mirror of
				https://github.com/invoiceninja/invoiceninja.git
				synced 2025-10-26 05:02:51 -04:00 
			
		
		
		
	
		
			
				
	
	
		
			341 lines
		
	
	
		
			12 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			341 lines
		
	
	
		
			12 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| /**
 | |
|  * Invoice Ninja (https://invoiceninja.com).
 | |
|  *
 | |
|  * @link https://github.com/invoiceninja/invoiceninja source repository
 | |
|  *
 | |
|  * @copyright Copyright (c) 2023. Invoice Ninja LLC (https://invoiceninja.com)
 | |
|  *
 | |
|  * @license https://www.elastic.co/licensing/elastic-license
 | |
|  */
 | |
| 
 | |
| namespace App\Http\Controllers\ClientPortal;
 | |
| 
 | |
| use App\Events\Contact\ContactLoggedIn;
 | |
| use App\Events\Credit\CreditWasViewed;
 | |
| use App\Events\Invoice\InvoiceWasViewed;
 | |
| use App\Events\Misc\InvitationWasViewed;
 | |
| use App\Events\Quote\QuoteWasViewed;
 | |
| use App\Http\Controllers\Controller;
 | |
| use App\Jobs\Entity\CreateRawPdf;
 | |
| use App\Models\ClientContact;
 | |
| use App\Models\CreditInvitation;
 | |
| use App\Models\InvoiceInvitation;
 | |
| use App\Models\Payment;
 | |
| use App\Models\PurchaseOrderInvitation;
 | |
| use App\Models\QuoteInvitation;
 | |
| use App\Services\ClientPortal\InstantPayment;
 | |
| use App\Utils\Ninja;
 | |
| use App\Utils\Traits\MakesDates;
 | |
| use App\Utils\Traits\MakesHash;
 | |
| use Illuminate\Http\Request;
 | |
| use Illuminate\Support\Facades\Auth;
 | |
| use Illuminate\Support\Facades\Hash;
 | |
| use Illuminate\Support\Str;
 | |
| 
 | |
| /**
 | |
|  * Class InvitationController.
 | |
|  */
 | |
| class InvitationController extends Controller
 | |
| {
 | |
|     use MakesHash;
 | |
|     use MakesDates;
 | |
| 
 | |
|     public function router(string $entity, string $invitation_key)
 | |
|     {
 | |
|         Auth::logout();
 | |
| 
 | |
|         return $this->genericRouter($entity, $invitation_key);
 | |
|     }
 | |
| 
 | |
|     public function recurringRouter(string $invitation_key)
 | |
|     {
 | |
|         return $this->genericRouter('recurring_invoice', $invitation_key);
 | |
|     }
 | |
| 
 | |
|     public function invoiceRouter(string $invitation_key)
 | |
|     {
 | |
|         return $this->genericRouter('invoice', $invitation_key);
 | |
|     }
 | |
| 
 | |
|     public function quoteRouter(string $invitation_key)
 | |
|     {
 | |
|         return $this->genericRouter('quote', $invitation_key);
 | |
|     }
 | |
| 
 | |
|     public function creditRouter(string $invitation_key)
 | |
|     {
 | |
|         return $this->genericRouter('credit', $invitation_key);
 | |
|     }
 | |
| 
 | |
|     private function genericRouter(string $entity, string $invitation_key)
 | |
|     {
 | |
|         if (!in_array($entity, ['invoice', 'credit', 'quote', 'recurring_invoice'])) {
 | |
|             return response()->json(['message' => 'Invalid resource request']);
 | |
|         }
 | |
| 
 | |
|         $is_silent = 'false';
 | |
| 
 | |
|         $key = $entity.'_id';
 | |
| 
 | |
|         $entity_obj = 'App\Models\\'.ucfirst(Str::camel($entity)).'Invitation';
 | |
| 
 | |
|         $invitation = $entity_obj::withTrashed()
 | |
|                                     ->with($entity)
 | |
|                                     ->where('key', $invitation_key)
 | |
|                                     ->with('contact.client')
 | |
|                                     ->firstOrFail();
 | |
| 
 | |
|         if ($invitation->trashed() || $invitation->{$entity}->is_deleted) {
 | |
|             return $this->render('generic.not_available', ['account' => $invitation->company->account, 'company' => $invitation->company]);
 | |
|         }
 | |
| 
 | |
|         if ($invitation->contact->trashed()) {
 | |
|             $invitation->contact->restore();
 | |
|         }
 | |
| 
 | |
|         $client_contact = $invitation->contact;
 | |
|         event(new ContactLoggedIn($client_contact, $client_contact->company, Ninja::eventVars()));
 | |
| 
 | |
|         if (empty($client_contact->email)) {
 | |
|             $client_contact->email = Str::random(15) . "@example.com";
 | |
|             $client_contact->save();
 | |
|         }
 | |
| 
 | |
|         if (request()->has('client_hash') && request()->input('client_hash') == $invitation->contact->client->client_hash) {
 | |
|             request()->session()->invalidate();
 | |
|             auth()->guard('contact')->loginUsingId($client_contact->id, true);
 | |
|         } elseif ((bool) $invitation->contact->client->getSetting('enable_client_portal_password') !== false) {
 | |
|             //if no contact password has been set - allow user to set password - then continue to view entity
 | |
|             if (empty($invitation->contact->password)) {
 | |
|                 return $this->render('view_entity.set_password', [
 | |
|                             'root' => 'themes',
 | |
|                             'entity_type' => $entity,
 | |
|                             'invitation_key' => $invitation_key
 | |
|                         ]);
 | |
|             }
 | |
| 
 | |
|             $this->middleware('auth:contact');
 | |
|             return redirect()->route('client.login');
 | |
|         } else {
 | |
|             request()->session()->invalidate();
 | |
|             auth()->guard('contact')->loginUsingId($client_contact->id, true);
 | |
|         }
 | |
| 
 | |
| 
 | |
|         if (auth()->guard('contact')->user() && ! request()->has('silent') && ! $invitation->viewed_date) {
 | |
|             $invitation->markViewed();
 | |
| 
 | |
|             if (!session()->get('is_silent')) {
 | |
|                 event(new InvitationWasViewed($invitation->{$entity}, $invitation, $invitation->{$entity}->company, Ninja::eventVars()));
 | |
|             }
 | |
| 
 | |
|             if (!session()->get('is_silent')) {
 | |
|                 $this->fireEntityViewedEvent($invitation, $entity);
 | |
|             }
 | |
|         } else {
 | |
|             $is_silent = 'true';
 | |
| 
 | |
|             return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key}), 'silent' => $is_silent]);
 | |
| 
 | |
|             return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key}), 'silent' => $is_silent])->header('Cache-Control', 'no-store, no-cache, must-revalidate, post-check=0, pre-check=0');
 | |
|         }
 | |
|         return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key})]);
 | |
| 
 | |
|         return redirect()->route('client.'.$entity.'.show', [$entity => $this->encodePrimaryKey($invitation->{$key})])->header('Cache-Control', 'no-store, no-cache, must-revalidate, post-check=0, pre-check=0');
 | |
|     }
 | |
| 
 | |
|     private function fireEntityViewedEvent($invitation, $entity_string)
 | |
|     {
 | |
|         switch ($entity_string) {
 | |
|             case 'invoice':
 | |
|                 event(new InvoiceWasViewed($invitation, $invitation->company, Ninja::eventVars()));
 | |
|                 break;
 | |
|             case 'quote':
 | |
|                 event(new QuoteWasViewed($invitation, $invitation->company, Ninja::eventVars()));
 | |
|                 break;
 | |
|             case 'credit':
 | |
|                 event(new CreditWasViewed($invitation, $invitation->company, Ninja::eventVars()));
 | |
|                 break;
 | |
|             default:
 | |
|                 // code...
 | |
|                 break;
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function routerForDownload(string $entity, string $invitation_key)
 | |
|     {
 | |
|         set_time_limit(45);
 | |
| 
 | |
|         // if (Ninja::isHosted()) {
 | |
|         return $this->returnRawPdf($entity, $invitation_key);
 | |
|         // }
 | |
| 
 | |
|         // return redirect('client/'.$entity.'/'.$invitation_key.'/download_pdf');
 | |
|     }
 | |
| 
 | |
|     private function returnRawPdf(string $entity, string $invitation_key)
 | |
|     {
 | |
|         if (!in_array($entity, ['invoice', 'credit', 'quote', 'recurring_invoice'])) {
 | |
|             return response()->json(['message' => 'Invalid resource request']);
 | |
|         }
 | |
| 
 | |
|         $key = $entity.'_id';
 | |
| 
 | |
|         $entity_obj = 'App\Models\\'.ucfirst(Str::camel($entity)).'Invitation';
 | |
| 
 | |
|         $invitation = $entity_obj::withTrashed()
 | |
|                                     ->where('key', $invitation_key)
 | |
|                                     ->with('contact.client')
 | |
|                                     ->firstOrFail();
 | |
| 
 | |
|         if (!$invitation) {
 | |
|             return response()->json(["message" => "no record found"], 400);
 | |
|         }
 | |
| 
 | |
|         $file_name = $invitation->{$entity}->numberFormatter().'.pdf';
 | |
| 
 | |
|         $file = (new CreateRawPdf($invitation))->handle();
 | |
| 
 | |
|         $headers = ['Content-Type' => 'application/pdf'];
 | |
| 
 | |
|         if (request()->input('inline') == 'true') {
 | |
|             $headers = array_merge($headers, ['Content-Disposition' => 'inline']);
 | |
|         }
 | |
| 
 | |
|         return response()->streamDownload(function () use ($file) {
 | |
|             echo $file;
 | |
|         }, $file_name, $headers);
 | |
|     }
 | |
| 
 | |
|     public function routerForIframe(string $entity, string $client_hash, string $invitation_key)
 | |
|     {
 | |
|     }
 | |
| 
 | |
| 
 | |
|     public function handlePasswordSet(Request $request)
 | |
|     {
 | |
|         $entity_obj = 'App\Models\\'.ucfirst(Str::camel($request->entity_type)).'Invitation';
 | |
|         $key = $request->entity_type.'_id';
 | |
| 
 | |
|         $invitation = $entity_obj::where('key', $request->invitation_key)
 | |
|                                     ->whereHas($request->entity_type, function ($query) {
 | |
|                                         $query->where('is_deleted', 0);
 | |
|                                     })
 | |
|                                     ->with('contact.client')
 | |
|                                     ->firstOrFail();
 | |
| 
 | |
|         $contact = $invitation->contact;
 | |
|         $contact->password = Hash::make($request->password);
 | |
|         $contact->save();
 | |
| 
 | |
|         $request->session()->invalidate();
 | |
|         auth()->guard('contact')->loginUsingId($contact->id, true);
 | |
| 
 | |
|         if (! $invitation->viewed_date) {
 | |
|             $invitation->markViewed();
 | |
| 
 | |
|             if (! session()->get('is_silent')) {
 | |
|                 event(new InvitationWasViewed($invitation->{$request->entity_type}, $invitation, $invitation->{$request->entity_type}->company, Ninja::eventVars()));
 | |
|             }
 | |
| 
 | |
|             if (! session()->get('is_silent')) {
 | |
|                 $this->fireEntityViewedEvent($invitation, $request->entity_type);
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         return redirect()->route('client.'.$request->entity_type.'.show', [$request->entity_type => $this->encodePrimaryKey($invitation->{$key})]);
 | |
|     }
 | |
| 
 | |
|     public function paymentRouter(string $contact_key, string $payment_id)
 | |
|     {
 | |
|         /** @var \App\Models\ClientContact $contact **/
 | |
|         $contact = ClientContact::withTrashed()->where('contact_key', $contact_key)->firstOrFail();
 | |
| 
 | |
|         /** @var \App\Models\Payment $payment **/
 | |
|         $payment = Payment::find($this->decodePrimaryKey($payment_id));
 | |
| 
 | |
|         if ($payment->client_id != $contact->client_id) {
 | |
|             abort(403, 'You are not authorized to view this resource');
 | |
|         }
 | |
| 
 | |
|         auth()->guard('contact')->loginUsingId($contact->id, true);
 | |
| 
 | |
|         return redirect()->route('client.payments.show', $payment->hashed_id);
 | |
|     }
 | |
| 
 | |
|     public function payInvoice(Request $request, string $invitation_key)
 | |
|     {
 | |
|         $invitation = InvoiceInvitation::withTrashed()
 | |
|                                     ->where('key', $invitation_key)
 | |
|                                     ->with('contact.client')
 | |
|                                     ->firstOrFail();
 | |
| 
 | |
|         if ($invitation->contact->trashed()) {
 | |
|             $invitation->contact->restore();
 | |
|         }
 | |
| 
 | |
|         auth()->guard('contact')->loginUsingId($invitation->contact->id, true);
 | |
| 
 | |
|         $invoice = $invitation->invoice;
 | |
| 
 | |
|         if ($invoice->partial > 0) {
 | |
|             $amount = round($invoice->partial, (int)$invoice->client->currency()->precision);
 | |
|         } else {
 | |
|             $amount = round($invoice->balance, (int)$invoice->client->currency()->precision);
 | |
|         }
 | |
| 
 | |
|         $gateways = $invitation->contact->client->service()->getPaymentMethods($amount);
 | |
| 
 | |
|         if (is_array($gateways) && count($gateways) >= 1) {
 | |
|             $data = [
 | |
|                 'company_gateway_id' => $gateways[0]['company_gateway_id'],
 | |
|                 'payment_method_id' => $gateways[0]['gateway_type_id'],
 | |
|                 'payable_invoices' => [
 | |
|                     ['invoice_id' => $invitation->invoice->hashed_id, 'amount' => $amount],
 | |
|                 ],
 | |
|                 'signature' => false
 | |
|             ];
 | |
| 
 | |
|             $request->replace($data);
 | |
| 
 | |
|             return (new InstantPayment($request))->run();
 | |
|         }
 | |
| 
 | |
|         $entity = 'invoice';
 | |
| 
 | |
|         if ($invoice && is_array($gateways) && count($gateways) == 0) {
 | |
|             return redirect()->route('client.invoice.show', ['invoice' => $this->encodePrimaryKey($invitation->invoice_id)]);
 | |
|         }
 | |
| 
 | |
|         abort(404, "Invoice not found");
 | |
|     }
 | |
| 
 | |
|     public function unsubscribe(Request $request, string $entity, string $invitation_key)
 | |
|     {
 | |
|         if ($entity == 'invoice') {
 | |
|             $invite = InvoiceInvitation::withTrashed()->where('key', $invitation_key)->first();
 | |
|             $invite->contact->send_email = false;
 | |
|             $invite->contact->save();
 | |
|         } elseif ($entity == 'quote') {
 | |
|             $invite = QuoteInvitation::withTrashed()->where('key', $invitation_key)->first();
 | |
|             $invite->contact->send_email = false;
 | |
|             $invite->contact->save();
 | |
|         } elseif ($entity == 'credit') {
 | |
|             $invite = CreditInvitation::withTrashed()->where('key', $invitation_key)->first();
 | |
|             $invite->contact->send_email = false;
 | |
|             $invite->contact->save();
 | |
|         } elseif ($entity == 'purchase_order') {
 | |
|             $invite = PurchaseOrderInvitation::withTrashed()->where('key', $invitation_key)->first();
 | |
|             $invite->contact->send_email = false;
 | |
|             $invite->contact->save();
 | |
|         } else {
 | |
|             return abort(404);
 | |
|         }
 | |
| 
 | |
|         $data['logo'] = $invite->company->present()->logo();
 | |
| 
 | |
|         return $this->render('generic.unsubscribe', $data);
 | |
|     }
 | |
| }
 |