1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-15 15:42:51 +01:00
invoiceninja/app/Http/Requests/Company/UpdateCompanyRequest.php

180 lines
6.6 KiB
PHP
Raw Normal View History

2019-06-17 01:58:33 +02:00
<?php
/**
* Invoice Ninja (https://invoiceninja.com).
2019-06-17 01:58:33 +02:00
*
* @link https://github.com/invoiceninja/invoiceninja source repository
*
2024-04-12 06:15:41 +02:00
* @copyright Copyright (c) 2024. Invoice Ninja LLC (https://invoiceninja.com)
2019-06-17 01:58:33 +02:00
*
2021-06-16 08:58:16 +02:00
* @license https://www.elastic.co/licensing/elastic-license
2019-06-17 01:58:33 +02:00
*/
namespace App\Http\Requests\Company;
use App\Utils\Ninja;
2024-06-19 03:31:03 +02:00
use App\Http\Requests\Request;
use App\Utils\Traits\MakesHash;
2024-06-19 03:31:03 +02:00
use App\DataMapper\CompanySettings;
use App\Http\ValidationRules\ValidSettingsRule;
2024-07-08 03:25:28 +02:00
use App\Http\ValidationRules\EInvoice\ValidCompanyScheme;
2024-06-19 03:31:03 +02:00
use App\Http\ValidationRules\Company\ValidSubdomain;
2019-06-17 01:58:33 +02:00
class UpdateCompanyRequest extends Request
{
use MakesHash;
2022-11-19 00:58:32 +01:00
private array $protected_input = [
'client_portal_privacy_policy',
'client_portal_terms',
'portal_custom_footer',
'portal_custom_css',
'portal_custom_head'
];
2019-06-17 01:58:33 +02:00
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
2024-01-14 05:05:00 +01:00
public function authorize(): bool
2019-06-17 01:58:33 +02:00
{
2023-05-31 06:36:35 +02:00
/** @var \App\Models\User $user */
$user = auth()->user();
return $user->can('edit', $this->company);
2019-06-17 01:58:33 +02:00
}
public function rules()
{
2021-04-28 05:12:51 +02:00
$input = $this->all();
$rules = [];
$rules['company_logo'] = 'mimes:jpeg,jpg,png,gif|max:10000'; // max 10000kb
$rules['settings'] = new ValidSettingsRule();
$rules['industry_id'] = 'integer|nullable';
$rules['size_id'] = 'integer|nullable';
$rules['country_id'] = 'integer|nullable';
$rules['work_email'] = 'email|nullable';
2022-12-08 01:39:43 +01:00
$rules['matomo_id'] = 'nullable|integer';
2023-05-15 13:20:47 +02:00
$rules['e_invoice_certificate_passphrase'] = 'sometimes|nullable';
2023-05-15 13:40:57 +02:00
$rules['e_invoice_certificate'] = 'sometimes|nullable|file|mimes:p12,pfx,pem,cer,crt,der,txt,p7b,spc,bin';
2024-02-16 03:48:40 +01:00
$rules['smtp_host'] = 'sometimes|string|nullable';
2024-02-18 21:58:15 +01:00
$rules['smtp_port'] = 'sometimes|integer|nullable';
2024-02-16 03:38:22 +01:00
$rules['smtp_encryption'] = 'sometimes|string|nullable';
$rules['smtp_local_domain'] = 'sometimes|string|nullable';
// $rules['smtp_verify_peer'] = 'sometimes|string';
2024-07-08 03:25:28 +02:00
$rules['e_invoice'] = ['sometimes','nullable', new ValidCompanyScheme()];
2024-06-14 09:09:44 +02:00
2021-04-28 05:21:27 +02:00
if (isset($input['portal_mode']) && ($input['portal_mode'] == 'domain' || $input['portal_mode'] == 'iframe')) {
$rules['portal_domain'] = 'bail|nullable|sometimes|url';
}
2023-10-26 04:57:44 +02:00
if (Ninja::isHosted()) {
2023-06-07 03:21:26 +02:00
$rules['subdomain'] = ['nullable', 'regex:/^[a-zA-Z0-9.-]+[a-zA-Z0-9]$/', new ValidSubdomain()];
2023-10-26 04:57:44 +02:00
}
2023-06-07 03:21:26 +02:00
return $rules;
2019-06-17 01:58:33 +02:00
}
2022-06-24 03:55:41 +02:00
public function prepareForValidation()
{
$input = $this->all();
2021-05-02 11:14:42 +02:00
if (isset($input['portal_domain']) && strlen($input['portal_domain']) > 1) {
2021-07-07 05:19:19 +02:00
$input['portal_domain'] = $this->addScheme($input['portal_domain']);
$input['portal_domain'] = rtrim(strtolower($input['portal_domain']), "/");
2021-12-01 01:09:22 +01:00
}
2021-05-02 11:14:42 +02:00
if (isset($input['settings'])) {
2022-06-23 07:34:15 +02:00
$input['settings'] = (array)$this->filterSaveableSettings($input['settings']);
}
if(isset($input['subdomain']) && $this->company->subdomain == $input['subdomain']) {
2023-06-07 03:21:26 +02:00
unset($input['subdomain']);
}
if(isset($input['e_invoice_certificate_passphrase']) && empty($input['e_invoice_certificate_passphrase'])) {
2023-05-16 09:52:53 +02:00
unset($input['e_invoice_certificate_passphrase']);
}
2024-06-14 09:09:44 +02:00
if(isset($input['smtp_username']) && strlen(str_replace("*", "", $input['smtp_username'])) < 2) {
unset($input['smtp_username']);
}
if(isset($input['smtp_password']) && strlen(str_replace("*", "", $input['smtp_password'])) < 2) {
unset($input['smtp_password']);
}
2024-06-14 09:09:44 +02:00
2024-02-18 21:58:15 +01:00
if(isset($input['smtp_port'])) {
$input['smtp_port'] = (int)$input['smtp_port'];
}
if(isset($input['smtp_verify_peer']) && is_string($input['smtp_verify_peer'])) {
$input['smtp_verify_peer'] == 'true' ? true : false;
}
$this->replace($input);
}
/**
* For the hosted platform, we restrict the feature settings.
*
* This method will trim the company settings object
* down to the free plan setting properties which
* are saveable
*
* @param object $settings
2023-03-09 13:29:44 +01:00
* @return \stdClass $settings
*/
private function filterSaveableSettings($settings)
{
$account = $this->company->account;
2023-02-16 02:36:09 +01:00
if (Ninja::isHosted()) {
foreach ($this->protected_input as $protected_var) {
2022-11-19 00:58:32 +01:00
$settings[$protected_var] = str_replace("script", "", $settings[$protected_var]);
}
}
2023-02-16 02:36:09 +01:00
if (isset($settings['email_style_custom'])) {
2024-05-16 02:20:54 +02:00
$settings['email_style_custom'] = str_replace(['{!!','!!}','{{','}}','@checked','@dd', '@dump', '@if', '@if(','@endif','@isset','@unless','@auth','@empty','@guest','@env','@section','@switch', '@foreach', '@while', '@include', '@each', '@once', '@push', '@use', '@forelse', '@verbatim', '<?php', '@php', '@for','@class','</sc','<sc','html;base64', '@elseif', '@else', '@endunless', '@endisset', '@endempty', '@endauth', '@endguest', '@endproduction', '@endenv', '@hasSection', '@endhasSection', '@sectionMissing', '@endsectionMissing', '@endfor', '@endforeach', '@empty', '@endforelse', '@endwhile', '@continue', '@break', '@includeIf', '@includeWhen', '@includeUnless', '@includeFirst', '@component', '@endcomponent', '@endsection', '@yield', '@show', '@append', '@overwrite', '@stop', '@extends', '@endpush', '@stack', '@prepend', '@endprepend', '@slot', '@endslot', '@endphp', '@method', '@csrf', '@error', '@enderror', '@json', '@endverbatim', '@inject'], '', $settings['email_style_custom']);
2023-02-16 02:36:09 +01:00
}
2022-11-20 22:28:47 +01:00
2024-06-14 09:09:44 +02:00
if(isset($settings['company_logo']) && strlen($settings['company_logo']) > 2) {
2024-05-15 01:29:43 +02:00
$settings['company_logo'] = $this->forceScheme($settings['company_logo']);
2024-06-14 09:09:44 +02:00
}
2024-05-15 01:29:43 +02:00
if (! $account->isFreeHostedClient()) {
return $settings;
}
$saveable_casts = CompanySettings::$free_plan_casts;
foreach ($settings as $key => $value) {
if (! array_key_exists($key, $saveable_casts)) {
unset($settings->{$key});
}
}
return $settings;
}
2021-07-07 05:19:19 +02:00
private function addScheme($url, $scheme = 'https://')
{
2023-02-16 02:36:09 +01:00
if (Ninja::isHosted()) {
2022-11-24 10:33:52 +01:00
$url = str_replace('http://', '', $url);
$url = parse_url($url, PHP_URL_SCHEME) === null ? $scheme.$url : $url;
}
2021-07-07 05:19:19 +02:00
return rtrim($url, '/');
2021-07-07 05:19:19 +02:00
}
2024-05-15 01:29:43 +02:00
2024-06-14 09:09:44 +02:00
private function forceScheme($url)
{
2024-05-15 01:29:43 +02:00
return stripos($url, 'http') !== false ? $url : "https://{$url}";
}
2019-07-04 06:04:01 +02:00
}