invoiceninja/app/Http/Requests/CreatePaymentAPIRequest.php

<?php namespace App\Http\Requests;

use App\Models\Invoice;

class CreatePaymentAPIRequest extends PaymentRequest
{
    /**
     * Determine if the user is authorized to make this request.
     *
     * @return bool
     */
    public function authorize()
    {
        return $this->user()->can('create', ENTITY_PAYMENT);
    }

    /**
     * Get the validation rules that apply to the request.
     *
     * @return array
     */
    public function rules()
    {
        if ( ! $this->invoice_id || ! $this->amount) {
            return [
                'invoice_id' => 'required|numeric|min:1',
                'amount' => 'required|numeric|min:0.01',
            ];
        }

        $invoice = Invoice::scope($this->invoice_id)
            ->invoices()
            ->whereIsPublic(true)
            ->firstOrFail();

        $this->merge([
            'invoice_id' => $invoice->id,
            'client_id' => $invoice->client->id,
        ]);

        $rules = [
            'amount' => "required|numeric|between:0.01,{$invoice->balance}",
        ];

        if ($this->payment_type_id == PAYMENT_TYPE_CREDIT) {
            $rules['payment_type_id'] = 'has_credit:' . $invoice->client->public_id . ',' . $this->amount;
        }

        return $rules;
    }
}
Working on permissions in the API 2016-05-02 10:38:01 +02:00			`<?php namespace App\Http\Requests;`

			`use App\Models\Invoice;`

			`class CreatePaymentAPIRequest extends PaymentRequest`
			`{`
			`/**`
			`* Determine if the user is authorized to make this request.`
			`*`
			`* @return bool`
			`*/`
			`public function authorize()`
			`{`
			`return $this->user()->can('create', ENTITY_PAYMENT);`
			`}`

			`/**`
			`* Get the validation rules that apply to the request.`
			`*`
			`* @return array`
			`*/`
			`public function rules()`
			`{`
			`if ( ! $this->invoice_id \|\| ! $this->amount) {`
			`return [`
Fix for API payment validation 2016-09-27 16:13:42 +02:00			`'invoice_id' => 'required\|numeric\|min:1',`
			`'amount' => 'required\|numeric\|min:0.01',`
Working on permissions in the API 2016-05-02 10:38:01 +02:00			`];`
			`}`
Prevent creating payment for a quote through the API 2016-07-18 20:12:18 +02:00
			`$invoice = Invoice::scope($this->invoice_id)`
			`->invoices()`
Hide draft invoices from the client portal 2016-12-05 09:11:33 +01:00			`->whereIsPublic(true)`
Prevent creating payment for a quote through the API 2016-07-18 20:12:18 +02:00			`->firstOrFail();`
Working on permissions in the API 2016-05-02 10:38:01 +02:00
			`$this->merge([`
Prevent creating payment for a quote through the API 2016-07-18 20:12:18 +02:00			`'invoice_id' => $invoice->id,`
Working on permissions in the API 2016-05-02 10:38:01 +02:00			`'client_id' => $invoice->client->id,`
			`]);`
Prevent creating payment for a quote through the API 2016-07-18 20:12:18 +02:00
Code Refactoring - Removed unused uses - Type hinting for method parameters - Removed commented code - Introduced comments for classes and methods - Short array syntax 2016-07-03 18:11:58 +02:00			`$rules = [`
Set payment min amount to 0.01 2016-08-28 16:19:33 +02:00			`'amount' => "required\|numeric\|between:0.01,{$invoice->balance}",`
Code Refactoring - Removed unused uses - Type hinting for method parameters - Removed commented code - Introduced comments for classes and methods - Short array syntax 2016-07-03 18:11:58 +02:00			`];`
Working on permissions in the API 2016-05-02 10:38:01 +02:00
			`if ($this->payment_type_id == PAYMENT_TYPE_CREDIT) {`
			`$rules['payment_type_id'] = 'has_credit:' . $invoice->client->public_id . ',' . $this->amount;`
			`}`

			`return $rules;`
			`}`
			`}`