Clean up routes and middleware checking

DaneEveritt · DaneEveritt · commit 4ae8a45ed302 · 2016-01-04T16:09:39.000-05:00
diff --git a/app/Http/Controllers/API/UserController.php b/app/Http/Controllers/API/UserController.php
@@ -19,7 +19,7 @@ class UserController extends Controller
      */
     public function __construct()
     {
-        $this->middleware('api');
+        //
     }
 
     public function getAllUsers(Request $request)
diff --git a/app/Http/Controllers/Admin/AccountsController.php b/app/Http/Controllers/Admin/AccountsController.php
@@ -20,11 +20,7 @@ class AccountsController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
-        $this->middleware('admin');
-
+        //
     }
 
     public function getIndex(Request $request)
diff --git a/app/Http/Controllers/Admin/BaseController.php b/app/Http/Controllers/Admin/BaseController.php
@@ -15,11 +15,7 @@ class BaseController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
-        $this->middleware('admin');
-
+        //
     }
 
     public function getIndex(Request $request)
diff --git a/app/Http/Controllers/Admin/ServersController.php b/app/Http/Controllers/Admin/ServersController.php
@@ -23,11 +23,7 @@ class ServersController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
-        $this->middleware('admin');
-
+        //
     }
 
     public function getIndex(Request $request)
diff --git a/app/Http/Controllers/Auth/AuthController.php b/app/Http/Controllers/Auth/AuthController.php
@@ -64,7 +64,7 @@ class AuthController extends Controller
      */
     public function __construct()
     {
-        $this->middleware('guest', ['except' => 'getLogout']);
+        //
     }
 
     /**
diff --git a/app/Http/Controllers/Base/IndexController.php b/app/Http/Controllers/Base/IndexController.php
@@ -21,9 +21,7 @@ class IndexController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
+        //
     }
 
     /**
diff --git a/app/Http/Controllers/Server/AjaxController.php b/app/Http/Controllers/Server/AjaxController.php
@@ -38,14 +38,7 @@ class AjaxController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
-
-        // Routes in this file are also checked aganist the server middleware. If the user
-        // does not have permission to view the server it will not load.
-        $this->middleware('server');
-
+        //
     }
 
     /**
diff --git a/app/Http/Controllers/Server/ServerController.php b/app/Http/Controllers/Server/ServerController.php
@@ -26,14 +26,7 @@ class ServerController extends Controller
      */
     public function __construct()
     {
-
-        // All routes in this controller are protected by the authentication middleware.
-        $this->middleware('auth');
-
-        // Routes in this file are also checked aganist the server middleware. If the user
-        // does not have permission to view the server it will not load.
-        $this->middleware('server');
-
+        //
     }
 
     /**
diff --git a/app/Http/Middleware/CheckServer.php b/app/Http/Middleware/CheckServer.php
@@ -23,8 +23,13 @@ public function handle($request, Closure $next)
             return redirect()->guest('auth/login');
         }
 
-        if (!Server::getByUUID($request->route()->server)) {
-            return redirect('/');
+        $server = Server::getByUUID($request->route()->server);
+        if (!$server) {
+            return redirect()->route('index');
+        }
+
+        if ($server->installed !== 1) {
+            return response()->view('errors.installing', [], 503);
         }
 
         return $next($request);
diff --git a/app/Http/Routes/AdminRoutes.php b/app/Http/Routes/AdminRoutes.php
@@ -7,47 +7,136 @@
 class AdminRoutes {
 
     public function map(Router $router) {
-        $router->group(['prefix' => 'admin'], function ($server) use ($router) {
-            $router->get('/', [ 'as' => 'admin.index', 'uses' => 'Admin\BaseController@getIndex' ]);
 
-            // Account Routes
-            $router->group(['prefix' => 'accounts'], function ($server) use ($router) {
+        // Admin Index
+        $router->get('admin', [
+            'as' => 'admin.index',
+            'middleware' => [
+                'auth',
+                'admin'
+            ],
+            'uses' => 'Admin\BaseController@getIndex'
+        ]);
 
-                $router->get('/new', [ 'as' => 'admin.accounts.new', 'uses' => 'Admin\AccountsController@getNew' ]);
-                $router->post('/new', [ 'as' => 'admin.accounts.new', 'uses' => 'Admin\AccountsController@postNew' ]);
+        $router->group([
+            'prefix' => 'admin/accounts',
+            'middleware' => [
+                'auth',
+                'admin'
+            ]
+        ], function () use ($router) {
 
-                $router->get('/', [ 'as' => 'admin.accounts', 'uses' => 'Admin\AccountsController@getIndex' ]);
-                $router->get('/view/{id}', [ 'as' => 'admin.accounts.view', 'uses' => 'Admin\AccountsController@getView' ]);
+            // View All Accounts on System
+            $router->get('/', [
+                'as' => 'admin.accounts',
+                'uses' => 'Admin\AccountsController@getIndex'
+            ]);
+
+            // View Specific Account
+            $router->get('/view/{id}', [
+                'as' => 'admin.accounts.view',
+                'uses' => 'Admin\AccountsController@getView'
+            ]);
+
+            // Show Create Account Page
+            $router->get('/new', [
+                'as' => 'admin.accounts.new',
+                'uses' => 'Admin\AccountsController@getNew'
+            ]);
 
-                $router->post('/update', [ 'as' => 'admin.accounts.update', 'uses' => 'Admin\AccountsController@postUpdate' ]);
-                $router->get('/delete/{id}', [ 'as' => 'admin.accounts.delete', 'uses' => 'Admin\AccountsController@getDelete' ]);
-            });
+            // Handle Creating New Account
+            $router->post('/new', [
+                'uses' => 'Admin\AccountsController@postNew'
+            ]);
 
-            // Server Routes
-            $router->group(['prefix' => 'servers'], function ($server) use ($router) {
+            // Update A Specific Account
+            $router->post('/update', [
+                'uses' => 'Admin\AccountsController@postUpdate'
+            ]);
 
-                $router->get('/', [ 'as' => 'admin.servers', 'uses' => 'Admin\ServersController@getIndex' ]);
-                $router->get('/new', [ 'as' => 'admin.servers.new', 'uses' => 'Admin\ServersController@getNew' ]);
-                $router->get('/view/{id}', [ 'as' => 'admin.servers.view', 'uses' => 'Admin\ServersController@getView' ]);
+            // Delete an Account Matching an ID
+            $router->get('/delete/{id}', [
+                'uses' => 'Admin\AccountsController@getDelete'
+            ]);
 
-                $router->post('/view/{id}/details', [ 'uses' => 'Admin\ServersController@postUpdateServerDetails' ]);
-                $router->post('/view/{id}/rebuild', [ 'uses' => 'Admin\ServersController@postUpdateServerToggleBuild' ]);
-                $router->post('/view/{id}/build', [ 'uses' => 'Admin\ServersController@postUpdateServerUpdateBuild' ]);
-                $router->delete('/view/{id}/{force?}', [ 'uses' => 'Admin\ServersController@deleteServer' ]);
+        });
+
+        // Server Routes
+        $router->group([
+            'prefix' => 'admin/servers',
+            'middleware' => [
+                'auth',
+                'admin'
+            ]
+        ], function () use ($router) {
+
+            // View All Servers
+            $router->get('/', [
+                'as' => 'admin.servers',
+                'uses' => 'Admin\ServersController@getIndex' ]);
+
+            // View Create Server Page
+            $router->get('/new', [
+                'as' => 'admin.servers.new',
+                'uses' => 'Admin\ServersController@getNew'
+            ]);
+
+            // Handle POST Request for Creating Server
+            $router->post('/new', [
+                'uses' => 'Admin\ServersController@postNewServer'
+            ]);
 
-                $router->post('/new', [ 'uses' => 'Admin\ServersController@postNewServer']);
-                $router->post('/new/get-nodes', [ 'uses' => 'Admin\ServersController@postNewServerGetNodes' ]);
-                $router->post('/new/get-ips', [ 'uses' => 'Admin\ServersController@postNewServerGetIps' ]);
-                $router->post('/new/service-options', [ 'uses' => 'Admin\ServersController@postNewServerServiceOptions' ]);
-                $router->post('/new/service-variables', [ 'uses' => 'Admin\ServersController@postNewServerServiceVariables' ]);
+            // Assorted Page Helpers
+                $router->post('/new/get-nodes', [
+                    'uses' => 'Admin\ServersController@postNewServerGetNodes'
+                ]);
+
+                $router->post('/new/get-ips', [
+                    'uses' => 'Admin\ServersController@postNewServerGetIps'
+                ]);
+
+                $router->post('/new/service-options', [
+                    'uses' => 'Admin\ServersController@postNewServerServiceOptions'
+                ]);
+
+                $router->post('/new/service-variables', [
+                    'uses' => 'Admin\ServersController@postNewServerServiceVariables'
+                ]);
+            // End Assorted Page Helpers
+
+            // View Specific Server
+            $router->get('/view/{id}', [
+                'as' => 'admin.servers.view',
+                'uses' => 'Admin\ServersController@getView'
+            ]);
+
+            // Change Server Details
+            $router->post('/view/{id}/details', [
+                'uses' => 'Admin\ServersController@postUpdateServerDetails'
+            ]);
+
+            // Rebuild Server
+            $router->post('/view/{id}/rebuild', [
+                'uses' => 'Admin\ServersController@postUpdateServerToggleBuild'
+            ]);
+
+            // Change Build Details
+            $router->post('/view/{id}/build', [
+                'uses' => 'Admin\ServersController@postUpdateServerUpdateBuild'
+            ]);
 
-            });
             // Change Install Status
             $router->post('/view/{id}/installed', [
                 'uses' => 'Admin\ServersController@postToggleInstall'
             ]);
 
+            // Delete [force delete]
+            $router->delete('/view/{id}/{force?}', [
+                'uses' => 'Admin\ServersController@deleteServer'
+            ]);
+
         });
+
     }
 
 }
diff --git a/app/Http/Routes/AuthRoutes.php b/app/Http/Routes/AuthRoutes.php
@@ -9,23 +9,63 @@
 class AuthRoutes {
 
     public function map(Router $router) {
-        $router->group(['prefix' => 'auth'], function () use ($router) {
+        $router->group([
+            'prefix' => 'auth',
+            'middleware' => [
+                'guest'
+            ]
+        ], function () use ($router) {
 
-            $router->get('login', [ 'as' => 'auth.login', 'uses' => 'Auth\AuthController@getLogin' ]);
-            $router->post('login', [ 'uses' => 'Auth\AuthController@postLogin' ]);
-            $router->post('login/totp', [ 'uses' => 'Auth\AuthController@checkTotp' ]);
+            // Display Login Page
+            $router->get('login', [
+                'as' => 'auth.login',
+                'uses' => 'Auth\AuthController@getLogin'
+            ]);
 
+            // Handle Login
+            $router->post('login', [
+                'uses' => 'Auth\AuthController@postLogin'
+            ]);
 
-            $router->get('password', [ 'as' => 'auth.password', 'uses' => 'Auth\PasswordController@getEmail' ]);
-            $router->post('password', [ 'as' => 'auth.password.submit', 'uses' => 'Auth\PasswordController@postEmail' ], function () {
+            // Determine if we need to ask for a TOTP Token
+            $router->post('login/totp', [
+                'uses' => 'Auth\AuthController@checkTotp'
+            ]);
+
+            // Show Password Reset Form
+            $router->get('password', [
+                'as' => 'auth.password',
+                'uses' => 'Auth\PasswordController@getEmail'
+            ]);
+
+            // Handle Password Reset
+            $router->post('password', [
+                'as' => 'auth.password.submit',
+                'uses' => 'Auth\PasswordController@postEmail'
+            ], function () {
                 return redirect('auth/password')->with('sent', true);
             });
-            $router->post('password/verify', [ 'uses' => 'Auth\PasswordController@postReset' ]);
-            $router->get('password/verify/{token}', [ 'as' => 'auth.verify', 'uses' => 'Auth\PasswordController@getReset' ]);
 
-            $router->get('logout', [ 'as' => 'auth.logout', 'uses' => 'Auth\AuthController@getLogout' ]);
+            // Show Verification Checkpoint
+            $router->get('password/verify/{token}', [
+                'as' => 'auth.verify',
+                'uses' => 'Auth\PasswordController@getReset'
+            ]);
+
+            // Handle Verification
+            $router->post('password/verify', [
+                'uses' => 'Auth\PasswordController@postReset'
+            ]);
 
         });
+
+        // Not included above because we don't want the guest middleware
+        $router->get('logout', [
+            'as' => 'auth.logout',
+            'middleware' => 'auth',
+            'uses' => 'Auth\AuthController@getLogout'
+        ]);
+
     }
 
 }
diff --git a/app/Http/Routes/BaseRoutes.php b/app/Http/Routes/BaseRoutes.php
diff --git a/app/Http/Routes/RemoteRoutes.php b/app/Http/Routes/RemoteRoutes.php
diff --git a/app/Http/Routes/RestRoutes.php b/app/Http/Routes/RestRoutes.php
diff --git a/app/Http/Routes/ServerRoutes.php b/app/Http/Routes/ServerRoutes.php
diff --git a/resources/views/errors/installing.blade.php b/resources/views/errors/installing.blade.php

Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ class UserController extends Controller`
`19`	`19`	`*/`
`20`	`20`	`public function __construct()`
`21`	`21`	`{`
`22`		`- $this->middleware('api');`
	`22`	`+ //`
`23`	`23`	`}`
`24`	`24`
`25`	`25`	`public function getAllUsers(Request $request)`
Original file line number	Diff line number	Diff line change
`@@ -20,11 +20,7 @@ class AccountsController extends Controller`
`20`	`20`	`*/`
`21`	`21`	`public function __construct()`
`22`	`22`	`{`
`23`		`-`
`24`		`- // All routes in this controller are protected by the authentication middleware.`
`25`		`- $this->middleware('auth');`
`26`		`- $this->middleware('admin');`
`27`		`-`
	`23`	`+ //`
`28`	`24`	`}`
`29`	`25`
`30`	`26`	`public function getIndex(Request $request)`
Original file line number	Diff line number	Diff line change
`@@ -15,11 +15,7 @@ class BaseController extends Controller`
`15`	`15`	`*/`
`16`	`16`	`public function __construct()`
`17`	`17`	`{`
`18`		`-`
`19`		`- // All routes in this controller are protected by the authentication middleware.`
`20`		`- $this->middleware('auth');`
`21`		`- $this->middleware('admin');`
`22`		`-`
	`18`	`+ //`
`23`	`19`	`}`
`24`	`20`
`25`	`21`	`public function getIndex(Request $request)`
Original file line number	Diff line number	Diff line change
`@@ -23,11 +23,7 @@ class ServersController extends Controller`
`23`	`23`	`*/`
`24`	`24`	`public function __construct()`
`25`	`25`	`{`
`26`		`-`
`27`		`- // All routes in this controller are protected by the authentication middleware.`
`28`		`- $this->middleware('auth');`
`29`		`- $this->middleware('admin');`
`30`		`-`
	`26`	`+ //`
`31`	`27`	`}`
`32`	`28`
`33`	`29`	`public function getIndex(Request $request)`
Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ class AuthController extends Controller`
`64`	`64`	`*/`
`65`	`65`	`public function __construct()`
`66`	`66`	`{`
`67`		`- $this->middleware('guest', ['except' => 'getLogout']);`
	`67`	`+ //`
`68`	`68`	`}`
`69`	`69`
`70`	`70`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -21,9 +21,7 @@ class IndexController extends Controller`
`21`	`21`	`*/`
`22`	`22`	`public function __construct()`
`23`	`23`	`{`
`24`		`-`
`25`		`- // All routes in this controller are protected by the authentication middleware.`
`26`		`- $this->middleware('auth');`
	`24`	`+ //`
`27`	`25`	`}`
`28`	`26`
`29`	`27`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -23,8 +23,13 @@ public function handle($request, Closure $next)`
`23`	`23`	`return redirect()->guest('auth/login');`
`24`	`24`	`}`
`25`	`25`
`26`		`- if (!Server::getByUUID($request->route()->server)) {`
`27`		`- return redirect('/');`
	`26`	`+ $server = Server::getByUUID($request->route()->server);`
	`27`	`+ if (!$server) {`
	`28`	`+ return redirect()->route('index');`
	`29`	`+ }`
	`30`	`+`
	`31`	`+ if ($server->installed !== 1) {`
	`32`	`+ return response()->view('errors.installing', [], 503);`
`28`	`33`	`}`
`29`	`34`
`30`	`35`	`return $next($request);`