misc_pterodactyl-panel/app/Policies/ServerPolicy.php

<?php
/**
 * Pterodactyl - Panel
 * Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.
 *
 * This software is licensed under the terms of the MIT license.
 * https://opensource.org/licenses/MIT
 */

namespace Pterodactyl\Policies;

use Cache;
use Carbon;
use Pterodactyl\Models\User;
use Pterodactyl\Models\Server;

class ServerPolicy
{
    /**
     * Checks if the user has the given permission on/for the server.
     *
     * @param \Pterodactyl\Models\User $user
     * @param \Pterodactyl\Models\Server $server
     * @param string $permission
     * @return bool
     */
    protected function checkPermission(User $user, Server $server, $permission)
    {
        $permissions = Cache::remember('ServerPolicy.' . $user->uuid . $server->uuid, Carbon::now()->addSeconds(5), function () use ($user, $server) {
            return $user->permissions()->server($server)->get()->transform(function ($item) {
                return $item->permission;
            })->values();
        });

        return $permissions->search($permission, true) !== false;
    }

    /**
     * Runs before any of the functions are called. Used to determine if user is root admin, if so, ignore permissions.
     *
     * @param \Pterodactyl\Models\User $user
     * @param string $ability
     * @param \Pterodactyl\Models\Server $server
     * @return bool
     */
    public function before(User $user, $ability, Server $server)
    {
        if ($user->root_admin || $server->owner_id === $user->id) {
            return true;
        }

        return $this->checkPermission($user, $server, $ability);
    }

    /**
     * This is a horrendous hack to avoid Laravel's "smart" behavior that does
     * not call the before() function if there isn't a function matching the
     * policy permission.
     *
     * @param string $name
     * @param mixed $arguments
     */
    public function __call($name, $arguments)
    {
        // do nothing
    }
}
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`<?php`
Add license details to add app files. 2016-01-20 00:10:39 +00:00			`/**`
Add title to copyright 2016-01-20 21:05:16 +00:00			`* Pterodactyl - Panel`
Update copyright headers 2017-01-24 22:57:08 +00:00			`* Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.`
Add license details to add app files. 2016-01-20 00:10:39 +00:00			`*`
Update license headers on files. 2017-09-26 02:43:01 +00:00			`* This software is licensed under the terms of the MIT license.`
			`* https://opensource.org/licenses/MIT`
Add license details to add app files. 2016-01-20 00:10:39 +00:00			`*/`
Apply fixes from StyleCI 2016-12-07 22:46:38 +00:00
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`namespace Pterodactyl\Policies;`

Add cache policy for ServerPolicy 10 second cache, just long enough to handle the page load without making more than one MySQL call. 2017-02-19 03:26:07 +00:00			`use Cache;`
			`use Carbon;`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`use Pterodactyl\Models\User;`
			`use Pterodactyl\Models\Server;`

			`class ServerPolicy`
			`{`
Modify subusers model setup 2017-02-09 23:44:07 +00:00			`/**`
			`* Checks if the user has the given permission on/for the server.`
			`*`
Format files 2019-09-06 04:32:57 +00:00			`* @param \Pterodactyl\Models\User $user`
Modify subusers model setup 2017-02-09 23:44:07 +00:00			`* @param \Pterodactyl\Models\Server $server`
Format files 2019-09-06 04:32:57 +00:00			`* @param string $permission`
Modify subusers model setup 2017-02-09 23:44:07 +00:00			`* @return bool`
			`*/`
Simplify server and api key policy. 2017-04-09 17:34:47 +00:00			`protected function checkPermission(User $user, Server $server, $permission)`
Modify subusers model setup 2017-02-09 23:44:07 +00:00			`{`
Push basis of new API key policy Will need to revisit this another day when I’m fresh to figure out the best method to do this. 2017-04-08 01:25:17 +00:00			`$permissions = Cache::remember('ServerPolicy.' . $user->uuid . $server->uuid, Carbon::now()->addSeconds(5), function () use ($user, $server) {`
Add cache policy for ServerPolicy 10 second cache, just long enough to handle the page load without making more than one MySQL call. 2017-02-19 03:26:07 +00:00			`return $user->permissions()->server($server)->get()->transform(function ($item) {`
			`return $item->permission;`
			`})->values();`
			`});`

Fix some egregious search and replace action... 2018-01-21 17:38:16 +00:00			`return $permissions->search($permission, true) !== false;`
Modify subusers model setup 2017-02-09 23:44:07 +00:00			`}`

Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`/**`
Simplify server and api key policy. 2017-04-09 17:34:47 +00:00			`* Runs before any of the functions are called. Used to determine if user is root admin, if so, ignore permissions.`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`*`
Format files 2019-09-06 04:32:57 +00:00			`* @param \Pterodactyl\Models\User $user`
			`* @param string $ability`
Massive PHPCS linting 2017-08-22 03:10:48 +00:00			`* @param \Pterodactyl\Models\Server $server`
Apply fixes from StyleCI 2016-12-07 22:46:38 +00:00			`* @return bool`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`*/`
Simplify server and api key policy. 2017-04-09 17:34:47 +00:00			`public function before(User $user, $ability, Server $server)`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`{`
Fix some forgotten logic checks temporarily 2017-09-11 04:57:18 +00:00			`if ($user->root_admin \|\| $server->owner_id === $user->id) {`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`return true;`
			`}`

Simplify server and api key policy. 2017-04-09 17:34:47 +00:00			`return $this->checkPermission($user, $server, $ability);`
Add allocations tab Strips some core allocation features for now, will be added back with more features once the theme is done. 2017-01-19 01:45:10 +00:00			`}`
Update to Laravel 5.5 (#814) 2017-12-17 19:07:38 +00:00
			`/**`
			`* This is a horrendous hack to avoid Laravel's "smart" behavior that does`
			`* not call the before() function if there isn't a function matching the`
			`* policy permission.`
			`*`
			`* @param string $name`
Format files 2019-09-06 04:32:57 +00:00			`* @param mixed $arguments`
Update to Laravel 5.5 (#814) 2017-12-17 19:07:38 +00:00			`*/`
			`public function __call($name, $arguments)`
			`{`
			`// do nothing`
			`}`
Initial Commit of Files PufferPanel v0.9 (Laravel) is now Pterodactyl 1.0 2015-12-06 18:58:49 +00:00			`}`