mirror of
https://github.com/pelican-dev/panel.git
synced 2025-11-04 03:36:53 +01:00
102 lines
3.2 KiB
PHP
102 lines
3.2 KiB
PHP
<?php
|
|
/**
|
|
* Pterodactyl - Panel
|
|
* Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.
|
|
*
|
|
* This software is licensed under the terms of the MIT license.
|
|
* https://opensource.org/licenses/MIT
|
|
*/
|
|
|
|
namespace Pterodactyl\Http\Requests\Server;
|
|
|
|
use GuzzleHttp\Exception\RequestException;
|
|
use Illuminate\Contracts\Config\Repository;
|
|
use Pterodactyl\Exceptions\Http\Server\FileSizeTooLargeException;
|
|
use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
|
|
use Pterodactyl\Contracts\Repository\Daemon\FileRepositoryInterface;
|
|
use Pterodactyl\Exceptions\Http\Server\FileTypeNotEditableException;
|
|
use Pterodactyl\Exceptions\Http\Connection\DaemonConnectionException;
|
|
|
|
class UpdateFileContentsFormRequest extends ServerFormRequest
|
|
{
|
|
/**
|
|
* Return the permission string to validate this request against.
|
|
*
|
|
* @return string
|
|
*/
|
|
protected function permission(): string
|
|
{
|
|
return 'edit-files';
|
|
}
|
|
|
|
/**
|
|
* Authorize a request to edit a file.
|
|
*
|
|
* @return bool
|
|
*
|
|
* @throws \Pterodactyl\Exceptions\DisplayException
|
|
* @throws \Pterodactyl\Exceptions\Http\Server\FileSizeTooLargeException
|
|
* @throws \Pterodactyl\Exceptions\Http\Server\FileTypeNotEditableException
|
|
* @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
|
|
*/
|
|
public function authorize()
|
|
{
|
|
if (! parent::authorize()) {
|
|
return false;
|
|
}
|
|
|
|
$server = $this->attributes->get('server');
|
|
$token = $this->attributes->get('server_token');
|
|
|
|
return $this->checkFileCanBeEdited($server, $token);
|
|
}
|
|
|
|
/**
|
|
* @return array
|
|
*/
|
|
public function rules()
|
|
{
|
|
return [];
|
|
}
|
|
|
|
/**
|
|
* Checks if a given file can be edited by a user on this server.
|
|
*
|
|
* @param \Pterodactyl\Models\Server $server
|
|
* @param string $token
|
|
* @return bool
|
|
*
|
|
* @throws \Pterodactyl\Exceptions\DisplayException
|
|
* @throws \Pterodactyl\Exceptions\Http\Server\FileSizeTooLargeException
|
|
* @throws \Pterodactyl\Exceptions\Http\Server\FileTypeNotEditableException
|
|
*/
|
|
private function checkFileCanBeEdited($server, $token)
|
|
{
|
|
$config = app()->make(Repository::class);
|
|
$repository = app()->make(FileRepositoryInterface::class);
|
|
|
|
try {
|
|
$stats = $repository->setServer($server)->setToken($token)->getFileStat($this->route()->parameter('file'));
|
|
} catch (RequestException $exception) {
|
|
switch ($exception->getCode()) {
|
|
case 404:
|
|
throw new NotFoundHttpException;
|
|
default:
|
|
throw new DaemonConnectionException($exception);
|
|
}
|
|
}
|
|
|
|
if ((! $stats->file && ! $stats->symlink) || ! in_array($stats->mime, $config->get('pterodactyl.files.editable'))) {
|
|
throw new FileTypeNotEditableException(trans('server.files.exceptions.invalid_mime'));
|
|
}
|
|
|
|
if ($stats->size > $config->get('pterodactyl.files.max_edit_size')) {
|
|
throw new FileSizeTooLargeException(trans('server.files.exceptions.max_size'));
|
|
}
|
|
|
|
$this->attributes->set('file_stats', $stats);
|
|
|
|
return true;
|
|
}
|
|
}
|