composer update (#1966 )

Disable Captcha & Oauth Settings actions when read only (#1968 )
Use Policies rather then overriding can*() functions (#1837 )
2025-12-09 01:00:15 +01:00 · 2025-12-08 10:46:33 -05:00 · 2025-12-08 11:33:29 +01:00 · 2025-12-07 14:53:13 -05:00 · 2025-12-06 20:54:40 +01:00 · 2025-12-06 20:17:05 +01:00
2470 changed files with 63581 additions and 71317 deletions
--- a/.dockerignore
+++ b/.dockerignore
@ -1,10 +1,29 @@
 **.DS_Store
 .env
 .devcontainer
 .dockerignore
 .editorconfig
 .git
-node_modules
+.github
-vendor
+**.gitignore
 .php-cs-fixer.dist.php
 .prettierrc.json
 .vscode
 Dockerfile
 bounties.md
 compose.yml
 contributing.md
 contributor_license_agreement.md
 database/database.sqlite
 docker/README.md
 node_modules
 phpstan.neon
 phpunit.xml
 readme.md
 storage/debugbar/*.json
 storage/logs/*.log
 storage/framework/cache/data/*
 storage/framework/sessions/*
 storage/framework/testing
 storage/framework/views/*.php
 storage/logs/*.log
 vendor
--- a/.env.example
+++ b/.env.example
@ -3,5 +3,4 @@ APP_DEBUG=false
 APP_KEY=
 APP_URL=http://panel.test
 APP_INSTALLED=false
 APP_TIMEZONE=UTC
 APP_LOCALE=en
--- a/.eslintignore
+++ b/.eslintignore
@ -1,6 +0,0 @@
 public
 node_modules
 resources/views
 babel.config.js
 tailwind.config.js
 webpack.config.js
--- a/.eslintrc.js
+++ b/.eslintrc.js
@ -1,52 +0,0 @@
 /** @type {import('eslint').Linter.Config} */
 module.exports = {
    parser: '@typescript-eslint/parser',
    parserOptions: {
        ecmaVersion: 6,
        ecmaFeatures: {
            jsx: true,
        },
        project: './tsconfig.json',
        tsconfigRootDir: './',
    },
    settings: {
        react: {
            pragma: 'React',
            version: 'detect',
        },
        linkComponents: [
            { name: 'Link', linkAttribute: 'to' },
            { name: 'NavLink', linkAttribute: 'to' },
        ],
    },
    env: {
        browser: true,
        es6: true,
    },
    plugins: ['react', 'react-hooks', 'prettier', '@typescript-eslint'],
    extends: [
        // 'standard',
        'eslint:recommended',
        'plugin:react/recommended',
        'plugin:@typescript-eslint/recommended',
        'plugin:jest-dom/recommended',
    ],
    rules: {
        eqeqeq: 'error',
        'prettier/prettier': ['error', {}, { usePrettierrc: true }],
        // TypeScript can infer this significantly better than eslint ever can.
        'react/prop-types': 0,
        'react/display-name': 0,
        '@typescript-eslint/no-explicit-any': 0,
        '@typescript-eslint/no-non-null-assertion': 0,
        // 'react/no-unknown-property': ['error', { ignore: ['css'] }],
        // This setup is required to avoid a spam of errors when running eslint about React being
        // used before it is defined.
        //
        // @see https://github.com/typescript-eslint/typescript-eslint/blob/master/packages/eslint-plugin/docs/rules/no-use-before-define.md#how-to-use
        'no-use-before-define': 0,
        '@typescript-eslint/no-use-before-define': 'warn',
        '@typescript-eslint/no-unused-vars': ['warn', { argsIgnorePattern: '^_', varsIgnorePattern: '^_' }],
        '@typescript-eslint/ban-ts-comment': ['error', { 'ts-expect-error': 'allow-with-description' }],
    },
 };
--- a/.github/ISSUE_TEMPLATE/bug-report.yml
+++ b/.github/ISSUE_TEMPLATE/bug-report.yml
@ -64,10 +64,9 @@ body:
    label: Error Logs
    description: |
      Run the following command to collect logs on your system.
-
+      Wings: `sudo wings diagnostics --hastebin-url=https://logs.pelican.dev`
-      Wings: `sudo wings diagnostics`
+      Panel: `tail -n 300 /var/www/pelican/storage/logs/laravel-$(date +%F).log | curl --data-binary @- https://logs.pelican.dev`
-      Panel: `tail -n 150 /var/www/pelican/storage/logs/laravel-$(date +%F).log | curl -X POST -F 'c=@-' paste.pelistuff.com`
+    placeholder: "https://logs.pelican.dev/c17f750e"
    placeholder: "https://pelipaste.com/a1h6z"
    render: bash
  validations:
    required: false
--- a/.github/docker/README.md
+++ b/.github/docker/README.md
@ -1,76 +0,0 @@
 # Pelican Panel - Docker Image
 This is a ready to use docker image for the panel.
 ## Requirements
 This docker image requires some additional software to function. The software can either be provided in other containers (see the [docker-compose.yml](https://github.com/pelican-dev/panel/blob/develop/docker-compose.example.yml) as an example) or as existing instances.
 A mysql database is required. We recommend the stock [MariaDB Image](https://hub.docker.com/_/mariadb/) image if you prefer to run it in a docker container. As a non-containerized option we recommend mariadb.
 A caching software is required as well. We recommend the stock [Redis Image](https://hub.docker.com/_/redis/) image. You can choose any of the [supported options](#cache-drivers).
 You can provide additional settings using a custom `.env` file or by setting the appropriate environment variables in the docker-compose file.
 ## Setup
 Start the docker container and the required dependencies (either provide existing ones or start containers as well, see the [docker-compose.yml](https://github.com/pelican-dev/panel/blob/develop/docker-compose.example.yml) file as an example.
 After the startup is complete you'll need to create a user.
 If you are running the docker container without docker-compose, use:
 ```
 docker exec -it <container id> php artisan p:user:make
 ```
 If you are using docker compose use
 ```
 docker-compose exec panel php artisan p:user:make
 ```
 ## Environment Variables
 There are multiple environment variables to configure the panel when not providing your own `.env` file, see the following table for details on each available option.
 Note: If your `APP_URL` starts with `https://` you need to provide an `LE_EMAIL` as well so Certificates can be generated.
 | Variable          | Description                                                                    | Required |
 |-------------------| ------------------------------------------------------------------------------ | -------- |
 | `APP_URL`         | The URL the panel will be reachable with (including protocol)                  | yes      |
 | `APP_TIMEZONE`    | The timezone to use for the panel                                              | yes      |
 | `LE_EMAIL`        | The email used for letsencrypt certificate generation                          | yes      |
 | `DB_HOST`         | The host of the mysql instance                                                 | yes      |
 | `DB_PORT`         | The port of the mysql instance                                                 | yes      |
 | `DB_DATABASE`     | The name of the mysql database                                                 | yes      |
 | `DB_USERNAME`     | The mysql user                                                                 | yes      |
 | `DB_PASSWORD`     | The mysql password for the specified user                                      | yes      |
 | `CACHE_STORE`     | The cache driver        (see [Cache drivers](#cache-drivers) for detais)       | yes      |
 | `SESSION_DRIVER`  |                                                                                | yes      |
 | `QUEUE_DRIVER`    |                                                                                | yes      |
 | `REDIS_HOST`      | The hostname or IP address of the redis database                               | yes      |
 | `REDIS_PASSWORD`  | The password used to secure the redis database                                 | maybe    |
 | `REDIS_PORT`      | The port the redis database is using on the host                               | maybe    |
 | `MAIL_DRIVER`     | The email driver (see [Mail drivers](#mail-drivers) for details)               | yes      |
 | `MAIL_FROM`       | The email that should be used as the sender email                              | yes      |
 | `MAIL_HOST`       | The host of your mail driver instance                                          | maybe    |
 | `MAIL_PORT`       | The port of your mail driver instance                                          | maybe    |
 | `MAIL_USERNAME`   | The username for your mail driver                                              | maybe    |
 | `MAIL_PASSWORD`   | The password for your mail driver                                              | maybe    |
 ### Cache drivers
 You can choose between different cache drivers depending on what you prefer.
 We recommend redis when using docker as it can be started in a container easily.
 | Driver   | Description                          | Required variables                                     |
 | -------- | ------------------------------------ | ------------------------------------------------------ |
 | redis    | host where redis is running          | `REDIS_HOST`                                           |
 | redis    | port redis is running on             | `REDIS_PORT`                                           |
 | redis    | redis database password              | `REDIS_PASSWORD`                                       |
 ### Mail drivers
 You can choose between different mail drivers according to your needs.
 Every driver requires `MAIL_FROM` to be set.
 | Driver   | Description                          | Required variables                                            |
 | -------- | ------------------------------------ | ------------------------------------------------------------- |
 | mail     | uses the installed php mail          |                                                               |
 | mandrill | [Mandrill](http://www.mandrill.com/) | `MAIL_USERNAME`                                               |
 | postmark | [Postmark](https://postmarkapp.com/) | `MAIL_USERNAME`                                               |
 | mailgun  | [Mailgun](https://www.mailgun.com/)  | `MAIL_USERNAME`, `MAIL_HOST`                                  |
 | smtp     | Any SMTP server can be configured    | `MAIL_USERNAME`, `MAIL_HOST`, `MAIL_PASSWORD`, `MAIL_PORT`    |
--- a/.github/docker/default.conf
+++ b/.github/docker/default.conf
@ -1,75 +0,0 @@
 # If using Ubuntu this file should be placed in:
 # 			/etc/nginx/sites-available/
 #
 # If using CentOS this file should be placed in:
 #				 /etc/nginx/conf.d/
 #
 # The MIT License (MIT)
 #
 # Pterodactyl®
 # Copyright © Dane Everitt <dane@daneeveritt.com> and contributors
 #
 # Permission is hereby granted, free of charge, to any person obtaining a copy
 # of this software and associated documentation files (the "Software"), to deal
 # in the Software without restriction, including without limitation the rights
 # to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 # copies of the Software, and to permit persons to whom the Software is
 # furnished to do so, subject to the following conditions:
 #
 # The above copyright notice and this permission notice shall be included in all
 # copies or substantial portions of the Software.
 #
 # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 # AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 # LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 # OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 # SOFTWARE.
 server {
    listen 80;
    server_name _;
    root /app/public;
    index index.html index.htm index.php;
    charset utf-8;
    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }
    location = /favicon.ico { access_log off; log_not_found off; }
    location = /robots.txt  { access_log off; log_not_found off; }
    access_log off;
    error_log  /var/log/nginx/panel.app-error.log error;
    # allow larger file uploads and longer script runtimes
    client_max_body_size 100m;
    client_body_timeout 120s;
    sendfile off;
    location ~ \.php$ {
        fastcgi_split_path_info ^(.+\.php)(/.+)$;
        # the fastcgi_pass path needs to be changed accordingly when using CentOS
        fastcgi_pass 127.0.0.1:9000;
        fastcgi_index index.php;
        include fastcgi_params;
        fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        fastcgi_param HTTP_PROXY "";
        fastcgi_intercept_errors off;
        fastcgi_buffer_size 16k;
        fastcgi_buffers 4 16k;
        fastcgi_connect_timeout 300;
        fastcgi_send_timeout 300;
        fastcgi_read_timeout 300;
    }
    location ~ /\.ht {
        deny all;
    }
 }
--- a/.github/docker/default_ssl.conf
+++ b/.github/docker/default_ssl.conf
@ -1,70 +0,0 @@
 # If using Ubuntu this file should be placed in:
 # 			/etc/nginx/sites-available/
 #
 server {
    listen 80;
    server_name <domain>;
    return 301 https://$server_name$request_uri;
 }
 server {
    listen 443 ssl http2;
    server_name <domain>;
    root /app/public;
    index index.php;
    access_log /var/log/nginx/panel.app-access.log;
    error_log  /var/log/nginx/panel.app-error.log error;
    # allow larger file uploads and longer script runtimes
    client_max_body_size 100m;
    client_body_timeout 120s;
    sendfile off;
    # strengthen ssl security
    ssl_certificate /etc/letsencrypt/live/<domain>/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/<domain>/privkey.pem;
    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    ssl_prefer_server_ciphers on;
    ssl_session_cache shared:SSL:10m;
    ssl_ciphers "EECDH+AESGCM:EDH+AESGCM:ECDHE-RSA-AES128-GCM-SHA256:AES256+EECDH:DHE-RSA-AES128-GCM-SHA256:AES256+EDH:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4";
    # See the link below for more SSL information:
    #     https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html
    #
    # ssl_dhparam /etc/ssl/certs/dhparam.pem;
    # Add headers to serve security related headers
    add_header Strict-Transport-Security "max-age=15768000; preload;";
    add_header X-Content-Type-Options nosniff;
    add_header X-XSS-Protection "1; mode=block";
    add_header X-Robots-Tag none;
    add_header Content-Security-Policy "frame-ancestors 'self'";
    location / {
        try_files $uri $uri/ /index.php?$query_string;
    }
    location ~ \.php$ {
        fastcgi_split_path_info ^(.+\.php)(/.+)$;
        fastcgi_pass 127.0.0.1:9000;
        fastcgi_index index.php;
        include fastcgi_params;
        fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        fastcgi_param HTTP_PROXY "";
        fastcgi_intercept_errors off;
        fastcgi_buffer_size 16k;
        fastcgi_buffers 4 16k;
        fastcgi_connect_timeout 300;
        fastcgi_send_timeout 300;
        fastcgi_read_timeout 300;
        include /etc/nginx/fastcgi_params;
    }
    location ~ /\.ht {
        deny all;
    }
 }
--- a/.github/docker/entrypoint.sh
+++ b/.github/docker/entrypoint.sh
@ -1,65 +0,0 @@
 #!/bin/ash -e
 #mkdir -p /var/log/supervisord/ /var/log/php8/ \
 ## check for .env file and generate app keys if missing
 if [ -f /pelican-data/.env ]; then
  echo "external vars exist."
  rm -rf /var/www/html/.env
 else
  echo "external vars don't exist."
  rm -rf /var/www/html/.env
  touch /pelican-data/.env
  ## manually generate a key because key generate --force fails
  if [ -z $APP_KEY ]; then
     echo -e "Generating key."
     APP_KEY=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1)
     echo -e "Generated app key: $APP_KEY"
     echo -e "APP_KEY=$APP_KEY" > /pelican-data/.env
  else
    echo -e "APP_KEY exists in environment, using that."
    echo -e "APP_KEY=$APP_KEY" > /pelican-data/.env
  fi
  ## enable installer
  echo -e "APP_INSTALLED=false" >> /pelican-data/.env
 fi
 mkdir /pelican-data/database
 ln -s /pelican-data/.env /var/www/html/
 chown -h www-data:www-data /var/www/html/.env
 ln -s /pelican-data/database/database.sqlite /var/www/html/database/
 if ! grep -q "APP_KEY=" .env || grep -q "APP_KEY=$" .env; then
  echo "Generating APP_KEY..."
  php artisan key:generate --force
 else
  echo "APP_KEY is already set."
 fi
 ## make sure the db is set up
 echo -e "Migrating Database"
 php artisan migrate --force
 echo -e "Optimizing Filament"
 php artisan filament:optimize
 ## start cronjobs for the queue
 echo -e "Starting cron jobs."
 crond -L /var/log/crond -l 5
 export SUPERVISORD_CADDY=false
 ## disable caddy if SKIP_CADDY is set
 if [[ "${SKIP_CADDY:-}" == "true" ]]; then
  echo "Starting PHP-FPM only"
 else
  echo "Starting PHP-FPM and Caddy"
  export SUPERVISORD_CADDY=true
 fi
 chown -R www-data:www-data /pelican-data/.env /pelican-data/database
 echo "Starting Supervisord"
 exec "$@"
--- a/.github/docker/www.conf
+++ b/.github/docker/www.conf
@ -1,16 +0,0 @@
 [www]
 user = nginx
 group = nginx
 listen = 127.0.0.1:9000
 listen.owner = nginx
 listen.group = nginx
 listen.mode = 0750
 pm = ondemand
 pm.max_children = 9
 pm.process_idle_timeout = 10s
 pm.max_requests = 200
 clear_env = no
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@ -3,31 +3,40 @@ name: Build
 on:
  push:
    branches:
-      - '**'
+      - main
  pull_request:
    branches:
      - '**'
 jobs:
  ui:
    name: UI
    runs-on: ubuntu-latest
    strategy:
-      fail-fast: false
+      fail-fast: true
      matrix:
-        node-version: [18, 20]
+        node-version: [20, 22]
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
        with:
          php-version: ${{ matrix.php }}
          extensions: bcmath, curl, gd, mbstring, mysql, openssl, pdo, tokenizer, xml, zip
          tools: composer:v2
          coverage: none
      - name: Install PHP dependencies
        run: composer install --no-interaction --no-suggest --no-progress --no-autoloader --no-scripts --no-dev
      - name: Setup Node
        uses: actions/setup-node@v4
        with:
          node-version: ${{ matrix.node-version }}
          cache: "yarn"
-      - name: Install dependencies
+      - name: Install JS dependencies
        run: yarn install --frozen-lockfile
      - name: Build
-        run: yarn build:production
+        run: yarn build
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@ -6,14 +6,77 @@ on:
      - main
  pull_request:
 env:
  APP_ENV: testing
  APP_DEBUG: "false"
  APP_KEY: ThisIsARandomStringForTests12345
  APP_TIMEZONE: UTC
  APP_URL: http://localhost/
  CACHE_DRIVER: array
  MAIL_MAILER: array
  SESSION_DRIVER: array
  QUEUE_CONNECTION: sync
  GUZZLE_TIMEOUT: 60
  GUZZLE_CONNECT_TIMEOUT: 60
 jobs:
  sqlite:
    name: SQLite
    runs-on: ubuntu-latest
    strategy:
      fail-fast: true
      matrix:
        php: [8.2, 8.3, 8.4]
    env:
      DB_CONNECTION: sqlite
      DB_DATABASE: testing.sqlite
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
      - name: Get cache directory
        id: composer-cache
        run: |
          echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
      - name: Cache
        uses: actions/cache@v4
        with:
          path: ${{ steps.composer-cache.outputs.dir }}
          key: ${{ runner.os }}-composer-${{ matrix.php }}-${{ hashFiles('**/composer.lock') }}
          restore-keys: |
            ${{ runner.os }}-composer-${{ matrix.php }}-
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
        with:
          php-version: ${{ matrix.php }}
          extensions: bcmath, curl, gd, mbstring, mysql, openssl, pdo, tokenizer, xml, zip
          tools: composer:v2
          coverage: none
      - name: Install dependencies
        run: composer install --no-interaction --no-suggest --no-progress --no-scripts
      - name: Create SQLite file
        run: touch database/testing.sqlite
      - name: Unit tests
        run: vendor/bin/pest tests/Unit
        env:
          DB_HOST: UNIT_NO_DB
          SKIP_MIGRATIONS: true
      - name: Integration tests
        run: vendor/bin/pest tests/Integration
  mysql:
    name: MySQL
    runs-on: ubuntu-latest
    strategy:
-      fail-fast: false
+      fail-fast: true
      matrix:
-        php: [8.2, 8.3]
+        php: [8.2, 8.3, 8.4]
        database: ["mysql:8"]
    services:
      database:
@ -25,21 +88,10 @@ jobs:
          - 3306
        options: --health-cmd="mysqladmin ping" --health-interval=10s --health-timeout=5s --health-retries=3
    env:
      APP_ENV: testing
      APP_DEBUG: "false"
      APP_KEY: ThisIsARandomStringForTests12345
      APP_TIMEZONE: UTC
      APP_URL: http://localhost/
      CACHE_DRIVER: array
      MAIL_MAILER: array
      SESSION_DRIVER: array
      QUEUE_CONNECTION: sync
      DB_CONNECTION: mysql
      DB_HOST: 127.0.0.1
      DB_DATABASE: testing
      DB_USERNAME: root
      GUZZLE_TIMEOUT: 60
      GUZZLE_CONNECT_TIMEOUT: 60
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
@ -66,16 +118,16 @@ jobs:
          coverage: none
      - name: Install dependencies
-        run: composer install --no-interaction --no-suggest --prefer-dist
+        run: composer install --no-interaction --no-suggest --no-progress --no-scripts
      - name: Unit tests
-        run: vendor/bin/phpunit tests/Unit
+        run: vendor/bin/pest tests/Unit
        env:
          DB_HOST: UNIT_NO_DB
          SKIP_MIGRATIONS: true
      - name: Integration tests
-        run: vendor/bin/phpunit tests/Integration
+        run: vendor/bin/pest tests/Integration
        env:
          DB_PORT: ${{ job.services.database.ports[3306] }}
          DB_USERNAME: root
@ -84,9 +136,9 @@ jobs:
    name: MariaDB
    runs-on: ubuntu-latest
    strategy:
-      fail-fast: false
+      fail-fast: true
      matrix:
-        php: [8.2, 8.3]
+        php: [8.2, 8.3, 8.4]
        database: ["mariadb:10.6", "mariadb:10.11", "mariadb:11.4"]
    services:
      database:
@ -98,21 +150,10 @@ jobs:
          - 3306
        options: --health-cmd="mariadb-admin ping || mysqladmin ping" --health-interval=10s --health-timeout=5s --health-retries=3
    env:
      APP_ENV: testing
      APP_DEBUG: "false"
      APP_KEY: ThisIsARandomStringForTests12345
      APP_TIMEZONE: UTC
      APP_URL: http://localhost/
      CACHE_DRIVER: array
      MAIL_MAILER: array
      SESSION_DRIVER: array
      QUEUE_CONNECTION: sync
      DB_CONNECTION: mariadb
      DB_HOST: 127.0.0.1
      DB_DATABASE: testing
      DB_USERNAME: root
      GUZZLE_TIMEOUT: 60
      GUZZLE_CONNECT_TIMEOUT: 60
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
@ -139,41 +180,49 @@ jobs:
          coverage: none
      - name: Install dependencies
-        run: composer install --no-interaction --no-suggest --prefer-dist
+        run: composer install --no-interaction --no-suggest --no-progress --no-scripts
      - name: Unit tests
-        run: vendor/bin/phpunit tests/Unit
+        run: vendor/bin/pest tests/Unit
        env:
          DB_HOST: UNIT_NO_DB
          SKIP_MIGRATIONS: true
      - name: Integration tests
-        run: vendor/bin/phpunit tests/Integration
+        run: vendor/bin/pest tests/Integration
        env:
          DB_PORT: ${{ job.services.database.ports[3306] }}
          DB_USERNAME: root
-  sqlite:
+  postgresql:
-    name: SQLite
+    name: PostgreSQL
    runs-on: ubuntu-latest
    strategy:
-      fail-fast: false
+      fail-fast: true
      matrix:
-        php: [8.2, 8.3]
+        php: [8.2, 8.3, 8.4]
        database: ["postgres:14"]
    services:
      database:
        image: ${{ matrix.database }}
        env:
-      APP_ENV: testing
+          POSTGRES_DB: testing
-      APP_DEBUG: "false"
+          POSTGRES_USER: postgres
-      APP_KEY: ThisIsARandomStringForTests12345
+          POSTGRES_PASSWORD: postgres
-      APP_TIMEZONE: UTC
+          POSTGRES_HOST_AUTH_METHOD: trust
-      APP_URL: http://localhost/
+        ports:
-      CACHE_DRIVER: array
+          - 5432:5432
-      MAIL_MAILER: array
+        options: >-
-      SESSION_DRIVER: array
+          --health-cmd pg_isready
-      QUEUE_CONNECTION: sync
+          --health-interval 10s
-      DB_CONNECTION: sqlite
+          --health-timeout 5s
-      DB_DATABASE: testing.sqlite
+          --health-retries 5
-      GUZZLE_TIMEOUT: 60
+    env:
-      GUZZLE_CONNECT_TIMEOUT: 60
+      DB_CONNECTION: pgsql
      DB_HOST: 127.0.0.1
      DB_DATABASE: testing
      DB_USERNAME: postgres
      DB_PASSWORD: postgres
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
@ -189,7 +238,6 @@ jobs:
          path: ${{ steps.composer-cache.outputs.dir }}
          key: ${{ runner.os }}-composer-${{ matrix.php }}-${{ hashFiles('**/composer.lock') }}
          restore-keys: |
            ${{ runner.os }}-composer-${{ matrix.php }}-
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
@ -200,16 +248,13 @@ jobs:
          coverage: none
      - name: Install dependencies
-        run: composer install --no-interaction --no-suggest --prefer-dist
+        run: composer install --no-interaction --no-suggest --no-progress --no-scripts
      - name: Create SQLite file
        run: touch database/testing.sqlite
      - name: Unit tests
-        run: vendor/bin/phpunit tests/Unit
+        run: vendor/bin/pest tests/Unit
        env:
          DB_HOST: UNIT_NO_DB
          SKIP_MIGRATIONS: true
      - name: Integration tests
-        run: vendor/bin/phpunit tests/Integration
+        run: vendor/bin/pest tests/Integration
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@ -1,6 +1,5 @@
 name: Docker
 on:
  push:
    branches:
@ -14,12 +13,65 @@ env:
  IMAGE_NAME: ${{ github.repository }}
 jobs:
-  build-and-push:
+  build-php-base:
-    name: Build and Push
+    name: Build PHP base image on ${{ matrix.os }}
-    runs-on: ubuntu-latest
+    runs-on: ${{ matrix.os }}
    permissions:
      contents: read
      packages: write
    strategy:
      fail-fast: false
      matrix:
        include:
          - os: ubuntu-24.04
            arch: amd64
            platform: linux/amd64
          - os: ubuntu-24.04-arm
            arch: arm64
            platform: linux/arm64
    steps:
      - name: Code checkout
        uses: actions/checkout@v4
      - name: Setup Docker buildx
        uses: docker/setup-buildx-action@v3
      - name: Build the base PHP image
        uses: docker/build-push-action@v6
        with:
          context: .
          file: ./Dockerfile.base
          push: false
          load: true
          platforms: ${{ matrix.platform }}
          tags: base-php:${{ matrix.arch }}
          cache-from: type=gha,scope=base-php${{ matrix.arch }}
          cache-to: type=gha,scope=base-php${{ matrix.arch }}
      - name: Export image to file
        run: docker save -o base-php-${{ matrix.arch }}.tar base-php:${{ matrix.arch }}
      - name: Push the docker build to the artifacts
        uses: actions/upload-artifact@v4
        with:
          name: base-php-${{ matrix.arch }}.tar
          path: base-php-${{ matrix.arch }}.tar
          retention-days: 7
  build-and-push:
    name: Build and Push ubuntu-24.04
    runs-on: ubuntu-24.04
    needs: build-php-base
    permissions:
      contents: read
      packages: write
    # Start a temp local registry because workflow can not pull from localy loaded images
    services:
      registry:
        image: registry:2
        ports:
          - 5000:5000 
    # Always run against a tag, even if the commit into the tag has [docker skip] within the commit message.
    if: "!contains(github.ref, 'main') || (!contains(github.event.head_commit.message, 'skip docker') && !contains(github.event.head_commit.message, 'docker skip'))"
    steps:
@ -41,8 +93,11 @@ jobs:
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3
      # We Need to start it in host mode else it can't acces the local registry on port 5000
      - name: Setup Docker buildx
        uses: docker/setup-buildx-action@v3
        with:
          driver-opts: network=host
      - name: Login to GitHub Container Registry
        uses: docker/login-action@v3
@ -57,30 +112,57 @@ jobs:
          echo "version_tag=${GITHUB_REF/refs\/tags\/v/}" >> $GITHUB_OUTPUT
          echo "short_sha=$(git rev-parse --short HEAD)" >> $GITHUB_OUTPUT
        # Download the base PHP image AMD64
      - uses: actions/download-artifact@v4
        with:
          name: base-php-amd64.tar
        # Download the base PHP image ARM64
      - uses: actions/download-artifact@v4
        with:
          name: base-php-arm64.tar
      - name: Load base images into local registry
        run: |
          docker load -i base-php-amd64.tar
          docker load -i base-php-arm64.tar
          docker tag base-php:amd64 localhost:5000/base-php:amd64
          docker tag base-php:arm64 localhost:5000/base-php:arm64
          docker push localhost:5000/base-php:amd64
          docker push localhost:5000/base-php:arm64
          rm base-php-arm64.tar base-php-amd64.tar
      - name: Update version in config/app.php (tag)
        if: "github.event_name == 'release' && github.event.action == 'published'"
        run: |
          sed -i "s/'version' => 'canary',/'version' => '${{ steps.build_info.outputs.version_tag }}',/" config/app.php
      - name: Build and Push (tag)
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
        if: "github.event_name == 'release' && github.event.action == 'published'"
        with:
          context: .
          file: ./Dockerfile
          push: true
-          platforms: linux/amd64,linux/arm64
+          platforms: 'linux/amd64,linux/arm64'
          build-args: |
            VERSION=${{ steps.build_info.outputs.version_tag }}
          labels: ${{ steps.docker_meta.outputs.labels }}
          tags: ${{ steps.docker_meta.outputs.tags }}
          cache-from: type=gha,scope=tagged${{ matrix.os }}
          cache-to: type=gha,scope=tagged${{ matrix.os }},mode=max
      - name: Build and Push (main)
-        uses: docker/build-push-action@v5
+        uses: docker/build-push-action@v6
        if: "github.event_name == 'push' && contains(github.ref, 'main')"
        with:
          context: .
          file: ./Dockerfile
          push: ${{ github.event_name != 'pull_request' }}
-          platforms: linux/amd64,linux/arm64
+          platforms: 'linux/amd64,linux/arm64'
          build-args: |
            VERSION=dev-${{ steps.build_info.outputs.short_sha }}
          labels: ${{ steps.docker_meta.outputs.labels }}
          tags: ${{ steps.docker_meta.outputs.tags }}
-          cache-from: type=gha
+          cache-from: type=gha,scope=${{ matrix.os }}
-          cache-to: type=gha,mode=max
+          cache-to: type=gha,scope=${{ matrix.os }},mode=max
--- a/.github/workflows/lint.yaml
+++ b/.github/workflows/lint.yaml
@ -25,21 +25,38 @@ jobs:
        run: cp .env.example .env
      - name: Install dependencies
-        run: composer install --no-interaction --no-progress --prefer-dist
+        run: composer install --no-interaction --no-suggest --no-progress --no-autoloader --no-scripts
      - name: Pint
        run: vendor/bin/pint --test
  phpstan:
    name: PHPStan
    runs-on: ubuntu-latest
    strategy:
      fail-fast: true
      matrix:
        php: [ 8.2, 8.3, 8.4 ]
    steps:
      - name: Code Checkout
        uses: actions/checkout@v4
      - name: Get cache directory
        id: composer-cache
        run: |
          echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT
      - name: Cache
        uses: actions/cache@v4
        with:
          path: ${{ steps.composer-cache.outputs.dir }}
          key: ${{ runner.os }}-composer-${{ matrix.php }}-${{ hashFiles('**/composer.lock') }}
          restore-keys: |
            ${{ runner.os }}-composer-${{ matrix.php }}-
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
        with:
-          php-version: "8.3"
+          php-version: ${{ matrix.php }}
          extensions: bcmath, curl, gd, mbstring, mysql, openssl, pdo, tokenizer, xml, zip
          tools: composer:v2
          coverage: none
@ -48,7 +65,7 @@ jobs:
        run: cp .env.example .env
      - name: Install dependencies
-        run: composer install --no-interaction --no-progress --prefer-dist
+        run: composer install --no-interaction --no-suggest --no-progress --no-scripts
      - name: PHPStan
-        run: vendor/bin/phpstan --memory-limit=-1
+        run: vendor/bin/phpstan --memory-limit=-1 --error-format=github
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@ -16,17 +16,28 @@ jobs:
      - name: Code checkout
        uses: actions/checkout@v4
      - name: Setup PHP
        uses: shivammathur/setup-php@v2
        with:
          php-version: ${{ matrix.php }}
          extensions: bcmath, curl, gd, mbstring, mysql, openssl, pdo, tokenizer, xml, zip
          tools: composer:v2
          coverage: none
      - name: Install PHP dependencies
        run: composer install --no-interaction --no-suggest --no-progress --no-autoloader --no-scripts --no-dev
      - name: Setup Node
        uses: actions/setup-node@v4
        with:
          node-version: 20
          cache: "yarn"
-      - name: Install dependencies
+      - name: Install JS dependencies
        run: yarn install --frozen-lockfile
      - name: Build
-        run: yarn build:production
+        run: yarn build
      - name: Create release branch and bump version
        env:
@ -44,8 +55,8 @@ jobs:
      - name: Create release archive
        run: |
-          rm -rf node_modules tests CODE_OF_CONDUCT.md CONTRIBUTING.md flake.lock flake.nix phpunit.xml shell.nix
+          rm -rf node_modules vendor tests CODE_OF_CONDUCT.md CONTRIBUTING.md phpunit.xml shell.nix
-          tar -czf panel.tar.gz * .editorconfig .env.example .eslintignore .eslintrc.js .gitignore .prettierrc.json
+          tar -czf panel.tar.gz * .env.example
      - name: Create checksum
        run: |
--- a/.gitignore
+++ b/.gitignore
@ -1,9 +1,9 @@
 /.phpunit.cache
 /node_modules
 /public/build
 /public/hot
 /public/storage
 /storage/*.key
 /storage/pail
 /storage/clockwork/*
 /vendor
 *.DS_Store*
@ -19,10 +19,11 @@ npm-debug.log
 yarn-error.log
 /.fleet
 /.idea
 /.nova
 /.vscode
 /.ddev
 public/assets/manifest.json
-/database/*.sqlite
+/database/*.sqlite*
 filament-monaco-editor/
 _ide_helper*
 /.phpstorm.meta.php
--- a/.php-cs-fixer.dist.php
+++ b/.php-cs-fixer.dist.php
@ -1,52 +0,0 @@
 <?php
 use PhpCsFixer\Config;
 use PhpCsFixer\Finder;
 $finder = (new Finder())
    ->in(__DIR__)
    ->exclude([
        'vendor',
        'node_modules',
        'storage',
        'bootstrap/cache',
    ])
    ->notName(['_ide_helper*']);
 return (new Config())
    ->setRiskyAllowed(true)
    ->setFinder($finder)
    ->setRules([
        '@Symfony' => true,
        '@PSR1' => true,
        '@PSR2' => true,
        '@PSR12' => true,
        'align_multiline_comment' => ['comment_type' => 'phpdocs_like'],
        'combine_consecutive_unsets' => true,
        'concat_space' => ['spacing' => 'one'],
        'heredoc_to_nowdoc' => true,
        'no_alias_functions' => true,
        'no_unreachable_default_argument_value' => true,
        'no_useless_return' => true,
        'ordered_imports' => [
            'sort_algorithm' => 'length',
        ],
        'phpdoc_align' => [
            'align' => 'left',
            'tags' => [
                'param',
                'property',
                'return',
                'throws',
                'type',
                'var',
            ],
        ],
        'random_api_migration' => true,
        'ternary_to_null_coalescing' => true,
        'yoda_style' => [
            'equal' => false,
            'identical' => false,
            'less_and_greater' => false,
        ],
    ]);
--- a/12
+++ b/12
@ -1,12 +0,0 @@
 {
    admin off
    email {$ADMIN_EMAIL}
 }
 {$APP_URL} {
    root * /var/www/html/public
    encode gzip
    php_fastcgi 127.0.0.1:9000
    file_server
 }
--- a/121
+++ b/121
@ -1,59 +1,110 @@
 # syntax=docker.io/docker/dockerfile:1.13-labs
 # Pelican Production Dockerfile
-FROM node:20-alpine AS yarn
+##
-#FROM --platform=$TARGETOS/$TARGETARCH node:20-alpine AS yarn
+#  If you want to build this locally you want to run `docker build -f Dockerfile.dev`
 ##
 # ================================
 # Stage 1-1: Composer Install
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH localhost:5000/base-php:$TARGETARCH AS composer
 WORKDIR /build
-COPY . ./
+COPY --from=composer:latest /usr/bin/composer /usr/local/bin/composer
 # Copy bare minimum to install Composer dependencies
 COPY composer.json composer.lock ./
 RUN composer install --no-dev --no-interaction --no-autoloader --no-scripts
 # ================================
 # Stage 1-2: Yarn Install
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH node:20-alpine AS yarn
 WORKDIR /build
 # Copy bare minimum to install Yarn dependencies
 COPY package.json yarn.lock ./
 RUN yarn config set network-timeout 300000 \
-    && yarn install --frozen-lockfile \
+    && yarn install --frozen-lockfile
    && yarn run build:production
-FROM php:8.3-fpm-alpine
+# ================================
-# FROM --platform=$TARGETOS/$TARGETARCH php:8.3-fpm-alpine
+# Stage 2-1: Composer Optimize
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH composer AS composerbuild
-COPY --from=composer:latest /usr/bin/composer /usr/local/bin/composer
+# Copy full code to optimize autoload
 COPY --exclude=Caddyfile --exclude=docker/ . ./
 RUN composer dump-autoload --optimize
 # ================================
 # Stage 2-2: Build Frontend Assets
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH yarn AS yarnbuild
 WORKDIR /build
 # Copy full code
 COPY --exclude=Caddyfile --exclude=docker/ . ./
 COPY --from=composer /build .
 RUN yarn run build
 # ================================
 # Stage 5: Build Final Application Image
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH localhost:5000/base-php:$TARGETARCH AS final
 WORKDIR /var/www/html
-# Install dependencies
+# Install additional required libraries
-RUN apk update && apk add --no-cache \
+RUN apk add --no-cache \
-    libpng-dev libjpeg-turbo-dev freetype-dev libzip-dev icu-dev \
+    caddy ca-certificates supervisor supercronic fcgi
    zip unzip curl \
    caddy ca-certificates supervisor \
    && docker-php-ext-install bcmath gd intl zip opcache pcntl posix pdo_mysql
-# Copy the Caddyfile to the container
+COPY --chown=root:www-data --chmod=640 --from=composerbuild /build .
-COPY Caddyfile /etc/caddy/Caddyfile
+COPY --chown=root:www-data --chmod=640 --from=yarnbuild /build/public ./public
-# Copy the application code to the container
+# Set permissions
-COPY . .
+# First ensure all files are owned by root and restrict www-data to read access
 RUN chown root:www-data ./ \
    && chmod 750 ./ \
    # Files should not have execute set, but directories need it
    && find ./ -type d -exec chmod 750 {} \; \
    # Create necessary directories
    && mkdir -p /pelican-data/storage /var/www/html/storage/app/public /var/run/supervisord /etc/supercronic \
    # Symlinks for env, database, and avatars
    && ln -s /pelican-data/.env ./.env \
    && ln -s /pelican-data/database/database.sqlite ./database/database.sqlite \
    && ln -sf /var/www/html/storage/app/public /var/www/html/public/storage \
    && ln -s  /pelican-data/storage/avatars /var/www/html/storage/app/public/avatars \
    && ln -s  /pelican-data/storage/fonts /var/www/html/storage/app/public/fonts \
    # Allow www-data write permissions where necessary
    && chown -R www-data:www-data /pelican-data ./storage ./bootstrap/cache /var/run/supervisord /var/www/html/public/storage \
    && chmod -R u+rwX,g+rwX,o-rwx /pelican-data ./storage ./bootstrap/cache /var/run/supervisord \
    && chown -R www-data: /usr/local/etc/php/
-COPY --from=yarn /build/public/assets ./public/assets
+# Configure Supervisor
 COPY docker/supervisord.conf /etc/supervisord.conf
 COPY docker/Caddyfile /etc/caddy/Caddyfile
 # Add Laravel scheduler to crontab
 COPY docker/crontab /etc/supercronic/crontab
-RUN touch .env
+COPY docker/entrypoint.sh /entrypoint.sh
-
+COPY docker/healthcheck.sh /healthcheck.sh
 RUN composer install --no-dev --optimize-autoloader
 # Set file permissions
 RUN chmod -R 755 storage bootstrap/cache \
    && chown -R www-data:www-data ./
 # Add scheduler to cron
 RUN echo "* * * * * php /var/www/html/artisan schedule:run >> /dev/null 2>&1" | crontab -u www-data -
 ## supervisord config and log dir
 RUN cp .github/docker/supervisord.conf /etc/supervisord.conf && \
    mkdir /var/log/supervisord/
 HEALTHCHECK --interval=5m --timeout=10s --start-period=5s --retries=3 \
-  CMD curl -f http://localhost/up || exit 1
+  CMD /bin/ash /healthcheck.sh
 EXPOSE 80 443
 VOLUME /pelican-data
-ENTRYPOINT [ "/bin/ash", ".github/docker/entrypoint.sh" ]
+USER www-data
 ENTRYPOINT [ "/bin/ash", "/entrypoint.sh" ]
 CMD [ "supervisord", "-n", "-c", "/etc/supervisord.conf" ]
--- a/Dockerfile.base
+++ b/Dockerfile.base
@ -0,0 +1,10 @@
 # ================================
 # Stage 0: Build PHP Base Image
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH php:8.4-fpm-alpine
 ADD --chmod=0755 https://github.com/mlocati/docker-php-extension-installer/releases/latest/download/install-php-extensions /usr/local/bin/
 RUN install-php-extensions bcmath gd intl zip opcache pcntl posix pdo_mysql pdo_pgsql
 RUN rm /usr/local/bin/install-php-extensions
--- a/Dockerfile.dev
+++ b/Dockerfile.dev
@ -0,0 +1,114 @@
 # syntax=docker.io/docker/dockerfile:1.13-labs
 # Pelican Development Dockerfile
 FROM --platform=$TARGETOS/$TARGETARCH php:8.4-fpm-alpine AS base
 ADD --chmod=0755 https://github.com/mlocati/docker-php-extension-installer/releases/latest/download/install-php-extensions /usr/local/bin/
 RUN install-php-extensions bcmath gd intl zip opcache pcntl posix pdo_mysql pdo_pgsql
 RUN rm /usr/local/bin/install-php-extensions
 # ================================
 # Stage 1-1: Composer Install
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH base AS composer
 WORKDIR /build
 COPY --from=composer:latest /usr/bin/composer /usr/local/bin/composer
 # Copy bare minimum to install Composer dependencies
 COPY composer.json composer.lock ./
 RUN composer install --no-dev --no-interaction --no-autoloader --no-scripts
 # ================================
 # Stage 1-2: Yarn Install
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH node:20-alpine AS yarn
 WORKDIR /build
 # Copy bare minimum to install Yarn dependencies
 COPY package.json yarn.lock ./
 RUN yarn config set network-timeout 300000 \
    && yarn install --frozen-lockfile
 # ================================
 # Stage 2-1: Composer Optimize
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH composer AS composerbuild
 # Copy full code to optimize autoload
 COPY --exclude=Caddyfile --exclude=docker/ . ./
 RUN composer dump-autoload --optimize
 # ================================
 # Stage 2-2: Build Frontend Assets
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH yarn AS yarnbuild
 WORKDIR /build
 # Copy full code
 COPY --exclude=Caddyfile --exclude=docker/ . ./
 COPY --from=composer /build .
 RUN yarn run build
 # ================================
 # Stage 5: Build Final Application Image
 # ================================
 FROM --platform=$TARGETOS/$TARGETARCH base AS final
 WORKDIR /var/www/html
 # Install additional required libraries
 RUN apk add --no-cache \
    caddy ca-certificates supervisor supercronic fcgi coreutils
 COPY --chown=root:www-data --chmod=640 --from=composerbuild /build .
 COPY --chown=root:www-data --chmod=640 --from=yarnbuild /build/public ./public
 # Set permissions
 # First ensure all files are owned by root and restrict www-data to read access
 RUN chown root:www-data ./ \
    && chmod 750 ./ \
    # Files should not have execute set, but directories need it
    && find ./ -type d -exec chmod 750 {} \; \
    # Create necessary directories
    && mkdir -p /pelican-data/storage /var/www/html/storage/app/public /var/run/supervisord /etc/supercronic \
    # Symlinks for env, database, and avatars
    && ln -s /pelican-data/.env ./.env \
    && ln -s /pelican-data/database/database.sqlite ./database/database.sqlite \
    && ln -sf /var/www/html/storage/app/public /var/www/html/public/storage \
    && ln -s  /pelican-data/storage/avatars /var/www/html/storage/app/public/avatars \
    && ln -s  /pelican-data/storage/fonts /var/www/html/storage/app/public/fonts \
    # Allow www-data write permissions where necessary
    && chown -R www-data:www-data /pelican-data ./storage ./bootstrap/cache /var/run/supervisord /var/www/html/public/storage \
    && chmod -R u+rwX,g+rwX,o-rwx /pelican-data ./storage ./bootstrap/cache /var/run/supervisord \
    && chown -R www-data: /usr/local/etc/php/
 # Configure Supervisor
 COPY docker/supervisord.conf /etc/supervisord.conf
 COPY docker/Caddyfile /etc/caddy/Caddyfile
 # Add Laravel scheduler to crontab
 COPY docker/crontab /etc/supercronic/crontab
 COPY docker/entrypoint.sh /entrypoint.sh
 COPY docker/healthcheck.sh /healthcheck.sh
 HEALTHCHECK --interval=5m --timeout=10s --start-period=5s --retries=3 \
  CMD /bin/ash /healthcheck.sh
 EXPOSE 80 443
 VOLUME /pelican-data
 USER www-data
 ENTRYPOINT [ "/bin/ash", "/entrypoint.sh" ]
 CMD [ "supervisord", "-n", "-c", "/etc/supervisord.conf" ]
--- a/app/Checks/CacheCheck.php
+++ b/app/Checks/CacheCheck.php
@ -0,0 +1,58 @@
 <?php
 namespace App\Checks;
 use Exception;
 use Illuminate\Support\Facades\Cache;
 use Illuminate\Support\Str;
 use Spatie\Health\Checks\Check;
 use Spatie\Health\Checks\Result;
 class CacheCheck extends Check
 {
    protected ?string $driver = null;
    public function driver(string $driver): self
    {
        $this->driver = $driver;
        return $this;
    }
    public function run(): Result
    {
        $driver = $this->driver ?? $this->defaultDriver();
        $result = Result::make()->meta([
            'driver' => $driver,
        ]);
        try {
            return $this->canWriteValuesToCache($driver)
                ? $result->ok(trans('admin/health.results.cache.ok'))
                : $result->failed(trans('admin/health.results.cache.failed_retrieve'));
        } catch (Exception $exception) {
            return $result->failed(trans('admin/health.results.cache.failed', ['error' => $exception->getMessage()]));
        }
    }
    protected function defaultDriver(): ?string
    {
        return config('cache.default', 'file');
    }
    protected function canWriteValuesToCache(?string $driver): bool
    {
        $expectedValue = Str::random(5);
        $cacheName = "laravel-health:check-{$expectedValue}";
        Cache::driver($driver)->put($cacheName, $expectedValue, 10);
        $actualValue = Cache::driver($driver)->get($cacheName);
        Cache::driver($driver)->forget($cacheName);
        return $actualValue === $expectedValue;
    }
 }
--- a/app/Checks/DatabaseCheck.php
+++ b/app/Checks/DatabaseCheck.php
@ -0,0 +1,42 @@
 <?php
 namespace App\Checks;
 use Exception;
 use Illuminate\Support\Facades\DB;
 use Spatie\Health\Checks\Check;
 use Spatie\Health\Checks\Result;
 class DatabaseCheck extends Check
 {
    protected ?string $connectionName = null;
    public function connectionName(string $connectionName): self
    {
        $this->connectionName = $connectionName;
        return $this;
    }
    public function run(): Result
    {
        $connectionName = $this->connectionName ?? $this->getDefaultConnectionName();
        $result = Result::make()->meta([
            'connection_name' => $connectionName,
        ]);
        try {
            DB::connection($connectionName)->getPdo();
            return $result->ok(trans('admin/health.results.database.ok'));
        } catch (Exception $exception) {
            return $result->failed(trans('admin/health.results.database.failed', ['error' => $exception->getMessage()]));
        }
    }
    protected function getDefaultConnectionName(): string
    {
        return config('database.default');
    }
 }
--- a/app/Checks/DebugModeCheck.php
+++ b/app/Checks/DebugModeCheck.php
@ -0,0 +1,44 @@
 <?php
 namespace App\Checks;
 use Spatie\Health\Checks\Check;
 use Spatie\Health\Checks\Result;
 use function config;
 class DebugModeCheck extends Check
 {
    protected bool $expected = false;
    public function expectedToBe(bool $bool): self
    {
        $this->expected = $bool;
        return $this;
    }
    public function run(): Result
    {
        $actual = config('app.debug');
        $result = Result::make()
            ->meta([
                'actual' => $actual,
                'expected' => $this->expected,
            ])
            ->shortSummary($this->convertToWord($actual));
        return $this->expected === $actual
            ? $result->ok()
            : $result->failed(trans('admin/health.results.debugmode.failed', [
                'actual' => $this->convertToWord($actual),
                'expected' => $this->convertToWord($this->expected),
            ]));
    }
    protected function convertToWord(bool $boolean): string
    {
        return $boolean ? 'true' : 'false';
    }
 }
--- a/app/Checks/EnvironmentCheck.php
+++ b/app/Checks/EnvironmentCheck.php
@ -0,0 +1,38 @@
 <?php
 namespace App\Checks;
 use Illuminate\Support\Facades\App;
 use Spatie\Health\Checks\Check;
 use Spatie\Health\Checks\Result;
 class EnvironmentCheck extends Check
 {
    protected string $expectedEnvironment = 'production';
    public function expectEnvironment(string $expectedEnvironment): self
    {
        $this->expectedEnvironment = $expectedEnvironment;
        return $this;
    }
    public function run(): Result
    {
        $actualEnvironment = (string) App::environment();
        $result = Result::make()
            ->meta([
                'actual' => $actualEnvironment,
                'expected' => $this->expectedEnvironment,
            ])
            ->shortSummary($actualEnvironment);
        return $this->expectedEnvironment === $actualEnvironment
            ? $result->ok(trans('admin/health.results.environment.ok'))
            : $result->failed(trans('admin/health.results.environment.failed', [
                'actual' => $actualEnvironment,
                'expected' => $this->expectedEnvironment,
            ]));
    }
 }
--- a/app/Checks/NodeVersionsCheck.php
+++ b/app/Checks/NodeVersionsCheck.php
@ -14,30 +14,34 @@ class NodeVersionsCheck extends Check
    public function run(): Result
    {
-        $all = Node::query()->count();
+        $all = Node::all();
-        if ($all === 0) {
+        if ($all->isEmpty()) {
-            $result = Result::make()->notificationMessage('No Nodes created')->shortSummary('No Nodes');
+            $result = Result::make()
                ->notificationMessage(trans('admin/health.results.nodeversions.no_nodes_created'))
                ->shortSummary(trans('admin/health.results.nodeversions.no_nodes'));
            $result->status = Status::skipped();
            return $result;
        }
-        $latestVersion = $this->versionService->latestWingsVersion();
+        $outdated = $all
-
+            ->filter(fn (Node $node) => !isset($node->systemInformation()['exception']) && !$this->versionService->isLatestWings($node->systemInformation()['version']))
        $outdated = Node::query()->get()
            ->filter(fn (Node $node) => !isset($node->systemInformation()['exception']) && $node->systemInformation()['version'] !== $latestVersion)
            ->count();
        $all = $all->count();
        $latestVersion = $this->versionService->latestWingsVersion();
        $result = Result::make()
            ->meta([
                'all' => $all,
                'outdated' => $outdated,
                'latestVersion' => $latestVersion,
            ])
-            ->shortSummary($outdated === 0 ? 'All up-to-date' : "{$outdated}/{$all} outdated");
+            ->shortSummary($outdated === 0 ? trans('admin/health.results.nodeversions.all_up_to_date') : trans('admin/health.results.nodeversions.outdated', ['outdated' => $outdated, 'all' => $all]));
        return $outdated === 0
-            ? $result->ok('All Nodes are up-to-date.')
+            ? $result->ok(trans('admin/health.results.nodeversions.ok'))
-            : $result->failed(':outdated/:all Nodes are outdated.');
+            : $result->failed(trans('admin/health.results.nodeversions.failed', ['outdated' => $outdated, 'all' => $all]));
    }
 }
--- a/app/Checks/PanelVersionCheck.php
+++ b/app/Checks/PanelVersionCheck.php
@ -22,10 +22,13 @@ class PanelVersionCheck extends Check
                'currentVersion' => $currentVersion,
                'latestVersion' => $latestVersion,
            ])
-            ->shortSummary($isLatest ? 'up-to-date' : 'outdated');
+            ->shortSummary($isLatest ? trans('admin/health.results.panelversion.up_to_date') : trans('admin/health.results.panelversion.outdated'));
        return $isLatest
-            ? $result->ok('Panel is up-to-date.')
+            ? $result->ok(trans('admin/health.results.panelversion.ok'))
-            : $result->failed('Installed version is `:currentVersion` but latest is `:latestVersion`.');
+            : $result->failed(trans('admin/health.results.panelversion.failed', [
                'currentVersion' => $currentVersion,
                'latestVersion' => $latestVersion,
            ]));
    }
 }
--- a/app/Checks/ScheduleCheck.php
+++ b/app/Checks/ScheduleCheck.php
@ -0,0 +1,41 @@
 <?php
 namespace App\Checks;
 use Carbon\Carbon;
 use Composer\InstalledVersions;
 use Spatie\Health\Checks\Checks\ScheduleCheck as BaseCheck;
 use Spatie\Health\Checks\Result;
 class ScheduleCheck extends BaseCheck
 {
    public function run(): Result
    {
        $result = Result::make()->ok(trans('admin/health.results.schedule.ok'));
        $lastHeartbeatTimestamp = cache()->store($this->cacheStoreName)->get($this->cacheKey);
        if (!$lastHeartbeatTimestamp) {
            return $result->failed(trans('admin/health.results.schedule.failed_not_ran'));
        }
        $latestHeartbeatAt = Carbon::createFromTimestamp($lastHeartbeatTimestamp);
        $carbonVersion = InstalledVersions::getVersion('nesbot/carbon');
        $minutesAgo = $latestHeartbeatAt->diffInMinutes();
        if (version_compare($carbonVersion,
            '3.0.0', '<')) {
            $minutesAgo += 1;
        }
        if ($minutesAgo > $this->heartbeatMaxAgeInMinutes) {
            return $result->failed(trans('admin/health.results.schedule.failed_last_ran', [
                'time' => $minutesAgo,
            ]));
        }
        return $result;
    }
 }
--- a/app/Console/Commands/Egg/CheckEggUpdatesCommand.php
+++ b/app/Console/Commands/Egg/CheckEggUpdatesCommand.php
@ -2,10 +2,14 @@
 namespace App\Console\Commands\Egg;
 use App\Enums\EggFormat;
 use App\Models\Egg;
 use App\Services\Eggs\Sharing\EggExporterService;
 use Exception;
 use Illuminate\Console\Command;
 use Illuminate\Support\Facades\Http;
 use JsonException;
 use Symfony\Component\Yaml\Yaml;
 class CheckEggUpdatesCommand extends Command
 {
@ -16,28 +20,42 @@ class CheckEggUpdatesCommand extends Command
        $eggs = Egg::all();
        foreach ($eggs as $egg) {
            try {
-                if (is_null($egg->update_url)) {
+                $this->check($egg, $exporterService);
                    $this->comment("{$egg->name}: Skipping (no update url set)");
                    continue;
                }
                $currentJson = json_decode($exporterService->handle($egg->id));
                unset($currentJson->exported_at);
                $updatedJson = json_decode(file_get_contents($egg->update_url));
                unset($updatedJson->exported_at);
                if (md5(json_encode($currentJson)) === md5(json_encode($updatedJson))) {
                    $this->info("{$egg->name}: Up-to-date");
                    cache()->put("eggs.{$egg->uuid}.update", false, now()->addHour());
                } else {
                    $this->warn("{$egg->name}: Found update");
                    cache()->put("eggs.{$egg->uuid}.update", true, now()->addHour());
                }
            } catch (Exception $exception) {
                $this->error("{$egg->name}: Error ({$exception->getMessage()})");
            }
        }
    }
    /**
     * @throws JsonException
     */
    private function check(Egg $egg, EggExporterService $exporterService): void
    {
        if (is_null($egg->update_url)) {
            $this->comment("$egg->name: Skipping (no update url set)");
            return;
        }
        $ext = strtolower(pathinfo(parse_url($egg->update_url, PHP_URL_PATH), PATHINFO_EXTENSION));
        $isYaml = in_array($ext, ['yaml', 'yml']);
        $local = $isYaml
            ? Yaml::parse($exporterService->handle($egg->id, EggFormat::YAML))
            : json_decode($exporterService->handle($egg->id, EggFormat::JSON), true);
        $remote = Http::timeout(5)->connectTimeout(1)->get($egg->update_url)->throw()->body();
        $remote = $isYaml ? Yaml::parse($remote) : json_decode($remote, true);
        unset($local['exported_at'], $remote['exported_at']);
        $localHash = md5(json_encode($local, JSON_THROW_ON_ERROR));
        $remoteHash = md5(json_encode($remote, JSON_THROW_ON_ERROR));
        $status = $localHash === $remoteHash ? 'Up-to-date' : 'Found update';
        $this->{($localHash === $remoteHash) ? 'info' : 'warn'}("$egg->name: $status");
        cache()->put("eggs.$egg->uuid.update", $localHash !== $remoteHash, now()->addHour());
    }
 }
--- a/app/Console/Commands/Egg/UpdateEggIndexCommand.php
+++ b/app/Console/Commands/Egg/UpdateEggIndexCommand.php
@ -0,0 +1,46 @@
 <?php
 namespace App\Console\Commands\Egg;
 use Exception;
 use Illuminate\Console\Command;
 use Illuminate\Support\Facades\Http;
 class UpdateEggIndexCommand extends Command
 {
    protected $signature = 'p:egg:update-index';
    public function handle(): int
    {
        try {
            $data = Http::timeout(5)->connectTimeout(1)->get('https://raw.githubusercontent.com/pelican-eggs/pelican-eggs.github.io/refs/heads/main/content/pelican.json')->throw()->json();
        } catch (Exception $exception) {
            $this->error($exception->getMessage());
            return 1;
        }
        $index = [];
        foreach ($data['nests'] as $nest) {
            $nestName = $nest['nest_type'];
            $this->info("Nest: $nestName");
            $nestEggs = [];
            foreach ($nest['Eggs'] as $egg) {
                $eggName = $egg['egg']['name'];
                $this->comment("Egg: $eggName");
                $nestEggs[$egg['download_url']] = $eggName;
            }
            $index[$nestName] = $nestEggs;
            $this->info('');
        }
        cache()->forever('eggs.index', $index);
        return 0;
    }
 }
--- a/app/Console/Commands/Environment/AppSettingsCommand.php
+++ b/app/Console/Commands/Environment/AppSettingsCommand.php
@ -3,7 +3,6 @@
 namespace App\Console\Commands\Environment;
 use Illuminate\Console\Command;
 use Illuminate\Support\Facades\Artisan;
 class AppSettingsCommand extends Command
 {
@ -21,9 +20,13 @@ class AppSettingsCommand extends Command
        if (!config('app.key')) {
            $this->comment('Generating app key');
-            Artisan::call('key:generate');
+            $this->call('key:generate');
        }
-        Artisan::call('filament:optimize');
+        $this->comment('Creating storage link');
        $this->call('storage:link');
        $this->comment('Caching components & icons');
        $this->call('filament:optimize');
    }
 }
--- a/app/Console/Commands/Environment/CacheSettingsCommand.php
+++ b/app/Console/Commands/Environment/CacheSettingsCommand.php
@ -27,8 +27,6 @@ class CacheSettingsCommand extends Command
                            {--redis-pass= : Password used to connect to redis.}
                            {--redis-port= : Port to connect to redis over.}';
    protected array $variables = [];
    /**
     * CacheSettingsCommand constructor.
     */
--- a/app/Console/Commands/Environment/DatabaseSettingsCommand.php
+++ b/app/Console/Commands/Environment/DatabaseSettingsCommand.php
@ -6,6 +6,7 @@ use App\Traits\EnvironmentWriterTrait;
 use Illuminate\Console\Command;
 use Illuminate\Contracts\Console\Kernel;
 use Illuminate\Database\DatabaseManager;
 use PDOException;
 class DatabaseSettingsCommand extends Command
 {
@ -27,6 +28,7 @@ class DatabaseSettingsCommand extends Command
                            {--username= : Username to use when connecting to the MySQL/ MariaDB server.}
                            {--password= : Password to use for the MySQL/ MariaDB database.}';
    /** @var array<array-key, mixed> */
    protected array $variables = [];
    /**
@ -57,7 +59,7 @@ class DatabaseSettingsCommand extends Command
        );
        if ($this->variables['DB_CONNECTION'] === 'mysql') {
-            $this->output->note(__('commands.database_settings.DB_HOST_note'));
+            $this->output->note(trans('commands.database_settings.DB_HOST_note'));
            $this->variables['DB_HOST'] = $this->option('host') ?? $this->ask(
                'Database Host',
                config('database.connections.mysql.host', '127.0.0.1')
@ -73,7 +75,7 @@ class DatabaseSettingsCommand extends Command
                config('database.connections.mysql.database', 'panel')
            );
-            $this->output->note(__('commands.database_settings.DB_USERNAME_note'));
+            $this->output->note(trans('commands.database_settings.DB_USERNAME_note'));
            $this->variables['DB_USERNAME'] = $this->option('username') ?? $this->ask(
                'Database Username',
                config('database.connections.mysql.username', 'pelican')
@ -82,7 +84,7 @@ class DatabaseSettingsCommand extends Command
            $askForMySQLPassword = true;
            if (!empty(config('database.connections.mysql.password')) && $this->input->isInteractive()) {
                $this->variables['DB_PASSWORD'] = config('database.connections.mysql.password');
-                $askForMySQLPassword = $this->confirm(__('commands.database_settings.DB_PASSWORD_note'));
+                $askForMySQLPassword = $this->confirm(trans('commands.database_settings.DB_PASSWORD_note'));
            }
            if ($askForMySQLPassword) {
@ -104,11 +106,11 @@ class DatabaseSettingsCommand extends Command
                ]);
                $this->database->connection('_panel_command_test')->getPdo();
-            } catch (\PDOException $exception) {
+            } catch (PDOException $exception) {
                $this->output->error(sprintf('Unable to connect to the MySQL server using the provided credentials. The error returned was "%s".', $exception->getMessage()));
-                $this->output->error(__('commands.database_settings.DB_error_2'));
+                $this->output->error(trans('commands.database_settings.DB_error_2'));
-                if ($this->confirm(__('commands.database_settings.go_back'))) {
+                if ($this->confirm(trans('commands.database_settings.go_back'))) {
                    $this->database->disconnect('_panel_command_test');
                    return $this->handle();
@ -117,7 +119,7 @@ class DatabaseSettingsCommand extends Command
                return 1;
            }
        } elseif ($this->variables['DB_CONNECTION'] === 'mariadb') {
-            $this->output->note(__('commands.database_settings.DB_HOST_note'));
+            $this->output->note(trans('commands.database_settings.DB_HOST_note'));
            $this->variables['DB_HOST'] = $this->option('host') ?? $this->ask(
                'Database Host',
                config('database.connections.mariadb.host', '127.0.0.1')
@ -133,7 +135,7 @@ class DatabaseSettingsCommand extends Command
                config('database.connections.mariadb.database', 'panel')
            );
-            $this->output->note(__('commands.database_settings.DB_USERNAME_note'));
+            $this->output->note(trans('commands.database_settings.DB_USERNAME_note'));
            $this->variables['DB_USERNAME'] = $this->option('username') ?? $this->ask(
                'Database Username',
                config('database.connections.mariadb.username', 'pelican')
@ -142,7 +144,7 @@ class DatabaseSettingsCommand extends Command
            $askForMariaDBPassword = true;
            if (!empty(config('database.connections.mariadb.password')) && $this->input->isInteractive()) {
                $this->variables['DB_PASSWORD'] = config('database.connections.mariadb.password');
-                $askForMariaDBPassword = $this->confirm(__('commands.database_settings.DB_PASSWORD_note'));
+                $askForMariaDBPassword = $this->confirm(trans('commands.database_settings.DB_PASSWORD_note'));
            }
            if ($askForMariaDBPassword) {
@ -164,11 +166,11 @@ class DatabaseSettingsCommand extends Command
                ]);
                $this->database->connection('_panel_command_test')->getPdo();
-            } catch (\PDOException $exception) {
+            } catch (PDOException $exception) {
                $this->output->error(sprintf('Unable to connect to the MariaDB server using the provided credentials. The error returned was "%s".', $exception->getMessage()));
-                $this->output->error(__('commands.database_settings.DB_error_2'));
+                $this->output->error(trans('commands.database_settings.DB_error_2'));
-                if ($this->confirm(__('commands.database_settings.go_back'))) {
+                if ($this->confirm(trans('commands.database_settings.go_back'))) {
                    $this->database->disconnect('_panel_command_test');
                    return $this->handle();
@ -179,7 +181,7 @@ class DatabaseSettingsCommand extends Command
        } elseif ($this->variables['DB_CONNECTION'] === 'sqlite') {
            $this->variables['DB_DATABASE'] = $this->option('database') ?? $this->ask(
                'Database Path',
-                env('DB_DATABASE', 'database.sqlite')
+                (string) env('DB_DATABASE', 'database.sqlite')
            );
        }
--- a/app/Console/Commands/Environment/EmailSettingsCommand.php
+++ b/app/Console/Commands/Environment/EmailSettingsCommand.php
@ -2,6 +2,7 @@
 namespace App\Console\Commands\Environment;
 use App\Exceptions\PanelException;
 use App\Traits\EnvironmentWriterTrait;
 use Illuminate\Console\Command;
@ -22,12 +23,13 @@ class EmailSettingsCommand extends Command
                            {--username=}
                            {--password=}';
    /** @var array<array-key, mixed> */
    protected array $variables = [];
    /**
     * Handle command execution.
     *
-     * @throws \App\Exceptions\PanelException
+     * @throws PanelException
     */
    public function handle(): void
    {
@ -91,7 +93,7 @@ class EmailSettingsCommand extends Command
            trans('command/messages.environment.mail.ask_smtp_password')
        );
-        $this->variables['MAIL_ENCRYPTION'] = $this->option('encryption') ?? $this->choice(
+        $this->variables['MAIL_SCHEME'] = $this->option('encryption') ?? $this->choice(
            trans('command/messages.environment.mail.ask_encryption'),
            ['tls' => 'TLS', 'ssl' => 'SSL', '' => 'None'],
            config('mail.mailers.smtp.encryption', 'tls')
--- a/app/Console/Commands/Environment/QueueSettingsCommand.php
+++ b/app/Console/Commands/Environment/QueueSettingsCommand.php
@ -27,8 +27,6 @@ class QueueSettingsCommand extends Command
                            {--redis-pass= : Password used to connect to redis.}
                            {--redis-port= : Port to connect to redis over.}';
    protected array $variables = [];
    /**
     * QueueSettingsCommand constructor.
     */
--- a/app/Console/Commands/Environment/QueueWorkerServiceCommand.php
+++ b/app/Console/Commands/Environment/QueueWorkerServiceCommand.php
@ -18,10 +18,21 @@ class QueueWorkerServiceCommand extends Command
    public function handle(): void
    {
        if (@file_exists('/.dockerenv')) {
            $result = Process::run('supervisorctl restart queue-worker');
            if ($result->failed()) {
                $this->error('Error restarting service: ' . $result->errorOutput());
                return;
            }
            $this->line('Queue worker service file updated successfully.');
            return;
        }
        $serviceName = $this->option('service-name') ?? $this->ask('Queue worker service name', 'pelican-queue');
        $path = '/etc/systemd/system/' . $serviceName  . '.service';
-        $fileExists = file_exists($path);
+        $fileExists = @file_exists($path);
        if ($fileExists && !$this->option('overwrite') && !$this->confirm('The service file already exists. Do you want to overwrite it?')) {
            $this->line('Creation of queue worker service file aborted because service file already exists.');
--- a/app/Console/Commands/Environment/RedisSetupCommand.php
+++ b/app/Console/Commands/Environment/RedisSetupCommand.php
@ -20,8 +20,6 @@ class RedisSetupCommand extends Command
                            {--redis-pass= : Password used to connect to redis.}
                            {--redis-port= : Port to connect to redis over.}';
    protected array $variables = [];
    /**
     * RedisSetupCommand constructor.
     */
@ -37,7 +35,7 @@ class RedisSetupCommand extends Command
    {
        $this->variables['CACHE_STORE'] = 'redis';
        $this->variables['QUEUE_CONNECTION'] = 'redis';
-        $this->variables['SESSION_DRIVERS'] = 'redis';
+        $this->variables['SESSION_DRIVER'] = 'redis';
        $this->requestRedisSettings();
--- a/app/Console/Commands/Environment/SessionSettingsCommand.php
+++ b/app/Console/Commands/Environment/SessionSettingsCommand.php
@ -28,8 +28,6 @@ class SessionSettingsCommand extends Command
                            {--redis-pass= : Password used to connect to redis.}
                            {--redis-port= : Port to connect to redis over.}';
    protected array $variables = [];
    /**
     * SessionSettingsCommand constructor.
     */
--- a/app/Console/Commands/Maintenance/CleanServiceBackupFilesCommand.php
+++ b/app/Console/Commands/Maintenance/CleanServiceBackupFilesCommand.php
@ -4,8 +4,9 @@ namespace App\Console\Commands\Maintenance;
 use Carbon\Carbon;
 use Illuminate\Console\Command;
 use Illuminate\Contracts\Filesystem\Filesystem;
 use Illuminate\Contracts\Filesystem\Factory as FilesystemFactory;
 use Illuminate\Contracts\Filesystem\Filesystem;
 use SplFileInfo;
 class CleanServiceBackupFilesCommand extends Command
 {
@ -32,9 +33,10 @@ class CleanServiceBackupFilesCommand extends Command
     */
    public function handle(): void
    {
        /** @var SplFileInfo[] */
        $files = $this->disk->files('services/.bak');
-        collect($files)->each(function (\SplFileInfo $file) {
+        collect($files)->each(function ($file) {
            $lastModified = Carbon::createFromTimestamp($this->disk->lastModified($file->getPath()));
            if ($lastModified->diffInMinutes(Carbon::now()) > self::BACKUP_THRESHOLD_MINUTES) {
                $this->disk->delete($file->getPath());
--- a/app/Console/Commands/Maintenance/PruneOrphanedBackupsCommand.php
+++ b/app/Console/Commands/Maintenance/PruneOrphanedBackupsCommand.php
@ -5,6 +5,7 @@ namespace App\Console\Commands\Maintenance;
 use App\Models\Backup;
 use Carbon\CarbonImmutable;
 use Illuminate\Console\Command;
 use InvalidArgumentException;
 class PruneOrphanedBackupsCommand extends Command
 {
@ -16,7 +17,7 @@ class PruneOrphanedBackupsCommand extends Command
    {
        $since = $this->option('prune-age') ?? config('backups.prune_age', 360);
        if (!$since || !is_digit($since)) {
-            throw new \InvalidArgumentException('The "--prune-age" argument must be a value greater than 0.');
+            throw new InvalidArgumentException('The "--prune-age" argument must be a value greater than 0.');
        }
        $query = Backup::query()
--- a/app/Console/Commands/Node/MakeNodeCommand.php
+++ b/app/Console/Commands/Node/MakeNodeCommand.php
@ -2,8 +2,9 @@
 namespace App\Console\Commands\Node;
 use App\Exceptions\Model\DataValidationException;
 use App\Models\Node;
 use Illuminate\Console\Command;
 use App\Services\Nodes\NodeCreationService;
 class MakeNodeCommand extends Command
 {
@ -24,52 +25,46 @@ class MakeNodeCommand extends Command
                            {--overallocateCpu= : Enter the amount of cpu to overallocate (% or -1 to overallocate the maximum).}
                            {--uploadSize= : Enter the maximum upload filesize.}
                            {--daemonListeningPort= : Enter the daemon listening port.}
                            {--daemonConnectingPort= : Enter the daemon connecting port.}
                            {--daemonSFTPPort= : Enter the daemon SFTP listening port.}
                            {--daemonSFTPAlias= : Enter the daemon SFTP alias.}
                            {--daemonBase= : Enter the base folder.}';
    protected $description = 'Creates a new node on the system via the CLI.';
    /**
     * MakeNodeCommand constructor.
     */
    public function __construct(private NodeCreationService $creationService)
    {
        parent::__construct();
    }
    /**
     * Handle the command execution process.
     *
-     * @throws \App\Exceptions\Model\DataValidationException
+     * @throws DataValidationException
     */
    public function handle(): void
    {
-        $data['name'] = $this->option('name') ?? $this->ask(__('commands.make_node.name'));
+        $data['name'] = $this->option('name') ?? $this->ask(trans('commands.make_node.name'));
-        $data['description'] = $this->option('description') ?? $this->ask(__('commands.make_node.description'));
+        $data['description'] = $this->option('description') ?? $this->ask(trans('commands.make_node.description'));
        $data['scheme'] = $this->option('scheme') ?? $this->anticipate(
-            __('commands.make_node.scheme'),
+            trans('commands.make_node.scheme'),
            ['https', 'http'],
            'https'
        );
-        $data['fqdn'] = $this->option('fqdn') ?? $this->ask(__('commands.make_node.fqdn'));
+        $data['fqdn'] = $this->option('fqdn') ?? $this->ask(trans('commands.make_node.fqdn'));
-        $data['public'] = $this->option('public') ?? $this->confirm(__('commands.make_node.public'), true);
+        $data['public'] = $this->option('public') ?? $this->confirm(trans('commands.make_node.public'), true);
-        $data['behind_proxy'] = $this->option('proxy') ?? $this->confirm(__('commands.make_node.behind_proxy'));
+        $data['behind_proxy'] = $this->option('proxy') ?? $this->confirm(trans('commands.make_node.behind_proxy'));
-        $data['maintenance_mode'] = $this->option('maintenance') ?? $this->confirm(__('commands.make_node.maintenance_mode'));
+        $data['maintenance_mode'] = $this->option('maintenance') ?? $this->confirm(trans('commands.make_node.maintenance_mode'));
-        $data['memory'] = $this->option('maxMemory') ?? $this->ask(__('commands.make_node.memory'), '0');
+        $data['memory'] = $this->option('maxMemory') ?? $this->ask(trans('commands.make_node.memory'), '0');
-        $data['memory_overallocate'] = $this->option('overallocateMemory') ?? $this->ask(__('commands.make_node.memory_overallocate'), '-1');
+        $data['memory_overallocate'] = $this->option('overallocateMemory') ?? $this->ask(trans('commands.make_node.memory_overallocate'), '-1');
-        $data['disk'] = $this->option('maxDisk') ?? $this->ask(__('commands.make_node.disk'), '0');
+        $data['disk'] = $this->option('maxDisk') ?? $this->ask(trans('commands.make_node.disk'), '0');
-        $data['disk_overallocate'] = $this->option('overallocateDisk') ?? $this->ask(__('commands.make_node.disk_overallocate'), '-1');
+        $data['disk_overallocate'] = $this->option('overallocateDisk') ?? $this->ask(trans('commands.make_node.disk_overallocate'), '-1');
-        $data['cpu'] = $this->option('maxCpu') ?? $this->ask(__('commands.make_node.cpu'), '0');
+        $data['cpu'] = $this->option('maxCpu') ?? $this->ask(trans('commands.make_node.cpu'), '0');
-        $data['cpu_overallocate'] = $this->option('overallocateCpu') ?? $this->ask(__('commands.make_node.cpu_overallocate'), '-1');
+        $data['cpu_overallocate'] = $this->option('overallocateCpu') ?? $this->ask(trans('commands.make_node.cpu_overallocate'), '-1');
-        $data['upload_size'] = $this->option('uploadSize') ?? $this->ask(__('commands.make_node.upload_size'), '256');
+        $data['upload_size'] = $this->option('uploadSize') ?? $this->ask(trans('commands.make_node.upload_size'), '256');
-        $data['daemon_listen'] = $this->option('daemonListeningPort') ?? $this->ask(__('commands.make_node.daemonListen'), '8080');
+        $data['daemon_listen'] = $this->option('daemonListeningPort') ?? $this->ask(trans('commands.make_node.daemonListen'), '8080');
-        $data['daemon_sftp'] = $this->option('daemonSFTPPort') ?? $this->ask(__('commands.make_node.daemonSFTP'), '2022');
+        $data['daemon_connect'] = $this->option('daemonConnectingPort') ?? $this->ask(trans('commands.make_node.daemonConnect'), '8080');
-        $data['daemon_sftp_alias'] = $this->option('daemonSFTPAlias') ?? $this->ask(__('commands.make_node.daemonSFTPAlias'), '');
+        $data['daemon_sftp'] = $this->option('daemonSFTPPort') ?? $this->ask(trans('commands.make_node.daemonSFTP'), '2022');
-        $data['daemon_base'] = $this->option('daemonBase') ?? $this->ask(__('commands.make_node.daemonBase'), '/var/lib/pelican/volumes');
+        $data['daemon_sftp_alias'] = $this->option('daemonSFTPAlias') ?? $this->ask(trans('commands.make_node.daemonSFTPAlias'), '');
        $data['daemon_base'] = $this->option('daemonBase') ?? $this->ask(trans('commands.make_node.daemonBase'), '/var/lib/pelican/volumes');
-        $node = $this->creationService->handle($data);
+        $node = Node::create($data);
-        $this->line(__('commands.make_node.success', ['name' => $data['name'], 'id' => $node->id]));
+        $this->line(trans('commands.make_node.success', ['name' => $data['name'], 'id' => $node->id]));
    }
 }
--- a/app/Console/Commands/Node/NodeConfigurationCommand.php
+++ b/app/Console/Commands/Node/NodeConfigurationCommand.php
@ -17,16 +17,16 @@ class NodeConfigurationCommand extends Command
    {
        $column = ctype_digit((string) $this->argument('node')) ? 'id' : 'uuid';
-        /** @var \App\Models\Node $node */
+        /** @var Node $node */
        $node = Node::query()->where($column, $this->argument('node'))->firstOr(function () {
-            $this->error(__('commands.node_config.error_not_exist'));
+            $this->error(trans('commands.node_config.error_not_exist'));
            exit(1);
        });
        $format = $this->option('format');
        if (!in_array($format, ['yaml', 'yml', 'json'])) {
-            $this->error(__('commands.node_config.error_invalid_format'));
+            $this->error(trans('commands.node_config.error_invalid_format'));
            return 1;
        }
--- a/app/Console/Commands/Overrides/KeyGenerateCommand.php
+++ b/app/Console/Commands/Overrides/KeyGenerateCommand.php
@ -13,12 +13,12 @@ class KeyGenerateCommand extends BaseKeyGenerateCommand
    public function handle(): void
    {
        if (!empty(config('app.key')) && $this->input->isInteractive()) {
-            $this->output->warning(__('commands.key_generate.error_already_exist'));
+            $this->output->warning(trans('commands.key_generate.error_already_exist'));
-            if (!$this->confirm(__('commands.key_generate.understand'))) {
+            if (!$this->confirm(trans('commands.key_generate.understand'))) {
                return;
            }
-            if (!$this->confirm(__('commands.key_generate.continue'))) {
+            if (!$this->confirm(trans('commands.key_generate.continue'))) {
                return;
            }
        }
--- a/app/Console/Commands/Schedule/ProcessRunnableCommand.php
+++ b/app/Console/Commands/Schedule/ProcessRunnableCommand.php
@ -2,10 +2,11 @@
 namespace App\Console\Commands\Schedule;
 use Illuminate\Console\Command;
 use App\Models\Schedule;
 use Illuminate\Database\Eloquent\Builder;
 use App\Services\Schedules\ProcessScheduleService;
 use Illuminate\Console\Command;
 use Illuminate\Database\Eloquent\Builder;
 use Throwable;
 class ProcessRunnableCommand extends Command
 {
@ -13,10 +14,7 @@ class ProcessRunnableCommand extends Command
    protected $description = 'Process schedules in the database and determine which are ready to run.';
-    /**
+    public function handle(ProcessScheduleService $processScheduleService): int
     * Handle command execution.
     */
    public function handle(): int
    {
        $schedules = Schedule::query()
            ->with('tasks')
@ -27,7 +25,7 @@ class ProcessRunnableCommand extends Command
            ->get();
        if ($schedules->count() < 1) {
-            $this->line(__('commands.schedule.process.no_tasks'));
+            $this->line(trans('commands.schedule.process.no_tasks'));
            return 0;
        }
@ -35,7 +33,7 @@ class ProcessRunnableCommand extends Command
        $bar = $this->output->createProgressBar(count($schedules));
        foreach ($schedules as $schedule) {
            $bar->clear();
-            $this->processSchedule($schedule);
+            $this->processSchedule($processScheduleService, $schedule);
            $bar->advance();
            $bar->display();
        }
@ -50,23 +48,23 @@ class ProcessRunnableCommand extends Command
     * never throw an exception out, otherwise you'll end up killing the entire run group causing
     * any other schedules to not process correctly.
     */
-    protected function processSchedule(Schedule $schedule): void
+    protected function processSchedule(ProcessScheduleService $processScheduleService, Schedule $schedule): void
    {
        if ($schedule->tasks->isEmpty()) {
            return;
        }
        try {
-            $this->getLaravel()->make(ProcessScheduleService::class)->handle($schedule);
+            $processScheduleService->handle($schedule);
            $this->line(trans('command/messages.schedule.output_line', [
                'schedule' => $schedule->name,
                'id' => $schedule->id,
            ]));
-        } catch (\Throwable|\Exception $exception) {
+        } catch (Throwable $exception) {
            logger()->error($exception, ['schedule_id' => $schedule->id]);
-            $this->error(__('commands.schedule.process.no_tasks') . " #$schedule->id: " . $exception->getMessage());
+            $this->error(trans('commands.schedule.process.error_message', ['schedules' => " #$schedule->id: " . $exception->getMessage()]));
        }
    }
 }
--- a/app/Console/Commands/Server/BulkPowerActionCommand.php
+++ b/app/Console/Commands/Server/BulkPowerActionCommand.php
@ -3,12 +3,12 @@
 namespace App\Console\Commands\Server;
 use App\Models\Server;
 use App\Repositories\Daemon\DaemonServerRepository;
 use Exception;
 use Illuminate\Console\Command;
 use Illuminate\Database\Eloquent\Builder;
 use Illuminate\Validation\ValidationException;
 use Illuminate\Validation\Factory as ValidatorFactory;
-use App\Repositories\Daemon\DaemonPowerRepository;
+use Illuminate\Validation\ValidationException;
 use App\Exceptions\Http\Connection\DaemonConnectionException;
 class BulkPowerActionCommand extends Command
 {
@ -19,26 +19,13 @@ class BulkPowerActionCommand extends Command
    protected $description = 'Perform bulk power management on large groupings of servers or nodes at once.';
-    /**
+    public function handle(DaemonServerRepository $serverRepository, ValidatorFactory $validator): void
     * BulkPowerActionCommand constructor.
     */
    public function __construct(private DaemonPowerRepository $powerRepository, private ValidatorFactory $validator)
    {
        parent::__construct();
    }
    /**
     * Handle the bulk power request.
     *
     * @throws \Illuminate\Validation\ValidationException
     */
    public function handle(): void
    {
        $action = $this->argument('action');
        $nodes = empty($this->option('nodes')) ? [] : explode(',', $this->option('nodes'));
        $servers = empty($this->option('servers')) ? [] : explode(',', $this->option('servers'));
-        $validator = $this->validator->make([
+        $validator = $validator->make([
            'action' => $action,
            'nodes' => $nodes,
            'servers' => $servers,
@ -64,14 +51,17 @@ class BulkPowerActionCommand extends Command
        }
        $bar = $this->output->createProgressBar($count);
-        $powerRepository = $this->powerRepository;
+
-        // @phpstan-ignore-next-line
+        $this->getQueryBuilder($servers, $nodes)->get()->each(function ($server, int $index) use ($action, $serverRepository, &$bar): mixed {
        $this->getQueryBuilder($servers, $nodes)->each(function (Server $server) use ($action, $powerRepository, &$bar) {
            $bar->clear();
            if (!$server instanceof Server) {
                return null;
            }
            try {
-                $powerRepository->setServer($server)->send($action);
+                $serverRepository->setServer($server)->power($action);
-            } catch (DaemonConnectionException $exception) {
+            } catch (Exception $exception) {
                $this->output->error(trans('command/messages.server.power.action_failed', [
                    'name' => $server->name,
                    'id' => $server->id,
@ -82,6 +72,8 @@ class BulkPowerActionCommand extends Command
            $bar->advance();
            $bar->display();
            return null;
        });
        $this->line('');
@ -89,6 +81,9 @@ class BulkPowerActionCommand extends Command
    /**
     * Returns the query builder instance that will return the servers that should be affected.
     *
     * @param  string[]|int[]  $servers
     * @param  string[]|int[]  $nodes
     */
    protected function getQueryBuilder(array $servers, array $nodes): Builder
    {
--- a/app/Console/Commands/UpgradeCommand.php
+++ b/app/Console/Commands/UpgradeCommand.php
@ -1,197 +0,0 @@
 <?php
 namespace App\Console\Commands;
 use Illuminate\Console\Command;
 use App\Console\Kernel;
 use Symfony\Component\Process\Process;
 use Symfony\Component\Console\Helper\ProgressBar;
 class UpgradeCommand extends Command
 {
    protected const DEFAULT_URL = 'https://github.com/pelican-dev/panel/releases/%s/panel.tar.gz';
    protected $signature = 'p:upgrade
        {--user= : The user that PHP runs under. All files will be owned by this user.}
        {--group= : The group that PHP runs under. All files will be owned by this group.}
        {--url= : The specific archive to download.}
        {--release= : A specific version to download from GitHub. Leave blank to use latest.}
        {--skip-download : If set no archive will be downloaded.}';
    protected $description = 'Downloads a new archive from GitHub and then executes the normal upgrade commands.';
    /**
     * Executes an upgrade command which will run through all of our standard
     * Panel commands and enable users to basically just download
     * the archive and execute this and be done.
     *
     * This places the application in maintenance mode as well while the commands
     * are being executed.
     *
     * @throws \Exception
     */
    public function handle(): void
    {
        $skipDownload = $this->option('skip-download');
        if (!$skipDownload) {
            $this->output->warning(__('commands.upgrade.integrity'));
            $this->output->comment(__('commands.upgrade.source_url'));
            $this->line($this->getUrl());
        }
        if (version_compare(PHP_VERSION, '7.4.0') < 0) {
            $this->error(__('commands.upgrade.php_version') . ' [' . PHP_VERSION . '].');
        }
        $user = 'www-data';
        $group = 'www-data';
        if ($this->input->isInteractive()) {
            if (!$skipDownload) {
                $skipDownload = !$this->confirm(__('commands.upgrade.skipDownload'), true);
            }
            if (is_null($this->option('user'))) {
                $userDetails = function_exists('posix_getpwuid') ? posix_getpwuid(fileowner('public')) : [];
                $user = $userDetails['name'] ?? 'www-data';
                $message = __('commands.upgrade.webserver_user', ['user' => $user]);
                if (!$this->confirm($message, true)) {
                    $user = $this->anticipate(
                        __('commands.upgrade.name_webserver'),
                        [
                            'www-data',
                            'nginx',
                            'apache',
                        ]
                    );
                }
            }
            if (is_null($this->option('group'))) {
                $groupDetails = function_exists('posix_getgrgid') ? posix_getgrgid(filegroup('public')) : [];
                $group = $groupDetails['name'] ?? 'www-data';
                $message = __('commands.upgrade.group_webserver', ['group' => $user]);
                if (!$this->confirm($message, true)) {
                    $group = $this->anticipate(
                        __('commands.upgrade.group_webserver_question'),
                        [
                            'www-data',
                            'nginx',
                            'apache',
                        ]
                    );
                }
            }
            if (!$this->confirm(__('commands.upgrade.are_your_sure'))) {
                $this->warn(__('commands.upgrade.terminated'));
                return;
            }
        }
        ini_set('output_buffering', '0');
        $bar = $this->output->createProgressBar($skipDownload ? 9 : 10);
        $bar->start();
        if (!$skipDownload) {
            $this->withProgress($bar, function () {
                $this->line("\$upgrader> curl -L \"{$this->getUrl()}\" | tar -xzv");
                $process = Process::fromShellCommandline("curl -L \"{$this->getUrl()}\" | tar -xzv");
                $process->run(function ($type, $buffer) {
                    $this->{$type === Process::ERR ? 'error' : 'line'}($buffer);
                });
            });
        }
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan down');
            $this->call('down');
        });
        $this->withProgress($bar, function () {
            $this->line('$upgrader> chmod -R 755 storage bootstrap/cache');
            $process = new Process(['chmod', '-R', '755', 'storage', 'bootstrap/cache']);
            $process->run(function ($type, $buffer) {
                $this->{$type === Process::ERR ? 'error' : 'line'}($buffer);
            });
        });
        $this->withProgress($bar, function () {
            $command = ['composer', 'install', '--no-ansi'];
            if (config('app.env') === 'production' && !config('app.debug')) {
                $command[] = '--optimize-autoloader';
                $command[] = '--no-dev';
            }
            $this->line('$upgrader> ' . implode(' ', $command));
            $process = new Process($command);
            $process->setTimeout(10 * 60);
            $process->run(function ($type, $buffer) {
                $this->line($buffer);
            });
        });
        /** @var \Illuminate\Foundation\Application $app */
        $app = require __DIR__ . '/../../../bootstrap/app.php';
        /** @var \App\Console\Kernel $kernel */
        $kernel = $app->make(Kernel::class);
        $kernel->bootstrap();
        $this->setLaravel($app);
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan view:clear');
            $this->call('view:clear');
        });
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan config:clear');
            $this->call('config:clear');
        });
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan migrate --force --seed');
            $this->call('migrate', ['--force' => true, '--seed' => true]);
        });
        $this->withProgress($bar, function () use ($user, $group) {
            $this->line("\$upgrader> chown -R {$user}:{$group} *");
            $process = Process::fromShellCommandline("chown -R {$user}:{$group} *", $this->getLaravel()->basePath());
            $process->setTimeout(10 * 60);
            $process->run(function ($type, $buffer) {
                $this->{$type === Process::ERR ? 'error' : 'line'}($buffer);
            });
        });
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan queue:restart');
            $this->call('queue:restart');
        });
        $this->withProgress($bar, function () {
            $this->line('$upgrader> php artisan up');
            $this->call('up');
        });
        $this->newLine(2);
        $this->info(__('commands.upgrade.success'));
    }
    protected function withProgress(ProgressBar $bar, \Closure $callback): void
    {
        $bar->clear();
        $callback();
        $bar->advance();
        $bar->display();
    }
    protected function getUrl(): string
    {
        if ($this->option('url')) {
            return $this->option('url');
        }
        return sprintf(self::DEFAULT_URL, $this->option('release') ? 'download/v' . $this->option('release') : 'latest/download');
    }
 }
--- a/app/Console/Commands/User/DeleteUserCommand.php
+++ b/app/Console/Commands/User/DeleteUserCommand.php
@ -3,8 +3,8 @@
 namespace App\Console\Commands\User;
 use App\Models\User;
 use Webmozart\Assert\Assert;
 use Illuminate\Console\Command;
 use Webmozart\Assert\Assert;
 class DeleteUserCommand extends Command
 {
@ -35,7 +35,7 @@ class DeleteUserCommand extends Command
        if ($this->input->isInteractive()) {
            $tableValues = [];
            foreach ($results as $user) {
-                $tableValues[] = [$user->id, $user->email, $user->name];
+                $tableValues[] = [$user->id, $user->email, $user->username];
            }
            $this->table(['User ID', 'Email', 'Name'], $tableValues);
--- a/app/Console/Commands/User/DisableTwoFactorCommand.php
+++ b/app/Console/Commands/User/DisableTwoFactorCommand.php
@ -2,6 +2,7 @@
 namespace App\Console\Commands\User;
 use App\Exceptions\Model\DataValidationException;
 use App\Models\User;
 use Illuminate\Console\Command;
@ -14,7 +15,7 @@ class DisableTwoFactorCommand extends Command
    /**
     * Handle command execution process.
     *
-     * @throws \App\Exceptions\Model\DataValidationException
+     * @throws DataValidationException
     */
    public function handle(): void
    {
@ -24,10 +25,12 @@ class DisableTwoFactorCommand extends Command
        $email = $this->option('email') ?? $this->ask(trans('command/messages.user.ask_email'));
-        $user = User::query()->where('email', $email)->firstOrFail();
+        $user = User::where('email', $email)->firstOrFail();
-        $user->use_totp = false;
+        $user->update([
-        $user->totp_secret = null;
+            'mfa_app_secret' => null,
-        $user->save();
+            'mfa_app_recovery_codes' => null,
            'mfa_email_enabled' => false,
        ]);
        $this->info(trans('command/messages.user.2fa_disabled', ['email' => $user->email]));
    }
--- a/app/Console/Commands/User/MakeUserCommand.php
+++ b/app/Console/Commands/User/MakeUserCommand.php
@ -2,9 +2,10 @@
 namespace App\Console\Commands\User;
 use App\Exceptions\Model\DataValidationException;
 use App\Services\Users\UserCreationService;
 use Exception;
 use Illuminate\Console\Command;
 use App\Services\Users\UserCreationService;
 use Illuminate\Support\Facades\DB;
 class MakeUserCommand extends Command
@ -25,7 +26,7 @@ class MakeUserCommand extends Command
     * Handle command request to create a new user.
     *
     * @throws Exception
-     * @throws \App\Exceptions\Model\DataValidationException
+     * @throws DataValidationException
     */
    public function handle(): int
    {
--- a/app/Console/Kernel.php
+++ b/app/Console/Kernel.php
@ -3,11 +3,11 @@
 namespace App\Console;
 use App\Console\Commands\Egg\CheckEggUpdatesCommand;
 use App\Console\Commands\Egg\UpdateEggIndexCommand;
 use App\Console\Commands\Maintenance\CleanServiceBackupFilesCommand;
 use App\Console\Commands\Maintenance\PruneImagesCommand;
 use App\Console\Commands\Maintenance\PruneOrphanedBackupsCommand;
 use App\Console\Commands\Schedule\ProcessRunnableCommand;
 use App\Jobs\NodeStatistics;
 use App\Models\ActivityLog;
 use App\Models\Webhook;
 use Illuminate\Console\Scheduling\Schedule;
@ -31,17 +31,20 @@ class Kernel extends ConsoleKernel
     */
    protected function schedule(Schedule $schedule): void
    {
        if (config('cache.default') === 'redis') {
            // https://laravel.com/docs/10.x/upgrade#redis-cache-tags
            // This only needs to run when using redis. anything else throws an error.
            $schedule->command('cache:prune-stale-tags')->hourly();
        }
        // Execute scheduled commands for servers every minute, as if there was a normal cron running.
        $schedule->command(ProcessRunnableCommand::class)->everyMinute()->withoutOverlapping();
        $schedule->command(CleanServiceBackupFilesCommand::class)->daily();
        $schedule->command(PruneImagesCommand::class)->daily();
        $schedule->command(CheckEggUpdatesCommand::class)->hourly();
-        $schedule->job(new NodeStatistics())->everyFiveSeconds()->withoutOverlapping();
+        $schedule->command(CheckEggUpdatesCommand::class)->daily();
        $schedule->command(UpdateEggIndexCommand::class)->daily();
        if (config('backups.prune_age')) {
            // Every 30 minutes, run the backup pruning command so that any abandoned backups can be deleted.
--- a/app/Contracts/Validatable.php
+++ b/app/Contracts/Validatable.php
@ -0,0 +1,22 @@
 <?php
 namespace App\Contracts;
 use Illuminate\Validation\Validator;
 interface Validatable
 {
    public function getValidator(): Validator;
    /**
     * @return array<string, mixed>
     */
    public static function getRules(): array;
    /**
     * @return array<string, array<string, mixed>>
     */
    public static function getRulesForField(string $field): array;
    public function validate(): void;
 }
--- a/app/Eloquent/BackupQueryBuilder.php
+++ b/app/Eloquent/BackupQueryBuilder.php
@ -0,0 +1,24 @@
 <?php
 namespace App\Eloquent;
 use Illuminate\Database\Eloquent\Builder;
 /**
 * @template TModel of \Illuminate\Database\Eloquent\Model
 *
 * @extends Builder<TModel>
 */
 class BackupQueryBuilder extends Builder
 {
    public function nonFailed(): self
    {
        $this->where(function (Builder $query) {
            $query
                ->whereNull('completed_at')
                ->orWhere('is_successful', true);
        });
        return $this;
    }
 }
--- a/app/Enums/BackupStatus.php
+++ b/app/Enums/BackupStatus.php
@ -0,0 +1,37 @@
 <?php
 namespace App\Enums;
 use Filament\Support\Contracts\HasColor;
 use Filament\Support\Contracts\HasIcon;
 use Filament\Support\Contracts\HasLabel;
 enum BackupStatus: string implements HasColor, HasIcon, HasLabel
 {
    case InProgress = 'in_progress';
    case Successful = 'successful';
    case Failed = 'failed';
    public function getIcon(): string
    {
        return match ($this) {
            self::InProgress => 'tabler-circle-dashed',
            self::Successful => 'tabler-circle-check',
            self::Failed => 'tabler-circle-x',
        };
    }
    public function getColor(): string
    {
        return match ($this) {
            self::InProgress => 'primary',
            self::Successful => 'success',
            self::Failed => 'danger',
        };
    }
    public function getLabel(): string
    {
        return trans('server/backup.backup_status.' . $this->value);
    }
 }
--- a/app/Enums/ConsoleWidgetPosition.php
+++ b/app/Enums/ConsoleWidgetPosition.php
@ -0,0 +1,11 @@
 <?php
 namespace App\Enums;
 enum ConsoleWidgetPosition: string
 {
    case Top = 'top';
    case AboveConsole = 'above_console';
    case BelowConsole = 'below_console';
    case Bottom = 'bottom';
 }
--- a/app/Enums/ContainerStatus.php
+++ b/app/Enums/ContainerStatus.php
@ -2,7 +2,11 @@
 namespace App\Enums;
-enum ContainerStatus: string
+use Filament\Support\Contracts\HasColor;
 use Filament\Support\Contracts\HasIcon;
 use Filament\Support\Contracts\HasLabel;
 enum ContainerStatus: string implements HasColor, HasIcon, HasLabel
 {
    // Docker Based
    case Created = 'created';
@ -19,7 +23,7 @@ enum ContainerStatus: string
    // HTTP Based
    case Missing = 'missing';
-    public function icon(): string
+    public function getIcon(): string
    {
        return match ($this) {
@ -36,8 +40,17 @@ enum ContainerStatus: string
        };
    }
-    public function color(): string
+    public function getColor(bool $hex = false): string
    {
        if ($hex) {
            return match ($this) {
                self::Created, self::Restarting => '#2563EB',
                self::Starting, self::Paused, self::Removing, self::Stopping => '#D97706',
                self::Running => '#22C55E',
                self::Exited, self::Missing, self::Dead, self::Offline => '#EF4444',
            };
        }
        return match ($this) {
            self::Created => 'primary',
            self::Starting => 'warning',
@ -49,18 +62,23 @@ enum ContainerStatus: string
            self::Removing => 'warning',
            self::Missing => 'danger',
            self::Stopping => 'warning',
-            self::Offline => 'gray',
+            self::Offline => 'danger',
        };
    }
-    public function colorHex(): string
+    public function getLabel(): string
    {
-        return match ($this) {
+        return trans('server/console.status.' . $this->value);
-            self::Created, self::Restarting => '#2563EB',
+    }
-            self::Starting, self::Paused, self::Removing, self::Stopping => '#D97706',
+
-            self::Running => '#22C55E',
+    public function isOffline(): bool
-            self::Exited, self::Missing, self::Dead, self::Offline => '#EF4444',
+    {
-        };
+        return in_array($this, [ContainerStatus::Offline, ContainerStatus::Missing]);
    }
    public function isStartingOrRunning(): bool
    {
        return in_array($this, [ContainerStatus::Starting, ContainerStatus::Running]);
    }
    public function isStartingOrStopping(): bool
@ -70,7 +88,7 @@ enum ContainerStatus: string
    public function isStartable(): bool
    {
-        return !in_array($this, [ContainerStatus::Running, ContainerStatus::Starting, ContainerStatus::Stopping, ContainerStatus::Restarting]);
+        return !in_array($this, [ContainerStatus::Running, ContainerStatus::Starting, ContainerStatus::Stopping, ContainerStatus::Restarting, ContainerStatus::Missing]);
    }
    public function isRestartable(): bool
@ -79,18 +97,16 @@ enum ContainerStatus: string
            return true;
        }
-        return !in_array($this, [ContainerStatus::Offline]);
+        return !in_array($this, [ContainerStatus::Offline, ContainerStatus::Missing]);
    }
    public function isStoppable(): bool
    {
-        return !in_array($this, [ContainerStatus::Starting, ContainerStatus::Stopping, ContainerStatus::Restarting, ContainerStatus::Exited, ContainerStatus::Offline]);
+        return !in_array($this, [ContainerStatus::Starting, ContainerStatus::Stopping, ContainerStatus::Restarting, ContainerStatus::Exited, ContainerStatus::Offline, ContainerStatus::Missing]);
    }
    public function isKillable(): bool
    {
-        // [ContainerStatus::Restarting, ContainerStatus::Removing, ContainerStatus::Dead, ContainerStatus::Created]
+        return !in_array($this, [ContainerStatus::Offline, ContainerStatus::Running, ContainerStatus::Exited, ContainerStatus::Missing]);
        return !in_array($this, [ContainerStatus::Offline, ContainerStatus::Running, ContainerStatus::Exited]);
    }
 }
--- a/app/Enums/CustomRenderHooks.php
+++ b/app/Enums/CustomRenderHooks.php
@ -0,0 +1,9 @@
 <?php
 namespace App\Enums;
 enum CustomRenderHooks: string
 {
    case FooterStart = 'pelican::footer.start';
    case FooterEnd = 'pelican::footer.end';
 }
--- a/app/Enums/CustomizationKey.php
+++ b/app/Enums/CustomizationKey.php
@ -0,0 +1,37 @@
 <?php
 namespace App\Enums;
 enum CustomizationKey: string
 {
    case ConsoleRows = 'console_rows';
    case ConsoleFont = 'console_font';
    case ConsoleFontSize = 'console_font_size';
    case ConsoleGraphPeriod = 'console_graph_period';
    case TopNavigation = 'top_navigation';
    case DashboardLayout = 'dashboard_layout';
    public function getDefaultValue(): string|int|bool
    {
        return match ($this) {
            self::ConsoleRows => 30,
            self::ConsoleFont => 'monospace',
            self::ConsoleFontSize => 14,
            self::ConsoleGraphPeriod => 30,
            self::TopNavigation => config('panel.filament.default-navigation', 'sidebar'),
            self::DashboardLayout => 'grid',
        };
    }
    /** @return array<string, string|int|bool> */
    public static function getDefaultCustomization(): array
    {
        $default = [];
        foreach (self::cases() as $key) {
            $default[$key->value] = $key->getDefaultValue();
        }
        return $default;
    }
 }
--- a/app/Enums/EditorLanguages.php
+++ b/app/Enums/EditorLanguages.php
@ -1,98 +0,0 @@
 <?php
 namespace App\Enums;
 use Filament\Support\Contracts\HasLabel;
 enum EditorLanguages: string implements HasLabel
 {
    case plaintext = 'plaintext';
    case abap = 'abap';
    case apex = 'apex';
    case azcali = 'azcali';
    case bat = 'bat';
    case bicep = 'bicep';
    case cameligo = 'cameligo';
    case coljure = 'coljure';
    case coffeescript = 'coffeescript';
    case c = 'c';
    case cpp = 'cpp';
    case csharp = 'csharp';
    case csp = 'csp';
    case css = 'css';
    case cypher = 'cypher';
    case dart = 'dart';
    case dockerfile = 'dockerfile';
    case ecl = 'ecl';
    case elixir = 'elixir';
    case flow9 = 'flow9';
    case fsharp = 'fsharp';
    case go = 'go';
    case graphql = 'graphql';
    case handlebars = 'handlebars';
    case hcl = 'hcl';
    case html = 'html';
    case ini = 'ini';
    case java = 'java';
    case javascript = 'javascript';
    case julia = 'julia';
    case kotlin = 'kotlin';
    case less = 'less';
    case lexon = 'lexon';
    case lua = 'lua';
    case liquid = 'liquid';
    case m3 = 'm3';
    case markdown = 'markdown';
    case mdx = 'mdx';
    case mips = 'mips';
    case msdax = 'msdax';
    case mysql = 'mysql';
    case objectivec = 'objective-c';
    case pascal = 'pascal';
    case pascaligo = 'pascaligo';
    case perl = 'perl';
    case pgsql = 'pgsql';
    case php = 'php';
    case pla = 'pla';
    case postiats = 'postiats';
    case powerquery = 'powerquery';
    case powershell = 'powershell';
    case proto = 'proto';
    case pug = 'pug';
    case python = 'python';
    case qsharp = 'qsharp';
    case r = 'r';
    case razor = 'razor';
    case redis = 'redis';
    case redshift = 'redshift';
    case restructuredtext = 'restructuredtext';
    case ruby = 'ruby';
    case rust = 'rust';
    case sb = 'sb';
    case scala = 'scala';
    case scheme = 'scheme';
    case scss = 'scss';
    case shell = 'shell';
    case sol = 'sol';
    case aes = 'aes';
    case sparql = 'sparql';
    case sql = 'sql';
    case st = 'st';
    case swift = 'swift';
    case systemverilog = 'systemverilog';
    case verilog = 'verilog';
    case tcl = 'tcl';
    case twig = 'twig';
    case typescript = 'typescript';
    case typespec = 'typespec';
    case vb = 'vb';
    case wgsl = 'wgsl';
    case xml = 'xml';
    case yaml = 'yaml';
    case json = 'json';
    public function getLabel(): ?string
    {
        return $this->name;
    }
 }
--- a/app/Enums/EggFormat.php
+++ b/app/Enums/EggFormat.php
@ -0,0 +1,9 @@
 <?php
 namespace App\Enums;
 enum EggFormat: string
 {
    case YAML = 'yaml';
    case JSON = 'json';
 }
--- a/app/Enums/HeaderActionPosition.php
+++ b/app/Enums/HeaderActionPosition.php
@ -0,0 +1,9 @@
 <?php
 namespace App\Enums;
 enum HeaderActionPosition: string
 {
    case Before = 'before';
    case After = 'after';
 }
--- a/app/Enums/HeaderWidgetPosition.php
+++ b/app/Enums/HeaderWidgetPosition.php
@ -0,0 +1,9 @@
 <?php
 namespace App\Enums;
 enum HeaderWidgetPosition: string
 {
    case Before = 'before';
    case After = 'after';
 }
--- a/app/Enums/RolePermissionModels.php
+++ b/app/Enums/RolePermissionModels.php
@ -14,4 +14,24 @@ enum RolePermissionModels: string
    case Server = 'server';
    case User = 'user';
    case Webhook = 'webhook';
    public function viewAny(): string
    {
        return RolePermissionPrefixes::ViewAny->value . ' ' . $this->value;
    }
    public function view(): string
    {
        return RolePermissionPrefixes::View->value . ' ' . $this->value;
    }
    public function create(): string
    {
        return RolePermissionPrefixes::Create->value . ' ' . $this->value;
    }
    public function update(): string
    {
        return RolePermissionPrefixes::Update->value . ' ' . $this->value;
    }
 }
--- a/app/Enums/ScheduleStatus.php
+++ b/app/Enums/ScheduleStatus.php
@ -0,0 +1,27 @@
 <?php
 namespace App\Enums;
 use Filament\Support\Contracts\HasColor;
 use Filament\Support\Contracts\HasLabel;
 enum ScheduleStatus: string implements HasColor, HasLabel
 {
    case Inactive = 'inactive';
    case Processing = 'processing';
    case Active = 'active';
    public function getColor(): string
    {
        return match ($this) {
            self::Inactive => 'danger',
            self::Processing => 'warning',
            self::Active => 'success',
        };
    }
    public function getLabel(): string
    {
        return trans('server/schedule.schedule_status.' . $this->value);
    }
 }
--- a/app/Enums/ServerResourceType.php
+++ b/app/Enums/ServerResourceType.php
@ -2,9 +2,50 @@
 namespace App\Enums;
-enum ServerResourceType
+use App\Models\Server;
 enum ServerResourceType: string
 {
-    case Unit;
+    case Uptime = 'uptime';
-    case Percentage;
+    case CPU = 'cpu_absolute';
-    case Time;
+    case Memory = 'memory_bytes';
    case Disk = 'disk_bytes';
    case CPULimit = 'cpu';
    case MemoryLimit = 'memory';
    case DiskLimit = 'disk';
    /**
     * @return int resource amount in bytes
     */
    public function getResourceAmount(Server $server): int
    {
        if ($this->isLimit()) {
            $resourceAmount = $server->{$this->value} ?? 0;
            if (!$this->isPercentage()) {
                // Our limits are entered as MiB/ MB so we need to convert them to bytes
                $resourceAmount *= config('panel.use_binary_prefix') ? 1024 * 1024 : 1000 * 1000;
            }
            return $resourceAmount;
        }
        return $server->retrieveResources()[$this->value] ?? 0;
    }
    public function isLimit(): bool
    {
        return $this === ServerResourceType::CPULimit || $this === ServerResourceType::MemoryLimit || $this === ServerResourceType::DiskLimit;
    }
    public function isTime(): bool
    {
        return $this === ServerResourceType::Uptime;
    }
    public function isPercentage(): bool
    {
        return $this === ServerResourceType::CPU || $this === ServerResourceType::CPULimit;
    }
 }
--- a/app/Enums/ServerState.php
+++ b/app/Enums/ServerState.php
@ -2,19 +2,21 @@
 namespace App\Enums;
-enum ServerState: string
+use Filament\Support\Contracts\HasColor;
 use Filament\Support\Contracts\HasIcon;
 use Filament\Support\Contracts\HasLabel;
 enum ServerState: string implements HasColor, HasIcon, HasLabel
 {
    case Normal = 'normal';
    case Installing = 'installing';
    case InstallFailed = 'install_failed';
    case ReinstallFailed = 'reinstall_failed';
    case Suspended = 'suspended';
    case RestoringBackup = 'restoring_backup';
-    public function icon(): string
+    public function getIcon(): string
    {
        return match ($this) {
            self::Normal => 'tabler-heart',
            self::Installing => 'tabler-heart-bolt',
            self::InstallFailed => 'tabler-heart-x',
            self::ReinstallFailed => 'tabler-heart-x',
@ -23,10 +25,17 @@ enum ServerState: string
        };
    }
-    public function color(): string
+    public function getColor(bool $hex = false): string
    {
        if ($hex) {
            return match ($this) {
                self::Installing, self::RestoringBackup => '#2563EB',
                self::Suspended => '#D97706',
                self::InstallFailed, self::ReinstallFailed => '#EF4444',
            };
        }
        return match ($this) {
            self::Normal => 'primary',
            self::Installing => 'primary',
            self::InstallFailed => 'danger',
            self::ReinstallFailed => 'danger',
@ -34,4 +43,9 @@ enum ServerState: string
            self::RestoringBackup => 'primary',
        };
    }
    public function getLabel(): string
    {
        return str($this->value)->headline();
    }
 }
--- a/app/Enums/StartupVariableType.php
+++ b/app/Enums/StartupVariableType.php
@ -0,0 +1,11 @@
 <?php
 namespace App\Enums;
 enum StartupVariableType: string
 {
    case Text = 'text';
    case Number = 'number';
    case Select = 'select';
    case Toggle = 'toggle';
 }
--- a/app/Enums/SuspendAction.php
+++ b/app/Enums/SuspendAction.php
@ -0,0 +1,9 @@
 <?php
 namespace App\Enums;
 enum SuspendAction: string
 {
    case Suspend = 'suspend';
    case Unsuspend = 'unsuspend';
 }
--- a/app/Enums/WebhookType.php
+++ b/app/Enums/WebhookType.php
@ -0,0 +1,34 @@
 <?php
 namespace App\Enums;
 use Filament\Support\Contracts\HasColor;
 use Filament\Support\Contracts\HasIcon;
 use Filament\Support\Contracts\HasLabel;
 enum WebhookType: string implements HasColor, HasIcon, HasLabel
 {
    case Regular = 'regular';
    case Discord = 'discord';
    public function getLabel(): string
    {
        return trans('admin/webhook.' . $this->value);
    }
    public function getColor(): ?string
    {
        return match ($this) {
            self::Regular => null,
            self::Discord => 'blurple',
        };
    }
    public function getIcon(): string
    {
        return match ($this) {
            self::Regular => 'tabler-world-www',
            self::Discord => 'tabler-brand-discord',
        };
    }
 }
--- a/app/Events/ActivityLogged.php
+++ b/app/Events/ActivityLogged.php
@ -2,9 +2,9 @@
 namespace App\Events;
 use Illuminate\Support\Str;
 use App\Models\ActivityLog;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Support\Str;
 class ActivityLogged extends Event
 {
--- a/app/Events/Auth/DirectLogin.php
+++ b/app/Events/Auth/DirectLogin.php
@ -1,11 +0,0 @@
 <?php
 namespace App\Events\Auth;
 use App\Models\User;
 use App\Events\Event;
 class DirectLogin extends Event
 {
    public function __construct(public User $user, public bool $remember) {}
 }
--- a/app/Events/Auth/FailedPasswordReset.php
+++ b/app/Events/Auth/FailedPasswordReset.php
@ -1,16 +0,0 @@
 <?php
 namespace App\Events\Auth;
 use App\Events\Event;
 use Illuminate\Queue\SerializesModels;
 class FailedPasswordReset extends Event
 {
    use SerializesModels;
    /**
     * Create a new event instance.
     */
    public function __construct(public string $ip, public string $email) {}
 }
--- a/app/Events/Auth/ProvidedAuthenticationToken.php
+++ b/app/Events/Auth/ProvidedAuthenticationToken.php
@ -2,8 +2,8 @@
 namespace App\Events\Auth;
 use App\Models\User;
 use App\Events\Event;
 use App\Models\User;
 class ProvidedAuthenticationToken extends Event
 {
--- a/app/Exceptions/DisplayException.php
+++ b/app/Exceptions/DisplayException.php
@ -4,14 +4,18 @@ namespace App\Exceptions;
 use Exception;
 use Filament\Notifications\Notification;
 use Illuminate\Container\Container;
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
 use Psr\Log\LoggerInterface;
 use Illuminate\Http\Response;
-use Illuminate\Container\Container;
+use Psr\Log\LoggerInterface;
 use Symfony\Component\HttpKernel\Exception\HttpExceptionInterface;
 use Throwable;
 /**
 * @deprecated
 */
 class DisplayException extends PanelException implements HttpExceptionInterface
 {
    public const LEVEL_DEBUG = 'debug';
@ -25,7 +29,7 @@ class DisplayException extends PanelException implements HttpExceptionInterface
    /**
     * DisplayException constructor.
     */
-    public function __construct(string $message, ?\Throwable $previous = null, protected string $level = self::LEVEL_ERROR, int $code = 0)
+    public function __construct(string $message, ?Throwable $previous = null, protected string $level = self::LEVEL_ERROR, int $code = 0)
    {
        parent::__construct($message, $code, $previous);
    }
@ -40,6 +44,9 @@ class DisplayException extends PanelException implements HttpExceptionInterface
        return Response::HTTP_BAD_REQUEST;
    }
    /**
     * @return array<string, string>
     */
    public function getHeaders(): array
    {
        return [];
@ -73,11 +80,11 @@ class DisplayException extends PanelException implements HttpExceptionInterface
     * Log the exception to the logs using the defined error level only if the previous
     * exception is set.
     *
-     * @throws \Throwable
+     * @throws Throwable
     */
    public function report(): void
    {
-        if (!$this->getPrevious() instanceof \Exception || !Handler::isReportable($this->getPrevious())) {
+        if (!$this->getPrevious() instanceof Exception || !Handler::isReportable($this->getPrevious())) {
            return;
        }
--- a/app/Exceptions/Handler.php
+++ b/app/Exceptions/Handler.php
@ -2,24 +2,28 @@
 namespace App\Exceptions;
-use Illuminate\Support\Arr;
+use Exception;
-use Illuminate\Support\Str;
+use Illuminate\Auth\Access\AuthorizationException;
-use Illuminate\Http\JsonResponse;
+use Illuminate\Auth\AuthenticationException;
 use Illuminate\Support\Collection;
 use Illuminate\Container\Container;
 use Illuminate\Database\Connection;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Foundation\Application;
 use Illuminate\Auth\AuthenticationException;
 use Illuminate\Session\TokenMismatchException;
 use Illuminate\Validation\ValidationException;
 use Symfony\Component\HttpFoundation\Response;
 use Illuminate\Auth\Access\AuthorizationException;
 use Illuminate\Database\Eloquent\ModelNotFoundException;
-use Symfony\Component\HttpKernel\Exception\HttpException;
+use Illuminate\Foundation\Application;
 use Symfony\Component\Mailer\Exception\TransportException;
 use Illuminate\Foundation\Exceptions\Handler as ExceptionHandler;
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
 use Illuminate\Session\TokenMismatchException;
 use Illuminate\Support\Arr;
 use Illuminate\Support\Collection;
 use Illuminate\Support\Str;
 use Illuminate\Validation\ValidationException;
 use PDOException;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Exception\HttpException;
 use Symfony\Component\HttpKernel\Exception\HttpExceptionInterface;
 use Symfony\Component\Mailer\Exception\TransportException;
 use Throwable;
 class Handler extends ExceptionHandler
 {
@ -45,6 +49,8 @@ class Handler extends ExceptionHandler
    /**
     * Maps exceptions to a specific response code. This handles special exception
     * types that don't have a defined response code.
     *
     * @var array<class-string, int>
     */
    protected static array $exceptionResponseCodes = [
        AuthenticationException::class => 401,
@ -76,7 +82,7 @@ class Handler extends ExceptionHandler
            $this->dontReport = [];
        }
-        $this->reportable(function (\PDOException $ex) {
+        $this->reportable(function (PDOException $ex) {
            $ex = $this->generateCleanedExceptionStack($ex);
        });
@ -85,7 +91,7 @@ class Handler extends ExceptionHandler
        });
    }
-    private function generateCleanedExceptionStack(\Throwable $exception): string
+    private function generateCleanedExceptionStack(Throwable $exception): string
    {
        $cleanedStack = '';
        foreach ($exception->getTrace() as $index => $item) {
@ -114,11 +120,11 @@ class Handler extends ExceptionHandler
    /**
     * Render an exception into an HTTP response.
     *
-     * @param  \Illuminate\Http\Request  $request
+     * @param  Request  $request
     *
-     * @throws \Throwable
+     * @throws Throwable
     */
-    public function render($request, \Throwable $e): Response
+    public function render($request, Throwable $e): Response
    {
        $connections = $this->container->make(Connection::class);
@ -140,7 +146,7 @@ class Handler extends ExceptionHandler
     * Transform a validation exception into a consistent format to be returned for
     * calls to the API.
     *
-     * @param  \Illuminate\Http\Request  $request
+     * @param  Request  $request
     */
    public function invalidJson($request, ValidationException $exception): JsonResponse
    {
@ -180,9 +186,16 @@ class Handler extends ExceptionHandler
    }
    /**
-     * Return the exception as a JSONAPI representation for use on API requests.
+     * @param  array<string, mixed>  $override
     * @return array{errors: array{
     *     code: string,
     *     status: string,
     *     detail: string,
     *     source?: array{line: int, file: string},
     *     meta?: array{trace: string[], previous: string[]}
     * }}|array{errors: array{non-empty-array<string, mixed>}}
     */
-    protected function convertExceptionToArray(\Throwable $e, array $override = []): array
+    public static function exceptionToArray(Throwable $e, array $override = []): array
    {
        $match = self::$exceptionResponseCodes[get_class($e)] ?? null;
@ -214,7 +227,7 @@ class Handler extends ExceptionHandler
                    'trace' => Collection::make($e->getTrace())
                        ->map(fn ($trace) => Arr::except($trace, ['args']))
                        ->all(),
-                    'previous' => Collection::make($this->extractPrevious($e))
+                    'previous' => Collection::make(self::extractPrevious($e))
                        ->map(fn ($exception) => $exception->getTrace())
                        ->map(fn ($trace) => Arr::except($trace, ['args']))
                        ->all(),
@ -225,10 +238,21 @@ class Handler extends ExceptionHandler
        return ['errors' => [array_merge($error, $override)]];
    }
    /**
     * Return the exception as a JSONAPI representation for use on API requests.
     *
     * @param  array{detail?: mixed, source?: mixed, meta?: mixed}  $override
     * @return array{errors?: array<mixed>}
     */
    protected function convertExceptionToArray(Throwable $e, array $override = []): array
    {
        return self::exceptionToArray($e, $override);
    }
    /**
     * Return an array of exceptions that should not be reported.
     */
-    public static function isReportable(\Exception $exception): bool
+    public static function isReportable(Exception $exception): bool
    {
        return (new self(Container::getInstance()))->shouldReport($exception);
    }
@ -236,7 +260,7 @@ class Handler extends ExceptionHandler
    /**
     * Convert an authentication exception into an unauthenticated response.
     *
-     * @param  \Illuminate\Http\Request  $request
+     * @param  Request  $request
     */
    protected function unauthenticated($request, AuthenticationException $exception): JsonResponse|RedirectResponse
    {
@ -244,22 +268,19 @@ class Handler extends ExceptionHandler
            return new JsonResponse($this->convertExceptionToArray($exception), JsonResponse::HTTP_UNAUTHORIZED);
        }
-        return redirect()->guest('/auth/login');
+        return redirect()->guest(route('filament.app.auth.login'));
    }
    /**
     * Extracts all the previous exceptions that lead to the one passed into this
     * function being thrown.
     *
-     * @return \Throwable[]
+     * @return Throwable[]
     */
-    protected function extractPrevious(\Throwable $e): array
+    public static function extractPrevious(Throwable $e): array
    {
        $previous = [];
        while ($value = $e->getPrevious()) {
            if (!$value instanceof \Throwable) {
                break;
            }
            $previous[] = $value;
            $e = $value;
        }
@ -270,10 +291,11 @@ class Handler extends ExceptionHandler
    /**
     * Helper method to allow reaching into the handler to convert an exception
     * into the expected array response type.
     *
     * @return array<mixed>
     */
-    public static function toArray(\Throwable $e): array
+    public static function toArray(Throwable $e): array
    {
-        // @phpstan-ignore-next-line
+        return self::exceptionToArray($e);
        return (new self(app()))->convertExceptionToArray($e);
    }
 }
--- a/app/Exceptions/Http/Connection/DaemonConnectionException.php
+++ b/app/Exceptions/Http/Connection/DaemonConnectionException.php
@ -1,73 +0,0 @@
 <?php
 namespace App\Exceptions\Http\Connection;
 use Exception;
 use Illuminate\Http\Response;
 use App\Exceptions\DisplayException;
 use Illuminate\Support\Facades\Context;
 class DaemonConnectionException extends DisplayException
 {
    private int $statusCode = Response::HTTP_GATEWAY_TIMEOUT;
    /**
     * Every request to the daemon instance will return a unique X-Request-Id header
     * which allows for all errors to be efficiently tied to a specific request that
     * triggered them, and gives users a more direct method of informing hosts when
     * something goes wrong.
     */
    private ?string $requestId;
    /**
     * Throw a displayable exception caused by a daemon connection error.
     */
    public function __construct(?Exception $previous, bool $useStatusCode = true)
    {
        /** @var \GuzzleHttp\Psr7\Response|null $response */
        $response = method_exists($previous, 'getResponse') ? $previous->getResponse() : null;
        $this->requestId = $response?->getHeaderLine('X-Request-Id');
        Context::add('request_id', $this->requestId);
        if ($useStatusCode) {
            $this->statusCode = is_null($response) ? $this->statusCode : $response->getStatusCode();
            // There are rare conditions where daemon encounters a panic condition and crashes the
            // request being made after content has already been sent over the wire. In these cases
            // you can end up with a "successful" response code that is actual an error.
            //
            // Handle those better here since we shouldn't ever end up in this exception state and
            // be returning a 2XX level response.
            if ($this->statusCode < 400) {
                $this->statusCode = Response::HTTP_BAD_GATEWAY;
            }
        }
        if (is_null($response)) {
            $message = 'Could not establish a connection to the machine running this server. Please try again.';
        } else {
            $message = sprintf('There was an error while communicating with the machine running this server. This error has been logged, please try again. (code: %s) (request_id: %s)', $response->getStatusCode(), $this->requestId ?? '<nil>');
        }
        // Attempt to pull the actual error message off the response and return that if it is not
        // a 500 level error.
        if ($this->statusCode < 500 && !is_null($response)) {
            $body = json_decode($response->getBody()->__toString(), true);
            $message = sprintf('An error occurred on the remote host: %s. (request id: %s)', $body['error'] ?? $message, $this->requestId ?? '<nil>');
        }
        $level = $this->statusCode >= 500 && $this->statusCode !== 504
            ? DisplayException::LEVEL_ERROR
            : DisplayException::LEVEL_WARNING;
        parent::__construct($message, $previous, $level);
    }
    /**
     * Return the HTTP status code for this exception.
     */
    public function getStatusCode(): int
    {
        return $this->statusCode;
    }
 }
--- a/app/Exceptions/Http/HttpForbiddenException.php
+++ b/app/Exceptions/Http/HttpForbiddenException.php
@ -4,13 +4,14 @@ namespace App\Exceptions\Http;
 use Illuminate\Http\Response;
 use Symfony\Component\HttpKernel\Exception\HttpException;
 use Throwable;
 class HttpForbiddenException extends HttpException
 {
    /**
     * HttpForbiddenException constructor.
     */
-    public function __construct(?string $message = null, ?\Throwable $previous = null)
+    public function __construct(?string $message = null, ?Throwable $previous = null)
    {
        parent::__construct(Response::HTTP_FORBIDDEN, $message, $previous);
    }
--- a/app/Exceptions/Http/Server/ServerStateConflictException.php
+++ b/app/Exceptions/Http/Server/ServerStateConflictException.php
@ -5,6 +5,7 @@ namespace App\Exceptions\Http\Server;
 use App\Enums\ServerState;
 use App\Models\Server;
 use Symfony\Component\HttpKernel\Exception\ConflictHttpException;
 use Throwable;
 class ServerStateConflictException extends ConflictHttpException
 {
@ -12,7 +13,7 @@ class ServerStateConflictException extends ConflictHttpException
     * Exception thrown when the server is in an unsupported state for API access or
     * certain operations within the codebase.
     */
-    public function __construct(Server $server, ?\Throwable $previous = null)
+    public function __construct(Server $server, ?Throwable $previous = null)
    {
        $message = 'This server is currently in an unsupported state, please try again later.';
        if ($server->isSuspended()) {
--- a/app/Exceptions/ManifestDoesNotExistException.php
+++ b/app/Exceptions/ManifestDoesNotExistException.php
@ -2,13 +2,15 @@
 namespace App\Exceptions;
-use Spatie\Ignition\Contracts\Solution;
+use App\Exceptions\Solutions\ManifestDoesNotExistSolution;
 use Exception;
 use Spatie\Ignition\Contracts\ProvidesSolution;
 use Spatie\Ignition\Contracts\Solution;
-class ManifestDoesNotExistException extends \Exception implements ProvidesSolution
+class ManifestDoesNotExistException extends Exception implements ProvidesSolution
 {
    public function getSolution(): Solution
    {
-        return new Solutions\ManifestDoesNotExistSolution();
+        return new ManifestDoesNotExistSolution();
    }
 }
--- a/app/Exceptions/Model/DataValidationException.php
+++ b/app/Exceptions/Model/DataValidationException.php
@ -2,11 +2,11 @@
 namespace App\Exceptions\Model;
 use Illuminate\Support\MessageBag;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Contracts\Validation\Validator;
 use App\Exceptions\PanelException;
 use Illuminate\Contracts\Support\MessageProvider;
 use Illuminate\Contracts\Validation\Validator;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Support\MessageBag;
 use Symfony\Component\HttpKernel\Exception\HttpExceptionInterface;
 class DataValidationException extends PanelException implements HttpExceptionInterface, MessageProvider
@ -42,6 +42,9 @@ class DataValidationException extends PanelException implements HttpExceptionInt
        return 500;
    }
    /**
     * @return array<string, string>
     */
    public function getHeaders(): array
    {
        return [];
--- a/app/Exceptions/PanelException.php
+++ b/app/Exceptions/PanelException.php
@ -2,4 +2,6 @@
 namespace App\Exceptions;
-class PanelException extends \Exception {}
+use Exception;
 class PanelException extends Exception {}
--- a/app/Exceptions/Repository/FileExistsException.php
+++ b/app/Exceptions/Repository/FileExistsException.php
@ -0,0 +1,7 @@
 <?php
 namespace App\Exceptions\Repository;
 use Exception;
 class FileExistsException extends Exception {}
--- a/app/Exceptions/Repository/FileNotEditableException.php
+++ b/app/Exceptions/Repository/FileNotEditableException.php
@ -0,0 +1,7 @@
 <?php
 namespace App\Exceptions\Repository;
 use Exception;
 class FileNotEditableException extends Exception {}
--- a/app/Exceptions/Service/Deployment/NoViableNodeException.php
+++ b/app/Exceptions/Service/Deployment/NoViableNodeException.php
@ -0,0 +1,7 @@
 <?php
 namespace App\Exceptions\Service\Deployment;
 use App\Exceptions\DisplayException;
 class NoViableNodeException extends DisplayException {}
--- a/app/Exceptions/Service/HasActiveServersException.php
+++ b/app/Exceptions/Service/HasActiveServersException.php
@ -2,8 +2,8 @@
 namespace App\Exceptions\Service;
 use Illuminate\Http\Response;
 use App\Exceptions\DisplayException;
 use Illuminate\Http\Response;
 class HasActiveServersException extends DisplayException
 {
--- a/app/Exceptions/Service/ServiceLimitExceededException.php
+++ b/app/Exceptions/Service/ServiceLimitExceededException.php
@ -3,6 +3,7 @@
 namespace App\Exceptions\Service;
 use App\Exceptions\DisplayException;
 use Throwable;
 class ServiceLimitExceededException extends DisplayException
 {
@ -10,7 +11,7 @@ class ServiceLimitExceededException extends DisplayException
     * Exception thrown when something goes over a defined limit, such as allocated
     * ports, tasks, databases, etc.
     */
-    public function __construct(string $message, ?\Throwable $previous = null)
+    public function __construct(string $message, ?Throwable $previous = null)
    {
        parent::__construct($message, $previous, self::LEVEL_WARNING);
    }
--- a/app/Exceptions/Service/User/TwoFactorAuthenticationTokenInvalid.php
+++ b/app/Exceptions/Service/User/TwoFactorAuthenticationTokenInvalid.php
@ -1,17 +0,0 @@
 <?php
 namespace App\Exceptions\Service\User;
 use App\Exceptions\DisplayException;
 class TwoFactorAuthenticationTokenInvalid extends DisplayException
 {
    public string $title = 'Invalid 2FA Code';
    public string $icon = 'tabler-2fa';
    public function __construct()
    {
        parent::__construct('The provided two-factor authentication token was not valid.');
    }
 }
--- a/app/Extensions/Avatar/AvatarSchemaInterface.php
+++ b/app/Extensions/Avatar/AvatarSchemaInterface.php
@ -0,0 +1,14 @@
 <?php
 namespace App\Extensions\Avatar;
 use App\Models\User;
 interface AvatarSchemaInterface
 {
    public function getId(): string;
    public function getName(): string;
    public function get(User $user): ?string;
 }
--- a/app/Extensions/Avatar/AvatarService.php
+++ b/app/Extensions/Avatar/AvatarService.php
@ -0,0 +1,55 @@
 <?php
 namespace App\Extensions\Avatar;
 use App\Models\User;
 use Illuminate\Support\Facades\Storage;
 class AvatarService
 {
    /** @var AvatarSchemaInterface[] */
    private array $schemas = [];
    public function __construct(
        private readonly bool $allowUploadedAvatars,
        private readonly string $activeSchema,
    ) {}
    public function get(string $id): ?AvatarSchemaInterface
    {
        return array_get($this->schemas, $id);
    }
    public function getActiveSchema(): ?AvatarSchemaInterface
    {
        return $this->get($this->activeSchema);
    }
    public function getAvatarUrl(User $user): ?string
    {
        if ($this->allowUploadedAvatars) {
            $path = "avatars/$user->id.png";
            if (Storage::disk('public')->exists($path)) {
                return Storage::url($path);
            }
        }
        return $this->getActiveSchema()?->get($user);
    }
    public function register(AvatarSchemaInterface $schema): void
    {
        if (array_key_exists($schema->getId(), $this->schemas)) {
            return;
        }
        $this->schemas[$schema->getId()] = $schema;
    }
    /** @return array<string, string> */
    public function getMappings(): array
    {
        return collect($this->schemas)->mapWithKeys(fn ($schema) => [$schema->getId() => $schema->getName()])->all();
    }
 }
--- a/app/Extensions/Avatar/Schemas/GravatarSchema.php
+++ b/app/Extensions/Avatar/Schemas/GravatarSchema.php
@ -0,0 +1,24 @@
 <?php
 namespace App\Extensions\Avatar\Schemas;
 use App\Extensions\Avatar\AvatarSchemaInterface;
 use App\Models\User;
 class GravatarSchema implements AvatarSchemaInterface
 {
    public function getId(): string
    {
        return 'gravatar';
    }
    public function getName(): string
    {
        return 'Gravatar';
    }
    public function get(User $user): string
    {
        return 'https://gravatar.com/avatar/' . md5($user->email);
    }
 }
--- a/app/Extensions/Avatar/Schemas/UiAvatarsSchema.php
+++ b/app/Extensions/Avatar/Schemas/UiAvatarsSchema.php
@ -0,0 +1,25 @@
 <?php
 namespace App\Extensions\Avatar\Schemas;
 use App\Extensions\Avatar\AvatarSchemaInterface;
 use App\Models\User;
 class UiAvatarsSchema implements AvatarSchemaInterface
 {
    public function getId(): string
    {
        return 'uiavatars';
    }
    public function getName(): string
    {
        return 'UI Avatars';
    }
    public function get(User $user): ?string
    {
        // UI Avatars is the default of filament so just return null here
        return null;
    }
 }
--- a/app/Extensions/Backups/BackupManager.php
+++ b/app/Extensions/Backups/BackupManager.php
@ -2,31 +2,33 @@
 namespace App\Extensions\Backups;
-use Closure;
+use App\Extensions\Filesystem\S3Filesystem;
 use Aws\S3\S3Client;
 use Closure;
 use Illuminate\Foundation\Application;
 use Illuminate\Support\Arr;
 use Illuminate\Support\Str;
-use Webmozart\Assert\Assert;
+use InvalidArgumentException;
 use Illuminate\Foundation\Application;
 use League\Flysystem\FilesystemAdapter;
 use App\Extensions\Filesystem\S3Filesystem;
 use League\Flysystem\InMemory\InMemoryFilesystemAdapter;
 use Webmozart\Assert\Assert;
 class BackupManager
 {
    /**
     * The array of resolved backup drivers.
     *
     * @var array<string, FilesystemAdapter>
     */
    protected array $adapters = [];
    /**
     * The registered custom driver creators.
     *
     * @var array<string, callable>
     */
    protected array $customCreators;
    /**
     * BackupManager constructor.
     */
    public function __construct(protected Application $app) {}
    /**
@ -63,7 +65,7 @@ class BackupManager
        $config = $this->getConfig($name);
        if (empty($config['adapter'])) {
-            throw new \InvalidArgumentException("Backup disk [$name] does not have a configured adapter.");
+            throw new InvalidArgumentException("Backup disk [$name] does not have a configured adapter.");
        }
        $adapter = $config['adapter'];
@ -81,11 +83,13 @@ class BackupManager
            return $instance;
        }
-        throw new \InvalidArgumentException("Adapter [$adapter] is not supported.");
+        throw new InvalidArgumentException("Adapter [$adapter] is not supported.");
    }
    /**
     * Calls a custom creator for a given adapter type.
     *
     * @param  array{adapter: string}  $config
     */
    protected function callCustomCreator(array $config): mixed
    {
@ -94,6 +98,8 @@ class BackupManager
    /**
     * Creates a new daemon adapter.
     *
     * @param  array<string, string>  $config
     */
    public function createWingsAdapter(array $config): FilesystemAdapter
    {
@ -102,6 +108,8 @@ class BackupManager
    /**
     * Creates a new S3 adapter.
     *
     * @param  array<string, string>  $config
     */
    public function createS3Adapter(array $config): FilesystemAdapter
    {
@ -118,6 +126,8 @@ class BackupManager
    /**
     * Returns the configuration associated with a given backup type.
     *
     * @return array<mixed>
     */
    protected function getConfig(string $name): array
    {
@ -147,8 +157,9 @@ class BackupManager
     */
    public function forget(array|string $adapter): self
    {
        $adapters = &$this->adapters;
        foreach ((array) $adapter as $adapterName) {
-            unset($this->adapters[$adapterName]);
+            unset($adapters[$adapterName]);
        }
        return $this;
--- a/app/Extensions/Captcha/CaptchaService.php
+++ b/app/Extensions/Captcha/CaptchaService.php
@ -0,0 +1,48 @@
 <?php
 namespace App\Extensions\Captcha;
 use App\Extensions\Captcha\Schemas\CaptchaSchemaInterface;
 use Illuminate\Support\Collection;
 use Illuminate\Support\Str;
 class CaptchaService
 {
    /** @var array<string, CaptchaSchemaInterface> */
    private array $schemas = [];
    /**
     * @return CaptchaSchemaInterface[]
     */
    public function getAll(): array
    {
        return $this->schemas;
    }
    public function get(string $id): ?CaptchaSchemaInterface
    {
        return array_get($this->schemas, $id);
    }
    public function register(CaptchaSchemaInterface $schema): void
    {
        if (array_key_exists($schema->getId(), $this->schemas)) {
            return;
        }
        config()->set('captcha.' . Str::lower($schema->getId()), $schema->getConfig());
        $this->schemas[$schema->getId()] = $schema;
    }
    /** @return Collection<CaptchaSchemaInterface> */
    public function getActiveSchemas(): Collection
    {
        return collect($this->schemas)
            ->filter(fn (CaptchaSchemaInterface $schema) => $schema->isEnabled());
    }
    public function getActiveSchema(): ?CaptchaSchemaInterface
    {
        return $this->getActiveSchemas()->first();
    }
 }
--- a/app/Extensions/Captcha/Schemas/BaseSchema.php
+++ b/app/Extensions/Captcha/Schemas/BaseSchema.php
@ -0,0 +1,59 @@
 <?php
 namespace App\Extensions\Captcha\Schemas;
 use Filament\Forms\Components\TextInput;
 use Filament\Schemas\Components\Component;
 use Illuminate\Support\Str;
 abstract class BaseSchema
 {
    abstract public function getId(): string;
    public function getName(): string
    {
        return Str::upper($this->getId());
    }
    /**
     * @return array<string, string|string[]|bool|null>
     */
    public function getConfig(): array
    {
        $id = Str::upper($this->getId());
        return [
            'site_key' => env("CAPTCHA_{$id}_SITE_KEY"),
            'secret_key' => env("CAPTCHA_{$id}_SECRET_KEY"),
        ];
    }
    /**
     * @return Component[]
     */
    public function getSettingsForm(): array
    {
        $id = Str::upper($this->getId());
        return [
            TextInput::make("CAPTCHA_{$id}_SITE_KEY")
                ->label('Site Key')
                ->placeholder('Site Key')
                ->columnSpan(2)
                ->required()
                ->password()
                ->revealable()
                ->autocomplete(false)
                ->default(env("CAPTCHA_{$id}_SITE_KEY")),
            TextInput::make("CAPTCHA_{$id}_SECRET_KEY")
                ->label('Secret Key')
                ->placeholder('Secret Key')
                ->columnSpan(2)
                ->required()
                ->password()
                ->revealable()
                ->autocomplete(false)
                ->default(env("CAPTCHA_{$id}_SECRET_KEY")),
        ];
    }
 }
--- a/app/Extensions/Captcha/Schemas/CaptchaSchemaInterface.php
+++ b/app/Extensions/Captcha/Schemas/CaptchaSchemaInterface.php
@ -0,0 +1,30 @@
 <?php
 namespace App\Extensions\Captcha\Schemas;
 use Filament\Schemas\Components\Component;
 interface CaptchaSchemaInterface
 {
    public function getId(): string;
    public function getName(): string;
    /**
     * @return array<string, string|string[]|bool|null>
     */
    public function getConfig(): array;
    public function isEnabled(): bool;
    public function getFormComponent(): Component;
    /**
     * @return Component[]
     */
    public function getSettingsForm(): array;
    public function getIcon(): ?string;
    public function validateResponse(?string $captchaResponse = null): void;
 }
--- a/app/Extensions/Captcha/Schemas/Turnstile/Component.php
+++ b/app/Extensions/Captcha/Schemas/Turnstile/Component.php
@ -0,0 +1,23 @@
 <?php
 namespace App\Extensions\Captcha\Schemas\Turnstile;
 use Filament\Forms\Components\Field;
 class Component extends Field
 {
    protected string $viewIdentifier = 'turnstile';
    protected string $view = 'filament.components.turnstile-captcha';
    protected function setUp(): void
    {
        parent::setUp();
        $this->hiddenLabel();
        $this->required();
        $this->rule(new Rule());
    }
 }
--- a/app/Extensions/Captcha/Schemas/Turnstile/Rule.php
+++ b/app/Extensions/Captcha/Schemas/Turnstile/Rule.php
@ -0,0 +1,23 @@
 <?php
 namespace App\Extensions\Captcha\Schemas\Turnstile;
 use App\Extensions\Captcha\CaptchaService;
 use Closure;
 use Exception;
 use Illuminate\Contracts\Validation\ValidationRule;
 use Illuminate\Support\Facades\App;
 class Rule implements ValidationRule
 {
    public function validate(string $attribute, mixed $value, Closure $fail): void
    {
        try {
            App::call(fn (CaptchaService $service) => $service->get('turnstile')->validateResponse($value));
        } catch (Exception $exception) {
            report($exception);
            $fail('Captcha validation failed: ' . $exception->getMessage());
        }
    }
 }
--- a/app/Extensions/Captcha/Schemas/Turnstile/TurnstileSchema.php
+++ b/app/Extensions/Captcha/Schemas/Turnstile/TurnstileSchema.php
@ -0,0 +1,117 @@
 <?php
 namespace App\Extensions\Captcha\Schemas\Turnstile;
 use App\Extensions\Captcha\Schemas\BaseSchema;
 use App\Extensions\Captcha\Schemas\CaptchaSchemaInterface;
 use Exception;
 use Filament\Forms\Components\Toggle;
 use Filament\Infolists\Components\TextEntry;
 use Illuminate\Support\Facades\Http;
 use Illuminate\Support\HtmlString;
 class TurnstileSchema extends BaseSchema implements CaptchaSchemaInterface
 {
    public function getId(): string
    {
        return 'turnstile';
    }
    public function isEnabled(): bool
    {
        return env('CAPTCHA_TURNSTILE_ENABLED', false);
    }
    public function getFormComponent(): Component
    {
        return Component::make('turnstile');
    }
    /**
     * @return array<string, string|string[]|bool|null>
     */
    public function getConfig(): array
    {
        return array_merge(parent::getConfig(), [
            'verify_domain' => env('CAPTCHA_TURNSTILE_VERIFY_DOMAIN'),
        ]);
    }
    /**
     * @return \Filament\Support\Components\Component[]
     *
     * @throws Exception
     */
    public function getSettingsForm(): array
    {
        return array_merge(parent::getSettingsForm(), [
            Toggle::make('CAPTCHA_TURNSTILE_VERIFY_DOMAIN')
                ->label(trans('admin/setting.captcha.verify'))
                ->columnSpan(2)
                ->inline(false)
                ->onIcon('tabler-check')
                ->offIcon('tabler-x')
                ->onColor('success')
                ->offColor('danger')
                ->default(env('CAPTCHA_TURNSTILE_VERIFY_DOMAIN', true)),
            TextEntry::make('info')
                ->label(trans('admin/setting.captcha.info_label'))
                ->columnSpan(2)
                ->state(new HtmlString(trans('admin/setting.captcha.info'))),
        ]);
    }
    public function getIcon(): ?string
    {
        return 'tabler-brand-cloudflare';
    }
    /**
     * @throws Exception
     */
    public function validateResponse(?string $captchaResponse = null): void
    {
        $captchaResponse ??= request()->get('cf-turnstile-response');
        if (!$secret = env('CAPTCHA_TURNSTILE_SECRET_KEY')) {
            throw new Exception('Turnstile secret key is not defined.');
        }
        $response = Http::asJson()
            ->timeout(15)
            ->connectTimeout(5)
            ->throw()
            ->post('https://challenges.cloudflare.com/turnstile/v0/siteverify', [
                'secret' => $secret,
                'response' => $captchaResponse,
            ])
            ->json();
        if (!$response['success']) {
            match ($response['error-codes'][0] ?? null) {
                'missing-input-secret' => throw new Exception('The secret parameter was not passed.'),
                'invalid-input-secret' => throw new Exception('The secret parameter was invalid, did not exist, or is a testing secret key with a non-testing response.'),
                'missing-input-response' => throw new Exception('The response parameter (token) was not passed.'),
                'invalid-input-response' => throw new Exception('The response parameter (token) is invalid or has expired.'),
                'bad-request' => throw new Exception('The request was rejected because it was malformed.'),
                'timeout-or-duplicate' => throw new Exception('The response parameter (token) has already been validated before.'),
                default => throw new Exception('An internal error happened while validating the response.'),
            };
        }
        if (!$this->verifyDomain($response['hostname'] ?? '')) {
            throw new Exception('Domain verification failed.');
        }
    }
    private function verifyDomain(string $hostname): bool
    {
        if (!env('CAPTCHA_TURNSTILE_VERIFY_DOMAIN', true)) {
            return true;
        }
        $requestUrl = parse_url(request()->url());
        return $hostname === array_get($requestUrl, 'host');
    }
 }
--- a/app/Extensions/DynamicDatabaseConnection.php
+++ b/app/Extensions/DynamicDatabaseConnection.php
@ -1,35 +0,0 @@
 <?php
 namespace App\Extensions;
 use App\Models\DatabaseHost;
 class DynamicDatabaseConnection
 {
    public const DB_CHARSET = 'utf8';
    public const DB_COLLATION = 'utf8_unicode_ci';
    public const DB_DRIVER = 'mysql';
    /**
     * Adds a dynamic database connection entry to the runtime config.
     */
    public function set(string $connection, DatabaseHost|int $host, string $database = 'mysql'): void
    {
        if (!$host instanceof DatabaseHost) {
            $host = DatabaseHost::query()->findOrFail($host);
        }
        config()->set('database.connections.' . $connection, [
            'driver' => self::DB_DRIVER,
            'host' => $host->host,
            'port' => $host->port,
            'database' => $database,
            'username' => $host->username,
            'password' => $host->password,
            'charset' => self::DB_CHARSET,
            'collation' => self::DB_COLLATION,
        ]);
    }
 }
--- a/app/Extensions/Features/FeatureSchemaInterface.php
+++ b/app/Extensions/Features/FeatureSchemaInterface.php
@ -0,0 +1,15 @@
 <?php
 namespace App\Extensions\Features;
 use Filament\Actions\Action;
 interface FeatureSchemaInterface
 {
    /** @return string[] */
    public function getListeners(): array;
    public function getId(): string;
    public function getAction(): Action;
 }
--- a/app/Extensions/Features/FeatureService.php
+++ b/app/Extensions/Features/FeatureService.php
@ -0,0 +1,52 @@
 <?php
 namespace App\Extensions\Features;
 class FeatureService
 {
    /** @var FeatureSchemaInterface[] */
    private array $schemas = [];
    /**
     * @return FeatureSchemaInterface[]
     */
    public function getAll(): array
    {
        return $this->schemas;
    }
    public function get(string $id): ?FeatureSchemaInterface
    {
        return array_get($this->schemas, $id);
    }
    /**
     * @param  ?string[]  $features
     * @return FeatureSchemaInterface[]
     */
    public function getActiveSchemas(?array $features = []): array
    {
        return collect($this->schemas)->only($features)->all();
    }
    public function register(FeatureSchemaInterface $schema): void
    {
        if (array_key_exists($schema->getId(), $this->schemas)) {
            return;
        }
        $this->schemas[$schema->getId()] = $schema;
    }
    /**
     * @param  ?string[]  $features
     * @return array<string, array<string>>
     */
    public function getMappings(?array $features = []): array
    {
        return collect($this->getActiveSchemas($features))
            ->mapWithKeys(fn (FeatureSchemaInterface $schema) => [
                $schema->getId() => $schema->getListeners(),
            ])->all();
    }
 }
--- a/Show More
+++ b/Show More