mirror of
https://github.com/invoiceninja/invoiceninja.git
synced 2025-11-04 10:03:34 -05:00
194 lines
5.9 KiB
PHP
194 lines
5.9 KiB
PHP
<?php namespace App\Http\Controllers;
|
|
|
|
use Auth;
|
|
use Utils;
|
|
use Response;
|
|
use Input;
|
|
use Validator;
|
|
use Cache;
|
|
use App\Models\Client;
|
|
use App\Models\Account;
|
|
use App\Models\AccountToken;
|
|
use App\Ninja\Repositories\AccountRepository;
|
|
use Illuminate\Http\Request;
|
|
use League\Fractal;
|
|
use League\Fractal\Manager;
|
|
use App\Ninja\Serializers\ArraySerializer;
|
|
use App\Ninja\Transformers\AccountTransformer;
|
|
use App\Ninja\Transformers\UserAccountTransformer;
|
|
use App\Http\Controllers\BaseAPIController;
|
|
use Swagger\Annotations as SWG;
|
|
|
|
use App\Http\Requests\UpdateAccountRequest;
|
|
|
|
class AccountApiController extends BaseAPIController
|
|
{
|
|
protected $accountRepo;
|
|
|
|
public function __construct(AccountRepository $accountRepo)
|
|
{
|
|
parent::__construct();
|
|
|
|
$this->accountRepo = $accountRepo;
|
|
}
|
|
|
|
public function login(Request $request)
|
|
{
|
|
if ( ! env(API_SECRET) || $request->api_secret !== env(API_SECRET)) {
|
|
sleep(ERROR_DELAY);
|
|
return $this->errorResponse(['message'=>'Invalid secret'],401);
|
|
}
|
|
|
|
if (Auth::attempt(['email' => $request->email, 'password' => $request->password])) {
|
|
return $this->processLogin($request);
|
|
} else {
|
|
sleep(ERROR_DELAY);
|
|
return $this->errorResponse(['message'=>'Invalid credentials'],401);
|
|
}
|
|
}
|
|
|
|
private function processLogin(Request $request)
|
|
{
|
|
// Create a new token only if one does not already exist
|
|
$user = Auth::user();
|
|
$this->accountRepo->createTokens($user, $request->token_name);
|
|
|
|
$users = $this->accountRepo->findUsers($user, 'account.account_tokens');
|
|
$transformer = new UserAccountTransformer($user->account, $request->serializer, $request->token_name);
|
|
$data = $this->createCollection($users, $transformer, 'user_account');
|
|
|
|
return $this->response($data);
|
|
}
|
|
|
|
public function show(Request $request)
|
|
{
|
|
$account = Auth::user()->account;
|
|
$updatedAt = $request->updated_at ? date('Y-m-d H:i:s', $request->updated_at) : false;
|
|
|
|
$map = [
|
|
'users' => [],
|
|
'clients' => ['contacts'],
|
|
'invoices' => ['invoice_items', 'user', 'client', 'payments'],
|
|
'products' => [],
|
|
'tax_rates' => [],
|
|
'expenses' => ['client', 'invoice', 'vendor'],
|
|
'payments' => ['invoice'],
|
|
];
|
|
|
|
foreach ($map as $key => $values) {
|
|
$account->load([$key => function($query) use ($values, $updatedAt) {
|
|
$query->withTrashed()->with($values);
|
|
if ($updatedAt) {
|
|
$query->where('updated_at', '>=', $updatedAt);
|
|
}
|
|
}]);
|
|
}
|
|
|
|
$transformer = new AccountTransformer(null, $request->serializer);
|
|
$account = $this->createItem($account, $transformer, 'account');
|
|
|
|
return $this->response($account);
|
|
}
|
|
|
|
public function getStaticData()
|
|
{
|
|
$data = [];
|
|
|
|
$cachedTables = unserialize(CACHED_TABLES);
|
|
foreach ($cachedTables as $name => $class) {
|
|
$data[$name] = Cache::get($name);
|
|
}
|
|
|
|
return $this->response($data);
|
|
}
|
|
|
|
public function getUserAccounts(Request $request)
|
|
{
|
|
return $this->processLogin($request);
|
|
}
|
|
|
|
public function update(UpdateAccountRequest $request)
|
|
{
|
|
$account = Auth::user()->account;
|
|
$this->accountRepo->save($request->input(), $account);
|
|
|
|
$transformer = new AccountTransformer(null, $request->serializer);
|
|
$account = $this->createItem($account, $transformer, 'account');
|
|
|
|
return $this->response($account);
|
|
}
|
|
|
|
public function addDeviceToken(Request $request)
|
|
{
|
|
$account = Auth::user()->account;
|
|
|
|
//scan if this user has a token already registered (tokens can change, so we need to use the users email as key)
|
|
$devices = json_decode($account->devices,TRUE);
|
|
|
|
|
|
for($x=0; $x<count($devices); $x++)
|
|
{
|
|
if ($devices[$x]['email'] == Auth::user()->username) {
|
|
$devices[$x]['token'] = $request->token; //update
|
|
$account->devices = json_encode($devices);
|
|
$account->save();
|
|
return $this->response($account);
|
|
}
|
|
}
|
|
|
|
//User does not have a device, create new record
|
|
|
|
$newDevice = [
|
|
'token' => $request->token,
|
|
'email' => $request->email,
|
|
'device' => $request->device,
|
|
'notify_sent' => TRUE,
|
|
'notify_viewed' => TRUE,
|
|
'notify_approved' => TRUE,
|
|
'notify_paid' => TRUE,
|
|
];
|
|
|
|
$devices[] = $newDevice;
|
|
$account->devices = json_encode($devices);
|
|
$account->save();
|
|
|
|
return $this->response($newDevice);
|
|
|
|
}
|
|
|
|
public function updatePushNotifications(Request $request)
|
|
{
|
|
$account = Auth::user()->account;
|
|
|
|
$devices = json_decode($account->devices, TRUE);
|
|
|
|
if(count($devices)<1)
|
|
return $this->errorResponse(['message'=>'no devices exist'], 400);
|
|
|
|
for($x=0; $x<count($devices); $x++)
|
|
{
|
|
if($devices[$x]['email'] == Auth::user()->username)
|
|
{
|
|
unset($devices[$x]);
|
|
|
|
$newDevice = [
|
|
'token' => $request->token,
|
|
'email' => $request->email,
|
|
'device' => $request->device,
|
|
'notify_sent' => $request->notify_sent,
|
|
'notify_viewed' => $request->notify_viewed,
|
|
'notify_approved' => $request->notify_approved,
|
|
'notify_paid' => $request->notify_paid,
|
|
];
|
|
|
|
$devices[] = $newDevice;
|
|
$account->devices = json_encode($devices);
|
|
$account->save();
|
|
|
|
return $this->response($newDevice);
|
|
}
|
|
}
|
|
|
|
}
|
|
}
|