repository = $repository; $this->creationService = $creationService; $this->serverRepository = $serverRepository; } /** * Return the users associated with this server instance. * * @throws \Illuminate\Contracts\Container\BindingResolutionException */ public function index(GetSubuserRequest $request, Server $server): array { return $this->fractal->collection($server->subusers) ->transformWith(SubuserTransformer::class) ->toArray(); } /** * Returns a single subuser associated with this server instance. * * @throws \Illuminate\Contracts\Container\BindingResolutionException */ public function view(GetSubuserRequest $request, Server $server, Subuser $subuser): array { return $this->fractal->item($subuser) ->transformWith(SubuserTransformer::class) ->toArray(); } /** * Create a new subuser for the given server. * * @throws \Pterodactyl\Exceptions\Model\DataValidationException * @throws \Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException * @throws \Pterodactyl\Exceptions\Service\Subuser\UserIsServerOwnerException * @throws \Throwable */ public function store(StoreSubuserRequest $request, Server $server): array { $response = $this->creationService->handle( $server, $request->input('email'), $this->getDefaultPermissions($request) ); return $this->fractal->item($response) ->transformWith(SubuserTransformer::class) ->toArray(); } /** * Update a given subuser in the system for the server. * * @throws \Pterodactyl\Exceptions\Model\DataValidationException * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException * @throws \Illuminate\Contracts\Container\BindingResolutionException */ public function update(UpdateSubuserRequest $request, Server $server, Subuser $subuser): array { $permissions = $this->getDefaultPermissions($request); $current = $subuser->permissions; sort($permissions); sort($current); // Only update the database and hit up the Wings instance to invalidate JTI's if the permissions // have actually changed for the user. if ($permissions !== $current) { $this->repository->update($subuser->id, [ 'permissions' => $this->getDefaultPermissions($request), ]); try { $this->serverRepository->setServer($server)->revokeUserJTI($subuser->user_id); } catch (DaemonConnectionException $exception) { // Don't block this request if we can't connect to the Wings instance. Chances are it is // offline in this event and the token will be invalid anyways once Wings boots back. Log::warning($exception, ['user_id' => $subuser->user_id, 'server_id' => $server->id]); } } return $this->fractal->item($subuser->refresh()) ->transformWith(SubuserTransformer::class) ->toArray(); } /** * Removes a subusers from a server's assignment. */ public function delete(DeleteSubuserRequest $request, Server $server, Subuser $subuser): Response { $this->repository->delete($subuser->id); try { $this->serverRepository->setServer($server)->revokeUserJTI($subuser->user_id); } catch (DaemonConnectionException $exception) { // Don't block this request if we can't connect to the Wings instance. Log::warning($exception, ['user_id' => $subuser->user_id, 'server_id' => $server->id]); } return $this->returnNoContent(); } /** * Returns the default permissions for all subusers to ensure none are ever removed wrongly. */ protected function getDefaultPermissions(Request $request): array { return array_unique(array_merge($request->input('permissions') ?? [], [Permission::ACTION_WEBSOCKET_CONNECT])); } }