1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-15 23:52:33 +01:00
invoiceninja/app/Http/Requests/Company/UpdateCompanyRequest.php

186 lines
6.9 KiB
PHP
Raw Normal View History

2019-06-17 01:58:33 +02:00
<?php
/**
* Invoice Ninja (https://invoiceninja.com).
2019-06-17 01:58:33 +02:00
*
* @link https://github.com/invoiceninja/invoiceninja source repository
*
2024-04-12 06:15:41 +02:00
* @copyright Copyright (c) 2024. Invoice Ninja LLC (https://invoiceninja.com)
2019-06-17 01:58:33 +02:00
*
2021-06-16 08:58:16 +02:00
* @license https://www.elastic.co/licensing/elastic-license
2019-06-17 01:58:33 +02:00
*/
namespace App\Http\Requests\Company;
use App\DataMapper\CompanySettings;
2019-06-17 01:58:33 +02:00
use App\Http\Requests\Request;
2023-12-15 18:15:55 +01:00
use App\Http\ValidationRules\Company\ValidExpenseMailbox;
use App\Http\ValidationRules\Company\ValidSubdomain;
2019-10-10 03:01:38 +02:00
use App\Http\ValidationRules\ValidSettingsRule;
use App\Utils\Ninja;
use App\Utils\Traits\MakesHash;
2019-06-17 01:58:33 +02:00
class UpdateCompanyRequest extends Request
{
use MakesHash;
2022-11-19 00:58:32 +01:00
private array $protected_input = [
'client_portal_privacy_policy',
'client_portal_terms',
'portal_custom_footer',
'portal_custom_css',
'portal_custom_head'
];
2019-06-17 01:58:33 +02:00
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
2023-12-15 18:15:55 +01:00
public function authorize(): bool
2019-06-17 01:58:33 +02:00
{
2023-05-31 06:36:35 +02:00
/** @var \App\Models\User $user */
$user = auth()->user();
return $user->can('edit', $this->company);
2019-06-17 01:58:33 +02:00
}
public function rules()
{
2021-04-28 05:12:51 +02:00
$input = $this->all();
$rules = [];
$rules['company_logo'] = 'mimes:jpeg,jpg,png,gif|max:10000'; // max 10000kb
$rules['settings'] = new ValidSettingsRule();
$rules['industry_id'] = 'integer|nullable';
$rules['size_id'] = 'integer|nullable';
$rules['country_id'] = 'integer|nullable';
$rules['work_email'] = 'email|nullable';
2022-12-08 01:39:43 +01:00
$rules['matomo_id'] = 'nullable|integer';
2023-05-15 13:20:47 +02:00
$rules['e_invoice_certificate_passphrase'] = 'sometimes|nullable';
2023-05-15 13:40:57 +02:00
$rules['e_invoice_certificate'] = 'sometimes|nullable|file|mimes:p12,pfx,pem,cer,crt,der,txt,p7b,spc,bin';
2024-02-16 03:48:40 +01:00
$rules['smtp_host'] = 'sometimes|string|nullable';
2024-02-18 21:58:15 +01:00
$rules['smtp_port'] = 'sometimes|integer|nullable';
2024-02-16 03:38:22 +01:00
$rules['smtp_encryption'] = 'sometimes|string|nullable';
$rules['smtp_local_domain'] = 'sometimes|string|nullable';
// $rules['smtp_verify_peer'] = 'sometimes|string';
// $rules['e_invoice'] = ['sometimes','nullable', new ValidScheme()];
if (isset($input['portal_mode']) && ($input['portal_mode'] == 'domain' || $input['portal_mode'] == 'iframe')) {
$rules['portal_domain'] = 'bail|nullable|sometimes|url';
}
2023-10-26 04:57:44 +02:00
if (Ninja::isHosted()) {
2023-06-07 03:21:26 +02:00
$rules['subdomain'] = ['nullable', 'regex:/^[a-zA-Z0-9.-]+[a-zA-Z0-9]$/', new ValidSubdomain()];
2023-10-26 04:57:44 +02:00
}
2023-06-07 03:21:26 +02:00
$rules['expense_mailbox'] = new ValidExpenseMailbox();
2023-12-15 18:15:55 +01:00
return $rules;
2019-06-17 01:58:33 +02:00
}
2022-06-24 03:55:41 +02:00
public function prepareForValidation()
{
$input = $this->all();
2021-05-02 11:14:42 +02:00
if (isset($input['portal_domain']) && strlen($input['portal_domain']) > 1) {
2021-07-07 05:19:19 +02:00
$input['portal_domain'] = $this->addScheme($input['portal_domain']);
$input['portal_domain'] = rtrim(strtolower($input['portal_domain']), "/");
2021-12-01 01:09:22 +01:00
}
2021-05-02 11:14:42 +02:00
if (isset($input['expense_mailbox']) && Ninja::isHosted() && !($this->company->account->isPaid() && $this->company->account->plan == 'enterprise')) {
unset($input['expense_mailbox']);
}
if (isset($input['settings'])) {
2023-12-15 18:15:55 +01:00
$input['settings'] = (array) $this->filterSaveableSettings($input['settings']);
}
if (isset($input['subdomain']) && $this->company->subdomain == $input['subdomain']) {
2023-06-07 03:21:26 +02:00
unset($input['subdomain']);
}
if (isset($input['e_invoice_certificate_passphrase']) && empty($input['e_invoice_certificate_passphrase'])) {
2023-05-16 09:52:53 +02:00
unset($input['e_invoice_certificate_passphrase']);
}
if (isset($input['smtp_username']) && strlen(str_replace("*", "", $input['smtp_username'])) < 2) {
unset($input['smtp_username']);
}
if (isset($input['smtp_password']) && strlen(str_replace("*", "", $input['smtp_password'])) < 2) {
unset($input['smtp_password']);
}
if (isset($input['smtp_port'])) {
$input['smtp_port'] = (int) $input['smtp_port'];
2024-02-18 21:58:15 +01:00
}
if (isset($input['smtp_verify_peer']) && is_string($input['smtp_verify_peer'])) {
$input['smtp_verify_peer'] == 'true' ? true : false;
}
$this->replace($input);
}
/**
* For the hosted platform, we restrict the feature settings.
*
* This method will trim the company settings object
* down to the free plan setting properties which
* are saveable
*
* @param object $settings
2023-03-09 13:29:44 +01:00
* @return \stdClass $settings
*/
private function filterSaveableSettings($settings)
{
$account = $this->company->account;
2023-02-16 02:36:09 +01:00
if (Ninja::isHosted()) {
foreach ($this->protected_input as $protected_var) {
2022-11-19 00:58:32 +01:00
$settings[$protected_var] = str_replace("script", "", $settings[$protected_var]);
}
}
if (isset($settings['email_style_custom'])) {
$settings['email_style_custom'] = str_replace(['{!!', '!!}', '{{', '}}', '@checked', '@dd', '@dump', '@if', '@if(', '@endif', '@isset', '@unless', '@auth', '@empty', '@guest', '@env', '@section', '@switch', '@foreach', '@while', '@include', '@each', '@once', '@push', '@use', '@forelse', '@verbatim', '<?php', '@php', '@for', '@class', '</sc', '<sc', 'html;base64', '@elseif', '@else', '@endunless', '@endisset', '@endempty', '@endauth', '@endguest', '@endproduction', '@endenv', '@hasSection', '@endhasSection', '@sectionMissing', '@endsectionMissing', '@endfor', '@endforeach', '@empty', '@endforelse', '@endwhile', '@continue', '@break', '@includeIf', '@includeWhen', '@includeUnless', '@includeFirst', '@component', '@endcomponent', '@endsection', '@yield', '@show', '@append', '@overwrite', '@stop', '@extends', '@endpush', '@stack', '@prepend', '@endprepend', '@slot', '@endslot', '@endphp', '@method', '@csrf', '@error', '@enderror', '@json', '@endverbatim', '@inject'], '', $settings['email_style_custom']);
2023-02-16 02:36:09 +01:00
}
2022-11-20 22:28:47 +01:00
if (isset($settings['company_logo']) && strlen($settings['company_logo']) > 2) {
2024-05-15 01:29:43 +02:00
$settings['company_logo'] = $this->forceScheme($settings['company_logo']);
2024-06-14 09:09:44 +02:00
}
2024-05-15 01:29:43 +02:00
2023-12-15 18:15:55 +01:00
if (!$account->isFreeHostedClient()) {
return $settings;
}
$saveable_casts = CompanySettings::$free_plan_casts;
foreach ($settings as $key => $value) {
2023-12-15 18:15:55 +01:00
if (!array_key_exists($key, $saveable_casts)) {
unset($settings->{$key});
}
}
return $settings;
}
2021-07-07 05:19:19 +02:00
private function addScheme($url, $scheme = 'https://')
{
2023-02-16 02:36:09 +01:00
if (Ninja::isHosted()) {
2022-11-24 10:33:52 +01:00
$url = str_replace('http://', '', $url);
2023-12-15 18:15:55 +01:00
$url = parse_url($url, PHP_URL_SCHEME) === null ? $scheme . $url : $url;
2022-11-24 10:33:52 +01:00
}
2021-07-07 05:19:19 +02:00
return rtrim($url, '/');
2021-07-07 05:19:19 +02:00
}
2024-05-15 01:29:43 +02:00
private function forceScheme($url)
{
2024-05-15 01:29:43 +02:00
return stripos($url, 'http') !== false ? $url : "https://{$url}";
}
2019-07-04 06:04:01 +02:00
}