firefly-iii/app/Http/Middleware/Sandstorm.php

<?php
/**
 * Sandstorm.php
 * Copyright (c) 2017 thegrumpydictator@gmail.com
 *
 * This file is part of Firefly III.
 *
 * Firefly III is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * Firefly III is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with Firefly III. If not, see <http://www.gnu.org/licenses/>.
 */
declare(strict_types=1);

namespace FireflyIII\Http\Middleware;

use Auth;
use Closure;
use FireflyIII\Exceptions\FireflyException;
use FireflyIII\Repositories\User\UserRepositoryInterface;
use FireflyIII\User;
use Illuminate\Http\Request;
use Log;
use View;

/**
 * Class Sandstorm.
 */
class Sandstorm
{
    /**
     * Detects if is using Sandstorm, and responds by logging the user
     * in and/or creating an account.
     *
     * @param \Illuminate\Http\Request $request
     * @param \Closure                 $next
     * @param string|null              $guard
     *
     * @return mixed
     *
     * @throws FireflyException
     * @SuppressWarnings(PHPMD.CyclomaticComplexity)
     */
    public function handle(Request $request, Closure $next, $guard = null)
    {
        // is in Sandstorm environment?
        $sandstorm = 1 === intval(getenv('SANDSTORM'));
        View::share('SANDSTORM', $sandstorm);
        if (!$sandstorm) {
            return $next($request);
        }

        // we're in sandstorm! is user a guest?
        if (Auth::guard($guard)->guest()) {
            /** @var UserRepositoryInterface $repository */
            $repository = app(UserRepositoryInterface::class);
            $userId     = strval($request->header('X-Sandstorm-User-Id'));
            Log::debug(sprintf('Sandstorm user ID is "%s"', $userId));
            $count = $repository->count();

            // if there already is one user in this instance, we assume this is
            // the "main" user. Firefly's nature does not allow other users to
            // access the same data so we have no choice but to simply login
            // the new user to the same account and just forget about Bob and Alice
            // and any other differences there may be between these users.
            if (1 === $count && strlen($userId) > 0) {
                // login as first user user.
                $user = $repository->first();
                Auth::guard($guard)->login($user);
                View::share('SANDSTORM_ANON', false);

                return $next($request);
            }

            if (1 === $count && 0 === strlen($userId)) {
                // login but indicate anonymous
                $user = User::first();
                Auth::guard($guard)->login($user);
                View::share('SANDSTORM_ANON', true);

                return $next($request);
            }

            if (0 === $count && strlen($userId) > 0) {
                // create new user.
                $email = $userId . '@firefly';
                /** @var User $user */
                $user = $repository->store(
                    [
                        'blocked' => false,
                        'blocked_code' => null,
                        'email'    => $email,
                    ]
                );
                Auth::guard($guard)->login($user);

                // also make the user an admin
                $repository->attachRole($user, 'owner');

                // share value.
                View::share('SANDSTORM_ANON', false);

                return $next($request);
            }

            if (0 === $count && 0 === strlen($userId)) {
                throw new FireflyException('The first visit to a new Firefly III administration cannot be by a guest user.');
            }

            if ($count > 1) {
                throw new FireflyException('Your Firefly III installation has more than one user, which is weird.');
            }
        }
        // if in Sandstorm, user logged in, still must check if user is anon.
        $userId = strval($request->header('X-Sandstorm-User-Id'));
        if (strlen($userId) === 0) {
            View::share('SANDSTORM_ANON', true);

            return $next($request);
        }
        View::share('SANDSTORM_ANON', false);

        return $next($request);
    }
}
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`<?php`
			`/**`
			`* Sandstorm.php`
			`* Copyright (c) 2017 thegrumpydictator@gmail.com`
			`*`
New copyright notice. 2017-10-21 01:40:00 -05:00			`* This file is part of Firefly III.`
			`*`
			`* Firefly III is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* Firefly III is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
Update copyright [skip ci] 2017-12-17 07:44:05 -06:00			`* along with Firefly III. If not, see <http://www.gnu.org/licenses/>.`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`*/`
Apparently this is changed in PHPStorm’s formatting templates so there you go [skip ci]. 2017-04-09 00:44:22 -05:00			`declare(strict_types=1);`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00
			`namespace FireflyIII\Http\Middleware;`

			`use Auth;`
			`use Closure;`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`use FireflyIII\Exceptions\FireflyException;`
			`use FireflyIII\Repositories\User\UserRepositoryInterface;`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`use FireflyIII\User;`
			`use Illuminate\Http\Request;`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`use Log;`
Tell view whether we’re in Sandstorm.IO mode. 2017-02-05 01:27:23 -06:00			`use View;`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00
			`/**`
Code clean up. 2017-11-15 05:25:49 -06:00			`* Class Sandstorm.`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`*/`
			`class Sandstorm`
			`{`
			`/**`
			`* Detects if is using Sandstorm, and responds by logging the user`
			`* in and/or creating an account.`
			`*`
Code clean up. 2017-11-15 05:25:49 -06:00			`* @param \Illuminate\Http\Request $request`
			`* @param \Closure $next`
			`* @param string\|null $guard`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`*`
			`* @return mixed`
Code clean up. 2017-11-15 05:25:49 -06:00			`*`
Various code cleanup. 2017-02-24 22:57:01 -06:00			`* @throws FireflyException`
Some code cleanup. 2017-10-22 13:13:02 -05:00			`* @SuppressWarnings(PHPMD.CyclomaticComplexity)`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`*/`
			`public function handle(Request $request, Closure $next, $guard = null)`
			`{`
			`// is in Sandstorm environment?`
Code clean up. 2017-11-15 05:25:49 -06:00			`$sandstorm = 1 === intval(getenv('SANDSTORM'));`
Tell view whether we’re in Sandstorm.IO mode. 2017-02-05 01:27:23 -06:00			`View::share('SANDSTORM', $sandstorm);`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`if (!$sandstorm) {`
			`return $next($request);`
			`}`

			`// we're in sandstorm! is user a guest?`
			`if (Auth::guard($guard)->guest()) {`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`/** @var UserRepositoryInterface $repository */`
			`$repository = app(UserRepositoryInterface::class);`
			`$userId = strval($request->header('X-Sandstorm-User-Id'));`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`Log::debug(sprintf('Sandstorm user ID is "%s"', $userId));`
			`$count = $repository->count();`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00
			`// if there already is one user in this instance, we assume this is`
			`// the "main" user. Firefly's nature does not allow other users to`
			`// access the same data so we have no choice but to simply login`
			`// the new user to the same account and just forget about Bob and Alice`
			`// and any other differences there may be between these users.`
Code clean up. 2017-11-15 05:25:49 -06:00			`if (1 === $count && strlen($userId) > 0) {`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`// login as first user user.`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`$user = $repository->first();`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`Auth::guard($guard)->login($user);`
			`View::share('SANDSTORM_ANON', false);`
Various code cleanup. 2017-02-24 22:57:01 -06:00
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`return $next($request);`
			`}`

Code clean up. 2017-11-15 05:25:49 -06:00			`if (1 === $count && 0 === strlen($userId)) {`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`// login but indicate anonymous`
Various code cleanup. 2017-02-24 22:57:01 -06:00			`$user = User::first();`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`Auth::guard($guard)->login($user);`
			`View::share('SANDSTORM_ANON', true);`
Various code cleanup. 2017-02-24 22:57:01 -06:00
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`return $next($request);`
			`}`

Code clean up. 2017-11-15 05:25:49 -06:00			`if (0 === $count && strlen($userId) > 0) {`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`// create new user.`
			`$email = $userId . '@firefly';`
Various code cleanup. 2017-02-24 22:57:01 -06:00			`/** @var User $user */`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`$user = $repository->store(`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`[`
Implement user API and first tests. 2018-03-03 01:12:18 -06:00			`'blocked' => false,`
			`'blocked_code' => null,`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`'email' => $email,`
			`]`
			`);`
			`Auth::guard($guard)->login($user);`
Various code cleanup. 2017-02-24 22:57:01 -06:00
Make new Sandstorm user an admin. 2017-10-21 14:51:09 -05:00			`// also make the user an admin`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`$repository->attachRole($user, 'owner');`

			`// share value.`
			`View::share('SANDSTORM_ANON', false);`
Make new Sandstorm user an admin. 2017-10-21 14:51:09 -05:00
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`return $next($request);`
			`}`

Code clean up. 2017-11-15 05:25:49 -06:00			`if (0 === $count && 0 === strlen($userId)) {`
Update various sandstorm files. [skip ci] 2017-02-22 14:27:39 -06:00			`throw new FireflyException('The first visit to a new Firefly III administration cannot be by a guest user.');`
			`}`

			`if ($count > 1) {`
Various code cleanup. 2017-02-24 22:57:01 -06:00			`throw new FireflyException('Your Firefly III installation has more than one user, which is weird.');`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00			`}`
			`}`
Improve testing of middleware. 2017-12-26 10:33:53 -06:00			`// if in Sandstorm, user logged in, still must check if user is anon.`
			`$userId = strval($request->header('X-Sandstorm-User-Id'));`
			`if (strlen($userId) === 0) {`
			`View::share('SANDSTORM_ANON', true);`

			`return $next($request);`
			`}`
			`View::share('SANDSTORM_ANON', false);`
Various new scripts to improve sandstorm.io experience. 2017-02-04 01:42:06 -06:00
			`return $next($request);`
			`}`
			`}`