invoiceninja/app/Http/Middleware/StartupCheck.php

<?php namespace app\Http\Middleware;

use Request;
use Closure;
use Utils;
use App;
use Auth;
use Input;
use Redirect;
use Cache;
use Session;
use Event;
use App\Models\Language;
use App\Models\InvoiceDesign;
use App\Events\UserSettingsChanged;

class StartupCheck
{
    /**
     * Handle an incoming request.
     *
     * @param  \Illuminate\Http\Request $request
     * @param  \Closure                 $next
     * @return mixed
     */
    public function handle($request, Closure $next)
    {
        // Set up trusted X-Forwarded-Proto proxies
        // TRUSTED_PROXIES accepts a comma delimited list of subnets
        // ie, TRUSTED_PROXIES='10.0.0.0/8,172.16.0.0/12,192.168.0.0/16'
        if (isset($_ENV['TRUSTED_PROXIES'])) {
            Request::setTrustedProxies(array_map('trim', explode(',', env('TRUSTED_PROXIES'))));
        }

        // Ensure all request are over HTTPS in production
        if (Utils::isNinjaProd() && !Request::secure()) {
            return Redirect::secure(Request::getRequestUri());
        }

        // If the database doens't yet exist we'll skip the rest
        if (!Utils::isNinja() && !Utils::isDatabaseSetup()) {
            return $next($request);
        }

        // Check if a new version was installed
        if (!Utils::isNinja()) {
            $file = storage_path() . '/version.txt';
            $version = @file_get_contents($file);
            if ($version != NINJA_VERSION) {
                $handle = fopen($file, 'w');
                fwrite($handle, NINJA_VERSION);
                fclose($handle);
                return Redirect::to('/update');
            }
        }

        // Check the application is up to date and for any news feed messages
        if (Auth::check()) {
            $count = Session::get(SESSION_COUNTER, 0);
            Session::put(SESSION_COUNTER, ++$count);

            if (isset($_SERVER['REQUEST_URI']) && !Utils::startsWith($_SERVER['REQUEST_URI'], '/news_feed') && !Session::has('news_feed_id')) {
                $data = false;
                if (Utils::isNinja()) {
                    $data = Utils::getNewsFeedResponse();
                } else {
                    $file = @file_get_contents(NINJA_APP_URL.'/news_feed/'.Utils::getUserType().'/'.NINJA_VERSION);
                    $data = @json_decode($file);
                }
                if ($data) {
                    if (version_compare(NINJA_VERSION, $data->version, '<')) {
                        $params = [
                            'user_version' => NINJA_VERSION,
                            'latest_version' => $data->version,
                            'releases_link' => link_to(RELEASES_URL, 'Invoice Ninja', ['target' => '_blank']),
                        ];
                        Session::put('news_feed_id', NEW_VERSION_AVAILABLE);
                        Session::put('news_feed_message', trans('texts.new_version_available', $params));
                    } else {
                        Session::put('news_feed_id', $data->id);
                        if ($data->message && $data->id > Auth::user()->news_feed_id) {
                            Session::put('news_feed_message', $data->message);
                        }
                    }
                } else {
                    Session::put('news_feed_id', true);
                }
            }
        }

        // Check if we're requesting to change the account's language
        if (Input::has('lang')) {
            $locale = Input::get('lang');
            App::setLocale($locale);
            Session::set(SESSION_LOCALE, $locale);

            if (Auth::check()) {
                if ($language = Language::whereLocale($locale)->first()) {
                    $account = Auth::user()->account;
                    $account->language_id = $language->id;
                    $account->save();
                }
            }
        } elseif (Auth::check()) {
            $locale = Auth::user()->account->language ? Auth::user()->account->language->locale : DEFAULT_LOCALE;
            App::setLocale($locale);
        } elseif (session(SESSION_LOCALE)) {
            App::setLocale(session(SESSION_LOCALE));
        }

        // Make sure the account/user localization settings are in the session
        if (Auth::check() && !Session::has(SESSION_TIMEZONE)) {
            Event::fire(new UserSettingsChanged());
        }

        // Check if the user is claiming a license (ie, additional invoices, white label, etc.)
        if (isset($_SERVER['REQUEST_URI'])) {
            $claimingLicense = Utils::startsWith($_SERVER['REQUEST_URI'], '/claim_license');
            if (!$claimingLicense && Input::has('license_key') && Input::has('product_id')) {
                $licenseKey = Input::get('license_key');
                $productId = Input::get('product_id');

                $data = trim(file_get_contents((Utils::isNinjaDev() ? SITE_URL : NINJA_APP_URL)."/claim_license?license_key={$licenseKey}&product_id={$productId}"));
                
                if ($productId == PRODUCT_INVOICE_DESIGNS) {
                    if ($data = json_decode($data)) {
                        foreach ($data as $item) {
                            $design = new InvoiceDesign();
                            $design->id = $item->id;
                            $design->name = $item->name;
                            $design->pdfmake = $item->pdfmake;
                            $design->save();
                        }

                        Cache::forget('invoiceDesigns');
                        Session::flash('message', trans('texts.bought_designs'));
                    }
                } elseif ($productId == PRODUCT_WHITE_LABEL) {
                    if ($data == 'valid') {
                        $account = Auth::user()->account;
                        $account->pro_plan_paid = NINJA_DATE;
                        $account->save();

                        Session::flash('message', trans('texts.bought_white_label'));
                    }
                }
            }
        }

        // Check data has been cached
        $cachedTables = unserialize(CACHED_TABLES);
        if (Input::has('clear_cache')) {
            Session::flash('message', 'Cache cleared');
        }
        foreach ($cachedTables as $name => $class) {
            if (Input::has('clear_cache') || !Cache::has($name)) {
                if ($name == 'paymentTerms') {
                    $orderBy = 'num_days';
                } elseif (in_array($name, ['currencies', 'industries', 'languages', 'countries'])) {
                    $orderBy = 'name';
                } else {
                    $orderBy = 'id';
                }
                $tableData = $class::orderBy($orderBy)->get();
                if (count($tableData)) {
                    Cache::forever($name, $tableData);
                }
            }
        }
        
        // Show message to IE 8 and before users
        if (isset($_SERVER['HTTP_USER_AGENT']) && preg_match('/(?i)msie [2-8]/', $_SERVER['HTTP_USER_AGENT'])) {
            Session::flash('error', trans('texts.old_browser'));
        }

        $response = $next($request);
        //$response->headers->set('X-Frame-Options', 'DENY');

        return $response;
    }
}
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`<?php namespace app\Http\Middleware;`
Update Namespaces & Syntax 2015-03-17 02:30:56 +01:00
Bug fixes 2015-05-11 13:16:36 +02:00			`use Request;`
Update Namespaces & Syntax 2015-03-17 02:30:56 +01:00			`use Closure;`
			`use Utils;`
			`use App;`
Namespace Updates and Confide Changes 2015-03-23 07:52:01 +01:00			`use Auth;`
			`use Input;`
			`use Redirect;`
Working on users in L5 2015-03-30 21:45:10 +02:00			`use Cache;`
Working on L5 2015-04-02 15:06:16 +02:00			`use Session;`
			`use Event;`
Working on L5 2015-04-14 05:22:33 +02:00			`use App\Models\Language;`
Minor dashboard improvements 2015-05-08 10:21:29 +02:00			`use App\Models\InvoiceDesign;`
Added support for Bitcoin 2015-04-15 18:35:41 +02:00			`use App\Events\UserSettingsChanged;`
Update Namespaces & Syntax 2015-03-17 02:30:56 +01:00
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`class StartupCheck`
			`{`
			`/**`
			`* Handle an incoming request.`
			`*`
			`* @param \Illuminate\Http\Request $request`
			`* @param \Closure $next`
			`* @return mixed`
			`*/`
			`public function handle($request, Closure $next)`
			`{`
Support SSL offloading This adds a TRUSTED_PROXIES environment variable that enables the `Request::secure()` method to correctly and securely identify when a connection is passing through a SSL offloading frontend. 2015-10-12 02:23:46 +02:00			`// Set up trusted X-Forwarded-Proto proxies`
			`// TRUSTED_PROXIES accepts a comma delimited list of subnets`
Styling forms 2015-10-14 19:18:19 +02:00			`// ie, TRUSTED_PROXIES='10.0.0.0/8,172.16.0.0/12,192.168.0.0/16'`
Support SSL offloading This adds a TRUSTED_PROXIES environment variable that enables the `Request::secure()` method to correctly and securely identify when a connection is passing through a SSL offloading frontend. 2015-10-12 02:23:46 +02:00			`if (isset($_ENV['TRUSTED_PROXIES'])) {`
Styling forms 2015-10-14 19:18:19 +02:00			`Request::setTrustedProxies(array_map('trim', explode(',', env('TRUSTED_PROXIES'))));`
Support SSL offloading This adds a TRUSTED_PROXIES environment variable that enables the `Request::secure()` method to correctly and securely identify when a connection is passing through a SSL offloading frontend. 2015-10-12 02:23:46 +02:00			`}`
Styling forms 2015-10-14 19:18:19 +02:00
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`// Ensure all request are over HTTPS in production`
Removed ENV_PRODUCTION 2015-11-22 10:59:56 +01:00			`if (Utils::isNinjaProd() && !Request::secure()) {`
Fixed money format in PDF for EU 2015-09-25 11:57:40 +02:00			`return Redirect::secure(Request::getRequestUri());`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`

			`// If the database doens't yet exist we'll skip the rest`
			`if (!Utils::isNinja() && !Utils::isDatabaseSetup()) {`
			`return $next($request);`
Working on users in L5 2015-03-30 21:45:10 +02:00			`}`
Update Namespaces & Syntax 2015-03-17 02:30:56 +01:00
Fixed money format in PDF for EU 2015-09-25 11:57:40 +02:00			`// Check if a new version was installed`
			`if (!Utils::isNinja()) {`
			`$file = storage_path() . '/version.txt';`
			`$version = @file_get_contents($file);`
			`if ($version != NINJA_VERSION) {`
			`$handle = fopen($file, 'w');`
			`fwrite($handle, NINJA_VERSION);`
			`fclose($handle);`
			`return Redirect::to('/update');`
			`}`
			`}`

			`// Check the application is up to date and for any news feed messages`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`if (Auth::check()) {`
			`$count = Session::get(SESSION_COUNTER, 0);`
			`Session::put(SESSION_COUNTER, ++$count);`

Initial acceptance tests 2015-08-20 17:09:04 +02:00			`if (isset($_SERVER['REQUEST_URI']) && !Utils::startsWith($_SERVER['REQUEST_URI'], '/news_feed') && !Session::has('news_feed_id')) {`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`$data = false;`
			`if (Utils::isNinja()) {`
			`$data = Utils::getNewsFeedResponse();`
			`} else {`
			`$file = @file_get_contents(NINJA_APP_URL.'/news_feed/'.Utils::getUserType().'/'.NINJA_VERSION);`
			`$data = @json_decode($file);`
			`}`
			`if ($data) {`
Working on basic reports 2015-04-30 19:54:19 +02:00			`if (version_compare(NINJA_VERSION, $data->version, '<')) {`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`$params = [`
Working on basic reports 2015-04-30 19:54:19 +02:00			`'user_version' => NINJA_VERSION,`
			`'latest_version' => $data->version,`
			`'releases_link' => link_to(RELEASES_URL, 'Invoice Ninja', ['target' => '_blank']),`
			`];`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`Session::put('news_feed_id', NEW_VERSION_AVAILABLE);`
			`Session::put('news_feed_message', trans('texts.new_version_available', $params));`
			`} else {`
			`Session::put('news_feed_id', $data->id);`
			`if ($data->message && $data->id > Auth::user()->news_feed_id) {`
			`Session::put('news_feed_message', $data->message);`
			`}`
			`}`
			`} else {`
			`Session::put('news_feed_id', true);`
			`}`
			`}`
			`}`
Working on users in L5 2015-03-30 21:56:01 +02:00
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`// Check if we're requesting to change the account's language`
			`if (Input::has('lang')) {`
			`$locale = Input::get('lang');`
			`App::setLocale($locale);`
			`Session::set(SESSION_LOCALE, $locale);`

			`if (Auth::check()) {`
			`if ($language = Language::whereLocale($locale)->first()) {`
			`$account = Auth::user()->account;`
			`$account->language_id = $language->id;`
			`$account->save();`
			`}`
			`}`
			`} elseif (Auth::check()) {`
Added auto-billing and per-client language support 2015-09-10 19:50:09 +02:00			`$locale = Auth::user()->account->language ? Auth::user()->account->language->locale : DEFAULT_LOCALE;`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`App::setLocale($locale);`
Bug fixes 2015-11-18 22:37:11 +01:00			`} elseif (session(SESSION_LOCALE)) {`
			`App::setLocale(session(SESSION_LOCALE));`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`

			`// Make sure the account/user localization settings are in the session`
			`if (Auth::check() && !Session::has(SESSION_TIMEZONE)) {`
Working on L5 2015-03-31 20:50:58 +02:00			`Event::fire(new UserSettingsChanged());`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`

			`// Check if the user is claiming a license (ie, additional invoices, white label, etc.)`
Initial acceptance tests 2015-08-20 17:09:04 +02:00			`if (isset($_SERVER['REQUEST_URI'])) {`
			`$claimingLicense = Utils::startsWith($_SERVER['REQUEST_URI'], '/claim_license');`
			`if (!$claimingLicense && Input::has('license_key') && Input::has('product_id')) {`
			`$licenseKey = Input::get('license_key');`
			`$productId = Input::get('product_id');`

			`$data = trim(file_get_contents((Utils::isNinjaDev() ? SITE_URL : NINJA_APP_URL)."/claim_license?license_key={$licenseKey}&product_id={$productId}"));`

			`if ($productId == PRODUCT_INVOICE_DESIGNS) {`
			`if ($data = json_decode($data)) {`
			`foreach ($data as $item) {`
			`$design = new InvoiceDesign();`
			`$design->id = $item->id;`
			`$design->name = $item->name;`
Bug fixes 2015-09-20 23:05:02 +02:00			`$design->pdfmake = $item->pdfmake;`
Initial acceptance tests 2015-08-20 17:09:04 +02:00			`$design->save();`
			`}`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00
Bug fixes 2015-09-20 23:05:02 +02:00			`Cache::forget('invoiceDesigns');`
Initial acceptance tests 2015-08-20 17:09:04 +02:00			`Session::flash('message', trans('texts.bought_designs'));`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`
Initial acceptance tests 2015-08-20 17:09:04 +02:00			`} elseif ($productId == PRODUCT_WHITE_LABEL) {`
			`if ($data == 'valid') {`
			`$account = Auth::user()->account;`
			`$account->pro_plan_paid = NINJA_DATE;`
			`$account->save();`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00
Initial acceptance tests 2015-08-20 17:09:04 +02:00			`Session::flash('message', trans('texts.bought_white_label'));`
			`}`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`
			`}`
			`}`
Bug fixes 2015-09-20 23:05:02 +02:00
			`// Check data has been cached`
Added static data to the API 2015-11-19 12:37:30 +01:00			`$cachedTables = unserialize(CACHED_TABLES);`
Bug fixes 2015-09-20 23:05:02 +02:00			`if (Input::has('clear_cache')) {`
			`Session::flash('message', 'Cache cleared');`
			`}`
			`foreach ($cachedTables as $name => $class) {`
			`if (Input::has('clear_cache') \|\| !Cache::has($name)) {`
			`if ($name == 'paymentTerms') {`
			`$orderBy = 'num_days';`
Added support for basic markdown 2015-10-01 22:02:22 +02:00			`} elseif (in_array($name, ['currencies', 'industries', 'languages', 'countries'])) {`
Bug fixes 2015-09-20 23:05:02 +02:00			`$orderBy = 'name';`
			`} else {`
			`$orderBy = 'id';`
			`}`
			`$tableData = $class::orderBy($orderBy)->get();`
			`if (count($tableData)) {`
			`Cache::forever($name, $tableData);`
			`}`
			`}`
			`}`
Initial acceptance tests 2015-08-20 17:09:04 +02:00
Fixed money format in PDF for EU 2015-09-25 11:57:40 +02:00			`// Show message to IE 8 and before users`
Minor fix 2015-08-03 10:02:35 +02:00			`if (isset($_SERVER['HTTP_USER_AGENT']) && preg_match('/(?i)msie [2-8]/', $_SERVER['HTTP_USER_AGENT'])) {`
Improvments to multi-account switching 2015-07-07 22:08:16 +02:00			`Session::flash('error', trans('texts.old_browser'));`
			`}`

			`$response = $next($request);`
Added auto-billing and per-client language support 2015-09-10 19:50:09 +02:00			`//$response->headers->set('X-Frame-Options', 'DENY');`
Improvments to multi-account switching 2015-07-07 22:08:16 +02:00
			`return $response;`
Reworked query caching for L5 2015-04-08 15:19:17 +02:00			`}`
Update Namespaces & Syntax 2015-03-17 02:30:56 +01:00			`}`