Pony.fm/app/Http/Controllers/Api/Web/AccountController.php

<?php

/**
 * Pony.fm - A community for pony fan music.
 * Copyright (C) 2015 Peter Deltchev
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

namespace Poniverse\Ponyfm\Http\Controllers\Api\Web;

use Carbon\Carbon;
use Poniverse\Ponyfm\Http\Controllers\ApiControllerBase;
use Poniverse\Ponyfm\Commands\SaveAccountSettingsCommand;
use Poniverse\Ponyfm\Models\User;
use Gate;
use Auth;
use Illuminate\Support\Facades\Request;
use Response;

class AccountController extends ApiControllerBase
{
    public function getUser(User $user)
    {
        $this->authorize('edit', $user);

        return Response::json([
            'user' => $user->toArray()
        ]);
    }

    public function getSettings($slug)
    {
        $user = null;
        $current_user = Auth::user();

        if ($current_user != null) {
            if ($slug == $current_user->slug) {
                $user = $current_user;
            } else {
                $user = User::where('slug', $slug)->whereNull('disabled_at')->first();
            }

            if ($user == null) {
                return Response::json(['error' => 'User does not exist'], 404);
            }

            if (Gate::denies('edit', $user)) {
                return Response::json(['error' => 'You cannot do that. So stop trying!'], 403);
            }
        }


        return Response::json([
            'id'  => $user->id,
            'bio' => $user->bio,
            'can_see_explicit_content' => $user->can_see_explicit_content == 1,
            'display_name' => $user->display_name,
            'slug' => $user->slug,
            'username' => $user->username,
            'gravatar' => $user->gravatar ? $user->gravatar : $user->email,
            'avatar_url' => !$user->uses_gravatar ? $user->getAvatarUrl() : null,
            'uses_gravatar' => $user->uses_gravatar == 1
        ], 200);
    }

    public function postSave(User $user)
    {
        return $this->execute(new SaveAccountSettingsCommand(Request::all(), $user));
    }
}
Add controllers 2015-08-31 16:30:02 +02:00			`<?php`

Licensed Pony.fm under the GNU Affero General Public License (AGPL). 2015-10-25 06:17:45 +01:00			`/**`
			`* Pony.fm - A community for pony fan music.`
			`* Copyright (C) 2015 Peter Deltchev`
			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

Updated Pony.fm's PHP namespace to Poniverse\Ponyfm. 2015-10-24 03:22:14 +02:00			`namespace Poniverse\Ponyfm\Http\Controllers\Api\Web;`
Add controllers 2015-08-31 16:30:02 +02:00
Feature/notifications (#87) * #25: Implemented enough of the notification system to start writing drivers. * #25: Implemented most of the Pony.fm notification driver's backend. * #25: Abstracted the logic for building lists of notification recipients. * #25: Implemented notification API endpoints for the SPA. * Front end setup for notifications * #25: Implemented notification API endpoints for the SPA. 2016-05-27 21:12:40 +02:00			`use Carbon\Carbon;`
Updated Pony.fm's PHP namespace to Poniverse\Ponyfm. 2015-10-24 03:22:14 +02:00			`use Poniverse\Ponyfm\Http\Controllers\ApiControllerBase;`
			`use Poniverse\Ponyfm\Commands\SaveAccountSettingsCommand;`
Admins can edit users 2016-05-17 01:30:05 +02:00			`use Poniverse\Ponyfm\Models\User;`
Switch admin check to Gate 2016-05-17 14:00:57 +02:00			`use Gate;`
Improved a bunch of use statements. 2016-06-12 13:49:24 +02:00			`use Auth;`
Laravel 5.2 Update (#106) * Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps should adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within Controllers instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration 2016-09-30 00:26:31 +02:00			`use Illuminate\Support\Facades\Request;`
Improved a bunch of use statements. 2016-06-12 13:49:24 +02:00			`use Response;`
Add controllers 2015-08-31 16:30:02 +02:00
Update namespaces 2015-09-06 19:21:11 +02:00			`class AccountController extends ApiControllerBase`
Add controllers 2015-08-31 16:30:02 +02:00			`{`
Fixes #51: Slugs are now unique and user-changeable. 2016-06-06 05:05:51 +02:00			`public function getUser(User $user)`
			`{`
			`$this->authorize('edit', $user);`

			`return Response::json([`
			`'user' => $user->toArray()`
			`]);`
			`}`

Switch admin check to Gate 2016-05-17 14:00:57 +02:00			`public function getSettings($slug)`
Add controllers 2015-08-31 16:30:02 +02:00			`{`
Admins can edit users 2016-05-17 01:30:05 +02:00			`$user = null;`
			`$current_user = Auth::user();`

Switch admin check to Gate 2016-05-17 14:00:57 +02:00			`if ($current_user != null) {`
			`if ($slug == $current_user->slug) {`
			`$user = $current_user;`
			`} else {`
			`$user = User::where('slug', $slug)->whereNull('disabled_at')->first();`
			`}`
Admins can edit users 2016-05-17 01:30:05 +02:00
Switch admin check to Gate 2016-05-17 14:00:57 +02:00			`if ($user == null) {`
Admins can edit users 2016-05-17 01:30:05 +02:00			`return Response::json(['error' => 'User does not exist'], 404);`
Switch admin check to Gate 2016-05-17 14:00:57 +02:00			`}`

			`if (Gate::denies('edit', $user)) {`
Admins can edit users 2016-05-17 01:30:05 +02:00			`return Response::json(['error' => 'You cannot do that. So stop trying!'], 403);`
			`}`
			`}`

Add controllers 2015-08-31 16:30:02 +02:00
			`return Response::json([`
#2: Fixed up the album editor in its new home. 2016-03-19 09:10:24 +01:00			`'id' => $user->id,`
Add controllers 2015-08-31 16:30:02 +02:00			`'bio' => $user->bio,`
			`'can_see_explicit_content' => $user->can_see_explicit_content == 1,`
			`'display_name' => $user->display_name,`
Fixes #51: Slugs are now unique and user-changeable. 2016-06-06 05:05:51 +02:00			`'slug' => $user->slug,`
Fixes #29: Usernames are now used to check if a Pony.fm account already exists. The username column was also renamed. 2015-11-21 03:25:11 +01:00			`'username' => $user->username,`
Add controllers 2015-08-31 16:30:02 +02:00			`'gravatar' => $user->gravatar ? $user->gravatar : $user->email,`
			`'avatar_url' => !$user->uses_gravatar ? $user->getAvatarUrl() : null,`
			`'uses_gravatar' => $user->uses_gravatar == 1`
			`], 200);`
			`}`

Made avatars optional. Useful for archived profiles! Also took the opportunity to refactor SaveAccountSettingsCommand somewhat. 2016-06-19 22:13:47 +02:00			`public function postSave(User $user)`
Add controllers 2015-08-31 16:30:02 +02:00			`{`
Laravel 5.2 Update (#106) * Adopt PSR-2 coding style The Laravel framework adopts the PSR-2 coding style in version 5.1. Laravel apps should adopt this coding style as well. Read the [PSR-2 coding style guide][1] for more details and check out [PHPCS][2] to use as a code formatting tool. [1]: https://github.com/php-fig/fig-standards/blob/master/accepted/PSR-2-coding-style-guide.md [2]: https://github.com/squizlabs/PHP_CodeSniffer * Adopt PHP short array syntax Laravel 5 adopted the short array syntax which became available in PHP 5.4. * Remove SelfHandling from Jobs Jobs are self handling by default in Laravel 5.2. * Add new exceptions to `$dontReport` property * Shift core files * Shift Middleware Laravel 5.2 adjusts the `Guard` object used within middleware. In addition, new `can` and `throttles` middleware were added. * Shift Input to Request facade Laravel 5.2 no longer registers the `Input` facade by default. Laravel now prefers using the `Request` facade or the `$request` object within Controllers instead. Review the [HTTP Requests][1] documentation for more details. [1]: https://laravel.com/docs/5.2/requests * Shift configuration Laravel 5.2 introduces the `env` app configuration option and removes the `pretend` mail configuration option. In addition, a few of the default `providers` and `aliases` bindings were removed. * Shift Laravel dependencies * Shift cleanup * Updated composer.lock * Updated Middleware to 5.2 * Config update for Laravel 5.2 * [Laravel 5.2] Updated validation strings * Updated auth config * Updated to use middleware groups * Added laravel 5.2 sessions migration 2016-09-30 00:26:31 +02:00			`return $this->execute(new SaveAccountSettingsCommand(Request::all(), $user));`
Add controllers 2015-08-31 16:30:02 +02:00			`}`
Licensed Pony.fm under the GNU Affero General Public License (AGPL). 2015-10-25 06:17:45 +01:00			`}`