. */ declare(strict_types=1); namespace FireflyIII\Handlers\Events; use Carbon\Carbon; use Database\Seeders\ExchangeRateSeeder; use Exception; use FireflyIII\Events\ActuallyLoggedIn; use FireflyIII\Events\Admin\InvitationCreated; use FireflyIII\Events\DetectedNewIPAddress; use FireflyIII\Events\RegisteredUser; use FireflyIII\Events\RequestedNewPassword; use FireflyIII\Events\UserChangedEmail; use FireflyIII\Exceptions\FireflyException; use FireflyIII\Mail\ConfirmEmailChangeMail; use FireflyIII\Mail\InvitationMail; use FireflyIII\Mail\UndoEmailChangeMail; use FireflyIII\Models\GroupMembership; use FireflyIII\Models\UserGroup; use FireflyIII\Models\UserRole; use FireflyIII\Notifications\Admin\UserRegistration as AdminRegistrationNotification; use FireflyIII\Notifications\User\UserLogin; use FireflyIII\Notifications\User\UserNewPassword; use FireflyIII\Notifications\User\UserRegistration as UserRegistrationNotification; use FireflyIII\Repositories\User\UserRepositoryInterface; use FireflyIII\Support\Facades\FireflyConfig; use FireflyIII\User; use Illuminate\Auth\Events\Login; use Illuminate\Support\Facades\Log; use Illuminate\Support\Facades\Notification; use Mail; /** * Class UserEventHandler. * * This class responds to any events that have anything to do with the User object. * * The method name reflects what is being done. This is in the present tense. */ class UserEventHandler { /** * This method will bestow upon a user the "owner" role if he is the first user in the system. * * @param RegisteredUser $event */ public function attachUserRole(RegisteredUser $event): void { /** @var UserRepositoryInterface $repository */ $repository = app(UserRepositoryInterface::class); // first user ever? if (1 === $repository->count()) { Log::debug('User count is one, attach role.'); $repository->attachRole($event->user, 'owner'); } } /** * Fires to see if a user is admin. * * @param Login $event */ public function checkSingleUserIsAdmin(Login $event): void { /** @var UserRepositoryInterface $repository */ $repository = app(UserRepositoryInterface::class); /** @var User $user */ $user = $event->user; $count = $repository->count(); // only act when there is 1 user in the system and he has no admin rights. if (1 === $count && !$repository->hasRole($user, 'owner')) { // user is the only user but does not have role "owner". $role = $repository->getRole('owner'); if (null === $role) { // create role, does not exist. Very strange situation so let's raise a big fuss about it. $role = $repository->createRole('owner', 'Site Owner', 'User runs this instance of FF3'); Log::error('Could not find role "owner". This is weird.'); } Log::info(sprintf('Gave user #%d role #%d ("%s")', $user->id, $role->id, $role->name)); // give user the role $repository->attachRole($user, 'owner'); } } /** * @param RegisteredUser $event */ public function createExchangeRates(RegisteredUser $event): void { $seeder = new ExchangeRateSeeder(); $seeder->run(); } /** * @param RegisteredUser $event * * @throws FireflyException */ public function createGroupMembership(RegisteredUser $event): void { $user = $event->user; $groupExists = true; $groupTitle = $user->email; $index = 1; /** @var UserGroup $group */ $group = null; // create a new group. while (true === $groupExists) { $groupExists = UserGroup::where('title', $groupTitle)->count() > 0; if (false === $groupExists) { $group = UserGroup::create(['title' => $groupTitle]); break; } $groupTitle = sprintf('%s-%d', $user->email, $index); $index++; if ($index > 99) { throw new FireflyException('Email address can no longer be used for registrations.'); } } /** @var UserRole|null $role */ $role = UserRole::where('title', UserRole::OWNER)->first(); if (null === $role) { throw new FireflyException('The user role is unexpectedly empty. Did you run all migrations?'); } GroupMembership::create( [ 'user_id' => $user->id, 'user_group_id' => $group->id, 'user_role_id' => $role->id, ] ); $user->user_group_id = $group->id; $user->save(); } /** * Set the demo user back to English. * * @param Login $event * * @throws FireflyException */ public function demoUserBackToEnglish(Login $event): void { /** @var UserRepositoryInterface $repository */ $repository = app(UserRepositoryInterface::class); /** @var User $user */ $user = $event->user; if ($repository->hasRole($user, 'demo')) { // set user back to English. app('preferences')->setForUser($user, 'language', 'en_US'); app('preferences')->setForUser($user, 'locale', 'equal'); app('preferences')->mark(); } } /** * @param DetectedNewIPAddress $event * * @throws FireflyException */ public function notifyNewIPAddress(DetectedNewIPAddress $event): void { $user = $event->user; $email = $user->email; $ipAddress = $event->ipAddress; if ($user->hasRole('demo')) { return; // do not email demo user. } $list = app('preferences')->getForUser($user, 'login_ip_history', [])->data; /** @var array $entry */ foreach ($list as $index => $entry) { if (false === $entry['notified']) { try { Notification::send($user, new UserLogin($ipAddress)); } catch (Exception $e) { $message = $e->getMessage(); if (str_contains($message, 'Bcc')) { Log::warning('[Bcc] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } if (str_contains($message, 'RFC 2822')) { Log::warning('[RFC] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } Log::error($e->getMessage()); Log::error($e->getTraceAsString()); } } $list[$index]['notified'] = true; } app('preferences')->setForUser($user, 'login_ip_history', $list); } /** * @param RegisteredUser $event */ public function sendAdminRegistrationNotification(RegisteredUser $event): void { $sendMail = FireflyConfig::get('notification_admin_new_reg', true)->data; if ($sendMail) { /** @var UserRepositoryInterface $repository */ $repository = app(UserRepositoryInterface::class); $all = $repository->all(); foreach ($all as $user) { if ($repository->hasRole($user, 'owner')) { try { Notification::send($user, new AdminRegistrationNotification($event->user)); } catch (Exception $e) { $message = $e->getMessage(); if (str_contains($message, 'Bcc')) { Log::warning('[Bcc] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } if (str_contains($message, 'RFC 2822')) { Log::warning('[RFC] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } Log::error($e->getMessage()); Log::error($e->getTraceAsString()); } } } } } /** * Send email to confirm email change. Will not be made into a notification, because * this requires some custom fields from the user and not just the "user" object. * * @param UserChangedEmail $event * * @throws FireflyException */ public function sendEmailChangeConfirmMail(UserChangedEmail $event): void { $newEmail = $event->newEmail; $oldEmail = $event->oldEmail; $user = $event->user; $token = app('preferences')->getForUser($user, 'email_change_confirm_token', 'invalid'); $url = route('profile.confirm-email-change', [$token->data]); try { Mail::to($newEmail)->send(new ConfirmEmailChangeMail($newEmail, $oldEmail, $url)); } catch (Exception $e) { // intentional generic exception Log::error($e->getMessage()); throw new FireflyException($e->getMessage(), 0, $e); } } /** * Send email to be able to undo email change. Will not be made into a notification, because * this requires some custom fields from the user and not just the "user" object. * * @param UserChangedEmail $event * * @throws FireflyException */ public function sendEmailChangeUndoMail(UserChangedEmail $event): void { $newEmail = $event->newEmail; $oldEmail = $event->oldEmail; $user = $event->user; $token = app('preferences')->getForUser($user, 'email_change_undo_token', 'invalid'); $hashed = hash('sha256', sprintf('%s%s', (string)config('app.key'), $oldEmail)); $url = route('profile.undo-email-change', [$token->data, $hashed]); try { Mail::to($oldEmail)->send(new UndoEmailChangeMail($newEmail, $oldEmail, $url)); } catch (Exception $e) { // intentional generic exception Log::error($e->getMessage()); throw new FireflyException($e->getMessage(), 0, $e); } } /** * Send a new password to the user. * @param RequestedNewPassword $event */ public function sendNewPassword(RequestedNewPassword $event): void { try { Notification::send($event->user, new UserNewPassword(route('password.reset', [$event->token]))); } catch (Exception $e) { $message = $e->getMessage(); if (str_contains($message, 'Bcc')) { Log::warning('[Bcc] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } if (str_contains($message, 'RFC 2822')) { Log::warning('[RFC] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } Log::error($e->getMessage()); Log::error($e->getTraceAsString()); } } /** * @param InvitationCreated $event * @return void * @throws FireflyException */ public function sendRegistrationInvite(InvitationCreated $event): void { $invitee = $event->invitee->email; $admin = $event->invitee->user->email; $url = route('invite', [$event->invitee->invite_code]); try { Mail::to($invitee)->send(new InvitationMail($invitee, $admin, $url)); } catch (Exception $e) { // intentional generic exception Log::error($e->getMessage()); throw new FireflyException($e->getMessage(), 0, $e); } } /** * This method will send the user a registration mail, welcoming him or her to Firefly III. * This message is only sent when the configuration of Firefly III says so. * * @param RegisteredUser $event * */ public function sendRegistrationMail(RegisteredUser $event): void { $sendMail = FireflyConfig::get('notification_user_new_reg', true)->data; if ($sendMail) { try { Notification::send($event->user, new UserRegistrationNotification()); } catch (Exception $e) { $message = $e->getMessage(); if (str_contains($message, 'Bcc')) { Log::warning('[Bcc] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } if (str_contains($message, 'RFC 2822')) { Log::warning('[RFC] Could not send notification. Please validate your email settings, use the .env.example file as a guide.'); return; } Log::error($e->getMessage()); Log::error($e->getTraceAsString()); } } } /** * @param ActuallyLoggedIn $event * @throws FireflyException */ public function storeUserIPAddress(ActuallyLoggedIn $event): void { Log::debug('Now in storeUserIPAddress'); $user = $event->user; if ($user->hasRole('demo')) { Log::debug('Do not log demo user logins'); return; } try { /** @var array $preference */ $preference = app('preferences')->getForUser($user, 'login_ip_history', [])->data; } catch (FireflyException $e) { // don't care. Log::error($e->getMessage()); return; } $inArray = false; $ip = request()->ip(); Log::debug(sprintf('User logging in from IP address %s', $ip)); // update array if in array foreach ($preference as $index => $row) { if ($row['ip'] === $ip) { Log::debug('Found IP in array, refresh time.'); $preference[$index]['time'] = now(config('app.timezone'))->format('Y-m-d H:i:s'); $inArray = true; } // clean up old entries (6 months) $carbon = Carbon::createFromFormat('Y-m-d H:i:s', $preference[$index]['time']); if ($carbon->diffInMonths(today()) > 6) { Log::debug(sprintf('Entry for %s is very old, remove it.', $row['ip'])); unset($preference[$index]); } } // add to array if not the case: if (false === $inArray) { $preference[] = [ 'ip' => $ip, 'time' => now(config('app.timezone'))->format('Y-m-d H:i:s'), 'notified' => false, ]; } $preference = array_values($preference); /** @var bool $send */ $send = app('preferences')->getForUser($user, 'notification_user_login', true)->data; app('preferences')->setForUser($user, 'login_ip_history', $preference); if (false === $inArray && true === $send) { event(new DetectedNewIPAddress($user, $ip)); } } }