mirror of
https://github.com/invoiceninja/invoiceninja.git
synced 2025-10-23 22:39:23 -04:00
Shift automatically applies the Laravel coding style - which uses the PSR-2 coding style as a base with some minor additions. You may customize the code style applied by adding a [PHP CS Fixer][1] or [PHP CodeSniffer][2] ruleset to your project root. Feel free to use [Shift's Laravel ruleset][3] to help you get started. For more information on customizing the code style applied by Shift, [watch this short video][4]. [1]: https://github.com/FriendsOfPHP/PHP-CS-Fixer [2]: https://github.com/squizlabs/PHP_CodeSniffer [3]: https://gist.github.com/laravel-shift/cab527923ed2a109dda047b97d53c200 [4]: https://laravelshift.com/videos/shift-code-style
301 lines
11 KiB
PHP
301 lines
11 KiB
PHP
<?php
|
|
/**
|
|
* Invoice Ninja (https://invoiceninja.com).
|
|
*
|
|
* @link https://github.com/invoiceninja/invoiceninja source repository
|
|
*
|
|
* @copyright Copyright (c) 2022. Invoice Ninja LLC (https://invoiceninja.com)
|
|
*
|
|
* @license https://www.elastic.co/licensing/elastic-license
|
|
*/
|
|
|
|
namespace App\Http\Controllers\ClientPortal;
|
|
|
|
use App\Events\Credit\CreditWasViewed;
|
|
use App\Events\Invoice\InvoiceWasViewed;
|
|
use App\Events\Misc\InvitationWasViewed;
|
|
use App\Events\Quote\QuoteWasViewed;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Jobs\Entity\CreateRawPdf;
|
|
use App\Models\Client;
|
|
use App\Models\ClientContact;
|
|
use App\Models\CreditInvitation;
|
|
use App\Models\InvoiceInvitation;
|
|
use App\Models\Payment;
|
|
use App\Models\PurchaseOrderInvitation;
|
|
use App\Models\QuoteInvitation;
|
|
use App\Services\ClientPortal\InstantPayment;
|
|
use App\Utils\CurlUtils;
|
|
use App\Utils\Ninja;
|
|
use App\Utils\Traits\MakesDates;
|
|
use App\Utils\Traits\MakesHash;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Str;
|
|
|
|
/**
|
|
* Class InvitationController.
|
|
*/
|
|
class InvitationController extends Controller
|
|
{
|
|
use MakesHash;
|
|
use MakesDates;
|
|
|
|
public function router(string $entity, string $invitation_key)
|
|
{
|
|
Auth::logout();
|
|
|
|
return $this->genericRouter($entity, $invitation_key);
|
|
}
|
|
|
|
public function recurringRouter(string $invitation_key)
|
|
{
|
|
return $this->genericRouter('recurring_invoice', $invitation_key);
|
|
}
|
|
|
|
public function invoiceRouter(string $invitation_key)
|
|
{
|
|
return $this->genericRouter('invoice', $invitation_key);
|
|
}
|
|
|
|
public function quoteRouter(string $invitation_key)
|
|
{
|
|
return $this->genericRouter('quote', $invitation_key);
|
|
}
|
|
|
|
public function creditRouter(string $invitation_key)
|
|
{
|
|
return $this->genericRouter('credit', $invitation_key);
|
|
}
|
|
|
|
private function genericRouter(string $entity, string $invitation_key)
|
|
{
|
|
if (! in_array($entity, ['invoice', 'credit', 'quote', 'recurring_invoice'])) {
|
|
return response()->json(['message' => 'Invalid resource request']);
|
|
}
|
|
|
|
$is_silent = 'false';
|
|
|
|
$key = $entity.'_id';
|
|
|
|
$entity_obj = 'App\Models\\'.ucfirst(Str::camel($entity)).'Invitation';
|
|
|
|
$invitation = $entity_obj::withTrashed()
|
|
->where('key', $invitation_key)
|
|
->whereHas($entity, function ($query) {
|
|
$query->where('is_deleted', 0);
|
|
})
|
|
->with('contact.client')
|
|
->first();
|
|
|
|
if (! $invitation) {
|
|
return abort(404, 'The resource is no longer available.');
|
|
}
|
|
|
|
/* 12/01/2022 Clean up an edge case where if the contact is trashed, restore if a invitation comes back. */
|
|
if ($invitation->contact->trashed()) {
|
|
$invitation->contact->restore();
|
|
}
|
|
|
|
/* Return early if we have the correct client_hash embedded */
|
|
$client_contact = $invitation->contact;
|
|
|
|
if (empty($client_contact->email)) {
|
|
$client_contact->email = Str::random(15).'@example.com';
|
|
}
|
|
$client_contact->save();
|
|
|
|
if (request()->has('client_hash') && request()->input('client_hash') == $invitation->contact->client->client_hash) {
|
|
request()->session()->invalidate();
|
|
auth()->guard('contact')->loginUsingId($client_contact->id, true);
|
|
} elseif ((bool) $invitation->contact->client->getSetting('enable_client_portal_password') !== false) {
|
|
|
|
//if no contact password has been set - allow user to set password - then continue to view entity
|
|
if (empty($invitation->contact->password)) {
|
|
return $this->render('view_entity.set_password', [
|
|
'root' => 'themes',
|
|
'entity_type' => $entity,
|
|
'invitation_key' => $invitation_key,
|
|
]);
|
|
}
|
|
|
|
$this->middleware('auth:contact');
|
|
|
|
return redirect()->route('client.login');
|
|
} else {
|
|
nlog('else - default - login contact');
|
|
request()->session()->invalidate();
|
|
auth()->guard('contact')->loginUsingId($client_contact->id, true);
|
|
}
|
|
|
|
if (auth()->guard('contact')->user() && ! request()->has('silent') && ! $invitation->viewed_date) {
|
|
$invitation->markViewed();
|
|
|
|
if (! session()->get('is_silent')) {
|
|
event(new InvitationWasViewed($invitation->{$entity}, $invitation, $invitation->{$entity}->company, Ninja::eventVars()));
|
|
}
|
|
|
|
if (! session()->get('is_silent')) {
|
|
$this->fireEntityViewedEvent($invitation, $entity);
|
|
}
|
|
} else {
|
|
$is_silent = 'true';
|
|
|
|
return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key}), 'silent' => $is_silent]);
|
|
}
|
|
|
|
return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key})]);
|
|
}
|
|
|
|
private function fireEntityViewedEvent($invitation, $entity_string)
|
|
{
|
|
switch ($entity_string) {
|
|
case 'invoice':
|
|
event(new InvoiceWasViewed($invitation, $invitation->company, Ninja::eventVars()));
|
|
break;
|
|
case 'quote':
|
|
event(new QuoteWasViewed($invitation, $invitation->company, Ninja::eventVars()));
|
|
break;
|
|
case 'credit':
|
|
event(new CreditWasViewed($invitation, $invitation->company, Ninja::eventVars()));
|
|
break;
|
|
default:
|
|
// code...
|
|
break;
|
|
}
|
|
}
|
|
|
|
public function routerForDownload(string $entity, string $invitation_key)
|
|
{
|
|
set_time_limit(45);
|
|
|
|
if (Ninja::isHosted()) {
|
|
return $this->returnRawPdf($entity, $invitation_key);
|
|
}
|
|
|
|
return redirect('client/'.$entity.'/'.$invitation_key.'/download_pdf');
|
|
}
|
|
|
|
private function returnRawPdf(string $entity, string $invitation_key)
|
|
{
|
|
if (! in_array($entity, ['invoice', 'credit', 'quote', 'recurring_invoice'])) {
|
|
return response()->json(['message' => 'Invalid resource request']);
|
|
}
|
|
|
|
$key = $entity.'_id';
|
|
|
|
$entity_obj = 'App\Models\\'.ucfirst(Str::camel($entity)).'Invitation';
|
|
|
|
$invitation = $entity_obj::withTrashed()
|
|
->where('key', $invitation_key)
|
|
->with('contact.client')
|
|
->firstOrFail();
|
|
|
|
if (! $invitation) {
|
|
return response()->json(['message' => 'no record found'], 400);
|
|
}
|
|
|
|
$file_name = $invitation->{$entity}->numberFormatter().'.pdf';
|
|
|
|
$file = CreateRawPdf::dispatchNow($invitation, $invitation->company->db);
|
|
|
|
$headers = ['Content-Type' => 'application/pdf'];
|
|
|
|
if (request()->input('inline') == 'true') {
|
|
$headers = array_merge($headers, ['Content-Disposition' => 'inline']);
|
|
}
|
|
|
|
return response()->streamDownload(function () use ($file) {
|
|
echo $file;
|
|
}, $file_name, $headers);
|
|
}
|
|
|
|
public function routerForIframe(string $entity, string $client_hash, string $invitation_key)
|
|
{
|
|
}
|
|
|
|
public function paymentRouter(string $contact_key, string $payment_id)
|
|
{
|
|
$contact = ClientContact::withTrashed()->where('contact_key', $contact_key)->firstOrFail();
|
|
$payment = Payment::find($this->decodePrimaryKey($payment_id));
|
|
|
|
if ($payment->client_id != $contact->client_id) {
|
|
abort(403, 'You are not authorized to view this resource');
|
|
}
|
|
|
|
auth()->guard('contact')->loginUsingId($contact->id, true);
|
|
|
|
return redirect()->route('client.payments.show', $payment->hashed_id);
|
|
}
|
|
|
|
public function payInvoice(Request $request, string $invitation_key)
|
|
{
|
|
$invitation = InvoiceInvitation::withTrashed()
|
|
->where('key', $invitation_key)
|
|
->with('contact.client')
|
|
->firstOrFail();
|
|
|
|
auth()->guard('contact')->loginUsingId($invitation->contact->id, true);
|
|
|
|
$invoice = $invitation->invoice;
|
|
|
|
if ($invoice->partial > 0) {
|
|
$amount = round($invoice->partial, (int) $invoice->client->currency()->precision);
|
|
} else {
|
|
$amount = round($invoice->balance, (int) $invoice->client->currency()->precision);
|
|
}
|
|
|
|
$gateways = $invitation->contact->client->service()->getPaymentMethods($amount);
|
|
|
|
if (is_array($gateways) && count($gateways) >= 1) {
|
|
$data = [
|
|
'company_gateway_id' => $gateways[0]['company_gateway_id'],
|
|
'payment_method_id' => $gateways[0]['gateway_type_id'],
|
|
'payable_invoices' => [
|
|
['invoice_id' => $invitation->invoice->hashed_id, 'amount' => $amount],
|
|
],
|
|
'signature' => false,
|
|
];
|
|
|
|
$request->replace($data);
|
|
|
|
return (new InstantPayment($request))->run();
|
|
}
|
|
|
|
$entity = 'invoice';
|
|
|
|
if ($invoice && is_array($gateways) && count($gateways) == 0) {
|
|
return redirect()->route('client.invoice.show', ['invoice' => $this->encodePrimaryKey($invitation->invoice_id)]);
|
|
}
|
|
|
|
abort(404, 'Invoice not found');
|
|
}
|
|
|
|
public function unsubscribe(Request $request, string $entity, string $invitation_key)
|
|
{
|
|
if ($entity == 'invoice') {
|
|
$invite = InvoiceInvitation::withTrashed()->where('key', $invitation_key)->first();
|
|
$invite->contact->send_email = false;
|
|
$invite->contact->save();
|
|
} elseif ($entity == 'quote') {
|
|
$invite = QuoteInvitation::withTrashed()->where('key', $invitation_key)->first();
|
|
$invite->contact->send_email = false;
|
|
$invite->contact->save();
|
|
} elseif ($entity == 'credit') {
|
|
$invite = CreditInvitation::withTrashed()->where('key', $invitation_key)->first();
|
|
$invite->contact->send_email = false;
|
|
$invite->contact->save();
|
|
} elseif ($entity == 'purchase_order') {
|
|
$invite = PurchaseOrderInvitation::withTrashed()->where('key', $invitation_key)->first();
|
|
$invite->contact->send_email = false;
|
|
$invite->contact->save();
|
|
} else {
|
|
return abort(404);
|
|
}
|
|
|
|
$data['logo'] = $invite->company->present()->logo();
|
|
|
|
return $this->render('generic.unsubscribe', $data);
|
|
}
|
|
}
|