mirror of
https://github.com/invoiceninja/invoiceninja.git
synced 2024-11-16 08:02:40 +01:00
175 lines
6.0 KiB
PHP
175 lines
6.0 KiB
PHP
<?php
|
|
/**
|
|
* Invoice Ninja (https://invoiceninja.com).
|
|
*
|
|
* @link https://github.com/invoiceninja/invoiceninja source repository
|
|
*
|
|
* @copyright Copyright (c) 2023. Invoice Ninja LLC (https://invoiceninja.com)
|
|
*
|
|
* @license https://www.elastic.co/licensing/elastic-license
|
|
*/
|
|
|
|
namespace App\Http\Requests\Company;
|
|
|
|
use App\DataMapper\CompanySettings;
|
|
use App\Http\Requests\Request;
|
|
use App\Http\ValidationRules\Company\ValidExpenseMailbox;
|
|
use App\Http\ValidationRules\Company\ValidSubdomain;
|
|
use App\Http\ValidationRules\ValidSettingsRule;
|
|
use App\Utils\Ninja;
|
|
use App\Utils\Traits\MakesHash;
|
|
|
|
class UpdateCompanyRequest extends Request
|
|
{
|
|
use MakesHash;
|
|
|
|
private array $protected_input = [
|
|
'client_portal_privacy_policy',
|
|
'client_portal_terms',
|
|
'portal_custom_footer',
|
|
'portal_custom_css',
|
|
'portal_custom_head'
|
|
];
|
|
|
|
/**
|
|
* Determine if the user is authorized to make this request.
|
|
*
|
|
* @return bool
|
|
*/
|
|
public function authorize(): bool
|
|
{
|
|
/** @var \App\Models\User $user */
|
|
$user = auth()->user();
|
|
return $user->can('edit', $this->company);
|
|
}
|
|
|
|
public function rules()
|
|
{
|
|
$input = $this->all();
|
|
|
|
$rules = [];
|
|
|
|
$rules['company_logo'] = 'mimes:jpeg,jpg,png,gif|max:10000'; // max 10000kb
|
|
$rules['settings'] = new ValidSettingsRule();
|
|
$rules['industry_id'] = 'integer|nullable';
|
|
$rules['size_id'] = 'integer|nullable';
|
|
$rules['country_id'] = 'integer|nullable';
|
|
$rules['work_email'] = 'email|nullable';
|
|
$rules['matomo_id'] = 'nullable|integer';
|
|
$rules['e_invoice_certificate_passphrase'] = 'sometimes|nullable';
|
|
$rules['e_invoice_certificate'] = 'sometimes|nullable|file|mimes:p12,pfx,pem,cer,crt,der,txt,p7b,spc,bin';
|
|
|
|
$rules['smtp_host'] = 'sometimes|string|nullable';
|
|
$rules['smtp_port'] = 'sometimes|integer|nullable';
|
|
$rules['smtp_encryption'] = 'sometimes|string|nullable';
|
|
$rules['smtp_local_domain'] = 'sometimes|string|nullable';
|
|
// $rules['smtp_verify_peer'] = 'sometimes|string';
|
|
|
|
|
|
if (isset ($input['portal_mode']) && ($input['portal_mode'] == 'domain' || $input['portal_mode'] == 'iframe')) {
|
|
$rules['portal_domain'] = 'bail|nullable|sometimes|url';
|
|
}
|
|
|
|
if (Ninja::isHosted()) {
|
|
$rules['subdomain'] = ['nullable', 'regex:/^[a-zA-Z0-9.-]+[a-zA-Z0-9]$/', new ValidSubdomain()];
|
|
}
|
|
|
|
$rules['inbound_mailbox'] = new ValidExpenseMailbox($this->company->key, $this->company->account->isPaid() && $this->company->account->plan == 'enterprise'); // @turbo124 check if this is right
|
|
|
|
return $rules;
|
|
}
|
|
|
|
public function prepareForValidation()
|
|
{
|
|
$input = $this->all();
|
|
|
|
if (isset ($input['portal_domain']) && strlen($input['portal_domain']) > 1) {
|
|
$input['portal_domain'] = $this->addScheme($input['portal_domain']);
|
|
$input['portal_domain'] = rtrim(strtolower($input['portal_domain']), "/");
|
|
}
|
|
|
|
if (isset ($input['inbound_mailbox']) && Ninja::isHosted() && !($this->company->account->isPaid() && $this->company->account->plan == 'enterprise')) {
|
|
unset($input['inbound_mailbox']);
|
|
}
|
|
|
|
if (isset ($input['settings'])) {
|
|
$input['settings'] = (array) $this->filterSaveableSettings($input['settings']);
|
|
}
|
|
|
|
if (isset ($input['subdomain']) && $this->company->subdomain == $input['subdomain']) {
|
|
unset($input['subdomain']);
|
|
}
|
|
|
|
if (isset ($input['e_invoice_certificate_passphrase']) && empty ($input['e_invoice_certificate_passphrase'])) {
|
|
unset($input['e_invoice_certificate_passphrase']);
|
|
}
|
|
|
|
if (isset ($input['smtp_username']) && strlen(str_replace("*", "", $input['smtp_username'])) < 2) {
|
|
unset($input['smtp_username']);
|
|
}
|
|
|
|
if (isset ($input['smtp_password']) && strlen(str_replace("*", "", $input['smtp_password'])) < 2) {
|
|
unset($input['smtp_password']);
|
|
}
|
|
|
|
if (isset ($input['smtp_port'])) {
|
|
$input['smtp_port'] = (int) $input['smtp_port'];
|
|
}
|
|
|
|
if (isset ($input['smtp_verify_peer']) && is_string($input['smtp_verify_peer'])) {
|
|
$input['smtp_verify_peer'] == 'true' ? true : false;
|
|
}
|
|
|
|
$this->replace($input);
|
|
}
|
|
|
|
/**
|
|
* For the hosted platform, we restrict the feature settings.
|
|
*
|
|
* This method will trim the company settings object
|
|
* down to the free plan setting properties which
|
|
* are saveable
|
|
*
|
|
* @param object $settings
|
|
* @return \stdClass $settings
|
|
*/
|
|
private function filterSaveableSettings($settings)
|
|
{
|
|
$account = $this->company->account;
|
|
|
|
if (Ninja::isHosted()) {
|
|
foreach ($this->protected_input as $protected_var) {
|
|
$settings[$protected_var] = str_replace("script", "", $settings[$protected_var]);
|
|
}
|
|
}
|
|
|
|
if (isset ($settings['email_style_custom'])) {
|
|
$settings['email_style_custom'] = str_replace(['{!!', '!!}', '{{', '}}', '@if(', '@endif', '@isset', '@unless', '@auth', '@empty', '@guest', '@env', '@section', '@switch', '@foreach', '@while', '@include', '@each', '@once', '@push', '@use', '@forelse', '@verbatim', '<?php', '@php', '@for'], '', $settings['email_style_custom']);
|
|
}
|
|
|
|
if (!$account->isFreeHostedClient()) {
|
|
return $settings;
|
|
}
|
|
|
|
$saveable_casts = CompanySettings::$free_plan_casts;
|
|
|
|
foreach ($settings as $key => $value) {
|
|
if (!array_key_exists($key, $saveable_casts)) {
|
|
unset($settings->{$key});
|
|
}
|
|
}
|
|
|
|
return $settings;
|
|
}
|
|
|
|
private function addScheme($url, $scheme = 'https://')
|
|
{
|
|
if (Ninja::isHosted()) {
|
|
$url = str_replace('http://', '', $url);
|
|
$url = parse_url($url, PHP_URL_SCHEME) === null ? $scheme . $url : $url;
|
|
}
|
|
|
|
return rtrim($url, '/');
|
|
}
|
|
}
|