| Server IP : 78.140.185.180 / Your IP : 216.73.216.38 Web Server : LiteSpeed System : Linux cpanel13.v.fozzy.com 4.18.0-513.11.1.lve.el8.x86_64 #1 SMP Thu Jan 18 16:21:02 UTC 2024 x86_64 User : builderbox ( 1072) PHP Version : 7.3.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/builderbox/././././././www/common/Auth/Controllers/ |
Upload File : |
<?php namespace Common\Auth\Controllers;
use App\User;
use Auth;
use Common\Auth\Actions\PaginateUsers;
use Common\Settings\Settings;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Common\Auth\UserRepository;
use Common\Core\BaseController;
use Common\Auth\Requests\ModifyUsers;
class UserController extends BaseController
{
/**
* @var User
*/
private $user;
/**
* @var UserRepository
*/
private $userRepository;
/**
* @var Request
*/
private $request;
/**
* @var Settings
*/
private $settings;
public function __construct(
User $user,
UserRepository $userRepository,
Request $request,
Settings $settings
) {
$this->user = $user;
$this->request = $request;
$this->userRepository = $userRepository;
$this->middleware('auth', ['except' => ['show']]);
$this->settings = $settings;
}
public function index()
{
$this->authorize('index', User::class);
$pagination = app(PaginateUsers::class)->execute($this->request->all());
return $this->success(['pagination' => $pagination]);
}
public function show(User $user)
{
$relations = array_filter(
explode(',', $this->request->get('with', '')),
);
$relations = array_merge(['roles', 'social_profiles'], $relations);
if ($this->settings->get('envato.enable')) {
$relations[] = 'purchase_codes';
}
if (Auth::id() === $user->id) {
// TODO: remove after sanctum is added to all projects
if (method_exists($user, 'tokens')) {
$relations[] = 'tokens';
}
}
$user->load($relations);
$this->authorize('show', $user);
return $this->success(['user' => $user]);
}
public function store(ModifyUsers $request)
{
$this->authorize('store', User::class);
$user = $this->userRepository->create($request->all());
return $this->success(['user' => $user], 201);
}
/**
* @param User $user
* @param ModifyUsers $request
*
* @return JsonResponse
*/
public function update(User $user, ModifyUsers $request)
{
$this->authorize('update', $user);
$user = $this->userRepository->update($user, $request->all());
return $this->success(['user' => $user]);
}
public function destroy(string $ids)
{
$userIds = explode(',', $ids);
$shouldDeleteCurrentUser = $this->request->get('deleteCurrentUser');
$this->authorize('destroy', [User::class, $userIds]);
$users = $this->user->whereIn('id', $userIds)->get();
// guard against current user or admin user deletion
foreach ($users as $user) {
if (!$shouldDeleteCurrentUser && $user->id === Auth::id()) {
return $this->error(
"Could not delete currently logged in user: {$user->email}",
);
}
if ($user->is_admin) {
return $this->error(
"Could not delete admin user: {$user->email}",
);
}
}
$this->userRepository->deleteMultiple($users->pluck('id'));
return $this->success();
}
}