2015-12-06 19:58:49 +01:00
|
|
|
<?php
|
2016-12-07 23:46:38 +01:00
|
|
|
|
2015-12-06 19:58:49 +01:00
|
|
|
namespace Pterodactyl\Models;
|
|
|
|
|
|
2018-02-11 23:39:50 +01:00
|
|
|
use Pterodactyl\Rules\Username;
|
2022-05-28 23:03:58 +02:00
|
|
|
use Pterodactyl\Facades\Activity;
|
2018-07-15 07:42:58 +02:00
|
|
|
use Illuminate\Support\Collection;
|
2018-01-01 22:11:44 +01:00
|
|
|
use Illuminate\Validation\Rules\In;
|
2015-12-06 19:58:49 +01:00
|
|
|
use Illuminate\Auth\Authenticatable;
|
2016-12-07 23:46:38 +01:00
|
|
|
use Illuminate\Notifications\Notifiable;
|
2020-07-07 06:25:00 +02:00
|
|
|
use Illuminate\Database\Eloquent\Builder;
|
2022-10-24 17:44:16 +02:00
|
|
|
use Webauthn\PublicKeyCredentialUserEntity;
|
2022-05-23 01:03:51 +02:00
|
|
|
use Pterodactyl\Models\Traits\HasAccessTokens;
|
2015-12-06 19:58:49 +01:00
|
|
|
use Illuminate\Auth\Passwords\CanResetPassword;
|
2022-11-28 17:56:03 +01:00
|
|
|
use Illuminate\Database\Eloquent\Casts\Attribute;
|
2022-12-15 01:05:46 +01:00
|
|
|
use Illuminate\Database\Eloquent\Relations\HasOne;
|
2018-01-01 22:11:44 +01:00
|
|
|
use Pterodactyl\Traits\Helpers\AvailableLanguages;
|
2022-05-14 23:31:53 +02:00
|
|
|
use Illuminate\Database\Eloquent\Relations\HasMany;
|
2015-12-06 19:58:49 +01:00
|
|
|
use Illuminate\Foundation\Auth\Access\Authorizable;
|
2022-05-29 22:19:04 +02:00
|
|
|
use Illuminate\Database\Eloquent\Relations\MorphToMany;
|
2015-12-06 19:58:49 +01:00
|
|
|
use Illuminate\Contracts\Auth\Authenticatable as AuthenticatableContract;
|
|
|
|
|
use Illuminate\Contracts\Auth\Access\Authorizable as AuthorizableContract;
|
|
|
|
|
use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract;
|
2016-12-07 23:46:38 +01:00
|
|
|
use Pterodactyl\Notifications\SendPasswordReset as ResetPasswordNotification;
|
2015-12-06 19:58:49 +01:00
|
|
|
|
2019-09-06 06:53:33 +02:00
|
|
|
/**
|
2022-05-22 20:57:06 +02:00
|
|
|
* Pterodactyl\Models\User.
|
2022-05-14 23:31:53 +02:00
|
|
|
*
|
2021-01-28 05:52:11 +01:00
|
|
|
* @property int $id
|
|
|
|
|
* @property string|null $external_id
|
|
|
|
|
* @property string $uuid
|
|
|
|
|
* @property string $username
|
|
|
|
|
* @property string $email
|
|
|
|
|
* @property string $password
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property string|null $remember_token
|
2021-01-28 05:52:11 +01:00
|
|
|
* @property string $language
|
2022-12-15 01:05:46 +01:00
|
|
|
* @property int|null $admin_role_id
|
2021-01-28 05:52:11 +01:00
|
|
|
* @property bool $root_admin
|
|
|
|
|
* @property bool $use_totp
|
|
|
|
|
* @property string|null $totp_secret
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Support\Carbon|null $totp_authenticated_at
|
2021-01-28 05:52:11 +01:00
|
|
|
* @property bool $gravatar
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Support\Carbon|null $created_at
|
|
|
|
|
* @property \Illuminate\Support\Carbon|null $updated_at
|
2022-12-15 20:26:34 +01:00
|
|
|
* @property string $avatar_url
|
|
|
|
|
* @property string|null $admin_role_name
|
|
|
|
|
* @property string $md5
|
|
|
|
|
* @property \Pterodactyl\Models\AdminRole|null $adminRole
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\ApiKey[] $apiKeys
|
2022-05-14 23:31:53 +02:00
|
|
|
* @property int|null $api_keys_count
|
|
|
|
|
* @property \Illuminate\Notifications\DatabaseNotificationCollection|\Illuminate\Notifications\DatabaseNotification[] $notifications
|
|
|
|
|
* @property int|null $notifications_count
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\RecoveryToken[] $recoveryTokens
|
2022-05-14 23:31:53 +02:00
|
|
|
* @property int|null $recovery_tokens_count
|
2022-10-24 17:44:16 +02:00
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\SecurityKey[] $securityKeys
|
|
|
|
|
* @property int|null $security_keys_count
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\Server[] $servers
|
2022-05-14 23:31:53 +02:00
|
|
|
* @property int|null $servers_count
|
|
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\UserSSHKey[] $sshKeys
|
|
|
|
|
* @property int|null $ssh_keys_count
|
2022-05-22 20:57:06 +02:00
|
|
|
* @property \Illuminate\Database\Eloquent\Collection|\Pterodactyl\Models\ApiKey[] $tokens
|
|
|
|
|
* @property int|null $tokens_count
|
2022-05-14 23:31:53 +02:00
|
|
|
*
|
|
|
|
|
* @method static \Database\Factories\UserFactory factory(...$parameters)
|
|
|
|
|
* @method static Builder|User newModelQuery()
|
|
|
|
|
* @method static Builder|User newQuery()
|
|
|
|
|
* @method static Builder|User query()
|
|
|
|
|
* @method static Builder|User whereCreatedAt($value)
|
|
|
|
|
* @method static Builder|User whereEmail($value)
|
|
|
|
|
* @method static Builder|User whereExternalId($value)
|
|
|
|
|
* @method static Builder|User whereGravatar($value)
|
|
|
|
|
* @method static Builder|User whereId($value)
|
|
|
|
|
* @method static Builder|User whereLanguage($value)
|
|
|
|
|
* @method static Builder|User whereNameFirst($value)
|
|
|
|
|
* @method static Builder|User whereNameLast($value)
|
|
|
|
|
* @method static Builder|User wherePassword($value)
|
|
|
|
|
* @method static Builder|User whereRememberToken($value)
|
|
|
|
|
* @method static Builder|User whereRootAdmin($value)
|
|
|
|
|
* @method static Builder|User whereTotpAuthenticatedAt($value)
|
|
|
|
|
* @method static Builder|User whereTotpSecret($value)
|
|
|
|
|
* @method static Builder|User whereUpdatedAt($value)
|
|
|
|
|
* @method static Builder|User whereUseTotp($value)
|
|
|
|
|
* @method static Builder|User whereUsername($value)
|
|
|
|
|
* @method static Builder|User whereUuid($value)
|
2022-10-14 18:59:20 +02:00
|
|
|
*
|
2022-11-25 21:29:04 +01:00
|
|
|
* @mixin \Barryvdh\LaravelIdeHelper\Eloquent
|
|
|
|
|
* @mixin \Illuminate\Database\Query\Builder
|
|
|
|
|
* @mixin \Illuminate\Database\Eloquent\Builder
|
2019-09-06 06:53:33 +02:00
|
|
|
*/
|
2020-04-04 08:22:35 +02:00
|
|
|
class User extends Model implements
|
2017-08-12 22:29:01 +02:00
|
|
|
AuthenticatableContract,
|
|
|
|
|
AuthorizableContract,
|
2019-09-05 06:00:34 +02:00
|
|
|
CanResetPasswordContract
|
2015-12-06 19:58:49 +01:00
|
|
|
{
|
2020-04-04 08:22:35 +02:00
|
|
|
use Authenticatable;
|
|
|
|
|
use Authorizable;
|
|
|
|
|
use AvailableLanguages;
|
|
|
|
|
use CanResetPassword;
|
2022-05-23 01:03:51 +02:00
|
|
|
use HasAccessTokens;
|
2020-04-04 08:22:35 +02:00
|
|
|
use Notifiable;
|
2015-12-06 19:58:49 +01:00
|
|
|
|
2021-01-23 21:33:34 +01:00
|
|
|
public const USER_LEVEL_USER = 0;
|
|
|
|
|
public const USER_LEVEL_ADMIN = 1;
|
2017-10-27 06:49:54 +02:00
|
|
|
|
2018-01-26 04:26:06 +01:00
|
|
|
/**
|
|
|
|
|
* The resource name for this model when it is transformed into an
|
|
|
|
|
* API representation using fractal.
|
|
|
|
|
*/
|
2021-01-23 21:33:34 +01:00
|
|
|
public const RESOURCE_NAME = 'user';
|
2018-01-26 04:26:06 +01:00
|
|
|
|
2017-05-01 21:28:43 +02:00
|
|
|
/**
|
|
|
|
|
* Level of servers to display when using access() on a user.
|
|
|
|
|
*/
|
2022-10-14 18:59:20 +02:00
|
|
|
protected string $accessLevel = 'all';
|
2017-05-01 21:28:43 +02:00
|
|
|
|
2015-12-06 19:58:49 +01:00
|
|
|
/**
|
|
|
|
|
* The table associated with the model.
|
|
|
|
|
*/
|
|
|
|
|
protected $table = 'users';
|
|
|
|
|
|
|
|
|
|
/**
|
2017-01-12 21:40:24 +01:00
|
|
|
* A list of mass-assignable variables.
|
2015-12-06 19:58:49 +01:00
|
|
|
*/
|
2017-09-25 04:12:30 +02:00
|
|
|
protected $fillable = [
|
2018-02-24 21:47:53 +01:00
|
|
|
'external_id',
|
2017-09-25 04:12:30 +02:00
|
|
|
'username',
|
|
|
|
|
'email',
|
|
|
|
|
'password',
|
|
|
|
|
'language',
|
|
|
|
|
'use_totp',
|
|
|
|
|
'totp_secret',
|
2017-11-18 19:35:33 +01:00
|
|
|
'totp_authenticated_at',
|
2017-09-25 04:12:30 +02:00
|
|
|
'gravatar',
|
|
|
|
|
'root_admin',
|
|
|
|
|
];
|
2015-12-06 19:58:49 +01:00
|
|
|
|
2017-03-20 00:36:50 +01:00
|
|
|
/**
|
|
|
|
|
* Cast values to correct type.
|
|
|
|
|
*/
|
|
|
|
|
protected $casts = [
|
2017-08-31 04:11:14 +02:00
|
|
|
'root_admin' => 'boolean',
|
|
|
|
|
'use_totp' => 'boolean',
|
|
|
|
|
'gravatar' => 'boolean',
|
2017-03-20 00:36:50 +01:00
|
|
|
];
|
2016-01-27 04:17:51 +01:00
|
|
|
|
2019-09-06 06:53:33 +02:00
|
|
|
protected $dates = ['totp_authenticated_at'];
|
2017-11-18 19:35:33 +01:00
|
|
|
|
2015-12-06 19:58:49 +01:00
|
|
|
/**
|
|
|
|
|
* The attributes excluded from the model's JSON form.
|
|
|
|
|
*/
|
2017-11-19 23:30:00 +01:00
|
|
|
protected $hidden = ['password', 'remember_token', 'totp_secret', 'totp_authenticated_at'];
|
2015-12-06 19:58:49 +01:00
|
|
|
|
2017-06-25 02:49:09 +02:00
|
|
|
/**
|
|
|
|
|
* Default values for specific fields in the database.
|
|
|
|
|
*/
|
|
|
|
|
protected $attributes = [
|
2018-02-25 23:08:01 +01:00
|
|
|
'external_id' => null,
|
2017-06-25 02:49:09 +02:00
|
|
|
'root_admin' => false,
|
|
|
|
|
'language' => 'en',
|
|
|
|
|
'use_totp' => false,
|
|
|
|
|
'totp_secret' => null,
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Rules verifying that the data being stored matches the expectations of the database.
|
|
|
|
|
*/
|
2022-10-14 18:59:20 +02:00
|
|
|
public static array $validationRules = [
|
2019-09-05 07:19:57 +02:00
|
|
|
'uuid' => 'required|string|size:36|unique:users,uuid',
|
2020-09-27 01:29:26 +02:00
|
|
|
'email' => 'required|email|between:1,191|unique:users,email',
|
|
|
|
|
'external_id' => 'sometimes|nullable|string|max:191|unique:users,external_id',
|
|
|
|
|
'username' => 'required|between:1,191|unique:users,username',
|
2019-12-08 20:02:59 +01:00
|
|
|
'password' => 'sometimes|nullable|string',
|
2017-06-25 02:49:09 +02:00
|
|
|
'root_admin' => 'boolean',
|
2020-06-26 06:42:21 +02:00
|
|
|
'language' => 'string',
|
2017-06-25 02:49:09 +02:00
|
|
|
'use_totp' => 'boolean',
|
|
|
|
|
'totp_secret' => 'nullable|string',
|
|
|
|
|
];
|
2017-04-01 19:14:49 +02:00
|
|
|
|
2018-01-01 22:11:44 +01:00
|
|
|
/**
|
|
|
|
|
* Implement language verification by overriding Eloquence's gather
|
|
|
|
|
* rules function.
|
|
|
|
|
*/
|
2022-10-14 18:59:20 +02:00
|
|
|
public static function getRules(): array
|
2018-01-01 22:11:44 +01:00
|
|
|
{
|
2019-12-08 19:44:58 +01:00
|
|
|
$rules = parent::getRules();
|
2019-09-05 07:26:28 +02:00
|
|
|
|
2021-01-23 21:33:34 +01:00
|
|
|
$rules['language'][] = new In(array_keys((new self())->getAvailableLanguages()));
|
|
|
|
|
$rules['username'][] = new Username();
|
2018-01-01 22:11:44 +01:00
|
|
|
|
|
|
|
|
return $rules;
|
|
|
|
|
}
|
|
|
|
|
|
2018-07-15 07:42:58 +02:00
|
|
|
/**
|
2022-10-24 17:44:16 +02:00
|
|
|
* Return the user model in a format that can be passed over to React templates.
|
2018-07-15 07:42:58 +02:00
|
|
|
*/
|
2022-10-24 17:44:16 +02:00
|
|
|
public function toReactObject(): array
|
2018-07-15 07:42:58 +02:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return Collection::make($this->append(['avatar_url', 'admin_role_name'])->toArray())
|
|
|
|
|
->except(['id', 'external_id', 'admin_role', 'admin_role_id'])
|
|
|
|
|
->toArray();
|
2018-07-15 07:42:58 +02:00
|
|
|
}
|
|
|
|
|
|
2016-09-03 23:09:00 +02:00
|
|
|
/**
|
|
|
|
|
* Send the password reset notification.
|
|
|
|
|
*
|
2017-08-22 05:10:48 +02:00
|
|
|
* @param string $token
|
2016-09-03 23:09:00 +02:00
|
|
|
*/
|
|
|
|
|
public function sendPasswordResetNotification($token)
|
|
|
|
|
{
|
2022-05-30 00:48:35 +02:00
|
|
|
Activity::event('auth:reset-password')
|
2022-05-28 23:03:58 +02:00
|
|
|
->withRequestMetadata()
|
|
|
|
|
->subject($this)
|
|
|
|
|
->log('sending password reset email');
|
|
|
|
|
|
2016-09-03 23:09:00 +02:00
|
|
|
$this->notify(new ResetPasswordNotification($token));
|
|
|
|
|
}
|
2017-01-18 21:13:05 +01:00
|
|
|
|
2017-06-11 05:28:44 +02:00
|
|
|
/**
|
2018-05-13 16:50:56 +02:00
|
|
|
* Store the username as a lowercase string.
|
2017-06-11 05:28:44 +02:00
|
|
|
*/
|
2018-02-11 23:39:50 +01:00
|
|
|
public function setUsernameAttribute(string $value)
|
2017-06-11 05:28:44 +02:00
|
|
|
{
|
2018-02-11 23:39:50 +01:00
|
|
|
$this->attributes['username'] = mb_strtolower($value);
|
2017-06-11 05:28:44 +02:00
|
|
|
}
|
|
|
|
|
|
2022-12-15 20:26:34 +01:00
|
|
|
public function avatarUrl(): Attribute
|
2022-12-15 01:05:46 +01:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return Attribute::make(
|
|
|
|
|
get: fn () => 'https://www.gravatar.com/avatar/' . $this->md5 . '.jpg',
|
|
|
|
|
);
|
2022-12-15 01:05:46 +01:00
|
|
|
}
|
|
|
|
|
|
2022-12-15 20:26:34 +01:00
|
|
|
public function adminRoleName(): Attribute
|
2022-12-15 01:05:46 +01:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return Attribute::make(
|
|
|
|
|
get: fn () => is_null($this->adminRole) ? ($this->root_admin ? 'None' : null) : $this->adminRole->name,
|
|
|
|
|
);
|
2022-12-15 01:05:46 +01:00
|
|
|
}
|
|
|
|
|
|
2022-12-15 20:26:34 +01:00
|
|
|
public function md5(): Attribute
|
2017-09-16 05:13:33 +02:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return Attribute::make(
|
|
|
|
|
get: fn () => md5(strtolower($this->email)),
|
|
|
|
|
);
|
2017-09-16 05:13:33 +02:00
|
|
|
}
|
|
|
|
|
|
2017-02-09 23:43:54 +01:00
|
|
|
/**
|
2022-12-15 20:26:34 +01:00
|
|
|
* Returns all the activity logs where this user is the subject — not to
|
|
|
|
|
* be confused by activity logs where this user is the _actor_.
|
2017-02-09 23:43:54 +01:00
|
|
|
*/
|
2022-12-15 20:26:34 +01:00
|
|
|
public function activity(): MorphToMany
|
2017-02-09 23:43:54 +01:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return $this->morphToMany(ActivityLog::class, 'subject', 'activity_log_subjects');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function adminRole(): HasOne
|
|
|
|
|
{
|
|
|
|
|
return $this->hasOne(AdminRole::class, 'id', 'admin_role_id');
|
2017-02-09 23:43:54 +01:00
|
|
|
}
|
2017-04-14 05:49:47 +02:00
|
|
|
|
2022-10-14 18:59:20 +02:00
|
|
|
public function apiKeys(): HasMany
|
2020-03-23 02:15:38 +01:00
|
|
|
{
|
|
|
|
|
return $this->hasMany(ApiKey::class)
|
|
|
|
|
->where('key_type', ApiKey::TYPE_ACCOUNT);
|
|
|
|
|
}
|
2020-07-03 06:55:25 +02:00
|
|
|
|
2022-10-14 18:59:20 +02:00
|
|
|
public function recoveryTokens(): HasMany
|
2020-07-03 06:55:25 +02:00
|
|
|
{
|
|
|
|
|
return $this->hasMany(RecoveryToken::class);
|
|
|
|
|
}
|
2020-07-07 06:25:00 +02:00
|
|
|
|
2022-12-15 20:26:34 +01:00
|
|
|
public function servers(): HasMany
|
2022-05-29 22:19:04 +02:00
|
|
|
{
|
2022-12-15 20:26:34 +01:00
|
|
|
return $this->hasMany(Server::class, 'owner_id');
|
2022-05-29 22:19:04 +02:00
|
|
|
}
|
|
|
|
|
|
2022-05-14 23:31:53 +02:00
|
|
|
public function sshKeys(): HasMany
|
|
|
|
|
{
|
|
|
|
|
return $this->hasMany(UserSSHKey::class);
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-24 17:44:16 +02:00
|
|
|
public function securityKeys(): HasMany
|
|
|
|
|
{
|
|
|
|
|
return $this->hasMany(SecurityKey::class);
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-07 06:25:00 +02:00
|
|
|
/**
|
2022-10-14 18:59:20 +02:00
|
|
|
* Returns all the servers that a user can access by way of being the owner of the
|
2020-07-07 06:25:00 +02:00
|
|
|
* server, or because they are assigned as a subuser for that server.
|
|
|
|
|
*/
|
2022-10-14 18:59:20 +02:00
|
|
|
public function accessibleServers(): Builder
|
2020-07-07 06:25:00 +02:00
|
|
|
{
|
2020-07-10 06:32:31 +02:00
|
|
|
return Server::query()
|
2020-07-07 06:25:00 +02:00
|
|
|
->select('servers.*')
|
|
|
|
|
->leftJoin('subusers', 'subusers.server_id', '=', 'servers.id')
|
|
|
|
|
->where(function (Builder $builder) {
|
|
|
|
|
$builder->where('servers.owner_id', $this->id)->orWhere('subusers.user_id', $this->id);
|
|
|
|
|
})
|
|
|
|
|
->groupBy('servers.id');
|
|
|
|
|
}
|
2022-10-24 17:44:16 +02:00
|
|
|
|
|
|
|
|
public function toPublicKeyCredentialEntity(): PublicKeyCredentialUserEntity
|
|
|
|
|
{
|
|
|
|
|
return PublicKeyCredentialUserEntity::create($this->username, $this->uuid, $this->email);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Returns true if the user has two-factor authentication enabled.
|
|
|
|
|
*/
|
|
|
|
|
public function has2FAEnabled(): bool
|
|
|
|
|
{
|
|
|
|
|
return $this->use_totp || $this->securityKeys->isNotEmpty();
|
|
|
|
|
}
|
2015-12-06 19:58:49 +01:00
|
|
|
}
|
