mirror of
				https://github.com/pelican-dev/panel.git
				synced 2025-10-25 20:26:52 +02:00 
			
		
		
		
	 ad1a9cd33f
			
		
	
	
		ad1a9cd33f
		
			
		
	
	
	
	
		
			
			* Fix these * Update phpstan * Transform these into their identifiers instead * Fix custom rule * License is wrong * Update these * Pint fixes * Fix this * Consolidate these * Never supported PHP 7 * Better evaluation * Fixes * Don’t need ignore * Replace trait with service * Subusers are simply the many to many relationship between Servers and Users * Adjust to remove ignores * Use new query builder instead! * wip * Update composer * Quick fixes * Use realtime facade * Small fixes * Convert to static to avoid new * Update to statics * Don’t modify protected properties directly * Run pint * Change to correct method * Give up and use the facade * Make sure this route is available * Filament hasn’t been loaded yet * This can be readonly * Typehint * These are no longer used * Quick fixes * Need doc block help * Always true * We use caddy with docker * Pint * Fix phpstan issues * Remove unused import --------- Co-authored-by: MartinOscar <40749467+RMartinOscar@users.noreply.github.com>
		
			
				
	
	
		
			112 lines
		
	
	
		
			3.1 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			112 lines
		
	
	
		
			3.1 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| 
 | |
| namespace App\Transformers\Api\Application;
 | |
| 
 | |
| use Carbon\CarbonImmutable;
 | |
| use Carbon\CarbonInterface;
 | |
| use Illuminate\Http\Request;
 | |
| use Webmozart\Assert\Assert;
 | |
| use App\Models\ApiKey;
 | |
| use Illuminate\Container\Container;
 | |
| use Illuminate\Database\Eloquent\Model;
 | |
| use League\Fractal\TransformerAbstract;
 | |
| use App\Services\Acl\Api\AdminAcl;
 | |
| 
 | |
| /**
 | |
|  * @method array transform(Model $model)
 | |
|  */
 | |
| abstract class BaseTransformer extends TransformerAbstract
 | |
| {
 | |
|     public const RESPONSE_TIMEZONE = 'UTC';
 | |
| 
 | |
|     protected Request $request;
 | |
| 
 | |
|     /**
 | |
|      * BaseTransformer constructor.
 | |
|      */
 | |
|     final public function __construct()
 | |
|     {
 | |
|         // Transformers allow for dependency injection on the handle method.
 | |
|         if (method_exists($this, 'handle')) {
 | |
|             Container::getInstance()->call([$this, 'handle']);
 | |
|         }
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Return the resource name for the JSONAPI output.
 | |
|      */
 | |
|     abstract public function getResourceName(): string;
 | |
| 
 | |
|     /**
 | |
|      * Sets the request on the instance.
 | |
|      */
 | |
|     public function setRequest(Request $request): static
 | |
|     {
 | |
|         $this->request = $request;
 | |
| 
 | |
|         return $this;
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Returns a new transformer instance with the request set on the instance.
 | |
|      */
 | |
|     public static function fromRequest(Request $request): static
 | |
|     {
 | |
|         return (new static())->setRequest($request);
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Determine if the API key loaded onto the transformer has permission
 | |
|      * to access a different resource. This is used when including other
 | |
|      * models on a transformation request.
 | |
|      *
 | |
|      * @deprecated — prefer $user->can/cannot methods
 | |
|      */
 | |
|     protected function authorize(string $resource): bool
 | |
|     {
 | |
|         $allowed = [ApiKey::TYPE_ACCOUNT, ApiKey::TYPE_APPLICATION];
 | |
| 
 | |
|         $token = $this->request->user()->currentAccessToken();
 | |
|         if (!$token instanceof ApiKey || !in_array($token->key_type, $allowed)) {
 | |
|             return false;
 | |
|         }
 | |
| 
 | |
|         // If this is not a deprecated application token type we can only check that
 | |
|         // the user is a root admin at the moment. In a future release we'll be rolling
 | |
|         // out more specific permissions for keys.
 | |
|         if ($token->key_type === ApiKey::TYPE_ACCOUNT) {
 | |
|             return $this->request->user()->isRootAdmin();
 | |
|         }
 | |
| 
 | |
|         return AdminAcl::check($token, $resource);
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Create a new instance of the transformer and pass along the currently
 | |
|      * set API key.
 | |
|      *
 | |
|      * @template T of \App\Transformers\Api\Application\BaseTransformer
 | |
|      *
 | |
|      * @param  class-string<T>  $abstract
 | |
|      * @return T
 | |
|      *
 | |
|      * @noinspection PhpDocSignatureInspection
 | |
|      */
 | |
|     protected function makeTransformer(string $abstract)
 | |
|     {
 | |
|         Assert::subclassOf($abstract, self::class);
 | |
| 
 | |
|         return $abstract::fromRequest($this->request);
 | |
|     }
 | |
| 
 | |
|     /**
 | |
|      * Return an ISO-8601 formatted timestamp to use in the API response.
 | |
|      */
 | |
|     protected function formatTimestamp(string $timestamp): string
 | |
|     {
 | |
|         return CarbonImmutable::createFromFormat(CarbonInterface::DEFAULT_TO_STRING_FORMAT, $timestamp)
 | |
|             ->setTimezone(self::RESPONSE_TIMEZONE)
 | |
|             ->toAtomString();
 | |
|     }
 | |
| }
 |