Basic initial subuser management

2016-01-18 01:24:33 -05:00 · 2016-01-18 01:24:33 -05:00 · b7666bdb05
commit b7666bdb05
parent 57cf636816
7 changed files with 381 additions and 1 deletions
--- a/app/Http/Controllers/Server/SubuserController.php
+++ b/app/Http/Controllers/Server/SubuserController.php
@ -0,0 +1,77 @@
+<?php
+
+namespace Pterodactyl\Http\Controllers\Server;
+
+use DB;
+use Alert;
+use Pterodactyl\Models;
+
+use Illuminate\Http\Request;
+use Pterodactyl\Http\Controllers\Controller;
+
+class SubuserController extends Controller
+{
+
+    /**
+     * Controller Constructor
+     *
+     * @return void
+     */
+    public function __construct()
+    {
+        //
+    }
+
+    public function getIndex(Request $request, $uuid)
+    {
+        $server = Models\Server::getByUUID($uuid);
+        $this->authorize('list-subusers', $server);
+
+        return view('server.users.index', [
+            'server' => $server,
+            'node' => Models\Node::find($server->node),
+            'subusers' => Models\Subuser::select('subusers.*', 'users.email as a_userEmail')
+                ->join('users', 'users.id', '=', 'subusers.user_id')
+                ->where('server_id', $server->id)
+                ->get()
+        ]);
+
+    }
+
+    public function getView(Request $request, $uuid, $id)
+    {
+        $server = Models\Server::getByUUID($uuid);
+        $this->authorize('view-subuser', $server);
+
+        $subuser = Models\Subuser::select('subusers.*', 'users.email as a_userEmail')
+            ->join('users', 'users.id', '=', 'subusers.user_id')
+            ->where(DB::raw('md5(subusers.id)'), $id)->where('subusers.server_id', $server->id)
+            ->first();
+
+        if (!$subuser) {
+            abort(404);
+        }
+
+        $permissions = [];
+        $modelPermissions = Models\Permission::select('permission')
+            ->where('user_id', $subuser->user_id)->where('server_id', $server->id)
+            ->get();
+
+        foreach($modelPermissions as &$perm) {
+            $permissions[$perm->permission] = true;
+        }
+
+        return view('server.users.view', [
+            'server' => $server,
+            'node' => Models\Node::find($server->node),
+            'subuser' => $subuser,
+            'permissions' => $permissions,
+        ]);
+    }
+
+    public function postView(Request $request, $uuid, $id)
+    {
+        //
+    }
+
+}
--- a/app/Http/Routes/ServerRoutes.php
+++ b/app/Http/Routes/ServerRoutes.php
@ -52,6 +52,21 @@ class ServerRoutes {
                'uses' => 'Server\AjaxController@postSaveFile'
            ]);

+            // Sub-User Routes
+            $router->get('users', [
+                'as' => 'server.subusers',
+                'uses' => 'Server\SubuserController@getIndex'
+            ]);
+
+            $router->get('users/view/{id}', [
+                'as' => 'server.subusers.view',
+                'uses' => 'Server\SubuserController@getView'
+            ]);
+
+            $router->post('users/view/{id}', [
+                'uses' => 'Server\SubuserController@postView'
+            ]);
+
            // Assorted AJAX Routes
            $router->group(['prefix' => 'ajax'], function ($server) use ($router) {
                // Returns Server Status
--- a/app/Repositories/SubuserRepository.php
+++ b/app/Repositories/SubuserRepository.php
@ -0,0 +1,78 @@
+<?php
+
+namespace Pterodactyl\Repositories;
+
+use DB;
+use Validator;
+
+use Pterodactyl\Models;
+use Pterodactyl\Services\UuidService;
+
+use Pterodactyl\Exceptions\DisplayValidationException;
+use Pterodactyl\Exceptions\DisplayException;
+
+class UserRepository
+{
+
+    /**
+     * Allowed permissions and their related daemon permission.
+     * @var array
+     */
+    protected $permissions = [
+        // Power Permissions
+        'power-start' => 's:power:start',
+        'power-stop' => 's:power:stop',
+        'power-restart' => 's:power:restart',
+        'power-kill' => 's:power:kill',
+
+        // Commands
+        'send-command' => 's:command',
+
+        // File Manager
+        'list-files' => 's:files:get',
+        'edit-file' => 's:files:read',
+        'save-file' => 's:files:post',
+        'create-file' => 's:files:post',
+        'download-file' => null,
+        'upload-file' => 's:files:upload',
+        'delete-file' => 's:files:delete',
+
+        // Subusers
+        'list-subusers' => null,
+        'view-subuser' => null,
+        'edit-subuser' => null,
+        'create-subuser' => null,
+        'delete-subuser' => null,
+
+        // Management
+        'set-connection' => null,
+        'view-sftp' => null,
+        'reset-sftp' => 's:set-password'
+    ];
+
+    public function __construct()
+    {
+        //
+    }
+
+    /**
+     * Updates permissions for a given subuser.
+     * @param  integer $id  The ID of the subuser row in MySQL. (Not the user ID)
+     * @param  array  $data
+     * @throws DisplayValidationException
+     * @throws DisplayException
+     * @return void
+     */
+    public function update($id, array $data)
+    {
+        $validator = Validator::make($data, [
+            'permissions' => 'required|array'
+        ]);
+
+        if ($validator->fails()) {
+            throw new DisplayValidationException(json_encode($validator->all()));
+        }
+
+        // @TODO the thing.
+
+    }