mirror of
				https://github.com/invoiceninja/invoiceninja.git
				synced 2025-10-25 09:19:24 -04:00 
			
		
		
		
	* migration for new permissions schema * update permissions across data tables * refactor migrations to prevent duplicate attribute * update permissions in views * Product Permissions * permissions via controllers * Refactor to use Laravel authorization gate * Doc Blocks for EntityPolicy * check permissions conditional on create new client * Bug Fixes * Data table permissions * working on UI * settings UI/UX finalised * Datatable permissions * remove legacy permissions * permission fix for viewing client * remove all instances of viewByOwner * refactor after PR * Bug fix for Functional test and implementation of Functional tests for Permissions * fix for tests
		
			
				
	
	
		
			776 lines
		
	
	
		
			26 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			776 lines
		
	
	
		
			26 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| 
 | |
| namespace App\Ninja\Repositories;
 | |
| 
 | |
| use App\Models\Account;
 | |
| use App\Models\AccountEmailSettings;
 | |
| use App\Models\AccountGateway;
 | |
| use App\Models\AccountToken;
 | |
| use App\Models\Client;
 | |
| use App\Models\Company;
 | |
| use App\Models\Contact;
 | |
| use App\Models\Credit;
 | |
| use App\Models\Invitation;
 | |
| use App\Models\Invoice;
 | |
| use App\Models\InvoiceItem;
 | |
| use App\Models\Language;
 | |
| use App\Models\User;
 | |
| use App\Models\UserAccount;
 | |
| use App\Models\LookupUser;
 | |
| use Auth;
 | |
| use Input;
 | |
| use Request;
 | |
| use Schema;
 | |
| use Session;
 | |
| use stdClass;
 | |
| use URL;
 | |
| use Utils;
 | |
| use Validator;
 | |
| 
 | |
| class AccountRepository
 | |
| {
 | |
|     public function create($firstName = '', $lastName = '', $email = '', $password = '', $company = false)
 | |
|     {
 | |
|         if (! $company) {
 | |
|             if (Utils::isNinja()) {
 | |
|                 $this->checkForSpammer();
 | |
|             }
 | |
| 
 | |
|             $company = new Company();
 | |
|             $company->utm_source = Input::get('utm_source');
 | |
|             $company->utm_medium = Input::get('utm_medium');
 | |
|             $company->utm_campaign = Input::get('utm_campaign');
 | |
|             $company->utm_term = Input::get('utm_term');
 | |
|             $company->utm_content = Input::get('utm_content');
 | |
|             $company->referral_code = Session::get(SESSION_REFERRAL_CODE);
 | |
| 
 | |
|             if (Input::get('utm_campaign')) {
 | |
|                 if (env('PROMO_CAMPAIGN') && hash_equals(Input::get('utm_campaign'), env('PROMO_CAMPAIGN'))) {
 | |
|                     $company->applyDiscount(.75);
 | |
|                 }
 | |
| 
 | |
|                 if (env('PARTNER_CAMPAIGN') && hash_equals(Input::get('utm_campaign'), env('PARTNER_CAMPAIGN'))) {
 | |
|                     $company->applyFreeYear();
 | |
|                 }
 | |
|             } else {
 | |
|                 //$company->applyDiscount(.5);
 | |
|                 //session()->flash('warning', $company->present()->promoMessage());
 | |
|             }
 | |
| 
 | |
|             $company->save();
 | |
|         }
 | |
| 
 | |
|         $account = new Account();
 | |
|         $account->ip = Request::getClientIp();
 | |
|         $account->account_key = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|         $account->company_id = $company->id;
 | |
|         $account->currency_id = DEFAULT_CURRENCY;
 | |
| 
 | |
|         // Set default language/currency based on IP
 | |
|         // TODO Disabled until GDPR implications are understood
 | |
|         /*
 | |
|         if (\Cache::get('currencies')) {
 | |
|             if ($data = unserialize(@file_get_contents('http://www.geoplugin.net/php.gp?ip=' . $account->ip))) {
 | |
|                 $currencyCode = strtolower($data['geoplugin_currencyCode']);
 | |
|                 $countryCode = strtolower($data['geoplugin_countryCode']);
 | |
| 
 | |
|                 $currency = \Cache::get('currencies')->filter(function ($item) use ($currencyCode) {
 | |
|                     return strtolower($item->code) == $currencyCode;
 | |
|                 })->first();
 | |
|                 if ($currency) {
 | |
|                     $account->currency_id = $currency->id;
 | |
|                 }
 | |
| 
 | |
|                 $country = \Cache::get('countries')->filter(function ($item) use ($countryCode) {
 | |
|                     return strtolower($item->iso_3166_2) == $countryCode || strtolower($item->iso_3166_3) == $countryCode;
 | |
|                 })->first();
 | |
|                 if ($country) {
 | |
|                     $account->country_id = $country->id;
 | |
|                 }
 | |
| 
 | |
|                 $language = \Cache::get('languages')->filter(function ($item) use ($countryCode) {
 | |
|                     return strtolower($item->locale) == $countryCode;
 | |
|                 })->first();
 | |
|                 if ($language) {
 | |
|                     $account->language_id = $language->id;
 | |
|                 }
 | |
|             }
 | |
|         }
 | |
|         */
 | |
| 
 | |
|         $account->save();
 | |
| 
 | |
|         $user = new User();
 | |
|         if (! $firstName && ! $lastName && ! $email && ! $password) {
 | |
|             $user->password = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|             $user->username = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|         } else {
 | |
|             $user->first_name = $firstName;
 | |
|             $user->last_name = $lastName;
 | |
|             $user->email = $user->username = $email;
 | |
|             if (! $password) {
 | |
|                 $password = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|             }
 | |
|             $user->password = bcrypt($password);
 | |
|         }
 | |
| 
 | |
|         $user->confirmed = ! Utils::isNinja();
 | |
|         $user->registered = ! Utils::isNinja() || $email;
 | |
| 
 | |
|         if (! $user->confirmed) {
 | |
|             $user->confirmation_code = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|         }
 | |
| 
 | |
|         $account->users()->save($user);
 | |
| 
 | |
|         $emailSettings = new AccountEmailSettings();
 | |
|         $account->account_email_settings()->save($emailSettings);
 | |
| 
 | |
|         return $account;
 | |
|     }
 | |
| 
 | |
|     private function checkForSpammer()
 | |
|     {
 | |
|         $ip = Request::getClientIp();
 | |
|         $count = Account::whereIp($ip)->whereHas('users', function ($query) {
 | |
|             $query->whereRegistered(true);
 | |
|         })->count();
 | |
| 
 | |
|         if ($count > 10 && $errorEmail = env('ERROR_EMAIL')) {
 | |
|             \Mail::raw($ip, function ($message) use ($ip, $errorEmail) {
 | |
|                 $message->to($errorEmail)
 | |
|                         ->from(CONTACT_EMAIL)
 | |
|                         ->subject('Duplicate company for IP: ' . $ip);
 | |
|             });
 | |
|             if ($count >= 15) {
 | |
|                 abort();
 | |
|             }
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function getSearchData($user)
 | |
|     {
 | |
|         $data = $this->getAccountSearchData($user);
 | |
| 
 | |
|         $data['navigation'] = $user->is_admin ? $this->getNavigationSearchData() : [];
 | |
| 
 | |
|         return $data;
 | |
|     }
 | |
| 
 | |
|     private function getAccountSearchData($user)
 | |
|     {
 | |
|         $account = $user->account;
 | |
| 
 | |
|         $data = [
 | |
|             'clients' => [],
 | |
|             'contacts' => [],
 | |
|             'invoices' => [],
 | |
|             'quotes' => [],
 | |
|         ];
 | |
| 
 | |
|         // include custom client fields in search
 | |
|         if ($account->customLabel('client1')) {
 | |
|             $data[$account->present()->customLabel('client1')] = [];
 | |
|         }
 | |
|         if ($account->customLabel('client2')) {
 | |
|             $data[$account->present()->customLabel('client2')] = [];
 | |
|         }
 | |
| 
 | |
|         if ($user->hasPermission(['view_client', 'view_invoice'], true)) {
 | |
|             $clients = Client::scope()
 | |
|                         ->with('contacts', 'invoices')
 | |
|                         ->withTrashed()
 | |
|                         ->with(['contacts', 'invoices' => function ($query) use ($user) {
 | |
|                             $query->withTrashed();
 | |
|                         }])->get();
 | |
|         } else {
 | |
|             $clients = Client::scope()
 | |
|                         ->where('user_id', '=', $user->id)
 | |
|                         ->withTrashed()
 | |
|                         ->with(['contacts', 'invoices' => function ($query) use ($user) {
 | |
|                             $query->withTrashed()
 | |
|                                   ->where('user_id', '=', $user->id);
 | |
|                         }])->get();
 | |
|         }
 | |
| 
 | |
|         foreach ($clients as $client) {
 | |
|             if (! $client->is_deleted) {
 | |
|                 if ($client->name) {
 | |
|                     $data['clients'][] = [
 | |
|                         'value' => ($client->id_number ? $client->id_number . ': ' : '') . $client->name,
 | |
|                         'tokens' => implode(',', [$client->name, $client->id_number, $client->vat_number, $client->work_phone]),
 | |
|                         'url' => $client->present()->url,
 | |
|                     ];
 | |
|                 }
 | |
| 
 | |
|                 if ($client->custom_value1) {
 | |
|                     $data[$account->present()->customLabel('client1')][] = [
 | |
|                         'value' => "{$client->custom_value1}: " . $client->getDisplayName(),
 | |
|                         'tokens' => $client->custom_value1,
 | |
|                         'url' => $client->present()->url,
 | |
|                     ];
 | |
|                 }
 | |
|                 if ($client->custom_value2) {
 | |
|                     $data[$account->present()->customLabel('client2')][] = [
 | |
|                         'value' => "{$client->custom_value2}: " . $client->getDisplayName(),
 | |
|                         'tokens' => $client->custom_value2,
 | |
|                         'url' => $client->present()->url,
 | |
|                     ];
 | |
|                 }
 | |
| 
 | |
|                 foreach ($client->contacts as $contact) {
 | |
|                     $data['contacts'][] = [
 | |
|                         'value' => $contact->getSearchName(),
 | |
|                         'tokens' => implode(',', [$contact->first_name, $contact->last_name, $contact->email, $contact->phone]),
 | |
|                         'url' => $client->present()->url,
 | |
|                     ];
 | |
|                 }
 | |
|             }
 | |
| 
 | |
|             foreach ($client->invoices as $invoice) {
 | |
|                 $entityType = $invoice->getEntityType();
 | |
|                 $data["{$entityType}s"][] = [
 | |
|                     'value' => $invoice->getDisplayName() . ': ' . $client->getDisplayName(),
 | |
|                     'tokens' => implode(',', [$invoice->invoice_number, $invoice->po_number]),
 | |
|                     'url' => $invoice->present()->url,
 | |
|                 ];
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         return $data;
 | |
|     }
 | |
| 
 | |
|     private function getNavigationSearchData()
 | |
|     {
 | |
|         $entityTypes = [
 | |
|             ENTITY_INVOICE,
 | |
|             ENTITY_CLIENT,
 | |
|             ENTITY_QUOTE,
 | |
|             ENTITY_TASK,
 | |
|             ENTITY_EXPENSE,
 | |
|             ENTITY_EXPENSE_CATEGORY,
 | |
|             ENTITY_VENDOR,
 | |
|             ENTITY_RECURRING_INVOICE,
 | |
|             ENTITY_PAYMENT,
 | |
|             ENTITY_CREDIT,
 | |
|             ENTITY_PROJECT,
 | |
|             ENTITY_PROPOSAL,
 | |
|         ];
 | |
| 
 | |
|         foreach ($entityTypes as $entityType) {
 | |
|             $features[] = [
 | |
|                 "new_{$entityType}",
 | |
|                 Utils::pluralizeEntityType($entityType) . '/create',
 | |
|             ];
 | |
|             $features[] = [
 | |
|                 'list_' . Utils::pluralizeEntityType($entityType),
 | |
|                 Utils::pluralizeEntityType($entityType),
 | |
|             ];
 | |
|         }
 | |
| 
 | |
|         $features = array_merge($features, [
 | |
|             ['dashboard', '/dashboard'],
 | |
|             ['reports', '/reports'],
 | |
|             ['calendar', '/calendar'],
 | |
|             ['kanban', '/tasks/kanban'],
 | |
|             ['customize_design', '/settings/customize_design'],
 | |
|             ['new_tax_rate', '/tax_rates/create'],
 | |
|             ['new_product', '/products/create'],
 | |
|             ['new_user', '/users/create'],
 | |
|             ['custom_fields', '/settings/invoice_settings'],
 | |
|             ['invoice_number', '/settings/invoice_settings'],
 | |
|             ['buy_now_buttons', '/settings/client_portal#buy_now'],
 | |
|             ['invoice_fields', '/settings/invoice_design#invoice_fields'],
 | |
|         ]);
 | |
| 
 | |
|         $settings = array_merge(Account::$basicSettings, Account::$advancedSettings);
 | |
| 
 | |
|         if (! Utils::isNinjaProd()) {
 | |
|             $settings[] = ACCOUNT_SYSTEM_SETTINGS;
 | |
|         }
 | |
| 
 | |
|         foreach ($settings as $setting) {
 | |
|             $features[] = [
 | |
|                 $setting,
 | |
|                 "/settings/{$setting}",
 | |
|             ];
 | |
|         }
 | |
| 
 | |
|         foreach ($features as $feature) {
 | |
|             $data[] = [
 | |
|                 'value' => trans('texts.' . $feature[0]),
 | |
|                 'tokens' => trans('texts.' . $feature[0]),
 | |
|                 'url' => URL::to($feature[1]),
 | |
|             ];
 | |
|         }
 | |
| 
 | |
|         return $data;
 | |
|     }
 | |
| 
 | |
|     public function enablePlan($plan, $credit = 0)
 | |
|     {
 | |
|         $account = Auth::user()->account;
 | |
|         $client = $this->getNinjaClient($account);
 | |
|         $invitation = $this->createNinjaInvoice($client, $account, $plan, $credit);
 | |
| 
 | |
|         return $invitation;
 | |
|     }
 | |
| 
 | |
|     public function createNinjaCredit($client, $amount)
 | |
|     {
 | |
|         $account = $this->getNinjaAccount();
 | |
| 
 | |
|         $lastCredit = Credit::withTrashed()->whereAccountId($account->id)->orderBy('public_id', 'DESC')->first();
 | |
|         $publicId = $lastCredit ? ($lastCredit->public_id + 1) : 1;
 | |
| 
 | |
|         $credit = new Credit();
 | |
|         $credit->public_id = $publicId;
 | |
|         $credit->account_id = $account->id;
 | |
|         $credit->user_id = $account->users()->first()->id;
 | |
|         $credit->client_id = $client->id;
 | |
|         $credit->amount = $amount;
 | |
|         $credit->save();
 | |
| 
 | |
|         return $credit;
 | |
|     }
 | |
| 
 | |
|     public function createNinjaInvoice($client, $clientAccount, $plan, $credit = 0)
 | |
|     {
 | |
|         $term = $plan['term'];
 | |
|         $plan_cost = $plan['price'];
 | |
|         $num_users = $plan['num_users'];
 | |
|         $plan = $plan['plan'];
 | |
| 
 | |
|         if ($credit < 0) {
 | |
|             $credit = 0;
 | |
|         }
 | |
| 
 | |
|         $account = $this->getNinjaAccount();
 | |
|         $lastInvoice = Invoice::withTrashed()->whereAccountId($account->id)->orderBy('public_id', 'DESC')->first();
 | |
|         $renewalDate = $clientAccount->getRenewalDate();
 | |
|         $publicId = $lastInvoice ? ($lastInvoice->public_id + 1) : 1;
 | |
| 
 | |
|         $invoice = new Invoice();
 | |
|         $invoice->is_public = true;
 | |
|         $invoice->account_id = $account->id;
 | |
|         $invoice->user_id = $account->users()->first()->id;
 | |
|         $invoice->public_id = $publicId;
 | |
|         $invoice->client_id = $client->id;
 | |
|         $invoice->invoice_number = $account->getNextNumber($invoice);
 | |
|         $invoice->invoice_date = $renewalDate->format('Y-m-d');
 | |
|         $invoice->amount = $invoice->balance = $plan_cost - $credit;
 | |
|         $invoice->invoice_type_id = INVOICE_TYPE_STANDARD;
 | |
| 
 | |
|         // check for promo/discount
 | |
|         $clientCompany = $clientAccount->company;
 | |
|         if ($clientCompany->hasActivePromo() || $clientCompany->hasActiveDiscount($renewalDate)) {
 | |
|             $discount = $invoice->amount * $clientCompany->discount;
 | |
|             $invoice->discount = $clientCompany->discount * 100;
 | |
|             $invoice->amount -= $discount;
 | |
|             $invoice->balance -= $discount;
 | |
|         }
 | |
| 
 | |
|         $invoice->save();
 | |
| 
 | |
|         if ($credit) {
 | |
|             $credit_item = InvoiceItem::createNew($invoice);
 | |
|             $credit_item->qty = 1;
 | |
|             $credit_item->cost = -$credit;
 | |
|             $credit_item->notes = trans('texts.plan_credit_description');
 | |
|             $credit_item->product_key = trans('texts.plan_credit_product');
 | |
|             $invoice->invoice_items()->save($credit_item);
 | |
|         }
 | |
| 
 | |
|         $item = InvoiceItem::createNew($invoice);
 | |
|         $item->qty = 1;
 | |
|         $item->cost = $plan_cost;
 | |
|         $item->notes = trans("texts.{$plan}_plan_{$term}_description");
 | |
| 
 | |
|         if ($plan == PLAN_ENTERPRISE) {
 | |
|             $min = Utils::getMinNumUsers($num_users);
 | |
|             $item->notes .= "\n\n###" . trans('texts.min_to_max_users', ['min' => $min, 'max' => $num_users]);
 | |
|         }
 | |
| 
 | |
|         // Don't change this without updating the regex in PaymentService->createPayment()
 | |
|         $item->product_key = 'Plan - '.ucfirst($plan).' ('.ucfirst($term).')';
 | |
|         $invoice->invoice_items()->save($item);
 | |
| 
 | |
|         $invitation = Invitation::createNew($invoice);
 | |
|         $invitation->invoice_id = $invoice->id;
 | |
|         $invitation->contact_id = $client->contacts()->first()->id;
 | |
|         $invitation->invitation_key = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|         $invitation->save();
 | |
| 
 | |
|         return $invitation;
 | |
|     }
 | |
| 
 | |
|     public function getNinjaAccount()
 | |
|     {
 | |
|         $account = Account::where('account_key', 'LIKE', substr(NINJA_ACCOUNT_KEY, 0, 30) . '%')->orderBy('id')->first();
 | |
| 
 | |
|         if ($account) {
 | |
|             return $account;
 | |
|         } else {
 | |
|             $company = new Company();
 | |
|             $company->save();
 | |
| 
 | |
|             $account = new Account();
 | |
|             $account->name = 'Invoice Ninja';
 | |
|             $account->work_email = 'contact@invoiceninja.com';
 | |
|             $account->work_phone = '(800) 763-1948';
 | |
|             $account->account_key = NINJA_ACCOUNT_KEY;
 | |
|             $account->company_id = $company->id;
 | |
|             $account->save();
 | |
| 
 | |
|             $emailSettings = new AccountEmailSettings();
 | |
|             $account->account_email_settings()->save($emailSettings);
 | |
| 
 | |
|             $user = new User();
 | |
|             $user->registered = true;
 | |
|             $user->confirmed = true;
 | |
|             $user->email = NINJA_ACCOUNT_EMAIL;
 | |
|             $user->username = NINJA_ACCOUNT_EMAIL;
 | |
|             $user->password = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|             $user->first_name = 'Invoice';
 | |
|             $user->last_name = 'Ninja';
 | |
|             $user->notify_sent = true;
 | |
|             $user->notify_paid = true;
 | |
|             $account->users()->save($user);
 | |
| 
 | |
|             if ($config = env(NINJA_GATEWAY_CONFIG)) {
 | |
|                 $accountGateway = new AccountGateway();
 | |
|                 $accountGateway->user_id = $user->id;
 | |
|                 $accountGateway->gateway_id = NINJA_GATEWAY_ID;
 | |
|                 $accountGateway->public_id = 1;
 | |
|                 $accountGateway->setConfig(json_decode($config));
 | |
|                 $account->account_gateways()->save($accountGateway);
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         return $account;
 | |
|     }
 | |
| 
 | |
|     public function getNinjaClient($account)
 | |
|     {
 | |
|         $account->load('users');
 | |
|         $ninjaAccount = $this->getNinjaAccount();
 | |
|         $ninjaUser = $ninjaAccount->getPrimaryUser();
 | |
|         $client = Client::whereAccountId($ninjaAccount->id)
 | |
|                     ->wherePublicId($account->id)
 | |
|                     ->first();
 | |
| 
 | |
|         if (! $client) {
 | |
|             $client = new Client();
 | |
|             $client->public_id = $account->id;
 | |
|             $client->account_id = $ninjaAccount->id;
 | |
|             $client->user_id = $ninjaUser->id;
 | |
|             $client->currency_id = 1;
 | |
|             foreach (['name', 'address1', 'address2', 'city', 'state', 'postal_code', 'country_id', 'work_phone', 'language_id', 'vat_number'] as $field) {
 | |
|                 $client->$field = $account->$field;
 | |
|             }
 | |
|             $client->save();
 | |
|             $contact = new Contact();
 | |
|             $contact->user_id = $ninjaUser->id;
 | |
|             $contact->account_id = $ninjaAccount->id;
 | |
|             $contact->public_id = $account->id;
 | |
|             $contact->contact_key = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|             $contact->is_primary = true;
 | |
|             foreach (['first_name', 'last_name', 'email', 'phone'] as $field) {
 | |
|                 $contact->$field = $account->users()->first()->$field;
 | |
|             }
 | |
|             $client->contacts()->save($contact);
 | |
|         }
 | |
| 
 | |
|         return $client;
 | |
|     }
 | |
| 
 | |
|     public function findByKey($key)
 | |
|     {
 | |
|         $account = Account::whereAccountKey($key)
 | |
|                     ->with('clients.invoices.invoice_items', 'clients.contacts')
 | |
|                     ->firstOrFail();
 | |
| 
 | |
|         return $account;
 | |
|     }
 | |
| 
 | |
|     public function unlinkUserFromOauth($user)
 | |
|     {
 | |
|         $user->oauth_provider_id = null;
 | |
|         $user->oauth_user_id = null;
 | |
|         $user->save();
 | |
|     }
 | |
| 
 | |
|     public function updateUserFromOauth($user, $firstName, $lastName, $email, $providerId, $oauthUserId)
 | |
|     {
 | |
|         if (! LookupUser::validateField('oauth_user_key', $providerId . '-' . $oauthUserId)) {
 | |
|             return trans('texts.oauth_taken');
 | |
|         }
 | |
| 
 | |
|         // TODO remove once multi-db is enabled
 | |
|         if (User::whereOauthUserId($oauthUserId)->count() > 0) {
 | |
|             return trans('texts.oauth_taken');
 | |
|         }
 | |
| 
 | |
|         if (! $user->registered) {
 | |
|             $rules = ['email' => 'email|required|unique:users,email,'.$user->id.',id'];
 | |
|             $validator = Validator::make(['email' => $email], $rules);
 | |
| 
 | |
|             if ($validator->fails()) {
 | |
|                 $messages = $validator->messages();
 | |
|                 return $messages->first('email');
 | |
|             }
 | |
| 
 | |
|             if (! LookupUser::validateField('email', $email, $user)) {
 | |
|                 return trans('texts.email_taken');
 | |
|             }
 | |
| 
 | |
|             $user->email = $email;
 | |
|             $user->first_name = $firstName;
 | |
|             $user->last_name = $lastName;
 | |
|             $user->registered = true;
 | |
| 
 | |
|             $user->account->startTrial(PLAN_PRO);
 | |
|         }
 | |
| 
 | |
|         $user->oauth_provider_id = $providerId;
 | |
|         $user->oauth_user_id = $oauthUserId;
 | |
|         $user->save();
 | |
| 
 | |
|         return true;
 | |
|     }
 | |
| 
 | |
|     public function registerNinjaUser($user)
 | |
|     {
 | |
|         if (! $user || $user->email == TEST_USERNAME) {
 | |
|             return false;
 | |
|         }
 | |
| 
 | |
|         $url = (Utils::isNinjaDev() ? SITE_URL : NINJA_APP_URL) . '/signup/register';
 | |
|         $data = '';
 | |
|         $fields = [
 | |
|             'first_name' => urlencode($user->first_name),
 | |
|             'last_name' => urlencode($user->last_name),
 | |
|             'email' => urlencode($user->email),
 | |
|         ];
 | |
| 
 | |
|         foreach ($fields as $key => $value) {
 | |
|             $data .= $key.'='.$value.'&';
 | |
|         }
 | |
|         rtrim($data, '&');
 | |
| 
 | |
|         $ch = curl_init();
 | |
|         curl_setopt($ch, CURLOPT_URL, $url);
 | |
|         curl_setopt($ch, CURLOPT_POST, count($fields));
 | |
|         curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
 | |
|         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
 | |
|         curl_exec($ch);
 | |
|         curl_close($ch);
 | |
|     }
 | |
| 
 | |
|     public function findUserByOauth($providerId, $oauthUserId)
 | |
|     {
 | |
|         return User::where('oauth_user_id', $oauthUserId)
 | |
|                     ->where('oauth_provider_id', $providerId)
 | |
|                     ->first();
 | |
|     }
 | |
| 
 | |
|     public function findUsers($user, $with = null)
 | |
|     {
 | |
|         $accounts = $this->findUserAccounts($user->id);
 | |
| 
 | |
|         if ($accounts) {
 | |
|             return $this->getUserAccounts($accounts, $with);
 | |
|         } else {
 | |
|             return [$user];
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function findUser($user, $accountKey)
 | |
|     {
 | |
|         $users = $this->findUsers($user, 'account');
 | |
| 
 | |
|         foreach ($users as $user) {
 | |
|             if ($accountKey && hash_equals($user->account->account_key, $accountKey)) {
 | |
|                 return $user;
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         return false;
 | |
|     }
 | |
| 
 | |
|     public function findUserAccounts($userId1, $userId2 = false)
 | |
|     {
 | |
|         if (! Schema::hasTable('user_accounts')) {
 | |
|             return false;
 | |
|         }
 | |
| 
 | |
|         $query = UserAccount::where('user_id1', '=', $userId1)
 | |
|                                 ->orWhere('user_id2', '=', $userId1)
 | |
|                                 ->orWhere('user_id3', '=', $userId1)
 | |
|                                 ->orWhere('user_id4', '=', $userId1)
 | |
|                                 ->orWhere('user_id5', '=', $userId1);
 | |
| 
 | |
|         if ($userId2) {
 | |
|             $query->orWhere('user_id1', '=', $userId2)
 | |
|                     ->orWhere('user_id2', '=', $userId2)
 | |
|                     ->orWhere('user_id3', '=', $userId2)
 | |
|                     ->orWhere('user_id4', '=', $userId2)
 | |
|                     ->orWhere('user_id5', '=', $userId2);
 | |
|         }
 | |
| 
 | |
|         return $query->first(['id', 'user_id1', 'user_id2', 'user_id3', 'user_id4', 'user_id5']);
 | |
|     }
 | |
| 
 | |
|     public function getUserAccounts($record, $with = null)
 | |
|     {
 | |
|         if (! $record) {
 | |
|             return false;
 | |
|         }
 | |
| 
 | |
|         $userIds = [];
 | |
|         for ($i = 1; $i <= 5; $i++) {
 | |
|             $field = "user_id$i";
 | |
|             if ($record->$field) {
 | |
|                 $userIds[] = $record->$field;
 | |
|             }
 | |
|         }
 | |
| 
 | |
|         $users = User::with('account')
 | |
|                     ->whereIn('id', $userIds);
 | |
| 
 | |
|         if ($with) {
 | |
|             $users->with($with);
 | |
|         }
 | |
| 
 | |
|         return $users->get();
 | |
|     }
 | |
| 
 | |
|     public function prepareUsersData($record)
 | |
|     {
 | |
|         if (! $record) {
 | |
|             return false;
 | |
|         }
 | |
| 
 | |
|         $users = $this->getUserAccounts($record);
 | |
| 
 | |
|         $data = [];
 | |
|         foreach ($users as $user) {
 | |
|             $item = new stdClass();
 | |
|             $item->id = $record->id;
 | |
|             $item->user_id = $user->id;
 | |
|             $item->public_id = $user->public_id;
 | |
|             $item->user_name = $user->getDisplayName();
 | |
|             $item->account_id = $user->account->id;
 | |
|             $item->account_name = $user->account->getDisplayName();
 | |
|             $item->logo_url = $user->account->hasLogo() ? $user->account->getLogoUrl() : null;
 | |
|             $data[] = $item;
 | |
|         }
 | |
| 
 | |
|         return $data;
 | |
|     }
 | |
| 
 | |
|     public function loadAccounts($userId)
 | |
|     {
 | |
|         $record = self::findUserAccounts($userId);
 | |
| 
 | |
|         return self::prepareUsersData($record);
 | |
|     }
 | |
| 
 | |
|     public function associateAccounts($userId1, $userId2)
 | |
|     {
 | |
|         $record = self::findUserAccounts($userId1, $userId2);
 | |
| 
 | |
|         if ($record) {
 | |
|             foreach ([$userId1, $userId2] as $userId) {
 | |
|                 if (! $record->hasUserId($userId)) {
 | |
|                     $record->setUserId($userId);
 | |
|                 }
 | |
|             }
 | |
|         } else {
 | |
|             $record = new UserAccount();
 | |
|             $record->user_id1 = $userId1;
 | |
|             $record->user_id2 = $userId2;
 | |
|         }
 | |
| 
 | |
|         $record->save();
 | |
| 
 | |
|         return $this->loadAccounts($userId1);
 | |
|     }
 | |
| 
 | |
|     public function unlinkAccount($account)
 | |
|     {
 | |
|         foreach ($account->users as $user) {
 | |
|             if ($userAccount = self::findUserAccounts($user->id)) {
 | |
|                 $userAccount->removeUserId($user->id);
 | |
|                 $userAccount->save();
 | |
|             }
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function unlinkUser($userAccountId, $userId)
 | |
|     {
 | |
|         $userAccount = UserAccount::whereId($userAccountId)->first();
 | |
|         if ($userAccount->hasUserId($userId)) {
 | |
|             $userAccount->removeUserId($userId);
 | |
|             $userAccount->save();
 | |
|         }
 | |
| 
 | |
|         $user = User::whereId($userId)->first();
 | |
| 
 | |
|         if (! $user->public_id && $user->account->hasMultipleAccounts()) {
 | |
|             $company = Company::create();
 | |
|             $company->save();
 | |
|             $user->account->company_id = $company->id;
 | |
|             $user->account->save();
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function findWithReminders()
 | |
|     {
 | |
|         return Account::whereRaw('enable_reminder1 = 1 OR enable_reminder2 = 1 OR enable_reminder3 = 1 OR enable_reminder4 = 1')->get();
 | |
|     }
 | |
| 
 | |
|     public function findWithFees()
 | |
|     {
 | |
|         return Account::whereHas('account_email_settings', function($query) {
 | |
|             $query->where('late_fee1_amount', '>', 0)
 | |
|                     ->orWhere('late_fee1_percent', '>', 0)
 | |
|                     ->orWhere('late_fee2_amount', '>', 0)
 | |
|                     ->orWhere('late_fee2_percent', '>', 0)
 | |
|                     ->orWhere('late_fee3_amount', '>', 0)
 | |
|                     ->orWhere('late_fee3_percent', '>', 0);
 | |
|         })->get();
 | |
|     }
 | |
| 
 | |
|     public function createTokens($user, $name)
 | |
|     {
 | |
|         $name = trim($name) ?: 'TOKEN';
 | |
|         $users = $this->findUsers($user);
 | |
| 
 | |
|         foreach ($users as $user) {
 | |
|             if ($token = AccountToken::whereUserId($user->id)->whereName($name)->first()) {
 | |
|                 continue;
 | |
|             }
 | |
| 
 | |
|             $token = AccountToken::createNew($user);
 | |
|             $token->name = $name;
 | |
|             $token->token = strtolower(str_random(RANDOM_KEY_LENGTH));
 | |
|             $token->save();
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     public function getUserAccountId($account)
 | |
|     {
 | |
|         $user = $account->users()->first();
 | |
|         $userAccount = $this->findUserAccounts($user->id);
 | |
| 
 | |
|         return $userAccount ? $userAccount->id : false;
 | |
|     }
 | |
| 
 | |
|     public function save($data, $account)
 | |
|     {
 | |
|         $account->fill($data);
 | |
|         $account->save();
 | |
|     }
 | |
| }
 |