firefly-iii/app/Rules/BelongsUser.php

248 lines
7.0 KiB
PHP
Raw Normal View History

<?php
2018-02-23 09:59:21 -06:00
/**
* BelongsUser.php
2020-02-16 06:56:25 -06:00
* Copyright (c) 2019 james@firefly-iii.org
2018-02-23 09:59:21 -06:00
*
* This file is part of Firefly III (https://github.com/firefly-iii).
2018-02-23 09:59:21 -06:00
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
2018-02-23 09:59:21 -06:00
*
* This program is distributed in the hope that it will be useful,
2018-02-23 09:59:21 -06:00
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
2018-02-23 09:59:21 -06:00
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <https://www.gnu.org/licenses/>.
2018-02-23 09:59:21 -06:00
*/
2018-05-11 03:08:34 -05:00
declare(strict_types=1);
namespace FireflyIII\Rules;
use Closure;
use FireflyIII\Exceptions\FireflyException;
use FireflyIII\Models\Account;
use FireflyIII\Models\Bill;
use FireflyIII\Models\Budget;
use FireflyIII\Models\Category;
use FireflyIII\Models\PiggyBank;
use FireflyIII\Models\TransactionJournal;
use Illuminate\Contracts\Validation\ValidationRule;
2023-04-01 00:04:42 -05:00
use Illuminate\Support\Facades\Log;
/**
* Class BelongsUser
*/
class BelongsUser implements ValidationRule
{
/**
* @inheritDoc
*/
public function validate(string $attribute, mixed $value, Closure $fail): void
{
$attribute = $this->parseAttribute($attribute);
if (!auth()->check()) {
$fail('validation.belongs_user')->translate();
return;
}
2022-12-29 12:42:26 -06:00
$attribute = (string)$attribute;
2019-08-08 22:58:52 -05:00
Log::debug(sprintf('Going to validate %s', $attribute));
2021-09-18 03:20:19 -05:00
$result = match ($attribute) {
2023-07-15 09:02:42 -05:00
'piggy_bank_id' => $this->validatePiggyBankId((int)$value),
'piggy_bank_name' => $this->validatePiggyBankName($value),
'bill_id' => $this->validateBillId((int)$value),
'transaction_journal_id' => $this->validateJournalId((int)$value),
'bill_name' => $this->validateBillName($value),
'budget_id' => $this->validateBudgetId((int)$value),
'category_id' => $this->validateCategoryId((int)$value),
'budget_name' => $this->validateBudgetName($value),
2022-12-29 12:42:26 -06:00
'source_id', 'destination_id' => $this->validateAccountId((int)$value),
default => throw new FireflyException(sprintf('Rule BelongsUser cannot handle "%s"', $attribute)),
2021-09-18 03:20:19 -05:00
};
if (false === $result) {
$fail('validation.belongs_user')->translate();
}
}
/**
2023-06-21 05:34:58 -05:00
* @param string $attribute
*
* @return string
*/
private function parseAttribute(string $attribute): string
{
$parts = explode('.', $attribute);
if (1 === count($parts)) {
return $attribute;
}
if (3 === count($parts)) {
return $parts[2];
}
return $attribute;
}
/**
* @param int $value
*
* @return bool
*/
private function validatePiggyBankId(int $value): bool
{
$count = PiggyBank::leftJoin('accounts', 'accounts.id', '=', 'piggy_banks.account_id')
->where('piggy_banks.id', '=', $value)
->where('accounts.user_id', '=', auth()->user()->id)->count();
return 1 === $count;
}
/**
* @param string $value
*
* @return bool
*/
private function validatePiggyBankName(string $value): bool
{
$count = $this->countField(PiggyBank::class, 'name', $value);
return 1 === $count;
}
/**
* @param string $class
* @param string $field
* @param string $value
*
* @return int
2018-07-25 23:10:17 -05:00
*
*/
protected function countField(string $class, string $field, string $value): int
{
2019-08-08 22:58:52 -05:00
$value = trim($value);
2018-07-25 23:10:17 -05:00
$objects = [];
// get all objects belonging to user:
2018-07-25 23:10:17 -05:00
if (PiggyBank::class === $class) {
$objects = PiggyBank::leftJoin('accounts', 'accounts.id', '=', 'piggy_banks.account_id')
->where('accounts.user_id', '=', auth()->user()->id)->get(['piggy_banks.*']);
}
if (PiggyBank::class !== $class) {
$objects = $class::where('user_id', '=', auth()->user()->id)->get();
}
$count = 0;
foreach ($objects as $object) {
2022-12-29 12:42:26 -06:00
$objectValue = trim((string)$object->$field);
2019-08-08 22:58:52 -05:00
Log::debug(sprintf('Comparing object "%s" with value "%s"', $objectValue, $value));
if ($objectValue === $value) {
$count++;
2019-08-08 22:58:52 -05:00
Log::debug(sprintf('Hit! Count is now %d', $count));
}
}
return $count;
}
2023-05-29 06:56:55 -05:00
/**
2023-06-21 05:34:58 -05:00
* @param int $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
2023-06-21 05:34:58 -05:00
private function validateBillId(int $value): bool
2018-07-25 23:10:17 -05:00
{
2021-04-04 01:31:15 -05:00
if (0 === $value) {
return true;
}
2023-06-21 05:34:58 -05:00
$count = Bill::where('id', '=', $value)->where('user_id', '=', auth()->user()->id)->count();
2018-07-25 23:10:17 -05:00
return 1 === $count;
}
/**
2023-06-21 05:34:58 -05:00
* @param int $value
*
* @return bool
*/
2023-06-21 05:34:58 -05:00
private function validateJournalId(int $value): bool
{
if (0 === $value) {
return true;
}
2023-06-21 05:34:58 -05:00
$count = TransactionJournal::where('id', '=', $value)->where('user_id', '=', auth()->user()->id)->count();
return 1 === $count;
}
2018-07-25 23:10:17 -05:00
/**
2023-06-21 05:34:58 -05:00
* @param string $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
private function validateBillName(string $value): bool
{
$count = $this->countField(Bill::class, 'name', $value);
2019-08-08 22:58:52 -05:00
Log::debug(sprintf('Result of countField for bill name "%s" is %d', $value, $count));
2018-07-25 23:10:17 -05:00
return 1 === $count;
}
/**
2023-06-21 05:34:58 -05:00
* @param int $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
private function validateBudgetId(int $value): bool
{
2019-09-01 07:49:26 -05:00
if (0 === $value) {
return true;
}
2018-07-25 23:10:17 -05:00
$count = Budget::where('id', '=', $value)->where('user_id', '=', auth()->user()->id)->count();
return 1 === $count;
}
/**
2023-06-21 05:34:58 -05:00
* @param int $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
2023-06-21 05:34:58 -05:00
private function validateCategoryId(int $value): bool
2018-07-25 23:10:17 -05:00
{
2023-06-21 05:34:58 -05:00
$count = Category::where('id', '=', $value)->where('user_id', '=', auth()->user()->id)->count();
2018-07-25 23:10:17 -05:00
return 1 === $count;
}
/**
2023-06-21 05:34:58 -05:00
* @param string $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
2023-06-21 05:34:58 -05:00
private function validateBudgetName(string $value): bool
2018-07-25 23:10:17 -05:00
{
2023-06-21 05:34:58 -05:00
$count = $this->countField(Budget::class, 'name', $value);
2018-07-25 23:10:17 -05:00
return 1 === $count;
}
/**
2023-06-21 05:34:58 -05:00
* @param int $value
2018-07-25 23:10:17 -05:00
*
* @return bool
*/
2023-06-21 05:34:58 -05:00
private function validateAccountId(int $value): bool
2018-07-25 23:10:17 -05:00
{
2021-03-21 03:15:40 -05:00
if (0 === $value) {
2023-06-21 05:34:58 -05:00
// its ok to submit 0. other checks will fail.
2021-03-21 03:15:40 -05:00
return true;
}
2023-06-21 05:34:58 -05:00
$count = Account::where('id', '=', $value)->where('user_id', '=', auth()->user()->id)->count();
2018-07-25 23:10:17 -05:00
return 1 === $count;
}
}