mirror of
				https://github.com/invoiceninja/invoiceninja.git
				synced 2025-10-25 23:22:53 -04:00 
			
		
		
		
	
		
			
				
	
	
		
			108 lines
		
	
	
		
			3.3 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			108 lines
		
	
	
		
			3.3 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| /**
 | |
|  * Invoice Ninja (https://invoiceninja.com).
 | |
|  *
 | |
|  * @link https://github.com/invoiceninja/invoiceninja source repository
 | |
|  *
 | |
|  * @copyright Copyright (c) 2021. Invoice Ninja LLC (https://invoiceninja.com)
 | |
|  *
 | |
|  * @license https://opensource.org/licenses/AAL
 | |
|  */
 | |
| 
 | |
| namespace App\Http\Controllers;
 | |
| 
 | |
| use App\Http\Requests\OneTimeToken\OneTimeRouterRequest;
 | |
| use App\Http\Requests\OneTimeToken\OneTimeTokenRequest;
 | |
| use App\Models\User;
 | |
| use Illuminate\Http\Response;
 | |
| use Illuminate\Support\Facades\Auth;
 | |
| use Illuminate\Support\Facades\Cache;
 | |
| use Illuminate\Support\Str;
 | |
| 
 | |
| class OneTimeTokenController extends BaseController
 | |
| {
 | |
| 
 | |
|     private $contexts = [
 | |
|         'stripe_connect_test' => 'https://connect.stripe.com/oauth/authorize?response_type=code&client_id=ca_J2FhIhcf9GT5BlWUNeQ1FhnZACaYZrOI&scope=read_write',
 | |
|         'stripe_connect' => 'https://connect.stripe.com/oauth/authorize?response_type=code&client_id=ca_J2Fh2tZfMlaaItUfbUwBBx4JPss8jCz9&scope=read_write'
 | |
|     ];
 | |
| 
 | |
|     public function __construct()
 | |
|     {
 | |
|         parent::__construct();
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Store a newly created resource in storage.
 | |
|      *
 | |
|      * @param CreateOneTimeTokenRequest $request
 | |
|      * @return Response
 | |
|      *
 | |
|      * @OA\Post(
 | |
|      *      path="/api/v1/one_time_token",
 | |
|      *      operationId="oneTimeToken",
 | |
|      *      tags={"one_time_token"},
 | |
|      *      summary="Attempts to create a one time token",
 | |
|      *      description="Attempts to create a one time token",
 | |
|      *      @OA\Parameter(ref="#/components/parameters/X-Api-Secret"),
 | |
|      *      @OA\Parameter(ref="#/components/parameters/X-Requested-With"),
 | |
|      *      @OA\Response(
 | |
|      *          response=200,
 | |
|      *          description="The Company User response",
 | |
|      *          @OA\Header(header="X-MINIMUM-CLIENT-VERSION", ref="#/components/headers/X-MINIMUM-CLIENT-VERSION"),
 | |
|      *          @OA\Header(header="X-RateLimit-Remaining", ref="#/components/headers/X-RateLimit-Remaining"),
 | |
|      *          @OA\Header(header="X-RateLimit-Limit", ref="#/components/headers/X-RateLimit-Limit")
 | |
|      *       ),
 | |
|      *       @OA\Response(
 | |
|      *          response=422,
 | |
|      *          description="Validation error",
 | |
|      *          @OA\JsonContent(ref="#/components/schemas/ValidationError"),
 | |
|      *       ),
 | |
|      *       @OA\Response(
 | |
|      *           response="default",
 | |
|      *           description="Unexpected Error",
 | |
|      *           @OA\JsonContent(ref="#/components/schemas/Error"),
 | |
|      *       ),
 | |
|      *     )
 | |
|      */
 | |
|     public function create(OneTimeTokenRequest $request)
 | |
|     {
 | |
| 
 | |
|         $hash = Str::random(64);
 | |
| 
 | |
|         $data = [
 | |
|             'user_id' => auth()->user()->id,
 | |
|             'company_key'=> auth()->company()->company_key,
 | |
|             'context' => $requst->input('context'),
 | |
|         ];
 | |
| 
 | |
|         Cache::put( $hash, $data, 3600 );
 | |
| 
 | |
|         return response()->json(['hash' => $hash], 200);
 | |
|     
 | |
|     }
 | |
| 
 | |
|     public function router(OneTimeRouterRequest $request)
 | |
|     {
 | |
|         $data = Cache::get($request->input('hash'));
 | |
| 
 | |
|         MultiDB::findAndSetDbByCompanyKey($data['company_key']);
 | |
| 
 | |
|         $user = User::findOrFail($data['user_id']);
 | |
| 
 | |
|         Auth::login($user, true);
 | |
| 
 | |
|         // Cache::forget($request->input('hash'));
 | |
| 
 | |
|         $this->sendTo($data['context']);
 | |
| 
 | |
|     }
 | |
| 
 | |
|     /* We need to merge all contexts here and redirect to the correct location */
 | |
|     private function sendTo($context)
 | |
|     {
 | |
| 
 | |
|         return redirect();
 | |
|     }
 | |
| }
 |