accountRepo = $accountRepo; } public function login(Request $request) { if ( ! env(API_SECRET) || $request->api_secret !== env(API_SECRET)) { sleep(ERROR_DELAY); return $this->errorResponse(['message'=>'Invalid secret'],401); } if (Auth::attempt(['email' => $request->email, 'password' => $request->password])) { return $this->processLogin($request); } else { sleep(ERROR_DELAY); return $this->errorResponse(['message'=>'Invalid credentials'],401); } } private function processLogin(Request $request) { // Create a new token only if one does not already exist $user = Auth::user(); $this->accountRepo->createTokens($user, $request->token_name); $users = $this->accountRepo->findUsers($user, 'account.account_tokens'); $transformer = new UserAccountTransformer($user->account, $request->serializer, $request->token_name); $data = $this->createCollection($users, $transformer, 'user_account'); return $this->response($data); } public function show(Request $request) { $account = Auth::user()->account; $updatedAt = $request->updated_at ? date('Y-m-d H:i:s', $request->updated_at) : false; $map = [ 'users' => [], 'clients' => ['contacts'], 'invoices' => ['invoice_items', 'user', 'client', 'payments'], 'products' => [], 'tax_rates' => [], 'expenses' => ['client', 'invoice', 'vendor'], 'payments' => ['invoice'], ]; foreach ($map as $key => $values) { $account->load([$key => function($query) use ($values, $updatedAt) { $query->withTrashed()->with($values); if ($updatedAt) { $query->where('updated_at', '>=', $updatedAt); } }]); } $transformer = new AccountTransformer(null, $request->serializer); $account = $this->createItem($account, $transformer, 'account'); return $this->response($account); } public function getStaticData() { $data = []; $cachedTables = unserialize(CACHED_TABLES); foreach ($cachedTables as $name => $class) { $data[$name] = Cache::get($name); } return $this->response($data); } public function getUserAccounts(Request $request) { return $this->processLogin($request); } public function update(UpdateAccountRequest $request) { $account = Auth::user()->account; $this->accountRepo->save($request->input(), $account); $transformer = new AccountTransformer(null, $request->serializer); $account = $this->createItem($account, $transformer, 'account'); return $this->response($account); } public function addDeviceToken(Request $request) { $account = Auth::user()->account; //scan if this user has a token already registered (tokens can change, so we need to use the users email as key) $devices = json_decode($account->devices,TRUE); for($x=0; $xusername) { $devices[$x]['token'] = $request->token; //update $account->devices = json_encode($devices); $account->save(); return $this->response($devices[$x]); } } //User does not have a device, create new record $newDevice = [ 'token' => $request->token, 'email' => $request->email, 'device' => $request->device, 'notify_sent' => TRUE, 'notify_viewed' => TRUE, 'notify_approved' => TRUE, 'notify_paid' => TRUE, ]; $devices[] = $newDevice; $account->devices = json_encode($devices); $account->save(); return $this->response($newDevice); } public function updatePushNotifications(Request $request) { $account = Auth::user()->account; $devices = json_decode($account->devices, TRUE); if(count($devices)<1) return $this->errorResponse(['message'=>'no devices exist'], 400); for($x=0; $xusername) { unset($devices[$x]); $newDevice = [ 'token' => $request->token, 'email' => $request->email, 'device' => $request->device, 'notify_sent' => $request->notify_sent, 'notify_viewed' => $request->notify_viewed, 'notify_approved' => $request->notify_approved, 'notify_paid' => $request->notify_paid, ]; $devices[] = $newDevice; $account->devices = json_encode($devices); $account->save(); return $this->response($newDevice); } } } }