Remove old admin routes, fix display to non-admins
Complete!
This commit is contained in:
parent
b1a9a59707
commit
f24347d1bd
6 changed files with 161 additions and 611 deletions
|
@ -1,100 +0,0 @@
|
||||||
<?php
|
|
||||||
/**
|
|
||||||
* Pterodactyl - Panel
|
|
||||||
* Copyright (c) 2015 - 2016 Dane Everitt <dane@daneeveritt.com>
|
|
||||||
*
|
|
||||||
* Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
||||||
* of this software and associated documentation files (the "Software"), to deal
|
|
||||||
* in the Software without restriction, including without limitation the rights
|
|
||||||
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
||||||
* copies of the Software, and to permit persons to whom the Software is
|
|
||||||
* furnished to do so, subject to the following conditions:
|
|
||||||
*
|
|
||||||
* The above copyright notice and this permission notice shall be included in all
|
|
||||||
* copies or substantial portions of the Software.
|
|
||||||
*
|
|
||||||
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
||||||
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
||||||
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
||||||
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
||||||
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
||||||
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
||||||
* SOFTWARE.
|
|
||||||
*/
|
|
||||||
namespace Pterodactyl\Http\Controllers\Admin;
|
|
||||||
|
|
||||||
use Alert;
|
|
||||||
use Log;
|
|
||||||
|
|
||||||
use Pterodactyl\Models;
|
|
||||||
use Pterodactyl\Repositories\APIRepository;
|
|
||||||
use Pterodactyl\Http\Controllers\Controller;
|
|
||||||
|
|
||||||
use Pterodactyl\Exceptions\DisplayValidationException;
|
|
||||||
use Pterodactyl\Exceptions\DisplayException;
|
|
||||||
|
|
||||||
use Illuminate\Http\Request;
|
|
||||||
|
|
||||||
class APIController extends Controller
|
|
||||||
{
|
|
||||||
|
|
||||||
public function __construct()
|
|
||||||
{
|
|
||||||
//
|
|
||||||
}
|
|
||||||
|
|
||||||
public function getIndex(Request $request)
|
|
||||||
{
|
|
||||||
$keys = Models\APIKey::all();
|
|
||||||
foreach($keys as &$key) {
|
|
||||||
$key->permissions = Models\APIPermission::where('key_id', $key->id)->get();
|
|
||||||
}
|
|
||||||
|
|
||||||
return view('admin.api.index', [
|
|
||||||
'keys' => $keys
|
|
||||||
]);
|
|
||||||
}
|
|
||||||
|
|
||||||
public function getNew(Request $request)
|
|
||||||
{
|
|
||||||
return view('admin.api.new');
|
|
||||||
}
|
|
||||||
|
|
||||||
public function postNew(Request $request)
|
|
||||||
{
|
|
||||||
try {
|
|
||||||
$api = new APIRepository;
|
|
||||||
$secret = $api->new($request->except(['_token']));
|
|
||||||
// Alert::info('An API Keypair has successfully been generated. The API secret for this public key is shown below and will not be shown again.<br /><br />Secret: <code>' . $secret . '</code>')->flash();
|
|
||||||
Alert::info("<script type='text/javascript'>swal({
|
|
||||||
type: 'info',
|
|
||||||
title: 'Secret Key',
|
|
||||||
html: true,
|
|
||||||
text: 'The secret for this keypair is shown below and will not be shown again.<hr /><code style=\'text-align:center;\'>" . $secret . "</code>'
|
|
||||||
});</script>")->flash();
|
|
||||||
return redirect()->route('admin.api');
|
|
||||||
} catch (DisplayValidationException $ex) {
|
|
||||||
return redirect()->route('admin.api.new')->withErrors(json_decode($ex->getMessage()))->withInput();
|
|
||||||
} catch (DisplayException $ex) {
|
|
||||||
Alert::danger($ex->getMessage())->flash();
|
|
||||||
} catch (\Exception $ex) {
|
|
||||||
Log::error($ex);
|
|
||||||
Alert::danger('An unhandled exception occured while attempting to add this API key.')->flash();
|
|
||||||
}
|
|
||||||
return redirect()->route('admin.api.new')->withInput();
|
|
||||||
}
|
|
||||||
|
|
||||||
public function deleteRevokeKey(Request $request, $key)
|
|
||||||
{
|
|
||||||
try {
|
|
||||||
$api = new APIRepository;
|
|
||||||
$api->revoke($key);
|
|
||||||
return response('', 204);
|
|
||||||
} catch (\Exception $ex) {
|
|
||||||
return response()->json([
|
|
||||||
'error' => 'An error occured while attempting to remove this key.'
|
|
||||||
], 503);
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
|
@ -303,32 +303,6 @@ class AdminRoutes {
|
||||||
]);
|
]);
|
||||||
});
|
});
|
||||||
|
|
||||||
// API Routes
|
|
||||||
$router->group([
|
|
||||||
'prefix' => 'admin/api',
|
|
||||||
'middleware' => [
|
|
||||||
'auth',
|
|
||||||
'admin',
|
|
||||||
'csrf'
|
|
||||||
]
|
|
||||||
], function () use ($router) {
|
|
||||||
$router->get('/', [
|
|
||||||
'as' => 'admin.api',
|
|
||||||
'uses' => 'Admin\APIController@getIndex'
|
|
||||||
]);
|
|
||||||
$router->get('/new', [
|
|
||||||
'as' => 'admin.api.new',
|
|
||||||
'uses' => 'Admin\APIController@getNew'
|
|
||||||
]);
|
|
||||||
$router->post('/new', [
|
|
||||||
'uses' => 'Admin\APIController@postNew'
|
|
||||||
]);
|
|
||||||
$router->delete('/revoke/{key?}', [
|
|
||||||
'as' => 'admin.api.revoke',
|
|
||||||
'uses' => 'Admin\APIController@deleteRevokeKey'
|
|
||||||
]);
|
|
||||||
});
|
|
||||||
|
|
||||||
// Database Routes
|
// Database Routes
|
||||||
$router->group([
|
$router->group([
|
||||||
'prefix' => 'admin/databases',
|
'prefix' => 'admin/databases',
|
||||||
|
|
|
@ -1,113 +0,0 @@
|
||||||
{{-- Copyright (c) 2015 - 2016 Dane Everitt <dane@daneeveritt.com> --}}
|
|
||||||
|
|
||||||
{{-- Permission is hereby granted, free of charge, to any person obtaining a copy --}}
|
|
||||||
{{-- of this software and associated documentation files (the "Software"), to deal --}}
|
|
||||||
{{-- in the Software without restriction, including without limitation the rights --}}
|
|
||||||
{{-- to use, copy, modify, merge, publish, distribute, sublicense, and/or sell --}}
|
|
||||||
{{-- copies of the Software, and to permit persons to whom the Software is --}}
|
|
||||||
{{-- furnished to do so, subject to the following conditions: --}}
|
|
||||||
|
|
||||||
{{-- The above copyright notice and this permission notice shall be included in all --}}
|
|
||||||
{{-- copies or substantial portions of the Software. --}}
|
|
||||||
|
|
||||||
{{-- THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR --}}
|
|
||||||
{{-- IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, --}}
|
|
||||||
{{-- FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE --}}
|
|
||||||
{{-- AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER --}}
|
|
||||||
{{-- LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, --}}
|
|
||||||
{{-- OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE --}}
|
|
||||||
{{-- SOFTWARE. --}}
|
|
||||||
@extends('layouts.admin')
|
|
||||||
|
|
||||||
@section('title')
|
|
||||||
API Management
|
|
||||||
@endsection
|
|
||||||
|
|
||||||
@section('content')
|
|
||||||
<div class="col-md-12">
|
|
||||||
<ul class="breadcrumb">
|
|
||||||
<li><a href="/admin">Admin Control</a></li>
|
|
||||||
<li class="active">API Management</li>
|
|
||||||
</ul>
|
|
||||||
<h3>API Key Information</h3><hr />
|
|
||||||
<table class="table table-bordered table-hover">
|
|
||||||
<thead>
|
|
||||||
<tr>
|
|
||||||
<th>API Public Key</th>
|
|
||||||
<th>Allowed IPs</th>
|
|
||||||
<th>Permissions</th>
|
|
||||||
<th class="text-center">Created</th>
|
|
||||||
<th class="text-center"></th>
|
|
||||||
</tr>
|
|
||||||
</thead>
|
|
||||||
<tbody>
|
|
||||||
@foreach ($keys as $key)
|
|
||||||
<tr>
|
|
||||||
<td><code>{{ $key->public }}</code></td>
|
|
||||||
<td>
|
|
||||||
@if (is_null($key->allowed_ips))
|
|
||||||
<code>*</code>
|
|
||||||
@else
|
|
||||||
@foreach(json_decode($key->allowed_ips) as $ip)
|
|
||||||
<code style="line-height:2;">{{ $ip }}</code><br />
|
|
||||||
@endforeach
|
|
||||||
@endif
|
|
||||||
</td>
|
|
||||||
<td>
|
|
||||||
@foreach(json_decode($key->permissions) as &$perm)
|
|
||||||
<code style="line-height:2;">{{ $perm->permission }}</code><br />
|
|
||||||
@endforeach
|
|
||||||
</td>
|
|
||||||
<td class="text-center">{{ (new Carbon($key->created_at))->toDayDateTimeString() }}</td>
|
|
||||||
<td class="text-center"><a href="#delete" class="text-danger" data-action="delete" data-attr="{{ $key->public }}"><i class="fa fa-trash"></i></a></td>
|
|
||||||
</tr>
|
|
||||||
@endforeach
|
|
||||||
</tbody>
|
|
||||||
</table>
|
|
||||||
<div class="well">
|
|
||||||
<a href="{{ route('admin.api.new') }}"><button class="btn btn-success btn-sm">Create New API Key</button></a>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<script>
|
|
||||||
$(document).ready(function () {
|
|
||||||
$('#sidebar_links').find("a[href='/admin/api']").addClass('active');
|
|
||||||
$('[data-action="delete"]').click(function (event) {
|
|
||||||
var self = $(this);
|
|
||||||
event.preventDefault();
|
|
||||||
swal({
|
|
||||||
type: 'error',
|
|
||||||
title: 'Revoke API Key',
|
|
||||||
text: 'Once this API key is revoked any applications currently using it will stop working.',
|
|
||||||
showCancelButton: true,
|
|
||||||
allowOutsideClick: true,
|
|
||||||
closeOnConfirm: false,
|
|
||||||
confirmButtonText: 'Revoke',
|
|
||||||
confirmButtonColor: '#d9534f',
|
|
||||||
showLoaderOnConfirm: true
|
|
||||||
}, function () {
|
|
||||||
$.ajax({
|
|
||||||
method: 'DELETE',
|
|
||||||
url: '{{ route('admin.api.revoke') }}/' + self.data('attr'),
|
|
||||||
headers: {
|
|
||||||
'X-CSRF-TOKEN': '{{ csrf_token() }}'
|
|
||||||
}
|
|
||||||
}).done(function (data) {
|
|
||||||
swal({
|
|
||||||
type: 'success',
|
|
||||||
title: '',
|
|
||||||
text: 'API Key has been revoked.'
|
|
||||||
});
|
|
||||||
self.parent().parent().slideUp();
|
|
||||||
}).fail(function (jqXHR) {
|
|
||||||
console.error(jqXHR);
|
|
||||||
swal({
|
|
||||||
type: 'error',
|
|
||||||
title: 'Whoops!',
|
|
||||||
text: 'An error occured while attempting to revoke this key.'
|
|
||||||
});
|
|
||||||
});
|
|
||||||
});
|
|
||||||
});
|
|
||||||
});
|
|
||||||
</script>
|
|
||||||
@endsection
|
|
|
@ -1,213 +0,0 @@
|
||||||
{{-- Copyright (c) 2015 - 2016 Dane Everitt <dane@daneeveritt.com> --}}
|
|
||||||
|
|
||||||
{{-- Permission is hereby granted, free of charge, to any person obtaining a copy --}}
|
|
||||||
{{-- of this software and associated documentation files (the "Software"), to deal --}}
|
|
||||||
{{-- in the Software without restriction, including without limitation the rights --}}
|
|
||||||
{{-- to use, copy, modify, merge, publish, distribute, sublicense, and/or sell --}}
|
|
||||||
{{-- copies of the Software, and to permit persons to whom the Software is --}}
|
|
||||||
{{-- furnished to do so, subject to the following conditions: --}}
|
|
||||||
|
|
||||||
{{-- The above copyright notice and this permission notice shall be included in all --}}
|
|
||||||
{{-- copies or substantial portions of the Software. --}}
|
|
||||||
|
|
||||||
{{-- THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR --}}
|
|
||||||
{{-- IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, --}}
|
|
||||||
{{-- FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE --}}
|
|
||||||
{{-- AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER --}}
|
|
||||||
{{-- LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, --}}
|
|
||||||
{{-- OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE --}}
|
|
||||||
{{-- SOFTWARE. --}}
|
|
||||||
@extends('layouts.admin')
|
|
||||||
|
|
||||||
@section('title')
|
|
||||||
API Management
|
|
||||||
@endsection
|
|
||||||
|
|
||||||
@section('content')
|
|
||||||
<div class="col-md-12">
|
|
||||||
<ul class="breadcrumb">
|
|
||||||
<li><a href="/admin">Admin Control</a></li>
|
|
||||||
<li><a href="/admin/api">API Management</a></li>
|
|
||||||
<li class="active">New</li>
|
|
||||||
</ul>
|
|
||||||
<h3>Add New API Key</h3><hr />
|
|
||||||
<form action="{{ route('admin.api.new') }}" method="POST">
|
|
||||||
<div class="row">
|
|
||||||
<div class="col-md-12 fuelux">
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="*"> <strong>*</strong>
|
|
||||||
<p class="text-muted"><small><span class="label label-danger">Danger</span> Allows performing any action aganist the API.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="row">
|
|
||||||
<div class="col-md-6 fuelux">
|
|
||||||
<h4>User Management</h4><hr />
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.users.list"> <strong><span class="label label-default">GET</span> /users</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing of all users currently on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.users.create"> <strong><span class="label label-default">POST</span> /users</strong>
|
|
||||||
<p class="text-muted"><small>Allows creating a new user on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.users.view"> <strong><span class="label label-default">GET</span> /users/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows viewing details about a specific user including active services.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.users.update"> <strong><span class="label label-default">PATCH</span> /users/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows modifying user details (email, password, TOTP information).</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.users.delete"> <strong><span class="label label-danger">DELETE</span> /users/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows deleting a user.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="col-md-6 fuelux">
|
|
||||||
<h4>Server Management</h4><hr />
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.list"> <strong><span class="label label-default">GET</span> /servers</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing of all servers currently on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.create"> <strong><span class="label label-default">POST</span> /servers</strong>
|
|
||||||
<p class="text-muted"><small>Allows creating a new server on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.view"> <strong><span class="label label-default">GET</span> /servers/{id}</strong>
|
|
||||||
<p class="text-muted"><small><span class="label label-danger">Danger</span> Allows viewing details about a specific server including the <code>daemon_token</code> as current process information.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.config"> <strong><span class="label label-default">PATCH</span> /servers/{id}/config</strong>
|
|
||||||
<p class="text-muted"><small>Allows modifying server config (name, owner, and access token).</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.build"> <strong><span class="label label-default">PATCH</span> /servers/{id}/build</strong>
|
|
||||||
<p class="text-muted"><small>Allows modifying a server's build parameters such as memory, CPU, and disk space along with assigned and default IPs.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.suspend"> <strong><span class="label label-default">POST</span> /servers/{id}/suspend</strong>
|
|
||||||
<p class="text-muted"><small>Allows suspending a server instance.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.unsuspend"> <strong><span class="label label-default">POST</span> /servers/{id}/unsuspend</strong>
|
|
||||||
<p class="text-muted"><small>Allows unsuspending a server instance.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.servers.delete"> <strong><span class="label label-danger">DELETE</span> /servers/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows deleting a server.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="row">
|
|
||||||
<div class="col-md-6 fuelux">
|
|
||||||
<h4>Node Management</h4><hr />
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.nodes.list"> <strong><span class="label label-default">GET</span> /nodes</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing of all nodes currently on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.nodes.create"> <strong><span class="label label-default">POST</span> /nodes</strong>
|
|
||||||
<p class="text-muted"><small>Allows creating a new node on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.nodes.view"> <strong><span class="label label-default">GET</span> /nodes/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows viewing details about a specific node including active services.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.nodes.allocations"> <strong><span class="label label-default">GET</span> /nodes/allocations</strong>
|
|
||||||
<p class="text-muted"><small>Allows viewing all allocations on the panel for all nodes.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.nodes.delete"> <strong><span class="label label-danger">DELETE</span> /nodes/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows deleting a node.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="col-md-6 fuelux">
|
|
||||||
<h4>Service Management</h4><hr />
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.services.list"> <strong><span class="label label-default">GET</span> /services</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing of all services configured on the system.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.services.view"> <strong><span class="label label-default">GET</span> /services/{id}</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing details about each service on the system including service options and variables.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
<h4>Location Management</h4><hr />
|
|
||||||
<div class="checkbox highlight">
|
|
||||||
<label class="checkbox-custom highlight" data-initialize="checkbox">
|
|
||||||
<input class="sr-only" name="permissions[]" type="checkbox" value="api.locations.list"> <strong><span class="label label-default">GET</span> /locations</strong>
|
|
||||||
<p class="text-muted"><small>Allows listing all locations and thier associated nodes.</small><p>
|
|
||||||
</label>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="well">
|
|
||||||
<div class="row">
|
|
||||||
<div class="form-group col-md-12">
|
|
||||||
<label for="allowed_ips" class="control-label">Allowed IPs</label>
|
|
||||||
<div>
|
|
||||||
<textarea name="allowed_ips" class="form-control" rows="5">{{ old('allowed_ips') }}</textarea>
|
|
||||||
<p class="text-muted"><small>Enter a line delimitated list of IPs that are allowed to access the API using this key. CIDR notation is allowed. Leave blank to allow any IP.</small></p>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
<div class="row">
|
|
||||||
<div class="col-md-12">
|
|
||||||
{!! csrf_field() !!}
|
|
||||||
<input type="submit" class="btn btn-sm btn-primary" value="Create New Key" />
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</div>
|
|
||||||
</form>
|
|
||||||
</div>
|
|
||||||
<script>
|
|
||||||
$(document).ready(function () {
|
|
||||||
$('#sidebar_links').find("a[href='/admin/api']").addClass('active');
|
|
||||||
$('[data-initialize="checkbox"]').checkbox();
|
|
||||||
});
|
|
||||||
</script>
|
|
||||||
@endsection
|
|
|
@ -33,12 +33,14 @@
|
||||||
<span class="badge">1</span>Permissions
|
<span class="badge">1</span>Permissions
|
||||||
<span class="chevron"></span>
|
<span class="chevron"></span>
|
||||||
</li>
|
</li>
|
||||||
|
@if(Auth::user()->root_admin === 1)
|
||||||
<li data-step="2" data-name="admin">
|
<li data-step="2" data-name="admin">
|
||||||
<span class="badge">2</span>Admin
|
<span class="badge">2</span>Admin
|
||||||
<span class="chevron"></span>
|
<span class="chevron"></span>
|
||||||
</li>
|
</li>
|
||||||
|
@endif
|
||||||
<li data-step="3" data-name="ips">
|
<li data-step="3" data-name="ips">
|
||||||
<span class="badge">3</span>Security
|
<span class="badge">@if(Auth::user()->root_admin === 1)3 @else 2 @endif</span>Security
|
||||||
<span class="chevron"></span>
|
<span class="chevron"></span>
|
||||||
</li>
|
</li>
|
||||||
</ul>
|
</ul>
|
||||||
|
@ -87,6 +89,7 @@
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
@if(Auth::user()->root_admin === 1)
|
||||||
<div class="step-pane alert" data-step="2">
|
<div class="step-pane alert" data-step="2">
|
||||||
<div class="row">
|
<div class="row">
|
||||||
<div class="col-md-12 fuelux">
|
<div class="col-md-12 fuelux">
|
||||||
|
@ -242,6 +245,7 @@
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
@endif
|
||||||
<div class="step-pane alert" data-step="3">
|
<div class="step-pane alert" data-step="3">
|
||||||
<div class="form-group">
|
<div class="form-group">
|
||||||
<label for="allowed_ips" class="control-label">Descriptive Memo</label>
|
<label for="allowed_ips" class="control-label">Descriptive Memo</label>
|
||||||
|
|
|
@ -60,7 +60,6 @@
|
||||||
<ul class="dropdown-menu">
|
<ul class="dropdown-menu">
|
||||||
<li><a href="/admin">Admin Index</a></li>
|
<li><a href="/admin">Admin Index</a></li>
|
||||||
<li><a href="/admin/settings">General Settings</a></li>
|
<li><a href="/admin/settings">General Settings</a></li>
|
||||||
<li><a href="/admin/api">API Management</a></li>
|
|
||||||
<li><a href="/admin/databases">Database Management</a></li>
|
<li><a href="/admin/databases">Database Management</a></li>
|
||||||
</ul>
|
</ul>
|
||||||
</li>
|
</li>
|
||||||
|
@ -128,7 +127,6 @@
|
||||||
<a href="#" class="list-group-item list-group-item-heading"><strong>Management</strong></a>
|
<a href="#" class="list-group-item list-group-item-heading"><strong>Management</strong></a>
|
||||||
<a href="/admin" id="sidenav_admin-index" class="list-group-item">Admin Index</a>
|
<a href="/admin" id="sidenav_admin-index" class="list-group-item">Admin Index</a>
|
||||||
<a href="/admin/settings" class="list-group-item">General Settings</a>
|
<a href="/admin/settings" class="list-group-item">General Settings</a>
|
||||||
<a href="/admin/api" class="list-group-item">API Management</a>
|
|
||||||
<a href="/admin/databases" class="list-group-item">Database Management</a>
|
<a href="/admin/databases" class="list-group-item">Database Management</a>
|
||||||
</div>
|
</div>
|
||||||
<div class="list-group">
|
<div class="list-group">
|
||||||
|
|
Loading…
Reference in a new issue