misc_pterodactyl-panel/app/Http/Controllers/Api/Client/AccountController.php

76 lines
2.5 KiB
PHP
Raw Permalink Normal View History

<?php
namespace Pterodactyl\Http\Controllers\Api\Client;
use Illuminate\Http\Request;
2018-06-17 23:53:24 +00:00
use Illuminate\Http\Response;
use Illuminate\Auth\AuthManager;
use Illuminate\Http\JsonResponse;
use Pterodactyl\Facades\Activity;
use Pterodactyl\Services\Users\UserUpdateService;
use Pterodactyl\Transformers\Api\Client\AccountTransformer;
use Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest;
2018-06-17 23:53:24 +00:00
use Pterodactyl\Http\Requests\Api\Client\Account\UpdatePasswordRequest;
class AccountController extends ClientApiController
{
/**
* AccountController constructor.
*/
public function __construct(private AuthManager $manager, private UserUpdateService $updateService)
{
parent::__construct();
}
public function index(Request $request): array
{
return $this->fractal->item($request->user())
2022-12-15 00:05:46 +00:00
->transformWith(AccountTransformer::class)
->toArray();
}
/**
2018-06-17 23:53:24 +00:00
* Update the authenticated user's email address.
*/
public function updateEmail(UpdateEmailRequest $request): JsonResponse
{
$original = $request->user()->email;
2018-06-17 23:53:24 +00:00
$this->updateService->handle($request->user(), $request->validated());
if ($original !== $request->input('email')) {
Activity::event('user:account.email-changed')
->property(['old' => $original, 'new' => $request->input('email')])
->log();
}
return new JsonResponse([], Response::HTTP_NO_CONTENT);
2018-06-17 23:53:24 +00:00
}
/**
* Update the authenticated user's password. All existing sessions will be logged
* out immediately.
2018-06-17 23:53:24 +00:00
*
* @throws \Throwable
2018-06-17 23:53:24 +00:00
*/
public function updatePassword(UpdatePasswordRequest $request): JsonResponse
2018-06-17 23:53:24 +00:00
{
$user = $this->updateService->handle($request->user(), $request->validated());
$guard = $this->manager->guard();
// If you do not update the user in the session you'll end up working with a
// cached copy of the user that does not include the updated password. Do this
// to correctly store the new user details in the guard and allow the logout
// other devices functionality to work.
$guard->setUser($user);
2018-06-17 23:53:24 +00:00
// This method doesn't exist in the stateless Sanctum world.
if (method_exists($guard, 'logoutOtherDevices')) {
$guard->logoutOtherDevices($request->input('password'));
}
Activity::event('user:account.password-changed')->log();
return new JsonResponse([], Response::HTTP_NO_CONTENT);
}
}