mirror of
https://github.com/lkddi/nexusphp.git
synced 2026-04-24 12:07:23 +08:00
personal access token create and del
This commit is contained in:
xiaomlove
@@ -2,9 +2,11 @@
|
|||||||
|
|
||||||
namespace App\Http\Controllers;
|
namespace App\Http\Controllers;
|
||||||
|
|
||||||
|
use App\Exceptions\NexusException;
|
||||||
use App\Http\Resources\ExamResource;
|
use App\Http\Resources\ExamResource;
|
||||||
use App\Http\Resources\UserResource;
|
use App\Http\Resources\UserResource;
|
||||||
use App\Models\LoginLog;
|
use App\Models\LoginLog;
|
||||||
|
use App\Models\PersonalAccessTokenPlain;
|
||||||
use App\Models\Setting;
|
use App\Models\Setting;
|
||||||
use App\Models\User;
|
use App\Models\User;
|
||||||
use App\Repositories\AuthenticateRepository;
|
use App\Repositories\AuthenticateRepository;
|
||||||
@@ -103,4 +105,46 @@ class AuthenticateController extends Controller
|
|||||||
return response()->json(["success" => false, "msg" => $exception->getMessage()]);
|
return response()->json(["success" => false, "msg" => $exception->getMessage()]);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
public function addToken(Request $request)
|
||||||
|
{
|
||||||
|
try {
|
||||||
|
$request->validate([
|
||||||
|
'name' => 'required|string',
|
||||||
|
]);
|
||||||
|
$user = Auth::user();
|
||||||
|
$count = $user->tokens()->count();
|
||||||
|
if ($count >= 5) {
|
||||||
|
throw new NexusException("Token limit exceeded");
|
||||||
|
}
|
||||||
|
$newAccessToken = $user->createToken($request->name);
|
||||||
|
PersonalAccessTokenPlain::query()->create([
|
||||||
|
'access_token_id' => $newAccessToken->accessToken->getKey(),
|
||||||
|
'plain_text_token' => $newAccessToken->plainTextToken,
|
||||||
|
]);
|
||||||
|
return $this->success(true);
|
||||||
|
} catch (\Exception $exception) {
|
||||||
|
return $this->fail(false, $exception->getMessage());
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
public function delToken(Request $request)
|
||||||
|
{
|
||||||
|
try {
|
||||||
|
$request->validate([
|
||||||
|
'id' => 'required|integer',
|
||||||
|
]);
|
||||||
|
$user = Auth::user();
|
||||||
|
$token = $user->tokens()->where("id", $request->id)->first();
|
||||||
|
if ($token) {
|
||||||
|
PersonalAccessTokenPlain::query()->where("access_token_id", $token->id)->delete();
|
||||||
|
$token->delete();
|
||||||
|
}
|
||||||
|
return $this->success(true);
|
||||||
|
} catch (\Exception $exception) {
|
||||||
|
return $this->fail(false, $exception->getMessage());
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -13,6 +13,7 @@ class VerifyCsrfToken extends Middleware
|
|||||||
* @var array
|
* @var array
|
||||||
*/
|
*/
|
||||||
protected $except = [
|
protected $except = [
|
||||||
self::TG_WEBHOOK_PREFIX . "/*"
|
self::TG_WEBHOOK_PREFIX . "/*",
|
||||||
|
"web/token/*",
|
||||||
];
|
];
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -0,0 +1,11 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
namespace App\Models;
|
||||||
|
|
||||||
|
|
||||||
|
class PersonalAccessTokenPlain extends NexusModel
|
||||||
|
{
|
||||||
|
protected $fillable = ['access_token_id', 'plain_text_token'];
|
||||||
|
|
||||||
|
public $timestamps = true;
|
||||||
|
}
|
||||||
@@ -0,0 +1,29 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
use Illuminate\Database\Migrations\Migration;
|
||||||
|
use Illuminate\Database\Schema\Blueprint;
|
||||||
|
use Illuminate\Support\Facades\Schema;
|
||||||
|
|
||||||
|
return new class extends Migration
|
||||||
|
{
|
||||||
|
/**
|
||||||
|
* Run the migrations.
|
||||||
|
*/
|
||||||
|
public function up(): void
|
||||||
|
{
|
||||||
|
Schema::create('personal_access_token_plains', function (Blueprint $table) {
|
||||||
|
$table->id();
|
||||||
|
$table->bigInteger('access_token_id')->unsigned();
|
||||||
|
$table->string("plain_text_token");
|
||||||
|
$table->timestamps();
|
||||||
|
});
|
||||||
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Reverse the migrations.
|
||||||
|
*/
|
||||||
|
public function down(): void
|
||||||
|
{
|
||||||
|
Schema::dropIfExists('personal_access_token_plains');
|
||||||
|
}
|
||||||
|
};
|
||||||
+30
-25
@@ -3,7 +3,7 @@ require "../include/bittorrent.php";
|
|||||||
dbconn();
|
dbconn();
|
||||||
require_once(get_langfile_path());
|
require_once(get_langfile_path());
|
||||||
loggedinorreturn();
|
loggedinorreturn();
|
||||||
|
$userInfo = \App\Models\User::query()->findOrFail($CURUSER["id"], \App\Models\User::$commonFields);
|
||||||
function bark($msg) {
|
function bark($msg) {
|
||||||
stdhead();
|
stdhead();
|
||||||
global $lang_usercp;
|
global $lang_usercp;
|
||||||
@@ -940,6 +940,7 @@ EOD;
|
|||||||
}
|
}
|
||||||
|
|
||||||
stdhead($lang_usercp['head_control_panel'].$lang_usercp['head_home']);
|
stdhead($lang_usercp['head_control_panel'].$lang_usercp['head_home']);
|
||||||
|
\Nexus\Nexus::js('vendor/jquery-loading/jquery.loading.min.js', 'footer', true);
|
||||||
usercpmenu ();
|
usercpmenu ();
|
||||||
//Comment Results
|
//Comment Results
|
||||||
$commentcount = get_row_count("comments", "WHERE user=" . sqlesc($CURUSER["id"]));
|
$commentcount = get_row_count("comments", "WHERE user=" . sqlesc($CURUSER["id"]));
|
||||||
@@ -1126,24 +1127,22 @@ $tokenLabel = nexus_trans("token.label");
|
|||||||
$columnName = nexus_trans('label.name');
|
$columnName = nexus_trans('label.name');
|
||||||
$columnCreatedAt = nexus_trans('label.created_at');
|
$columnCreatedAt = nexus_trans('label.created_at');
|
||||||
$actionCreate = nexus_trans('label.create');
|
$actionCreate = nexus_trans('label.create');
|
||||||
//$res = \App\Models\SeedBoxRecord::query()->where('uid', $CURUSER['id'])->where('type', \App\Models\SeedBoxRecord::TYPE_USER)->get();
|
$actionLabel = nexus_trans('label.action');
|
||||||
//if ($res->count() > 0)
|
$res = $userInfo->tokens()->orderBy("id", "desc")->get();
|
||||||
//{
|
if ($res->count() > 0)
|
||||||
// $seedBox .= "<table border='1' cellspacing='0' cellpadding='5' id='seed-box-table'><tr><td class='colhead'>ID</td><td class='colhead'>{$columnOperator}</td><td class='colhead'>{$columnBandwidth}</td><td class='colhead'>{$columnIP}</td><td class='colhead'>{$columnComment}</td><td class='colhead'>{$columnStatus}</td><td class='colhead'></td></tr>";
|
{
|
||||||
// foreach ($res as $seedBoxRecord)
|
$token .= "<table border='1' cellspacing='0' cellpadding='5' id='token-table'><tr><td class='colhead'>ID</td><td class='colhead'>{$columnName}</td><td class='colhead'>{$columnCreatedAt}</td><td class='colhead'>{$actionLabel}</td></tr>";
|
||||||
// {
|
foreach ($res as $tokenRecord)
|
||||||
// $seedBox .= "<tr>";
|
{
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->id);
|
$token .= "<tr>";
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->operator);
|
$token .= sprintf('<td>%s</td>', $tokenRecord->id);
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->bandwidth ?: '');
|
$token .= sprintf('<td>%s</td>', $tokenRecord->name);
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->ip ?: sprintf('%s ~ %s', $seedBoxRecord->ip_begin, $seedBoxRecord->ip_end));
|
$token .= sprintf('<td>%s</td>', $tokenRecord->created_at);
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->comment);
|
$token .= sprintf('<td><span style="cursor: pointer;margin-right: 10px" class="token-get">获取</span><span style="cursor: pointer" title="%s" data-id="%s" class="token-del">删除</span></td>', $lang_functions['text_delete'], $tokenRecord->id);
|
||||||
// $seedBox .= sprintf('<td>%s</td>', $seedBoxRecord->statusText);
|
$token .= "</tr>";
|
||||||
// $seedBox .= sprintf('<td><img style="cursor: pointer" class="staff_delete remove-seed-box-btn" src="pic/trans.gif" alt="D" title="%s" data-id="%s"></td>', $lang_functions['text_delete'], $seedBoxRecord->id);
|
}
|
||||||
// $seedBox .= "</tr>";
|
$token .= '</table>';
|
||||||
// }
|
}
|
||||||
// $seedBox .= '</table>';
|
|
||||||
//}
|
|
||||||
$token .= sprintf('<div><input type="button" id="add-token-box-btn" value="%s"/></div>', $actionCreate);
|
$token .= sprintf('<div><input type="button" id="add-token-box-btn" value="%s"/></div>', $actionCreate);
|
||||||
tr_small($tokenLabel, $token, 1);
|
tr_small($tokenLabel, $token, 1);
|
||||||
$tokenFoxForm = <<<FORM
|
$tokenFoxForm = <<<FORM
|
||||||
@@ -1151,7 +1150,7 @@ $tokenFoxForm = <<<FORM
|
|||||||
<form id="token-box-form">
|
<form id="token-box-form">
|
||||||
<div class="form-control-row">
|
<div class="form-control-row">
|
||||||
<div class="label">{$columnName}</div>
|
<div class="label">{$columnName}</div>
|
||||||
<div class="field"><input type="text" name="params[name]"></div>
|
<div class="field"><input type="text" name="name"></div>
|
||||||
</div>
|
</div>
|
||||||
</form>
|
</form>
|
||||||
</div>
|
</div>
|
||||||
@@ -1164,11 +1163,14 @@ jQuery('#add-token-box-btn').on('click', function () {
|
|||||||
content: `$tokenFoxForm`,
|
content: `$tokenFoxForm`,
|
||||||
btn: ['OK'],
|
btn: ['OK'],
|
||||||
btnAlign: 'c',
|
btnAlign: 'c',
|
||||||
yes: function () {
|
yes: function (index) {
|
||||||
|
layer.close(index);
|
||||||
|
jQuery('body').loading({stoppable: false});
|
||||||
let params = jQuery('#token-box-form').serialize()
|
let params = jQuery('#token-box-form').serialize()
|
||||||
jQuery.post('ajax.php', params + "&action=addToken", function (response) {
|
jQuery.post('/web/token/add', params, function (response) {
|
||||||
console.log(response)
|
console.log(response)
|
||||||
if (response.ret != 0) {
|
if (response.ret != 0) {
|
||||||
|
jQuery('body').loading('stop');
|
||||||
layer.alert(response.msg)
|
layer.alert(response.msg)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
@@ -1177,12 +1179,15 @@ jQuery('#add-token-box-btn').on('click', function () {
|
|||||||
}
|
}
|
||||||
})
|
})
|
||||||
});
|
});
|
||||||
jQuery('#token-box-table').on('click', '.remove-token-box-btn', function () {
|
jQuery('#token-table').on('click', '.token-del', function () {
|
||||||
let params = {action: "removeToken", params: {id: jQuery(this).attr("data-id")}}
|
let params = {id: jQuery(this).attr("data-id")}
|
||||||
layer.confirm("{$lang_functions['std_confirm_remove']}", {btnAlign: 'c'}, function (index) {
|
layer.confirm("{$lang_functions['std_confirm_remove']}", {btnAlign: 'c'}, function (index) {
|
||||||
jQuery.post('ajax.php', params, function (response) {
|
layer.close(index)
|
||||||
|
jQuery('body').loading({stoppable: false});
|
||||||
|
jQuery.post('/web/token/del', params, function (response) {
|
||||||
console.log(response)
|
console.log(response)
|
||||||
if (response.ret != 0) {
|
if (response.ret != 0) {
|
||||||
|
jQuery('body').loading('stop');
|
||||||
layer.alert(response.msg)
|
layer.alert(response.msg)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -21,6 +21,8 @@ Route::group(['prefix' => 'web', 'middleware' => ['auth.nexus:nexus-web', 'local
|
|||||||
Route::get('torrent-approval-page', [\App\Http\Controllers\TorrentController::class, 'approvalPage']);
|
Route::get('torrent-approval-page', [\App\Http\Controllers\TorrentController::class, 'approvalPage']);
|
||||||
Route::get('torrent-approval-logs', [\App\Http\Controllers\TorrentController::class, 'approvalLogs']);
|
Route::get('torrent-approval-logs', [\App\Http\Controllers\TorrentController::class, 'approvalLogs']);
|
||||||
Route::post('torrent-approval', [\App\Http\Controllers\TorrentController::class, 'approval']);
|
Route::post('torrent-approval', [\App\Http\Controllers\TorrentController::class, 'approval']);
|
||||||
|
Route::post('token/add', [\App\Http\Controllers\AuthenticateController::class, 'addToken']);
|
||||||
|
Route::post('token/del', [\App\Http\Controllers\AuthenticateController::class, 'delToken']);
|
||||||
});
|
});
|
||||||
|
|
||||||
if (!isRunningInConsole()) {
|
if (!isRunningInConsole()) {
|
||||||
|
|||||||
Reference in New Issue
Block a user