CreatePaymentMethodRequest.php allow only enabled methods to pass

2024-11-10 13:12:50 +01:00 · 2021-06-29 12:42:44 +02:00 · 2021-06-29 12:42:44 +02:00 · 31e138c41e
commit 31e138c41e
parent 2e0d9e170f
3 changed files with 51 additions and 34 deletions
--- a/app/Http/Controllers/ClientPortal/PaymentMethodController.php
+++ b/app/Http/Controllers/ClientPortal/PaymentMethodController.php
@ -14,7 +14,7 @@ namespace App\Http\Controllers\ClientPortal;

 use App\Events\Payment\Methods\MethodDeleted;
 use App\Http\Controllers\Controller;
-use App\Http\Requests\ClientPortal\CreatePaymentMethodRequest;
+use App\Http\Requests\ClientPortal\PaymentMethod\CreatePaymentMethodRequest;
 use App\Http\Requests\Request;
 use App\Models\ClientGatewayToken;
 use App\Models\GatewayType;
@ -52,7 +52,7 @@ class PaymentMethodController extends Controller

        $data['gateway'] = $gateway;
        $data['client'] = auth()->user()->client;
-        
+
        return $gateway
            ->driver(auth()->user()->client)
            ->setPaymentMethod($request->query('method'))
@ -93,7 +93,7 @@ class PaymentMethodController extends Controller
    public function verify(ClientGatewayToken $payment_method)
    {
 //        $gateway = $this->getClientGateway();
-        
+
        return $payment_method->gateway
            ->driver(auth()->user()->client)
            ->setPaymentMethod(request()->query('method'))
--- a/app/Http/Requests/ClientPortal/CreatePaymentMethodRequest.php
+++ b/app/Http/Requests/ClientPortal/CreatePaymentMethodRequest.php
@ -1,31 +0,0 @@
-<?php
-
-namespace App\Http\Requests\ClientPortal;
-
-use App\Http\Requests\Request;
-use Illuminate\Foundation\Http\FormRequest;
-
-class CreatePaymentMethodRequest extends FormRequest
-{
-    /**
-     * Determine if the user is authorized to make this request.
-     *
-     * @return bool
-     */
-    public function authorize()
-    {
-        return auth()->user()->client->getCreditCardGateway() ? true : false;
-    }
-
-    /**
-     * Get the validation rules that apply to the request.
-     *
-     * @return array
-     */
-    public function rules()
-    {
-        return [
-            //
-        ];
-    }
-}
--- a/app/Http/Requests/ClientPortal/PaymentMethod/CreatePaymentMethodRequest.php
+++ b/app/Http/Requests/ClientPortal/PaymentMethod/CreatePaymentMethodRequest.php
@ -0,0 +1,48 @@
+<?php
+
+namespace App\Http\Requests\ClientPortal\PaymentMethod;
+
+use App\Http\Requests\Request;
+use App\Models\Client;
+use Illuminate\Foundation\Http\FormRequest;
+use function auth;
+use function collect;
+
+class CreatePaymentMethodRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize(): bool
+    {
+        /** @var Client $client */
+        $client = auth()->user()->client;
+
+        $available_methods = [];
+
+        collect($client->service()->getPaymentMethods(1))
+            ->filter(function ($method) use (&$available_methods) {
+                $available_methods[] = $method['gateway_type_id'];
+            });
+
+        if (in_array($this->query('method'), $available_methods)) {
+            return true;
+        }
+
+        return false;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array
+     */
+    public function rules()
+    {
+        return [
+            //
+        ];
+    }
+}