misc_pterodactyl-panel/app/Http/Controllers/Api/Client/AccountController.php

<?php

namespace Pterodactyl\Http\Controllers\Api\Client;

use Illuminate\Http\Request;
use Illuminate\Http\Response;
use Illuminate\Auth\AuthManager;
use Illuminate\Http\JsonResponse;
use Pterodactyl\Facades\Activity;
use Pterodactyl\Services\Users\UserUpdateService;
use Pterodactyl\Transformers\Api\Client\AccountTransformer;
use Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest;
use Pterodactyl\Http\Requests\Api\Client\Account\UpdatePasswordRequest;

class AccountController extends ClientApiController
{
    /**
     * @var \Pterodactyl\Services\Users\UserUpdateService
     */
    private $updateService;

    /**
     * @var \Illuminate\Auth\AuthManager
     */
    private $manager;

    /**
     * AccountController constructor.
     */
    public function __construct(AuthManager $manager, UserUpdateService $updateService)
    {
        parent::__construct();

        $this->updateService = $updateService;
        $this->manager = $manager;
    }

    public function index(Request $request): array
    {
        return $this->fractal->item($request->user())
            ->transformWith($this->getTransformer(AccountTransformer::class))
            ->toArray();
    }

    /**
     * Update the authenticated user's email address.
     */
    public function updateEmail(UpdateEmailRequest $request): JsonResponse
    {
        $original = $request->user()->email;
        $this->updateService->handle($request->user(), $request->validated());

        if ($original !== $request->input('email')) {
            Activity::event('user:account.email-changed')
                ->property(['old' => $original, 'new' => $request->input('email')])
                ->log();
        }

        return new JsonResponse([], Response::HTTP_NO_CONTENT);
    }

    /**
     * Update the authenticated user's password. All existing sessions will be logged
     * out immediately.
     *
     * @throws \Throwable
     */
    public function updatePassword(UpdatePasswordRequest $request): JsonResponse
    {
        $user = $this->updateService->handle($request->user(), $request->validated());

        $guard = $this->manager->guard();
        // If you do not update the user in the session you'll end up working with a
        // cached copy of the user that does not include the updated password. Do this
        // to correctly store the new user details in the guard and allow the logout
        // other devices functionality to work.
        $guard->setUser($user);

        // This method doesn't exist in the stateless Sanctum world.
        if (method_exists($guard, 'logoutOtherDevices')) {
            $guard->logoutOtherDevices($request->input('password'));
        }

        Activity::event('user:account.password-changed')->log();

        return new JsonResponse([], Response::HTTP_NO_CONTENT);
    }
}
Base attempt at using vuex to handle logins 2018-06-05 23:00:01 -07:00			`<?php`

			`namespace Pterodactyl\Http\Controllers\Api\Client;`

			`use Illuminate\Http\Request;`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`use Illuminate\Http\Response;`
Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00			`use Illuminate\Auth\AuthManager;`
			`use Illuminate\Http\JsonResponse;`
Log activity when modifying account details 2022-05-29 18:48:35 -04:00			`use Pterodactyl\Facades\Activity;`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`use Pterodactyl\Services\Users\UserUpdateService;`
Base attempt at using vuex to handle logins 2018-06-05 23:00:01 -07:00			`use Pterodactyl\Transformers\Api\Client\AccountTransformer;`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`use Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest;`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`use Pterodactyl\Http\Requests\Api\Client\Account\UpdatePasswordRequest;`
Base attempt at using vuex to handle logins 2018-06-05 23:00:01 -07:00
			`class AccountController extends ClientApiController`
			`{`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`/**`
			`* @var \Pterodactyl\Services\Users\UserUpdateService`
			`*/`
			`private $updateService;`

Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00			`/**`
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`* @var \Illuminate\Auth\AuthManager`
Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00			`*/`
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`private $manager;`
Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`/**`
			`* AccountController constructor.`
			`*/`
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`public function __construct(AuthManager $manager, UserUpdateService $updateService)`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`{`
			`parent::__construct();`

			`$this->updateService = $updateService;`
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`$this->manager = $manager;`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`}`

Base attempt at using vuex to handle logins 2018-06-05 23:00:01 -07:00			`public function index(Request $request): array`
			`{`
			`return $this->fractal->item($request->user())`
			`->transformWith($this->getTransformer(AccountTransformer::class))`
			`->toArray();`
			`}`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00
			`/**`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`* Update the authenticated user's email address.`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`*/`
Add integration test covering account endpoint 2020-06-25 22:12:09 -07:00			`public function updateEmail(UpdateEmailRequest $request): JsonResponse`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`{`
Log activity when modifying account details 2022-05-29 18:48:35 -04:00			`$original = $request->user()->email;`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`$this->updateService->handle($request->user(), $request->validated());`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00
Don't log activity if the email wasn't actually changed 2022-07-03 14:29:01 -04:00			`if ($original !== $request->input('email')) {`
			`Activity::event('user:account.email-changed')`
			`->property(['old' => $original, 'new' => $request->input('email')])`
			`->log();`
			`}`
Log activity when modifying account details 2022-05-29 18:48:35 -04:00
Add integration test covering account endpoint 2020-06-25 22:12:09 -07:00			`return new JsonResponse([], Response::HTTP_NO_CONTENT);`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`}`

			`/**`
Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00			`* Update the authenticated user's password. All existing sessions will be logged`
			`* out immediately.`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`*`
Fix changing a user password to not incorrectly handle logging out old sessions; closes #3531 2021-08-15 17:37:12 -07:00			`* @throws \Throwable`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`*/`
Add integration test covering account endpoint 2020-06-25 22:12:09 -07:00			`public function updatePassword(UpdatePasswordRequest $request): JsonResponse`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00			`{`
Fix changing a user password to not incorrectly handle logging out old sessions; closes #3531 2021-08-15 17:37:12 -07:00			`$user = $this->updateService->handle($request->user(), $request->validated());`

Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`$guard = $this->manager->guard();`
Fix changing a user password to not incorrectly handle logging out old sessions; closes #3531 2021-08-15 17:37:12 -07:00			`// If you do not update the user in the session you'll end up working with a`
			`// cached copy of the user that does not include the updated password. Do this`
			`// to correctly store the new user details in the guard and allow the logout`
			`// other devices functionality to work.`
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`$guard->setUser($user);`
Finalize email/password changing in UI 2018-06-17 16:53:24 -07:00
Ensure tokens are found in the database using the expected logic 2022-05-22 16:05:58 -04:00			`// This method doesn't exist in the stateless Sanctum world.`
			`if (method_exists($guard, 'logoutOtherDevices')) {`
			`$guard->logoutOtherDevices($request->input('password'));`
			`}`
Password change needs to require user login to reset some cookies closes #1793 2019-12-28 12:07:42 -08:00
Log activity when modifying account details 2022-05-29 18:48:35 -04:00			`Activity::event('user:account.password-changed')->log();`

Add integration test covering account endpoint 2020-06-25 22:12:09 -07:00			`return new JsonResponse([], Response::HTTP_NO_CONTENT);`
Get the base email update working through the API. Still going to need to determine the best course of action to update the token on the client side. 2018-06-11 22:56:57 -07:00			`}`
Base attempt at using vuex to handle logins 2018-06-05 23:00:01 -07:00			`}`