user(); return $user->can('edit', $this->company); } public function rules() { $input = $this->all(); $rules = []; $rules['company_logo'] = 'mimes:jpeg,jpg,png,gif|max:10000'; // max 10000kb $rules['settings'] = new ValidSettingsRule(); $rules['industry_id'] = 'integer|nullable'; $rules['size_id'] = 'integer|nullable'; $rules['country_id'] = 'integer|nullable'; $rules['work_email'] = 'email|nullable'; $rules['matomo_id'] = 'nullable|integer'; $rules['e_invoice_certificate_passphrase'] = 'sometimes|nullable'; $rules['e_invoice_certificate'] = 'sometimes|nullable|file|mimes:p12,pfx,pem,cer,crt,der,txt,p7b,spc,bin'; $rules['smtp_host'] = 'sometimes|string|nullable'; $rules['smtp_port'] = 'sometimes|integer|nullable'; $rules['smtp_encryption'] = 'sometimes|string|nullable'; $rules['smtp_local_domain'] = 'sometimes|string|nullable'; // $rules['smtp_verify_peer'] = 'sometimes|string'; // $rules['e_invoice'] = ['sometimes','nullable', new ValidScheme()]; if (isset($input['portal_mode']) && ($input['portal_mode'] == 'domain' || $input['portal_mode'] == 'iframe')) { $rules['portal_domain'] = 'bail|nullable|sometimes|url'; } if (Ninja::isHosted()) { $rules['subdomain'] = ['nullable', 'regex:/^[a-zA-Z0-9.-]+[a-zA-Z0-9]$/', new ValidSubdomain()]; } return $rules; } public function prepareForValidation() { $input = $this->all(); if (isset($input['portal_domain']) && strlen($input['portal_domain']) > 1) { $input['portal_domain'] = $this->addScheme($input['portal_domain']); $input['portal_domain'] = rtrim(strtolower($input['portal_domain']), "/"); } if (isset($input['settings'])) { $input['settings'] = (array)$this->filterSaveableSettings($input['settings']); } if(isset($input['subdomain']) && $this->company->subdomain == $input['subdomain']) { unset($input['subdomain']); } if(isset($input['e_invoice_certificate_passphrase']) && empty($input['e_invoice_certificate_passphrase'])) { unset($input['e_invoice_certificate_passphrase']); } if(isset($input['smtp_username']) && strlen(str_replace("*", "", $input['smtp_username'])) < 2) { unset($input['smtp_username']); } if(isset($input['smtp_password']) && strlen(str_replace("*", "", $input['smtp_password'])) < 2) { unset($input['smtp_password']); } if(isset($input['smtp_port'])) { $input['smtp_port'] = (int)$input['smtp_port']; } if(isset($input['smtp_verify_peer']) && is_string($input['smtp_verify_peer'])) { $input['smtp_verify_peer'] == 'true' ? true : false; } $this->replace($input); } /** * For the hosted platform, we restrict the feature settings. * * This method will trim the company settings object * down to the free plan setting properties which * are saveable * * @param object $settings * @return \stdClass $settings */ private function filterSaveableSettings($settings) { $account = $this->company->account; if (Ninja::isHosted()) { foreach ($this->protected_input as $protected_var) { $settings[$protected_var] = str_replace("script", "", $settings[$protected_var]); } } if (isset($settings['email_style_custom'])) { $settings['email_style_custom'] = str_replace(['{!!','!!}','{{','}}','@checked','@dd', '@dump', '@if', '@if(','@endif','@isset','@unless','@auth','@empty','@guest','@env','@section','@switch', '@foreach', '@while', '@include', '@each', '@once', '@push', '@use', '@forelse', '@verbatim', ' 2) { $settings['company_logo'] = $this->forceScheme($settings['company_logo']); } if (! $account->isFreeHostedClient()) { return $settings; } $saveable_casts = CompanySettings::$free_plan_casts; foreach ($settings as $key => $value) { if (! array_key_exists($key, $saveable_casts)) { unset($settings->{$key}); } } return $settings; } private function addScheme($url, $scheme = 'https://') { if (Ninja::isHosted()) { $url = str_replace('http://', '', $url); $url = parse_url($url, PHP_URL_SCHEME) === null ? $scheme.$url : $url; } return rtrim($url, '/'); } private function forceScheme($url) { return stripos($url, 'http') !== false ? $url : "https://{$url}"; } }