misc_pterodactyl-panel/app/Http/Middleware/Api/AuthenticateIPAccess.php

<?php

namespace Pterodactyl\Http\Middleware\Api;

use Closure;
use IPTools\IP;
use IPTools\Range;
use Illuminate\Http\Request;
use Laravel\Sanctum\TransientToken;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;

class AuthenticateIPAccess
{
    /**
     * Determine if a request IP has permission to access the API.
     *
     * @return mixed
     *
     * @throws \Exception
     * @throws \Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException
     */
    public function handle(Request $request, Closure $next)
    {
        /** @var \Laravel\Sanctum\TransientToken|\Pterodactyl\Models\ApiKey $token */
        $token = $request->user()->currentAccessToken();

        // If this is a stateful request just push the request through to the next
        // middleware in the stack, there is nothing we need to explicitly check. If
        // this is a valid API Key, but there is no allowed IP restriction, also pass
        // the request through.
        if ($token instanceof TransientToken || empty($token->allowed_ips)) {
            return $next($request);
        }

        $find = new IP($request->ip());
        foreach ($token->allowed_ips as $ip) {
            if (Range::parse($ip)->contains($find)) {
                return $next($request);
            }
        }

        throw new AccessDeniedHttpException('This IP address (' . $request->ip() . ') does not have permission to access the API using these credentials.');
    }
}
Add new API middleware 2017-11-19 20:05:13 +00:00			`<?php`

Move everything around as needed to get things setup for the client API 2018-02-25 21:30:56 +00:00			`namespace Pterodactyl\Http\Middleware\Api;`
Add new API middleware 2017-11-19 20:05:13 +00:00
			`use Closure;`
			`use IPTools\IP;`
			`use IPTools\Range;`
			`use Illuminate\Http\Request;`
Initial pass at implementing Laravel Sanctum for authorization on the API 2022-05-22 18:57:06 +00:00			`use Laravel\Sanctum\TransientToken;`
Add new API middleware 2017-11-19 20:05:13 +00:00			`use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;`

			`class AuthenticateIPAccess`
			`{`
			`/**`
			`* Determine if a request IP has permission to access the API.`
			`*`
			`* @return mixed`
			`*`
			`* @throws \Exception`
			`* @throws \Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException`
			`*/`
			`public function handle(Request $request, Closure $next)`
			`{`
Initial pass at implementing Laravel Sanctum for authorization on the API 2022-05-22 18:57:06 +00:00			`/** @var \Laravel\Sanctum\TransientToken\|\Pterodactyl\Models\ApiKey $token */`
			`$token = $request->user()->currentAccessToken();`
Add new API middleware 2017-11-19 20:05:13 +00:00
Initial pass at implementing Laravel Sanctum for authorization on the API 2022-05-22 18:57:06 +00:00			`// If this is a stateful request just push the request through to the next`
			`// middleware in the stack, there is nothing we need to explicitly check. If`
			`// this is a valid API Key, but there is no allowed IP restriction, also pass`
			`// the request through.`
			`if ($token instanceof TransientToken \|\| empty($token->allowed_ips)) {`
Add new API middleware 2017-11-19 20:05:13 +00:00			`return $next($request);`
			`}`

Misc fixes 2017-11-26 19:26:38 +00:00			`$find = new IP($request->ip());`
Initial pass at implementing Laravel Sanctum for authorization on the API 2022-05-22 18:57:06 +00:00			`foreach ($token->allowed_ips as $ip) {`
Misc fixes 2017-11-26 19:26:38 +00:00			`if (Range::parse($ip)->contains($find)) {`
Add new API middleware 2017-11-19 20:05:13 +00:00			`return $next($request);`
			`}`
			`}`

Fix IP access middleware 2018-03-01 05:39:59 +00:00			`throw new AccessDeniedHttpException('This IP address (' . $request->ip() . ') does not have permission to access the API using these credentials.');`
Add new API middleware 2017-11-19 20:05:13 +00:00			`}`
			`}`