| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  | <?php | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * Sandstorm.php | 
					
						
							|  |  |  |  * Copyright (c) 2017 thegrumpydictator@gmail.com | 
					
						
							|  |  |  |  * | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * This file is part of Firefly III. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * Firefly III is free software: you can redistribute it and/or modify | 
					
						
							|  |  |  |  * it under the terms of the GNU General Public License as published by | 
					
						
							|  |  |  |  * the Free Software Foundation, either version 3 of the License, or | 
					
						
							|  |  |  |  * (at your option) any later version. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * Firefly III is distributed in the hope that it will be useful, | 
					
						
							|  |  |  |  * but WITHOUT ANY WARRANTY; without even the implied warranty of | 
					
						
							|  |  |  |  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the | 
					
						
							|  |  |  |  * GNU General Public License for more details. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * You should have received a copy of the GNU General Public License | 
					
						
							| 
									
										
										
										
											2017-12-17 14:44:05 +01:00
										 |  |  |  * along with Firefly III. If not, see <http://www.gnu.org/licenses/>. | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |  */ | 
					
						
							| 
									
										
										
										
											2017-04-09 07:44:22 +02:00
										 |  |  | declare(strict_types=1); | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  | namespace FireflyIII\Http\Middleware; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use Auth; | 
					
						
							|  |  |  | use Closure; | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  | use FireflyIII\Exceptions\FireflyException; | 
					
						
							|  |  |  | use FireflyIII\Repositories\User\UserRepositoryInterface; | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  | use FireflyIII\User; | 
					
						
							|  |  |  | use Illuminate\Http\Request; | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  | use Log; | 
					
						
							| 
									
										
										
										
											2017-02-05 08:27:23 +01:00
										 |  |  | use View; | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  | /** | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |  * Class Sandstorm. | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |  */ | 
					
						
							|  |  |  | class Sandstorm | 
					
						
							|  |  |  | { | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Detects if is using Sandstorm, and responds by logging the user | 
					
						
							|  |  |  |      * in and/or creating an account. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |      * @param \Illuminate\Http\Request $request | 
					
						
							|  |  |  |      * @param \Closure                 $next | 
					
						
							|  |  |  |      * @param string|null              $guard | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return mixed | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  |      * @throws FireflyException | 
					
						
							| 
									
										
										
										
											2017-10-22 20:13:02 +02:00
										 |  |  |      * @SuppressWarnings(PHPMD.CyclomaticComplexity) | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |      */ | 
					
						
							|  |  |  |     public function handle(Request $request, Closure $next, $guard = null) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         // is in Sandstorm environment?
 | 
					
						
							| 
									
										
										
										
											2018-04-02 15:10:40 +02:00
										 |  |  |         $sandstorm = 1 === (int)getenv('SANDSTORM'); | 
					
						
							| 
									
										
										
										
											2017-02-05 08:27:23 +01:00
										 |  |  |         View::share('SANDSTORM', $sandstorm); | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |         if (!$sandstorm) { | 
					
						
							|  |  |  |             return $next($request); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // we're in sandstorm! is user a guest?
 | 
					
						
							|  |  |  |         if (Auth::guard($guard)->guest()) { | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |             /** @var UserRepositoryInterface $repository */ | 
					
						
							|  |  |  |             $repository = app(UserRepositoryInterface::class); | 
					
						
							| 
									
										
										
										
											2018-04-02 15:10:40 +02:00
										 |  |  |             $userId     = (string)$request->header('X-Sandstorm-User-Id'); | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |             Log::debug(sprintf('Sandstorm user ID is "%s"', $userId)); | 
					
						
							|  |  |  |             $count = $repository->count(); | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |             // if there already is one user in this instance, we assume this is
 | 
					
						
							|  |  |  |             // the "main" user. Firefly's nature does not allow other users to
 | 
					
						
							|  |  |  |             // access the same data so we have no choice but to simply login
 | 
					
						
							|  |  |  |             // the new user to the same account and just forget about Bob and Alice
 | 
					
						
							|  |  |  |             // and any other differences there may be between these users.
 | 
					
						
							| 
									
										
										
										
											2018-04-28 06:23:13 +02:00
										 |  |  |             if (1 === $count && \strlen($userId) > 0) { | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 // login as first user user.
 | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |                 $user = $repository->first(); | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 Auth::guard($guard)->login($user); | 
					
						
							|  |  |  |                 View::share('SANDSTORM_ANON', false); | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 return $next($request); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-04-28 06:23:13 +02:00
										 |  |  |             if (1 === $count && 0 === \strlen($userId)) { | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 // login but indicate anonymous
 | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  |                 $user = User::first(); | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 Auth::guard($guard)->login($user); | 
					
						
							|  |  |  |                 View::share('SANDSTORM_ANON', true); | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 return $next($request); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-04-28 06:23:13 +02:00
										 |  |  |             if (0 === $count && \strlen($userId) > 0) { | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 // create new user.
 | 
					
						
							|  |  |  |                 $email = $userId . '@firefly'; | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  |                 /** @var User $user */ | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |                 $user = $repository->store( | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                     [ | 
					
						
							| 
									
										
										
										
											2018-03-10 22:38:20 +01:00
										 |  |  |                         'blocked'      => false, | 
					
						
							| 
									
										
										
										
											2018-03-03 08:12:18 +01:00
										 |  |  |                         'blocked_code' => null, | 
					
						
							| 
									
										
										
										
											2018-03-10 22:38:20 +01:00
										 |  |  |                         'email'        => $email, | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                     ] | 
					
						
							|  |  |  |                 ); | 
					
						
							|  |  |  |                 Auth::guard($guard)->login($user); | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-10-21 21:51:09 +02:00
										 |  |  |                 // also make the user an admin
 | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |                 $repository->attachRole($user, 'owner'); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |                 // share value.
 | 
					
						
							|  |  |  |                 View::share('SANDSTORM_ANON', false); | 
					
						
							| 
									
										
										
										
											2017-10-21 21:51:09 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 return $next($request); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2018-04-28 06:23:13 +02:00
										 |  |  |             if (0 === $count && 0 === \strlen($userId)) { | 
					
						
							| 
									
										
										
										
											2017-02-22 21:27:39 +01:00
										 |  |  |                 throw new FireflyException('The first visit to a new Firefly III administration cannot be by a guest user.'); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             if ($count > 1) { | 
					
						
							| 
									
										
										
										
											2017-02-25 05:57:01 +01:00
										 |  |  |                 throw new FireflyException('Your Firefly III installation has more than one user, which is weird.'); | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  |             } | 
					
						
							|  |  |  |         } | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |         // if in Sandstorm, user logged in, still must check if user is anon.
 | 
					
						
							| 
									
										
										
										
											2018-04-02 15:10:40 +02:00
										 |  |  |         $userId = (string)$request->header('X-Sandstorm-User-Id'); | 
					
						
							| 
									
										
										
										
											2018-04-28 06:23:13 +02:00
										 |  |  |         if (\strlen($userId) === 0) { | 
					
						
							| 
									
										
										
										
											2017-12-26 17:33:53 +01:00
										 |  |  |             View::share('SANDSTORM_ANON', true); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             return $next($request); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  |         View::share('SANDSTORM_ANON', false); | 
					
						
							| 
									
										
										
										
											2017-02-04 08:42:06 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         return $next($request); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | } |