invoiceninja/app/Http/Kernel.php

<?php
/**
 * Invoice Ninja (https://invoiceninja.com).
 *
 * @link https://github.com/invoiceninja/invoiceninja source repository
 *
 * @copyright Copyright (c) 2020. Invoice Ninja LLC (https://invoiceninja.com)
 *
 * @license https://opensource.org/licenses/AAL
 */

namespace App\Http;

use App\Http\Middleware\ContactTokenAuth;
use Illuminate\Foundation\Http\Kernel as HttpKernel;

class Kernel extends HttpKernel
{
    /**
     * The application's global HTTP middleware stack.
     *
     * These middleware are run during every request to your application.
     *
     * @var array
     */
    protected $middleware = [
        \App\Http\Middleware\CheckForMaintenanceMode::class,
        \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
        \App\Http\Middleware\TrimStrings::class,
        \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
        \App\Http\Middleware\TrustProxies::class,
        //\Fruitcake\Cors\HandleCors::class,
        \App\Http\Middleware\Cors::class,

    ];

    /**
     * The application's route middleware groups.
     *
     * @var array
     */
    protected $middlewareGroups = [
        'web' => [
            \App\Http\Middleware\EncryptCookies::class,
            \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
            \Illuminate\Session\Middleware\StartSession::class,
            // \Illuminate\Session\Middleware\AuthenticateSession::class,
            \Illuminate\View\Middleware\ShareErrorsFromSession::class,
            \App\Http\Middleware\VerifyCsrfToken::class,
            \Illuminate\Routing\Middleware\SubstituteBindings::class,
            \App\Http\Middleware\QueryLogging::class,
        ],

        'api' => [
            'throttle:60,1',
            'bindings',
            'query_logging',
            \App\Http\Middleware\StartupCheck::class,
//            \App\Http\Middleware\Cors::class,
        ],
        'contact' => [
            'throttle:60,1',
            'bindings',
            'query_logging',
        ],
        'client' => [
            \App\Http\Middleware\EncryptCookies::class,
            \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
            \Illuminate\Session\Middleware\StartSession::class,
            // \Illuminate\Session\Middleware\AuthenticateSession::class,
            \Illuminate\View\Middleware\ShareErrorsFromSession::class,
            \App\Http\Middleware\VerifyCsrfToken::class,
            \Illuminate\Routing\Middleware\SubstituteBindings::class,
            \App\Http\Middleware\StartupCheck::class,
            \App\Http\Middleware\QueryLogging::class,
        ],
        'shop' => [
            'throttle:60,1',
            'bindings',
            'query_logging',
        ],
    ];

    /**
     * The application's route middleware.
     *
     * These middleware may be assigned to groups or used individually.
     *
     * @var array
     */
    protected $routeMiddleware = [
        'auth' => \App\Http\Middleware\Authenticate::class,
        'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
        'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,
        'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
        'can' => \Illuminate\Auth\Middleware\Authorize::class,
        'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
        'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
        'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
        'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
        'query_logging' => \App\Http\Middleware\QueryLogging::class,
        'token_auth' => \App\Http\Middleware\TokenAuth::class,
        'api_secret_check' => \App\Http\Middleware\ApiSecretCheck::class,
        'contact_token_auth' => \App\Http\Middleware\ContactTokenAuth::class,
        'contact_db' => \App\Http\Middleware\ContactSetDb::class,
        'domain_db' => \App\Http\Middleware\SetDomainNameDb::class,
        'email_db' => \App\Http\Middleware\SetEmailDb::class,
        'invite_db' => \App\Http\Middleware\SetInviteDb::class,
        'password_protected' => \App\Http\Middleware\PasswordProtection::class,
        'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
        'portal_enabled' => \App\Http\Middleware\ClientPortalEnabled::class,
        'url_db' =>  \App\Http\Middleware\UrlSetDb::class,
        'web_db' => \App\Http\Middleware\SetWebDb::class,
        'api_db' => \App\Http\Middleware\SetDb::class,
        'company_key_db' => \App\Http\Middleware\SetDbByCompanyKey::class,
        'locale' => \App\Http\Middleware\Locale::class,
        'contact.register' => \App\Http\Middleware\ContactRegister::class,
        'shop_token_auth' => \App\Http\Middleware\Shop\ShopTokenAuth::class,
        'phantom_secret' => \App\Http\Middleware\PhantomSecret::class,
    ];
}
Initial commit 2018-10-04 19:10:43 +02:00			`<?php`
Update copyright 2019-05-11 05:32:07 +02:00			`/**`
Laravel 7.x Shift (#40) * Adopt Laravel coding style The Laravel framework adopts the PSR-2 coding style with some additions. Laravel apps should adopt this coding style as well. However, Shift allows you to customize the adopted coding style by adding your own [PHP CS Fixer][1] `.php_cs` config to your project. You may use [Shift's .php_cs][2] file as a base. [1]: https://github.com/FriendsOfPHP/PHP-CS-Fixer [2]: https://gist.github.com/laravel-shift/cab527923ed2a109dda047b97d53c200 * Shift bindings PHP 5.5.9+ adds the new static `class` property which provides the fully qualified class name. This is preferred over using class name strings as these references are checked by the parser. * Shift core files * Shift to Throwable * Add laravel/ui dependency * Unindent vendor mail templates * Shift config files * Default config files In an effort to make upgrading the constantly changing config files easier, Shift defaulted them so you can review the commit diff for changes. Moving forward, you should use ENV variables or create a separate config file to allow the core config files to remain automatically upgradeable. * Shift Laravel dependencies * Shift cleanup * Upgrade to Laravel 7 Co-authored-by: Laravel Shift <shift@laravelshift.com> 2020-09-06 11:38:10 +02:00			`* Invoice Ninja (https://invoiceninja.com).`
Update copyright 2019-05-11 05:32:07 +02:00			`*`
			`* @link https://github.com/invoiceninja/invoiceninja source repository`
			`*`
Fix for password protected authorization (#3198) * Remove unnecessary save() on invoice * Update copyright * Working on Credit Repository * Implement credits as a paymentable entity * Add credit_id to transformer * fix rules for update payment * Fix random deleted_at keys in transformers * Fix for password_protect check 2020-01-07 01:13:47 +01:00			`* @copyright Copyright (c) 2020. Invoice Ninja LLC (https://invoiceninja.com)`
Update copyright 2019-05-11 05:32:07 +02:00			`*`
			`* @license https://opensource.org/licenses/AAL`
			`*/`
Initial commit 2018-10-04 19:10:43 +02:00
			`namespace App\Http;`

Working on client login routes 2019-07-08 02:08:57 +02:00			`use App\Http\Middleware\ContactTokenAuth;`
Initial commit 2018-10-04 19:10:43 +02:00			`use Illuminate\Foundation\Http\Kernel as HttpKernel;`

			`class Kernel extends HttpKernel`
			`{`
			`/**`
			`* The application's global HTTP middleware stack.`
			`*`
			`* These middleware are run during every request to your application.`
			`*`
			`* @var array`
			`*/`
			`protected $middleware = [`
			`\App\Http\Middleware\CheckForMaintenanceMode::class,`
			`\Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,`
			`\App\Http\Middleware\TrimStrings::class,`
Bump to Laravel 6 2019-09-26 12:49:52 +02:00			`\Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,`
Initial commit 2018-10-04 19:10:43 +02:00			`\App\Http\Middleware\TrustProxies::class,`
Composer install 2020-09-07 12:00:20 +02:00			`//\Fruitcake\Cors\HandleCors::class,`
			`\App\Http\Middleware\Cors::class,`
Fixes for cors erros 2020-06-18 12:52:25 +02:00
Initial commit 2018-10-04 19:10:43 +02:00			`];`

			`/**`
			`* The application's route middleware groups.`
			`*`
			`* @var array`
			`*/`
			`protected $middlewareGroups = [`
			`'web' => [`
			`\App\Http\Middleware\EncryptCookies::class,`
			`\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,`
			`\Illuminate\Session\Middleware\StartSession::class,`
			`// \Illuminate\Session\Middleware\AuthenticateSession::class,`
			`\Illuminate\View\Middleware\ShareErrorsFromSession::class,`
			`\App\Http\Middleware\VerifyCsrfToken::class,`
			`\Illuminate\Routing\Middleware\SubstituteBindings::class,`
Setting up for tests 2019-03-26 05:46:08 +01:00			`\App\Http\Middleware\QueryLogging::class,`
Initial commit 2018-10-04 19:10:43 +02:00			`],`

			`'api' => [`
			`'throttle:60,1',`
			`'bindings',`
Setting up for tests 2019-03-26 05:46:08 +01:00			`'query_logging',`
API cleanup 2019-09-11 01:31:55 +02:00			`\App\Http\Middleware\StartupCheck::class,`
Laravel 7.x Shift (#40) * Adopt Laravel coding style The Laravel framework adopts the PSR-2 coding style with some additions. Laravel apps should adopt this coding style as well. However, Shift allows you to customize the adopted coding style by adding your own [PHP CS Fixer][1] `.php_cs` config to your project. You may use [Shift's .php_cs][2] file as a base. [1]: https://github.com/FriendsOfPHP/PHP-CS-Fixer [2]: https://gist.github.com/laravel-shift/cab527923ed2a109dda047b97d53c200 * Shift bindings PHP 5.5.9+ adds the new static `class` property which provides the fully qualified class name. This is preferred over using class name strings as these references are checked by the parser. * Shift core files * Shift to Throwable * Add laravel/ui dependency * Unindent vendor mail templates * Shift config files * Default config files In an effort to make upgrading the constantly changing config files easier, Shift defaulted them so you can review the commit diff for changes. Moving forward, you should use ENV variables or create a separate config file to allow the core config files to remain automatically upgradeable. * Shift Laravel dependencies * Shift cleanup * Upgrade to Laravel 7 Co-authored-by: Laravel Shift <shift@laravelshift.com> 2020-09-06 11:38:10 +02:00			`// \App\Http\Middleware\Cors::class,`
Initial commit 2018-10-04 19:10:43 +02:00			`],`
Working on client login routes 2019-07-08 02:08:57 +02:00			`'contact' => [`
			`'throttle:60,1',`
			`'bindings',`
			`'query_logging',`
			`],`
Start Front End of Client Portal - Authentication 2019-07-16 04:38:11 +02:00			`'client' => [`
			`\App\Http\Middleware\EncryptCookies::class,`
			`\Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,`
			`\Illuminate\Session\Middleware\StartSession::class,`
			`// \Illuminate\Session\Middleware\AuthenticateSession::class,`
			`\Illuminate\View\Middleware\ShareErrorsFromSession::class,`
			`\App\Http\Middleware\VerifyCsrfToken::class,`
			`\Illuminate\Routing\Middleware\SubstituteBindings::class,`
			`\App\Http\Middleware\StartupCheck::class,`
			`\App\Http\Middleware\QueryLogging::class,`
			`],`
Shop routes 2020-07-28 13:19:51 +02:00			`'shop' => [`
			`'throttle:60,1',`
			`'bindings',`
			`'query_logging',`
			`],`
Initial commit 2018-10-04 19:10:43 +02:00			`];`

			`/**`
			`* The application's route middleware.`
			`*`
			`* These middleware may be assigned to groups or used individually.`
			`*`
			`* @var array`
			`*/`
			`protected $routeMiddleware = [`
Multi Auth - Multi DB (#2442) * Multi Auth / Multi DB cleanup * Fixes for Multi-DB * Fixes for Multi auth using Multi DB * Remove register routes from application 2018-10-15 07:00:48 +02:00			`'auth' => \App\Http\Middleware\Authenticate::class,`
			`'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,`
			`'bindings' => \Illuminate\Routing\Middleware\SubstituteBindings::class,`
Initial commit 2018-10-04 19:10:43 +02:00			`'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,`
Multi Auth - Multi DB (#2442) * Multi Auth / Multi DB cleanup * Fixes for Multi-DB * Fixes for Multi auth using Multi DB * Remove register routes from application 2018-10-15 07:00:48 +02:00			`'can' => \Illuminate\Auth\Middleware\Authorize::class,`
			`'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,`
			`'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,`
			`'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,`
			`'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,`
Setting up for tests 2019-03-26 05:46:08 +01:00			`'query_logging' => \App\Http\Middleware\QueryLogging::class,`
Test for API 2019-03-27 05:50:13 +01:00			`'token_auth' => \App\Http\Middleware\TokenAuth::class,`
			`'api_secret_check' => \App\Http\Middleware\ApiSecretCheck::class,`
Working on client login routes 2019-07-08 02:08:57 +02:00			`'contact_token_auth' => \App\Http\Middleware\ContactTokenAuth::class,`
			`'contact_db' => \App\Http\Middleware\ContactSetDb::class,`
Refactoring how we set the DB in the request cycle 2019-07-12 07:03:30 +02:00			`'domain_db' => \App\Http\Middleware\SetDomainNameDb::class,`
Fixes for RandomDataSeeder (#3073) * Provide failsafe creation of invoice invitations * URL Links for invitations * open up route for invitations * Set DB by Invite * Set DB By invitation Key * Tests for setting DB based on user email address * Middleware for setting db by email address * fixes for tets * fixes for tests * Tests for bulk actions * Payments API * Fixes for tests 2019-11-16 04:12:29 +01:00			`'email_db' => \App\Http\Middleware\SetEmailDb::class,`
			`'invite_db' => \App\Http\Middleware\SetInviteDb::class,`
Default gateway type ID (#3008) * Show Recurring Invoice - Client Portal * Password protect some routes * Password Protection Routes * Add default_gateway_type_id to gateway table 2019-10-22 13:27:03 +02:00			`'password_protected' => \App\Http\Middleware\PasswordProtection::class,`
Working on gateway payment flow 2019-09-08 14:13:55 +02:00			`'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,`
Client Portal conditionals (#3039) * Fixes for tests * add additional fields for company settings * fixes for travis * update company settings schema * Disable client portal * Client Portal middleware * Working on client portal * hide portal * Implement notification channgels for User and ClientContact models * Push notifications onto queue * Force authentication if client portal is password protected 2019-11-04 01:22:59 +01:00			`'portal_enabled' => \App\Http\Middleware\ClientPortalEnabled::class,`
Dynamically apply locale (#3140) * Minor fixes for OpenAPI docs for clients * Add fields to company transformer * Padding email templates, system level and custom * Minor fixes for email template subject * Working on Email Templates * Clean up User model, remove redundant permissions methods * Implement Locale for API * Implement Locale middleware for client routes 2019-12-10 21:25:54 +01:00			`'url_db' => \App\Http\Middleware\UrlSetDb::class,`
			`'web_db' => \App\Http\Middleware\SetWebDb::class,`
			`'api_db' => \App\Http\Middleware\SetDb::class,`
Refactor to user company_key instead of company_token 2020-07-28 13:58:15 +02:00			`'company_key_db' => \App\Http\Middleware\SetDbByCompanyKey::class,`
Dynamically apply locale (#3140) * Minor fixes for OpenAPI docs for clients * Add fields to company transformer * Padding email templates, system level and custom * Minor fixes for email template subject * Working on Email Templates * Clean up User model, remove redundant permissions methods * Implement Locale for API * Implement Locale middleware for client routes 2019-12-10 21:25:54 +01:00			`'locale' => \App\Http\Middleware\Locale::class,`
client register wip 2020-05-28 17:39:38 +02:00			`'contact.register' => \App\Http\Middleware\ContactRegister::class,`
Refactor to user company_key instead of company_token 2020-07-28 13:58:15 +02:00			`'shop_token_auth' => \App\Http\Middleware\Shop\ShopTokenAuth::class,`
Implement PhantomJS 2020-08-04 13:00:19 +02:00			`'phantom_secret' => \App\Http\Middleware\PhantomSecret::class,`
Initial commit 2018-10-04 19:10:43 +02:00			`];`
			`}`