share('subMenu', $this->subMenu);`
			`}`

			`/**`
			`* Shows the settings setup view.`
			`*`
			`* @return \Illuminate\View\View`
			`*/`
			`public function showSetupView()`
			`{`
			`$this->subMenu['setup']['active'] = true;`

Dashboard view refactor. 2015-01-01 10:39:22 +00:00			`return View::make('dashboard.settings.app-setup')->with([`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'pageTitle' => 'Application Setup - Dashboard',`
CS fixes 2014-12-31 11:39:28 +00:00			`'subMenu' => $this->subMenu,`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`]);`
			`}`

			`/**`
			`* Shows the settings theme view.`
			`*`
			`* @return \Illuminate\View\View`
			`*/`
			`public function showThemeView()`
			`{`
			`$this->subMenu['theme']['active'] = true;`

Dashboard view refactor. 2015-01-01 10:39:22 +00:00			`return View::make('dashboard.settings.theme')->with([`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'pageTitle' => 'Theme - Dashboard',`
CS fixes 2014-12-31 11:39:28 +00:00			`'subMenu' => $this->subMenu,`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`]);`
			`}`

			`/**`
			`* Shows the settings security view.`
			`*`
			`* @return \Illuminate\View\View`
			`*/`
			`public function showSecurityView()`
			`{`
			`$this->subMenu['security']['active'] = true;`

Cachet is now a Laravel 5 app 2015-03-20 18:30:45 -06:00			`$unsecureUsers = User::whereNull('google_2fa_secret')->orWhere('google_2fa_secret', '')->get();`

Dashboard view refactor. 2015-01-01 10:39:22 +00:00			`return View::make('dashboard.settings.security')->with([`
Cachet is now a Laravel 5 app 2015-03-20 18:30:45 -06:00			`'pageTitle' => 'Security - Dashboard',`
			`'subMenu' => $this->subMenu,`
			`'unsecureUsers' => $unsecureUsers,`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`]);`
			`}`

CS fixes 2014-12-20 21:20:17 +00:00			`/**`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`* Shows the settings stylesheet view.`
CS fixes 2014-12-29 23:07:46 +00:00			`*`
CS fixes 2014-12-20 21:20:17 +00:00			`* @return \Illuminate\View\View`
			`*/`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`public function showStylesheetView()`
CS fixes 2014-12-20 21:20:17 +00:00			`{`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`$this->subMenu['stylesheet']['active'] = true;`

Dashboard view refactor. 2015-01-01 10:39:22 +00:00			`return View::make('dashboard.settings.stylesheet')->with([`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'pageTitle' => 'Stylesheet - Dashboard',`
CS fixes 2014-12-31 11:39:28 +00:00			`'subMenu' => $this->subMenu,`
CS fixes 2014-12-20 21:20:17 +00:00			`]);`
			`}`
Split DashboardControllers into multiple controllers. Closes #75 2014-12-20 18:53:52 +00:00
CS fixes 2014-12-20 21:20:17 +00:00			`/**`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`* Updates the status page settings.`
CS fixes 2014-12-29 23:07:46 +00:00			`*`
CS fixes 2014-12-20 21:20:17 +00:00			`* @return \Illuminate\View\View`
			`*/`
			`public function postSettings()`
			`{`
CS fix 2015-01-04 12:25:21 +00:00			`if (Binput::get('remove_banner') === '1') {`
Banner can now be removed Signed-off-by: Graham Campbell <graham@mineuk.com> 2015-01-01 11:23:34 +00:00			`$setting = Setting::where('name', 'app_banner');`
			`$setting->delete();`
			`}`

Use Binput for xss protection 2015-01-02 12:05:50 +00:00			`if (Binput::hasFile('app_banner')) {`
			`$file = Binput::file('app_banner');`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00
			`// Image Validation.`
			`// Image size in bytes.`
			`$maxSize = $file->getMaxFilesize();`
Refactored controllers 2015-01-01 15:45:04 +00:00
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`if ($file->getSize() > $maxSize) {`
We should never be going over 120 line length 2015-01-14 16:14:53 +00:00			`return Redirect::back()->withErrors(trans('dashboard.settings.app-setup.too-big', [`
			`'size' => $maxSize,`
			`]));`
Refactored controllers 2015-01-01 15:45:04 +00:00			`}`

			`if (!$file->isValid() \|\| $file->getError()) {`
Change validation to controllers and partial 2015-01-09 20:21:29 -06:00			`return Redirect::back()->withErrors($file->getErrorMessage());`
Refactored controllers 2015-01-01 15:45:04 +00:00			`}`

			`if (strpos($file->getMimeType(), 'image/') !== 0) {`
Errors are all translated. Closes #364. 2015-01-13 11:55:26 +00:00			`return Redirect::back()->withErrors(trans('dashboard.settings.app-setup.images-only'));`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`}`

			`// Store the banner.`
			`Setting::firstOrCreate([`
Fix CS 2014-12-31 11:51:06 +00:00			`'name' => 'app_banner',`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`])->update([`
Fix CS 2014-12-31 11:51:06 +00:00			`'value' => base64_encode(file_get_contents($file->getRealPath())),`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`]);`

			`// Store the banner type`
			`Setting::firstOrCreate([`
Fix CS 2014-12-31 11:51:06 +00:00			`'name' => 'app_banner_type',`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`])->update([`
Fix CS 2014-12-31 11:51:06 +00:00			`'value' => $file->getMimeType(),`
App banner can now be set. Closes #120 2014-12-31 11:45:54 +00:00			`]);`
			`}`

Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`try {`
Use Binput for xss protection 2015-01-02 12:05:50 +00:00			`foreach (Binput::except(['app_banner', 'remove_banner']) as $settingName => $settingValue) {`
Cleanup the dash settings controller 2015-01-01 17:45:41 +00:00			`Setting::firstOrCreate([`
Separate all of the settings into their own pages. 2014-12-31 10:38:59 +00:00			`'name' => $settingName,`
			`])->update([`
			`'value' => $settingValue,`
			`]);`
			`}`
			`} catch (Exception $e) {`
Change validation to controllers and partial 2015-01-09 20:21:29 -06:00			`return Redirect::back()->with('errors', trans('dashboard.settings.edit.failure'));`
CS fixes 2014-12-20 21:20:17 +00:00			`}`
Split DashboardControllers into multiple controllers. Closes #75 2014-12-20 18:53:52 +00:00
Added langs array and fix update lang message 2015-01-14 15:49:38 -06:00			`Lang::setLocale(Binput::get('app_locale'));`

Change validation to controllers and partial 2015-01-09 20:21:29 -06:00			`return Redirect::back()->with('success', trans('dashboard.settings.edit.success'));`
CS fixes 2014-12-20 21:20:17 +00:00			`}`
Split DashboardControllers into multiple controllers. Closes #75 2014-12-20 18:53:52 +00:00			`}`