2020-03-22 20:56:15 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace Pterodactyl\Http\Requests\Api\Client\Servers\Schedules;
|
|
|
|
|
|
|
|
use Pterodactyl\Models\Task;
|
|
|
|
use Pterodactyl\Models\Server;
|
|
|
|
use Pterodactyl\Models\Schedule;
|
|
|
|
use Pterodactyl\Models\Permission;
|
|
|
|
use Pterodactyl\Http\Requests\Api\Client\ClientApiRequest;
|
|
|
|
use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
|
|
|
|
|
|
|
|
class ViewScheduleRequest extends ClientApiRequest
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Determine if this resource can be viewed.
|
|
|
|
*/
|
|
|
|
public function authorize(): bool
|
|
|
|
{
|
2021-01-23 20:33:34 +00:00
|
|
|
if (!parent::authorize()) {
|
2020-03-22 20:56:15 +00:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
$server = $this->route()->parameter('server');
|
|
|
|
$schedule = $this->route()->parameter('schedule');
|
|
|
|
|
|
|
|
// If the schedule does not belong to this server throw a 404 error. Also throw an
|
|
|
|
// error if the task being requested does not belong to the associated schedule.
|
|
|
|
if ($server instanceof Server && $schedule instanceof Schedule) {
|
|
|
|
$task = $this->route()->parameter('task');
|
|
|
|
|
|
|
|
if ($schedule->server_id !== $server->id || ($task instanceof Task && $task->schedule_id !== $schedule->id)) {
|
2021-01-23 20:33:34 +00:00
|
|
|
throw new NotFoundHttpException('The requested resource does not exist on the system.');
|
2020-03-22 20:56:15 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function permission(): string
|
|
|
|
{
|
|
|
|
return Permission::ACTION_SCHEDULE_READ;
|
|
|
|
}
|
|
|
|
}
|