| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  | <?php | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * UserRepository.php | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * Copyright (c) 2017 thegrumpydictator@gmail.com | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |  * | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * This file is part of Firefly III. | 
					
						
							| 
									
										
										
										
											2016-10-05 06:52:15 +02:00
										 |  |  |  * | 
					
						
							| 
									
										
										
										
											2017-10-21 08:40:00 +02:00
										 |  |  |  * Firefly III is free software: you can redistribute it and/or modify | 
					
						
							|  |  |  |  * it under the terms of the GNU General Public License as published by | 
					
						
							|  |  |  |  * the Free Software Foundation, either version 3 of the License, or | 
					
						
							|  |  |  |  * (at your option) any later version. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * Firefly III is distributed in the hope that it will be useful, | 
					
						
							|  |  |  |  * but WITHOUT ANY WARRANTY; without even the implied warranty of | 
					
						
							|  |  |  |  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the | 
					
						
							|  |  |  |  * GNU General Public License for more details. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * You should have received a copy of the GNU General Public License | 
					
						
							|  |  |  |  * along with Firefly III.  If not, see <http://www.gnu.org/licenses/>. | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |  */ | 
					
						
							| 
									
										
										
										
											2017-03-24 15:01:53 +01:00
										 |  |  | declare(strict_types=1); | 
					
						
							| 
									
										
										
										
											2016-05-20 12:41:23 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  | namespace FireflyIII\Repositories\User; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  | use FireflyIII\Models\BudgetLimit; | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  | use FireflyIII\Models\Role; | 
					
						
							|  |  |  | use FireflyIII\User; | 
					
						
							| 
									
										
										
										
											2016-04-03 07:07:17 +02:00
										 |  |  | use Illuminate\Support\Collection; | 
					
						
							| 
									
										
										
										
											2016-12-12 15:24:47 +01:00
										 |  |  | use Log; | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  | use Preferences; | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  | /** | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |  * Class UserRepository. | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |  */ | 
					
						
							|  |  |  | class UserRepository implements UserRepositoryInterface | 
					
						
							|  |  |  | { | 
					
						
							| 
									
										
										
										
											2016-04-03 07:07:17 +02:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @return Collection | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function all(): Collection | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return User::orderBy('id', 'DESC')->get(['users.*']); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $role | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function attachRole(User $user, string $role): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $admin = Role::where('name', 'owner')->first(); | 
					
						
							|  |  |  |         $user->attachRole($admin); | 
					
						
							| 
									
										
										
										
											2016-03-28 19:50:24 +02:00
										 |  |  |         $user->save(); | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-09-26 08:52:16 +02:00
										 |  |  |     /** | 
					
						
							| 
									
										
										
										
											2017-09-26 09:15:21 +02:00
										 |  |  |      * This updates the users email address and records some things so it can be confirmed or undone later. | 
					
						
							|  |  |  |      * The user is blocked until the change is confirmed. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2017-09-26 08:52:16 +02:00
										 |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $newEmail | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2017-09-26 09:15:21 +02:00
										 |  |  |      * @see updateEmail | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2017-09-26 08:52:16 +02:00
										 |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function changeEmail(User $user, string $newEmail): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $oldEmail = $user->email; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // save old email as pref
 | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'previous_email_latest', $oldEmail); | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'previous_email_' . date('Y-m-d-H-i-s'), $oldEmail); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // set undo and confirm token:
 | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'email_change_undo_token', strval(bin2hex(random_bytes(16)))); | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'email_change_confirm_token', strval(bin2hex(random_bytes(16)))); | 
					
						
							|  |  |  |         // update user
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $user->email        = $newEmail; | 
					
						
							|  |  |  |         $user->blocked      = 1; | 
					
						
							|  |  |  |         $user->blocked_code = 'email_changed'; | 
					
						
							|  |  |  |         $user->save(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-12-30 13:47:23 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $password | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function changePassword(User $user, string $password): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $user->password = bcrypt($password); | 
					
						
							|  |  |  |         $user->save(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-03-24 15:01:53 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param bool   $isBlocked | 
					
						
							|  |  |  |      * @param string $code | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function changeStatus(User $user, bool $isBlocked, string $code): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         // change blocked status and code:
 | 
					
						
							|  |  |  |         $user->blocked      = $isBlocked; | 
					
						
							|  |  |  |         $user->blocked_code = $code; | 
					
						
							|  |  |  |         $user->save(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @return int | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function count(): int | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-04-26 08:09:10 +02:00
										 |  |  |         return $this->all()->count(); | 
					
						
							| 
									
										
										
										
											2016-03-12 14:18:28 +01:00
										 |  |  |     } | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-20 19:10:43 +02:00
										 |  |  |     /** | 
					
						
							| 
									
										
										
										
											2016-12-12 15:24:47 +01:00
										 |  |  |      * @param User $user | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function destroy(User $user): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         Log::debug(sprintf('Calling delete() on user %d', $user->id)); | 
					
						
							|  |  |  |         $user->delete(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							| 
									
										
										
										
											2016-10-20 19:10:43 +02:00
										 |  |  |      * @param int $userId | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return User | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function find(int $userId): User | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $user = User::find($userId); | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |         if (null !== $user) { | 
					
						
							| 
									
										
										
										
											2016-10-20 19:10:43 +02:00
										 |  |  |             return $user; | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return new User; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2017-09-26 08:52:16 +02:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @param string $email | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return User|null | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function findByEmail(string $email): ?User | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return User::where('email', $email)->first(); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * Return basic user information. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param User $user | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return array | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function getUserData(User $user): array | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $return = []; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // two factor:
 | 
					
						
							|  |  |  |         $is2faEnabled      = Preferences::getForUser($user, 'twoFactorAuthEnabled', false)->data; | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |         $has2faSecret      = null !== Preferences::getForUser($user, 'twoFactorAuthSecret'); | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  |         $return['has_2fa'] = false; | 
					
						
							|  |  |  |         if ($is2faEnabled && $has2faSecret) { | 
					
						
							|  |  |  |             $return['has_2fa'] = true; | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $return['is_admin']            = $user->hasRole('owner'); | 
					
						
							| 
									
										
										
										
											2017-11-15 12:25:49 +01:00
										 |  |  |         $return['blocked']             = 1 === intval($user->blocked); | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  |         $return['blocked_code']        = $user->blocked_code; | 
					
						
							|  |  |  |         $return['accounts']            = $user->accounts()->count(); | 
					
						
							|  |  |  |         $return['journals']            = $user->transactionJournals()->count(); | 
					
						
							|  |  |  |         $return['transactions']        = $user->transactions()->count(); | 
					
						
							|  |  |  |         $return['attachments']         = $user->attachments()->count(); | 
					
						
							|  |  |  |         $return['attachments_size']    = $user->attachments()->sum('size'); | 
					
						
							|  |  |  |         $return['bills']               = $user->bills()->count(); | 
					
						
							|  |  |  |         $return['categories']          = $user->categories()->count(); | 
					
						
							|  |  |  |         $return['budgets']             = $user->budgets()->count(); | 
					
						
							| 
									
										
										
										
											2016-11-28 20:38:03 +01:00
										 |  |  |         $return['budgets_with_limits'] = BudgetLimit::distinct() | 
					
						
							| 
									
										
										
										
											2016-12-04 18:02:19 +01:00
										 |  |  |                                                     ->leftJoin('budgets', 'budgets.id', '=', 'budget_limits.budget_id') | 
					
						
							|  |  |  |                                                     ->where('amount', '>', 0) | 
					
						
							|  |  |  |                                                     ->whereNull('budgets.deleted_at') | 
					
						
							|  |  |  |                                                     ->where('budgets.user_id', $user->id)->get(['budget_limits.budget_id'])->count(); | 
					
						
							| 
									
										
										
										
											2016-10-15 07:11:53 +02:00
										 |  |  |         $return['export_jobs']         = $user->exportJobs()->count(); | 
					
						
							|  |  |  |         $return['export_jobs_success'] = $user->exportJobs()->where('status', 'export_downloaded')->count(); | 
					
						
							|  |  |  |         $return['import_jobs']         = $user->exportJobs()->count(); | 
					
						
							|  |  |  |         $return['import_jobs_success'] = $user->exportJobs()->where('status', 'import_complete')->count(); | 
					
						
							|  |  |  |         $return['rule_groups']         = $user->ruleGroups()->count(); | 
					
						
							|  |  |  |         $return['rules']               = $user->rules()->count(); | 
					
						
							|  |  |  |         $return['tags']                = $user->tags()->count(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return $return; | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2017-03-19 17:54:21 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $role | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function hasRole(User $user, string $role): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return $user->hasRole($role); | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2017-09-26 09:15:21 +02:00
										 |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * This updates the users email address. Same as changeEmail just without most logging. This makes sure that the undo/confirm routine can't catch this one. | 
					
						
							|  |  |  |      * The user is NOT blocked. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $newEmail | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @see changeEmail | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function updateEmail(User $user, string $newEmail): bool | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $oldEmail = $user->email; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // save old email as pref
 | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'admin_previous_email_latest', $oldEmail); | 
					
						
							|  |  |  |         Preferences::setForUser($user, 'admin_previous_email_' . date('Y-m-d-H-i-s'), $oldEmail); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $user->email = $newEmail; | 
					
						
							|  |  |  |         $user->save(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return true; | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2016-03-14 20:38:23 +01:00
										 |  |  | } |