. * * Permission is hereby granted, free of charge, to any person obtaining a copy * of this software and associated documentation files (the "Software"), to deal * in the Software without restriction, including without limitation the rights * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell * copies of the Software, and to permit persons to whom the Software is * furnished to do so, subject to the following conditions: * * The above copyright notice and this permission notice shall be included in all * copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE * SOFTWARE. */ namespace Pterodactyl\Services\Servers; use Pterodactyl\Models\User; use Illuminate\Cache\Repository as CacheRepository; use Pterodactyl\Contracts\Repository\UserRepositoryInterface; use Pterodactyl\Contracts\Repository\ServerRepositoryInterface; use Pterodactyl\Contracts\Repository\SubuserRepositoryInterface; class ServerAccessHelperService { public function __construct( CacheRepository $cache, ServerRepositoryInterface $repository, SubuserRepositoryInterface $subuserRepository, UserRepositoryInterface $userRepository ) { $this->cache = $cache; $this->repository = $repository; $this->subuserRepository = $subuserRepository; $this->userRepository = $userRepository; } public function handle($uuid, $user) { if (! $user instanceof User) { $user = $this->userRepository->find($user); } $server = $this->repository->getByUuid($uuid); if (! $user->root_admin) { if (! in_array($server->id, $this->repository->getUserAccessServers($user->id))) { throw new \Exception('User does not have access.'); } if ($server->owner_id !== $user->id) { $subuser = $this->subuserRepository->withColumns('daemonSecret')->findWhere([ ['user_id', '=', $user->id], ['server_id', '=', $server->id], ]); $server->daemonSecret = $subuser->daemonToken; } } return $server; } }