Basic initial subuser management

DaneEveritt · DaneEveritt · commit b7666bdb0585 · 2016-01-18T01:24:33.000-05:00
diff --git a/app/Http/Controllers/Server/SubuserController.php b/app/Http/Controllers/Server/SubuserController.php
@@ -0,0 +1,77 @@
+<?php
+
+namespace Pterodactyl\Http\Controllers\Server;
+
+use DB;
+use Alert;
+use Pterodactyl\Models;
+
+use Illuminate\Http\Request;
+use Pterodactyl\Http\Controllers\Controller;
+
+class SubuserController extends Controller
+{
+
+    /**
+     * Controller Constructor
+     *
+     * @return void
+     */
+    public function __construct()
+    {
+        //
+    }
+
+    public function getIndex(Request $request, $uuid)
+    {
+        $server = Models\Server::getByUUID($uuid);
+        $this->authorize('list-subusers', $server);
+
+        return view('server.users.index', [
+            'server' => $server,
+            'node' => Models\Node::find($server->node),
+            'subusers' => Models\Subuser::select('subusers.*', 'users.email as a_userEmail')
+                ->join('users', 'users.id', '=', 'subusers.user_id')
+                ->where('server_id', $server->id)
+                ->get()
+        ]);
+
+    }
+
+    public function getView(Request $request, $uuid, $id)
+    {
+        $server = Models\Server::getByUUID($uuid);
+        $this->authorize('view-subuser', $server);
+
+        $subuser = Models\Subuser::select('subusers.*', 'users.email as a_userEmail')
+            ->join('users', 'users.id', '=', 'subusers.user_id')
+            ->where(DB::raw('md5(subusers.id)'), $id)->where('subusers.server_id', $server->id)
+            ->first();
+
+        if (!$subuser) {
+            abort(404);
+        }
+
+        $permissions = [];
+        $modelPermissions = Models\Permission::select('permission')
+            ->where('user_id', $subuser->user_id)->where('server_id', $server->id)
+            ->get();
+
+        foreach($modelPermissions as &$perm) {
+            $permissions[$perm->permission] = true;
+        }
+
+        return view('server.users.view', [
+            'server' => $server,
+            'node' => Models\Node::find($server->node),
+            'subuser' => $subuser,
+            'permissions' => $permissions,
+        ]);
+    }
+
+    public function postView(Request $request, $uuid, $id)
+    {
+        //
+    }
+
+}
diff --git a/app/Http/Routes/ServerRoutes.php b/app/Http/Routes/ServerRoutes.php
@@ -52,6 +52,21 @@ public function map(Router $router) {
                 'uses' => 'Server\AjaxController@postSaveFile'
             ]);
 
+            // Sub-User Routes
+            $router->get('users', [
+                'as' => 'server.subusers',
+                'uses' => 'Server\SubuserController@getIndex'
+            ]);
+
+            $router->get('users/view/{id}', [
+                'as' => 'server.subusers.view',
+                'uses' => 'Server\SubuserController@getView'
+            ]);
+
+            $router->post('users/view/{id}', [
+                'uses' => 'Server\SubuserController@postView'
+            ]);
+
             // Assorted AJAX Routes
             $router->group(['prefix' => 'ajax'], function ($server) use ($router) {
                 // Returns Server Status
diff --git a/app/Repositories/SubuserRepository.php b/app/Repositories/SubuserRepository.php
@@ -0,0 +1,78 @@
+<?php
+
+namespace Pterodactyl\Repositories;
+
+use DB;
+use Validator;
+
+use Pterodactyl\Models;
+use Pterodactyl\Services\UuidService;
+
+use Pterodactyl\Exceptions\DisplayValidationException;
+use Pterodactyl\Exceptions\DisplayException;
+
+class UserRepository
+{
+
+    /**
+     * Allowed permissions and their related daemon permission.
+     * @var array
+     */
+    protected $permissions = [
+        // Power Permissions
+        'power-start' => 's:power:start',
+        'power-stop' => 's:power:stop',
+        'power-restart' => 's:power:restart',
+        'power-kill' => 's:power:kill',
+
+        // Commands
+        'send-command' => 's:command',
+
+        // File Manager
+        'list-files' => 's:files:get',
+        'edit-file' => 's:files:read',
+        'save-file' => 's:files:post',
+        'create-file' => 's:files:post',
+        'download-file' => null,
+        'upload-file' => 's:files:upload',
+        'delete-file' => 's:files:delete',
+
+        // Subusers
+        'list-subusers' => null,
+        'view-subuser' => null,
+        'edit-subuser' => null,
+        'create-subuser' => null,
+        'delete-subuser' => null,
+
+        // Management
+        'set-connection' => null,
+        'view-sftp' => null,
+        'reset-sftp' => 's:set-password'
+    ];
+
+    public function __construct()
+    {
+        //
+    }
+
+    /**
+     * Updates permissions for a given subuser.
+     * @param  integer $id  The ID of the subuser row in MySQL. (Not the user ID)
+     * @param  array  $data
+     * @throws DisplayValidationException
+     * @throws DisplayException
+     * @return void
+     */
+    public function update($id, array $data)
+    {
+        $validator = Validator::make($data, [
+            'permissions' => 'required|array'
+        ]);
+
+        if ($validator->fails()) {
+            throw new DisplayValidationException(json_encode($validator->all()));
+        }
+
+        // @TODO the thing.
+
+    }
diff --git a/resources/views/layouts/master.blade.php b/resources/views/layouts/master.blade.php
@@ -10,10 +10,12 @@
         <link rel="stylesheet" href="{{ asset('css/animate.css') }}">
         <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/font-awesome/4.5.0/css/font-awesome.min.css">
         <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/sweetalert/1.1.3/sweetalert.min.css">
+        <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/fuelux/3.13.0/css/fuelux.min.css" />
         <script src="//cdnjs.cloudflare.com/ajax/libs/jquery/2.1.4/jquery.min.js"></script>
         <script src="//cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.2/js/bootstrap.min.js"></script>
         <script src="//cdnjs.cloudflare.com/ajax/libs/socket.io/1.3.7/socket.io.min.js"></script>
         <script src="//cdnjs.cloudflare.com/ajax/libs/sweetalert/1.1.3/sweetalert.min.js"></script>
+        <script src="//cdnjs.cloudflare.com/ajax/libs/fuelux/3.13.0/js/fuelux.min.js"></script>
         <script src="{{ asset('js/admin.min.js') }}"></script>
         <script src="{{ asset('js/bootstrap-notify.min.js') }}"></script>
         <script>
diff --git a/resources/views/server/index.blade.php b/resources/views/server/index.blade.php
@@ -448,10 +448,14 @@ function updatePlayerListVisibility(data) {
                 data: JSON.stringify({ command: ccmd })
             }).fail(function (jqXHR) {
                 console.error(jqXHR);
+                var error = 'An error occured while trying to process this request.';
+                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {
+                    error = jqXHR.responseJSON.error;
+                }
                 swal({
                     type: 'error',
                     title: 'Whoops!',
-                    text: 'There was an error while attempting to process your request. Please try again.'
+                    text: error
                 });
             }).done(function () {
                 $('#ccmd').val('');
diff --git a/resources/views/server/users/index.blade.php b/resources/views/server/users/index.blade.php
@@ -0,0 +1,38 @@
+@extends('layouts.master')
+
+@section('title')
+    Viewing Subusers
+@endsection
+
+@section('content')
+<div class="col-md-12">
+    <h3 class="nopad">Manage Sub-Users</h3><hr />
+    <table class="table table-bordered table-hover">
+        <thead>
+            <tr>
+                <th>Email</th>
+                <th>Created</th>
+                <th>Modified</th>
+                @can('view-subuser', $server)<th></th>@endcan
+                @can('delete-subuser', $server)<th></th>@endcan
+            </tr>
+        </thead>
+        <tbody>
+            @foreach($subusers as $user)
+                <tr>
+                    <td><code>{{ $user->a_userEmail }}</code></td>
+                    <td>{{ $user->created_at }}</td>
+                    <td>{{ $user->updated_at }}</td>
+                    @can('view-subuser', $server)<td class="text-center"><a href="{{ route('server.subusers.view', ['server' => $server->uuidShort, 'id' => md5($user->id)]) }}" class="text-success"><i class="fa fa-wrench"></i></a></td>@endcan
+                    @can('delete-subuser', $server)<td class="text-center"><a href="#/delete/{{ md5($user->id) }}" class="text-danger"><i class="fa fa-trash-o"></i></a></td>@endcan
+                </tr>
+            @endforeach
+        </tbody>
+    </table>
+</div>
+<script>
+$(document).ready(function () {
+    $('.server-users').addClass('active');
+});
+</script>
+@endsection
diff --git a/resources/views/server/users/view.blade.php b/resources/views/server/users/view.blade.php
