mirror of
https://github.com/pelican-dev/panel.git
synced 2025-05-19 22:14:45 +02:00
fea1c51337
* Add new panel * Add some basic resource pages * Wip * Wip terminal * Wip * Add new panel * Add some basic resource pages * Wip * [Sub-Users] Add Invite TODO: The logic with permissions * [Sub-Users] Fix Creation * [Cron] Add basics * Add basic auth and messages * Add basic buttons * WIP on issue/353 * WIP on issue/353 * Add Database page * Update Database Page * Start of Backup Page * Composer Update * Changes * Send input * Remove this includes * Better offline handling * Consolidate top nav config * Update Backups Page * Update Backups * Change name * Add Assign All, Layout Fixes. * conflict * update schedule pages * fix phpstan * update pint.json * add cron presets to schedule * fix tests * fix task creation * schedules: disable task creation if limit is reached & disable backup action if backup limit is 0 * update activity pages * update resources * Update Edit User TODO: actually save permissions when they're changed. TODO: Figure out why Control does not update it's state... but the rest do... * .... Sure it works. TODO: Update permissions when you save editing a sub user. * user: update canAccessPanel & canAccessTenant * add helper to convert bytes into readable format * very basic file explorer * files: fix some stuff & remove dummy data * files: better error handling * files: basic file editor * files: add some actions * File manager updates * files: fix paths * Revery Composer Upgrade, Fixes SQLite * fix: Pint (#517) feat: MenuItems to and from admin * Update File Editing Updated File Editing to its own page, Added Permission checks for file manager. Co-authored-by: Boy132 <Boy132@users.noreply.github.com> * add enum for editor langs * files: add upload & pull actions * fix build * files: handle images * Update to Filament v3.2.98 * files: add remaining actions * use `authorize` instead of `hidden` * fix canAccessTenant * update date columns * files: testing & fixes * Fix File Names Co-authored-by: lancepioch <git@lance.sh> * Combine Pull/Upload * Fix BulkDelete * Uncontained tabs * Hide Lang Selection, Move Actions * Update Monaco, more custom * Add livewire config livewire limits uploads to 12MB... who knows why... Fixed uploading a single files failing * files: fix record url * basic setup for settings & startup page * make abstract class for simple app pages * Basic Startup Page * Update nav sort * small cleanup * startup: fix shouldHideComponent & getSelectOptionsFromRules * startup: fix non editable fields & set default value * startup: add todo for save button * Save Variables after update & off click Variables update when the user clicks off the input. * Notifications are cool * Add rule validation * Sort variables by sortid * pint * Settings Page + Startup Changes * settings: cleanup * refactor: use server model for ServerFormPage (formerly known as SimplePage) * Use Repeater for variables * Add Network, Remove breadcrumbs * Add paginated to file explorer * Fix updating variables * Add link to go to new client area * fix after merge * Add graphs to console page Graphs still need to get the data from the web socket. * fix pint & phpstan * fix authorizeAccess for EditFiles and Startup page * Fix rules on startup page * Update console size * Fix node name * add "global search" to files list requires https://github.com/pelican-dev/wings/pull/44 * remove debug dummy data * update view action on ListServers * enable SPA mode for app panel * remove colors from app panel they are defined globally in AppServiceProvider * update global search ui a bit (to be replaced with a custom page that is similar to the list files table) * add own page for global search untested - and route needs cleanup (if possible) * fix File getRows * remove "path" from SearchFiles (for now) * fix caching for searched files * add title and breadcrumbs to global search page * make cpu & memory charts on console page working * fix phpstan * add missing import * cleanup console views & widgets * add overview stats to console * don't be so lazy, console! * make history working * decode data to get array * add missing On * fix json_decode * change polling to 1 sec * hide "0" cpu/ memory * add data to network chart * Remove data labels * fix data on network chart * fix data on network chart (2nd try) * WIP Network Stats * Remove test * Change MaxWidth * run pint * fix phpstan * Fix storeStats cast * make $data a string this time for real * update visible check for "admin" menu item * remove account widget * rebrand "Dashboard" to "Server List" WIP - doesn't look good but is somewhat working * fix canAccessPanel * separate server list into own panel * change path to avoid conflicts with old client area (and remove sidebar width) * display correct icon and color on server list entries * show total memory if server is offline * replace custom server list page with ListRecords page * fix tests * fix namespace * remove "open" button and make whole column clickable * Update EditProfile * run pint * fix access to server list * add new login page to panels * fix next_run_at for new schedules * use new DateTimeColumn * add own column for file bytes * return to server list when clicking title * fix console loading * handle server with "conflict state" * add banner if server is in "conflict state" * fix phpstan * update docker image select * fix permission checks on Settings & Startup pages * fix query for activity log page * fix activity log not being logged * adjust ListActivities * fix phpstan * fix pint * fix profile menu item link on server panel * add ip tooltip to activity logs (and role permission) * change backup icon * update navigation sort * general code cleanup * more cleanup * Disable Restart/Stop if server is offline * Change rename notification * Remove negation on abort_unless * Add notification on save * Single disabled closure & comment unused import * Add required to Server Name & Nullable to description * mutateFormDataBeforeSave doesn't work since we use forceFill * Fix web socket connection not existing. * Fix some subuser permissions * add permission checks to resources * do not allow self-deletion * Update editing file permissions * Fix of the previous fix * add service for subuser updating * Only allow save if they have file_update * Remove unused import * Update backup delete button * Add Delete, remove bulks * Update Database page * Use Allocation Permissions * add canAccess check to startup * Add Permission checks to Settings page * add service for subuser deletion * Remove Kill permission * Updates * fix move files * add redirects * fix phpstan * activity: remove properties from tans for now * If alias, use that, else ip --------- Co-authored-by: notCharles <charles@pelican.dev> Co-authored-by: Boy132 <mail@boy132.de> Co-authored-by: Senna <62171904+Poseidon281@users.noreply.github.com> Co-authored-by: Boy132 <Boy132@users.noreply.github.com> Co-authored-by: RMartinOscar <40749467+RMartinOscar@users.noreply.github.com>
470 lines
29 KiB
PHP
470 lines
29 KiB
PHP
<?php
|
|
|
|
namespace App\Filament\Server\Resources;
|
|
|
|
use App\Filament\Server\Resources\UserResource\Pages;
|
|
use App\Models\Permission;
|
|
use App\Models\Server;
|
|
use App\Models\Subuser;
|
|
use App\Models\User;
|
|
use App\Services\Subusers\SubuserDeletionService;
|
|
use App\Services\Subusers\SubuserUpdateService;
|
|
use Filament\Facades\Filament;
|
|
use Filament\Forms\Components\Actions;
|
|
use Filament\Forms\Components\Actions\Action;
|
|
use Filament\Forms\Components\CheckboxList;
|
|
use Filament\Forms\Components\Grid;
|
|
use Filament\Forms\Components\Section;
|
|
use Filament\Forms\Components\Tabs;
|
|
use Filament\Forms\Components\Tabs\Tab;
|
|
use Filament\Forms\Components\TextInput;
|
|
use Filament\Forms\Set;
|
|
use Filament\Notifications\Notification;
|
|
use Filament\Tables\Actions\DeleteAction;
|
|
use Filament\Resources\Resource;
|
|
use Filament\Tables\Actions\EditAction;
|
|
use Filament\Tables\Columns\ImageColumn;
|
|
use Filament\Tables\Columns\TextColumn;
|
|
use Filament\Tables\Table;
|
|
use Illuminate\Database\Eloquent\Model;
|
|
|
|
class UserResource extends Resource
|
|
{
|
|
protected static ?string $model = User::class;
|
|
|
|
protected static ?int $navigationSort = 5;
|
|
|
|
protected static ?string $navigationIcon = 'tabler-users';
|
|
|
|
protected static ?string $tenantOwnershipRelationshipName = 'subServers';
|
|
|
|
// TODO: find better way handle server conflict state
|
|
public static function canAccess(): bool
|
|
{
|
|
/** @var Server $server */
|
|
$server = Filament::getTenant();
|
|
|
|
if ($server->isInConflictState()) {
|
|
return false;
|
|
}
|
|
|
|
return parent::canAccess();
|
|
}
|
|
|
|
public static function canViewAny(): bool
|
|
{
|
|
return auth()->user()->can(Permission::ACTION_USER_READ, Filament::getTenant());
|
|
}
|
|
|
|
public static function canCreate(): bool
|
|
{
|
|
return auth()->user()->can(Permission::ACTION_USER_CREATE, Filament::getTenant());
|
|
}
|
|
|
|
public static function canEdit(Model $record): bool
|
|
{
|
|
return auth()->user()->can(Permission::ACTION_USER_UPDATE, Filament::getTenant());
|
|
}
|
|
|
|
public static function canDelete(Model $record): bool
|
|
{
|
|
return auth()->user()->can(Permission::ACTION_USER_DELETE, Filament::getTenant());
|
|
}
|
|
|
|
public static function table(Table $table): Table
|
|
{
|
|
/** @var Server $server */
|
|
$server = Filament::getTenant();
|
|
|
|
return $table
|
|
->paginated(false)
|
|
->searchable(false)
|
|
->columns([
|
|
ImageColumn::make('picture')
|
|
->visibleFrom('lg')
|
|
->label('')
|
|
->extraImgAttributes(['class' => 'rounded-full'])
|
|
->defaultImageUrl(fn (User $user) => 'https://gravatar.com/avatar/' . md5(strtolower($user->email))),
|
|
TextColumn::make('username')
|
|
->searchable(),
|
|
TextColumn::make('email')
|
|
->searchable(),
|
|
TextColumn::make('permissions')
|
|
->state(fn (User $user) => count(Subuser::query()->where('user_id', $user->id)->where('server_id', $server->id)->first()->permissions)),
|
|
])
|
|
->actions([
|
|
DeleteAction::make()
|
|
->label('Remove User')
|
|
->hidden(fn (User $user) => auth()->user()->id === $user->id)
|
|
->action(function (User $user, SubuserDeletionService $subuserDeletionService) use ($server) {
|
|
$subuser = Subuser::query()->where('user_id', $user->id)->where('server_id', $server->id)->first();
|
|
$subuserDeletionService->handle($subuser, $server);
|
|
|
|
}),
|
|
EditAction::make()
|
|
->label('Edit User')
|
|
|
|
->authorize(fn () => auth()->user()->can(Permission::ACTION_USER_UPDATE, $server))
|
|
->modalHeading(fn (User $user) => 'Editing ' . $user->email)
|
|
->action(function (array $data, SubuserUpdateService $subuserUpdateService, User $user) use ($server) {
|
|
$subuser = Subuser::query()->where('user_id', $user->id)->where('server_id', $server->id)->first();
|
|
|
|
if (in_array('console', $data['control'])) {
|
|
$data['websocket'][0] = 'connect';
|
|
}
|
|
|
|
$permissions = collect($data)->forget('email')->map(fn ($permissions, $key) => collect($permissions)->map(fn ($permission) => "$key.$permission"))->flatten()->all();
|
|
$subuserUpdateService->handle($subuser, $server, $permissions);
|
|
|
|
Notification::make()
|
|
->title('User Updated!')
|
|
->success()
|
|
->send();
|
|
|
|
return redirect(self::getUrl(tenant: $server));
|
|
})
|
|
->form([
|
|
Grid::make()
|
|
->columnSpanFull()
|
|
->columns([
|
|
'default' => 1,
|
|
'sm' => 1,
|
|
'md' => 5,
|
|
'lg' => 6,
|
|
])
|
|
->schema([
|
|
TextInput::make('email')
|
|
->inlineLabel()
|
|
->disabled()
|
|
->columnSpan([
|
|
'default' => 1,
|
|
'sm' => 1,
|
|
'md' => 4,
|
|
'lg' => 5,
|
|
]),
|
|
Actions::make([
|
|
Action::make('assignAll')
|
|
->label('Assign All')
|
|
->action(function (Set $set) {
|
|
$permissions = [
|
|
'control' => [
|
|
'console',
|
|
'start',
|
|
'stop',
|
|
'restart',
|
|
],
|
|
'user' => [
|
|
'read',
|
|
'create',
|
|
'update',
|
|
'delete',
|
|
],
|
|
'file' => [
|
|
'read',
|
|
'read-content',
|
|
'create',
|
|
'update',
|
|
'delete',
|
|
'archive',
|
|
'sftp',
|
|
],
|
|
'backup' => [
|
|
'read',
|
|
'create',
|
|
'delete',
|
|
'download',
|
|
'restore',
|
|
],
|
|
'allocation' => [
|
|
'read',
|
|
'create',
|
|
'update',
|
|
'delete',
|
|
],
|
|
'startup' => [
|
|
'read',
|
|
'update',
|
|
'docker-image',
|
|
],
|
|
'database' => [
|
|
'read',
|
|
'create',
|
|
'update',
|
|
'delete',
|
|
'view_password',
|
|
],
|
|
'schedule' => [
|
|
'read',
|
|
'create',
|
|
'update',
|
|
'delete',
|
|
],
|
|
'settings' => [
|
|
'rename',
|
|
'reinstall',
|
|
'activity',
|
|
],
|
|
];
|
|
|
|
foreach ($permissions as $key => $value) {
|
|
$allValues = array_unique($value);
|
|
$set($key, $allValues);
|
|
}
|
|
}),
|
|
])
|
|
->columnSpan([
|
|
'default' => 1,
|
|
'sm' => 1,
|
|
'md' => 1,
|
|
'lg' => 1,
|
|
]),
|
|
Tabs::make()
|
|
->columnSpanFull()
|
|
->schema([
|
|
Tab::make('Console')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.control_desc'))
|
|
->icon('tabler-terminal-2')
|
|
->schema([
|
|
CheckboxList::make('control')
|
|
->formatStateUsing(function (User $user, Set $set) use ($server) {
|
|
$permissionsArray = Subuser::query()
|
|
->where('user_id', $user->id)
|
|
->where('server_id', $server->id)
|
|
->first()
|
|
->permissions;
|
|
|
|
$transformedPermissions = [];
|
|
|
|
foreach ($permissionsArray as $permission) {
|
|
[$group, $action] = explode('.', $permission, 2);
|
|
$transformedPermissions[$group][] = $action;
|
|
}
|
|
|
|
foreach ($transformedPermissions as $key => $value) {
|
|
$set($key, $value);
|
|
}
|
|
|
|
return $transformedPermissions['control'] ?? [];
|
|
})
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'console' => 'Console',
|
|
'start' => 'Start',
|
|
'stop' => 'Stop',
|
|
'restart' => 'Restart',
|
|
])
|
|
->descriptions([
|
|
'console' => trans('server/users.permissions.control_console'),
|
|
'start' => trans('server/users.permissions.control_start'),
|
|
'stop' => trans('server/users.permissions.control_stop'),
|
|
'restart' => trans('server/users.permissions.control_restart'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('User')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.user_desc'))
|
|
->icon('tabler-users')
|
|
->schema([
|
|
CheckboxList::make('user')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'create' => 'Create',
|
|
'update' => 'Update',
|
|
'delete' => 'Delete',
|
|
])
|
|
->descriptions([
|
|
'create' => trans('server/users.permissions.user_create'),
|
|
'read' => trans('server/users.permissions.user_read'),
|
|
'update' => trans('server/users.permissions.user_update'),
|
|
'delete' => trans('server/users.permissions.user_delete'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('File')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.file_desc'))
|
|
->icon('tabler-folders')
|
|
->schema([
|
|
CheckboxList::make('file')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'read-content' => 'Read Content',
|
|
'create' => 'Create',
|
|
'update' => 'Update',
|
|
'delete' => 'Delete',
|
|
'archive' => 'Archive',
|
|
'sftp' => 'SFTP',
|
|
])
|
|
->descriptions([
|
|
'create' => trans('server/users.permissions.file_create'),
|
|
'read' => trans('server/users.permissions.file_read'),
|
|
'read-content' => trans('server/users.permissions.file_read_content'),
|
|
'update' => trans('server/users.permissions.file_update'),
|
|
'delete' => trans('server/users.permissions.file_delete'),
|
|
'archive' => trans('server/users.permissions.file_archive'),
|
|
'sftp' => trans('server/users.permissions.file_sftp'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Backup')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.backup_desc'))
|
|
->icon('tabler-download')
|
|
->schema([
|
|
CheckboxList::make('backup')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'create' => 'Create',
|
|
'delete' => 'Delete',
|
|
'download' => 'Download',
|
|
'restore' => 'Restore',
|
|
])
|
|
->descriptions([
|
|
'create' => trans('server/users.permissions.backup_create'),
|
|
'read' => trans('server/users.permissions.backup_read'),
|
|
'delete' => trans('server/users.permissions.backup_delete'),
|
|
'download' => trans('server/users.permissions.backup_download'),
|
|
'restore' => trans('server/users.permissions.backup_restore'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Allocation')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.allocation_desc'))
|
|
->icon('tabler-network')
|
|
->schema([
|
|
CheckboxList::make('allocation')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'create' => 'Create',
|
|
'update' => 'Update',
|
|
'delete' => 'Delete',
|
|
])
|
|
->descriptions([
|
|
'read' => trans('server/users.permissions.allocation_read'),
|
|
'create' => trans('server/users.permissions.allocation_create'),
|
|
'update' => trans('server/users.permissions.allocation_update'),
|
|
'delete' => trans('server/users.permissions.allocation_delete'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Startup')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.startup_desc'))
|
|
->icon('tabler-question-mark')
|
|
->schema([
|
|
CheckboxList::make('startup')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'update' => 'Update',
|
|
'docker-image' => 'Docker Image',
|
|
])
|
|
->descriptions([
|
|
'read' => trans('server/users.permissions.startup_read'),
|
|
'update' => trans('server/users.permissions.startup_update'),
|
|
'docker-image' => trans('server/users.permissions.startup_docker_image'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Database')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.database_desc'))
|
|
->icon('tabler-database')
|
|
->schema([
|
|
CheckboxList::make('database')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'create' => 'Create',
|
|
'update' => 'Update',
|
|
'delete' => 'Delete',
|
|
'view_password' => 'View Password',
|
|
])
|
|
->descriptions([
|
|
'read' => trans('server/users.permissions.database_read'),
|
|
'create' => trans('server/users.permissions.database_create'),
|
|
'update' => trans('server/users.permissions.database_update'),
|
|
'delete' => trans('server/users.permissions.database_delete'),
|
|
'view_password' => trans('server/users.permissions.database_view_password'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Schedule')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.schedule_desc'))
|
|
->icon('tabler-clock')
|
|
->schema([
|
|
CheckboxList::make('schedule')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'read' => 'Read',
|
|
'create' => 'Create',
|
|
'update' => 'Update',
|
|
'delete' => 'Delete',
|
|
])
|
|
->descriptions([
|
|
'read' => trans('server/users.permissions.schedule_read'),
|
|
'create' => trans('server/users.permissions.schedule_create'),
|
|
'update' => trans('server/users.permissions.schedule_update'),
|
|
'delete' => trans('server/users.permissions.schedule_delete'),
|
|
]),
|
|
]),
|
|
]),
|
|
Tab::make('Settings')
|
|
->schema([
|
|
Section::make()
|
|
->description(trans('server/users.permissions.settings_desc'))
|
|
->icon('tabler-settings')
|
|
->schema([
|
|
CheckboxList::make('settings')
|
|
->bulkToggleable()
|
|
->label('')
|
|
->options([
|
|
'rename' => 'Rename',
|
|
'reinstall' => 'Reinstall',
|
|
'activity' => 'Activity',
|
|
])
|
|
->descriptions([
|
|
'rename' => trans('server/users.permissions.setting_rename'),
|
|
'reinstall' => trans('server/users.permissions.setting_reinstall'),
|
|
'activity' => trans('server/users.permissions.setting_activity'),
|
|
]),
|
|
]),
|
|
]),
|
|
]),
|
|
]),
|
|
]),
|
|
]);
|
|
}
|
|
|
|
public static function getPages(): array
|
|
{
|
|
return [
|
|
'index' => Pages\ListUsers::route('/'),
|
|
];
|
|
}
|
|
}
|