2021-06-26 23:23:15 +08:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace BookStack\Auth;
|
2015-09-05 00:16:58 +08:00
|
|
|
|
2021-01-02 02:31:01 +08:00
|
|
|
use BookStack\Entities\EntityProvider;
|
2020-11-22 08:17:45 +08:00
|
|
|
use BookStack\Entities\Models\Book;
|
|
|
|
use BookStack\Entities\Models\Bookshelf;
|
|
|
|
use BookStack\Entities\Models\Chapter;
|
|
|
|
use BookStack\Entities\Models\Page;
|
2018-01-29 02:09:26 +08:00
|
|
|
use BookStack\Exceptions\NotFoundException;
|
2018-12-31 00:11:58 +08:00
|
|
|
use BookStack\Exceptions\UserUpdateException;
|
2020-12-09 07:46:38 +08:00
|
|
|
use BookStack\Uploads\UserAvatars;
|
2016-09-18 04:33:55 +08:00
|
|
|
use Exception;
|
2019-04-06 23:21:20 +08:00
|
|
|
use Illuminate\Database\Eloquent\Builder;
|
2020-12-09 07:46:38 +08:00
|
|
|
use Illuminate\Database\Eloquent\Collection;
|
2020-11-21 04:10:18 +08:00
|
|
|
use Illuminate\Pagination\LengthAwarePaginator;
|
2021-09-26 22:37:55 +08:00
|
|
|
use Illuminate\Support\Facades\Log;
|
2015-09-05 00:16:58 +08:00
|
|
|
|
|
|
|
class UserRepo
|
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
protected $userAvatar;
|
2015-09-05 00:16:58 +08:00
|
|
|
|
|
|
|
/**
|
|
|
|
* UserRepo constructor.
|
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function __construct(UserAvatars $userAvatar)
|
2015-09-05 00:16:58 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
$this->userAvatar = $userAvatar;
|
2015-09-05 00:16:58 +08:00
|
|
|
}
|
|
|
|
|
2015-09-06 19:14:32 +08:00
|
|
|
/**
|
2020-02-03 01:31:00 +08:00
|
|
|
* Get a user by their email address.
|
2015-09-06 19:14:32 +08:00
|
|
|
*/
|
2020-02-03 01:31:00 +08:00
|
|
|
public function getByEmail(string $email): ?User
|
2015-09-06 19:14:32 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
return User::query()->where('email', '=', $email)->first();
|
2015-09-05 00:16:58 +08:00
|
|
|
}
|
2015-09-06 03:25:57 +08:00
|
|
|
|
2015-09-06 19:14:32 +08:00
|
|
|
/**
|
2020-12-09 07:46:38 +08:00
|
|
|
* Get a user by their ID.
|
2015-09-06 19:14:32 +08:00
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function getById(int $id): User
|
2015-09-06 03:25:57 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
return User::query()->findOrFail($id);
|
2015-09-06 03:25:57 +08:00
|
|
|
}
|
2015-09-06 19:14:32 +08:00
|
|
|
|
2021-03-10 07:06:12 +08:00
|
|
|
/**
|
|
|
|
* Get a user by their slug.
|
|
|
|
*/
|
|
|
|
public function getBySlug(string $slug): User
|
|
|
|
{
|
|
|
|
return User::query()->where('slug', '=', $slug)->firstOrFail();
|
|
|
|
}
|
|
|
|
|
2016-02-28 03:24:42 +08:00
|
|
|
/**
|
|
|
|
* Get all the users with their permissions.
|
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function getAllUsers(): Collection
|
2016-02-28 03:24:42 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
return User::query()->with('roles', 'avatar')->orderBy('name', 'asc')->get();
|
2016-02-28 03:24:42 +08:00
|
|
|
}
|
|
|
|
|
2021-05-05 19:46:14 +08:00
|
|
|
/**
|
|
|
|
* Get all users as Builder for API
|
|
|
|
*/
|
2021-05-06 17:10:49 +08:00
|
|
|
public function getUsersBuilder(int $id = null ) : Builder
|
2021-05-05 19:46:14 +08:00
|
|
|
{
|
2021-05-06 17:10:49 +08:00
|
|
|
$query = User::query()->select(['*'])
|
|
|
|
->withLastActivityAt()
|
|
|
|
->with(['roles', 'avatar']);
|
2021-05-05 19:46:14 +08:00
|
|
|
return $query;
|
|
|
|
}
|
2016-05-22 17:44:31 +08:00
|
|
|
/**
|
|
|
|
* Get all the users with their permissions in a paginated format.
|
2021-12-15 02:47:22 +08:00
|
|
|
* Note: Due to the use of email search this should only be used when
|
|
|
|
* user is assumed to be trusted. (Admin users).
|
|
|
|
* Email search can be abused to extract email addresses.
|
2016-05-22 17:44:31 +08:00
|
|
|
*/
|
2020-11-21 04:10:18 +08:00
|
|
|
public function getAllUsersPaginatedAndSorted(int $count, array $sortData): LengthAwarePaginator
|
2016-05-22 17:44:31 +08:00
|
|
|
{
|
2020-11-21 04:10:18 +08:00
|
|
|
$sort = $sortData['sort'];
|
|
|
|
|
2021-01-11 06:43:22 +08:00
|
|
|
$query = User::query()->select(['*'])
|
2021-12-15 02:47:22 +08:00
|
|
|
->scopes(['withLastActivityAt'])
|
2021-01-11 06:43:22 +08:00
|
|
|
->with(['roles', 'avatar'])
|
2021-07-15 03:18:48 +08:00
|
|
|
->withCount('mfaValues')
|
2020-11-21 04:10:18 +08:00
|
|
|
->orderBy($sort, $sortData['order']);
|
2016-05-22 17:44:31 +08:00
|
|
|
|
|
|
|
if ($sortData['search']) {
|
|
|
|
$term = '%' . $sortData['search'] . '%';
|
2018-01-29 00:58:52 +08:00
|
|
|
$query->where(function ($query) use ($term) {
|
2016-05-22 17:44:31 +08:00
|
|
|
$query->where('name', 'like', $term)
|
|
|
|
->orWhere('email', 'like', $term);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
|
|
|
return $query->paginate($count);
|
|
|
|
}
|
|
|
|
|
2021-06-26 23:23:15 +08:00
|
|
|
/**
|
2015-09-06 19:14:32 +08:00
|
|
|
* Creates a new user and attaches a role to them.
|
|
|
|
*/
|
2020-02-03 01:31:00 +08:00
|
|
|
public function registerNew(array $data, bool $emailConfirmed = false): User
|
2015-09-06 19:14:32 +08:00
|
|
|
{
|
2020-02-03 01:31:00 +08:00
|
|
|
$user = $this->create($data, $emailConfirmed);
|
|
|
|
$user->attachDefaultRole();
|
2018-12-23 03:29:19 +08:00
|
|
|
$this->downloadAndAssignUserAvatar($user);
|
2016-01-17 23:20:07 +08:00
|
|
|
|
2015-12-16 03:27:36 +08:00
|
|
|
return $user;
|
|
|
|
}
|
2015-09-06 19:14:32 +08:00
|
|
|
|
2018-01-29 02:09:26 +08:00
|
|
|
/**
|
|
|
|
* Assign a user to a system-level role.
|
2021-06-26 23:23:15 +08:00
|
|
|
*
|
2018-01-29 02:09:26 +08:00
|
|
|
* @throws NotFoundException
|
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function attachSystemRole(User $user, string $systemRoleName)
|
2018-01-29 02:09:26 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
$role = Role::getSystemRole($systemRoleName);
|
|
|
|
if (is_null($role)) {
|
2018-01-29 02:09:26 +08:00
|
|
|
throw new NotFoundException("Role '{$systemRoleName}' not found");
|
|
|
|
}
|
|
|
|
$user->attachRole($role);
|
|
|
|
}
|
|
|
|
|
2015-09-06 19:14:32 +08:00
|
|
|
/**
|
|
|
|
* Checks if the give user is the only admin.
|
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function isOnlyAdmin(User $user): bool
|
2015-09-06 19:14:32 +08:00
|
|
|
{
|
2018-01-29 00:58:52 +08:00
|
|
|
if (!$user->hasSystemRole('admin')) {
|
|
|
|
return false;
|
|
|
|
}
|
2015-09-06 19:14:32 +08:00
|
|
|
|
2020-12-09 07:46:38 +08:00
|
|
|
$adminRole = Role::getSystemRole('admin');
|
|
|
|
if ($adminRole->users()->count() > 1) {
|
2018-01-29 00:58:52 +08:00
|
|
|
return false;
|
|
|
|
}
|
2020-12-09 07:46:38 +08:00
|
|
|
|
2015-09-06 19:14:32 +08:00
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2018-12-31 00:11:58 +08:00
|
|
|
/**
|
|
|
|
* Set the assigned user roles via an array of role IDs.
|
2021-06-26 23:23:15 +08:00
|
|
|
*
|
2018-12-31 00:11:58 +08:00
|
|
|
* @throws UserUpdateException
|
|
|
|
*/
|
|
|
|
public function setUserRoles(User $user, array $roles)
|
|
|
|
{
|
|
|
|
if ($this->demotingLastAdmin($user, $roles)) {
|
|
|
|
throw new UserUpdateException(trans('errors.role_cannot_remove_only_admin'), $user->getEditUrl());
|
|
|
|
}
|
|
|
|
|
|
|
|
$user->roles()->sync($roles);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check if the given user is the last admin and their new roles no longer
|
|
|
|
* contains the admin role.
|
|
|
|
*/
|
2021-06-26 23:23:15 +08:00
|
|
|
protected function demotingLastAdmin(User $user, array $newRoles): bool
|
2018-12-31 00:11:58 +08:00
|
|
|
{
|
|
|
|
if ($this->isOnlyAdmin($user)) {
|
2020-12-09 07:46:38 +08:00
|
|
|
$adminRole = Role::getSystemRole('admin');
|
2018-12-31 00:11:58 +08:00
|
|
|
if (!in_array(strval($adminRole->id), $newRoles)) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2015-09-06 19:14:32 +08:00
|
|
|
/**
|
|
|
|
* Create a new basic instance of user.
|
|
|
|
*/
|
2020-02-03 01:31:00 +08:00
|
|
|
public function create(array $data, bool $emailConfirmed = false): User
|
2015-09-06 19:14:32 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
$details = [
|
2021-06-26 23:23:15 +08:00
|
|
|
'name' => $data['name'],
|
|
|
|
'email' => $data['email'],
|
|
|
|
'password' => bcrypt($data['password']),
|
|
|
|
'email_confirmed' => $emailConfirmed,
|
2020-02-03 01:31:00 +08:00
|
|
|
'external_auth_id' => $data['external_auth_id'] ?? '',
|
2020-12-09 07:46:38 +08:00
|
|
|
];
|
2021-03-11 06:37:53 +08:00
|
|
|
|
|
|
|
$user = new User();
|
|
|
|
$user->forceFill($details);
|
|
|
|
$user->refreshSlug();
|
|
|
|
$user->save();
|
|
|
|
|
|
|
|
return $user;
|
2015-09-06 19:14:32 +08:00
|
|
|
}
|
2015-12-16 03:27:36 +08:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Remove the given user from storage, Delete all related content.
|
2021-06-26 23:23:15 +08:00
|
|
|
*
|
2018-01-28 22:08:14 +08:00
|
|
|
* @throws Exception
|
2015-12-16 03:27:36 +08:00
|
|
|
*/
|
2021-01-02 02:31:01 +08:00
|
|
|
public function destroy(User $user, ?int $newOwnerId = null)
|
2015-12-16 03:27:36 +08:00
|
|
|
{
|
|
|
|
$user->socialAccounts()->delete();
|
2019-12-30 01:03:52 +08:00
|
|
|
$user->apiTokens()->delete();
|
2021-05-23 20:41:56 +08:00
|
|
|
$user->favourites()->delete();
|
2021-07-01 05:10:02 +08:00
|
|
|
$user->mfaValues()->delete();
|
2015-12-16 03:27:36 +08:00
|
|
|
$user->delete();
|
2021-06-26 23:23:15 +08:00
|
|
|
|
2018-01-28 22:08:14 +08:00
|
|
|
// Delete user profile images
|
2021-05-25 01:45:08 +08:00
|
|
|
$this->userAvatar->destroyAllForUser($user);
|
2021-01-02 02:31:01 +08:00
|
|
|
|
|
|
|
if (!empty($newOwnerId)) {
|
|
|
|
$newOwner = User::query()->find($newOwnerId);
|
|
|
|
if (!is_null($newOwner)) {
|
|
|
|
$this->migrateOwnership($user, $newOwner);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Migrate ownership of items in the system from one user to another.
|
|
|
|
*/
|
|
|
|
protected function migrateOwnership(User $fromUser, User $toUser)
|
|
|
|
{
|
2021-06-26 23:23:15 +08:00
|
|
|
$entities = (new EntityProvider())->all();
|
2021-01-02 02:31:01 +08:00
|
|
|
foreach ($entities as $instance) {
|
|
|
|
$instance->newQuery()->where('owned_by', '=', $fromUser->id)
|
|
|
|
->update(['owned_by' => $toUser->id]);
|
|
|
|
}
|
2015-12-16 03:27:36 +08:00
|
|
|
}
|
2016-02-17 05:25:11 +08:00
|
|
|
|
|
|
|
/**
|
2016-02-18 06:11:48 +08:00
|
|
|
* Get the recently created content for this given user.
|
2016-02-17 05:25:11 +08:00
|
|
|
*/
|
2019-10-05 19:55:01 +08:00
|
|
|
public function getRecentlyCreated(User $user, int $count = 20): array
|
2016-02-17 05:25:11 +08:00
|
|
|
{
|
2019-10-05 19:55:01 +08:00
|
|
|
$query = function (Builder $query) use ($user, $count) {
|
|
|
|
return $query->orderBy('created_at', 'desc')
|
|
|
|
->where('created_by', '=', $user->id)
|
|
|
|
->take($count)
|
|
|
|
->get();
|
2019-04-06 23:21:20 +08:00
|
|
|
};
|
|
|
|
|
2016-02-18 06:11:48 +08:00
|
|
|
return [
|
2019-10-05 19:55:01 +08:00
|
|
|
'pages' => $query(Page::visible()->where('draft', '=', false)),
|
|
|
|
'chapters' => $query(Chapter::visible()),
|
|
|
|
'books' => $query(Book::visible()),
|
|
|
|
'shelves' => $query(Bookshelf::visible()),
|
2016-02-18 06:11:48 +08:00
|
|
|
];
|
2016-02-17 05:25:11 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get asset created counts for the give user.
|
|
|
|
*/
|
2019-10-05 19:55:01 +08:00
|
|
|
public function getAssetCounts(User $user): array
|
2016-02-17 05:25:11 +08:00
|
|
|
{
|
2019-10-05 19:55:01 +08:00
|
|
|
$createdBy = ['created_by' => $user->id];
|
2021-06-26 23:23:15 +08:00
|
|
|
|
2016-02-17 05:25:11 +08:00
|
|
|
return [
|
2021-06-26 23:23:15 +08:00
|
|
|
'pages' => Page::visible()->where($createdBy)->count(),
|
|
|
|
'chapters' => Chapter::visible()->where($createdBy)->count(),
|
|
|
|
'books' => Book::visible()->where($createdBy)->count(),
|
|
|
|
'shelves' => Bookshelf::visible()->where($createdBy)->count(),
|
2016-02-17 05:25:11 +08:00
|
|
|
];
|
|
|
|
}
|
2016-02-18 06:11:48 +08:00
|
|
|
|
2016-05-02 02:36:53 +08:00
|
|
|
/**
|
|
|
|
* Get the roles in the system that are assignable to a user.
|
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function getAllRoles(): Collection
|
2016-05-02 02:36:53 +08:00
|
|
|
{
|
2020-12-09 07:46:38 +08:00
|
|
|
return Role::query()->orderBy('display_name', 'asc')->get();
|
2016-05-02 02:36:53 +08:00
|
|
|
}
|
|
|
|
|
2018-01-29 02:09:26 +08:00
|
|
|
/**
|
2018-12-23 03:29:19 +08:00
|
|
|
* Get an avatar image for a user and set it as their avatar.
|
|
|
|
* Returns early if avatars disabled or not set in config.
|
2018-01-29 02:09:26 +08:00
|
|
|
*/
|
2020-12-09 07:46:38 +08:00
|
|
|
public function downloadAndAssignUserAvatar(User $user): void
|
2018-01-29 02:09:26 +08:00
|
|
|
{
|
|
|
|
try {
|
2020-12-09 07:46:38 +08:00
|
|
|
$this->userAvatar->fetchAndAssignToUser($user);
|
2018-01-29 02:09:26 +08:00
|
|
|
} catch (Exception $e) {
|
2019-10-05 19:55:01 +08:00
|
|
|
Log::error('Failed to save user avatar image');
|
2018-01-29 02:09:26 +08:00
|
|
|
}
|
|
|
|
}
|
2018-08-21 09:19:25 +08:00
|
|
|
}
|