PteroTheme/app/Services/Subusers/SubuserCreationService.php

<?php
/**
 * Pterodactyl - Panel
 * Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.
 *
 * This software is licensed under the terms of the MIT license.
 * https://opensource.org/licenses/MIT
 */

namespace Pterodactyl\Services\Subusers;

use Illuminate\Log\Writer;
use Pterodactyl\Models\Server;
use GuzzleHttp\Exception\RequestException;
use Illuminate\Database\ConnectionInterface;
use Pterodactyl\Exceptions\DisplayException;
use Pterodactyl\Services\Nodes\NodeCreationService;
use Pterodactyl\Services\Users\UserCreationService;
use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
use Pterodactyl\Exceptions\Repository\RecordNotFoundException;
use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
use Pterodactyl\Contracts\Repository\SubuserRepositoryInterface;
use Pterodactyl\Exceptions\Service\Subuser\UserIsServerOwnerException;
use Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException;
use Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface as DaemonServerRepositoryInterface;

class SubuserCreationService
{
    /**
     * @var \Illuminate\Database\ConnectionInterface
     */
    protected $connection;

    /**
     * @var \Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface
     */
    protected $daemonRepository;

    /**
     * @var \Pterodactyl\Services\Subusers\PermissionCreationService
     */
    protected $permissionService;

    /**
     * @var \Pterodactyl\Contracts\Repository\SubuserRepositoryInterface
     */
    protected $subuserRepository;

    /**
     * @var \Pterodactyl\Contracts\Repository\ServerRepositoryInterface
     */
    protected $serverRepository;

    /**
     * @var \Pterodactyl\Services\Users\UserCreationService
     */
    protected $userCreationService;

    /**
     * @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface
     */
    protected $userRepository;

    /**
     * @var \Illuminate\Log\Writer
     */
    protected $writer;

    /**
     * SubuserCreationService constructor.
     *
     * @param \Illuminate\Database\ConnectionInterface                           $connection
     * @param \Pterodactyl\Services\Users\UserCreationService                    $userCreationService
     * @param \Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface $daemonRepository
     * @param \Pterodactyl\Services\Subusers\PermissionCreationService           $permissionService
     * @param \Pterodactyl\Contracts\Repository\ServerRepositoryInterface        $serverRepository
     * @param \Pterodactyl\Contracts\Repository\SubuserRepositoryInterface       $subuserRepository
     * @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface          $userRepository
     * @param \Illuminate\Log\Writer                                             $writer
     */
    public function __construct(
        ConnectionInterface $connection,
        UserCreationService $userCreationService,
        DaemonServerRepositoryInterface $daemonRepository,
        PermissionCreationService $permissionService,
        ServerRepositoryInterface $serverRepository,
        SubuserRepositoryInterface $subuserRepository,
        UserRepositoryInterface $userRepository,
        Writer $writer
    ) {
        $this->connection = $connection;
        $this->daemonRepository = $daemonRepository;
        $this->permissionService = $permissionService;
        $this->subuserRepository = $subuserRepository;
        $this->serverRepository = $serverRepository;
        $this->userRepository = $userRepository;
        $this->userCreationService = $userCreationService;
        $this->writer = $writer;
    }

    /**
     * @param int|\Pterodactyl\Models\Server $server
     * @param string                         $email
     * @param array                          $permissions
     * @return \Pterodactyl\Models\Subuser
     *
     * @throws \Exception
     * @throws \Pterodactyl\Exceptions\DisplayException
     * @throws \Pterodactyl\Exceptions\Model\DataValidationException
     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
     * @throws \Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException
     * @throws \Pterodactyl\Exceptions\Service\Subuser\UserIsServerOwnerException
     */
    public function handle($server, $email, array $permissions)
    {
        if (! $server instanceof Server) {
            $server = $this->serverRepository->find($server);
        }

        $this->connection->beginTransaction();
        try {
            $user = $this->userRepository->findFirstWhere([['email', '=', $email]]);

            if ($server->owner_id === $user->id) {
                throw new UserIsServerOwnerException(trans('exceptions.subusers.user_is_owner'));
            }

            $subuserCount = $this->subuserRepository->findCountWhere([['user_id', '=', $user->id], ['server_id', '=', $server->id]]);
            if ($subuserCount !== 0) {
                throw new ServerSubuserExistsException(trans('exceptions.subusers.subuser_exists'));
            }
        } catch (RecordNotFoundException $exception) {
            $user = $this->userCreationService->handle([
                'email' => $email,
                'username' => substr(strtok($email, '@'), 0, 8) . '_' . str_random(6),
                'name_first' => 'Server',
                'name_last' => 'Subuser',
                'root_admin' => false,
            ]);
        }

        $subuser = $this->subuserRepository->create([
            'user_id' => $user->id,
            'server_id' => $server->id,
            'daemonSecret' => str_random(NodeCreationService::DAEMON_SECRET_LENGTH),
        ]);

        $daemonPermissions = $this->permissionService->handle($subuser->id, $permissions);

        try {
            $this->daemonRepository->setNode($server->node_id)->setAccessServer($server->uuid)
                ->setSubuserKey($subuser->daemonSecret, $daemonPermissions);
            $this->connection->commit();

            return $subuser;
        } catch (RequestException $exception) {
            $this->connection->rollBack();
            $this->writer->warning($exception);

            $response = $exception->getResponse();
            throw new DisplayException(trans('exceptions.daemon_connection_failed', [
                'code' => is_null($response) ? 'E_CONN_REFUSED' : $response->getStatusCode(),
            ]));
        }
    }
}
Push subuser creation service 2017-08-24 03:34:11 +01:00			`<?php`
Update license headers on files. 2017-09-26 03:43:01 +01:00			`/**`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`* Pterodactyl - Panel`
			`* Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.`
			`*`
Update license headers on files. 2017-09-26 03:43:01 +01:00			`* This software is licensed under the terms of the MIT license.`
			`* https://opensource.org/licenses/MIT`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`*/`

			`namespace Pterodactyl\Services\Subusers;`

Apply fixes from StyleCI (#607) 2017-08-27 20:55:25 +01:00			`use Illuminate\Log\Writer;`
			`use Pterodactyl\Models\Server;`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`use GuzzleHttp\Exception\RequestException;`
			`use Illuminate\Database\ConnectionInterface;`
Apply fixes from StyleCI (#607) 2017-08-27 20:55:25 +01:00			`use Pterodactyl\Exceptions\DisplayException;`
Update random ID method to use str_random and not random_bytes The use of random_bytes in combination with bin2hex was producing a lot of duplicate keys when tested in batches of 10k (anywhere from 2 to 6). The use of str_random yielded no duplicates even at scales of 100k keys that were 8 characters. 2017-09-14 05:07:02 +01:00			`use Pterodactyl\Services\Nodes\NodeCreationService;`
Refactor obscure service names to be clearer 2017-08-27 21:10:51 +01:00			`use Pterodactyl\Services\Users\UserCreationService;`
Apply fixes from StyleCI (#607) 2017-08-27 20:55:25 +01:00			`use Pterodactyl\Contracts\Repository\UserRepositoryInterface;`
Fix PHPCS to order by length not alphabetical 2017-09-05 01:07:00 +01:00			`use Pterodactyl\Exceptions\Repository\RecordNotFoundException;`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;`
			`use Pterodactyl\Contracts\Repository\SubuserRepositoryInterface;`
			`use Pterodactyl\Exceptions\Service\Subuser\UserIsServerOwnerException;`
Apply fixes from StyleCI (#607) 2017-08-27 20:55:25 +01:00			`use Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException;`
			`use Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface as DaemonServerRepositoryInterface;`
Push subuser creation service 2017-08-24 03:34:11 +01:00
			`class SubuserCreationService`
			`{`
			`/**`
			`* @var \Illuminate\Database\ConnectionInterface`
			`*/`
			`protected $connection;`

			`/**`
			`* @var \Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface`
			`*/`
			`protected $daemonRepository;`

			`/**`
Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`* @var \Pterodactyl\Services\Subusers\PermissionCreationService`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`*/`
Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`protected $permissionService;`
Push subuser creation service 2017-08-24 03:34:11 +01:00
			`/**`
			`* @var \Pterodactyl\Contracts\Repository\SubuserRepositoryInterface`
			`*/`
			`protected $subuserRepository;`

			`/**`
			`* @var \Pterodactyl\Contracts\Repository\ServerRepositoryInterface`
			`*/`
			`protected $serverRepository;`

			`/**`
Refactor obscure service names to be clearer 2017-08-27 21:10:51 +01:00			`* @var \Pterodactyl\Services\Users\UserCreationService`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`*/`
			`protected $userCreationService;`

			`/**`
			`* @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface`
			`*/`
			`protected $userRepository;`

			`/**`
			`* @var \Illuminate\Log\Writer`
			`*/`
			`protected $writer;`

Finish subuser controller 2017-09-05 00:12:13 +01:00			`/**`
			`* SubuserCreationService constructor.`
			`*`
			`* @param \Illuminate\Database\ConnectionInterface $connection`
			`* @param \Pterodactyl\Services\Users\UserCreationService $userCreationService`
			`* @param \Pterodactyl\Contracts\Repository\Daemon\ServerRepositoryInterface $daemonRepository`
			`* @param \Pterodactyl\Services\Subusers\PermissionCreationService $permissionService`
			`* @param \Pterodactyl\Contracts\Repository\ServerRepositoryInterface $serverRepository`
			`* @param \Pterodactyl\Contracts\Repository\SubuserRepositoryInterface $subuserRepository`
			`* @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface $userRepository`
			`* @param \Illuminate\Log\Writer $writer`
			`*/`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`public function __construct(`
			`ConnectionInterface $connection,`
Refactor obscure service names to be clearer 2017-08-27 21:10:51 +01:00			`UserCreationService $userCreationService,`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`DaemonServerRepositoryInterface $daemonRepository,`
Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`PermissionCreationService $permissionService,`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`ServerRepositoryInterface $serverRepository,`
			`SubuserRepositoryInterface $subuserRepository,`
			`UserRepositoryInterface $userRepository,`
			`Writer $writer`
			`) {`
			`$this->connection = $connection;`
			`$this->daemonRepository = $daemonRepository;`
Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`$this->permissionService = $permissionService;`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`$this->subuserRepository = $subuserRepository;`
			`$this->serverRepository = $serverRepository;`
			`$this->userRepository = $userRepository;`
			`$this->userCreationService = $userCreationService;`
			`$this->writer = $writer;`
			`}`

			`/**`
			`* @param int\|\Pterodactyl\Models\Server $server`
			`* @param string $email`
			`* @param array $permissions`
			`* @return \Pterodactyl\Models\Subuser`
			`*`
			`* @throws \Exception`
			`* @throws \Pterodactyl\Exceptions\DisplayException`
			`* @throws \Pterodactyl\Exceptions\Model\DataValidationException`
			`* @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException`
			`* @throws \Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException`
			`* @throws \Pterodactyl\Exceptions\Service\Subuser\UserIsServerOwnerException`
			`*/`
			`public function handle($server, $email, array $permissions)`
			`{`
			`if (! $server instanceof Server) {`
			`$server = $this->serverRepository->find($server);`
			`}`

Finish subuser controller 2017-09-05 00:12:13 +01:00			`$this->connection->beginTransaction();`
			`try {`
			`$user = $this->userRepository->findFirstWhere([['email', '=', $email]]);`

Push subuser creation service 2017-08-24 03:34:11 +01:00			`if ($server->owner_id === $user->id) {`
Add more front-end controllers, language file cleanup 2017-09-03 22:32:52 +01:00			`throw new UserIsServerOwnerException(trans('exceptions.subusers.user_is_owner'));`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`}`

			`$subuserCount = $this->subuserRepository->findCountWhere([['user_id', '=', $user->id], ['server_id', '=', $server->id]]);`
			`if ($subuserCount !== 0) {`
Add more front-end controllers, language file cleanup 2017-09-03 22:32:52 +01:00			`throw new ServerSubuserExistsException(trans('exceptions.subusers.subuser_exists'));`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`}`
Finish subuser controller 2017-09-05 00:12:13 +01:00			`} catch (RecordNotFoundException $exception) {`
			`$user = $this->userCreationService->handle([`
			`'email' => $email,`
			`'username' => substr(strtok($email, '@'), 0, 8) . '_' . str_random(6),`
			`'name_first' => 'Server',`
			`'name_last' => 'Subuser',`
			`'root_admin' => false,`
			`]);`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`}`

			`$subuser = $this->subuserRepository->create([`
			`'user_id' => $user->id,`
			`'server_id' => $server->id,`
Update random ID method to use str_random and not random_bytes The use of random_bytes in combination with bin2hex was producing a lot of duplicate keys when tested in batches of 10k (anywhere from 2 to 6). The use of str_random yielded no duplicates even at scales of 100k keys that were 8 characters. 2017-09-14 05:07:02 +01:00			`'daemonSecret' => str_random(NodeCreationService::DAEMON_SECRET_LENGTH),`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`]);`

Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`$daemonPermissions = $this->permissionService->handle($subuser->id, $permissions);`
Push subuser creation service 2017-08-24 03:34:11 +01:00
			`try {`
			`$this->daemonRepository->setNode($server->node_id)->setAccessServer($server->uuid)`
			`->setSubuserKey($subuser->daemonSecret, $daemonPermissions);`
			`$this->connection->commit();`

			`return $subuser;`
			`} catch (RequestException $exception) {`
Add subuser deletion service 2017-08-26 19:31:18 +01:00			`$this->connection->rollBack();`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`$this->writer->warning($exception);`

Complete move from old repository to new repository structure! 2017-08-27 00:08:11 +01:00			`$response = $exception->getResponse();`
Add more front-end controllers, language file cleanup 2017-09-03 22:32:52 +01:00			`throw new DisplayException(trans('exceptions.daemon_connection_failed', [`
Push subuser creation service 2017-08-24 03:34:11 +01:00			`'code' => is_null($response) ? 'E_CONN_REFUSED' : $response->getStatusCode(),`
			`]));`
			`}`
			`}`
			`}`