Push 'Account' and 'Security' pages as well as 'My Servers'

Author: DaneEveritt

app/Http/Controllers/Base/SecurityController.php

@@ -79,7 +79,9 @@ public function generateTotp(Request $request)
     public function setTotp(Request $request)
     {
         if (! $request->has('token')) {
-            return response(null, 500);
+            return response()->json([
+                'error' => 'Request is missing token parameter.'
+            ], 500);
         }
 
         $user = $request->user();
@@ -101,7 +103,7 @@ public function disableTotp(Request $request)
         if (! $request->has('token')) {
             Alert::danger('Missing required `token` field in request.')->flash();
 
-            return redirect()->route('account.totp');
+            return redirect()->route('account.security');
         }
 
         $user = $request->user();

app/Http/Routes/BaseRoutes.php

@@ -64,9 +64,11 @@ public function map(Router $router)
                 'uses' => 'Base\AccountController@index',
             ]);
             $router->post('/password', [
+                'as' => 'account.password',
                 'uses' => 'Base\AccountController@password',
             ]);
             $router->post('/email', [
+                'as' => 'account.email',
                 'uses' => 'Base\AccountController@email',
             ]);
         });
@@ -113,6 +115,7 @@ public function map(Router $router)
                 'uses' => 'Base\SecurityController@revoke',
             ]);
             $router->put('/totp', [
+                'as' => 'account.security.totp',
                 'uses' => 'Base\SecurityController@generateTotp',
             ]);
             $router->post('/totp', [

app/Http/Routes/ServerRoutes.php

@@ -153,6 +153,7 @@ public function map(Router $router)
             $router->group(['prefix' => 'ajax'], function ($server) use ($router) {
                 // Returns Server Status
                 $router->get('status', [
+                    'as' => 'server.ajax.status',
                     'uses' => 'Server\AjaxController@getStatus',
                 ]);
 

composer.json

@@ -27,7 +27,8 @@
         "dingo/api": "1.0.0-beta6",
         "aws/aws-sdk-php": "3.19.20",
         "predis/predis": "1.1.1",
-        "laracasts/utilities": "2.1.0"
+        "laracasts/utilities": "2.1.0",
+        "lord/laroute": "^2.3"
     },
     "require-dev": {
         "fzaninotto/faker": "~1.4",

config/app.php

@@ -159,6 +159,7 @@
         Prologue\Alerts\AlertsServiceProvider::class,
         Krucas\Settings\Providers\SettingsServiceProvider::class,
         Laracasts\Utilities\JavaScript\JavaScriptServiceProvider::class,
+        Lord\Laroute\LarouteServiceProvider::class,
 
     ],
 

config/laroute.php

@@ -0,0 +1,58 @@
+<?php
+
+return [
+
+    /*
+     * The destination path for the javascript file.
+     */
+    'path' => 'public/js',
+
+    /*
+     * The destination filename for the javascript file.
+     */
+    'filename' => 'laroute',
+
+    /*
+     * The namespace for the helper functions. By default this will bind them to
+     * `window.laroute`.
+     */
+    'namespace' => 'Router',
+
+    /*
+     * Generate absolute URLs
+     *
+     * Set the Application URL in config/app.php
+     */
+    'absolute' => false,
+
+    /*
+     * The Filter Method
+     *
+     * 'all' => All routes except "'laroute' => false"
+     * 'only' => Only "'laroute' => true" routes
+     * 'force' => All routes, ignored "laroute" route parameter
+     */
+    'filter' => 'all',
+
+    /*
+     * Controller Namespace
+     *
+     * Set here your controller namespace (see RouteServiceProvider -> $namespace) for cleaner action calls
+     * e.g. 'App\Http\Controllers'
+     */
+    'action_namespace' => '',
+
+    /*
+     * The path to the template `laroute.js` file. This is the file that contains
+     * the ported helper Laravel url/route functions and the route data to go
+     * with them.
+     */
+    'template' => 'vendor/lord/laroute/src/templates/laroute.js',
+
+    /*
+     * Appends a prefix to URLs. By default the prefix is an empty string.
+    *
+    */
+    'prefix' => '',
+
+];

public/js/laroute.js

@@ -36,3 +36,12 @@
 .btn-clear {
     background: transparent;
 }
+
+.user-panel > .info {
+    position: relative;
+    left: 0;
+}
+
+code {
+    font-size: 85%;
+}

public/themes/pterodactyl/css/pterodactyl.css

@@ -0,0 +1,76 @@
+// Copyright (c) 2015 - 2016 Dane Everitt <dane@daneeveritt.com>
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files (the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions:
+//
+// The above copyright notice and this permission notice shall be included in all
+// copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+// SOFTWARE.
+$(document).ready(function () {
+    $('#close_reload').click(function () {
+        location.reload();
+    });
+    $('#do_2fa').submit(function (event) {
+        event.preventDefault();
+
+        $.ajax({
+            type: 'PUT',
+            url: Router.route('account.security.totp'),
+            headers: {
+                'X-CSRF-TOKEN': $('meta[name="_token"]').attr('content'),
+            }
+        }).done(function (data) {
+            var image = new Image();
+            image.src = data.qrImage;
+            $(image).load(function () {
+                $('#hide_img_load').slideUp(function () {
+                    $('#qr_image_insert').attr('src', image.src).slideDown();
+                });
+            });
+            $('#2fa_secret_insert').html(data.secret);
+            $('#open2fa').modal('show');
+        }).fail(function (jqXHR) {
+            alert('An error occured while attempting to load the 2FA setup modal. Please try again.');
+            console.error(jqXHR);
+        });
+
+    });
+    $('#2fa_token_verify').submit(function (event) {
+        event.preventDefault();
+        $('#submit_action').html('<i class="fa fa-spinner fa-spin"></i> Submit').addClass('disabled');
+
+        $.ajax({
+            type: 'POST',
+            url: Router.route('account.security.totp'),
+            headers: {
+                'X-CSRF-TOKEN': $('meta[name="_token"]').attr('content'),
+            },
+            data: {
+                token: $('#2fa_token').val()
+            }
+        }).done(function (data) {
+            $('#notice_box_2fa').hide();
+            if (data === 'true') {
+                $('#notice_box_2fa').html('<div class="alert alert-success">2-Factor Authentication has been enabled on your account. Press \'Close\' below to reload the page.</div>').slideDown();
+            } else {
+                $('#notice_box_2fa').html('<div class="alert alert-danger">The token provided was invalid.</div>').slideDown();
+            }
+        }).fail(function (jqXHR) {
+            $('#notice_box_2fa').html('<div class="alert alert-danger">There was an error while attempting to enable 2-Factor Authentication on this account.</div>').slideDown();
+            console.error(jqXHR);
+        }).always(function () {
+            $('#submit_action').html('Submit').removeClass('disabled');
+        });
+    });
+});

public/themes/pterodactyl/js/frontend/2fa-modal.js

@@ -0,0 +1,75 @@
+// Copyright (c) 2015 - 2016 Dane Everitt <dane@daneeveritt.com>
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files (the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions:
+//
+// The above copyright notice and this permission notice shall be included in all
+// copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+// SOFTWARE.
+var Status = {
+    0: 'Offline',
+    1: 'Online',
+    2: 'Starting',
+    3: 'Stopping'
+};
+
+(function updateServerStatus () {
+    $('.dynamic-update').each(function (index, data) {
+        var element = $(this);
+        var serverShortUUID = $(this).data('server');
+        $.ajax({
+            type: 'GET',
+            url: Router.route('server.ajax.status', { server: serverShortUUID }),
+            timeout: 5000,
+            headers: {
+                'X-CSRF-TOKEN': $('meta[name="_token"]').attr('content'),
+            }
+        }).done(function (data) {
+            if (typeof data.status === 'undefined') {
+                element.find('[data-action="status"]').html('<span class="label label-default">Error</span>');
+                return;
+            }
+            switch (data.status) {
+                case 0:
+                    element.find('[data-action="status"]').html('<span class="label label-danger">Offline</span>');
+                    break;
+                case 1:
+                    element.find('[data-action="status"]').html('<span class="label label-success">Online</span>');
+                    break;
+                case 2:
+                    element.find('[data-action="status"]').html('<span class="label label-info">Starting</span>');
+                    break;
+                case 3:
+                    element.find('[data-action="status"]').html('<span class="label label-info">Stopping</span>');
+                    break;
+            }
+            if (data.status !== 0) {
+                var cpuMax = element.find('[data-action="cpu"]').data('cpumax');
+                var currentCpu = data.proc.cpu.total;
+                if (cpuMax !== 0) {
+                    currentCpu = parseFloat(((data.proc.cpu.total / cpuMax) * 100).toFixed(2).toString());
+                }
+                element.find('[data-action="memory"]').html(parseInt(data.proc.memory.total / (1024 * 1024)));
+                element.find('[data-action="cpu"]').html(currentCpu);
+            } else {
+                element.find('[data-action="memory"]').html('--');
+                element.find('[data-action="cpu"]').html('--');
+            }
+        }).fail(function (jqXHR) {
+            console.error(jqXHR);
+            element.find('[data-action="status"]').html('<span class="label label-default">Error</span>');
+        });
+    });
+    setTimeout(updateServerStatus, 10000);
+})();