2016-03-12 07:18:28 -06:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* UserRepository.php
|
2017-10-21 01:40:00 -05:00
|
|
|
* Copyright (c) 2017 thegrumpydictator@gmail.com
|
2016-03-12 07:18:28 -06:00
|
|
|
*
|
2017-10-21 01:40:00 -05:00
|
|
|
* This file is part of Firefly III.
|
2016-10-04 23:52:15 -05:00
|
|
|
*
|
2017-10-21 01:40:00 -05:00
|
|
|
* Firefly III is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* Firefly III is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
2017-12-17 07:44:05 -06:00
|
|
|
* along with Firefly III. If not, see <http://www.gnu.org/licenses/>.
|
2016-03-12 07:18:28 -06:00
|
|
|
*/
|
2017-03-24 09:01:53 -05:00
|
|
|
declare(strict_types=1);
|
2016-05-20 05:41:23 -05:00
|
|
|
|
2016-03-12 07:18:28 -06:00
|
|
|
namespace FireflyIII\Repositories\User;
|
|
|
|
|
2016-10-15 00:11:53 -05:00
|
|
|
use FireflyIII\Models\BudgetLimit;
|
2016-03-12 07:18:28 -06:00
|
|
|
use FireflyIII\Models\Role;
|
|
|
|
use FireflyIII\User;
|
2016-04-03 00:07:17 -05:00
|
|
|
use Illuminate\Support\Collection;
|
2016-12-12 08:24:47 -06:00
|
|
|
use Log;
|
2016-10-15 00:11:53 -05:00
|
|
|
use Preferences;
|
2016-03-12 07:18:28 -06:00
|
|
|
|
|
|
|
/**
|
2017-11-15 05:25:49 -06:00
|
|
|
* Class UserRepository.
|
2016-03-12 07:18:28 -06:00
|
|
|
*/
|
|
|
|
class UserRepository implements UserRepositoryInterface
|
|
|
|
{
|
2016-04-03 00:07:17 -05:00
|
|
|
/**
|
|
|
|
* @return Collection
|
|
|
|
*/
|
|
|
|
public function all(): Collection
|
|
|
|
{
|
|
|
|
return User::orderBy('id', 'DESC')->get(['users.*']);
|
|
|
|
}
|
|
|
|
|
2016-03-12 07:18:28 -06:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param string $role
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function attachRole(User $user, string $role): bool
|
|
|
|
{
|
|
|
|
$admin = Role::where('name', 'owner')->first();
|
|
|
|
$user->attachRole($admin);
|
2016-03-28 12:50:24 -05:00
|
|
|
$user->save();
|
2016-03-12 07:18:28 -06:00
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2017-09-26 01:52:16 -05:00
|
|
|
/**
|
2017-09-26 02:15:21 -05:00
|
|
|
* This updates the users email address and records some things so it can be confirmed or undone later.
|
|
|
|
* The user is blocked until the change is confirmed.
|
|
|
|
*
|
2017-09-26 01:52:16 -05:00
|
|
|
* @param User $user
|
|
|
|
* @param string $newEmail
|
|
|
|
*
|
2017-09-26 02:15:21 -05:00
|
|
|
* @see updateEmail
|
|
|
|
*
|
2017-09-26 01:52:16 -05:00
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function changeEmail(User $user, string $newEmail): bool
|
|
|
|
{
|
|
|
|
$oldEmail = $user->email;
|
|
|
|
|
|
|
|
// save old email as pref
|
|
|
|
Preferences::setForUser($user, 'previous_email_latest', $oldEmail);
|
|
|
|
Preferences::setForUser($user, 'previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);
|
|
|
|
|
|
|
|
// set undo and confirm token:
|
|
|
|
Preferences::setForUser($user, 'email_change_undo_token', strval(bin2hex(random_bytes(16))));
|
|
|
|
Preferences::setForUser($user, 'email_change_confirm_token', strval(bin2hex(random_bytes(16))));
|
|
|
|
// update user
|
|
|
|
|
|
|
|
$user->email = $newEmail;
|
|
|
|
$user->blocked = 1;
|
|
|
|
$user->blocked_code = 'email_changed';
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2016-12-30 06:47:23 -06:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param string $password
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function changePassword(User $user, string $password): bool
|
|
|
|
{
|
|
|
|
$user->password = bcrypt($password);
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2017-03-24 09:01:53 -05:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param bool $isBlocked
|
|
|
|
* @param string $code
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function changeStatus(User $user, bool $isBlocked, string $code): bool
|
|
|
|
{
|
|
|
|
// change blocked status and code:
|
|
|
|
$user->blocked = $isBlocked;
|
|
|
|
$user->blocked_code = $code;
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2016-03-12 07:18:28 -06:00
|
|
|
/**
|
|
|
|
* @return int
|
|
|
|
*/
|
|
|
|
public function count(): int
|
|
|
|
{
|
2016-04-26 01:09:10 -05:00
|
|
|
return $this->all()->count();
|
2016-03-12 07:18:28 -06:00
|
|
|
}
|
2016-10-15 00:11:53 -05:00
|
|
|
|
2016-10-20 12:10:43 -05:00
|
|
|
/**
|
2016-12-12 08:24:47 -06:00
|
|
|
* @param User $user
|
|
|
|
*
|
|
|
|
* @return bool
|
2017-12-22 11:32:43 -06:00
|
|
|
*
|
2017-12-17 07:30:53 -06:00
|
|
|
* @throws \Exception
|
2016-12-12 08:24:47 -06:00
|
|
|
*/
|
|
|
|
public function destroy(User $user): bool
|
|
|
|
{
|
|
|
|
Log::debug(sprintf('Calling delete() on user %d', $user->id));
|
|
|
|
$user->delete();
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2016-10-20 12:10:43 -05:00
|
|
|
* @param int $userId
|
|
|
|
*
|
|
|
|
* @return User
|
|
|
|
*/
|
|
|
|
public function find(int $userId): User
|
|
|
|
{
|
|
|
|
$user = User::find($userId);
|
2017-11-15 05:25:49 -06:00
|
|
|
if (null !== $user) {
|
2016-10-20 12:10:43 -05:00
|
|
|
return $user;
|
|
|
|
}
|
|
|
|
|
|
|
|
return new User;
|
|
|
|
}
|
|
|
|
|
2017-09-26 01:52:16 -05:00
|
|
|
/**
|
|
|
|
* @param string $email
|
|
|
|
*
|
|
|
|
* @return User|null
|
|
|
|
*/
|
|
|
|
public function findByEmail(string $email): ?User
|
|
|
|
{
|
|
|
|
return User::where('email', $email)->first();
|
|
|
|
}
|
|
|
|
|
2016-10-15 00:11:53 -05:00
|
|
|
/**
|
|
|
|
* Return basic user information.
|
|
|
|
*
|
|
|
|
* @param User $user
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
|
|
|
public function getUserData(User $user): array
|
|
|
|
{
|
|
|
|
$return = [];
|
|
|
|
|
|
|
|
// two factor:
|
|
|
|
$is2faEnabled = Preferences::getForUser($user, 'twoFactorAuthEnabled', false)->data;
|
2017-11-15 05:25:49 -06:00
|
|
|
$has2faSecret = null !== Preferences::getForUser($user, 'twoFactorAuthSecret');
|
2016-10-15 00:11:53 -05:00
|
|
|
$return['has_2fa'] = false;
|
|
|
|
if ($is2faEnabled && $has2faSecret) {
|
|
|
|
$return['has_2fa'] = true;
|
|
|
|
}
|
|
|
|
|
|
|
|
$return['is_admin'] = $user->hasRole('owner');
|
2017-11-15 05:25:49 -06:00
|
|
|
$return['blocked'] = 1 === intval($user->blocked);
|
2016-10-15 00:11:53 -05:00
|
|
|
$return['blocked_code'] = $user->blocked_code;
|
|
|
|
$return['accounts'] = $user->accounts()->count();
|
|
|
|
$return['journals'] = $user->transactionJournals()->count();
|
|
|
|
$return['transactions'] = $user->transactions()->count();
|
|
|
|
$return['attachments'] = $user->attachments()->count();
|
|
|
|
$return['attachments_size'] = $user->attachments()->sum('size');
|
|
|
|
$return['bills'] = $user->bills()->count();
|
|
|
|
$return['categories'] = $user->categories()->count();
|
|
|
|
$return['budgets'] = $user->budgets()->count();
|
2016-11-28 13:38:03 -06:00
|
|
|
$return['budgets_with_limits'] = BudgetLimit::distinct()
|
2016-12-04 11:02:19 -06:00
|
|
|
->leftJoin('budgets', 'budgets.id', '=', 'budget_limits.budget_id')
|
|
|
|
->where('amount', '>', 0)
|
|
|
|
->whereNull('budgets.deleted_at')
|
|
|
|
->where('budgets.user_id', $user->id)->get(['budget_limits.budget_id'])->count();
|
2016-10-15 00:11:53 -05:00
|
|
|
$return['export_jobs'] = $user->exportJobs()->count();
|
|
|
|
$return['export_jobs_success'] = $user->exportJobs()->where('status', 'export_downloaded')->count();
|
|
|
|
$return['import_jobs'] = $user->exportJobs()->count();
|
|
|
|
$return['import_jobs_success'] = $user->exportJobs()->where('status', 'import_complete')->count();
|
|
|
|
$return['rule_groups'] = $user->ruleGroups()->count();
|
|
|
|
$return['rules'] = $user->rules()->count();
|
|
|
|
$return['tags'] = $user->tags()->count();
|
|
|
|
|
|
|
|
return $return;
|
|
|
|
}
|
2017-03-19 11:54:21 -05:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param string $role
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function hasRole(User $user, string $role): bool
|
|
|
|
{
|
|
|
|
return $user->hasRole($role);
|
|
|
|
}
|
2017-09-26 02:15:21 -05:00
|
|
|
|
2017-12-17 07:06:14 -06:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
*/
|
|
|
|
public function unblockUser(User $user): void
|
|
|
|
{
|
|
|
|
$user->blocked = 0;
|
|
|
|
$user->blocked_code = '';
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2017-09-26 02:15:21 -05:00
|
|
|
/**
|
|
|
|
* This updates the users email address. Same as changeEmail just without most logging. This makes sure that the undo/confirm routine can't catch this one.
|
|
|
|
* The user is NOT blocked.
|
|
|
|
*
|
|
|
|
* @param User $user
|
|
|
|
* @param string $newEmail
|
|
|
|
*
|
|
|
|
* @see changeEmail
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function updateEmail(User $user, string $newEmail): bool
|
|
|
|
{
|
|
|
|
$oldEmail = $user->email;
|
|
|
|
|
|
|
|
// save old email as pref
|
|
|
|
Preferences::setForUser($user, 'admin_previous_email_latest', $oldEmail);
|
|
|
|
Preferences::setForUser($user, 'admin_previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);
|
|
|
|
|
|
|
|
$user->email = $newEmail;
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
2016-03-14 14:38:23 -05:00
|
|
|
}
|