Add support for user management of databases

app/Http/Controllers/Server/DatabaseController.php

@@ -4,16 +4,19 @@ namespace Pterodactyl\Http\Controllers\Server;
 
 use Illuminate\View\View;
 use Illuminate\Http\Request;
+use Illuminate\Http\Response;
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\RedirectResponse;
 use Prologue\Alerts\AlertsMessageBag;
 use Pterodactyl\Http\Controllers\Controller;
 use Pterodactyl\Traits\Controllers\JavascriptInjection;
 use Pterodactyl\Services\Databases\DatabasePasswordService;
+use Pterodactyl\Services\Databases\DatabaseManagementService;
 use Pterodactyl\Services\Databases\DeployServerDatabaseService;
 use Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface;
 use Pterodactyl\Contracts\Repository\DatabaseHostRepositoryInterface;
 use Pterodactyl\Http\Requests\Server\Database\StoreServerDatabaseRequest;
+use Pterodactyl\Http\Requests\Server\Database\DeleteServerDatabaseRequest;
 
 class DatabaseController extends Controller
 {
@@ -34,6 +37,11 @@ class DatabaseController extends Controller
      */
     private $databaseHostRepository;
 
+    /**
+     * @var \Pterodactyl\Services\Databases\DatabaseManagementService
+     */
+    private $managementService;
+
     /**
      * @var \Pterodactyl\Services\Databases\DatabasePasswordService
      */
@@ -50,6 +58,7 @@ class DatabaseController extends Controller
      * @param \Prologue\Alerts\AlertsMessageBag                                 $alert
      * @param \Pterodactyl\Services\Databases\DeployServerDatabaseService       $deployServerDatabaseService
      * @param \Pterodactyl\Contracts\Repository\DatabaseHostRepositoryInterface $databaseHostRepository
+     * @param \Pterodactyl\Services\Databases\DatabaseManagementService         $managementService
      * @param \Pterodactyl\Services\Databases\DatabasePasswordService           $passwordService
      * @param \Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface     $repository
      */
@@ -57,12 +66,14 @@ class DatabaseController extends Controller
         AlertsMessageBag $alert,
         DeployServerDatabaseService $deployServerDatabaseService,
         DatabaseHostRepositoryInterface $databaseHostRepository,
+        DatabaseManagementService $managementService,
         DatabasePasswordService $passwordService,
         DatabaseRepositoryInterface $repository
     ) {
         $this->alert = $alert;
         $this->databaseHostRepository = $databaseHostRepository;
         $this->deployServerDatabaseService = $deployServerDatabaseService;
+        $this->managementService = $managementService;
         $this->passwordService = $passwordService;
         $this->repository = $repository;
     }
@@ -136,4 +147,19 @@ class DatabaseController extends Controller
 
         return response()->json(['password' => $password]);
     }
+
+    /**
+     * Delete a database for this server from the SQL server and Panel database.
+     *
+     * @param \Pterodactyl\Http\Requests\Server\Database\DeleteServerDatabaseRequest $request
+     * @return \Illuminate\Http\Response
+     *
+     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
+     */
+    public function delete(DeleteServerDatabaseRequest $request): Response
+    {
+        $this->managementService->delete($request->attributes->get('database')->id);
+
+        return response('', Response::HTTP_NO_CONTENT);
+    }
 }

app/Http/Middleware/Server/DatabaseBelongsToServer.php

@@ -38,8 +38,13 @@ class DatabaseBelongsToServer
     public function handle(Request $request, Closure $next)
     {
         $server = $request->attributes->get('server');
+        $database = $request->input('database') ?? $request->route()->parameter('database');
 
-        $database = $this->repository->find($request->input('database'));
+        if (! is_digit($database)) {
+            throw new NotFoundHttpException;
+        }
+
+        $database = $this->repository->find($database);
         if (is_null($database) || $database->server_id !== $server->id) {
             throw new NotFoundHttpException;
         }

app/Http/Requests/Server/Database/DeleteServerDatabaseRequest.php

@@ -0,0 +1,40 @@
+<?php
+
+namespace Pterodactyl\Http\Requests\Server\Database;
+
+use Pterodactyl\Http\Requests\Server\ServerFormRequest;
+
+class DeleteServerDatabaseRequest extends ServerFormRequest
+{
+    /**
+     * @return bool
+     */
+    public function authorize()
+    {
+        if (! parent::authorize()) {
+            return false;
+        }
+
+        return config('pterodactyl.client_features.databases.enabled');
+    }
+
+    /**
+     * Return the user permission to validate this request aganist.
+     *
+     * @return string
+     */
+    protected function permission(): string
+    {
+        return 'delete-database';
+    }
+
+    /**
+     * Rules to validate this request aganist.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [];
+    }
+}