2017-11-19 20:05:13 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace Pterodactyl\Http\Middleware\API;
|
|
|
|
|
|
|
|
use Closure;
|
|
|
|
use IPTools\IP;
|
|
|
|
use IPTools\Range;
|
|
|
|
use Illuminate\Http\Request;
|
|
|
|
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
|
|
|
|
|
|
|
|
class AuthenticateIPAccess
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Determine if a request IP has permission to access the API.
|
|
|
|
*
|
|
|
|
* @param \Illuminate\Http\Request $request
|
|
|
|
* @param \Closure $next
|
|
|
|
* @return mixed
|
|
|
|
*
|
|
|
|
* @throws \Exception
|
|
|
|
* @throws \Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException
|
|
|
|
*/
|
|
|
|
public function handle(Request $request, Closure $next)
|
|
|
|
{
|
|
|
|
$model = $request->attributes->get('api_key');
|
|
|
|
|
|
|
|
if (is_null($model->allowed_ips) || empty($model->allowed_ips)) {
|
|
|
|
return $next($request);
|
|
|
|
}
|
|
|
|
|
2017-11-26 19:26:38 +00:00
|
|
|
$find = new IP($request->ip());
|
2017-11-19 20:05:13 +00:00
|
|
|
foreach ($model->allowed_ips as $ip) {
|
2017-11-26 19:26:38 +00:00
|
|
|
if (Range::parse($ip)->contains($find)) {
|
2017-11-19 20:05:13 +00:00
|
|
|
return $next($request);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
throw new AccessDeniedHttpException('This IP address does not have permission to access the API using these credentials.');
|
|
|
|
}
|
|
|
|
}
|